msg+0x154/0x190 [ 934.488349] ____sys_sendmsg+0x70d/0x870 [ 934.488370] ? sock_write_iter+0x3d0/0x3d0 [ 934.488397] ? do_recvmmsg+0x6d0/0x6d0 [ 934.494456] ? lock_downgrade+0x6d0/0x6d0 [ 934.495406] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 934.496648] ___sys_sendmsg+0xf3/0x170 [ 934.497536] ? sendmsg_copy_msghdr+0x160/0x160 [ 934.498586] ? __fget_files+0x2cf/0x520 [ 934.499489] ? lock_downgrade+0x6d0/0x6d0 [ 934.500448] ? find_held_lock+0x2c/0x110 [ 934.501382] ? __fget_files+0x2f8/0x520 [ 934.502304] ? __fget_light+0xea/0x290 [ 934.503201] __sys_sendmsg+0xe5/0x1b0 [ 934.504082] ? __sys_sendmsg_sock+0x40/0x40 [ 934.505078] ? rcu_read_lock_any_held+0x75/0xa0 [ 934.506151] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 934.507341] ? syscall_enter_from_user_mode+0x1d/0x50 [ 934.508531] do_syscall_64+0x33/0x40 [ 934.509383] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 934.510553] RIP: 0033:0x7fa462201b19 [ 934.511399] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 934.515618] RSP: 002b:00007fa45f777188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 934.517363] RAX: ffffffffffffffda RBX: 00007fa462314f60 RCX: 00007fa462201b19 [ 934.519008] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 934.520653] RBP: 00007fa45f7771d0 R08: 0000000000000000 R09: 0000000000000000 [ 934.522280] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 934.523902] R13: 00007ffc6547cc4f R14: 00007fa45f777300 R15: 0000000000022000 [ 934.525564] CPU: 1 PID: 7307 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 934.527029] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 934.528803] Call Trace: [ 934.529367] dump_stack+0x107/0x167 [ 934.530147] should_fail.cold+0x5/0xa [ 934.530961] _copy_from_user+0x2e/0x1b0 [ 934.531806] iovec_from_user+0x141/0x400 [ 934.532680] __import_iovec+0x67/0x590 [ 934.533507] ? __ia32_sys_shutdown+0x80/0x80 [ 934.534441] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 934.535559] import_iovec+0x83/0xb0 [ 934.536348] sendmsg_copy_msghdr+0x131/0x160 [ 934.537280] ? do_recvmmsg+0x6d0/0x6d0 [ 934.538110] ? lock_downgrade+0x6d0/0x6d0 [ 934.538993] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 934.540110] ___sys_sendmsg+0xc6/0x170 [ 934.540936] ? sendmsg_copy_msghdr+0x160/0x160 [ 934.541913] ? __fget_files+0x2cf/0x520 [ 934.542754] ? lock_downgrade+0x6d0/0x6d0 [ 934.543632] ? find_held_lock+0x2c/0x110 [ 934.544510] ? __fget_files+0x2f8/0x520 [ 934.545379] ? __fget_light+0xea/0x290 [ 934.546219] __sys_sendmsg+0xe5/0x1b0 [ 934.547027] ? __sys_sendmsg_sock+0x40/0x40 [ 934.547941] ? rcu_read_lock_any_held+0x75/0xa0 [ 934.548933] ? fput_many+0x2f/0x1a0 [ 934.549702] FAULT_INJECTION: forcing a failure. [ 934.549702] name failslab, interval 1, probability 0, space 0, times 0 [ 934.552054] ? ksys_write+0x1a9/0x260 [ 934.552870] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 934.553978] ? syscall_enter_from_user_mode+0x1d/0x50 [ 934.555075] do_syscall_64+0x33/0x40 [ 934.555863] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 934.556956] RIP: 0033:0x7faee752eb19 [ 934.557749] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 934.561646] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 934.563256] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 934.564778] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 934.566286] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 934.567800] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 934.569326] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 [ 934.570870] CPU: 0 PID: 7311 Comm: syz-executor.7 Not tainted 5.10.237 #1 [ 934.572468] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 934.574371] Call Trace: [ 934.574980] dump_stack+0x107/0x167 [ 934.575816] should_fail.cold+0x5/0xa [ 934.576703] should_failslab+0x5/0x20 [ 934.576723] __kmalloc_node_track_caller+0x74/0x3b0 [ 934.576750] ? netlink_sendmsg+0x998/0xe00 [ 934.579641] __alloc_skb+0xb1/0x5b0 [ 934.580530] netlink_sendmsg+0x998/0xe00 [ 934.581464] ? netlink_unicast+0x800/0x800 [ 934.582435] ? netlink_unicast+0x800/0x800 [ 934.583395] __sock_sendmsg+0x154/0x190 [ 934.584307] ____sys_sendmsg+0x70d/0x870 [ 934.585232] ? sock_write_iter+0x3d0/0x3d0 [ 934.586198] ? do_recvmmsg+0x6d0/0x6d0 [ 934.587093] ? lock_downgrade+0x6d0/0x6d0 [ 934.588049] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 934.589268] ___sys_sendmsg+0xf3/0x170 [ 934.590160] ? sendmsg_copy_msghdr+0x160/0x160 [ 934.591202] ? __fget_files+0x2cf/0x520 [ 934.592121] ? lock_downgrade+0x6d0/0x6d0 [ 934.593062] ? find_held_lock+0x2c/0x110 [ 934.593990] ? __fget_files+0x2f8/0x520 [ 934.594905] ? __fget_light+0xea/0x290 [ 934.595806] __sys_sendmsg+0xe5/0x1b0 [ 934.596680] ? __sys_sendmsg_sock+0x40/0x40 [ 934.597654] ? rcu_read_lock_any_held+0x75/0xa0 [ 934.598724] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 934.599910] ? syscall_enter_from_user_mode+0x1d/0x50 [ 934.601088] do_syscall_64+0x33/0x40 [ 934.601935] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 934.603093] RIP: 0033:0x7ffb1486ab19 [ 934.603935] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 934.608111] RSP: 002b:00007ffb11de0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 934.609838] RAX: ffffffffffffffda RBX: 00007ffb1497df60 RCX: 00007ffb1486ab19 [ 934.611450] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 934.613083] RBP: 00007ffb11de01d0 R08: 0000000000000000 R09: 0000000000000000 [ 934.614700] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 934.616331] R13: 00007ffe341f6c8f R14: 00007ffb11de0300 R15: 0000000000022000 02:54:54 executing program 2: r0 = open(&(0x7f0000000140)='./file1\x00', 0x300, 0x38) r1 = openat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x25e103, 0x6) preadv(r1, 0x0, 0x0, 0x401, 0x0) inotify_add_watch(r1, &(0x7f00000000c0)='./file1\x00', 0x42000284) statx(0xffffffffffffffff, 0x0, 0x89449e2670c4c232, 0x400, &(0x7f0000000500)) lstat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000400)) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000680)={r0, 0x0, 0x7fff, 0x4}) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="00000000000000002eb4eb696c653200a398c5"]) move_mount(0xffffffffffffffff, &(0x7f0000000380)='./file0\x00', r0, &(0x7f00000003c0)='./file1\x00', 0x0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r0, 0x4, 0x937, 0x1, 0x3}) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:54:54 executing program 0: prctl$PR_SET_FP_MODE(0x2d, 0x2) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/class/spi_transport', 0x0, 0x0) getdents(r0, &(0x7f0000000040)=""/203, 0xcb) 02:54:54 executing program 5: r0 = open(&(0x7f0000000140)='./file1\x00', 0x300, 0x38) r1 = openat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x25e103, 0x6) preadv(r1, 0x0, 0x0, 0x401, 0x0) inotify_add_watch(r1, &(0x7f00000000c0)='./file1\x00', 0x42000284) statx(0xffffffffffffffff, 0x0, 0x89449e2670c4c232, 0x400, &(0x7f0000000500)) lstat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000400)) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000680)={r0, 0x0, 0x7fff, 0x4}) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="00000000000000002eb4eb696c653200a398c5"]) move_mount(0xffffffffffffffff, &(0x7f0000000380)='./file0\x00', r0, &(0x7f00000003c0)='./file1\x00', 0x0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r0, 0x4, 0x937, 0x1, 0x3}) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x100000001) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4306, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x0, 0x0, 0x400, 0x0, 0xff}, 0x0, 0xfdffffffffffffff, 0xffffffffffffffff, 0x0) epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r0, &(0x7f00000004c0)={0x20000000}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:54:54 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 1) [ 934.765136] FAULT_INJECTION: forcing a failure. [ 934.765136] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 934.767771] CPU: 1 PID: 7328 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 934.769212] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 934.770966] Call Trace: [ 934.771528] dump_stack+0x107/0x167 [ 934.772306] should_fail.cold+0x5/0xa [ 934.773111] _copy_from_user+0x2e/0x1b0 [ 934.773951] __copy_msghdr_from_user+0x91/0x4b0 [ 934.774926] ? __ia32_sys_shutdown+0x80/0x80 [ 934.775850] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 934.776961] ? __lock_acquire+0x1657/0x5b00 [ 934.777874] ? __lock_acquire+0xbb1/0x5b00 [ 934.778773] sendmsg_copy_msghdr+0xa1/0x160 [ 934.779683] ? do_recvmmsg+0x6d0/0x6d0 [ 934.780518] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 934.781615] ? lock_downgrade+0x6d0/0x6d0 [ 934.782485] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 934.783596] ___sys_sendmsg+0xc6/0x170 [ 934.784426] ? sendmsg_copy_msghdr+0x160/0x160 [ 934.785387] ? __fget_files+0x2cf/0x520 [ 934.786226] ? lock_downgrade+0x6d0/0x6d0 [ 934.787100] ? find_held_lock+0x2c/0x110 [ 934.787970] ? __fget_files+0x2f8/0x520 [ 934.788822] ? __fget_light+0xea/0x290 [ 934.789653] __sys_sendmsg+0xe5/0x1b0 [ 934.790456] ? __sys_sendmsg_sock+0x40/0x40 [ 934.791358] ? rcu_read_lock_any_held+0x75/0xa0 [ 934.792351] ? fput_many+0x2f/0x1a0 [ 934.793117] ? ksys_write+0x1a9/0x260 [ 934.793923] ? __ia32_sys_read+0xb0/0xb0 [ 934.794782] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 934.795889] ? syscall_enter_from_user_mode+0x1d/0x50 [ 934.796994] do_syscall_64+0x33/0x40 [ 934.797779] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 934.798851] RIP: 0033:0x7f051132ab19 [ 934.799632] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 934.803506] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 934.805117] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 934.806611] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 934.808119] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 934.809609] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 934.811098] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 02:55:09 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 02:55:09 executing program 5: r0 = open(&(0x7f0000000140)='./file1\x00', 0x300, 0x38) r1 = openat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x25e103, 0x6) preadv(r1, 0x0, 0x0, 0x401, 0x0) inotify_add_watch(r1, &(0x7f00000000c0)='./file1\x00', 0x42000284) statx(0xffffffffffffffff, 0x0, 0x89449e2670c4c232, 0x400, &(0x7f0000000500)) lstat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000400)) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000680)={r0, 0x0, 0x7fff, 0x4}) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="00000000000000002eb4eb696c653200a398c5"]) move_mount(0xffffffffffffffff, &(0x7f0000000380)='./file0\x00', r0, &(0x7f00000003c0)='./file1\x00', 0x0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r0, 0x4, 0x937, 0x1, 0x3}) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x100000001) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4306, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x0, 0x0, 0x400, 0x0, 0xff}, 0x0, 0xfdffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:55:09 executing program 2: r0 = open(&(0x7f0000000140)='./file1\x00', 0x300, 0x38) r1 = openat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x25e103, 0x6) preadv(r1, 0x0, 0x0, 0x401, 0x0) inotify_add_watch(r1, &(0x7f00000000c0)='./file1\x00', 0x42000284) statx(0xffffffffffffffff, 0x0, 0x89449e2670c4c232, 0x400, &(0x7f0000000500)) lstat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000400)) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000680)={r0, 0x0, 0x7fff, 0x4}) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="00000000000000002eb4eb696c653200a398c5"]) move_mount(0xffffffffffffffff, &(0x7f0000000380)='./file0\x00', r0, &(0x7f00000003c0)='./file1\x00', 0x0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r0, 0x4, 0x937, 0x1, 0x3}) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:55:09 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 3) 02:55:09 executing program 0: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/class/spi_transport', 0x0, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000100)={0x0}, &(0x7f0000000140)=0xc) perf_event_open(&(0x7f0000000080)={0x5, 0x80, 0x1, 0x3f, 0xe6, 0x9, 0x0, 0x10000, 0x10004, 0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x8, 0x2, @perf_bp={&(0x7f0000000040)}, 0x0, 0x100, 0x5, 0x1, 0x9, 0x3, 0x9, 0x0, 0xffff7fff, 0x0, 0x9}, r1, 0x10, r0, 0x0) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) 02:55:09 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 2) 02:55:09 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 6) 02:55:09 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 6) [ 949.424487] FAULT_INJECTION: forcing a failure. [ 949.424487] name failslab, interval 1, probability 0, space 0, times 0 [ 949.426997] CPU: 1 PID: 7340 Comm: syz-executor.6 Not tainted 5.10.237 #1 [ 949.428434] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 949.429951] FAULT_INJECTION: forcing a failure. [ 949.429951] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 949.430164] Call Trace: [ 949.430195] dump_stack+0x107/0x167 [ 949.434108] should_fail.cold+0x5/0xa [ 949.434913] should_failslab+0x5/0x20 [ 949.435703] __kmalloc_node_track_caller+0x74/0x3b0 [ 949.436745] ? netlink_sendmsg+0x998/0xe00 [ 949.437648] __alloc_skb+0xb1/0x5b0 [ 949.438412] netlink_sendmsg+0x998/0xe00 [ 949.439267] ? netlink_unicast+0x800/0x800 [ 949.440156] ? netlink_unicast+0x800/0x800 [ 949.441046] __sock_sendmsg+0x154/0x190 [ 949.441873] ____sys_sendmsg+0x70d/0x870 [ 949.442724] ? sock_write_iter+0x3d0/0x3d0 [ 949.443599] ? do_recvmmsg+0x6d0/0x6d0 [ 949.444421] ? lock_downgrade+0x6d0/0x6d0 [ 949.445294] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 949.446385] ___sys_sendmsg+0xf3/0x170 [ 949.447200] ? sendmsg_copy_msghdr+0x160/0x160 [ 949.448163] ? __fget_files+0x2cf/0x520 [ 949.448994] ? lock_downgrade+0x6d0/0x6d0 [ 949.449853] ? find_held_lock+0x2c/0x110 [ 949.450706] ? __fget_files+0x2f8/0x520 [ 949.451538] ? __fget_light+0xea/0x290 [ 949.452364] __sys_sendmsg+0xe5/0x1b0 [ 949.453155] ? __sys_sendmsg_sock+0x40/0x40 [ 949.454046] ? rcu_read_lock_any_held+0x75/0xa0 [ 949.455055] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 949.456139] ? syscall_enter_from_user_mode+0x1d/0x50 [ 949.457228] do_syscall_64+0x33/0x40 [ 949.458006] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 949.459094] RIP: 0033:0x7fa462201b19 [ 949.459878] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 949.463716] RSP: 002b:00007fa45f777188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 949.465319] RAX: ffffffffffffffda RBX: 00007fa462314f60 RCX: 00007fa462201b19 [ 949.466787] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 949.468281] RBP: 00007fa45f7771d0 R08: 0000000000000000 R09: 0000000000000000 [ 949.469759] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 949.471236] R13: 00007ffc6547cc4f R14: 00007fa45f777300 R15: 0000000000022000 [ 949.472752] CPU: 0 PID: 7339 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 949.474305] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 949.476204] Call Trace: [ 949.476807] dump_stack+0x107/0x167 [ 949.477619] should_fail.cold+0x5/0xa [ 949.478489] _copy_from_user+0x2e/0x1b0 [ 949.479396] iovec_from_user+0x141/0x400 [ 949.480325] __import_iovec+0x67/0x590 [ 949.481214] ? __ia32_sys_shutdown+0x80/0x80 [ 949.482208] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 949.483397] import_iovec+0x83/0xb0 [ 949.484228] sendmsg_copy_msghdr+0x131/0x160 [ 949.485232] ? do_recvmmsg+0x6d0/0x6d0 [ 949.486121] ? lock_downgrade+0x6d0/0x6d0 [ 949.487071] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 949.488259] ___sys_sendmsg+0xc6/0x170 [ 949.489146] ? sendmsg_copy_msghdr+0x160/0x160 [ 949.490174] ? __fget_files+0x2cf/0x520 [ 949.491064] ? lock_downgrade+0x6d0/0x6d0 [ 949.491994] ? find_held_lock+0x2c/0x110 [ 949.492928] ? __fget_files+0x2f8/0x520 [ 949.493829] ? __fget_light+0xea/0x290 [ 949.494706] __sys_sendmsg+0xe5/0x1b0 [ 949.495559] ? __sys_sendmsg_sock+0x40/0x40 [ 949.496539] ? rcu_read_lock_any_held+0x75/0xa0 [ 949.497583] ? fput_many+0x2f/0x1a0 [ 949.498413] ? ksys_write+0x1a9/0x260 [ 949.499273] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 949.500490] ? syscall_enter_from_user_mode+0x1d/0x50 [ 949.501650] do_syscall_64+0x33/0x40 [ 949.502484] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 949.503624] RIP: 0033:0x7f051132ab19 [ 949.504463] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 949.508601] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 949.510300] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 949.511889] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 949.513528] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 949.515117] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 949.516750] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 [ 949.531538] FAULT_INJECTION: forcing a failure. [ 949.531538] name failslab, interval 1, probability 0, space 0, times 0 [ 949.534127] CPU: 0 PID: 7351 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 949.535689] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 949.537614] Call Trace: [ 949.538237] dump_stack+0x107/0x167 [ 949.539071] should_fail.cold+0x5/0xa [ 949.539941] ? __alloc_skb+0x6d/0x5b0 [ 949.540821] should_failslab+0x5/0x20 [ 949.541701] kmem_cache_alloc_node+0x55/0x330 [ 949.542733] __alloc_skb+0x6d/0x5b0 [ 949.543582] netlink_sendmsg+0x998/0xe00 [ 949.544522] ? netlink_unicast+0x800/0x800 [ 949.545502] ? netlink_unicast+0x800/0x800 [ 949.546481] __sock_sendmsg+0x154/0x190 [ 949.547390] ____sys_sendmsg+0x70d/0x870 [ 949.548330] ? sock_write_iter+0x3d0/0x3d0 [ 949.549299] ? do_recvmmsg+0x6d0/0x6d0 [ 949.550193] ? lock_downgrade+0x6d0/0x6d0 [ 949.551143] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 949.551174] ___sys_sendmsg+0xf3/0x170 [ 949.553201] ? sendmsg_copy_msghdr+0x160/0x160 [ 949.554244] ? __fget_files+0x2cf/0x520 [ 949.555150] ? lock_downgrade+0x6d0/0x6d0 [ 949.556103] ? find_held_lock+0x2c/0x110 [ 949.557045] ? __fget_files+0x2f8/0x520 [ 949.557958] ? __fget_light+0xea/0x290 [ 949.558855] __sys_sendmsg+0xe5/0x1b0 [ 949.559732] ? __sys_sendmsg_sock+0x40/0x40 [ 949.560723] ? rcu_read_lock_any_held+0x75/0xa0 [ 949.561800] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 949.563002] ? syscall_enter_from_user_mode+0x1d/0x50 [ 949.564181] do_syscall_64+0x33/0x40 [ 949.565054] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 949.566222] RIP: 0033:0x7faee752eb19 [ 949.567073] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 949.571286] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 949.573041] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 949.574681] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 949.576334] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 949.577971] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 949.579610] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 02:55:09 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 02:55:09 executing program 0: openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/class/spi_transport', 0x0, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) r1 = openat$null(0xffffffffffffff9c, &(0x7f0000000100), 0x141901, 0x0) getdents(r1, &(0x7f0000000200)=""/216, 0xd8) getdents(r0, &(0x7f0000000040)=""/189, 0xffffffffffffff5a) r2 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = getpid() fcntl$setown(r2, 0x8, r3) perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x9, 0x20, 0x80, 0xff, 0x0, 0xfff, 0x80224, 0xc, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x3, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x2, @perf_config_ext={0x7ff, 0x10000}, 0xc400, 0x7, 0x2c9, 0x6, 0x2, 0x2590, 0xf975, 0x0, 0x80000001, 0x0, 0x39634f28}, r3, 0xc, r0, 0x0) 02:55:09 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 7) 02:55:09 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) socket$unix(0x1, 0x5, 0x0) 02:55:09 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 4) [ 949.738434] FAULT_INJECTION: forcing a failure. [ 949.738434] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 949.741236] CPU: 0 PID: 7365 Comm: syz-executor.6 Not tainted 5.10.237 #1 [ 949.742813] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 949.744735] Call Trace: [ 949.745355] dump_stack+0x107/0x167 [ 949.746200] should_fail.cold+0x5/0xa [ 949.747092] _copy_from_iter_full+0x201/0xa60 [ 949.748139] ? __virt_addr_valid+0x170/0x5d0 [ 949.749165] ? __check_object_size+0x319/0x440 [ 949.750225] netlink_sendmsg+0x879/0xe00 [ 949.751165] ? netlink_unicast+0x800/0x800 [ 949.752157] ? netlink_unicast+0x800/0x800 [ 949.753150] __sock_sendmsg+0x154/0x190 [ 949.754085] ____sys_sendmsg+0x70d/0x870 [ 949.755014] ? sock_write_iter+0x3d0/0x3d0 [ 949.755986] ? do_recvmmsg+0x6d0/0x6d0 [ 949.756865] ? lock_downgrade+0x6d0/0x6d0 [ 949.757792] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 949.758964] ___sys_sendmsg+0xf3/0x170 [ 949.759835] ? sendmsg_copy_msghdr+0x160/0x160 [ 949.760865] ? __fget_files+0x2cf/0x520 [ 949.761763] ? lock_downgrade+0x6d0/0x6d0 [ 949.762691] ? find_held_lock+0x2c/0x110 [ 949.763618] ? __fget_files+0x2f8/0x520 [ 949.764541] ? __fget_light+0xea/0x290 [ 949.765441] __sys_sendmsg+0xe5/0x1b0 [ 949.766295] ? __sys_sendmsg_sock+0x40/0x40 [ 949.767284] ? rcu_read_lock_any_held+0x75/0xa0 [ 949.768340] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 949.769534] ? syscall_enter_from_user_mode+0x1d/0x50 [ 949.770716] do_syscall_64+0x33/0x40 [ 949.771551] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 949.772715] RIP: 0033:0x7fa462201b19 [ 949.773553] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 949.777715] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. [ 949.779596] RSP: 002b:00007fa45f777188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 949.781319] RAX: ffffffffffffffda RBX: 00007fa462314f60 RCX: 00007fa462201b19 [ 949.782942] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 949.784583] RBP: 00007fa45f7771d0 R08: 0000000000000000 R09: 0000000000000000 [ 949.786166] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 949.787806] R13: 00007ffc6547cc4f R14: 00007fa45f777300 R15: 0000000000022000 02:55:09 executing program 0: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/class/spi_transport', 0x0, 0x120) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r0, 0xc0189374, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, {0x8}}, './file0\x00'}) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) fsmount(r1, 0x1, 0x80) fcntl$dupfd(r0, 0x0, 0xffffffffffffffff) getdents(r1, &(0x7f0000000180)=""/198, 0xc6) getdents(r1, &(0x7f0000000140)=""/197, 0xc5) write$P9_RXATTRCREATE(0xffffffffffffffff, &(0x7f0000000080)={0x7, 0x21, 0x2}, 0x7) 02:55:09 executing program 2: r0 = open(&(0x7f0000000140)='./file1\x00', 0x300, 0x38) r1 = openat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x25e103, 0x6) preadv(r1, 0x0, 0x0, 0x401, 0x0) inotify_add_watch(r1, &(0x7f00000000c0)='./file1\x00', 0x42000284) statx(0xffffffffffffffff, 0x0, 0x89449e2670c4c232, 0x400, &(0x7f0000000500)) lstat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000400)) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000680)={r0, 0x0, 0x7fff, 0x4}) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="00000000000000002eb4eb696c653200a398c5"]) move_mount(0xffffffffffffffff, &(0x7f0000000380)='./file0\x00', r0, &(0x7f00000003c0)='./file1\x00', 0x0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r0, 0x4, 0x937, 0x1, 0x3}) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) [ 949.819692] FAULT_INJECTION: forcing a failure. [ 949.819692] name failslab, interval 1, probability 0, space 0, times 0 [ 949.822281] CPU: 0 PID: 7368 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 949.823834] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 949.825725] Call Trace: [ 949.826324] dump_stack+0x107/0x167 [ 949.827156] should_fail.cold+0x5/0xa [ 949.828016] ? create_object.isra.0+0x3a/0xa20 [ 949.829066] should_failslab+0x5/0x20 [ 949.829927] kmem_cache_alloc+0x5b/0x310 [ 949.830851] create_object.isra.0+0x3a/0xa20 [ 949.831838] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 949.833002] kmem_cache_alloc_node+0x169/0x330 [ 949.834044] __alloc_skb+0x6d/0x5b0 [ 949.834878] netlink_sendmsg+0x998/0xe00 02:55:09 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 3) [ 949.835800] ? netlink_unicast+0x800/0x800 [ 949.836883] ? netlink_unicast+0x800/0x800 [ 949.837846] __sock_sendmsg+0x154/0x190 [ 949.838749] ____sys_sendmsg+0x70d/0x870 [ 949.839674] ? sock_write_iter+0x3d0/0x3d0 [ 949.840661] ? do_recvmmsg+0x6d0/0x6d0 [ 949.841553] ? lock_downgrade+0x6d0/0x6d0 [ 949.842492] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 949.843695] ___sys_sendmsg+0xf3/0x170 [ 949.844585] ? sendmsg_copy_msghdr+0x160/0x160 [ 949.845630] ? __fget_files+0x2cf/0x520 [ 949.846549] ? lock_downgrade+0x6d0/0x6d0 [ 949.847490] ? find_held_lock+0x2c/0x110 [ 949.848437] ? __fget_files+0x2f8/0x520 [ 949.849346] ? __fget_light+0xea/0x290 [ 949.850240] __sys_sendmsg+0xe5/0x1b0 [ 949.851108] ? __sys_sendmsg_sock+0x40/0x40 [ 949.852089] ? rcu_read_lock_any_held+0x75/0xa0 [ 949.853171] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 949.854369] ? syscall_enter_from_user_mode+0x1d/0x50 [ 949.855549] do_syscall_64+0x33/0x40 [ 949.856405] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 949.857577] RIP: 0033:0x7faee752eb19 [ 949.858421] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 949.862620] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 949.864361] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 949.865993] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 949.867618] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 949.869245] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 949.870884] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 02:55:09 executing program 5: r0 = open(&(0x7f0000000140)='./file1\x00', 0x300, 0x38) r1 = openat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x25e103, 0x6) preadv(r1, 0x0, 0x0, 0x401, 0x0) inotify_add_watch(r1, &(0x7f00000000c0)='./file1\x00', 0x42000284) statx(0xffffffffffffffff, 0x0, 0x89449e2670c4c232, 0x400, &(0x7f0000000500)) lstat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000400)) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000680)={r0, 0x0, 0x7fff, 0x4}) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="00000000000000002eb4eb696c653200a398c5"]) move_mount(0xffffffffffffffff, &(0x7f0000000380)='./file0\x00', r0, &(0x7f00000003c0)='./file1\x00', 0x0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r0, 0x4, 0x937, 0x1, 0x3}) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x100000001) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) [ 949.895111] FAULT_INJECTION: forcing a failure. [ 949.895111] name failslab, interval 1, probability 0, space 0, times 0 [ 949.897584] CPU: 1 PID: 7374 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 949.899027] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 949.900787] Call Trace: [ 949.901349] dump_stack+0x107/0x167 [ 949.902116] should_fail.cold+0x5/0xa [ 949.902919] ? __alloc_skb+0x6d/0x5b0 [ 949.903730] should_failslab+0x5/0x20 [ 949.904536] kmem_cache_alloc_node+0x55/0x330 [ 949.905480] __alloc_skb+0x6d/0x5b0 [ 949.906256] netlink_sendmsg+0x998/0xe00 [ 949.907110] ? netlink_unicast+0x800/0x800 [ 949.908019] ? netlink_unicast+0x800/0x800 [ 949.908915] __sock_sendmsg+0x154/0x190 [ 949.909758] ____sys_sendmsg+0x70d/0x870 [ 949.910612] ? sock_write_iter+0x3d0/0x3d0 [ 949.911511] ? do_recvmmsg+0x6d0/0x6d0 [ 949.912345] ? lock_downgrade+0x6d0/0x6d0 [ 949.913215] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 949.914319] ___sys_sendmsg+0xf3/0x170 [ 949.915136] ? sendmsg_copy_msghdr+0x160/0x160 [ 949.916097] ? __fget_files+0x2cf/0x520 [ 949.916935] ? lock_downgrade+0x6d0/0x6d0 [ 949.917808] ? find_held_lock+0x2c/0x110 [ 949.918666] ? __fget_files+0x2f8/0x520 [ 949.919516] ? __fget_light+0xea/0x290 [ 949.920351] __sys_sendmsg+0xe5/0x1b0 [ 949.921148] ? __sys_sendmsg_sock+0x40/0x40 [ 949.922060] ? rcu_read_lock_any_held+0x75/0xa0 [ 949.923070] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 949.924180] ? syscall_enter_from_user_mode+0x1d/0x50 [ 949.925282] do_syscall_64+0x33/0x40 [ 949.926075] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 949.927159] RIP: 0033:0x7f051132ab19 [ 949.927953] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 949.931866] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 949.931887] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 949.931899] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 949.931919] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 949.938198] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 949.939710] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 02:55:09 executing program 0: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/spi_transport', 0x0, 0x0) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) 02:55:09 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 8) [ 950.000964] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. 02:55:09 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 02:55:10 executing program 0: getdents(0xffffffffffffffff, &(0x7f0000000180)=""/198, 0xc6) fsetxattr$trusted_overlay_nlink(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000040)={'L+', 0x16}, 0x16, 0x3) 02:55:10 executing program 5: r0 = open(&(0x7f0000000140)='./file1\x00', 0x300, 0x38) r1 = openat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x25e103, 0x6) preadv(r1, 0x0, 0x0, 0x401, 0x0) inotify_add_watch(r1, &(0x7f00000000c0)='./file1\x00', 0x42000284) statx(0xffffffffffffffff, 0x0, 0x89449e2670c4c232, 0x400, &(0x7f0000000500)) lstat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000400)) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000680)={r0, 0x0, 0x7fff, 0x4}) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="00000000000000002eb4eb696c653200a398c5"]) move_mount(0xffffffffffffffff, &(0x7f0000000380)='./file0\x00', r0, &(0x7f00000003c0)='./file1\x00', 0x0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r0, 0x4, 0x937, 0x1, 0x3}) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:55:10 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 4) 02:55:10 executing program 0: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/class/spi_transport', 0x0, 0x58) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r1, &(0x7f0000000180)=""/198, 0xc6) r2 = socket(0xf, 0x10080d, 0x8) r3 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000440), 0x240, 0x0) r4 = syz_open_dev$vcsn(&(0x7f0000000480), 0x6, 0x1) r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r5, &(0x7f0000000180)=""/198, 0xc6) r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r6, &(0x7f0000000180)=""/198, 0xc6) sendmsg$unix(r1, &(0x7f0000000500)={&(0x7f0000000340)=@abs={0x1, 0x0, 0x4e22}, 0x6e, &(0x7f0000000400)=[{&(0x7f00000003c0)="14e43fbc3c9685f2fa632ee271f2942f816a823336822ae462c5fe50e666475a6a56731d6ce55d7e74146d379fb2e4dfc592fe8313432029658c1069ad5aa3", 0x3f}], 0x1, &(0x7f00000004c0)=[@rights={{0x38, 0x1, 0x1, [r0, r0, r0, r2, r0, r3, r4, r5, r0, r6]}}], 0x38, 0x24000000}, 0x40004) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r5, 0xc018937b, &(0x7f00000005c0)=ANY=[@ANYBLOB="010000000100000018000000e141ae2f5e6bf5798ac0ba442c91320b171a47396ce67799b6f17c9621aab7bf5d78ff", @ANYRES32=r1, @ANYRES32, @ANYRES32, @ANYBLOB='./file0\x00']) openat$incfs(r7, &(0x7f0000000580)='.log\x00', 0x48000, 0x14) r8 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f00000000c0)={0xa, 0x4e20, 0x9, @loopback, 0x4}, 0x1c, &(0x7f0000000100)=[{&(0x7f0000000280)="754330541c1d9a49fc686ccb64472f210941ce93503260b4c903f22b607b0010f6c32137927bf807ff81ac3636f0219b0b2f66232f74ae9fda9db83633fee04e2f90602702f03bbe47557933e257128c979742abd7a8bd0c8dae7c631fd8e10ae633f2c3cae7834bf22ea71f2eeb1767de6c13f086032f0d8771f3ddccddb7be139c", 0x82}], 0x1}, 0x4004000) getdents(r8, &(0x7f0000000180)=""/198, 0xc6) ioctl$AUTOFS_IOC_SETTIMEOUT(0xffffffffffffffff, 0x80049367, &(0x7f0000000540)=0x9) getsockopt$sock_cred(r8, 0x1, 0x11, &(0x7f0000000040), &(0x7f0000000080)=0xc) getdents64(r0, &(0x7f0000000340), 0x0) 02:55:10 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 5) [ 950.149161] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. [ 950.162230] FAULT_INJECTION: forcing a failure. [ 950.162230] name failslab, interval 1, probability 0, space 0, times 0 [ 950.164650] CPU: 1 PID: 7391 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 950.166069] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 950.167807] Call Trace: [ 950.168379] dump_stack+0x107/0x167 [ 950.169148] should_fail.cold+0x5/0xa [ 950.169947] ? create_object.isra.0+0x3a/0xa20 [ 950.170914] should_failslab+0x5/0x20 [ 950.171712] kmem_cache_alloc+0x5b/0x310 [ 950.172582] create_object.isra.0+0x3a/0xa20 [ 950.173505] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 950.174574] kmem_cache_alloc_node+0x169/0x330 [ 950.175540] __alloc_skb+0x6d/0x5b0 [ 950.176312] netlink_sendmsg+0x998/0xe00 [ 950.177157] ? netlink_unicast+0x800/0x800 [ 950.178043] ? netlink_unicast+0x800/0x800 [ 950.178919] __sock_sendmsg+0x154/0x190 [ 950.179750] ____sys_sendmsg+0x70d/0x870 [ 950.180601] ? sock_write_iter+0x3d0/0x3d0 [ 950.181480] ? do_recvmmsg+0x6d0/0x6d0 [ 950.182296] ? lock_downgrade+0x6d0/0x6d0 [ 950.183160] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 950.184266] ___sys_sendmsg+0xf3/0x170 [ 950.185078] ? sendmsg_copy_msghdr+0x160/0x160 [ 950.186034] ? __fget_files+0x2cf/0x520 [ 950.186863] ? lock_downgrade+0x6d0/0x6d0 [ 950.187723] ? find_held_lock+0x2c/0x110 [ 950.188583] ? __fget_files+0x2f8/0x520 [ 950.189423] ? __fget_light+0xea/0x290 [ 950.190236] __sys_sendmsg+0xe5/0x1b0 [ 950.191029] ? __sys_sendmsg_sock+0x40/0x40 [ 950.191924] ? rcu_read_lock_any_held+0x75/0xa0 [ 950.192911] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 950.194011] ? syscall_enter_from_user_mode+0x1d/0x50 [ 950.195087] do_syscall_64+0x33/0x40 [ 950.195865] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 950.196940] RIP: 0033:0x7f051132ab19 [ 950.197714] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 950.201555] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 950.203146] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 950.204640] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 950.206127] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 950.207605] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 950.209091] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 [ 950.210864] FAULT_INJECTION: forcing a failure. [ 950.210864] name failslab, interval 1, probability 0, space 0, times 0 [ 950.213197] CPU: 1 PID: 7383 Comm: syz-executor.6 Not tainted 5.10.237 #1 [ 950.214617] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 950.216332] Call Trace: [ 950.216872] dump_stack+0x107/0x167 [ 950.217626] should_fail.cold+0x5/0xa [ 950.218414] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xdb/0x280 [ 950.219758] should_failslab+0x5/0x20 [ 950.220550] __kmalloc+0x72/0x390 [ 950.221276] genl_family_rcv_msg_attrs_parse.constprop.0+0xdb/0x280 [ 950.222586] genl_family_rcv_msg_doit+0xda/0x330 [ 950.223568] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 950.224939] ? cap_capable+0x1cd/0x230 [ 950.225746] ? security_capable+0x95/0xc0 [ 950.226614] ? ns_capable+0xe2/0x110 [ 950.227382] genl_rcv_msg+0x36a/0x5a0 [ 950.228170] ? genl_get_cmd+0x480/0x480 [ 950.229015] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 950.230077] ? lock_release+0x680/0x680 [ 950.230908] ? netlink_deliver_tap+0xf4/0xcc0 [ 950.231836] netlink_rcv_skb+0x14b/0x430 [ 950.232684] ? genl_get_cmd+0x480/0x480 [ 950.233500] ? netlink_ack+0xab0/0xab0 [ 950.234311] ? netlink_deliver_tap+0x1c4/0xcc0 [ 950.235257] ? is_vmalloc_addr+0x7b/0xb0 [ 950.236102] genl_rcv+0x24/0x40 [ 950.236790] netlink_unicast+0x54e/0x800 [ 950.237635] ? netlink_attachskb+0x870/0x870 [ 950.238552] netlink_sendmsg+0x90f/0xe00 [ 950.239404] ? netlink_unicast+0x800/0x800 [ 950.240288] ? netlink_unicast+0x800/0x800 [ 950.241147] __sock_sendmsg+0x154/0x190 [ 950.241953] ____sys_sendmsg+0x70d/0x870 [ 950.242863] ? sock_write_iter+0x3d0/0x3d0 [ 950.243886] ? do_recvmmsg+0x6d0/0x6d0 [ 950.244689] ? lock_downgrade+0x6d0/0x6d0 [ 950.245530] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 950.246603] ___sys_sendmsg+0xf3/0x170 [ 950.247399] ? sendmsg_copy_msghdr+0x160/0x160 [ 950.248348] ? __fget_files+0x2cf/0x520 [ 950.249155] ? lock_downgrade+0x6d0/0x6d0 [ 950.250011] ? find_held_lock+0x2c/0x110 [ 950.250843] ? __fget_files+0x2f8/0x520 [ 950.251661] ? __fget_light+0xea/0x290 [ 950.252465] __sys_sendmsg+0xe5/0x1b0 [ 950.253235] ? __sys_sendmsg_sock+0x40/0x40 [ 950.254112] ? rcu_read_lock_any_held+0x75/0xa0 [ 950.255070] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 950.256137] ? syscall_enter_from_user_mode+0x1d/0x50 [ 950.257200] do_syscall_64+0x33/0x40 [ 950.257955] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 950.258999] RIP: 0033:0x7fa462201b19 [ 950.259755] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 950.263475] RSP: 002b:00007fa45f777188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 950.265020] RAX: ffffffffffffffda RBX: 00007fa462314f60 RCX: 00007fa462201b19 [ 950.266479] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 950.267910] RBP: 00007fa45f7771d0 R08: 0000000000000000 R09: 0000000000000000 [ 950.269351] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 950.270782] R13: 00007ffc6547cc4f R14: 00007fa45f777300 R15: 0000000000022000 [ 950.277054] FAULT_INJECTION: forcing a failure. [ 950.277054] name failslab, interval 1, probability 0, space 0, times 0 [ 950.279379] CPU: 1 PID: 7394 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 950.279389] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 950.279394] Call Trace: [ 950.279411] dump_stack+0x107/0x167 [ 950.279435] should_fail.cold+0x5/0xa [ 950.284555] should_failslab+0x5/0x20 [ 950.285318] __kmalloc_node_track_caller+0x74/0x3b0 [ 950.286333] ? netlink_sendmsg+0x998/0xe00 [ 950.286363] __alloc_skb+0xb1/0x5b0 [ 950.287961] netlink_sendmsg+0x998/0xe00 [ 950.288789] ? netlink_unicast+0x800/0x800 [ 950.289648] ? netlink_unicast+0x800/0x800 [ 950.290496] __sock_sendmsg+0x154/0x190 [ 950.291285] ____sys_sendmsg+0x70d/0x870 [ 950.292096] ? sock_write_iter+0x3d0/0x3d0 [ 950.292938] ? do_recvmmsg+0x6d0/0x6d0 [ 950.293716] ? lock_downgrade+0x6d0/0x6d0 [ 950.294556] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 950.295606] ___sys_sendmsg+0xf3/0x170 [ 950.296387] ? sendmsg_copy_msghdr+0x160/0x160 [ 950.297302] ? __fget_files+0x2cf/0x520 [ 950.298087] ? lock_downgrade+0x6d0/0x6d0 [ 950.298907] ? find_held_lock+0x2c/0x110 [ 950.299728] ? __fget_files+0x2f8/0x520 [ 950.300537] ? __fget_light+0xea/0x290 [ 950.301322] __sys_sendmsg+0xe5/0x1b0 [ 950.302086] ? __sys_sendmsg_sock+0x40/0x40 [ 950.302940] ? rcu_read_lock_any_held+0x75/0xa0 [ 950.303879] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 950.304921] ? syscall_enter_from_user_mode+0x1d/0x50 [ 950.305948] do_syscall_64+0x33/0x40 [ 950.306684] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 950.307715] RIP: 0033:0x7faee752eb19 [ 950.308473] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 950.312171] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 950.313685] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 950.315094] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 950.316505] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 950.317910] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 950.319321] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 [ 950.354640] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. 02:55:23 executing program 2: r0 = open(&(0x7f0000000140)='./file1\x00', 0x300, 0x38) r1 = openat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x25e103, 0x6) preadv(r1, 0x0, 0x0, 0x401, 0x0) inotify_add_watch(r1, &(0x7f00000000c0)='./file1\x00', 0x42000284) statx(0xffffffffffffffff, 0x0, 0x89449e2670c4c232, 0x400, &(0x7f0000000500)) lstat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000400)) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000680)={r0, 0x0, 0x7fff, 0x4}) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="00000000000000002eb4eb696c653200a398c5"]) move_mount(0xffffffffffffffff, &(0x7f0000000380)='./file0\x00', r0, &(0x7f00000003c0)='./file1\x00', 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) [ 963.471578] FAULT_INJECTION: forcing a failure. [ 963.471578] name failslab, interval 1, probability 0, space 0, times 0 [ 963.473021] CPU: 1 PID: 7405 Comm: syz-executor.6 Not tainted 5.10.237 #1 [ 963.473872] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 963.474884] Call Trace: [ 963.475215] dump_stack+0x107/0x167 [ 963.475661] should_fail.cold+0x5/0xa [ 963.476130] ? create_object.isra.0+0x3a/0xa20 [ 963.476695] should_failslab+0x5/0x20 [ 963.477163] kmem_cache_alloc+0x5b/0x310 [ 963.477659] ? lock_release+0x680/0x680 [ 963.478141] create_object.isra.0+0x3a/0xa20 [ 963.478670] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 963.479296] __kmalloc+0x16e/0x390 [ 963.479734] genl_family_rcv_msg_attrs_parse.constprop.0+0xdb/0x280 [ 963.480515] genl_family_rcv_msg_doit+0xda/0x330 [ 963.481090] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 963.481903] ? cap_capable+0x1cd/0x230 [ 963.482379] ? security_capable+0x95/0xc0 [ 963.482898] ? ns_capable+0xe2/0x110 [ 963.483349] genl_rcv_msg+0x36a/0x5a0 [ 963.483820] ? genl_get_cmd+0x480/0x480 [ 963.484302] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 963.484944] ? lock_release+0x680/0x680 [ 963.485421] ? netlink_deliver_tap+0xf4/0xcc0 [ 963.485964] netlink_rcv_skb+0x14b/0x430 [ 963.486456] ? genl_get_cmd+0x480/0x480 [ 963.486934] ? netlink_ack+0xab0/0xab0 [ 963.487416] ? netlink_deliver_tap+0x1c4/0xcc0 [ 963.487968] ? is_vmalloc_addr+0x7b/0xb0 [ 963.488468] genl_rcv+0x24/0x40 [ 963.488874] netlink_unicast+0x54e/0x800 [ 963.489367] ? netlink_attachskb+0x870/0x870 [ 963.489926] netlink_sendmsg+0x90f/0xe00 [ 963.490419] ? netlink_unicast+0x800/0x800 [ 963.490936] ? netlink_unicast+0x800/0x800 [ 963.491448] __sock_sendmsg+0x154/0x190 [ 963.491930] ____sys_sendmsg+0x70d/0x870 [ 963.492430] ? sock_write_iter+0x3d0/0x3d0 [ 963.492940] ? do_recvmmsg+0x6d0/0x6d0 [ 963.493421] ? lock_downgrade+0x6d0/0x6d0 [ 963.493923] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 963.494561] ___sys_sendmsg+0xf3/0x170 [ 963.495033] ? sendmsg_copy_msghdr+0x160/0x160 [ 963.495600] ? __fget_files+0x2cf/0x520 [ 963.496078] ? lock_downgrade+0x6d0/0x6d0 [ 963.496591] ? find_held_lock+0x2c/0x110 [ 963.497087] ? __fget_files+0x2f8/0x520 [ 963.497564] ? __fget_light+0xea/0x290 [ 963.498034] __sys_sendmsg+0xe5/0x1b0 [ 963.498497] ? __sys_sendmsg_sock+0x40/0x40 02:55:23 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) socket$unix(0x1, 0x5, 0x0) 02:55:23 executing program 0: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/class/spi_transport', 0x0, 0x0) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) socketpair(0x11, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000000180), r2) sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(r2, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x210}, 0xc, &(0x7f0000000240)={&(0x7f0000001300)={0x3c, r3, 0x0, 0x70bd27, 0x25dfdbfc, {}, [@BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0xb9}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x9}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x3}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x5}]}, 0x3c}, 0x1, 0x0, 0x0, 0x800}, 0x20000004) sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r1, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r3, 0x11, 0x70bd28, 0x25dfdbfb, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x4008801) r4 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$SIOCGSTAMPNS(r4, 0x8907, &(0x7f0000000340)) r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) ioctl$TIOCNOTTY(r5, 0x5422) r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) io_setup(0x3ff, &(0x7f0000000300)) getdents(r6, &(0x7f0000000180)=""/198, 0xc6) syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r6) 02:55:23 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 6) 02:55:23 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x2, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 02:55:23 executing program 5: r0 = open(&(0x7f0000000140)='./file1\x00', 0x300, 0x38) r1 = openat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x25e103, 0x6) preadv(r1, 0x0, 0x0, 0x401, 0x0) inotify_add_watch(r1, &(0x7f00000000c0)='./file1\x00', 0x42000284) statx(0xffffffffffffffff, 0x0, 0x89449e2670c4c232, 0x400, &(0x7f0000000500)) lstat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000400)) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000680)={r0, 0x0, 0x7fff, 0x4}) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="00000000000000002eb4eb696c653200a398c5"]) move_mount(0xffffffffffffffff, &(0x7f0000000380)='./file0\x00', r0, &(0x7f00000003c0)='./file1\x00', 0x0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r0, 0x4, 0x937, 0x1, 0x3}) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:55:23 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 9) [ 963.499026] ? rcu_read_lock_any_held+0x75/0xa0 [ 963.499797] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 963.500437] ? syscall_enter_from_user_mode+0x1d/0x50 [ 963.501064] do_syscall_64+0x33/0x40 [ 963.501518] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 963.502133] RIP: 0033:0x7fa462201b19 [ 963.502585] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 02:55:23 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 5) [ 963.504788] RSP: 002b:00007fa45f777188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 963.505869] RAX: ffffffffffffffda RBX: 00007fa462314f60 RCX: 00007fa462201b19 [ 963.506733] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 963.507184] FAULT_INJECTION: forcing a failure. [ 963.507184] name failslab, interval 1, probability 0, space 0, times 0 [ 963.507610] RBP: 00007fa45f7771d0 R08: 0000000000000000 R09: 0000000000000000 [ 963.507627] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 963.511878] R13: 00007ffc6547cc4f R14: 00007fa45f777300 R15: 0000000000022000 [ 963.512803] CPU: 0 PID: 7413 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 963.514374] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 963.516274] Call Trace: [ 963.516889] dump_stack+0x107/0x167 [ 963.517730] should_fail.cold+0x5/0xa [ 963.518602] ? create_object.isra.0+0x3a/0xa20 [ 963.519653] should_failslab+0x5/0x20 [ 963.520530] kmem_cache_alloc+0x5b/0x310 [ 963.521457] create_object.isra.0+0x3a/0xa20 [ 963.522455] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 963.523613] __kmalloc_node_track_caller+0x1a6/0x3b0 [ 963.524772] ? netlink_sendmsg+0x998/0xe00 [ 963.525739] __alloc_skb+0xb1/0x5b0 [ 963.526571] netlink_sendmsg+0x998/0xe00 [ 963.527505] ? netlink_unicast+0x800/0x800 [ 963.528491] ? netlink_unicast+0x800/0x800 [ 963.529455] __sock_sendmsg+0x154/0x190 [ 963.530365] ____sys_sendmsg+0x70d/0x870 [ 963.531291] ? sock_write_iter+0x3d0/0x3d0 [ 963.532250] ? do_recvmmsg+0x6d0/0x6d0 [ 963.533163] ? lock_downgrade+0x6d0/0x6d0 [ 963.534115] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 963.535313] ___sys_sendmsg+0xf3/0x170 [ 963.536205] ? sendmsg_copy_msghdr+0x160/0x160 [ 963.537256] ? __fget_files+0x2cf/0x520 [ 963.538160] ? lock_downgrade+0x6d0/0x6d0 [ 963.539106] ? find_held_lock+0x2c/0x110 [ 963.540040] ? __fget_files+0x2f8/0x520 [ 963.540966] ? __fget_light+0xea/0x290 [ 963.541857] __sys_sendmsg+0xe5/0x1b0 [ 963.542723] ? __sys_sendmsg_sock+0x40/0x40 [ 963.543703] ? rcu_read_lock_any_held+0x75/0xa0 [ 963.543739] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 963.545484] ? syscall_enter_from_user_mode+0x1d/0x50 [ 963.546663] do_syscall_64+0x33/0x40 [ 963.547514] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 963.548684] RIP: 0033:0x7faee752eb19 [ 963.549529] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 963.553800] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 963.555541] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 963.557161] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 963.558788] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 963.560419] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 963.562044] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 [ 963.579721] FAULT_INJECTION: forcing a failure. [ 963.579721] name failslab, interval 1, probability 0, space 0, times 0 [ 963.581094] CPU: 1 PID: 7420 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 963.581911] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 963.582883] Call Trace: [ 963.583197] dump_stack+0x107/0x167 [ 963.583632] should_fail.cold+0x5/0xa [ 963.584089] should_failslab+0x5/0x20 [ 963.584549] __kmalloc_node_track_caller+0x74/0x3b0 [ 963.585140] ? netlink_sendmsg+0x998/0xe00 [ 963.585643] __alloc_skb+0xb1/0x5b0 [ 963.586075] netlink_sendmsg+0x998/0xe00 [ 963.586556] ? netlink_unicast+0x800/0x800 [ 963.587067] ? netlink_unicast+0x800/0x800 [ 963.587575] __sock_sendmsg+0x154/0x190 [ 963.588048] ____sys_sendmsg+0x70d/0x870 [ 963.588541] ? sock_write_iter+0x3d0/0x3d0 [ 963.589038] ? do_recvmmsg+0x6d0/0x6d0 [ 963.589505] ? lock_downgrade+0x6d0/0x6d0 [ 963.589996] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 963.590626] ___sys_sendmsg+0xf3/0x170 [ 963.591092] ? sendmsg_copy_msghdr+0x160/0x160 [ 963.591630] ? __fget_files+0x2cf/0x520 [ 963.592101] ? lock_downgrade+0x6d0/0x6d0 [ 963.592594] ? find_held_lock+0x2c/0x110 [ 963.593081] ? __fget_files+0x2f8/0x520 [ 963.593560] ? __fget_light+0xea/0x290 [ 963.594025] __sys_sendmsg+0xe5/0x1b0 [ 963.594478] ? __sys_sendmsg_sock+0x40/0x40 [ 963.594991] ? rcu_read_lock_any_held+0x75/0xa0 [ 963.595551] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 963.596179] ? syscall_enter_from_user_mode+0x1d/0x50 [ 963.596797] do_syscall_64+0x33/0x40 [ 963.597241] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 963.597850] RIP: 0033:0x7f051132ab19 [ 963.598290] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 963.600471] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 963.601364] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 963.602207] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 963.603049] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 963.603887] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 963.604736] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 02:55:23 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 10) [ 963.637588] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 02:55:23 executing program 2: r0 = open(&(0x7f0000000140)='./file1\x00', 0x300, 0x38) r1 = openat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x25e103, 0x6) preadv(r1, 0x0, 0x0, 0x401, 0x0) inotify_add_watch(r1, &(0x7f00000000c0)='./file1\x00', 0x42000284) statx(0xffffffffffffffff, 0x0, 0x89449e2670c4c232, 0x400, &(0x7f0000000500)) lstat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000400)) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000680)={r0, 0x0, 0x7fff, 0x4}) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="00000000000000002eb4eb696c653200a398c5"]) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) [ 963.700196] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 963.732092] FAULT_INJECTION: forcing a failure. [ 963.732092] name failslab, interval 1, probability 0, space 0, times 0 [ 963.733566] CPU: 1 PID: 7429 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 963.734347] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 963.735285] Call Trace: [ 963.735606] dump_stack+0x107/0x167 [ 963.736044] should_fail.cold+0x5/0xa 02:55:23 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 6) [ 963.736508] ? create_object.isra.0+0x3a/0xa20 [ 963.737235] should_failslab+0x5/0x20 [ 963.737690] kmem_cache_alloc+0x5b/0x310 [ 963.738178] create_object.isra.0+0x3a/0xa20 [ 963.738698] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 963.739303] __kmalloc_node_track_caller+0x1a6/0x3b0 [ 963.739900] ? netlink_sendmsg+0x998/0xe00 [ 963.740407] __alloc_skb+0xb1/0x5b0 [ 963.740844] netlink_sendmsg+0x998/0xe00 [ 963.741331] ? netlink_unicast+0x800/0x800 [ 963.741837] ? netlink_unicast+0x800/0x800 [ 963.742336] __sock_sendmsg+0x154/0x190 [ 963.742804] ____sys_sendmsg+0x70d/0x870 [ 963.743282] ? sock_write_iter+0x3d0/0x3d0 [ 963.743777] ? do_recvmmsg+0x6d0/0x6d0 [ 963.744245] ? lock_downgrade+0x6d0/0x6d0 [ 963.744744] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 963.745361] ___sys_sendmsg+0xf3/0x170 [ 963.745834] ? sendmsg_copy_msghdr+0x160/0x160 [ 963.746377] ? __fget_files+0x2cf/0x520 [ 963.746846] ? lock_downgrade+0x6d0/0x6d0 [ 963.747336] ? find_held_lock+0x2c/0x110 [ 963.747824] ? __fget_files+0x2f8/0x520 [ 963.748300] ? __fget_light+0xea/0x290 [ 963.748762] __sys_sendmsg+0xe5/0x1b0 [ 963.749209] ? __sys_sendmsg_sock+0x40/0x40 [ 963.749717] ? rcu_read_lock_any_held+0x75/0xa0 [ 963.750278] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 963.750896] ? syscall_enter_from_user_mode+0x1d/0x50 [ 963.751503] do_syscall_64+0x33/0x40 [ 963.751946] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 963.752540] RIP: 0033:0x7f051132ab19 [ 963.752986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 963.754840] FAULT_INJECTION: forcing a failure. [ 963.754840] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 963.755115] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 963.755133] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 963.755151] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 963.760273] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 963.761099] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 963.761904] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 [ 963.762730] CPU: 0 PID: 7425 Comm: syz-executor.6 Not tainted 5.10.237 #1 [ 963.764303] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 963.766198] Call Trace: [ 963.766801] dump_stack+0x107/0x167 [ 963.767626] should_fail.cold+0x5/0xa [ 963.768503] __alloc_pages_nodemask+0x182/0x600 [ 963.769562] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 963.770946] ? __is_insn_slot_addr+0x14c/0x290 [ 963.771995] ? lock_chain_count+0x20/0x20 [ 963.772937] ? __kernel_text_address+0x9/0x40 [ 963.773960] ? unwind_get_return_address+0x55/0xa0 [ 963.775088] ? create_prof_cpu_mask+0x20/0x20 [ 963.776112] ? arch_stack_walk+0x99/0xf0 [ 963.777042] alloc_pages_current+0x187/0x280 [ 963.778037] kmalloc_order+0x35/0x160 [ 963.778914] kmalloc_order_trace+0x14/0xa0 [ 963.779888] wiphy_new_nm+0x6f3/0x1e00 [ 963.780794] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 963.781864] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 963.783058] ? __local_bh_enable_ip+0x9d/0x100 [ 963.784111] ? trace_hardirqs_on+0x5b/0x180 [ 963.785115] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 963.786248] ? ____sys_sendmsg+0x70d/0x870 [ 963.787199] ? ___sys_sendmsg+0xf3/0x170 [ 963.788131] ? __sys_sendmsg+0xe5/0x1b0 [ 963.789039] ? do_syscall_64+0x33/0x40 [ 963.789929] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 963.791128] ? lock_acquire+0x197/0x470 [ 963.792036] ? create_object.isra.0+0x3ad/0xa20 [ 963.793109] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 963.794170] ? __kmalloc+0x16e/0x390 [ 963.795015] hwsim_new_radio_nl+0x991/0x1080 [ 963.796018] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 963.797210] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 963.798707] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 963.800197] genl_family_rcv_msg_doit+0x22d/0x330 [ 963.801291] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 963.802776] ? cap_capable+0x1cd/0x230 [ 963.803662] ? ns_capable+0xe2/0x110 [ 963.804512] genl_rcv_msg+0x36a/0x5a0 [ 963.805373] ? genl_get_cmd+0x480/0x480 [ 963.806273] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 963.807443] ? lock_release+0x680/0x680 [ 963.808334] ? netlink_deliver_tap+0xf4/0xcc0 [ 963.809356] netlink_rcv_skb+0x14b/0x430 [ 963.810271] ? genl_get_cmd+0x480/0x480 [ 963.811183] ? netlink_ack+0xab0/0xab0 [ 963.812069] ? netlink_deliver_tap+0x1c4/0xcc0 [ 963.813131] ? is_vmalloc_addr+0x7b/0xb0 [ 963.814054] genl_rcv+0x24/0x40 [ 963.814798] netlink_unicast+0x54e/0x800 [ 963.815725] ? netlink_attachskb+0x870/0x870 [ 963.816743] netlink_sendmsg+0x90f/0xe00 [ 963.817674] ? netlink_unicast+0x800/0x800 [ 963.818647] ? netlink_unicast+0x800/0x800 [ 963.819599] __sock_sendmsg+0x154/0x190 [ 963.820518] ____sys_sendmsg+0x70d/0x870 [ 963.821441] ? sock_write_iter+0x3d0/0x3d0 [ 963.822402] ? do_recvmmsg+0x6d0/0x6d0 [ 963.823293] ? lock_downgrade+0x6d0/0x6d0 [ 963.824248] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 963.825456] ___sys_sendmsg+0xf3/0x170 [ 963.826345] ? sendmsg_copy_msghdr+0x160/0x160 [ 963.827397] ? __fget_files+0x2cf/0x520 [ 963.828302] ? lock_downgrade+0x6d0/0x6d0 [ 963.829251] ? find_held_lock+0x2c/0x110 [ 963.830189] ? __fget_files+0x2f8/0x520 [ 963.831096] ? __fget_light+0xea/0x290 [ 963.831990] __sys_sendmsg+0xe5/0x1b0 [ 963.832865] ? __sys_sendmsg_sock+0x40/0x40 [ 963.833851] ? rcu_read_lock_any_held+0x75/0xa0 [ 963.834925] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 963.836118] ? syscall_enter_from_user_mode+0x1d/0x50 [ 963.837301] do_syscall_64+0x33/0x40 [ 963.838146] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 963.839303] RIP: 0033:0x7fa462201b19 [ 963.840146] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 963.844303] RSP: 002b:00007fa45f777188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 963.846047] RAX: ffffffffffffffda RBX: 00007fa462314f60 RCX: 00007fa462201b19 [ 963.847676] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 963.849320] RBP: 00007fa45f7771d0 R08: 0000000000000000 R09: 0000000000000000 [ 963.850954] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 963.852597] R13: 00007ffc6547cc4f R14: 00007fa45f777300 R15: 0000000000022000 [ 963.903101] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. 02:55:37 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) socket$unix(0x1, 0x5, 0x0) [ 977.266204] FAULT_INJECTION: forcing a failure. [ 977.266204] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 977.267870] CPU: 0 PID: 7442 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 977.268752] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 977.269857] Call Trace: [ 977.270206] dump_stack+0x107/0x167 [ 977.270686] should_fail.cold+0x5/0xa [ 977.271186] _copy_from_iter_full+0x201/0xa60 [ 977.271778] ? __virt_addr_valid+0x170/0x5d0 [ 977.272368] ? __check_object_size+0x319/0x440 [ 977.272983] netlink_sendmsg+0x879/0xe00 [ 977.273526] ? netlink_unicast+0x800/0x800 [ 977.274087] ? netlink_unicast+0x800/0x800 [ 977.274643] __sock_sendmsg+0x154/0x190 [ 977.275173] ____sys_sendmsg+0x70d/0x870 [ 977.275709] ? sock_write_iter+0x3d0/0x3d0 [ 977.276270] ? do_recvmmsg+0x6d0/0x6d0 [ 977.276798] ? lock_downgrade+0x6d0/0x6d0 [ 977.277357] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 977.278048] ___sys_sendmsg+0xf3/0x170 [ 977.278566] ? sendmsg_copy_msghdr+0x160/0x160 [ 977.279182] ? __fget_files+0x2cf/0x520 [ 977.279700] ? lock_downgrade+0x6d0/0x6d0 [ 977.280246] ? find_held_lock+0x2c/0x110 [ 977.280787] ? __fget_files+0x2f8/0x520 [ 977.281307] ? __fget_light+0xea/0x290 [ 977.281823] __sys_sendmsg+0xe5/0x1b0 [ 977.282329] ? __sys_sendmsg_sock+0x40/0x40 [ 977.282889] ? rcu_read_lock_any_held+0x75/0xa0 [ 977.283499] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 977.284189] ? syscall_enter_from_user_mode+0x1d/0x50 [ 977.284889] do_syscall_64+0x33/0x40 [ 977.285387] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 977.286041] RIP: 0033:0x7f051132ab19 [ 977.286524] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 977.288924] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 977.289899] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 977.290836] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 977.291759] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 977.292709] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 977.293633] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 02:55:37 executing program 5: r0 = open(&(0x7f0000000140)='./file1\x00', 0x300, 0x38) r1 = openat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x25e103, 0x6) preadv(r1, 0x0, 0x0, 0x401, 0x0) inotify_add_watch(r1, &(0x7f00000000c0)='./file1\x00', 0x42000284) statx(0xffffffffffffffff, 0x0, 0x89449e2670c4c232, 0x400, &(0x7f0000000500)) lstat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000400)) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000680)={r0, 0x0, 0x7fff, 0x4}) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="00000000000000002eb4eb696c653200a398c5"]) move_mount(0xffffffffffffffff, &(0x7f0000000380)='./file0\x00', r0, &(0x7f00000003c0)='./file1\x00', 0x0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r0, 0x4, 0x937, 0x1, 0x3}) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:55:37 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 7) 02:55:37 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 11) 02:55:37 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 02:55:37 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 7) 02:55:37 executing program 0: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/class/spi_transport', 0x0, 0x0) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r1, &(0x7f0000000180)=""/198, 0xc6) read(r1, &(0x7f0000000040)=""/143, 0x8f) 02:55:37 executing program 2: r0 = open(&(0x7f0000000140)='./file1\x00', 0x300, 0x38) r1 = openat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x25e103, 0x6) preadv(r1, 0x0, 0x0, 0x401, 0x0) inotify_add_watch(r1, &(0x7f00000000c0)='./file1\x00', 0x42000284) statx(0xffffffffffffffff, 0x0, 0x89449e2670c4c232, 0x400, &(0x7f0000000500)) lstat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000400)) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000680)={r0, 0x0, 0x7fff, 0x4}) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) [ 977.313018] FAULT_INJECTION: forcing a failure. [ 977.313018] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 977.315877] CPU: 1 PID: 7453 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 977.317328] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 977.319082] Call Trace: [ 977.319644] dump_stack+0x107/0x167 [ 977.320416] should_fail.cold+0x5/0xa [ 977.321241] _copy_from_iter_full+0x201/0xa60 [ 977.322198] ? __virt_addr_valid+0x170/0x5d0 [ 977.323137] ? __check_object_size+0x319/0x440 [ 977.324112] netlink_sendmsg+0x879/0xe00 [ 977.324995] ? netlink_unicast+0x800/0x800 [ 977.325897] ? netlink_unicast+0x800/0x800 [ 977.326795] __sock_sendmsg+0x154/0x190 [ 977.327636] ____sys_sendmsg+0x70d/0x870 [ 977.328503] ? sock_write_iter+0x3d0/0x3d0 [ 977.329397] ? do_recvmmsg+0x6d0/0x6d0 [ 977.330224] ? lock_downgrade+0x6d0/0x6d0 [ 977.331101] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 977.332208] ___sys_sendmsg+0xf3/0x170 [ 977.333040] ? sendmsg_copy_msghdr+0x160/0x160 [ 977.334006] ? __fget_files+0x2cf/0x520 [ 977.334843] ? lock_downgrade+0x6d0/0x6d0 [ 977.335718] ? find_held_lock+0x2c/0x110 [ 977.336591] ? __fget_files+0x2f8/0x520 [ 977.337434] ? __fget_light+0xea/0x290 [ 977.338262] __sys_sendmsg+0xe5/0x1b0 [ 977.339073] ? __sys_sendmsg_sock+0x40/0x40 [ 977.339982] ? rcu_read_lock_any_held+0x75/0xa0 [ 977.340990] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 977.342098] ? syscall_enter_from_user_mode+0x1d/0x50 [ 977.343191] do_syscall_64+0x33/0x40 [ 977.343982] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 977.345077] RIP: 0033:0x7faee752eb19 [ 977.345860] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 977.349766] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 977.351362] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 977.352871] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 977.354372] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 977.355868] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 977.357375] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 02:55:37 executing program 0: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/class/spi_transport', 0x0, 0x0) r1 = socket$inet6_icmp(0xa, 0x2, 0x3a) ioctl$FICLONERANGE(r0, 0x4020940d, &(0x7f0000000040)={{r1}, 0x3, 0x3f, 0x5}) r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x4000, @fd_index=0x9, 0x7f, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) syz_io_uring_submit(r5, r4, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r6, &(0x7f0000000180)=""/198, 0xc6) readahead(r6, 0xddd, 0x40) syz_io_uring_submit(0x0, r4, &(0x7f0000000140)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x4, 0x0, r1, 0x0, &(0x7f0000000080)="354c0e0afac9d80d758ed8bf52f508cd9b814d8d4fa4b5126095d5d9c870e55b4d2427d5fd395245b9eb7c25874935b9ae37e296e37cc6d0d8bc966b211e61987f95a94d4cf89c598a898c56722e2ca46bbdf1a57ce8dc4e7c580fba90553ea7ff27b3d39775280d758e0f05e7db62357e923f865b2920f6eb5244cb72793ecc90b5d5ccd28979226a0fb3d0c9d725132b2808c50ecc4a3e90aa4e82d530bc03936e4392564044e8d35b312f06c039ba15abefc5893f", 0xb6, 0x2, 0x169a656e3eb2dcca}, 0x10000) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) 02:55:37 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 02:55:37 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 8) 02:55:37 executing program 0: openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/class/spi_transport', 0x0, 0x0) 02:55:37 executing program 0: ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(0xffffffffffffffff, 0xc0605345, &(0x7f0000000080)={0xffffffff, 0x1, {0x3, 0x3, 0x3, 0x0, 0x8f27}, 0x7fff}) r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000340), 0x5c3002, 0x0) sendfile(r0, 0xffffffffffffffff, &(0x7f0000000380)=0x4, 0x80) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/class/spi_transport', 0x0, 0x20) fstatfs(r1, &(0x7f0000000280)=""/184) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/class/ieee80211', 0xd4c2, 0x0) getdents(r2, &(0x7f0000000180)=""/198, 0xc6) ioctl$F2FS_IOC_GET_COMPRESS_BLOCKS(r2, 0x8008f511, &(0x7f0000000040)) getdents(r1, &(0x7f0000000180)=""/198, 0xc6) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r2, 0x4040534e, &(0x7f0000000100)={0x9a, @tick=0x8, 0x7, {0x0, 0x8}, 0x5, 0x2, 0x3}) 02:55:37 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 8) 02:55:37 executing program 5: r0 = open(&(0x7f0000000140)='./file1\x00', 0x300, 0x38) r1 = openat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x25e103, 0x6) preadv(r1, 0x0, 0x0, 0x401, 0x0) inotify_add_watch(r1, &(0x7f00000000c0)='./file1\x00', 0x42000284) statx(0xffffffffffffffff, 0x0, 0x89449e2670c4c232, 0x400, &(0x7f0000000500)) lstat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000400)) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000680)={r0, 0x0, 0x7fff, 0x4}) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="00000000000000002eb4eb696c653200a398c5"]) move_mount(0xffffffffffffffff, &(0x7f0000000380)='./file0\x00', r0, &(0x7f00000003c0)='./file1\x00', 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) [ 977.497956] FAULT_INJECTION: forcing a failure. [ 977.497956] name failslab, interval 1, probability 0, space 0, times 0 [ 977.499419] CPU: 0 PID: 7455 Comm: syz-executor.6 Not tainted 5.10.237 #1 [ 977.500252] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 977.501279] Call Trace: [ 977.501606] dump_stack+0x107/0x167 [ 977.502059] should_fail.cold+0x5/0xa [ 977.502528] ? create_object.isra.0+0x3a/0xa20 [ 977.503087] should_failslab+0x5/0x20 [ 977.503551] kmem_cache_alloc+0x5b/0x310 [ 977.504052] create_object.isra.0+0x3a/0xa20 [ 977.504592] ? kasan_unpoison_shadow+0x33/0x50 [ 977.505149] kmalloc_order+0xfe/0x160 [ 977.505616] kmalloc_order_trace+0x14/0xa0 [ 977.506140] wiphy_new_nm+0x6f3/0x1e00 [ 977.506624] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 977.507194] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 977.507842] ? __local_bh_enable_ip+0x9d/0x100 [ 977.508400] ? trace_hardirqs_on+0x5b/0x180 [ 977.508958] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 977.509555] ? ____sys_sendmsg+0x70d/0x870 [ 977.510075] ? ___sys_sendmsg+0xf3/0x170 [ 977.510567] ? __sys_sendmsg+0xe5/0x1b0 [ 977.511062] ? do_syscall_64+0x33/0x40 [ 977.511542] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 977.512201] ? lock_acquire+0x197/0x470 [ 977.512691] ? create_object.isra.0+0x3ad/0xa20 [ 977.513267] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 977.513834] ? __kmalloc+0x16e/0x390 [ 977.514298] hwsim_new_radio_nl+0x991/0x1080 [ 977.514835] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 977.515480] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 977.516279] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 977.517087] genl_family_rcv_msg_doit+0x22d/0x330 [ 977.517674] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 977.518487] ? cap_capable+0x1cd/0x230 [ 977.518967] ? ns_capable+0xe2/0x110 [ 977.519421] genl_rcv_msg+0x36a/0x5a0 [ 977.519896] ? genl_get_cmd+0x480/0x480 [ 977.520381] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 977.521022] ? lock_release+0x680/0x680 [ 977.521510] ? netlink_deliver_tap+0xf4/0xcc0 [ 977.522062] netlink_rcv_skb+0x14b/0x430 [ 977.522554] ? genl_get_cmd+0x480/0x480 [ 977.523039] ? netlink_ack+0xab0/0xab0 [ 977.523515] ? netlink_deliver_tap+0x1c4/0xcc0 [ 977.524068] ? is_vmalloc_addr+0x7b/0xb0 [ 977.524565] genl_rcv+0x24/0x40 [ 977.524964] netlink_unicast+0x54e/0x800 [ 977.525456] ? netlink_attachskb+0x870/0x870 [ 977.525995] netlink_sendmsg+0x90f/0xe00 [ 977.526504] ? netlink_unicast+0x800/0x800 [ 977.527025] ? netlink_unicast+0x800/0x800 [ 977.527536] __sock_sendmsg+0x154/0x190 [ 977.528027] ____sys_sendmsg+0x70d/0x870 [ 977.528535] ? sock_write_iter+0x3d0/0x3d0 [ 977.529046] ? do_recvmmsg+0x6d0/0x6d0 [ 977.529518] ? lock_downgrade+0x6d0/0x6d0 [ 977.530022] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 977.530660] ___sys_sendmsg+0xf3/0x170 [ 977.531137] ? sendmsg_copy_msghdr+0x160/0x160 [ 977.531691] ? __fget_files+0x2cf/0x520 [ 977.532173] ? lock_downgrade+0x6d0/0x6d0 [ 977.532683] ? find_held_lock+0x2c/0x110 [ 977.533181] ? __fget_files+0x2f8/0x520 [ 977.533669] ? __fget_light+0xea/0x290 [ 977.534147] __sys_sendmsg+0xe5/0x1b0 [ 977.534605] ? __sys_sendmsg_sock+0x40/0x40 [ 977.535132] ? rcu_read_lock_any_held+0x75/0xa0 [ 977.535702] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 977.536336] ? syscall_enter_from_user_mode+0x1d/0x50 [ 977.536983] do_syscall_64+0x33/0x40 [ 977.537435] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 977.538068] RIP: 0033:0x7fa462201b19 [ 977.538520] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 977.540770] RSP: 002b:00007fa45f777188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 977.541696] RAX: ffffffffffffffda RBX: 00007fa462314f60 RCX: 00007fa462201b19 [ 977.542570] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 977.543446] RBP: 00007fa45f7771d0 R08: 0000000000000000 R09: 0000000000000000 [ 977.544306] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 977.545178] R13: 00007ffc6547cc4f R14: 00007fa45f777300 R15: 0000000000022000 02:55:37 executing program 2: open(&(0x7f0000000140)='./file1\x00', 0x300, 0x38) r0 = openat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x25e103, 0x6) preadv(r0, 0x0, 0x0, 0x401, 0x0) inotify_add_watch(r0, &(0x7f00000000c0)='./file1\x00', 0x42000284) statx(0xffffffffffffffff, 0x0, 0x89449e2670c4c232, 0x400, &(0x7f0000000500)) lstat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000400)) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) [ 977.568156] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 02:55:37 executing program 0: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/spi_transport', 0x141000, 0x0) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) [ 977.613174] FAULT_INJECTION: forcing a failure. [ 977.613174] name failslab, interval 1, probability 0, space 0, times 0 [ 977.614594] CPU: 0 PID: 7464 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 977.615433] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 977.616449] Call Trace: [ 977.616784] dump_stack+0x107/0x167 [ 977.617249] should_fail.cold+0x5/0xa [ 977.617718] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xdb/0x280 [ 977.618528] should_failslab+0x5/0x20 [ 977.619001] __kmalloc+0x72/0x390 [ 977.619429] genl_family_rcv_msg_attrs_parse.constprop.0+0xdb/0x280 [ 977.620218] genl_family_rcv_msg_doit+0xda/0x330 [ 977.620819] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 977.621621] ? cap_capable+0x1cd/0x230 [ 977.622098] ? security_capable+0x95/0xc0 [ 977.622605] ? ns_capable+0xe2/0x110 [ 977.623071] genl_rcv_msg+0x36a/0x5a0 [ 977.623534] ? genl_get_cmd+0x480/0x480 [ 977.624033] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 977.624674] ? lock_release+0x680/0x680 [ 977.625156] ? netlink_deliver_tap+0xf4/0xcc0 [ 977.625704] netlink_rcv_skb+0x14b/0x430 [ 977.626205] ? genl_get_cmd+0x480/0x480 [ 977.626691] ? netlink_ack+0xab0/0xab0 [ 977.627183] ? netlink_deliver_tap+0x1c4/0xcc0 [ 977.627740] ? is_vmalloc_addr+0x7b/0xb0 [ 977.628232] genl_rcv+0x24/0x40 [ 977.628636] netlink_unicast+0x54e/0x800 [ 977.629131] ? netlink_attachskb+0x870/0x870 [ 977.629669] netlink_sendmsg+0x90f/0xe00 [ 977.630165] ? netlink_unicast+0x800/0x800 [ 977.630697] ? netlink_unicast+0x800/0x800 [ 977.631213] __sock_sendmsg+0x154/0x190 [ 977.631701] ____sys_sendmsg+0x70d/0x870 [ 977.632196] ? sock_write_iter+0x3d0/0x3d0 [ 977.632713] ? do_recvmmsg+0x6d0/0x6d0 [ 977.633193] ? lock_downgrade+0x6d0/0x6d0 [ 977.633697] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 977.634336] ___sys_sendmsg+0xf3/0x170 [ 977.634808] ? sendmsg_copy_msghdr+0x160/0x160 [ 977.635364] ? __fget_files+0x2cf/0x520 [ 977.635849] ? lock_downgrade+0x6d0/0x6d0 [ 977.636361] ? find_held_lock+0x2c/0x110 [ 977.636871] ? __fget_files+0x2f8/0x520 [ 977.637356] ? __fget_light+0xea/0x290 [ 977.637835] __sys_sendmsg+0xe5/0x1b0 [ 977.638303] ? __sys_sendmsg_sock+0x40/0x40 [ 977.638825] ? rcu_read_lock_any_held+0x75/0xa0 [ 977.639401] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 977.640038] ? syscall_enter_from_user_mode+0x1d/0x50 [ 977.640669] do_syscall_64+0x33/0x40 [ 977.641120] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 977.641739] RIP: 0033:0x7f051132ab19 [ 977.642208] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 977.644454] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 977.645378] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 977.646247] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 977.647111] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 977.647972] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 977.648840] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 [ 977.649863] FAULT_INJECTION: forcing a failure. [ 977.649863] name failslab, interval 1, probability 0, space 0, times 0 [ 977.652277] CPU: 1 PID: 7472 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 977.653727] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 977.655472] Call Trace: [ 977.656028] dump_stack+0x107/0x167 [ 977.656805] should_fail.cold+0x5/0xa 02:55:37 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 12) [ 977.657615] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xdb/0x280 [ 977.659119] should_failslab+0x5/0x20 [ 977.659921] __kmalloc+0x72/0x390 [ 977.660670] genl_family_rcv_msg_attrs_parse.constprop.0+0xdb/0x280 [ 977.662012] genl_family_rcv_msg_doit+0xda/0x330 [ 977.663009] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 977.664392] ? cap_capable+0x1cd/0x230 [ 977.665225] ? security_capable+0x95/0xc0 [ 977.666106] ? ns_capable+0xe2/0x110 [ 977.666895] genl_rcv_msg+0x36a/0x5a0 [ 977.667698] ? genl_get_cmd+0x480/0x480 [ 977.668549] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 977.669643] ? lock_release+0x680/0x680 02:55:37 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x4, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 977.670477] ? netlink_deliver_tap+0xf4/0xcc0 [ 977.671512] netlink_rcv_skb+0x14b/0x430 [ 977.672365] ? genl_get_cmd+0x480/0x480 [ 977.673214] ? netlink_ack+0xab0/0xab0 [ 977.674044] ? netlink_deliver_tap+0x1c4/0xcc0 [ 977.675002] ? is_vmalloc_addr+0x7b/0xb0 [ 977.675860] genl_rcv+0x24/0x40 [ 977.676560] netlink_unicast+0x54e/0x800 [ 977.677419] ? netlink_attachskb+0x870/0x870 [ 977.678355] netlink_sendmsg+0x90f/0xe00 [ 977.679227] ? netlink_unicast+0x800/0x800 [ 977.680135] ? netlink_unicast+0x800/0x800 [ 977.681033] __sock_sendmsg+0x154/0x190 [ 977.681870] ____sys_sendmsg+0x70d/0x870 [ 977.682730] ? sock_write_iter+0x3d0/0x3d0 [ 977.683617] ? do_recvmmsg+0x6d0/0x6d0 [ 977.684441] ? lock_downgrade+0x6d0/0x6d0 [ 977.685325] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 977.686431] ___sys_sendmsg+0xf3/0x170 [ 977.687259] ? sendmsg_copy_msghdr+0x160/0x160 [ 977.688237] ? __fget_files+0x2cf/0x520 [ 977.689081] ? lock_downgrade+0x6d0/0x6d0 [ 977.689956] ? find_held_lock+0x2c/0x110 [ 977.690819] ? __fget_files+0x2f8/0x520 [ 977.691662] ? __fget_light+0xea/0x290 [ 977.692496] __sys_sendmsg+0xe5/0x1b0 [ 977.693309] ? __sys_sendmsg_sock+0x40/0x40 [ 977.694216] ? rcu_read_lock_any_held+0x75/0xa0 [ 977.695213] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 977.696321] ? syscall_enter_from_user_mode+0x1d/0x50 [ 977.697421] do_syscall_64+0x33/0x40 [ 977.698205] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 977.699283] RIP: 0033:0x7faee752eb19 [ 977.700069] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 977.703948] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 977.705551] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 977.707047] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 977.708545] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 977.710040] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 977.711538] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 [ 977.790500] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. [ 977.847305] FAULT_INJECTION: forcing a failure. [ 977.847305] name failslab, interval 1, probability 0, space 0, times 0 [ 977.848879] CPU: 0 PID: 7483 Comm: syz-executor.6 Not tainted 5.10.237 #1 [ 977.849706] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 977.850731] Call Trace: [ 977.851059] dump_stack+0x107/0x167 [ 977.851510] should_fail.cold+0x5/0xa [ 977.851987] should_failslab+0x5/0x20 [ 977.852451] __kmalloc_track_caller+0x79/0x370 [ 977.853016] ? kvasprintf_const+0x60/0x1a0 [ 977.853536] kvasprintf+0xb5/0x150 [ 977.853971] ? bust_spinlocks+0xe0/0xe0 [ 977.854460] ? lock_release+0x680/0x680 [ 977.854951] ? find_held_lock+0x2c/0x110 [ 977.855458] kvasprintf_const+0x60/0x1a0 [ 977.855961] kobject_set_name_vargs+0x56/0x150 [ 977.856525] dev_set_name+0xbb/0xf0 [ 977.856979] ? device_initialize+0x620/0x620 [ 977.857512] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 977.858159] ? kmalloc_order+0xfe/0x160 [ 977.858651] wiphy_new_nm+0x805/0x1e00 [ 977.859125] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 977.859703] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 977.860342] ? __local_bh_enable_ip+0x9d/0x100 [ 977.860920] ? trace_hardirqs_on+0x5b/0x180 [ 977.861455] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 977.862056] ? ____sys_sendmsg+0x70d/0x870 [ 977.862568] ? ___sys_sendmsg+0xf3/0x170 [ 977.863067] ? __sys_sendmsg+0xe5/0x1b0 [ 977.863549] ? do_syscall_64+0x33/0x40 [ 977.864022] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 977.864686] ? lock_acquire+0x197/0x470 [ 977.865170] ? create_object.isra.0+0x3ad/0xa20 [ 977.865752] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 977.866317] ? __kmalloc+0x16e/0x390 [ 977.866786] hwsim_new_radio_nl+0x991/0x1080 [ 977.867323] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 977.867960] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 977.868765] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 977.869571] genl_family_rcv_msg_doit+0x22d/0x330 [ 977.870159] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 977.870975] ? cap_capable+0x1cd/0x230 [ 977.871454] ? ns_capable+0xe2/0x110 [ 977.871910] genl_rcv_msg+0x36a/0x5a0 [ 977.872374] ? genl_get_cmd+0x480/0x480 [ 977.872861] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 977.873488] ? lock_release+0x680/0x680 [ 977.873966] ? netlink_deliver_tap+0xf4/0xcc0 [ 977.874509] netlink_rcv_skb+0x14b/0x430 [ 977.874998] ? genl_get_cmd+0x480/0x480 [ 977.875480] ? netlink_ack+0xab0/0xab0 [ 977.875955] ? netlink_deliver_tap+0x1c4/0xcc0 [ 977.876516] ? is_vmalloc_addr+0x7b/0xb0 [ 977.877005] genl_rcv+0x24/0x40 [ 977.877402] netlink_unicast+0x54e/0x800 [ 977.877895] ? netlink_attachskb+0x870/0x870 [ 977.878432] netlink_sendmsg+0x90f/0xe00 [ 977.878926] ? netlink_unicast+0x800/0x800 [ 977.879447] ? netlink_unicast+0x800/0x800 [ 977.879959] __sock_sendmsg+0x154/0x190 [ 977.880441] ____sys_sendmsg+0x70d/0x870 [ 977.880942] ? sock_write_iter+0x3d0/0x3d0 [ 977.881459] ? do_recvmmsg+0x6d0/0x6d0 [ 977.881938] ? lock_downgrade+0x6d0/0x6d0 [ 977.882447] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 977.883085] ___sys_sendmsg+0xf3/0x170 [ 977.883559] ? sendmsg_copy_msghdr+0x160/0x160 [ 977.884114] ? __fget_files+0x2cf/0x520 [ 977.884602] ? lock_downgrade+0x6d0/0x6d0 [ 977.885110] ? find_held_lock+0x2c/0x110 [ 977.885614] ? __fget_files+0x2f8/0x520 [ 977.886099] ? __fget_light+0xea/0x290 [ 977.886575] __sys_sendmsg+0xe5/0x1b0 [ 977.887037] ? __sys_sendmsg_sock+0x40/0x40 [ 977.887560] ? rcu_read_lock_any_held+0x75/0xa0 [ 977.888132] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 977.888777] ? syscall_enter_from_user_mode+0x1d/0x50 [ 977.889404] do_syscall_64+0x33/0x40 [ 977.889864] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 977.890483] RIP: 0033:0x7fa462201b19 [ 977.890934] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 977.893173] RSP: 002b:00007fa45f777188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 977.894092] RAX: ffffffffffffffda RBX: 00007fa462314f60 RCX: 00007fa462201b19 [ 977.894953] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 977.895818] RBP: 00007fa45f7771d0 R08: 0000000000000000 R09: 0000000000000000 [ 977.896687] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 977.897555] R13: 00007ffc6547cc4f R14: 00007fa45f777300 R15: 0000000000022000 02:55:52 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 9) 02:55:52 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 02:55:52 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 13) 02:55:52 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 9) 02:55:52 executing program 0: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/class/spi_transport', 0x0, 0x0) fcntl$setownex(r0, 0xf, &(0x7f0000000040)={0x2, 0xffffffffffffffff}) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) 02:55:52 executing program 5: r0 = open(&(0x7f0000000140)='./file1\x00', 0x300, 0x38) r1 = openat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x25e103, 0x6) preadv(r1, 0x0, 0x0, 0x401, 0x0) inotify_add_watch(r1, &(0x7f00000000c0)='./file1\x00', 0x42000284) statx(0xffffffffffffffff, 0x0, 0x89449e2670c4c232, 0x400, &(0x7f0000000500)) lstat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000400)) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000680)={r0, 0x0, 0x7fff, 0x4}) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYBLOB="00000000000000002eb4eb696c653200a398c5"]) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:55:52 executing program 2: open(&(0x7f0000000140)='./file1\x00', 0x300, 0x38) r0 = openat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x25e103, 0x6) preadv(r0, 0x0, 0x0, 0x401, 0x0) inotify_add_watch(r0, &(0x7f00000000c0)='./file1\x00', 0x42000284) statx(0xffffffffffffffff, 0x0, 0x89449e2670c4c232, 0x400, &(0x7f0000000500)) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:55:52 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x5, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 02:55:52 executing program 0: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/class/spi_transport', 0x0, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) 02:55:52 executing program 0: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/class/spi_transport', 0x0, 0x0) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) ftruncate(r0, 0x10001) 02:55:52 executing program 5: r0 = open(&(0x7f0000000140)='./file1\x00', 0x300, 0x38) r1 = openat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x25e103, 0x6) preadv(r1, 0x0, 0x0, 0x401, 0x0) inotify_add_watch(r1, &(0x7f00000000c0)='./file1\x00', 0x42000284) statx(0xffffffffffffffff, 0x0, 0x89449e2670c4c232, 0x400, &(0x7f0000000500)) lstat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000400)) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000680)={r0, 0x0, 0x7fff, 0x4}) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) [ 992.391619] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. [ 992.448693] FAULT_INJECTION: forcing a failure. 02:55:52 executing program 2: open(&(0x7f0000000140)='./file1\x00', 0x300, 0x38) r0 = openat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x25e103, 0x6) preadv(r0, 0x0, 0x0, 0x401, 0x0) inotify_add_watch(r0, &(0x7f00000000c0)='./file1\x00', 0x42000284) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) [ 992.448693] name failslab, interval 1, probability 0, space 0, times 0 [ 992.451632] CPU: 0 PID: 7499 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 992.453203] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 992.455103] Call Trace: [ 992.455712] dump_stack+0x107/0x167 [ 992.456544] should_fail.cold+0x5/0xa [ 992.457423] ? create_object.isra.0+0x3a/0xa20 [ 992.458485] should_failslab+0x5/0x20 [ 992.459350] kmem_cache_alloc+0x5b/0x310 [ 992.460293] create_object.isra.0+0x3a/0xa20 [ 992.461326] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 992.462507] __kmalloc+0x16e/0x390 [ 992.463323] genl_family_rcv_msg_attrs_parse.constprop.0+0xdb/0x280 02:55:52 executing program 0: openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x701940, 0x50) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="050000000000000000000200000008000300", @ANYRES32=r2, @ANYBLOB='\f\x00@'], 0x30}}, 0x0) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r3, &(0x7f0000000180)=""/198, 0xc6) sendmsg$NL80211_CMD_GET_MESH_CONFIG(r3, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000300)={&(0x7f0000000340)={0x28, r1, 0x300, 0x70bd28, 0x25dfdbfb, {{}, {@val={0x8}, @val={0xc, 0x99, {0x4, 0x47}}}}, ["", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x48814}, 0x20004015) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/class/spi_transport', 0x101001, 0x0) r5 = accept4$unix(r4, &(0x7f0000000040), &(0x7f00000000c0)=0x6e, 0x800) ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f0000000100)={'vxcan0\x00'}) getdents(r4, &(0x7f0000000180)=""/198, 0xc6) [ 992.464801] genl_family_rcv_msg_doit+0xda/0x330 [ 992.465918] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 992.467443] ? cap_capable+0x1cd/0x230 [ 992.468342] ? security_capable+0x95/0xc0 [ 992.469307] ? ns_capable+0xe2/0x110 [ 992.470172] genl_rcv_msg+0x36a/0x5a0 [ 992.471051] ? genl_get_cmd+0x480/0x480 [ 992.471959] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 992.473150] ? lock_release+0x680/0x680 [ 992.474058] ? netlink_deliver_tap+0xf4/0xcc0 [ 992.475095] netlink_rcv_skb+0x14b/0x430 [ 992.476024] ? genl_get_cmd+0x480/0x480 [ 992.476938] ? netlink_ack+0xab0/0xab0 [ 992.477833] ? netlink_deliver_tap+0x1c4/0xcc0 [ 992.478864] ? is_vmalloc_addr+0x7b/0xb0 [ 992.479785] genl_rcv+0x24/0x40 [ 992.480526] netlink_unicast+0x54e/0x800 [ 992.481451] ? netlink_attachskb+0x870/0x870 [ 992.482455] netlink_sendmsg+0x90f/0xe00 [ 992.483378] ? netlink_unicast+0x800/0x800 [ 992.484346] ? netlink_unicast+0x800/0x800 [ 992.485302] __sock_sendmsg+0x154/0x190 [ 992.486204] ____sys_sendmsg+0x70d/0x870 [ 992.487125] ? sock_write_iter+0x3d0/0x3d0 [ 992.488078] ? do_recvmmsg+0x6d0/0x6d0 [ 992.488965] ? lock_downgrade+0x6d0/0x6d0 [ 992.489899] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 992.491084] ___sys_sendmsg+0xf3/0x170 [ 992.491966] ? sendmsg_copy_msghdr+0x160/0x160 [ 992.493016] ? __fget_files+0x2cf/0x520 [ 992.493920] ? lock_downgrade+0x6d0/0x6d0 [ 992.494858] ? find_held_lock+0x2c/0x110 [ 992.495796] ? __fget_files+0x2f8/0x520 [ 992.496707] ? __fget_light+0xea/0x290 [ 992.497595] __sys_sendmsg+0xe5/0x1b0 [ 992.498466] ? __sys_sendmsg_sock+0x40/0x40 [ 992.499431] ? rcu_read_lock_any_held+0x75/0xa0 [ 992.500494] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 992.501677] ? syscall_enter_from_user_mode+0x1d/0x50 [ 992.502843] do_syscall_64+0x33/0x40 [ 992.503686] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 992.504847] RIP: 0033:0x7faee752eb19 [ 992.505687] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 992.509842] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 992.511553] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 992.513173] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 992.514775] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 992.516386] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 992.518007] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 [ 992.519735] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 992.570324] FAULT_INJECTION: forcing a failure. [ 992.570324] name failslab, interval 1, probability 0, space 0, times 0 [ 992.573033] CPU: 0 PID: 7504 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 992.574586] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 992.576484] Call Trace: [ 992.577089] dump_stack+0x107/0x167 [ 992.577924] should_fail.cold+0x5/0xa [ 992.578788] ? create_object.isra.0+0x3a/0xa20 [ 992.579832] should_failslab+0x5/0x20 [ 992.580709] kmem_cache_alloc+0x5b/0x310 [ 992.581626] ? __mutex_lock+0x5af/0x10b0 [ 992.582554] create_object.isra.0+0x3a/0xa20 [ 992.583556] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 992.584721] __kmalloc+0x16e/0x390 [ 992.585542] genl_family_rcv_msg_attrs_parse.constprop.0+0xdb/0x280 [ 992.586988] genl_family_rcv_msg_doit+0xda/0x330 [ 992.588066] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 992.589587] ? cap_capable+0x1cd/0x230 [ 992.590474] ? security_capable+0x95/0xc0 [ 992.591420] ? ns_capable+0xe2/0x110 [ 992.592275] genl_rcv_msg+0x36a/0x5a0 [ 992.593152] ? genl_get_cmd+0x480/0x480 [ 992.594056] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 992.595235] ? lock_release+0x680/0x680 [ 992.596141] ? netlink_deliver_tap+0xf4/0xcc0 [ 992.597180] netlink_rcv_skb+0x14b/0x430 [ 992.598108] ? genl_get_cmd+0x480/0x480 [ 992.599028] ? netlink_ack+0xab0/0xab0 [ 992.599924] ? netlink_deliver_tap+0x1c4/0xcc0 [ 992.600967] ? is_vmalloc_addr+0x7b/0xb0 [ 992.601898] genl_rcv+0x24/0x40 [ 992.602653] netlink_unicast+0x54e/0x800 [ 992.603582] ? netlink_attachskb+0x870/0x870 [ 992.604596] netlink_sendmsg+0x90f/0xe00 [ 992.605544] ? netlink_unicast+0x800/0x800 [ 992.606518] ? netlink_unicast+0x800/0x800 [ 992.607489] __sock_sendmsg+0x154/0x190 [ 992.608402] ____sys_sendmsg+0x70d/0x870 [ 992.609338] ? sock_write_iter+0x3d0/0x3d0 [ 992.610311] ? do_recvmmsg+0x6d0/0x6d0 [ 992.611207] ? lock_downgrade+0x6d0/0x6d0 [ 992.612165] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 992.613378] ___sys_sendmsg+0xf3/0x170 [ 992.614264] ? sendmsg_copy_msghdr+0x160/0x160 [ 992.615309] ? __fget_files+0x2cf/0x520 [ 992.616206] ? lock_downgrade+0x6d0/0x6d0 [ 992.617159] ? find_held_lock+0x2c/0x110 [ 992.618090] ? __fget_files+0x2f8/0x520 [ 992.619011] ? __fget_light+0xea/0x290 [ 992.619906] __sys_sendmsg+0xe5/0x1b0 [ 992.620777] ? __sys_sendmsg_sock+0x40/0x40 [ 992.621754] ? rcu_read_lock_any_held+0x75/0xa0 [ 992.622833] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 992.624024] ? syscall_enter_from_user_mode+0x1d/0x50 [ 992.625225] do_syscall_64+0x33/0x40 [ 992.626073] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 992.627232] RIP: 0033:0x7f051132ab19 [ 992.628080] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 992.632270] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 992.634013] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 992.635641] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 992.637277] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 992.638899] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 992.640530] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 [ 992.643203] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 992.681068] FAULT_INJECTION: forcing a failure. [ 992.681068] name failslab, interval 1, probability 0, space 0, times 0 [ 992.683747] CPU: 0 PID: 7509 Comm: syz-executor.6 Not tainted 5.10.237 #1 [ 992.685320] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 992.687211] Call Trace: [ 992.687821] dump_stack+0x107/0x167 [ 992.688669] should_fail.cold+0x5/0xa [ 992.689537] ? create_object.isra.0+0x3a/0xa20 [ 992.690576] should_failslab+0x5/0x20 [ 992.691441] kmem_cache_alloc+0x5b/0x310 [ 992.692369] ? vsnprintf+0x4ba/0x1600 [ 992.693255] create_object.isra.0+0x3a/0xa20 [ 992.694261] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 992.695449] __kmalloc_track_caller+0x177/0x370 [ 992.696507] ? kvasprintf_const+0x60/0x1a0 [ 992.697497] kvasprintf+0xb5/0x150 [ 992.698303] ? bust_spinlocks+0xe0/0xe0 [ 992.699208] ? lock_release+0x680/0x680 [ 992.700122] ? find_held_lock+0x2c/0x110 [ 992.701093] kvasprintf_const+0x60/0x1a0 [ 992.702041] kobject_set_name_vargs+0x56/0x150 [ 992.703096] dev_set_name+0xbb/0xf0 [ 992.703922] ? device_initialize+0x620/0x620 [ 992.704952] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 992.706156] ? kmalloc_order+0xfe/0x160 [ 992.707067] wiphy_new_nm+0x805/0x1e00 [ 992.707958] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 992.709025] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 992.710237] ? __local_bh_enable_ip+0x9d/0x100 [ 992.711293] ? trace_hardirqs_on+0x5b/0x180 [ 992.712274] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 992.713392] ? ____sys_sendmsg+0x70d/0x870 [ 992.714377] ? ___sys_sendmsg+0xf3/0x170 [ 992.715326] ? __sys_sendmsg+0xe5/0x1b0 [ 992.716226] ? do_syscall_64+0x33/0x40 [ 992.717145] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 992.718397] ? lock_acquire+0x197/0x470 [ 992.719301] ? create_object.isra.0+0x3ad/0xa20 [ 992.720363] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 992.721432] ? __kmalloc+0x16e/0x390 [ 992.722305] hwsim_new_radio_nl+0x991/0x1080 [ 992.723330] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 992.724542] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 992.726080] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 992.727588] genl_family_rcv_msg_doit+0x22d/0x330 [ 992.728695] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 992.730231] ? cap_capable+0x1cd/0x230 [ 992.731139] ? ns_capable+0xe2/0x110 [ 992.731987] genl_rcv_msg+0x36a/0x5a0 [ 992.732857] ? genl_get_cmd+0x480/0x480 [ 992.733765] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 992.734941] ? lock_release+0x680/0x680 [ 992.735837] ? netlink_deliver_tap+0xf4/0xcc0 [ 992.736867] netlink_rcv_skb+0x14b/0x430 [ 992.737790] ? genl_get_cmd+0x480/0x480 [ 992.738687] ? netlink_ack+0xab0/0xab0 [ 992.739598] ? netlink_deliver_tap+0x1c4/0xcc0 [ 992.740661] ? is_vmalloc_addr+0x7b/0xb0 [ 992.741615] genl_rcv+0x24/0x40 [ 992.742369] netlink_unicast+0x54e/0x800 [ 992.743297] ? netlink_attachskb+0x870/0x870 [ 992.744327] netlink_sendmsg+0x90f/0xe00 [ 992.745269] ? netlink_unicast+0x800/0x800 [ 992.746263] ? netlink_unicast+0x800/0x800 [ 992.747226] __sock_sendmsg+0x154/0x190 [ 992.748138] ____sys_sendmsg+0x70d/0x870 [ 992.749094] ? sock_write_iter+0x3d0/0x3d0 [ 992.750047] ? do_recvmmsg+0x6d0/0x6d0 [ 992.750927] ? lock_downgrade+0x6d0/0x6d0 [ 992.751869] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 992.753074] ___sys_sendmsg+0xf3/0x170 [ 992.753973] ? sendmsg_copy_msghdr+0x160/0x160 [ 992.755005] ? __fget_files+0x2cf/0x520 [ 992.755906] ? lock_downgrade+0x6d0/0x6d0 [ 992.756851] ? find_held_lock+0x2c/0x110 [ 992.757774] ? __fget_files+0x2f8/0x520 [ 992.758676] ? __fget_light+0xea/0x290 [ 992.759561] __sys_sendmsg+0xe5/0x1b0 [ 992.760425] ? __sys_sendmsg_sock+0x40/0x40 [ 992.761404] ? rcu_read_lock_any_held+0x75/0xa0 [ 992.762478] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 992.763661] ? syscall_enter_from_user_mode+0x1d/0x50 [ 992.764847] do_syscall_64+0x33/0x40 [ 992.765691] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 992.766851] RIP: 0033:0x7fa462201b19 [ 992.767690] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 992.771843] RSP: 002b:00007fa45f777188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 992.773571] RAX: ffffffffffffffda RBX: 00007fa462314f60 RCX: 00007fa462201b19 [ 992.775182] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 992.776807] RBP: 00007fa45f7771d0 R08: 0000000000000000 R09: 0000000000000000 [ 992.778426] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 992.780044] R13: 00007ffc6547cc4f R14: 00007fa45f777300 R15: 0000000000022000 [ 992.912694] netlink: 'syz-executor.0': attribute type 64 has an invalid length. [ 992.914478] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. 02:56:07 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 02:56:07 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x6, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 02:56:07 executing program 2: open(&(0x7f0000000140)='./file1\x00', 0x300, 0x38) r0 = openat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x25e103, 0x6) preadv(r0, 0x0, 0x0, 0x401, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:56:07 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 14) 02:56:07 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 10) 02:56:07 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 10) 02:56:07 executing program 5: open(&(0x7f0000000140)='./file1\x00', 0x300, 0x38) r0 = openat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x25e103, 0x6) preadv(r0, 0x0, 0x0, 0x401, 0x0) inotify_add_watch(r0, &(0x7f00000000c0)='./file1\x00', 0x42000284) statx(0xffffffffffffffff, 0x0, 0x89449e2670c4c232, 0x400, &(0x7f0000000500)) lstat(&(0x7f0000000300)='./file0\x00', &(0x7f0000000400)) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:56:07 executing program 0: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/class/spi_transport', 0x0, 0x0) r1 = syz_open_pts(r0, 0xc0002) dup(r1) fstatfs(r0, &(0x7f0000000040)=""/130) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r2, &(0x7f0000000180)=""/198, 0xc6) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0xa0) getdents(r3, &(0x7f0000000180)=""/198, 0xc6) dup2(r2, r3) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0) [ 1007.442402] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1007.444282] FAULT_INJECTION: forcing a failure. [ 1007.444282] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1007.446775] CPU: 1 PID: 7539 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 1007.448216] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1007.449989] Call Trace: [ 1007.450555] dump_stack+0x107/0x167 [ 1007.451324] should_fail.cold+0x5/0xa [ 1007.452136] __alloc_pages_nodemask+0x182/0x600 [ 1007.453122] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1007.454395] ? lock_chain_count+0x20/0x20 [ 1007.455267] ? lock_release+0x680/0x680 [ 1007.456118] alloc_pages_current+0x187/0x280 [ 1007.457056] kmalloc_order+0x35/0x160 [ 1007.457862] kmalloc_order_trace+0x14/0xa0 [ 1007.458761] wiphy_new_nm+0x6f3/0x1e00 [ 1007.459579] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1007.460567] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1007.461689] ? __local_bh_enable_ip+0x9d/0x100 [ 1007.462645] ? trace_hardirqs_on+0x5b/0x180 [ 1007.463553] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1007.464587] ? trace_hardirqs_on+0x5b/0x180 [ 1007.465513] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1007.466496] ? __kmalloc+0x16e/0x390 [ 1007.467284] hwsim_new_radio_nl+0x991/0x1080 [ 1007.468216] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1007.469326] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1007.470710] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1007.472090] genl_family_rcv_msg_doit+0x22d/0x330 [ 1007.473113] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1007.474494] ? cap_capable+0x1cd/0x230 [ 1007.475326] ? ns_capable+0xe2/0x110 [ 1007.476120] genl_rcv_msg+0x36a/0x5a0 [ 1007.476945] ? genl_get_cmd+0x480/0x480 [ 1007.477779] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1007.478872] ? lock_release+0x680/0x680 [ 1007.479702] ? netlink_deliver_tap+0xf4/0xcc0 [ 1007.480639] netlink_rcv_skb+0x14b/0x430 [ 1007.481498] ? genl_get_cmd+0x480/0x480 [ 1007.482325] ? netlink_ack+0xab0/0xab0 [ 1007.483162] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1007.484130] ? is_vmalloc_addr+0x7b/0xb0 [ 1007.485009] genl_rcv+0x24/0x40 [ 1007.485693] netlink_unicast+0x54e/0x800 [ 1007.486545] ? netlink_attachskb+0x870/0x870 [ 1007.487469] netlink_sendmsg+0x90f/0xe00 [ 1007.488327] ? netlink_unicast+0x800/0x800 [ 1007.489230] ? netlink_unicast+0x800/0x800 [ 1007.490128] __sock_sendmsg+0x154/0x190 [ 1007.490971] ____sys_sendmsg+0x70d/0x870 [ 1007.491832] ? sock_write_iter+0x3d0/0x3d0 [ 1007.492716] ? do_recvmmsg+0x6d0/0x6d0 [ 1007.493550] ? lock_downgrade+0x6d0/0x6d0 [ 1007.494415] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1007.495513] ___sys_sendmsg+0xf3/0x170 [ 1007.496329] ? sendmsg_copy_msghdr+0x160/0x160 [ 1007.497300] ? __fget_files+0x2cf/0x520 [ 1007.498122] ? lock_downgrade+0x6d0/0x6d0 [ 1007.498995] ? find_held_lock+0x2c/0x110 [ 1007.499858] ? __fget_files+0x2f8/0x520 [ 1007.500702] ? __fget_light+0xea/0x290 [ 1007.501527] __sys_sendmsg+0xe5/0x1b0 [ 1007.502341] ? __sys_sendmsg_sock+0x40/0x40 [ 1007.503240] ? rcu_read_lock_any_held+0x75/0xa0 [ 1007.504223] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1007.505331] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1007.506410] do_syscall_64+0x33/0x40 [ 1007.507190] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1007.508273] RIP: 0033:0x7f051132ab19 [ 1007.509058] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1007.512908] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1007.514515] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 1007.516002] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1007.517495] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 1007.518976] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1007.520458] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 [ 1007.523294] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 02:56:07 executing program 2: open(&(0x7f0000000140)='./file1\x00', 0x300, 0x38) openat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x25e103, 0x6) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:56:07 executing program 0: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/class/spi_transport', 0x0, 0x0) connect$unix(r0, &(0x7f0000000040)=@abs={0x1, 0x0, 0x4e24}, 0x6e) ioctl$EVIOCGBITKEY(r0, 0x80404521, &(0x7f00000000c0)=""/64) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) [ 1007.586870] FAULT_INJECTION: forcing a failure. [ 1007.586870] name failslab, interval 1, probability 0, space 0, times 0 [ 1007.588308] CPU: 0 PID: 7545 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 1007.589137] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1007.590197] Call Trace: [ 1007.590522] dump_stack+0x107/0x167 [ 1007.590956] should_fail.cold+0x5/0xa [ 1007.591418] ? create_object.isra.0+0x3a/0xa20 [ 1007.591964] should_failslab+0x5/0x20 [ 1007.592424] kmem_cache_alloc+0x5b/0x310 [ 1007.592918] create_object.isra.0+0x3a/0xa20 [ 1007.593435] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1007.594066] __kmalloc+0x16e/0x390 [ 1007.594501] genl_family_rcv_msg_attrs_parse.constprop.0+0xdb/0x280 [ 1007.595254] genl_family_rcv_msg_doit+0xda/0x330 [ 1007.595818] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1007.596596] ? cap_capable+0x1cd/0x230 [ 1007.597067] ? security_capable+0x95/0xc0 [ 1007.597563] ? ns_capable+0xe2/0x110 [ 1007.598006] genl_rcv_msg+0x36a/0x5a0 [ 1007.598457] ? genl_get_cmd+0x480/0x480 [ 1007.598929] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1007.599545] ? lock_release+0x680/0x680 [ 1007.600014] ? netlink_deliver_tap+0xf4/0xcc0 [ 1007.600576] netlink_rcv_skb+0x14b/0x430 [ 1007.601070] ? genl_get_cmd+0x480/0x480 [ 1007.601568] ? netlink_ack+0xab0/0xab0 [ 1007.602038] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1007.602579] ? is_vmalloc_addr+0x7b/0xb0 [ 1007.603061] genl_rcv+0x24/0x40 [ 1007.603450] netlink_unicast+0x54e/0x800 [ 1007.603933] ? netlink_attachskb+0x870/0x870 [ 1007.604459] netlink_sendmsg+0x90f/0xe00 [ 1007.604954] ? netlink_unicast+0x800/0x800 [ 1007.605459] ? netlink_unicast+0x800/0x800 [ 1007.605964] __sock_sendmsg+0x154/0x190 [ 1007.606438] ____sys_sendmsg+0x70d/0x870 [ 1007.606920] ? sock_write_iter+0x3d0/0x3d0 [ 1007.607444] ? do_recvmmsg+0x6d0/0x6d0 [ 1007.607910] ? lock_downgrade+0x6d0/0x6d0 [ 1007.608402] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1007.609032] ___sys_sendmsg+0xf3/0x170 [ 1007.609490] ? sendmsg_copy_msghdr+0x160/0x160 [ 1007.610067] ? __fget_files+0x2cf/0x520 [ 1007.610539] ? lock_downgrade+0x6d0/0x6d0 [ 1007.611028] ? find_held_lock+0x2c/0x110 [ 1007.611508] ? __fget_files+0x2f8/0x520 [ 1007.611977] ? __fget_light+0xea/0x290 [ 1007.612437] __sys_sendmsg+0xe5/0x1b0 [ 1007.612892] ? __sys_sendmsg_sock+0x40/0x40 [ 1007.613397] ? rcu_read_lock_any_held+0x75/0xa0 [ 1007.613956] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1007.614573] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1007.615179] do_syscall_64+0x33/0x40 [ 1007.615618] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1007.616217] RIP: 0033:0x7faee752eb19 [ 1007.616673] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1007.618827] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1007.619764] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 1007.620602] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1007.621440] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1007.622271] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1007.623103] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 [ 1007.624078] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. 02:56:07 executing program 0: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/class/graphics', 0x42643, 0x0) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) 02:56:07 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 11) [ 1007.645484] FAULT_INJECTION: forcing a failure. [ 1007.645484] name failslab, interval 1, probability 0, space 0, times 0 [ 1007.647971] CPU: 1 PID: 7546 Comm: syz-executor.6 Not tainted 5.10.237 #1 [ 1007.649425] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1007.651167] Call Trace: [ 1007.651727] dump_stack+0x107/0x167 [ 1007.652494] should_fail.cold+0x5/0xa [ 1007.653303] ? rfkill_alloc+0xa6/0x2c0 [ 1007.654124] should_failslab+0x5/0x20 [ 1007.654927] __kmalloc+0x72/0x390 [ 1007.655661] rfkill_alloc+0xa6/0x2c0 [ 1007.656447] wiphy_new_nm+0x12a3/0x1e00 [ 1007.657303] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1007.658286] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1007.659400] ? __local_bh_enable_ip+0x9d/0x100 [ 1007.660357] ? trace_hardirqs_on+0x5b/0x180 [ 1007.661293] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1007.662328] ? ____sys_sendmsg+0x70d/0x870 [ 1007.663225] ? ___sys_sendmsg+0xf3/0x170 [ 1007.664078] ? __sys_sendmsg+0xe5/0x1b0 [ 1007.664934] ? do_syscall_64+0x33/0x40 [ 1007.665755] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1007.666882] ? lock_acquire+0x197/0x470 [ 1007.667723] ? create_object.isra.0+0x3ad/0xa20 [ 1007.668712] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1007.669703] ? __kmalloc+0x16e/0x390 [ 1007.670494] hwsim_new_radio_nl+0x991/0x1080 [ 1007.671432] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1007.672535] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1007.673937] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1007.675312] genl_family_rcv_msg_doit+0x22d/0x330 [ 1007.676337] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1007.677746] ? cap_capable+0x1cd/0x230 [ 1007.678586] ? ns_capable+0xe2/0x110 [ 1007.679383] genl_rcv_msg+0x36a/0x5a0 [ 1007.680190] ? genl_get_cmd+0x480/0x480 [ 1007.681069] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1007.682170] ? lock_release+0x680/0x680 [ 1007.683011] ? netlink_deliver_tap+0xf4/0xcc0 [ 1007.683973] netlink_rcv_skb+0x14b/0x430 [ 1007.684838] ? genl_get_cmd+0x480/0x480 [ 1007.685688] ? netlink_ack+0xab0/0xab0 [ 1007.686515] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1007.687478] ? is_vmalloc_addr+0x7b/0xb0 [ 1007.688340] genl_rcv+0x24/0x40 [ 1007.689042] netlink_unicast+0x54e/0x800 [ 1007.689905] ? netlink_attachskb+0x870/0x870 [ 1007.690847] netlink_sendmsg+0x90f/0xe00 [ 1007.691710] ? netlink_unicast+0x800/0x800 [ 1007.692611] ? netlink_unicast+0x800/0x800 [ 1007.693511] __sock_sendmsg+0x154/0x190 [ 1007.694351] ____sys_sendmsg+0x70d/0x870 [ 1007.695215] ? sock_write_iter+0x3d0/0x3d0 [ 1007.696103] ? do_recvmmsg+0x6d0/0x6d0 [ 1007.696937] ? lock_downgrade+0x6d0/0x6d0 [ 1007.697817] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1007.698942] ___sys_sendmsg+0xf3/0x170 [ 1007.699769] ? sendmsg_copy_msghdr+0x160/0x160 [ 1007.700741] ? __fget_files+0x2cf/0x520 [ 1007.701586] ? lock_downgrade+0x6d0/0x6d0 [ 1007.702461] ? find_held_lock+0x2c/0x110 [ 1007.703332] ? __fget_files+0x2f8/0x520 [ 1007.704191] ? __fget_light+0xea/0x290 [ 1007.705032] __sys_sendmsg+0xe5/0x1b0 [ 1007.705835] ? __sys_sendmsg_sock+0x40/0x40 [ 1007.706743] ? rcu_read_lock_any_held+0x75/0xa0 [ 1007.707740] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1007.708858] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1007.709952] do_syscall_64+0x33/0x40 [ 1007.710744] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1007.711822] RIP: 0033:0x7fa462201b19 [ 1007.712606] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1007.716485] RSP: 002b:00007fa45f777188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1007.718094] RAX: ffffffffffffffda RBX: 00007fa462314f60 RCX: 00007fa462201b19 [ 1007.719598] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1007.721109] RBP: 00007fa45f7771d0 R08: 0000000000000000 R09: 0000000000000000 [ 1007.722604] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1007.724099] R13: 00007ffc6547cc4f R14: 00007fa45f777300 R15: 0000000000022000 02:56:07 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x7, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 02:56:07 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 11) [ 1007.820706] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1007.821957] FAULT_INJECTION: forcing a failure. [ 1007.821957] name failslab, interval 1, probability 0, space 0, times 0 [ 1007.823355] CPU: 0 PID: 7561 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 1007.824217] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1007.825266] Call Trace: [ 1007.825595] dump_stack+0x107/0x167 [ 1007.826052] should_fail.cold+0x5/0xa [ 1007.826524] ? create_object.isra.0+0x3a/0xa20 [ 1007.827086] should_failslab+0x5/0x20 [ 1007.827554] kmem_cache_alloc+0x5b/0x310 [ 1007.828055] create_object.isra.0+0x3a/0xa20 [ 1007.828598] ? kasan_unpoison_shadow+0x33/0x50 [ 1007.829168] kmalloc_order+0xfe/0x160 [ 1007.829651] kmalloc_order_trace+0x14/0xa0 [ 1007.830176] wiphy_new_nm+0x6f3/0x1e00 [ 1007.830657] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1007.831233] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1007.831877] ? __local_bh_enable_ip+0x9d/0x100 [ 1007.832433] ? trace_hardirqs_on+0x5b/0x180 [ 1007.832981] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1007.833588] ? trace_hardirqs_on+0x5b/0x180 [ 1007.834130] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1007.834702] ? __kmalloc+0x16e/0x390 [ 1007.835160] hwsim_new_radio_nl+0x991/0x1080 [ 1007.835709] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1007.836350] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1007.837168] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1007.837965] genl_family_rcv_msg_doit+0x22d/0x330 [ 1007.838556] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1007.839366] ? cap_capable+0x1cd/0x230 [ 1007.839866] ? ns_capable+0xe2/0x110 [ 1007.840326] genl_rcv_msg+0x36a/0x5a0 [ 1007.840812] ? genl_get_cmd+0x480/0x480 [ 1007.841298] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1007.841929] ? lock_release+0x680/0x680 [ 1007.842418] ? netlink_deliver_tap+0xf4/0xcc0 [ 1007.842974] netlink_rcv_skb+0x14b/0x430 [ 1007.843468] ? genl_get_cmd+0x480/0x480 [ 1007.843954] ? netlink_ack+0xab0/0xab0 [ 1007.844576] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1007.845149] ? is_vmalloc_addr+0x7b/0xb0 [ 1007.845642] genl_rcv+0x24/0x40 [ 1007.846044] netlink_unicast+0x54e/0x800 [ 1007.846549] ? netlink_attachskb+0x870/0x870 [ 1007.847091] netlink_sendmsg+0x90f/0xe00 [ 1007.847588] ? netlink_unicast+0x800/0x800 [ 1007.848124] ? netlink_unicast+0x800/0x800 [ 1007.848645] __sock_sendmsg+0x154/0x190 [ 1007.849140] ____sys_sendmsg+0x70d/0x870 [ 1007.849644] ? sock_write_iter+0x3d0/0x3d0 [ 1007.850156] ? do_recvmmsg+0x6d0/0x6d0 [ 1007.850633] ? lock_downgrade+0x6d0/0x6d0 [ 1007.851154] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1007.851796] ___sys_sendmsg+0xf3/0x170 [ 1007.852273] ? sendmsg_copy_msghdr+0x160/0x160 [ 1007.852842] ? __fget_files+0x2cf/0x520 [ 1007.853326] ? lock_downgrade+0x6d0/0x6d0 [ 1007.853833] ? find_held_lock+0x2c/0x110 [ 1007.854339] ? __fget_files+0x2f8/0x520 [ 1007.854836] ? __fget_light+0xea/0x290 [ 1007.855319] __sys_sendmsg+0xe5/0x1b0 [ 1007.855788] ? __sys_sendmsg_sock+0x40/0x40 [ 1007.856320] ? rcu_read_lock_any_held+0x75/0xa0 [ 1007.856916] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1007.857558] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1007.858187] do_syscall_64+0x33/0x40 [ 1007.858642] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1007.859286] RIP: 0033:0x7f051132ab19 [ 1007.859744] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1007.862017] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1007.862954] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 1007.863832] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1007.864706] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 1007.865597] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1007.866476] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 [ 1007.908544] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. [ 1007.927635] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1007.929932] FAULT_INJECTION: forcing a failure. [ 1007.929932] name failslab, interval 1, probability 0, space 0, times 0 [ 1007.932548] CPU: 1 PID: 7567 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 1007.934195] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1007.936122] Call Trace: [ 1007.936738] dump_stack+0x107/0x167 [ 1007.937588] should_fail.cold+0x5/0xa [ 1007.938483] ? create_object.isra.0+0x3a/0xa20 [ 1007.939544] should_failslab+0x5/0x20 [ 1007.940432] kmem_cache_alloc+0x5b/0x310 [ 1007.941412] create_object.isra.0+0x3a/0xa20 [ 1007.942434] ? kasan_unpoison_shadow+0x33/0x50 [ 1007.943505] kmalloc_order+0xfe/0x160 [ 1007.944404] kmalloc_order_trace+0x14/0xa0 [ 1007.945411] wiphy_new_nm+0x6f3/0x1e00 [ 1007.946338] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1007.947434] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1007.948679] ? __local_bh_enable_ip+0x9d/0x100 [ 1007.949816] ? trace_hardirqs_on+0x5b/0x180 [ 1007.950858] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1007.952017] ? trace_hardirqs_on+0x5b/0x180 [ 1007.953079] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1007.954183] ? __kmalloc+0x16e/0x390 [ 1007.955089] hwsim_new_radio_nl+0x991/0x1080 [ 1007.956137] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1007.957408] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1007.959002] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1007.960676] genl_family_rcv_msg_doit+0x22d/0x330 [ 1007.962105] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1007.963840] ? cap_capable+0x1cd/0x230 [ 1007.964811] ? ns_capable+0xe2/0x110 [ 1007.965761] genl_rcv_msg+0x36a/0x5a0 [ 1007.966678] ? genl_get_cmd+0x480/0x480 [ 1007.967633] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1007.968922] ? lock_release+0x680/0x680 [ 1007.969901] ? netlink_deliver_tap+0xf4/0xcc0 [ 1007.970997] netlink_rcv_skb+0x14b/0x430 [ 1007.971985] ? genl_get_cmd+0x480/0x480 [ 1007.972979] ? netlink_ack+0xab0/0xab0 [ 1007.973935] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1007.975047] ? is_vmalloc_addr+0x7b/0xb0 [ 1007.976032] genl_rcv+0x24/0x40 [ 1007.976850] netlink_unicast+0x54e/0x800 [ 1007.977871] ? netlink_attachskb+0x870/0x870 [ 1007.978960] netlink_sendmsg+0x90f/0xe00 [ 1007.979968] ? netlink_unicast+0x800/0x800 [ 1007.981080] ? netlink_unicast+0x800/0x800 [ 1007.982113] __sock_sendmsg+0x154/0x190 [ 1007.983115] ____sys_sendmsg+0x70d/0x870 [ 1007.984121] ? sock_write_iter+0x3d0/0x3d0 [ 1007.985190] ? do_recvmmsg+0x6d0/0x6d0 [ 1007.986162] ? lock_downgrade+0x6d0/0x6d0 [ 1007.987189] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1007.988497] ___sys_sendmsg+0xf3/0x170 [ 1007.989490] ? sendmsg_copy_msghdr+0x160/0x160 [ 1007.990633] ? __fget_files+0x2cf/0x520 [ 1007.991635] ? lock_downgrade+0x6d0/0x6d0 [ 1007.992690] ? find_held_lock+0x2c/0x110 [ 1007.993766] ? __fget_files+0x2f8/0x520 [ 1007.994816] ? __fget_light+0xea/0x290 [ 1007.995930] __sys_sendmsg+0xe5/0x1b0 [ 1007.997001] ? __sys_sendmsg_sock+0x40/0x40 [ 1007.998080] ? rcu_read_lock_any_held+0x75/0xa0 [ 1007.999128] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1008.000259] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1008.001380] do_syscall_64+0x33/0x40 [ 1008.002182] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1008.003282] RIP: 0033:0x7faee752eb19 [ 1008.004098] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1008.008107] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1008.009775] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 1008.011313] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1008.012939] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1008.014493] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1008.016055] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 02:56:22 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 02:56:22 executing program 0: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000000280)={0x1, 0x3, 0x1000, 0xc8, &(0x7f0000000040)="3f0fc2d8001cc61b2d69963148257056147d1fdcffb631308ff75ba563e628e78e33721e83ffa67280e7e4c7b585636216411667eb61dcae6ed9bd01477f0c33dd894b6ae9193c0385be2cdc34529d01572ea14b5f26d5f1ebfc818309693153191ea63224cb249ea93f8822e826b62c1817eb33f366729899a64ef9f632ab7f307ee19df5efbb0fe2dc6792df82da2c52e4736064e66aa6e04a2ad9c9e5e9a71bc4bd6e372d216377c5541c7eae6745b3fde4ad7af43bf9065c420f6fb197b990b6fde035701f04", 0x22, 0x0, &(0x7f0000000140)="4fb8ef897c8a0094448f2a9401f0586885206f0d4c9ea22a7e696fa54ef38b658278"}) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000300)='/sys/module/snd_hda_intel', 0x210000, 0x10c) getdents(r1, &(0x7f0000000180)=""/198, 0xc6) 02:56:22 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 12) 02:56:22 executing program 2: open(&(0x7f0000000140)='./file1\x00', 0x300, 0x38) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:56:22 executing program 5: open(&(0x7f0000000140)='./file1\x00', 0x300, 0x38) r0 = openat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x25e103, 0x6) preadv(r0, 0x0, 0x0, 0x401, 0x0) inotify_add_watch(r0, &(0x7f00000000c0)='./file1\x00', 0x42000284) statx(0xffffffffffffffff, 0x0, 0x89449e2670c4c232, 0x400, &(0x7f0000000500)) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:56:22 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 15) 02:56:22 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 12) 02:56:22 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x8, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1022.640074] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 02:56:22 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) [ 1022.749593] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1022.755916] FAULT_INJECTION: forcing a failure. [ 1022.755916] name failslab, interval 1, probability 0, space 0, times 0 [ 1022.758588] CPU: 0 PID: 7578 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 1022.760147] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1022.762079] Call Trace: [ 1022.762699] dump_stack+0x107/0x167 [ 1022.763567] should_fail.cold+0x5/0xa [ 1022.764459] should_failslab+0x5/0x20 [ 1022.765349] __kmalloc_track_caller+0x79/0x370 [ 1022.766406] ? kvasprintf_const+0x60/0x1a0 [ 1022.767404] kvasprintf+0xb5/0x150 [ 1022.768231] ? bust_spinlocks+0xe0/0xe0 [ 1022.769174] ? lock_release+0x680/0x680 [ 1022.770085] ? find_held_lock+0x2c/0x110 [ 1022.771014] kvasprintf_const+0x60/0x1a0 [ 1022.771947] kobject_set_name_vargs+0x56/0x150 [ 1022.772993] dev_set_name+0xbb/0xf0 [ 1022.773824] ? device_initialize+0x620/0x620 [ 1022.774830] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1022.776025] ? kmalloc_order+0xfe/0x160 [ 1022.776917] wiphy_new_nm+0x805/0x1e00 [ 1022.777819] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1022.778893] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1022.780095] ? __local_bh_enable_ip+0x9d/0x100 [ 1022.781151] ? trace_hardirqs_on+0x5b/0x180 [ 1022.782161] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1022.783304] ? trace_hardirqs_on+0x5b/0x180 [ 1022.784320] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1022.785404] ? __kmalloc+0x16e/0x390 [ 1022.786263] hwsim_new_radio_nl+0x991/0x1080 [ 1022.787265] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1022.788461] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1022.790000] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1022.791525] genl_family_rcv_msg_doit+0x22d/0x330 [ 1022.792640] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1022.794224] ? cap_capable+0x1cd/0x230 [ 1022.795130] ? ns_capable+0xe2/0x110 [ 1022.796013] genl_rcv_msg+0x36a/0x5a0 [ 1022.796905] ? genl_get_cmd+0x480/0x480 [ 1022.797845] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1022.799022] ? lock_release+0x680/0x680 [ 1022.799936] ? netlink_deliver_tap+0xf4/0xcc0 [ 1022.800967] netlink_rcv_skb+0x14b/0x430 [ 1022.801899] ? genl_get_cmd+0x480/0x480 [ 1022.802824] ? netlink_ack+0xab0/0xab0 [ 1022.803736] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1022.804777] ? is_vmalloc_addr+0x7b/0xb0 [ 1022.805730] genl_rcv+0x24/0x40 [ 1022.806495] netlink_unicast+0x54e/0x800 [ 1022.807424] ? netlink_attachskb+0x870/0x870 [ 1022.808461] netlink_sendmsg+0x90f/0xe00 [ 1022.809432] ? netlink_unicast+0x800/0x800 [ 1022.810419] ? netlink_unicast+0x800/0x800 [ 1022.811401] __sock_sendmsg+0x154/0x190 [ 1022.812347] ____sys_sendmsg+0x70d/0x870 [ 1022.813312] ? sock_write_iter+0x3d0/0x3d0 [ 1022.814267] ? do_recvmmsg+0x6d0/0x6d0 [ 1022.815171] ? lock_downgrade+0x6d0/0x6d0 [ 1022.816113] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1022.817334] ___sys_sendmsg+0xf3/0x170 [ 1022.818265] ? sendmsg_copy_msghdr+0x160/0x160 [ 1022.819334] ? __fget_files+0x2cf/0x520 [ 1022.820259] ? lock_downgrade+0x6d0/0x6d0 [ 1022.821229] ? find_held_lock+0x2c/0x110 [ 1022.822168] ? __fget_files+0x2f8/0x520 [ 1022.823108] ? __fget_light+0xea/0x290 [ 1022.824021] __sys_sendmsg+0xe5/0x1b0 [ 1022.824931] ? __sys_sendmsg_sock+0x40/0x40 [ 1022.825917] ? rcu_read_lock_any_held+0x75/0xa0 [ 1022.827002] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1022.828235] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1022.829422] do_syscall_64+0x33/0x40 [ 1022.830293] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1022.831496] RIP: 0033:0x7f051132ab19 [ 1022.832356] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1022.836624] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1022.838383] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 1022.840064] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1022.841746] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 1022.843397] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1022.845065] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 [ 1022.847026] FAULT_INJECTION: forcing a failure. [ 1022.847026] name failslab, interval 1, probability 0, space 0, times 0 [ 1022.849864] CPU: 1 PID: 7591 Comm: syz-executor.6 Not tainted 5.10.237 #1 02:56:22 executing program 0: sendmsg$NL80211_CMD_RADAR_DETECT(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000001c0)={&(0x7f00000004c0)={0x40, 0x0, 0xf28, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x3, 0x7b}}}}, [@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x3c5}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x12a}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x7}]}, 0x40}, 0x1, 0x0, 0x0, 0x4040011}, 0x48880) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/class/spi_transport', 0x0, 0x0) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000280), 0xc080, 0x0) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r3, &(0x7f00000003c0)=""/206, 0xce) syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000380), r1) ioctl$sock_SIOCSPGRP(r3, 0x8902, &(0x7f0000000180)) read(r0, &(0x7f0000000500)=""/213, 0xd5) sendmsg$NBD_CMD_STATUS(r1, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x38, 0x0, 0x10, 0x70bd28, 0x25dfdbfb, {}, [@NBD_ATTR_SOCKETS={0x24, 0x7, 0x0, 0x1, [{0x8, 0x1, r0}, {0x8, 0x1, r0}, {0x8, 0x1, r2}, {0x8, 0x1, r3}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x8000}, 0x40000) getdents(r0, &(0x7f0000000040)=""/198, 0x97) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r4, &(0x7f0000000180)=""/198, 0xc6) r5 = socket$packet(0x11, 0x2, 0x300) r6 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) bind$packet(r5, &(0x7f0000000040)={0x11, 0x1, r7, 0x1, 0x8, 0x6, @random="190002400a00"}, 0x14) sendmsg$BATADV_CMD_SET_MESH(r4, &(0x7f0000000700)={&(0x7f0000000600)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000006c0)={&(0x7f0000000640)={0x58, 0x0, 0x100, 0x70bd2a, 0x25dfdbfe, {}, [@BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x4e}, @BATADV_ATTR_ORIG_ADDRESS={0xa, 0x9, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r7}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5}, @BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x4}, @BATADV_ATTR_HOP_PENALTY={0x5, 0x35, 0x62}]}, 0x58}, 0x1, 0x0, 0x0, 0x44841}, 0x2000c001) [ 1022.851337] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1022.853334] Call Trace: [ 1022.853897] dump_stack+0x107/0x167 [ 1022.854671] should_fail.cold+0x5/0xa [ 1022.855480] ? create_object.isra.0+0x3a/0xa20 [ 1022.856447] should_failslab+0x5/0x20 [ 1022.857266] kmem_cache_alloc+0x5b/0x310 [ 1022.858133] create_object.isra.0+0x3a/0xa20 [ 1022.859060] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1022.860151] __kmalloc+0x16e/0x390 [ 1022.860918] rfkill_alloc+0xa6/0x2c0 [ 1022.861734] wiphy_new_nm+0x12a3/0x1e00 [ 1022.862574] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1022.863556] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1022.864665] ? __local_bh_enable_ip+0x9d/0x100 [ 1022.865637] ? trace_hardirqs_on+0x5b/0x180 [ 1022.866554] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1022.867597] ? ____sys_sendmsg+0x70d/0x870 [ 1022.868490] ? ___sys_sendmsg+0xf3/0x170 [ 1022.869358] ? __sys_sendmsg+0xe5/0x1b0 [ 1022.870196] ? do_syscall_64+0x33/0x40 [ 1022.871023] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1022.872151] ? lock_acquire+0x197/0x470 [ 1022.873002] ? create_object.isra.0+0x3ad/0xa20 [ 1022.873997] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1022.874984] ? __kmalloc+0x16e/0x390 [ 1022.875775] hwsim_new_radio_nl+0x991/0x1080 [ 1022.876714] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1022.877835] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1022.879243] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1022.880634] genl_family_rcv_msg_doit+0x22d/0x330 [ 1022.881675] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1022.883074] ? cap_capable+0x1cd/0x230 [ 1022.883913] ? ns_capable+0xe2/0x110 02:56:22 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) [ 1022.884816] genl_rcv_msg+0x36a/0x5a0 [ 1022.885656] ? genl_get_cmd+0x480/0x480 [ 1022.886503] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1022.887604] ? lock_release+0x680/0x680 [ 1022.888456] ? netlink_deliver_tap+0xf4/0xcc0 [ 1022.889418] netlink_rcv_skb+0x14b/0x430 [ 1022.890285] ? genl_get_cmd+0x480/0x480 [ 1022.891120] ? netlink_ack+0xab0/0xab0 [ 1022.891947] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1022.892922] ? is_vmalloc_addr+0x7b/0xb0 [ 1022.893790] genl_rcv+0x24/0x40 [ 1022.894483] netlink_unicast+0x54e/0x800 [ 1022.895355] ? netlink_attachskb+0x870/0x870 [ 1022.896298] netlink_sendmsg+0x90f/0xe00 [ 1022.897175] ? netlink_unicast+0x800/0x800 [ 1022.898083] ? netlink_unicast+0x800/0x800 [ 1022.898977] __sock_sendmsg+0x154/0x190 [ 1022.899815] ____sys_sendmsg+0x70d/0x870 [ 1022.900676] ? sock_write_iter+0x3d0/0x3d0 [ 1022.901572] ? do_recvmmsg+0x6d0/0x6d0 [ 1022.902406] ? lock_downgrade+0x6d0/0x6d0 [ 1022.903290] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1022.904403] ___sys_sendmsg+0xf3/0x170 [ 1022.905241] ? sendmsg_copy_msghdr+0x160/0x160 [ 1022.906205] ? __fget_files+0x2cf/0x520 [ 1022.907037] ? lock_downgrade+0x6d0/0x6d0 [ 1022.907908] ? find_held_lock+0x2c/0x110 [ 1022.908768] ? __fget_files+0x2f8/0x520 [ 1022.909628] ? __fget_light+0xea/0x290 [ 1022.910464] __sys_sendmsg+0xe5/0x1b0 [ 1022.911271] ? __sys_sendmsg_sock+0x40/0x40 [ 1022.912187] ? rcu_read_lock_any_held+0x75/0xa0 [ 1022.913169] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1022.914270] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1022.915350] do_syscall_64+0x33/0x40 [ 1022.916135] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1022.917220] RIP: 0033:0x7fa462201b19 [ 1022.918003] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1022.921885] RSP: 002b:00007fa45f777188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1022.923499] RAX: ffffffffffffffda RBX: 00007fa462314f60 RCX: 00007fa462201b19 [ 1022.925004] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 02:56:22 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x9, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1022.926504] RBP: 00007fa45f7771d0 R08: 0000000000000000 R09: 0000000000000000 [ 1022.928168] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1022.929676] R13: 00007ffc6547cc4f R14: 00007fa45f777300 R15: 0000000000022000 02:56:22 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 13) 02:56:22 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 02:56:23 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) [ 1023.083616] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1023.085695] FAULT_INJECTION: forcing a failure. [ 1023.085695] name failslab, interval 1, probability 0, space 0, times 0 [ 1023.088110] CPU: 1 PID: 7590 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 1023.089571] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1023.091320] Call Trace: [ 1023.091886] dump_stack+0x107/0x167 [ 1023.092653] should_fail.cold+0x5/0xa [ 1023.093488] should_failslab+0x5/0x20 [ 1023.094294] __kmalloc_track_caller+0x79/0x370 [ 1023.095254] ? kvasprintf_const+0x60/0x1a0 [ 1023.096148] kvasprintf+0xb5/0x150 [ 1023.096916] ? bust_spinlocks+0xe0/0xe0 [ 1023.097777] ? lock_release+0x680/0x680 [ 1023.098595] ? find_held_lock+0x2c/0x110 [ 1023.099491] kvasprintf_const+0x60/0x1a0 [ 1023.100350] kobject_set_name_vargs+0x56/0x150 [ 1023.101323] dev_set_name+0xbb/0xf0 [ 1023.102091] ? device_initialize+0x620/0x620 [ 1023.103014] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1023.104130] ? kmalloc_order+0xfe/0x160 [ 1023.104997] wiphy_new_nm+0x805/0x1e00 [ 1023.105821] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1023.106803] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1023.107885] ? __local_bh_enable_ip+0x9d/0x100 [ 1023.108843] ? trace_hardirqs_on+0x5b/0x180 [ 1023.109752] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1023.110783] ? trace_hardirqs_on+0x5b/0x180 [ 1023.111699] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1023.112680] ? __kmalloc+0x16e/0x390 [ 1023.113463] hwsim_new_radio_nl+0x991/0x1080 [ 1023.114371] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1023.115456] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1023.116813] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1023.118158] genl_family_rcv_msg_doit+0x22d/0x330 [ 1023.119154] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1023.120507] ? cap_capable+0x1cd/0x230 [ 1023.121323] ? ns_capable+0xe2/0x110 [ 1023.122085] genl_rcv_msg+0x36a/0x5a0 [ 1023.122872] ? genl_get_cmd+0x480/0x480 [ 1023.123689] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1023.124753] ? lock_release+0x680/0x680 [ 1023.125576] ? netlink_deliver_tap+0xf4/0xcc0 [ 1023.126512] netlink_rcv_skb+0x14b/0x430 [ 1023.127346] ? genl_get_cmd+0x480/0x480 [ 1023.128184] ? netlink_ack+0xab0/0xab0 [ 1023.129001] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1023.129947] ? is_vmalloc_addr+0x7b/0xb0 [ 1023.130780] genl_rcv+0x24/0x40 [ 1023.131459] netlink_unicast+0x54e/0x800 [ 1023.132293] ? netlink_attachskb+0x870/0x870 [ 1023.133216] netlink_sendmsg+0x90f/0xe00 [ 1023.134055] ? netlink_unicast+0x800/0x800 [ 1023.134937] ? netlink_unicast+0x800/0x800 [ 1023.135813] __sock_sendmsg+0x154/0x190 [ 1023.136631] ____sys_sendmsg+0x70d/0x870 [ 1023.137477] ? sock_write_iter+0x3d0/0x3d0 [ 1023.138341] ? do_recvmmsg+0x6d0/0x6d0 [ 1023.139142] ? lock_downgrade+0x6d0/0x6d0 [ 1023.139994] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1023.141087] ___sys_sendmsg+0xf3/0x170 [ 1023.141917] ? sendmsg_copy_msghdr+0x160/0x160 [ 1023.142871] ? __fget_files+0x2cf/0x520 [ 1023.143690] ? lock_downgrade+0x6d0/0x6d0 [ 1023.144536] ? find_held_lock+0x2c/0x110 [ 1023.145394] ? __fget_files+0x2f8/0x520 [ 1023.146221] ? __fget_light+0xea/0x290 [ 1023.147026] __sys_sendmsg+0xe5/0x1b0 [ 1023.147814] ? __sys_sendmsg_sock+0x40/0x40 [ 1023.148699] ? rcu_read_lock_any_held+0x75/0xa0 [ 1023.149684] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1023.150771] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1023.151831] do_syscall_64+0x33/0x40 [ 1023.152591] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1023.153660] RIP: 0033:0x7faee752eb19 [ 1023.154426] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1023.158217] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1023.159777] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 1023.161257] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1023.162718] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1023.164180] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1023.165657] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 02:56:23 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 16) 02:56:23 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) [ 1023.313051] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 02:56:23 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 13) 02:56:23 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) bind$unix(0xffffffffffffffff, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(0xffffffffffffffff, 0x0) accept$unix(0xffffffffffffffff, 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) connect$unix(r0, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 02:56:23 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:56:23 executing program 5: open(&(0x7f0000000140)='./file1\x00', 0x300, 0x38) r0 = openat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x25e103, 0x6) preadv(r0, 0x0, 0x0, 0x401, 0x0) inotify_add_watch(r0, &(0x7f00000000c0)='./file1\x00', 0x42000284) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:56:23 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) bind$unix(0xffffffffffffffff, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(0xffffffffffffffff, 0x0) accept$unix(0xffffffffffffffff, 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) connect$unix(r0, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) [ 1023.392324] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1023.395348] FAULT_INJECTION: forcing a failure. [ 1023.395348] name failslab, interval 1, probability 0, space 0, times 0 [ 1023.397967] CPU: 1 PID: 7606 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 1023.399414] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1023.401175] Call Trace: [ 1023.401735] dump_stack+0x107/0x167 [ 1023.402510] should_fail.cold+0x5/0xa [ 1023.403321] ? create_object.isra.0+0x3a/0xa20 [ 1023.404282] should_failslab+0x5/0x20 [ 1023.405088] kmem_cache_alloc+0x5b/0x310 [ 1023.405953] create_object.isra.0+0x3a/0xa20 [ 1023.406876] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1023.407946] __kmalloc_track_caller+0x177/0x370 [ 1023.408927] ? kvasprintf_const+0x60/0x1a0 [ 1023.409833] kvasprintf+0xb5/0x150 [ 1023.410579] ? bust_spinlocks+0xe0/0xe0 [ 1023.411421] ? lock_release+0x680/0x680 [ 1023.412259] ? find_held_lock+0x2c/0x110 [ 1023.413141] kvasprintf_const+0x60/0x1a0 [ 1023.414001] kobject_set_name_vargs+0x56/0x150 [ 1023.414968] dev_set_name+0xbb/0xf0 [ 1023.415737] ? device_initialize+0x620/0x620 [ 1023.416665] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1023.417781] ? kmalloc_order+0xfe/0x160 [ 1023.418630] wiphy_new_nm+0x805/0x1e00 [ 1023.419452] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1023.420435] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1023.421552] ? __local_bh_enable_ip+0x9d/0x100 [ 1023.422510] ? trace_hardirqs_on+0x5b/0x180 [ 1023.423423] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1023.424461] ? trace_hardirqs_on+0x5b/0x180 [ 1023.425397] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1023.426383] ? __kmalloc+0x16e/0x390 [ 1023.427173] hwsim_new_radio_nl+0x991/0x1080 [ 1023.428107] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1023.429224] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1023.430624] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1023.432001] genl_family_rcv_msg_doit+0x22d/0x330 [ 1023.433034] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1023.434421] ? cap_capable+0x1cd/0x230 [ 1023.435252] ? ns_capable+0xe2/0x110 [ 1023.436048] genl_rcv_msg+0x36a/0x5a0 [ 1023.436859] ? genl_get_cmd+0x480/0x480 [ 1023.437710] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1023.438808] ? lock_release+0x680/0x680 [ 1023.439648] ? netlink_deliver_tap+0xf4/0xcc0 [ 1023.440602] netlink_rcv_skb+0x14b/0x430 [ 1023.441462] ? genl_get_cmd+0x480/0x480 [ 1023.442301] ? netlink_ack+0xab0/0xab0 [ 1023.443129] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1023.444093] ? is_vmalloc_addr+0x7b/0xb0 [ 1023.444946] genl_rcv+0x24/0x40 [ 1023.445654] netlink_unicast+0x54e/0x800 [ 1023.446515] ? netlink_attachskb+0x870/0x870 [ 1023.447453] netlink_sendmsg+0x90f/0xe00 [ 1023.448317] ? netlink_unicast+0x800/0x800 [ 1023.449228] ? netlink_unicast+0x800/0x800 [ 1023.450129] __sock_sendmsg+0x154/0x190 [ 1023.450971] ____sys_sendmsg+0x70d/0x870 [ 1023.451831] ? sock_write_iter+0x3d0/0x3d0 [ 1023.452722] ? do_recvmmsg+0x6d0/0x6d0 [ 1023.453559] ? lock_downgrade+0x6d0/0x6d0 [ 1023.454437] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1023.455554] ___sys_sendmsg+0xf3/0x170 [ 1023.456381] ? sendmsg_copy_msghdr+0x160/0x160 [ 1023.457355] ? __fget_files+0x2cf/0x520 [ 1023.458203] ? lock_downgrade+0x6d0/0x6d0 [ 1023.459081] ? find_held_lock+0x2c/0x110 [ 1023.459952] ? __fget_files+0x2f8/0x520 [ 1023.460800] ? __fget_light+0xea/0x290 [ 1023.461633] __sys_sendmsg+0xe5/0x1b0 [ 1023.462440] ? __sys_sendmsg_sock+0x40/0x40 [ 1023.463355] ? rcu_read_lock_any_held+0x75/0xa0 [ 1023.464351] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1023.465467] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1023.466556] do_syscall_64+0x33/0x40 [ 1023.467342] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1023.468427] RIP: 0033:0x7f051132ab19 [ 1023.469220] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1023.473105] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1023.474712] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 1023.476215] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1023.477720] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 1023.479222] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1023.480718] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 02:56:23 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xa, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 02:56:23 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) bind$unix(0xffffffffffffffff, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(0xffffffffffffffff, 0x0) accept$unix(0xffffffffffffffff, 0x0, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) connect$unix(r0, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 02:56:23 executing program 3: r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) [ 1023.650225] FAULT_INJECTION: forcing a failure. [ 1023.650225] name failslab, interval 1, probability 0, space 0, times 0 [ 1023.652636] CPU: 1 PID: 7616 Comm: syz-executor.6 Not tainted 5.10.237 #1 [ 1023.654093] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1023.655848] Call Trace: [ 1023.656412] dump_stack+0x107/0x167 [ 1023.657195] should_fail.cold+0x5/0xa [ 1023.658005] ? kvmalloc_node+0x119/0x170 [ 1023.658875] should_failslab+0x5/0x20 [ 1023.659685] __kmalloc_node+0x76/0x420 [ 1023.660516] kvmalloc_node+0x119/0x170 [ 1023.661364] bucket_table_alloc.isra.0+0x88/0x490 [ 1023.662396] rhashtable_init+0x341/0x760 [ 1023.663261] rhltable_init+0x1c/0x60 [ 1023.664052] sta_info_init+0x1f/0x110 [ 1023.664859] ieee80211_alloc_hw_nm+0x6a0/0x2320 [ 1023.665851] ? trace_hardirqs_on+0x5b/0x180 [ 1023.666773] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1023.667816] ? ____sys_sendmsg+0x70d/0x870 [ 1023.668712] ? ___sys_sendmsg+0xf3/0x170 [ 1023.669575] ? __sys_sendmsg+0xe5/0x1b0 [ 1023.670411] ? do_syscall_64+0x33/0x40 [ 1023.671236] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1023.672368] ? lock_acquire+0x197/0x470 [ 1023.673205] ? create_object.isra.0+0x3ad/0xa20 [ 1023.674196] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1023.675178] ? __kmalloc+0x16e/0x390 [ 1023.675973] hwsim_new_radio_nl+0x991/0x1080 [ 1023.676902] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1023.678023] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1023.679414] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1023.680800] genl_family_rcv_msg_doit+0x22d/0x330 [ 1023.681831] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1023.683219] ? cap_capable+0x1cd/0x230 [ 1023.684056] ? ns_capable+0xe2/0x110 [ 1023.684847] genl_rcv_msg+0x36a/0x5a0 [ 1023.685661] ? genl_get_cmd+0x480/0x480 [ 1023.686499] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1023.687591] ? lock_release+0x680/0x680 [ 1023.688427] ? netlink_deliver_tap+0xf4/0xcc0 [ 1023.689388] netlink_rcv_skb+0x14b/0x430 [ 1023.690244] ? genl_get_cmd+0x480/0x480 [ 1023.691080] ? netlink_ack+0xab0/0xab0 [ 1023.691913] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1023.692882] ? is_vmalloc_addr+0x7b/0xb0 [ 1023.693755] genl_rcv+0x24/0x40 [ 1023.694454] netlink_unicast+0x54e/0x800 [ 1023.695315] ? netlink_attachskb+0x870/0x870 [ 1023.696253] netlink_sendmsg+0x90f/0xe00 [ 1023.697125] ? netlink_unicast+0x800/0x800 [ 1023.698029] ? netlink_unicast+0x800/0x800 [ 1023.698926] __sock_sendmsg+0x154/0x190 [ 1023.699770] ____sys_sendmsg+0x70d/0x870 [ 1023.700631] ? sock_write_iter+0x3d0/0x3d0 [ 1023.701531] ? do_recvmmsg+0x6d0/0x6d0 [ 1023.702355] ? lock_downgrade+0x6d0/0x6d0 [ 1023.703230] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1023.704339] ___sys_sendmsg+0xf3/0x170 [ 1023.705178] ? sendmsg_copy_msghdr+0x160/0x160 [ 1023.706147] ? __fget_files+0x2cf/0x520 [ 1023.706987] ? lock_downgrade+0x6d0/0x6d0 [ 1023.707862] ? find_held_lock+0x2c/0x110 [ 1023.708735] ? __fget_files+0x2f8/0x520 [ 1023.709595] ? __fget_light+0xea/0x290 [ 1023.710432] __sys_sendmsg+0xe5/0x1b0 [ 1023.711237] ? __sys_sendmsg_sock+0x40/0x40 [ 1023.712146] ? rcu_read_lock_any_held+0x75/0xa0 [ 1023.713163] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1023.714268] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1023.715360] do_syscall_64+0x33/0x40 [ 1023.716149] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1023.717249] RIP: 0033:0x7fa462201b19 [ 1023.718036] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1023.721958] RSP: 002b:00007fa45f777188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1023.723568] RAX: ffffffffffffffda RBX: 00007fa462314f60 RCX: 00007fa462201b19 [ 1023.725092] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1023.726603] RBP: 00007fa45f7771d0 R08: 0000000000000000 R09: 0000000000000000 [ 1023.728114] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1023.729631] R13: 00007ffc6547cc4f R14: 00007fa45f777300 R15: 0000000000022000 [ 1023.881818] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1023.883892] FAULT_INJECTION: forcing a failure. [ 1023.883892] name failslab, interval 1, probability 0, space 0, times 0 [ 1023.886418] CPU: 1 PID: 7623 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 1023.887863] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1023.889643] Call Trace: [ 1023.890208] dump_stack+0x107/0x167 [ 1023.890981] should_fail.cold+0x5/0xa [ 1023.891787] ? create_object.isra.0+0x3a/0xa20 [ 1023.892755] should_failslab+0x5/0x20 [ 1023.893590] kmem_cache_alloc+0x5b/0x310 [ 1023.894450] ? vsnprintf+0x4ba/0x1600 [ 1023.895256] create_object.isra.0+0x3a/0xa20 [ 1023.896184] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1023.897295] __kmalloc_track_caller+0x177/0x370 [ 1023.898273] ? kvasprintf_const+0x60/0x1a0 [ 1023.899175] kvasprintf+0xb5/0x150 [ 1023.899931] ? bust_spinlocks+0xe0/0xe0 [ 1023.900779] ? lock_release+0x680/0x680 [ 1023.901646] ? find_held_lock+0x2c/0x110 [ 1023.902513] kvasprintf_const+0x60/0x1a0 [ 1023.903379] kobject_set_name_vargs+0x56/0x150 [ 1023.904345] dev_set_name+0xbb/0xf0 [ 1023.905141] ? device_initialize+0x620/0x620 [ 1023.906074] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1023.907192] ? kmalloc_order+0xfe/0x160 [ 1023.908053] wiphy_new_nm+0x805/0x1e00 [ 1023.908882] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1023.909896] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1023.911009] ? __local_bh_enable_ip+0x9d/0x100 [ 1023.911972] ? trace_hardirqs_on+0x5b/0x180 [ 1023.912894] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1023.913955] ? trace_hardirqs_on+0x5b/0x180 [ 1023.914891] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1023.915876] ? __kmalloc+0x16e/0x390 [ 1023.916669] hwsim_new_radio_nl+0x991/0x1080 [ 1023.917624] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1023.918737] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1023.920140] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1023.921555] genl_family_rcv_msg_doit+0x22d/0x330 [ 1023.922581] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1023.923978] ? cap_capable+0x1cd/0x230 [ 1023.924815] ? ns_capable+0xe2/0x110 [ 1023.925638] genl_rcv_msg+0x36a/0x5a0 [ 1023.926457] ? genl_get_cmd+0x480/0x480 [ 1023.927303] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1023.928404] ? lock_release+0x680/0x680 [ 1023.929269] ? netlink_deliver_tap+0xf4/0xcc0 [ 1023.930229] netlink_rcv_skb+0x14b/0x430 [ 1023.931106] ? genl_get_cmd+0x480/0x480 [ 1023.931951] ? netlink_ack+0xab0/0xab0 [ 1023.932786] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1023.933796] ? is_vmalloc_addr+0x7b/0xb0 [ 1023.934659] genl_rcv+0x24/0x40 [ 1023.935361] netlink_unicast+0x54e/0x800 [ 1023.936224] ? netlink_attachskb+0x870/0x870 [ 1023.937188] netlink_sendmsg+0x90f/0xe00 [ 1023.938059] ? netlink_unicast+0x800/0x800 [ 1023.938971] ? netlink_unicast+0x800/0x800 [ 1023.939867] __sock_sendmsg+0x154/0x190 [ 1023.940715] ____sys_sendmsg+0x70d/0x870 [ 1023.941596] ? sock_write_iter+0x3d0/0x3d0 [ 1023.942496] ? do_recvmmsg+0x6d0/0x6d0 [ 1023.943323] ? lock_downgrade+0x6d0/0x6d0 [ 1023.944207] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1023.945348] ___sys_sendmsg+0xf3/0x170 [ 1023.946177] ? sendmsg_copy_msghdr+0x160/0x160 [ 1023.947148] ? __fget_files+0x2cf/0x520 [ 1023.947988] ? lock_downgrade+0x6d0/0x6d0 [ 1023.948866] ? find_held_lock+0x2c/0x110 [ 1023.949760] ? __fget_files+0x2f8/0x520 [ 1023.950618] ? __fget_light+0xea/0x290 [ 1023.951455] __sys_sendmsg+0xe5/0x1b0 [ 1023.952264] ? __sys_sendmsg_sock+0x40/0x40 [ 1023.953206] ? rcu_read_lock_any_held+0x75/0xa0 [ 1023.954206] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1023.955319] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1023.956410] do_syscall_64+0x33/0x40 [ 1023.957226] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1023.958309] RIP: 0033:0x7faee752eb19 [ 1023.959098] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1023.963019] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1023.964633] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 1023.966165] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1023.967672] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1023.969218] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1023.970723] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 [ 1024.009466] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 02:56:39 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 14) 02:56:39 executing program 3: r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 02:56:39 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xb, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 02:56:39 executing program 5: open(&(0x7f0000000140)='./file1\x00', 0x300, 0x38) r0 = openat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x25e103, 0x6) preadv(r0, 0x0, 0x0, 0x401, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:56:39 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 17) 02:56:39 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 02:56:39 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 14) 02:56:39 executing program 2: socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) [ 1040.017232] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.0'. 02:56:40 executing program 2: socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) [ 1040.069885] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1040.072274] FAULT_INJECTION: forcing a failure. [ 1040.072274] name failslab, interval 1, probability 0, space 0, times 0 [ 1040.074928] CPU: 0 PID: 7653 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 1040.076492] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1040.078451] Call Trace: [ 1040.079061] dump_stack+0x107/0x167 [ 1040.079906] should_fail.cold+0x5/0xa [ 1040.080789] ? rfkill_alloc+0xa6/0x2c0 [ 1040.081716] should_failslab+0x5/0x20 [ 1040.082599] __kmalloc+0x72/0x390 [ 1040.083404] rfkill_alloc+0xa6/0x2c0 [ 1040.084294] wiphy_new_nm+0x12a3/0x1e00 [ 1040.085222] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1040.086296] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1040.087516] ? __local_bh_enable_ip+0x9d/0x100 [ 1040.088553] ? trace_hardirqs_on+0x5b/0x180 [ 1040.089581] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1040.090738] ? trace_hardirqs_on+0x5b/0x180 [ 1040.091751] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1040.092820] ? __kmalloc+0x16e/0x390 [ 1040.093688] hwsim_new_radio_nl+0x991/0x1080 [ 1040.094697] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1040.095894] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1040.097387] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1040.098863] genl_family_rcv_msg_doit+0x22d/0x330 [ 1040.100003] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1040.101509] ? cap_capable+0x1cd/0x230 [ 1040.102426] ? ns_capable+0xe2/0x110 [ 1040.103278] genl_rcv_msg+0x36a/0x5a0 [ 1040.104147] ? genl_get_cmd+0x480/0x480 [ 1040.105084] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1040.106313] ? lock_release+0x680/0x680 [ 1040.107248] ? netlink_deliver_tap+0xf4/0xcc0 [ 1040.108267] netlink_rcv_skb+0x14b/0x430 [ 1040.109225] ? genl_get_cmd+0x480/0x480 [ 1040.110137] ? netlink_ack+0xab0/0xab0 [ 1040.111041] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1040.112085] ? is_vmalloc_addr+0x7b/0xb0 [ 1040.113030] genl_rcv+0x24/0x40 [ 1040.113801] netlink_unicast+0x54e/0x800 [ 1040.114756] ? netlink_attachskb+0x870/0x870 [ 1040.115761] netlink_sendmsg+0x90f/0xe00 [ 1040.116755] ? netlink_unicast+0x800/0x800 [ 1040.117760] ? netlink_unicast+0x800/0x800 [ 1040.118728] __sock_sendmsg+0x154/0x190 [ 1040.119624] ____sys_sendmsg+0x70d/0x870 [ 1040.120585] ? sock_write_iter+0x3d0/0x3d0 [ 1040.121566] ? do_recvmmsg+0x6d0/0x6d0 [ 1040.122470] ? lock_downgrade+0x6d0/0x6d0 [ 1040.123407] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1040.124602] ___sys_sendmsg+0xf3/0x170 [ 1040.125504] ? sendmsg_copy_msghdr+0x160/0x160 [ 1040.126563] ? __fget_files+0x2cf/0x520 [ 1040.127470] ? lock_downgrade+0x6d0/0x6d0 [ 1040.128437] ? find_held_lock+0x2c/0x110 [ 1040.129402] ? __fget_files+0x2f8/0x520 [ 1040.130316] ? __fget_light+0xea/0x290 [ 1040.131226] __sys_sendmsg+0xe5/0x1b0 [ 1040.132107] ? __sys_sendmsg_sock+0x40/0x40 [ 1040.133101] ? rcu_read_lock_any_held+0x75/0xa0 [ 1040.134184] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1040.135399] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1040.136605] do_syscall_64+0x33/0x40 [ 1040.137475] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1040.138655] RIP: 0033:0x7faee752eb19 [ 1040.139517] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1040.143761] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1040.145540] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 1040.147165] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1040.148817] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1040.150478] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1040.152134] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 [ 1040.155894] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1040.158026] FAULT_INJECTION: forcing a failure. [ 1040.158026] name failslab, interval 1, probability 0, space 0, times 0 [ 1040.160700] CPU: 0 PID: 7652 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 1040.162301] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1040.164238] Call Trace: [ 1040.164845] dump_stack+0x107/0x167 [ 1040.165696] should_fail.cold+0x5/0xa [ 1040.166595] ? rfkill_alloc+0xa6/0x2c0 [ 1040.167471] should_failslab+0x5/0x20 [ 1040.168328] __kmalloc+0x72/0x390 [ 1040.169153] rfkill_alloc+0xa6/0x2c0 [ 1040.170002] wiphy_new_nm+0x12a3/0x1e00 [ 1040.170919] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1040.171986] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1040.173180] ? __local_bh_enable_ip+0x9d/0x100 [ 1040.174230] ? trace_hardirqs_on+0x5b/0x180 [ 1040.175212] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1040.176314] ? trace_hardirqs_on+0x5b/0x180 [ 1040.177322] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1040.178382] ? __kmalloc+0x16e/0x390 [ 1040.179230] hwsim_new_radio_nl+0x991/0x1080 [ 1040.180228] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1040.181422] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1040.182934] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1040.184434] genl_family_rcv_msg_doit+0x22d/0x330 [ 1040.185537] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1040.187026] ? cap_capable+0x1cd/0x230 [ 1040.187921] ? ns_capable+0xe2/0x110 [ 1040.188775] genl_rcv_msg+0x36a/0x5a0 [ 1040.189651] ? genl_get_cmd+0x480/0x480 [ 1040.190555] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1040.191730] ? lock_release+0x680/0x680 [ 1040.192632] ? netlink_deliver_tap+0xf4/0xcc0 [ 1040.193659] netlink_rcv_skb+0x14b/0x430 [ 1040.194575] ? genl_get_cmd+0x480/0x480 [ 1040.195459] ? netlink_ack+0xab0/0xab0 [ 1040.196356] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1040.197399] ? is_vmalloc_addr+0x7b/0xb0 [ 1040.198321] genl_rcv+0x24/0x40 [ 1040.199064] netlink_unicast+0x54e/0x800 [ 1040.199988] ? netlink_attachskb+0x870/0x870 [ 1040.201001] netlink_sendmsg+0x90f/0xe00 [ 1040.201932] ? netlink_unicast+0x800/0x800 [ 1040.202901] ? netlink_unicast+0x800/0x800 [ 1040.203855] __sock_sendmsg+0x154/0x190 [ 1040.204779] ____sys_sendmsg+0x70d/0x870 [ 1040.205708] ? sock_write_iter+0x3d0/0x3d0 [ 1040.206666] ? do_recvmmsg+0x6d0/0x6d0 [ 1040.207558] ? lock_downgrade+0x6d0/0x6d0 [ 1040.208495] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1040.209701] ___sys_sendmsg+0xf3/0x170 [ 1040.210590] ? sendmsg_copy_msghdr+0x160/0x160 [ 1040.211623] ? __fget_files+0x2cf/0x520 [ 1040.212518] ? lock_downgrade+0x6d0/0x6d0 [ 1040.213466] ? find_held_lock+0x2c/0x110 [ 1040.214395] ? __fget_files+0x2f8/0x520 [ 1040.215307] ? __fget_light+0xea/0x290 [ 1040.216195] __sys_sendmsg+0xe5/0x1b0 [ 1040.217091] ? __sys_sendmsg_sock+0x40/0x40 [ 1040.218075] ? rcu_read_lock_any_held+0x75/0xa0 [ 1040.219159] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1040.220348] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1040.221579] do_syscall_64+0x33/0x40 [ 1040.222450] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1040.223638] RIP: 0033:0x7f051132ab19 [ 1040.224519] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1040.228783] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1040.230545] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 1040.232207] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1040.233852] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 1040.235484] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1040.237147] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 [ 1040.239265] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. [ 1040.280309] FAULT_INJECTION: forcing a failure. [ 1040.280309] name failslab, interval 1, probability 0, space 0, times 0 [ 1040.282935] CPU: 0 PID: 7655 Comm: syz-executor.6 Not tainted 5.10.237 #1 [ 1040.284514] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1040.286451] Call Trace: [ 1040.287065] dump_stack+0x107/0x167 [ 1040.287912] should_fail.cold+0x5/0xa [ 1040.288802] ? create_object.isra.0+0x3a/0xa20 [ 1040.289877] should_failslab+0x5/0x20 [ 1040.290758] kmem_cache_alloc+0x5b/0x310 [ 1040.291699] create_object.isra.0+0x3a/0xa20 [ 1040.292714] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1040.293945] __kmalloc_node+0x1ae/0x420 [ 1040.294885] kvmalloc_node+0x119/0x170 [ 1040.295808] bucket_table_alloc.isra.0+0x88/0x490 [ 1040.296916] rhashtable_init+0x341/0x760 [ 1040.297845] rhltable_init+0x1c/0x60 [ 1040.298687] sta_info_init+0x1f/0x110 [ 1040.299546] ieee80211_alloc_hw_nm+0x6a0/0x2320 [ 1040.300603] ? trace_hardirqs_on+0x5b/0x180 [ 1040.301581] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1040.302707] ? ____sys_sendmsg+0x70d/0x870 [ 1040.303693] ? ___sys_sendmsg+0xf3/0x170 [ 1040.304622] ? __sys_sendmsg+0xe5/0x1b0 [ 1040.305562] ? do_syscall_64+0x33/0x40 [ 1040.306448] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1040.307687] ? lock_acquire+0x197/0x470 [ 1040.308586] ? create_object.isra.0+0x3ad/0xa20 [ 1040.309679] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1040.310734] ? __kmalloc+0x16e/0x390 [ 1040.311586] hwsim_new_radio_nl+0x991/0x1080 [ 1040.312602] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1040.313824] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1040.315326] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1040.316857] genl_family_rcv_msg_doit+0x22d/0x330 [ 1040.317992] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1040.319568] ? cap_capable+0x1cd/0x230 [ 1040.320528] ? ns_capable+0xe2/0x110 [ 1040.321403] genl_rcv_msg+0x36a/0x5a0 [ 1040.322285] ? genl_get_cmd+0x480/0x480 [ 1040.323217] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1040.324406] ? lock_release+0x680/0x680 [ 1040.325345] ? netlink_deliver_tap+0xf4/0xcc0 [ 1040.326404] netlink_rcv_skb+0x14b/0x430 [ 1040.327332] ? genl_get_cmd+0x480/0x480 [ 1040.328243] ? netlink_ack+0xab0/0xab0 [ 1040.329142] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1040.330184] ? is_vmalloc_addr+0x7b/0xb0 [ 1040.331096] genl_rcv+0x24/0x40 [ 1040.331852] netlink_unicast+0x54e/0x800 [ 1040.332779] ? netlink_attachskb+0x870/0x870 [ 1040.333807] netlink_sendmsg+0x90f/0xe00 [ 1040.334723] ? netlink_unicast+0x800/0x800 [ 1040.335707] ? netlink_unicast+0x800/0x800 [ 1040.336649] __sock_sendmsg+0x154/0x190 [ 1040.337581] ____sys_sendmsg+0x70d/0x870 [ 1040.338517] ? sock_write_iter+0x3d0/0x3d0 [ 1040.339477] ? do_recvmmsg+0x6d0/0x6d0 [ 1040.340379] ? lock_downgrade+0x6d0/0x6d0 [ 1040.341353] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1040.342557] ___sys_sendmsg+0xf3/0x170 [ 1040.343456] ? sendmsg_copy_msghdr+0x160/0x160 [ 1040.344500] ? __fget_files+0x2cf/0x520 [ 1040.345409] ? lock_downgrade+0x6d0/0x6d0 [ 1040.346372] ? find_held_lock+0x2c/0x110 [ 1040.347299] ? __fget_files+0x2f8/0x520 [ 1040.348238] ? __fget_light+0xea/0x290 [ 1040.349148] __sys_sendmsg+0xe5/0x1b0 [ 1040.350021] ? __sys_sendmsg_sock+0x40/0x40 [ 1040.350997] ? rcu_read_lock_any_held+0x75/0xa0 [ 1040.352083] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1040.353309] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1040.354475] do_syscall_64+0x33/0x40 [ 1040.355340] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1040.356530] RIP: 0033:0x7fa462201b19 [ 1040.357410] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1040.361667] RSP: 002b:00007fa45f777188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1040.363389] RAX: ffffffffffffffda RBX: 00007fa462314f60 RCX: 00007fa462201b19 [ 1040.365071] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1040.366710] RBP: 00007fa45f7771d0 R08: 0000000000000000 R09: 0000000000000000 [ 1040.368338] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1040.369985] R13: 00007ffc6547cc4f R14: 00007fa45f777300 R15: 0000000000022000 02:56:55 executing program 5: open(&(0x7f0000000140)='./file1\x00', 0x300, 0x38) openat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x25e103, 0x6) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:56:55 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 18) 02:56:55 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 15) 02:56:55 executing program 3: r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 02:56:55 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 15) 02:56:55 executing program 2: socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:56:55 executing program 0: r0 = socket$inet(0x2, 0x3, 0x2) setsockopt$inet_mreqn(r0, 0x0, 0xc8, 0x0, 0x4) r1 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c) sendmsg$inet(r1, &(0x7f00000000c0)={&(0x7f0000000180)={0x2, 0x4e21, @multicast1}, 0x10, 0x0}, 0x0) r2 = open(&(0x7f0000000000)='./file0\x00', 0x20000, 0x84) sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000780)={&(0x7f00000001c0)={0xa, 0x4e24, 0x0, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010100}, 0xfffffff9}, 0x1c, &(0x7f00000006c0)=[{&(0x7f0000000200)="e9c02697724de7a28ca9bbab6a7f853f85fc386b1df9cbb8c645ea6670cf34155a0da4fd821dc098b08c3b15993e7a9755be6907345fb0e6df73d1c4f56b095184", 0x41}, {&(0x7f0000000280)="34d5e3b8f27c3b2d08068e213b", 0xd}, {&(0x7f00000002c0)="0fa6156d9ad418d242f05996bc61eac2e4e3fc3b766770bcef90f1868d51c21eabb6d00b57593256eb47c38be601db91ba3d1906f555570876d53ce65d664e9904425359e32e67723a101f18cdaceb3d41f153cd50a096d8a7ee9ab7db5ff965ea2cbb850a38bdc5dfcef3b189", 0x6d}, {&(0x7f0000000340)="5811dc6a828f0be217b6801910052ae7559ce15986f952a5bca1b3164c1c7a9045e302c52f4b0faf525948bae6856701eb96153ceb6efe547abe23bbe2caba01bcaa318bd5293224d60c43396c0ba860bdec02840623e8f7ec16b97fa1e762f4092010208aeaafc8f47522aa416441dd83ea26ad13fa0c74daf7450f7010541851211226b039f90e0524320994a3168638a51199fffffde35f3074afaf457363d692d56e8e83ab6cba02969bf316d3aac0bfb5d33068ca6097a2599efd6c1297c85b39b0b6408095acb40eb9ff65e54b1f8d8aac170169be05a4694585dd7c3bbcb539f0317c06e28c83b2f26a059fa78d", 0xf1}, {&(0x7f0000000440)="fdb4d8a9247674954e14a599a8d6291ac9b7fc3de2c008ac622ea8a009ed8ef8c5359682db3204ff2846a88f06e1e445f5cfa38e9f69accb02d8d70aff7810bcf6154dd3a9447a0e438d4180fccaab3ac0c4f545a3056fed7bc1bc2a686cdf4120565dc296c0d788de9fe915e287a7c5996a8ff58767189377f66409b37cf4ccacd3ecd0ddea980ba449517196bfd118b3cb6fc92d3ccf4564ff9703fb336bbebf136e2b615e661bc9bb3b88d320489d", 0xb0}, {&(0x7f0000000500)="6862e470faace7b1915da24b9bb479e91c3bee18f0a9971356c7805766606c7e649f113aaf5c667446f67842192488057600b60592f9fc73192003457c29532f72c494c5a5f9de4a8ce1d123d4c44a4f49d2e51a6e5355c7848a89604c186d70c83a16fc01e61032505078e28174fb0ee885a54beeae3dbf63de22f3844d1c3e0d571718626576e0acd15a3bc7735d42de9ebf817978ed1518fb5245605d8ceef4c243fb566e3cf22cacb7", 0xab}, {&(0x7f00000005c0)="7d89d51396b6f84322b2143c45d762d02c39757916d9e88d08863eb2c3e12ebfeb0f4b963b7d64aff186a9ecb6412317bb823f2a26a47e900b4b3c08acfbbd87b21fea8750f8b20f1f0154ae2dbf40e7f1374438a597d326711bf974d6a54fc12bb2987f1b6411e20edbbbb16dc2d6866441", 0x72}, {&(0x7f0000000640)="995a55ea759640ee2d6b606ce1585ce520aac0b17fc567099ff2521d960a9a32bf9a351082acbf329c447c27368ea3394374eb6d42211fb63fb1586fb6094c68810d8427ff8843405d91b5e3ce076b94b4fa6ef8a8faac8a2998c1f590", 0x5d}], 0x8, &(0x7f0000000740)=[@hopopts_2292={{0x28, 0x29, 0x36, {0x29, 0x1, '\x00', [@pad1, @enc_lim={0x4, 0x1, 0x3}, @ra={0x5, 0x2, 0x3ff}, @pad1]}}}, @tclass={{0x14, 0x29, 0x43, 0xfffffff7}}], 0x40}, 0x4) r3 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000007c0), 0x420001, 0x0) setsockopt$inet_MCAST_LEAVE_GROUP(r3, 0x0, 0x2d, &(0x7f0000000800)={0x8, {{0x2, 0x4e20, @broadcast}}}, 0x88) getsockopt$inet6_buf(r2, 0x29, 0x2d, &(0x7f0000000040)=""/122, &(0x7f0000000140)=0x7a) 02:56:55 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xc, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1055.726486] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1055.731207] FAULT_INJECTION: forcing a failure. [ 1055.731207] name failslab, interval 1, probability 0, space 0, times 0 [ 1055.732694] CPU: 1 PID: 7673 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 1055.733572] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1055.734632] Call Trace: [ 1055.734970] dump_stack+0x107/0x167 [ 1055.735437] should_fail.cold+0x5/0xa [ 1055.735930] ? create_object.isra.0+0x3a/0xa20 [ 1055.736535] should_failslab+0x5/0x20 [ 1055.737016] kmem_cache_alloc+0x5b/0x310 [ 1055.737557] create_object.isra.0+0x3a/0xa20 [ 1055.738115] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1055.738762] __kmalloc+0x16e/0x390 [ 1055.739226] rfkill_alloc+0xa6/0x2c0 [ 1055.739703] wiphy_new_nm+0x12a3/0x1e00 [ 1055.740220] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1055.740812] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1055.741484] ? __local_bh_enable_ip+0x9d/0x100 [ 1055.742069] ? trace_hardirqs_on+0x5b/0x180 [ 1055.742625] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1055.743254] ? trace_hardirqs_on+0x5b/0x180 [ 1055.743814] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1055.744397] ? __kmalloc+0x16e/0x390 [ 1055.744870] hwsim_new_radio_nl+0x991/0x1080 [ 1055.745430] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1055.746106] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1055.746948] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1055.747770] genl_family_rcv_msg_doit+0x22d/0x330 [ 1055.748377] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1055.749212] ? cap_capable+0x1cd/0x230 [ 1055.749720] ? ns_capable+0xe2/0x110 [ 1055.750195] genl_rcv_msg+0x36a/0x5a0 [ 1055.750675] ? genl_get_cmd+0x480/0x480 [ 1055.751172] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1055.751825] ? lock_release+0x680/0x680 [ 1055.752320] ? netlink_deliver_tap+0xf4/0xcc0 [ 1055.752885] netlink_rcv_skb+0x14b/0x430 [ 1055.753406] ? genl_get_cmd+0x480/0x480 [ 1055.753907] ? netlink_ack+0xab0/0xab0 [ 1055.754405] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1055.754993] ? is_vmalloc_addr+0x7b/0xb0 [ 1055.755514] genl_rcv+0x24/0x40 [ 1055.755936] netlink_unicast+0x54e/0x800 [ 1055.756462] ? netlink_attachskb+0x870/0x870 [ 1055.757036] netlink_sendmsg+0x90f/0xe00 [ 1055.757557] ? netlink_unicast+0x800/0x800 [ 1055.758097] ? netlink_unicast+0x800/0x800 [ 1055.758634] __sock_sendmsg+0x154/0x190 [ 1055.759131] ____sys_sendmsg+0x70d/0x870 [ 1055.759649] ? sock_write_iter+0x3d0/0x3d0 [ 1055.760176] ? do_recvmmsg+0x6d0/0x6d0 [ 1055.760668] ? lock_downgrade+0x6d0/0x6d0 [ 1055.761190] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1055.761868] ___sys_sendmsg+0xf3/0x170 [ 1055.762363] ? sendmsg_copy_msghdr+0x160/0x160 [ 1055.762945] ? __fget_files+0x2cf/0x520 [ 1055.763441] ? lock_downgrade+0x6d0/0x6d0 [ 1055.763967] ? find_held_lock+0x2c/0x110 [ 1055.764492] ? __fget_files+0x2f8/0x520 [ 1055.764994] ? __fget_light+0xea/0x290 [ 1055.765495] __sys_sendmsg+0xe5/0x1b0 [ 1055.765970] ? __sys_sendmsg_sock+0x40/0x40 [ 1055.766520] ? rcu_read_lock_any_held+0x75/0xa0 [ 1055.767109] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1055.767765] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1055.768408] do_syscall_64+0x33/0x40 [ 1055.768878] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1055.769522] RIP: 0033:0x7f051132ab19 [ 1055.769986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1055.772303] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1055.773267] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 1055.774168] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1055.775071] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 1055.776036] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1055.776958] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 02:56:55 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, 0x0, 0x0) 02:56:55 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) [ 1055.834800] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 02:56:55 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, 0x0, 0x0) 02:56:55 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='devtmpfs\x00', 0x4, 0x0) syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000006c0)='./file0\x00', 0x100000001, 0x8, &(0x7f0000001a80)=[{&(0x7f0000000700)="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", 0xfe, 0x1}, {&(0x7f0000000800)="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", 0x1000, 0x401}, {&(0x7f0000001800)="2cb521b44f0f7b4012e73c78404178ecb8206bd20cc7432df11f7ad4e265d6414a75a454304fd69233435944bbe5adbe90a9511765e33be650ef460d3833f6baa1d76c22c5045865d25034bea2744e0627d9d2f80642cea8", 0x58, 0x8}, {&(0x7f0000001880)="2c0659bcb2fefef5", 0x8, 0x5f98267a}, {&(0x7f00000018c0)="39c4925fcc13367a4a3fcf178320f8970186723738f2ed2d052bda3238d5048de004ac39fbdaf4b7161bc851ca63d14a2fba03d5449af20c", 0x38}, {&(0x7f0000001900)="8428c5930ab40069396a140110c403a093c032739b80eddf325c820c877c5bf49766b020fce12faf0228709c188622cf8a897dd159b83fa026138100f047f82ef1b14ea1a26936ea56768e59bb82452f17e5f62893890a2e16a06f2acf9dc73fef9daf9cf72a68b5429d6dd17fd421081f3c0ebeebbb8f9a3fe590ecbd44ad2a778bfbbd3838898f5e630fbbdf5b091a", 0x90, 0x81}, {&(0x7f00000019c0)="bde9759eee37bc058bd71ad7448da35de87d4b5bd3e2592f6f3f05ca4b0b2ca4104568050da6436c7f3755a1344a639eefc523c8953cff18de73e18d23c4423d3a0b0e5a7b6cb86df9", 0x49, 0xffffffffffff5097}, {&(0x7f0000001a40)="4d0a5545ab0003c3decb6674c0cd6990e19bdd2df3", 0x15, 0x99a4}], 0x214400, &(0x7f0000001b40)={[{@debug}, {@nodelalloc}, {@jqfmt_vfsv1}, {@usrjquota}, {@mblk_io_submit}]}) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000380)=@IORING_OP_SEND={0x1a, 0x5, 0x0, r0, 0x0, &(0x7f0000000340)="fc733839658f2c83a434e80cd28c4707b4e6bc817df7c3eff73d7473cc4a69c08e6e", 0x22, 0x41, 0x1}, 0x2) r1 = openat$nvram(0xffffffffffffff9c, &(0x7f00000003c0), 0x210000, 0x0) sendto$unix(r1, &(0x7f0000000400)="d87a5250e981a77b2e1f93ef773e8314129c3daa349494c81ade77cdfd277ed6ec23f1d274884e2941067ae7f50bb382670633bdd8729e2803264e277513f2a7d0d99370cf005b09c0c1dfff22b351d04d7d1db4a1fe9a6b2f840c2de8ed0ec016bb41b16b91efb332915adad4db5e57ecf719168979c7b3868762d21fafd5f8f0c9a9388e6e7e131d9ba0a30e1cc0ebfe8272ac274befe4ee959f2e389d3802b3a795", 0xa3, 0x1, &(0x7f0000000500)=@file={0x0, './file0\x00'}, 0x6e) perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x7fffffff}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = open$dir(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) getdents(r2, &(0x7f0000002180)=""/4090, 0xffa) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000080)=@nfc_llcp={0x27, 0x0, 0x0, 0x0, 0x0, 0x0, "c9f8e650da8d1f569053e8984b83777318760a5238f6af85581608069a64b06b92de9de827a06da13dfd0a7244f9276114abb0c4ea0c40656d1732e262fd02"}}, 0x0) syz_io_uring_setup(0x1c28, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000180)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x0, 0x0}, 0x0) syz_mount_image$nfs(&(0x7f00000000c0), 0x0, 0x200, 0x1, &(0x7f0000000140)=[{&(0x7f0000000280)="fc461e7b17e9f63a3555a828d8bb49d5162904edfb61ae0820e5cf5a09d9d1839f0a032f2459fccc133d4ed3e36934091e2c52ca154da84a1b08142e3faafc39f852ae2c79b8eb4933865e9a3003ff7a2a98519f0e7ce6a424160e4f2b48ba8a132820686a572691ae6eea1c752e024c830ea9397c668a7990225f75d3e0dba35470ed1f272fa6c9170753645f31b27829d13ce97ffbad48ba6099b4135f07dc8a", 0xa1, 0xfffffffffffff372}], 0x100c002, &(0x7f0000000580)=ANY=[@ANYBLOB="2f6465762f6e7672616d002c646f6e745f6d6561737572652c277d9c6e20706398758398cc28dc53520f7908349068cf23c647be7f2d8d52b039038350c586928f204ba89f50b6aeffac39b3efdbf682a7f0c84e587a314bb2abdaa99b593eacb79ab3fc4296429fc22e74279c1166a313cae6f1fec0991831969357171d97df8a399f336cdcced592fffa6386a7d099c847b732932c582d0367b485a2129bfd973393e8ad89240613c4a18d61a6a530dae520eecd1f47999a4ecbe12aefe1d985e95c089caae48b3f0bea814103e4342e7b1ae8", @ANYRESDEC=0xee00, @ANYBLOB='\ffowner>', @ANYRESDEC=0x0, @ANYRESHEX=r3]) r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x2) r6 = fcntl$dupfd(r5, 0x0, r5) write$sndseq(r6, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x8) r7 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)={0x1c, 0x18, 0xd01, 0x0, 0x0, {0x80}, [@nested={0x5, 0x0, 0x0, 0x1, [@generic="11"]}]}, 0x1c}}, 0x0) 02:56:55 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 16) [ 1055.931913] loop0: detected capacity change from 0 to 135266304 [ 1055.946115] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 1055.972674] FAULT_INJECTION: forcing a failure. [ 1055.972674] name failslab, interval 1, probability 0, space 0, times 0 [ 1055.975265] CPU: 0 PID: 7677 Comm: syz-executor.6 Not tainted 5.10.237 #1 [ 1055.976799] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1055.978696] Call Trace: [ 1055.979298] dump_stack+0x107/0x167 [ 1055.980126] should_fail.cold+0x5/0xa [ 1055.980992] should_failslab+0x5/0x20 [ 1055.981860] __kmalloc_track_caller+0x79/0x370 [ 1055.982906] ? kasprintf+0xbb/0xf0 [ 1055.983724] kvasprintf+0xb5/0x150 [ 1055.984526] ? bust_spinlocks+0xe0/0xe0 [ 1055.985419] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1055.986573] ? get_random_u32+0x3cb/0x670 [ 1055.987506] kasprintf+0xbb/0xf0 [ 1055.988261] ? kvasprintf_const+0x1a0/0x1a0 [ 1055.989245] ? lockdep_init_map_type+0x2c7/0x780 [ 1055.990327] ? lockdep_init_map_type+0x2c7/0x780 [ 1055.991396] ieee80211_alloc_led_names+0x82/0x420 [ 1055.992455] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1055.993526] ? trace_hardirqs_on+0x5b/0x180 [ 1055.994488] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1055.995580] ? ____sys_sendmsg+0x70d/0x870 [ 1055.996529] ? ___sys_sendmsg+0xf3/0x170 [ 1055.997446] ? __sys_sendmsg+0xe5/0x1b0 [ 1055.998336] ? do_syscall_64+0x33/0x40 [ 1055.999217] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1056.000409] ? lock_acquire+0x197/0x470 [ 1056.001302] ? create_object.isra.0+0x3ad/0xa20 [ 1056.002351] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1056.003382] ? __kmalloc+0x16e/0x390 [ 1056.004215] hwsim_new_radio_nl+0x991/0x1080 [ 1056.005197] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1056.006366] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1056.007833] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1056.009317] genl_family_rcv_msg_doit+0x22d/0x330 [ 1056.010413] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1056.011918] ? cap_capable+0x1cd/0x230 [ 1056.012815] ? ns_capable+0xe2/0x110 [ 1056.013675] genl_rcv_msg+0x36a/0x5a0 [ 1056.014545] ? genl_get_cmd+0x480/0x480 [ 1056.015460] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1056.016642] ? lock_release+0x680/0x680 [ 1056.017561] ? netlink_deliver_tap+0xf4/0xcc0 [ 1056.018594] netlink_rcv_skb+0x14b/0x430 [ 1056.019529] ? genl_get_cmd+0x480/0x480 [ 1056.020434] ? netlink_ack+0xab0/0xab0 [ 1056.021339] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1056.022380] ? is_vmalloc_addr+0x7b/0xb0 [ 1056.023316] genl_rcv+0x24/0x40 [ 1056.024061] netlink_unicast+0x54e/0x800 [ 1056.025008] ? netlink_attachskb+0x870/0x870 [ 1056.026033] netlink_sendmsg+0x90f/0xe00 [ 1056.026969] ? netlink_unicast+0x800/0x800 [ 1056.027947] ? netlink_unicast+0x800/0x800 [ 1056.028909] __sock_sendmsg+0x154/0x190 [ 1056.029825] ____sys_sendmsg+0x70d/0x870 [ 1056.030752] ? sock_write_iter+0x3d0/0x3d0 [ 1056.031715] ? do_recvmmsg+0x6d0/0x6d0 [ 1056.032600] ? lock_downgrade+0x6d0/0x6d0 [ 1056.033551] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1056.034746] ___sys_sendmsg+0xf3/0x170 [ 1056.035633] ? sendmsg_copy_msghdr+0x160/0x160 [ 1056.036686] ? __fget_files+0x2cf/0x520 [ 1056.037593] ? lock_downgrade+0x6d0/0x6d0 [ 1056.038544] ? find_held_lock+0x2c/0x110 [ 1056.039480] ? __fget_files+0x2f8/0x520 [ 1056.040390] ? __fget_light+0xea/0x290 [ 1056.041293] __sys_sendmsg+0xe5/0x1b0 [ 1056.042161] ? __sys_sendmsg_sock+0x40/0x40 [ 1056.043154] ? rcu_read_lock_any_held+0x75/0xa0 [ 1056.044231] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1056.045430] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1056.046602] do_syscall_64+0x33/0x40 [ 1056.047449] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1056.048608] RIP: 0033:0x7fa462201b19 [ 1056.049460] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1056.053636] RSP: 002b:00007fa45f777188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1056.055357] RAX: ffffffffffffffda RBX: 00007fa462314f60 RCX: 00007fa462201b19 [ 1056.056975] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1056.058600] RBP: 00007fa45f7771d0 R08: 0000000000000000 R09: 0000000000000000 [ 1056.060214] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1056.061848] R13: 00007ffc6547cc4f R14: 00007fa45f777300 R15: 0000000000022000 [ 1056.083531] loop0: detected capacity change from 0 to 8381952 [ 1056.103929] loop0: detected capacity change from 0 to 135266304 [ 1056.114876] EXT4-fs (loop0): VFS: Can't find ext4 filesystem [ 1056.146145] loop0: detected capacity change from 0 to 8381952 [ 1056.171864] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1056.173992] FAULT_INJECTION: forcing a failure. [ 1056.173992] name failslab, interval 1, probability 0, space 0, times 0 [ 1056.176672] CPU: 0 PID: 7683 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 1056.178240] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1056.180150] Call Trace: [ 1056.180757] dump_stack+0x107/0x167 [ 1056.181603] should_fail.cold+0x5/0xa [ 1056.182477] ? create_object.isra.0+0x3a/0xa20 [ 1056.183535] should_failslab+0x5/0x20 [ 1056.184420] kmem_cache_alloc+0x5b/0x310 [ 1056.185363] create_object.isra.0+0x3a/0xa20 [ 1056.186358] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1056.187526] __kmalloc+0x16e/0x390 [ 1056.188355] rfkill_alloc+0xa6/0x2c0 [ 1056.189220] wiphy_new_nm+0x12a3/0x1e00 [ 1056.190134] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1056.191211] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1056.192391] ? __local_bh_enable_ip+0x9d/0x100 [ 1056.193453] ? trace_hardirqs_on+0x5b/0x180 [ 1056.194447] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1056.195565] ? trace_hardirqs_on+0x5b/0x180 [ 1056.196554] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1056.197640] ? __kmalloc+0x16e/0x390 [ 1056.198494] hwsim_new_radio_nl+0x991/0x1080 [ 1056.199530] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1056.200717] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1056.202237] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1056.203708] genl_family_rcv_msg_doit+0x22d/0x330 [ 1056.204824] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1056.206359] ? cap_capable+0x1cd/0x230 [ 1056.207262] ? ns_capable+0xe2/0x110 [ 1056.208124] genl_rcv_msg+0x36a/0x5a0 [ 1056.209011] ? genl_get_cmd+0x480/0x480 [ 1056.209943] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1056.211158] ? lock_release+0x680/0x680 [ 1056.212073] ? netlink_deliver_tap+0xf4/0xcc0 [ 1056.213100] netlink_rcv_skb+0x14b/0x430 [ 1056.214036] ? genl_get_cmd+0x480/0x480 [ 1056.214937] ? netlink_ack+0xab0/0xab0 [ 1056.215826] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1056.216885] ? is_vmalloc_addr+0x7b/0xb0 [ 1056.217818] genl_rcv+0x24/0x40 [ 1056.218571] netlink_unicast+0x54e/0x800 [ 1056.219492] ? netlink_attachskb+0x870/0x870 [ 1056.220507] netlink_sendmsg+0x90f/0xe00 [ 1056.221442] ? netlink_unicast+0x800/0x800 [ 1056.222419] ? netlink_unicast+0x800/0x800 [ 1056.223384] __sock_sendmsg+0x154/0x190 [ 1056.224282] ____sys_sendmsg+0x70d/0x870 [ 1056.225217] ? sock_write_iter+0x3d0/0x3d0 [ 1056.226182] ? do_recvmmsg+0x6d0/0x6d0 [ 1056.227092] ? lock_downgrade+0x6d0/0x6d0 [ 1056.228033] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1056.229223] ___sys_sendmsg+0xf3/0x170 [ 1056.230118] ? sendmsg_copy_msghdr+0x160/0x160 [ 1056.231156] ? __fget_files+0x2cf/0x520 [ 1056.232068] ? lock_downgrade+0x6d0/0x6d0 [ 1056.233004] ? find_held_lock+0x2c/0x110 [ 1056.233951] ? __fget_files+0x2f8/0x520 [ 1056.234858] ? __fget_light+0xea/0x290 [ 1056.235746] __sys_sendmsg+0xe5/0x1b0 [ 1056.236623] ? __sys_sendmsg_sock+0x40/0x40 [ 1056.237611] ? rcu_read_lock_any_held+0x75/0xa0 [ 1056.238711] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1056.239894] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1056.241098] do_syscall_64+0x33/0x40 [ 1056.241954] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1056.243120] RIP: 0033:0x7faee752eb19 [ 1056.243962] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1056.248229] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1056.249970] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 1056.251623] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1056.253245] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1056.254871] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1056.256458] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 [ 1056.293000] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1056.295106] FAULT_INJECTION: forcing a failure. [ 1056.295106] name failslab, interval 1, probability 0, space 0, times 0 [ 1056.297838] CPU: 0 PID: 7690 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 1056.299409] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1056.301301] Call Trace: [ 1056.301906] dump_stack+0x107/0x167 [ 1056.302737] should_fail.cold+0x5/0xa [ 1056.303600] ? kvmalloc_node+0x119/0x170 [ 1056.304526] should_failslab+0x5/0x20 [ 1056.305398] __kmalloc_node+0x76/0x420 [ 1056.306291] kvmalloc_node+0x119/0x170 [ 1056.307184] bucket_table_alloc.isra.0+0x88/0x490 [ 1056.308301] rhashtable_init+0x341/0x760 [ 1056.309234] rhltable_init+0x1c/0x60 [ 1056.310112] sta_info_init+0x1f/0x110 [ 1056.310978] ieee80211_alloc_hw_nm+0x6a0/0x2320 [ 1056.312056] ? trace_hardirqs_on+0x5b/0x180 [ 1056.313042] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1056.314192] ? trace_hardirqs_on+0x5b/0x180 [ 1056.315191] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1056.316288] ? __kmalloc+0x16e/0x390 [ 1056.317148] hwsim_new_radio_nl+0x991/0x1080 [ 1056.318181] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1056.319369] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1056.320876] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1056.322364] genl_family_rcv_msg_doit+0x22d/0x330 [ 1056.323479] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1056.325008] ? cap_capable+0x1cd/0x230 [ 1056.325916] ? ns_capable+0xe2/0x110 [ 1056.326777] genl_rcv_msg+0x36a/0x5a0 [ 1056.327671] ? genl_get_cmd+0x480/0x480 [ 1056.328591] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1056.329789] ? lock_release+0x680/0x680 [ 1056.330707] ? netlink_deliver_tap+0xf4/0xcc0 [ 1056.331750] netlink_rcv_skb+0x14b/0x430 [ 1056.332672] ? genl_get_cmd+0x480/0x480 [ 1056.333581] ? netlink_ack+0xab0/0xab0 [ 1056.334480] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1056.335550] ? is_vmalloc_addr+0x7b/0xb0 [ 1056.336488] genl_rcv+0x24/0x40 [ 1056.337247] netlink_unicast+0x54e/0x800 [ 1056.338202] ? netlink_attachskb+0x870/0x870 [ 1056.339232] netlink_sendmsg+0x90f/0xe00 [ 1056.340181] ? netlink_unicast+0x800/0x800 [ 1056.341177] ? netlink_unicast+0x800/0x800 [ 1056.342154] __sock_sendmsg+0x154/0x190 [ 1056.343083] ____sys_sendmsg+0x70d/0x870 [ 1056.344026] ? sock_write_iter+0x3d0/0x3d0 [ 1056.344986] ? do_recvmmsg+0x6d0/0x6d0 [ 1056.345891] ? lock_downgrade+0x6d0/0x6d0 [ 1056.346874] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1056.348097] ___sys_sendmsg+0xf3/0x170 [ 1056.349002] ? sendmsg_copy_msghdr+0x160/0x160 [ 1056.350037] ? __fget_files+0x2cf/0x520 [ 1056.350939] ? lock_downgrade+0x6d0/0x6d0 [ 1056.351898] ? find_held_lock+0x2c/0x110 [ 1056.352839] ? __fget_files+0x2f8/0x520 [ 1056.353797] ? __fget_light+0xea/0x290 [ 1056.354687] __sys_sendmsg+0xe5/0x1b0 [ 1056.355562] ? __sys_sendmsg_sock+0x40/0x40 [ 1056.356569] ? rcu_read_lock_any_held+0x75/0xa0 [ 1056.357674] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1056.358880] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1056.360079] do_syscall_64+0x33/0x40 [ 1056.360927] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1056.362131] RIP: 0033:0x7f051132ab19 [ 1056.363019] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1056.367204] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1056.368888] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 1056.370514] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1056.372154] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 1056.373791] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1056.375419] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 02:57:09 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, 0x0, 0x0) 02:57:09 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 17) 02:57:09 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 16) 02:57:09 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 02:57:09 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xd, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 02:57:09 executing program 5: open(&(0x7f0000000140)='./file1\x00', 0x300, 0x38) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:57:09 executing program 0: syz_mount_image$iso9660(0x0, 0x0, 0x0, 0x1, &(0x7f0000000440)=[{0x0}], 0x0, 0x0) r0 = syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x401, 0x7, &(0x7f0000000340)=[{&(0x7f0000000080)="9de9b02ddf031063d1a01e116574", 0xe, 0xfffffffffffffae7}, {&(0x7f00000000c0)="39ebaa38a2e7cb10a28528b62fec743e87f189888f3362f8e43277e5f6521f6eee8f7b6bac54fe55979f18", 0x2b, 0xfff}, {&(0x7f0000000480)="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", 0x1000}, {&(0x7f0000000100)="c8ea8fb2f7a8af736eed475f0975b344af9913a7fd406ba58a3a70f3eac0042f79240334", 0x24, 0x3}, {&(0x7f0000000140)="b7641b2bad1f9213795e4c4d143682b92185cdc31e34e0b53c0217184bbd48efc67272499248e15c852374cfe20b3b6ed82b6a2c7df63189e9242dcb4e381b6f764240575d8ab9c1217646ea2fa0b26a6fb41aaa6efdac91692a6ca5c248a2187d1fa5d442b0710ae29c07770008362f110e8ac48e2c36459ea656dd3b3a82391271e3ef82a08f7b0d71ee965bac41f0ceb60a8aab5d7e839572b12416a0add234387bf5148447b9f12b035f5610f6df27ee7dc4f8f54717108fb12aaa1c66451d80599411b50ec8afe33fb3349f33", 0xcf, 0x8001}, {&(0x7f0000000240)="ba1997f556cb5af690e9a97aa9af02a86e085ba312e8c5fbd41ba651d24c43b1722b7c069ef8040129c6f8a03727046800649ebe32ec484e1871db5bad08081de84ceeca628e4c870fa3c219a3ed14ec6290d340c8c6614ada17fa48d2be82fc3ea522510c51a01ecece1fcabeb6a8bab874b9e00d31703d01b29d714d8f1d23854ba1f4b846ac1bb140b0f27b7ec3bacfa441a4efb0fe8c8178f25858d07734e44362f74e4b", 0xa6, 0x7}, {&(0x7f0000000300)="213774f8e67eee5fe7812fd41e8a3aa98b31c0060f834ccb83fc", 0x1a, 0x7}], 0x200080, &(0x7f0000001480)={[{@check_relaxed}, {@uid={'uid', 0x3d, 0xee00}}, {@map_off}, {@utf8}], [{@smackfshat={'smackfshat', 0x3d, '(-$'}}, {@subj_role}, {@fscontext={'fscontext', 0x3d, 'user_u'}}, {@euid_gt={'euid>', 0xee01}}, {@seclabel}, {@dont_measure}, {@audit}, {@func={'func', 0x3d, 'CREDS_CHECK'}}, {@fsuuid={'fsuuid', 0x3d, {[0x32, 0x33, 0xa, 0x35, 0x32, 0x33, 0x38, 0x63], 0x2d, [0x64, 0x61, 0x38, 0x30], 0x2d, [0x31, 0x65, 0x62, 0x67], 0x2d, [0x30, 0x66, 0x61, 0x37], 0x2d, [0x38, 0x33, 0x63, 0x39, 0x31, 0x30, 0x31, 0x61]}}}, {@uid_lt={'uid<', 0xee00}}]}) openat(r0, &(0x7f0000000400)='./file0\x00', 0x60082, 0x4) 02:57:09 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 19) 02:57:09 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x801}, 0x0) [ 1069.192970] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 02:57:09 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:57:09 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:57:09 executing program 0: ioctl$TIOCL_PASTESEL(0xffffffffffffffff, 0x541c, &(0x7f0000000080)) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='stack\x00') ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r0, 0xc0189374, &(0x7f0000000180)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./^ile0\x00']) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r1, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) setsockopt$SO_TIMESTAMP(r1, 0x1, 0x1d, &(0x7f0000000000)=0xd, 0x4) recvmmsg(r1, &(0x7f0000003880)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) 02:57:09 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) [ 1069.264991] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1069.267029] FAULT_INJECTION: forcing a failure. [ 1069.267029] name failslab, interval 1, probability 0, space 0, times 0 [ 1069.269467] CPU: 1 PID: 7722 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 1069.270926] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1069.272699] Call Trace: [ 1069.273269] dump_stack+0x107/0x167 [ 1069.274064] should_fail.cold+0x5/0xa [ 1069.274882] ? create_object.isra.0+0x3a/0xa20 [ 1069.275860] should_failslab+0x5/0x20 [ 1069.276670] kmem_cache_alloc+0x5b/0x310 [ 1069.277550] create_object.isra.0+0x3a/0xa20 [ 1069.278489] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1069.279555] __kmalloc_node+0x1ae/0x420 [ 1069.280413] kvmalloc_node+0x119/0x170 [ 1069.281237] bucket_table_alloc.isra.0+0x88/0x490 [ 1069.282273] rhashtable_init+0x341/0x760 [ 1069.283142] rhltable_init+0x1c/0x60 [ 1069.283940] sta_info_init+0x1f/0x110 [ 1069.284756] ieee80211_alloc_hw_nm+0x6a0/0x2320 [ 1069.285755] ? trace_hardirqs_on+0x5b/0x180 [ 1069.286683] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1069.287725] ? trace_hardirqs_on+0x5b/0x180 [ 1069.288661] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1069.289663] ? __kmalloc+0x16e/0x390 [ 1069.290466] hwsim_new_radio_nl+0x991/0x1080 [ 1069.291406] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1069.292521] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1069.293929] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1069.295323] genl_family_rcv_msg_doit+0x22d/0x330 [ 1069.296359] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1069.297770] ? cap_capable+0x1cd/0x230 [ 1069.298611] ? ns_capable+0xe2/0x110 [ 1069.299413] genl_rcv_msg+0x36a/0x5a0 [ 1069.300228] ? genl_get_cmd+0x480/0x480 [ 1069.301079] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1069.302189] ? lock_release+0x680/0x680 [ 1069.303035] ? netlink_deliver_tap+0xf4/0xcc0 [ 1069.303991] netlink_rcv_skb+0x14b/0x430 [ 1069.304853] ? genl_get_cmd+0x480/0x480 [ 1069.305697] ? netlink_ack+0xab0/0xab0 [ 1069.306540] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1069.307519] ? is_vmalloc_addr+0x7b/0xb0 [ 1069.308384] genl_rcv+0x24/0x40 [ 1069.309086] netlink_unicast+0x54e/0x800 [ 1069.309962] ? netlink_attachskb+0x870/0x870 [ 1069.310906] netlink_sendmsg+0x90f/0xe00 [ 1069.311776] ? netlink_unicast+0x800/0x800 [ 1069.312691] ? netlink_unicast+0x800/0x800 [ 1069.313605] __sock_sendmsg+0x154/0x190 [ 1069.314453] ____sys_sendmsg+0x70d/0x870 [ 1069.315324] ? sock_write_iter+0x3d0/0x3d0 [ 1069.316218] ? do_recvmmsg+0x6d0/0x6d0 [ 1069.317049] ? lock_downgrade+0x6d0/0x6d0 [ 1069.317941] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1069.319056] ___sys_sendmsg+0xf3/0x170 [ 1069.319886] ? sendmsg_copy_msghdr+0x160/0x160 [ 1069.320860] ? __fget_files+0x2cf/0x520 [ 1069.321710] ? lock_downgrade+0x6d0/0x6d0 [ 1069.322592] ? find_held_lock+0x2c/0x110 [ 1069.323469] ? __fget_files+0x2f8/0x520 [ 1069.324328] ? __fget_light+0xea/0x290 [ 1069.325164] __sys_sendmsg+0xe5/0x1b0 [ 1069.325985] ? __sys_sendmsg_sock+0x40/0x40 [ 1069.326903] ? rcu_read_lock_any_held+0x75/0xa0 [ 1069.327905] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1069.329017] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1069.330122] do_syscall_64+0x33/0x40 [ 1069.330915] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1069.332003] RIP: 0033:0x7f051132ab19 [ 1069.332792] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1069.336691] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1069.338310] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 1069.339822] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1069.341328] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 1069.342853] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1069.344366] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 02:57:09 executing program 0: syz_emit_ethernet(0x42, &(0x7f0000000040)={@local, @multicast, @void, {@ipv4={0x800, @udp={{0xb, 0x4, 0x0, 0x0, 0x34, 0x0, 0x0, 0x0, 0x33, 0x0, @private=0xa010100, @remote, {[@rr={0x44, 0x17, 0x12, [@local, @loopback, @multicast2, @dev, @loopback]}]}}, {0x0, 0x0, 0x8}}}}}, 0x0) syz_emit_ethernet(0x1011, &(0x7f00000000c0)={@empty, @local, @void, {@llc={0x4, {@llc={0xbc, 0xf0, "93", "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"}}}}}, &(0x7f0000000000)={0x0, 0x4, [0xf84, 0xd16, 0x354, 0xb9e]}) 02:57:09 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:57:09 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x0, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 02:57:09 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xe, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1069.458675] FAULT_INJECTION: forcing a failure. [ 1069.458675] name failslab, interval 1, probability 0, space 0, times 0 [ 1069.461181] CPU: 1 PID: 7724 Comm: syz-executor.6 Not tainted 5.10.237 #1 [ 1069.462643] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1069.464404] Call Trace: [ 1069.464965] dump_stack+0x107/0x167 [ 1069.465752] should_fail.cold+0x5/0xa [ 1069.466565] ? create_object.isra.0+0x3a/0xa20 [ 1069.467535] should_failslab+0x5/0x20 [ 1069.468343] kmem_cache_alloc+0x5b/0x310 [ 1069.469209] ? vsnprintf+0x4ba/0x1600 [ 1069.470030] create_object.isra.0+0x3a/0xa20 [ 1069.470962] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1069.472041] __kmalloc_track_caller+0x177/0x370 [ 1069.473026] ? kasprintf+0xbb/0xf0 [ 1069.473795] kvasprintf+0xb5/0x150 [ 1069.474552] ? bust_spinlocks+0xe0/0xe0 [ 1069.475406] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1069.476520] ? get_random_u32+0x3cb/0x670 [ 1069.477416] kasprintf+0xbb/0xf0 [ 1069.478150] ? kvasprintf_const+0x1a0/0x1a0 [ 1069.479079] ? lockdep_init_map_type+0x2c7/0x780 [ 1069.480090] ? lockdep_init_map_type+0x2c7/0x780 [ 1069.481109] ieee80211_alloc_led_names+0x82/0x420 [ 1069.482146] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1069.483161] ? trace_hardirqs_on+0x5b/0x180 [ 1069.484083] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1069.485126] ? ____sys_sendmsg+0x70d/0x870 [ 1069.486034] ? ___sys_sendmsg+0xf3/0x170 [ 1069.486900] ? __sys_sendmsg+0xe5/0x1b0 [ 1069.487744] ? do_syscall_64+0x33/0x40 [ 1069.488568] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1069.489707] ? lock_acquire+0x197/0x470 [ 1069.490550] ? create_object.isra.0+0x3ad/0xa20 [ 1069.491544] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1069.492535] ? __kmalloc+0x16e/0x390 [ 1069.493330] hwsim_new_radio_nl+0x991/0x1080 [ 1069.494279] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1069.495395] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1069.496792] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1069.498191] genl_family_rcv_msg_doit+0x22d/0x330 [ 1069.499225] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1069.500637] ? cap_capable+0x1cd/0x230 [ 1069.501483] ? ns_capable+0xe2/0x110 [ 1069.502278] genl_rcv_msg+0x36a/0x5a0 [ 1069.503088] ? genl_get_cmd+0x480/0x480 [ 1069.503930] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1069.505030] ? lock_release+0x680/0x680 [ 1069.505882] ? netlink_deliver_tap+0xf4/0xcc0 [ 1069.506845] netlink_rcv_skb+0x14b/0x430 [ 1069.507708] ? genl_get_cmd+0x480/0x480 [ 1069.508551] ? netlink_ack+0xab0/0xab0 [ 1069.509390] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1069.510372] ? is_vmalloc_addr+0x7b/0xb0 [ 1069.511238] genl_rcv+0x24/0x40 [ 1069.511938] netlink_unicast+0x54e/0x800 [ 1069.512808] ? netlink_attachskb+0x870/0x870 [ 1069.513762] netlink_sendmsg+0x90f/0xe00 [ 1069.514631] ? netlink_unicast+0x800/0x800 [ 1069.515539] ? netlink_unicast+0x800/0x800 [ 1069.516441] __sock_sendmsg+0x154/0x190 [ 1069.517285] ____sys_sendmsg+0x70d/0x870 [ 1069.518165] ? sock_write_iter+0x3d0/0x3d0 [ 1069.519061] ? do_recvmmsg+0x6d0/0x6d0 [ 1069.519898] ? lock_downgrade+0x6d0/0x6d0 [ 1069.520780] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1069.521912] ___sys_sendmsg+0xf3/0x170 [ 1069.522745] ? sendmsg_copy_msghdr+0x160/0x160 [ 1069.523718] ? __fget_files+0x2cf/0x520 [ 1069.524560] ? lock_downgrade+0x6d0/0x6d0 [ 1069.525446] ? find_held_lock+0x2c/0x110 [ 1069.526327] ? __fget_files+0x2f8/0x520 [ 1069.527175] ? __fget_light+0xea/0x290 [ 1069.528017] __sys_sendmsg+0xe5/0x1b0 [ 1069.528831] ? __sys_sendmsg_sock+0x40/0x40 [ 1069.529757] ? rcu_read_lock_any_held+0x75/0xa0 [ 1069.530758] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1069.531868] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1069.532968] do_syscall_64+0x33/0x40 [ 1069.533768] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1069.534854] RIP: 0033:0x7fa462201b19 [ 1069.535640] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1069.539765] RSP: 002b:00007fa45f777188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1069.541380] RAX: ffffffffffffffda RBX: 00007fa462314f60 RCX: 00007fa462201b19 [ 1069.542893] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1069.544411] RBP: 00007fa45f7771d0 R08: 0000000000000000 R09: 0000000000000000 [ 1069.545931] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1069.547449] R13: 00007ffc6547cc4f R14: 00007fa45f777300 R15: 0000000000022000 [ 1069.587577] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1069.589192] FAULT_INJECTION: forcing a failure. [ 1069.589192] name failslab, interval 1, probability 0, space 0, times 0 [ 1069.590582] CPU: 0 PID: 7723 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 1069.591423] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1069.592450] Call Trace: [ 1069.592781] dump_stack+0x107/0x167 [ 1069.593225] should_fail.cold+0x5/0xa [ 1069.593700] ? kvmalloc_node+0x119/0x170 [ 1069.594196] should_failslab+0x5/0x20 [ 1069.594663] __kmalloc_node+0x76/0x420 [ 1069.595137] kvmalloc_node+0x119/0x170 [ 1069.595615] bucket_table_alloc.isra.0+0x88/0x490 [ 1069.596201] rhashtable_init+0x341/0x760 [ 1069.596708] rhltable_init+0x1c/0x60 [ 1069.597163] sta_info_init+0x1f/0x110 [ 1069.597693] ieee80211_alloc_hw_nm+0x6a0/0x2320 [ 1069.598257] ? trace_hardirqs_on+0x5b/0x180 [ 1069.598790] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1069.599383] ? trace_hardirqs_on+0x5b/0x180 [ 1069.599896] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1069.600459] ? __kmalloc+0x16e/0x390 [ 1069.600898] hwsim_new_radio_nl+0x991/0x1080 [ 1069.601444] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1069.602060] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1069.602835] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1069.603624] genl_family_rcv_msg_doit+0x22d/0x330 [ 1069.604209] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1069.605007] ? cap_capable+0x1cd/0x230 [ 1069.605498] ? ns_capable+0xe2/0x110 [ 1069.605953] genl_rcv_msg+0x36a/0x5a0 [ 1069.606414] ? genl_get_cmd+0x480/0x480 [ 1069.606903] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1069.607533] ? lock_release+0x680/0x680 [ 1069.608013] ? netlink_deliver_tap+0xf4/0xcc0 [ 1069.608540] netlink_rcv_skb+0x14b/0x430 [ 1069.609029] ? genl_get_cmd+0x480/0x480 [ 1069.609519] ? netlink_ack+0xab0/0xab0 [ 1069.610000] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1069.610559] ? is_vmalloc_addr+0x7b/0xb0 [ 1069.611053] genl_rcv+0x24/0x40 [ 1069.611457] netlink_unicast+0x54e/0x800 [ 1069.611941] ? netlink_attachskb+0x870/0x870 [ 1069.612475] netlink_sendmsg+0x90f/0xe00 [ 1069.612970] ? netlink_unicast+0x800/0x800 [ 1069.613499] ? netlink_unicast+0x800/0x800 [ 1069.614021] __sock_sendmsg+0x154/0x190 [ 1069.614502] ____sys_sendmsg+0x70d/0x870 [ 1069.614997] ? sock_write_iter+0x3d0/0x3d0 [ 1069.615489] ? do_recvmmsg+0x6d0/0x6d0 [ 1069.615966] ? lock_downgrade+0x6d0/0x6d0 [ 1069.616468] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1069.617106] ___sys_sendmsg+0xf3/0x170 [ 1069.617586] ? sendmsg_copy_msghdr+0x160/0x160 [ 1069.618141] ? __fget_files+0x2cf/0x520 [ 1069.618623] ? lock_downgrade+0x6d0/0x6d0 [ 1069.619126] ? find_held_lock+0x2c/0x110 [ 1069.619624] ? __fget_files+0x2f8/0x520 [ 1069.620111] ? __fget_light+0xea/0x290 [ 1069.620588] __sys_sendmsg+0xe5/0x1b0 [ 1069.621049] ? __sys_sendmsg_sock+0x40/0x40 [ 1069.621580] ? rcu_read_lock_any_held+0x75/0xa0 [ 1069.622130] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1069.622772] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1069.623397] do_syscall_64+0x33/0x40 [ 1069.623867] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1069.624488] RIP: 0033:0x7faee752eb19 [ 1069.624941] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1069.627184] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1069.628107] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 1069.628941] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1069.629813] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1069.630643] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1069.631506] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 [ 1069.707584] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 02:57:24 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000100)=ANY=[], 0x10) sendfile(r0, r1, 0x0, 0x100000001) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) r3 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) dup2(r0, r3) getdents(r2, &(0x7f0000000180)=""/198, 0xc6) ioctl$EVIOCSCLOCKID(r2, 0x400445a0, &(0x7f0000000040)=0x3) r4 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x101142, 0x0) r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) write$P9_RREADLINK(r4, 0x0, 0x10) sendfile(r4, r5, 0x0, 0x100000001) 02:57:24 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 18) 02:57:24 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 20) 02:57:24 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 17) [ 1084.630636] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. 02:57:24 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xf, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 02:57:24 executing program 5: socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:57:24 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={0x0}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:57:24 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x0, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) [ 1084.638220] FAULT_INJECTION: forcing a failure. [ 1084.638220] name failslab, interval 1, probability 0, space 0, times 0 [ 1084.640728] CPU: 1 PID: 7766 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 1084.642227] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1084.644030] Call Trace: [ 1084.644605] dump_stack+0x107/0x167 [ 1084.645397] should_fail.cold+0x5/0xa [ 1084.646243] should_failslab+0x5/0x20 [ 1084.647069] __kmalloc_track_caller+0x79/0x370 [ 1084.648061] ? kasprintf+0xbb/0xf0 [ 1084.648843] kvasprintf+0xb5/0x150 [ 1084.649626] ? bust_spinlocks+0xe0/0xe0 [ 1084.650494] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1084.651636] ? get_random_u32+0x3cb/0x670 [ 1084.652544] kasprintf+0xbb/0xf0 [ 1084.653286] ? kvasprintf_const+0x1a0/0x1a0 [ 1084.654238] ? lockdep_init_map_type+0x2c7/0x780 [ 1084.655270] ? lockdep_init_map_type+0x2c7/0x780 [ 1084.656308] ieee80211_alloc_led_names+0x82/0x420 [ 1084.657358] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1084.658394] ? trace_hardirqs_on+0x5b/0x180 [ 1084.659338] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1084.660398] ? trace_hardirqs_on+0x5b/0x180 [ 1084.661351] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1084.662367] ? __kmalloc+0x16e/0x390 [ 1084.663180] hwsim_new_radio_nl+0x991/0x1080 [ 1084.664137] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1084.665274] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1084.666707] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1084.668123] genl_family_rcv_msg_doit+0x22d/0x330 [ 1084.669157] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1084.670608] ? cap_capable+0x1cd/0x230 [ 1084.671464] ? ns_capable+0xe2/0x110 [ 1084.672281] genl_rcv_msg+0x36a/0x5a0 [ 1084.673107] ? genl_get_cmd+0x480/0x480 [ 1084.673981] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1084.675101] ? lock_release+0x680/0x680 [ 1084.675957] ? netlink_deliver_tap+0xf4/0xcc0 [ 1084.676932] netlink_rcv_skb+0x14b/0x430 [ 1084.677818] ? genl_get_cmd+0x480/0x480 [ 1084.678680] ? netlink_ack+0xab0/0xab0 [ 1084.679531] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1084.680520] ? is_vmalloc_addr+0x7b/0xb0 [ 1084.681403] genl_rcv+0x24/0x40 [ 1084.682139] netlink_unicast+0x54e/0x800 [ 1084.683025] ? netlink_attachskb+0x870/0x870 [ 1084.683990] netlink_sendmsg+0x90f/0xe00 [ 1084.684879] ? netlink_unicast+0x800/0x800 [ 1084.685821] ? netlink_unicast+0x800/0x800 [ 1084.686744] __sock_sendmsg+0x154/0x190 [ 1084.687607] ____sys_sendmsg+0x70d/0x870 [ 1084.688493] ? sock_write_iter+0x3d0/0x3d0 [ 1084.689403] ? do_recvmmsg+0x6d0/0x6d0 [ 1084.690265] ? lock_downgrade+0x6d0/0x6d0 [ 1084.691168] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1084.692307] ___sys_sendmsg+0xf3/0x170 [ 1084.693152] ? sendmsg_copy_msghdr+0x160/0x160 [ 1084.694150] ? __fget_files+0x2cf/0x520 [ 1084.695009] ? lock_downgrade+0x6d0/0x6d0 [ 1084.695905] ? find_held_lock+0x2c/0x110 [ 1084.696794] ? __fget_files+0x2f8/0x520 [ 1084.697672] ? __fget_light+0xea/0x290 [ 1084.698524] __sys_sendmsg+0xe5/0x1b0 [ 1084.699352] ? __sys_sendmsg_sock+0x40/0x40 [ 1084.700284] ? rcu_read_lock_any_held+0x75/0xa0 [ 1084.701308] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1084.702448] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1084.703573] do_syscall_64+0x33/0x40 [ 1084.704381] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1084.705494] RIP: 0033:0x7f051132ab19 [ 1084.706308] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1084.710307] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1084.711962] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 1084.713518] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1084.715075] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 1084.716621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1084.718180] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 02:57:24 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={0x0}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:57:24 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x0, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 02:57:24 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) [ 1084.807579] FAULT_INJECTION: forcing a failure. [ 1084.807579] name failslab, interval 1, probability 0, space 0, times 0 [ 1084.810030] CPU: 1 PID: 7761 Comm: syz-executor.6 Not tainted 5.10.237 #1 [ 1084.811503] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1084.813277] Call Trace: [ 1084.813856] dump_stack+0x107/0x167 [ 1084.814626] should_fail.cold+0x5/0xa [ 1084.815450] should_failslab+0x5/0x20 [ 1084.816260] __kmalloc_track_caller+0x79/0x370 [ 1084.817234] ? kasprintf+0xbb/0xf0 [ 1084.818009] kvasprintf+0xb5/0x150 [ 1084.818771] ? bust_spinlocks+0xe0/0xe0 [ 1084.819617] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1084.820733] ? get_random_u32+0x3cb/0x670 [ 1084.821628] kasprintf+0xbb/0xf0 [ 1084.822356] ? kvasprintf_const+0x1a0/0x1a0 [ 1084.823276] ? lockdep_init_map_type+0x2c7/0x780 [ 1084.824283] ? lockdep_init_map_type+0x2c7/0x780 [ 1084.825307] ieee80211_alloc_led_names+0x117/0x420 [ 1084.826361] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1084.827370] ? trace_hardirqs_on+0x5b/0x180 [ 1084.828293] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1084.829337] ? ____sys_sendmsg+0x70d/0x870 [ 1084.830246] ? ___sys_sendmsg+0xf3/0x170 [ 1084.831101] ? __sys_sendmsg+0xe5/0x1b0 [ 1084.831930] ? do_syscall_64+0x33/0x40 [ 1084.832752] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1084.833889] ? create_object.isra.0+0x3ad/0xa20 [ 1084.834878] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1084.835860] ? __kmalloc+0x16e/0x390 [ 1084.836649] hwsim_new_radio_nl+0x991/0x1080 [ 1084.837590] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1084.838696] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1084.840098] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1084.841478] genl_family_rcv_msg_doit+0x22d/0x330 [ 1084.842516] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1084.843905] ? cap_capable+0x1cd/0x230 [ 1084.844741] ? ns_capable+0xe2/0x110 [ 1084.845546] genl_rcv_msg+0x36a/0x5a0 [ 1084.846364] ? genl_get_cmd+0x480/0x480 [ 1084.847206] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1084.848303] ? lock_release+0x680/0x680 [ 1084.849138] ? netlink_deliver_tap+0xf4/0xcc0 [ 1084.850100] netlink_rcv_skb+0x14b/0x430 [ 1084.850993] ? genl_get_cmd+0x480/0x480 [ 1084.851827] ? netlink_ack+0xab0/0xab0 [ 1084.852657] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1084.853621] ? is_vmalloc_addr+0x7b/0xb0 [ 1084.854473] genl_rcv+0x24/0x40 [ 1084.855166] netlink_unicast+0x54e/0x800 [ 1084.856025] ? netlink_attachskb+0x870/0x870 [ 1084.856963] netlink_sendmsg+0x90f/0xe00 [ 1084.857833] ? netlink_unicast+0x800/0x800 [ 1084.858732] ? netlink_unicast+0x800/0x800 [ 1084.859622] __sock_sendmsg+0x154/0x190 [ 1084.860463] ____sys_sendmsg+0x70d/0x870 [ 1084.861316] ? sock_write_iter+0x3d0/0x3d0 [ 1084.862218] ? do_recvmmsg+0x6d0/0x6d0 [ 1084.863038] ? lock_downgrade+0x6d0/0x6d0 [ 1084.863913] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1084.865023] ___sys_sendmsg+0xf3/0x170 [ 1084.865854] ? sendmsg_copy_msghdr+0x160/0x160 [ 1084.866819] ? __fget_files+0x2cf/0x520 [ 1084.867659] ? lock_downgrade+0x6d0/0x6d0 [ 1084.868535] ? find_held_lock+0x2c/0x110 [ 1084.869413] ? __fget_files+0x2f8/0x520 [ 1084.870270] ? __fget_light+0xea/0x290 [ 1084.871094] __sys_sendmsg+0xe5/0x1b0 [ 1084.871892] ? __sys_sendmsg_sock+0x40/0x40 [ 1084.872801] ? rcu_read_lock_any_held+0x75/0xa0 [ 1084.873809] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1084.874912] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1084.875996] do_syscall_64+0x33/0x40 [ 1084.876782] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1084.877866] RIP: 0033:0x7fa462201b19 [ 1084.878647] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1084.882530] RSP: 002b:00007fa45f777188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1084.884137] RAX: ffffffffffffffda RBX: 00007fa462314f60 RCX: 00007fa462201b19 [ 1084.885645] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1084.887140] RBP: 00007fa45f7771d0 R08: 0000000000000000 R09: 0000000000000000 [ 1084.888639] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1084.890142] R13: 00007ffc6547cc4f R14: 00007fa45f777300 R15: 0000000000022000 02:57:24 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 02:57:24 executing program 5: socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:57:24 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={0x0}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:57:24 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 19) [ 1084.963152] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1084.965701] FAULT_INJECTION: forcing a failure. [ 1084.965701] name failslab, interval 1, probability 0, space 0, times 0 [ 1084.968282] CPU: 1 PID: 7763 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 1084.969741] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1084.971487] Call Trace: [ 1084.972048] dump_stack+0x107/0x167 [ 1084.972832] should_fail.cold+0x5/0xa [ 1084.973649] ? create_object.isra.0+0x3a/0xa20 [ 1084.974613] should_failslab+0x5/0x20 [ 1084.975415] kmem_cache_alloc+0x5b/0x310 [ 1084.976274] create_object.isra.0+0x3a/0xa20 [ 1084.977201] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1084.978281] __kmalloc_node+0x1ae/0x420 [ 1084.979127] kvmalloc_node+0x119/0x170 [ 1084.979955] bucket_table_alloc.isra.0+0x88/0x490 [ 1084.980983] rhashtable_init+0x341/0x760 [ 1084.981853] rhltable_init+0x1c/0x60 [ 1084.982643] sta_info_init+0x1f/0x110 [ 1084.983455] ieee80211_alloc_hw_nm+0x6a0/0x2320 [ 1084.984442] ? trace_hardirqs_on+0x5b/0x180 [ 1084.985352] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1084.986385] ? trace_hardirqs_on+0x5b/0x180 [ 1084.987319] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1084.988302] ? __kmalloc+0x16e/0x390 [ 1084.989070] hwsim_new_radio_nl+0x991/0x1080 [ 1084.990030] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1084.991105] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1084.992473] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1084.993854] genl_family_rcv_msg_doit+0x22d/0x330 [ 1084.994873] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1084.996263] ? cap_capable+0x1cd/0x230 [ 1084.997097] ? ns_capable+0xe2/0x110 [ 1084.997891] genl_rcv_msg+0x36a/0x5a0 [ 1084.998697] ? genl_get_cmd+0x480/0x480 [ 1084.999534] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1085.000625] ? lock_release+0x680/0x680 [ 1085.001461] ? netlink_deliver_tap+0xf4/0xcc0 [ 1085.002425] netlink_rcv_skb+0x14b/0x430 [ 1085.003279] ? genl_get_cmd+0x480/0x480 [ 1085.004118] ? netlink_ack+0xab0/0xab0 [ 1085.004943] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1085.005908] ? is_vmalloc_addr+0x7b/0xb0 [ 1085.006772] genl_rcv+0x24/0x40 [ 1085.007471] netlink_unicast+0x54e/0x800 [ 1085.008331] ? netlink_attachskb+0x870/0x870 [ 1085.009268] netlink_sendmsg+0x90f/0xe00 [ 1085.010142] ? netlink_unicast+0x800/0x800 [ 1085.011040] ? netlink_unicast+0x800/0x800 [ 1085.011933] __sock_sendmsg+0x154/0x190 [ 1085.012774] ____sys_sendmsg+0x70d/0x870 [ 1085.013639] ? sock_write_iter+0x3d0/0x3d0 [ 1085.014542] ? do_recvmmsg+0x6d0/0x6d0 [ 1085.015367] ? lock_downgrade+0x6d0/0x6d0 [ 1085.016246] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1085.017358] ___sys_sendmsg+0xf3/0x170 [ 1085.018198] ? sendmsg_copy_msghdr+0x160/0x160 [ 1085.019165] ? __fget_files+0x2cf/0x520 [ 1085.020003] ? lock_downgrade+0x6d0/0x6d0 [ 1085.020880] ? find_held_lock+0x2c/0x110 [ 1085.021757] ? __fget_files+0x2f8/0x520 [ 1085.022630] ? __fget_light+0xea/0x290 [ 1085.023461] __sys_sendmsg+0xe5/0x1b0 [ 1085.024267] ? __sys_sendmsg_sock+0x40/0x40 [ 1085.025176] ? rcu_read_lock_any_held+0x75/0xa0 [ 1085.026185] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1085.027291] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1085.028381] do_syscall_64+0x33/0x40 [ 1085.029165] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1085.030258] RIP: 0033:0x7faee752eb19 [ 1085.031054] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1085.034943] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1085.036565] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 1085.038081] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1085.039587] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1085.041096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1085.042608] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 02:57:25 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x0, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) [ 1085.111708] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. [ 1085.182359] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1085.187905] FAULT_INJECTION: forcing a failure. [ 1085.187905] name failslab, interval 1, probability 0, space 0, times 0 [ 1085.190678] CPU: 0 PID: 7790 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 1085.192358] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1085.194416] Call Trace: [ 1085.195094] dump_stack+0x107/0x167 [ 1085.196013] should_fail.cold+0x5/0xa [ 1085.196955] ? create_object.isra.0+0x3a/0xa20 [ 1085.198111] should_failslab+0x5/0x20 [ 1085.199071] kmem_cache_alloc+0x5b/0x310 [ 1085.200091] ? vsnprintf+0x4ba/0x1600 [ 1085.201038] create_object.isra.0+0x3a/0xa20 [ 1085.202143] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1085.203407] __kmalloc_track_caller+0x177/0x370 [ 1085.204576] ? kasprintf+0xbb/0xf0 [ 1085.205459] kvasprintf+0xb5/0x150 [ 1085.206364] ? bust_spinlocks+0xe0/0xe0 [ 1085.207354] ? get_random_u32+0x4eb/0x670 [ 1085.208395] ? get_random_u32+0x3cb/0x670 [ 1085.209438] kasprintf+0xbb/0xf0 [ 1085.210301] ? kvasprintf_const+0x1a0/0x1a0 [ 1085.211368] ? lockdep_init_map_type+0x2c7/0x780 [ 1085.212547] ? lockdep_init_map_type+0x2c7/0x780 [ 1085.213736] ieee80211_alloc_led_names+0x82/0x420 [ 1085.214924] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1085.216117] ? trace_hardirqs_on+0x5b/0x180 [ 1085.217203] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1085.218447] ? trace_hardirqs_on+0x5b/0x180 [ 1085.219542] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1085.220691] ? __kmalloc+0x16e/0x390 [ 1085.221638] hwsim_new_radio_nl+0x991/0x1080 [ 1085.222732] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1085.224033] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1085.225675] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1085.227285] genl_family_rcv_msg_doit+0x22d/0x330 [ 1085.228491] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1085.230134] ? cap_capable+0x1cd/0x230 [ 1085.231113] ? ns_capable+0xe2/0x110 [ 1085.232087] genl_rcv_msg+0x36a/0x5a0 [ 1085.233048] ? genl_get_cmd+0x480/0x480 [ 1085.234063] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1085.235345] ? lock_release+0x680/0x680 [ 1085.236325] ? netlink_deliver_tap+0xf4/0xcc0 [ 1085.237437] netlink_rcv_skb+0x14b/0x430 [ 1085.238460] ? genl_get_cmd+0x480/0x480 [ 1085.239462] ? netlink_ack+0xab0/0xab0 [ 1085.240440] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1085.241578] ? is_vmalloc_addr+0x7b/0xb0 [ 1085.242617] genl_rcv+0x24/0x40 [ 1085.243452] netlink_unicast+0x54e/0x800 [ 1085.244462] ? netlink_attachskb+0x870/0x870 [ 1085.245561] netlink_sendmsg+0x90f/0xe00 [ 1085.246584] ? netlink_unicast+0x800/0x800 [ 1085.247644] ? netlink_unicast+0x800/0x800 [ 1085.248639] __sock_sendmsg+0x154/0x190 [ 1085.249633] ____sys_sendmsg+0x70d/0x870 [ 1085.250618] ? sock_write_iter+0x3d0/0x3d0 [ 1085.251665] ? do_recvmmsg+0x6d0/0x6d0 [ 1085.252600] ? lock_downgrade+0x6d0/0x6d0 [ 1085.253687] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1085.255176] ___sys_sendmsg+0xf3/0x170 [ 1085.256258] ? sendmsg_copy_msghdr+0x160/0x160 [ 1085.257522] ? __fget_files+0x2cf/0x520 [ 1085.258339] ? lock_downgrade+0x6d0/0x6d0 [ 1085.259074] ? find_held_lock+0x2c/0x110 [ 1085.259803] ? __fget_files+0x2f8/0x520 [ 1085.260510] ? __fget_light+0xea/0x290 [ 1085.261205] __sys_sendmsg+0xe5/0x1b0 [ 1085.261892] ? __sys_sendmsg_sock+0x40/0x40 [ 1085.262650] ? rcu_read_lock_any_held+0x75/0xa0 [ 1085.263491] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1085.264421] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1085.265323] do_syscall_64+0x33/0x40 [ 1085.265991] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1085.266884] RIP: 0033:0x7f051132ab19 [ 1085.267540] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1085.270738] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1085.272079] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 1085.273320] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1085.274577] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 1085.275817] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1085.277075] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 02:57:39 executing program 5: socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:57:39 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 21) 02:57:39 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 02:57:39 executing program 0: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) syz_usb_connect$cdc_ecm(0x0, 0x4d, 0x0, 0x0) timer_delete(0x0) timer_create(0x3, &(0x7f0000000000)={0x0, 0x1c, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000040)=0x0) timer_settime(r0, 0x0, &(0x7f0000000480)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0) timer_gettime(0x0, &(0x7f00000002c0)) clock_gettime(0x0, &(0x7f0000000080)={0x0, 0x0}) timer_settime(r0, 0x1, &(0x7f00000000c0)={{0x77359400}, {r1, r2+10000000}}, &(0x7f0000000440)) socket$inet6_udplite(0xa, 0x2, 0x88) timer_create(0x0, &(0x7f0000000100)={0x0, 0x19, 0x2}, &(0x7f0000000140)=0x0) timer_gettime(r3, &(0x7f0000000600)) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r4, 0x4, 0x0, 0x1000002) getsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f00000004c0)={{{@in6=@local}}, {{@in6=@private2}, 0x0, @in=@broadcast}}, &(0x7f0000000180)=0xe8) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000280)='/sys/bus/machinecheck', 0x6281, 0x19) timer_delete(r0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) timer_create(0x0, &(0x7f0000000400)={0x0, 0x1e, 0x1, @thr={&(0x7f0000000300)="8b0384c57afe0387ee1bb57e039fd02ebcd27489d4ee03c3f7b31999c8c672459cce4698", &(0x7f0000000340)="0c3d72f6d73e90b0c10448604c760b364d8bcb4fc249e801e5eb2e60ac43af174377c8614cebec4cdfffe5a6e81d5e926a3b083efe50fd4cd86dbe2fc5968984872661d8aeab4d75223976c0c37398d64bf5afbc54f26c520d8afb9a76dac57f56dc0ae0800a5fe5fc6e1a324332c18630925cf2d9813aa64cfd01a13f5f8b107e1475f0cb9e9ea5b3eaf4"}}, &(0x7f00000005c0)) clone3(&(0x7f00000001c0)={0xc8182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1099.920955] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1099.923022] FAULT_INJECTION: forcing a failure. [ 1099.923022] name failslab, interval 1, probability 0, space 0, times 0 [ 1099.925403] CPU: 1 PID: 7809 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 1099.926859] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1099.928641] Call Trace: [ 1099.929208] dump_stack+0x107/0x167 [ 1099.929995] should_fail.cold+0x5/0xa [ 1099.930800] should_failslab+0x5/0x20 [ 1099.931590] __kmalloc_track_caller+0x79/0x370 [ 1099.932581] ? kasprintf+0xbb/0xf0 [ 1099.933339] kvasprintf+0xb5/0x150 [ 1099.934103] ? bust_spinlocks+0xe0/0xe0 [ 1099.934955] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1099.936078] ? get_random_u32+0x3cb/0x670 [ 1099.936954] kasprintf+0xbb/0xf0 [ 1099.937678] ? kvasprintf_const+0x1a0/0x1a0 [ 1099.938588] ? lockdep_init_map_type+0x2c7/0x780 [ 1099.939583] ? lockdep_init_map_type+0x2c7/0x780 [ 1099.940575] ieee80211_alloc_led_names+0x117/0x420 [ 1099.941611] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1099.942625] ? trace_hardirqs_on+0x5b/0x180 [ 1099.943533] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1099.944561] ? trace_hardirqs_on+0x5b/0x180 [ 1099.945490] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1099.946487] ? __kmalloc+0x16e/0x390 [ 1099.947276] hwsim_new_radio_nl+0x991/0x1080 [ 1099.948225] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1099.949322] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1099.950721] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1099.952084] genl_family_rcv_msg_doit+0x22d/0x330 [ 1099.953090] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1099.954512] ? cap_capable+0x1cd/0x230 [ 1099.955350] ? ns_capable+0xe2/0x110 [ 1099.956131] genl_rcv_msg+0x36a/0x5a0 [ 1099.956956] ? genl_get_cmd+0x480/0x480 02:57:39 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 20) 02:57:39 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 18) 02:57:39 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x0, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:57:39 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1099.957799] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1099.959113] ? lock_release+0x680/0x680 [ 1099.959959] ? netlink_deliver_tap+0xf4/0xcc0 [ 1099.960916] netlink_rcv_skb+0x14b/0x430 [ 1099.961792] ? genl_get_cmd+0x480/0x480 [ 1099.962640] ? netlink_ack+0xab0/0xab0 [ 1099.963481] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1099.964454] ? is_vmalloc_addr+0x7b/0xb0 [ 1099.965327] genl_rcv+0x24/0x40 [ 1099.966044] netlink_unicast+0x54e/0x800 [ 1099.966915] ? netlink_attachskb+0x870/0x870 02:57:39 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, 0x0, 0x0) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) [ 1099.967854] netlink_sendmsg+0x90f/0xe00 [ 1099.968881] ? netlink_unicast+0x800/0x800 02:57:39 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, 0x0, 0x0) [ 1099.969802] ? netlink_unicast+0x800/0x800 [ 1099.970793] __sock_sendmsg+0x154/0x190 [ 1099.971688] ____sys_sendmsg+0x70d/0x870 [ 1099.972557] ? sock_write_iter+0x3d0/0x3d0 [ 1099.973470] ? do_recvmmsg+0x6d0/0x6d0 [ 1099.974311] ? lock_downgrade+0x6d0/0x6d0 [ 1099.975196] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1099.976306] ___sys_sendmsg+0xf3/0x170 [ 1099.977140] ? sendmsg_copy_msghdr+0x160/0x160 [ 1099.978139] ? __fget_files+0x2cf/0x520 [ 1099.978984] ? lock_downgrade+0x6d0/0x6d0 [ 1099.979875] ? find_held_lock+0x2c/0x110 [ 1099.980750] ? __fget_files+0x2f8/0x520 [ 1099.981605] ? __fget_light+0xea/0x290 [ 1099.982446] __sys_sendmsg+0xe5/0x1b0 [ 1099.983250] ? __sys_sendmsg_sock+0x40/0x40 [ 1099.984161] ? rcu_read_lock_any_held+0x75/0xa0 [ 1099.985162] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1099.986266] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1099.987361] do_syscall_64+0x33/0x40 [ 1099.988161] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1099.989248] RIP: 0033:0x7f051132ab19 [ 1099.990047] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1099.993958] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1099.995569] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 1099.997087] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1099.998604] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 1100.000112] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1100.001625] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 02:57:40 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, 0x0, 0x0) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 02:57:40 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, 0x0, 0x0) 02:57:40 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x0, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) [ 1100.242365] FAULT_INJECTION: forcing a failure. [ 1100.242365] name failslab, interval 1, probability 0, space 0, times 0 [ 1100.245042] CPU: 0 PID: 7811 Comm: syz-executor.6 Not tainted 5.10.237 #1 [ 1100.246627] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1100.248526] Call Trace: [ 1100.249134] dump_stack+0x107/0x167 [ 1100.249981] should_fail.cold+0x5/0xa [ 1100.250853] should_failslab+0x5/0x20 [ 1100.251728] __kmalloc_track_caller+0x79/0x370 [ 1100.252771] ? kasprintf+0xbb/0xf0 [ 1100.253593] kvasprintf+0xb5/0x150 [ 1100.254410] ? bust_spinlocks+0xe0/0xe0 [ 1100.255323] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1100.256529] ? get_random_u32+0x3cb/0x670 [ 1100.257493] kasprintf+0xbb/0xf0 [ 1100.258267] ? kvasprintf_const+0x1a0/0x1a0 [ 1100.259255] ? lockdep_init_map_type+0x2c7/0x780 [ 1100.260332] ? lockdep_init_map_type+0x2c7/0x780 [ 1100.261429] ieee80211_alloc_led_names+0x117/0x420 [ 1100.262562] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1100.263634] ? trace_hardirqs_on+0x5b/0x180 [ 1100.264629] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1100.265758] ? ____sys_sendmsg+0x70d/0x870 [ 1100.266724] ? ___sys_sendmsg+0xf3/0x170 [ 1100.267648] ? __sys_sendmsg+0xe5/0x1b0 [ 1100.268556] ? do_syscall_64+0x33/0x40 [ 1100.269432] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1100.270661] ? lock_acquire+0x197/0x470 [ 1100.271572] ? create_object.isra.0+0x3ad/0xa20 [ 1100.272651] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1100.273721] ? __kmalloc+0x16e/0x390 [ 1100.274590] hwsim_new_radio_nl+0x991/0x1080 [ 1100.275590] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1100.276790] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1100.278298] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1100.279795] genl_family_rcv_msg_doit+0x22d/0x330 [ 1100.280904] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1100.282407] ? cap_capable+0x1cd/0x230 [ 1100.283310] ? ns_capable+0xe2/0x110 [ 1100.284168] genl_rcv_msg+0x36a/0x5a0 [ 1100.285044] ? genl_get_cmd+0x480/0x480 [ 1100.285963] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1100.287148] ? lock_release+0x680/0x680 [ 1100.288058] ? netlink_deliver_tap+0xf4/0xcc0 [ 1100.289081] netlink_rcv_skb+0x14b/0x430 [ 1100.290020] ? genl_get_cmd+0x480/0x480 [ 1100.290932] ? netlink_ack+0xab0/0xab0 [ 1100.291833] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1100.292881] ? is_vmalloc_addr+0x7b/0xb0 [ 1100.293824] genl_rcv+0x24/0x40 [ 1100.294577] netlink_unicast+0x54e/0x800 [ 1100.295504] ? netlink_attachskb+0x870/0x870 [ 1100.296523] netlink_sendmsg+0x90f/0xe00 [ 1100.297462] ? netlink_unicast+0x800/0x800 [ 1100.298445] ? netlink_unicast+0x800/0x800 [ 1100.299417] __sock_sendmsg+0x154/0x190 [ 1100.300329] ____sys_sendmsg+0x70d/0x870 [ 1100.301254] ? sock_write_iter+0x3d0/0x3d0 [ 1100.302229] ? do_recvmmsg+0x6d0/0x6d0 [ 1100.303127] ? lock_downgrade+0x6d0/0x6d0 [ 1100.304080] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1100.305286] ___sys_sendmsg+0xf3/0x170 [ 1100.306189] ? sendmsg_copy_msghdr+0x160/0x160 [ 1100.307234] ? __fget_files+0x2cf/0x520 [ 1100.308152] ? lock_downgrade+0x6d0/0x6d0 [ 1100.309118] ? find_held_lock+0x2c/0x110 [ 1100.310095] ? __fget_files+0x2f8/0x520 [ 1100.311028] ? __fget_light+0xea/0x290 [ 1100.311950] __sys_sendmsg+0xe5/0x1b0 [ 1100.312833] ? __sys_sendmsg_sock+0x40/0x40 [ 1100.313855] ? rcu_read_lock_any_held+0x75/0xa0 [ 1100.314968] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1100.316188] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1100.317389] do_syscall_64+0x33/0x40 [ 1100.318267] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1100.319457] RIP: 0033:0x7fa462201b19 [ 1100.320324] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1100.324624] RSP: 002b:00007fa45f777188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1100.326407] RAX: ffffffffffffffda RBX: 00007fa462314f60 RCX: 00007fa462201b19 [ 1100.328071] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1100.329733] RBP: 00007fa45f7771d0 R08: 0000000000000000 R09: 0000000000000000 [ 1100.331410] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1100.333077] R13: 00007ffc6547cc4f R14: 00007fa45f777300 R15: 0000000000022000 [ 1100.448556] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1100.452054] FAULT_INJECTION: forcing a failure. [ 1100.452054] name failslab, interval 1, probability 0, space 0, times 0 [ 1100.454441] CPU: 1 PID: 7816 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 1100.455901] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1100.457667] Call Trace: [ 1100.458239] dump_stack+0x107/0x167 [ 1100.459018] should_fail.cold+0x5/0xa [ 1100.459841] should_failslab+0x5/0x20 [ 1100.460656] __kmalloc_track_caller+0x79/0x370 [ 1100.461635] ? kasprintf+0xbb/0xf0 [ 1100.462412] kvasprintf+0xb5/0x150 [ 1100.463184] ? bust_spinlocks+0xe0/0xe0 [ 1100.464039] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1100.465175] ? get_random_u32+0x3cb/0x670 [ 1100.466079] kasprintf+0xbb/0xf0 [ 1100.466814] ? kvasprintf_const+0x1a0/0x1a0 [ 1100.467742] ? lockdep_init_map_type+0x2c7/0x780 [ 1100.468769] ? lockdep_init_map_type+0x2c7/0x780 [ 1100.469809] ieee80211_alloc_led_names+0x82/0x420 [ 1100.470851] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1100.471873] ? trace_hardirqs_on+0x5b/0x180 [ 1100.472804] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1100.473859] ? trace_hardirqs_on+0x5b/0x180 [ 1100.474806] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1100.475809] ? __kmalloc+0x16e/0x390 [ 1100.476613] hwsim_new_radio_nl+0x991/0x1080 [ 1100.477562] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1100.478692] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1100.480104] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1100.481502] genl_family_rcv_msg_doit+0x22d/0x330 [ 1100.482545] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1100.483960] ? cap_capable+0x1cd/0x230 [ 1100.484807] ? ns_capable+0xe2/0x110 [ 1100.485609] genl_rcv_msg+0x36a/0x5a0 [ 1100.486437] ? genl_get_cmd+0x480/0x480 [ 1100.487288] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1100.488398] ? lock_release+0x680/0x680 [ 1100.489249] ? netlink_deliver_tap+0xf4/0xcc0 [ 1100.490225] netlink_rcv_skb+0x14b/0x430 [ 1100.491097] ? genl_get_cmd+0x480/0x480 [ 1100.491948] ? netlink_ack+0xab0/0xab0 [ 1100.492788] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1100.493772] ? is_vmalloc_addr+0x7b/0xb0 [ 1100.494643] genl_rcv+0x24/0x40 [ 1100.495349] netlink_unicast+0x54e/0x800 [ 1100.496224] ? netlink_attachskb+0x870/0x870 [ 1100.497178] netlink_sendmsg+0x90f/0xe00 [ 1100.498065] ? netlink_unicast+0x800/0x800 [ 1100.498980] ? netlink_unicast+0x800/0x800 [ 1100.499883] __sock_sendmsg+0x154/0x190 [ 1100.500736] ____sys_sendmsg+0x70d/0x870 [ 1100.501605] ? sock_write_iter+0x3d0/0x3d0 [ 1100.502509] ? do_recvmmsg+0x6d0/0x6d0 [ 1100.503344] ? lock_downgrade+0x6d0/0x6d0 [ 1100.504234] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1100.505362] ___sys_sendmsg+0xf3/0x170 [ 1100.506208] ? sendmsg_copy_msghdr+0x160/0x160 [ 1100.507185] ? __fget_files+0x2cf/0x520 [ 1100.508036] ? lock_downgrade+0x6d0/0x6d0 [ 1100.508918] ? find_held_lock+0x2c/0x110 [ 1100.509805] ? __fget_files+0x2f8/0x520 [ 1100.510663] ? __fget_light+0xea/0x290 [ 1100.511503] __sys_sendmsg+0xe5/0x1b0 [ 1100.512319] ? __sys_sendmsg_sock+0x40/0x40 [ 1100.513242] ? rcu_read_lock_any_held+0x75/0xa0 [ 1100.514263] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1100.515386] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1100.516486] do_syscall_64+0x33/0x40 [ 1100.517283] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1100.518385] RIP: 0033:0x7faee752eb19 [ 1100.519183] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1100.523126] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1100.524761] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 1100.526286] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1100.527810] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1100.529326] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1100.530862] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 [ 1100.665341] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 02:57:54 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x11, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 02:57:54 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 19) [ 1114.558025] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1114.560254] FAULT_INJECTION: forcing a failure. [ 1114.560254] name failslab, interval 1, probability 0, space 0, times 0 [ 1114.562637] CPU: 1 PID: 7837 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 1114.564086] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1114.565833] Call Trace: [ 1114.566409] dump_stack+0x107/0x167 [ 1114.567185] should_fail.cold+0x5/0xa [ 1114.567992] ? create_object.isra.0+0x3a/0xa20 [ 1114.568960] should_failslab+0x5/0x20 [ 1114.569763] kmem_cache_alloc+0x5b/0x310 [ 1114.570627] ? vsnprintf+0x4ba/0x1600 [ 1114.571441] create_object.isra.0+0x3a/0xa20 [ 1114.572367] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1114.573447] __kmalloc_track_caller+0x177/0x370 [ 1114.574438] ? kasprintf+0xbb/0xf0 [ 1114.575200] kvasprintf+0xb5/0x150 [ 1114.575951] ? bust_spinlocks+0xe0/0xe0 [ 1114.576789] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1114.577907] ? get_random_u32+0x3cb/0x670 [ 1114.578792] kasprintf+0xbb/0xf0 [ 1114.579504] ? kvasprintf_const+0x1a0/0x1a0 [ 1114.580427] ? lockdep_init_map_type+0x2c7/0x780 [ 1114.581430] ? lockdep_init_map_type+0x2c7/0x780 [ 1114.582451] ieee80211_alloc_led_names+0x82/0x420 [ 1114.583473] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1114.584476] ? trace_hardirqs_on+0x5b/0x180 [ 1114.585387] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1114.586427] ? trace_hardirqs_on+0x5b/0x180 [ 1114.587352] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1114.588333] ? __kmalloc+0x16e/0x390 [ 1114.589128] hwsim_new_radio_nl+0x991/0x1080 [ 1114.590073] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1114.591185] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1114.592936] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1114.594326] genl_family_rcv_msg_doit+0x22d/0x330 [ 1114.595353] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1114.596766] ? cap_capable+0x1cd/0x230 02:57:54 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0x0, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:57:54 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 21) 02:57:54 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, 0x0, 0x0) 02:57:54 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, 0x0, 0x0) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 02:57:54 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 22) 02:57:54 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x2}, 0x0, 0x0, 0x0, 0x3, 0x0, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x3c, 0x7f, 0x8, 0x4a, 0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xff, 0x4, @perf_config_ext={0xe7f, 0x6}, 0x4000, 0x1000, 0x1, 0x0, 0x1ff, 0x6, 0x6b6, 0x0, 0x9, 0x0, 0x400}, 0x0, 0x1, 0xffffffffffffffff, 0x1) sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000a80)=ANY=[@ANYBLOB="1800000012000101000000000000000000000000de35211c4066e51d9cf028b4216239701556cd967d84577c52b2862239e6960e97a153a95701747f58f273ff15abf07a40cd5594f83d33f1f95f2e3d63c58b5048d480d2484a895b47b79211ab0ac6917ca0a29cf1864b63721b8bbc500b8338b508e692f00a8aee15b33ca82d2ee29810fc3b8ae2a36d5f9e033ea5bba61000dcff5ec030618aeb0b7208d993a5e6000000000000d7e4c6498d1025a93ace38fb8a2f515838c1b40e16a9a91b19100b422e7920c1a7931c6fd881fd8d8692cddc7929d04a"], 0x18}}, 0x0) syz_mount_image$ext4(0x0, &(0x7f00000002c0)='./file0/file0\x00', 0x10000000000, 0x0, 0x0, 0xc0000, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) getdents64(0xffffffffffffffff, &(0x7f00000000c0)=""/149, 0x95) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000340)={{0x1, 0x1, 0x18, r0, {0xee01, 0xffffffffffffffff}}, './file0\x00'}) r3 = getuid() stat(&(0x7f00000001c0)='./file0/file0\x00', &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f0000000180)='.\x00', 0x5, 0x4, &(0x7f0000000600)=[{&(0x7f0000000440)="c563e699e85b9073ea23c80bbc0803e6c8e670780f68c822f6cf3b6f46197e1c41f4ad70141a4250b2e0654d0bed174c930b96db6d15ecc9099019e76935bb379cdc8c9c8ead1700941311440420c4416d1e26dc95648bfecb77d3136d7d72c4f545431a8885e363bc9a9dcc71f39205b73e07493ba17c2c2d7722ac94f74d7a27ab55d58a5f34831f4d1c635051d74846d6d157b22a55ac702f8c6531d795a2bd9fa26984860a89ea830f84de78b971524b0203bf2fa1e10fbe3b127b7f1cec5df0b53666b28ba423bef90e884041db6e6493f373b333f4ba817e", 0xdb, 0x1}, {&(0x7f0000000540)="90af34e5876cdf320abe148cb35e4c6a3883505b8d4324fe11e49d804605e31ecbab507ff12f7e4f5108be37e787b517b9db051baf09c20924fad6f61d6a363da2127baee3708c2d12aa9892c708f0fa49e011d6809dc4e2a6306e0ab66ece533feeb7f52ef784cf0762cacf571c143224299a7c109ed533e8da5dc6b862d4a1b6847c1ca022e2e49aa36f61c4c3768485762195bf06c3eb6ce7f06ec07ff4b3381d012f0a39fe1849", 0xa9, 0xfffffffffffffffb}, {&(0x7f0000002100)="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", 0x1000, 0xb8}, {&(0x7f00000008c0)="7e705b6468543d3026acccd3b71cad139183df0ce70cfe37abe9111d664f75383aa3230c71d8bc57491961e2f0fbf4fbd793a56a3e6cfa5efc11be71102e8e83524948ba7b2f95546fce8e86d4ac5f3dcfd5cf10bc0bcb66a9e6c1eecb573a664a9ba2a079b14edf74c9516ad330d8d8f60c9eb002848886f6846be9aa38c7513ec05be9c2f7b7011864a11b61239276a900710e4323cd1fd2e67f7ef7c082cc5e70ca8ce928732f861f6b29c4a0cf0eb2625d4c7cd6726a161d40674c0e7e99f5bbac15e732160e22f78f3ce69a924f191f", 0xd2, 0x80}], 0x4000, &(0x7f00000009c0)=ANY=[@ANYBLOB='size=3%7,huge=within_size,gid=', @ANYRESHEX=r5, @ANYBLOB=',dont_hash,hash,seclabel,measure,rMotcontext=staff_u,pcb=00000000000000000047,rootcontext=unconfined_u,\x00']) setresuid(0xffffffffffffffff, r4, 0x0) setreuid(0xffffffffffffffff, r4) mount$9p_unix(&(0x7f0000000080)='./file0/file0\x00', &(0x7f0000000200)='./file0\x00', &(0x7f0000000300), 0x49, &(0x7f0000000b80)=ANY=[@ANYBLOB="7472616e73e81b4bf21ccce0156976706f7274226163636573733d757365722c6e6f657874656e642c64666c747569643d", @ANYRESHEX=r2, @ANYBLOB=',euid<', @ANYRESDEC=r3, @ANYBLOB=',seclabel,smackfsfloor=L+,seclabel,fowner<', @ANYRESDEC=r4, @ANYBLOB=',fsname=,\x00']) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000680)=ANY=[@ANYBLOB="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"/474, @ANYRESOCT, @ANYRESHEX]) r6 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TCSETSW2(r6, 0x402c542c, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1000ffff, 0x0, "0489fdc1843fc745ea52a5fff7962e807836db"}) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(0xffffffffffffffff, 0x40182103, &(0x7f0000000000)={0x0, 0x2, r6, 0x5, 0x80000}) pread64(0xffffffffffffffff, &(0x7f0000001100)=""/4095, 0xfff, 0x6800) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, &(0x7f00000001c0)) [ 1114.597619] ? ns_capable+0xe2/0x110 [ 1114.598656] genl_rcv_msg+0x36a/0x5a0 [ 1114.599646] ? genl_get_cmd+0x480/0x480 [ 1114.600492] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1114.601590] ? lock_release+0x680/0x680 [ 1114.602477] ? netlink_deliver_tap+0xf4/0xcc0 [ 1114.603440] netlink_rcv_skb+0x14b/0x430 [ 1114.604320] ? genl_get_cmd+0x480/0x480 [ 1114.605173] ? netlink_ack+0xab0/0xab0 [ 1114.606012] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1114.606990] ? is_vmalloc_addr+0x7b/0xb0 [ 1114.607863] genl_rcv+0x24/0x40 [ 1114.608579] netlink_unicast+0x54e/0x800 [ 1114.609384] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1114.609443] ? netlink_attachskb+0x870/0x870 [ 1114.612273] netlink_sendmsg+0x90f/0xe00 [ 1114.613147] ? netlink_unicast+0x800/0x800 [ 1114.614078] ? netlink_unicast+0x800/0x800 [ 1114.615027] __sock_sendmsg+0x154/0x190 [ 1114.615889] ____sys_sendmsg+0x70d/0x870 [ 1114.616750] ? sock_write_iter+0x3d0/0x3d0 [ 1114.617653] ? do_recvmmsg+0x6d0/0x6d0 [ 1114.618503] ? lock_downgrade+0x6d0/0x6d0 [ 1114.619380] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1114.620498] ___sys_sendmsg+0xf3/0x170 [ 1114.621334] ? sendmsg_copy_msghdr+0x160/0x160 [ 1114.622300] ? __fget_files+0x2cf/0x520 [ 1114.623133] ? lock_downgrade+0x6d0/0x6d0 [ 1114.624005] ? find_held_lock+0x2c/0x110 [ 1114.624877] ? __fget_files+0x2f8/0x520 [ 1114.625715] ? __fget_light+0xea/0x290 [ 1114.626443] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1114.626550] __sys_sendmsg+0xe5/0x1b0 [ 1114.626576] ? __sys_sendmsg_sock+0x40/0x40 [ 1114.630088] ? rcu_read_lock_any_held+0x75/0xa0 [ 1114.631086] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1114.632186] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1114.633275] do_syscall_64+0x33/0x40 [ 1114.634065] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1114.635146] RIP: 0033:0x7faee752eb19 [ 1114.635924] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1114.639819] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1114.641421] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 1114.642929] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1114.644441] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1114.645951] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1114.647457] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 02:57:54 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x0, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) [ 1114.685584] loop0: detected capacity change from 0 to 8388096 02:57:54 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0x0, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) [ 1114.709491] tmpfs: Bad value for 'size' [ 1114.729475] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1114.731696] FAULT_INJECTION: forcing a failure. [ 1114.731696] name failslab, interval 1, probability 0, space 0, times 0 [ 1114.734173] CPU: 0 PID: 7840 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 1114.735694] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1114.737533] Call Trace: [ 1114.738133] dump_stack+0x107/0x167 [ 1114.738944] should_fail.cold+0x5/0xa [ 1114.739797] should_failslab+0x5/0x20 [ 1114.740655] __kmalloc_track_caller+0x79/0x370 [ 1114.741665] ? kasprintf+0xbb/0xf0 [ 1114.742477] kvasprintf+0xb5/0x150 [ 1114.743267] ? bust_spinlocks+0xe0/0xe0 [ 1114.744151] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1114.745329] ? get_random_u32+0x3cb/0x670 [ 1114.746262] kasprintf+0xbb/0xf0 [ 1114.747014] ? kvasprintf_const+0x1a0/0x1a0 [ 1114.747976] ? lockdep_init_map_type+0x2c7/0x780 [ 1114.749026] ? lockdep_init_map_type+0x2c7/0x780 [ 1114.750094] ieee80211_alloc_led_names+0x117/0x420 [ 1114.751171] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1114.752193] ? trace_hardirqs_on+0x5b/0x180 [ 1114.753161] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1114.754264] ? trace_hardirqs_on+0x5b/0x180 [ 1114.755238] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1114.756280] ? __kmalloc+0x16e/0x390 [ 1114.757109] hwsim_new_radio_nl+0x991/0x1080 [ 1114.758104] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1114.759269] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1114.760739] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1114.762199] genl_family_rcv_msg_doit+0x22d/0x330 [ 1114.763280] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1114.764749] ? cap_capable+0x1cd/0x230 [ 1114.765633] ? ns_capable+0xe2/0x110 [ 1114.766472] genl_rcv_msg+0x36a/0x5a0 [ 1114.767321] ? genl_get_cmd+0x480/0x480 [ 1114.768203] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1114.769357] ? lock_release+0x680/0x680 [ 1114.770252] ? netlink_deliver_tap+0xf4/0xcc0 [ 1114.771256] netlink_rcv_skb+0x14b/0x430 [ 1114.772160] ? genl_get_cmd+0x480/0x480 [ 1114.773044] ? netlink_ack+0xab0/0xab0 [ 1114.773930] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1114.774954] ? is_vmalloc_addr+0x7b/0xb0 [ 1114.775864] genl_rcv+0x24/0x40 [ 1114.776599] netlink_unicast+0x54e/0x800 [ 1114.777515] ? netlink_attachskb+0x870/0x870 [ 1114.778514] netlink_sendmsg+0x90f/0xe00 [ 1114.779426] ? netlink_unicast+0x800/0x800 [ 1114.780349] ? netlink_unicast+0x800/0x800 [ 1114.781290] __sock_sendmsg+0x154/0x190 [ 1114.782181] ____sys_sendmsg+0x70d/0x870 [ 1114.783089] ? sock_write_iter+0x3d0/0x3d0 [ 1114.784029] ? do_recvmmsg+0x6d0/0x6d0 [ 1114.784898] ? lock_downgrade+0x6d0/0x6d0 [ 1114.785820] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1114.786998] ___sys_sendmsg+0xf3/0x170 [ 1114.787865] ? sendmsg_copy_msghdr+0x160/0x160 [ 1114.788893] ? __fget_files+0x2cf/0x520 [ 1114.789747] ? lock_downgrade+0x6d0/0x6d0 [ 1114.790680] ? find_held_lock+0x2c/0x110 [ 1114.791604] ? __fget_files+0x2f8/0x520 [ 1114.792498] ? __fget_light+0xea/0x290 [ 1114.793373] __sys_sendmsg+0xe5/0x1b0 [ 1114.794243] ? __sys_sendmsg_sock+0x40/0x40 [ 1114.795205] ? rcu_read_lock_any_held+0x75/0xa0 [ 1114.796263] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1114.797435] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1114.798604] do_syscall_64+0x33/0x40 [ 1114.799433] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1114.800569] RIP: 0033:0x7f051132ab19 [ 1114.801396] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1114.805490] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1114.807195] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 1114.808790] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1114.810377] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 1114.811963] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1114.813548] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 02:57:54 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:57:54 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 20) 02:57:54 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0x0, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:57:54 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x0, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) [ 1114.953303] FAULT_INJECTION: forcing a failure. [ 1114.953303] name failslab, interval 1, probability 0, space 0, times 0 [ 1114.955738] CPU: 1 PID: 7847 Comm: syz-executor.6 Not tainted 5.10.237 #1 [ 1114.957184] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1114.958897] Call Trace: [ 1114.959446] dump_stack+0x107/0x167 [ 1114.960202] should_fail.cold+0x5/0xa [ 1114.960994] should_failslab+0x5/0x20 [ 1114.961776] __kmalloc_track_caller+0x79/0x370 [ 1114.962714] ? kasprintf+0xbb/0xf0 [ 1114.963457] kvasprintf+0xb5/0x150 [ 1114.964190] ? bust_spinlocks+0xe0/0xe0 [ 1114.965014] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1114.966155] ? get_random_u32+0x3cb/0x670 [ 1114.967016] kasprintf+0xbb/0xf0 [ 1114.967709] ? kvasprintf_const+0x1a0/0x1a0 [ 1114.968599] ? lockdep_init_map_type+0x2c7/0x780 [ 1114.969569] ? lockdep_init_map_type+0x2c7/0x780 [ 1114.970561] ieee80211_alloc_led_names+0x1ac/0x420 [ 1114.971564] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1114.972536] ? trace_hardirqs_on+0x5b/0x180 [ 1114.973421] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1114.974432] ? ____sys_sendmsg+0x70d/0x870 [ 1114.975322] ? ___sys_sendmsg+0xf3/0x170 [ 1114.976148] ? __sys_sendmsg+0xe5/0x1b0 [ 1114.976962] ? do_syscall_64+0x33/0x40 [ 1114.977749] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1114.978846] ? lock_acquire+0x197/0x470 [ 1114.979663] ? create_object.isra.0+0x3ad/0xa20 [ 1114.980618] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1114.981567] ? __kmalloc+0x16e/0x390 [ 1114.982352] hwsim_new_radio_nl+0x991/0x1080 [ 1114.983259] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1114.984371] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1114.985726] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1114.987077] genl_family_rcv_msg_doit+0x22d/0x330 [ 1114.988068] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1114.989408] ? cap_capable+0x1cd/0x230 [ 1114.990225] ? ns_capable+0xe2/0x110 [ 1114.990992] genl_rcv_msg+0x36a/0x5a0 [ 1114.991769] ? genl_get_cmd+0x480/0x480 [ 1114.992577] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1114.993635] ? lock_release+0x680/0x680 [ 1114.994458] ? netlink_deliver_tap+0xf4/0xcc0 [ 1114.995379] netlink_rcv_skb+0x14b/0x430 [ 1114.996212] ? genl_get_cmd+0x480/0x480 [ 1114.997064] ? netlink_ack+0xab0/0xab0 [ 1114.997866] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1114.998803] ? is_vmalloc_addr+0x7b/0xb0 [ 1114.999632] genl_rcv+0x24/0x40 [ 1115.000310] netlink_unicast+0x54e/0x800 [ 1115.001152] ? netlink_attachskb+0x870/0x870 [ 1115.002067] netlink_sendmsg+0x90f/0xe00 [ 1115.002905] ? netlink_unicast+0x800/0x800 [ 1115.003771] ? netlink_unicast+0x800/0x800 [ 1115.004636] __sock_sendmsg+0x154/0x190 [ 1115.005447] ____sys_sendmsg+0x70d/0x870 [ 1115.006294] ? sock_write_iter+0x3d0/0x3d0 [ 1115.007156] ? do_recvmmsg+0x6d0/0x6d0 [ 1115.007950] ? lock_downgrade+0x6d0/0x6d0 [ 1115.008794] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1115.009867] ___sys_sendmsg+0xf3/0x170 [ 1115.010707] ? sendmsg_copy_msghdr+0x160/0x160 [ 1115.011642] ? __fget_files+0x2cf/0x520 [ 1115.012451] ? lock_downgrade+0x6d0/0x6d0 [ 1115.013303] ? find_held_lock+0x2c/0x110 [ 1115.014157] ? __fget_files+0x2f8/0x520 [ 1115.014976] ? __fget_light+0xea/0x290 [ 1115.015775] __sys_sendmsg+0xe5/0x1b0 [ 1115.016552] ? __sys_sendmsg_sock+0x40/0x40 [ 1115.017433] ? rcu_read_lock_any_held+0x75/0xa0 [ 1115.018417] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1115.019520] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1115.020581] do_syscall_64+0x33/0x40 [ 1115.021339] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1115.022388] RIP: 0033:0x7fa462201b19 [ 1115.023158] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1115.026904] RSP: 002b:00007fa45f777188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1115.028448] RAX: ffffffffffffffda RBX: 00007fa462314f60 RCX: 00007fa462201b19 [ 1115.029913] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1115.031366] RBP: 00007fa45f7771d0 R08: 0000000000000000 R09: 0000000000000000 [ 1115.032818] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1115.034283] R13: 00007ffc6547cc4f R14: 00007fa45f777300 R15: 0000000000022000 02:57:55 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x0, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:57:55 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x0, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) [ 1115.144716] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. [ 1115.218706] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1115.223411] FAULT_INJECTION: forcing a failure. [ 1115.223411] name failslab, interval 1, probability 0, space 0, times 0 [ 1115.225880] CPU: 0 PID: 7871 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 1115.227371] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1115.229172] Call Trace: [ 1115.229755] dump_stack+0x107/0x167 [ 1115.230555] should_fail.cold+0x5/0xa [ 1115.231391] ? create_object.isra.0+0x3a/0xa20 [ 1115.232391] should_failslab+0x5/0x20 [ 1115.233218] kmem_cache_alloc+0x5b/0x310 [ 1115.234107] ? vsnprintf+0x4ba/0x1600 [ 1115.234952] create_object.isra.0+0x3a/0xa20 [ 1115.235926] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1115.237058] __kmalloc_track_caller+0x177/0x370 [ 1115.238089] ? kasprintf+0xbb/0xf0 [ 1115.238886] kvasprintf+0xb5/0x150 [ 1115.239676] ? bust_spinlocks+0xe0/0xe0 [ 1115.240559] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1115.241723] ? get_random_u32+0x3cb/0x670 [ 1115.242661] kasprintf+0xbb/0xf0 [ 1115.243413] ? kvasprintf_const+0x1a0/0x1a0 [ 1115.244373] ? lockdep_init_map_type+0x2c7/0x780 [ 1115.245424] ? lockdep_init_map_type+0x2c7/0x780 [ 1115.246475] ieee80211_alloc_led_names+0x82/0x420 [ 1115.247545] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1115.248594] ? trace_hardirqs_on+0x5b/0x180 [ 1115.249556] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1115.250651] ? trace_hardirqs_on+0x5b/0x180 [ 1115.251631] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1115.252666] ? __kmalloc+0x16e/0x390 [ 1115.253496] hwsim_new_radio_nl+0x991/0x1080 [ 1115.254487] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1115.255653] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1115.257119] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1115.258579] genl_family_rcv_msg_doit+0x22d/0x330 [ 1115.259655] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1115.261120] ? cap_capable+0x1cd/0x230 [ 1115.262005] ? ns_capable+0xe2/0x110 [ 1115.262839] genl_rcv_msg+0x36a/0x5a0 [ 1115.263683] ? genl_get_cmd+0x480/0x480 [ 1115.264565] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1115.265711] ? lock_release+0x680/0x680 [ 1115.266601] ? netlink_deliver_tap+0xf4/0xcc0 [ 1115.267598] netlink_rcv_skb+0x14b/0x430 [ 1115.268495] ? genl_get_cmd+0x480/0x480 [ 1115.269375] ? netlink_ack+0xab0/0xab0 [ 1115.270258] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1115.271266] ? is_vmalloc_addr+0x7b/0xb0 [ 1115.272169] genl_rcv+0x24/0x40 [ 1115.272901] netlink_unicast+0x54e/0x800 [ 1115.273807] ? netlink_attachskb+0x870/0x870 [ 1115.274770] netlink_sendmsg+0x90f/0xe00 [ 1115.275670] ? netlink_unicast+0x800/0x800 [ 1115.276595] ? netlink_unicast+0x800/0x800 [ 1115.277530] __sock_sendmsg+0x154/0x190 [ 1115.278405] ____sys_sendmsg+0x70d/0x870 [ 1115.279303] ? sock_write_iter+0x3d0/0x3d0 [ 1115.280218] ? do_recvmmsg+0x6d0/0x6d0 [ 1115.281083] ? lock_downgrade+0x6d0/0x6d0 [ 1115.281995] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1115.283161] ___sys_sendmsg+0xf3/0x170 [ 1115.284008] ? sendmsg_copy_msghdr+0x160/0x160 [ 1115.285024] ? __fget_files+0x2cf/0x520 [ 1115.285888] ? lock_downgrade+0x6d0/0x6d0 [ 1115.286819] ? find_held_lock+0x2c/0x110 [ 1115.287727] ? __fget_files+0x2f8/0x520 [ 1115.288595] ? __fget_light+0xea/0x290 [ 1115.289468] __sys_sendmsg+0xe5/0x1b0 [ 1115.290304] ? __sys_sendmsg_sock+0x40/0x40 [ 1115.291258] ? rcu_read_lock_any_held+0x75/0xa0 [ 1115.292281] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1115.293447] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1115.294578] do_syscall_64+0x33/0x40 [ 1115.295405] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1115.296517] RIP: 0033:0x7faee752eb19 [ 1115.297343] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1115.301347] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1115.303044] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 1115.304614] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1115.306202] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1115.307781] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1115.309357] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 [ 1131.389054] FAULT_INJECTION: forcing a failure. [ 1131.389054] name failslab, interval 1, probability 0, space 0, times 0 [ 1131.390700] CPU: 0 PID: 7895 Comm: syz-executor.6 Not tainted 5.10.237 #1 [ 1131.391694] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1131.392923] Call Trace: [ 1131.393309] dump_stack+0x107/0x167 [ 1131.393840] should_fail.cold+0x5/0xa [ 1131.394402] ? create_object.isra.0+0x3a/0xa20 02:58:11 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x12, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 02:58:11 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(0xffffffffffffffff, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 02:58:11 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:58:11 executing program 0: syz_mount_image$vfat(&(0x7f0000000600), &(0x7f0000000640)='./file0\x00', 0x0, 0x0, &(0x7f0000000880), 0x0, &(0x7f00000008c0)) chdir(&(0x7f0000000000)='./file0/../file0\x00') 02:58:11 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 22) 02:58:11 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x0, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:58:11 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 23) 02:58:11 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 21) [ 1131.395068] should_failslab+0x5/0x20 [ 1131.395809] kmem_cache_alloc+0x5b/0x310 [ 1131.396379] ? vsnprintf+0x4ba/0x1600 [ 1131.396914] create_object.isra.0+0x3a/0xa20 [ 1131.397548] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1131.398281] __kmalloc_track_caller+0x177/0x370 [ 1131.398932] ? kasprintf+0xbb/0xf0 [ 1131.399430] kvasprintf+0xb5/0x150 [ 1131.399928] ? bust_spinlocks+0xe0/0xe0 [ 1131.400483] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1131.401220] ? get_random_u32+0x3cb/0x670 [ 1131.401803] kasprintf+0xbb/0xf0 [ 1131.402283] ? kvasprintf_const+0x1a0/0x1a0 [ 1131.402891] ? lockdep_init_map_type+0x2c7/0x780 [ 1131.403565] ? lockdep_init_map_type+0x2c7/0x780 [ 1131.404239] ieee80211_alloc_led_names+0x1ac/0x420 [ 1131.404930] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1131.405592] ? trace_hardirqs_on+0x5b/0x180 [ 1131.406202] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1131.406887] ? ____sys_sendmsg+0x70d/0x870 [ 1131.407478] ? ___sys_sendmsg+0xf3/0x170 [ 1131.408041] ? __sys_sendmsg+0xe5/0x1b0 [ 1131.408594] ? do_syscall_64+0x33/0x40 [ 1131.409139] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1131.409878] ? lock_acquire+0x197/0x470 [ 1131.410434] ? create_object.isra.0+0x3ad/0xa20 [ 1131.411085] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1131.411726] ? __kmalloc+0x16e/0x390 [ 1131.412245] hwsim_new_radio_nl+0x991/0x1080 [ 1131.412866] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1131.413585] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1131.414501] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1131.415408] genl_family_rcv_msg_doit+0x22d/0x330 [ 1131.416085] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1131.417007] ? cap_capable+0x1cd/0x230 [ 1131.417557] ? ns_capable+0xe2/0x110 [ 1131.418090] genl_rcv_msg+0x36a/0x5a0 [ 1131.418620] ? genl_get_cmd+0x480/0x480 [ 1131.419173] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1131.419886] ? lock_release+0x680/0x680 [ 1131.420448] ? netlink_deliver_tap+0xf4/0xcc0 [ 1131.421069] netlink_rcv_skb+0x14b/0x430 [ 1131.421627] ? genl_get_cmd+0x480/0x480 [ 1131.422183] ? netlink_ack+0xab0/0xab0 [ 1131.422727] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1131.423358] ? is_vmalloc_addr+0x7b/0xb0 [ 1131.423929] genl_rcv+0x24/0x40 [ 1131.424407] netlink_unicast+0x54e/0x800 [ 1131.424970] ? netlink_attachskb+0x870/0x870 [ 1131.425585] netlink_sendmsg+0x90f/0xe00 [ 1131.426166] ? netlink_unicast+0x800/0x800 [ 1131.426755] ? netlink_unicast+0x800/0x800 [ 1131.427337] __sock_sendmsg+0x154/0x190 [ 1131.427885] ____sys_sendmsg+0x70d/0x870 [ 1131.428451] ? sock_write_iter+0x3d0/0x3d0 [ 1131.429035] ? do_recvmmsg+0x6d0/0x6d0 [ 1131.429575] ? lock_downgrade+0x6d0/0x6d0 [ 1131.430162] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1131.430882] ___sys_sendmsg+0xf3/0x170 [ 1131.431421] ? sendmsg_copy_msghdr+0x160/0x160 [ 1131.432049] ? __fget_files+0x2cf/0x520 [ 1131.432622] ? lock_downgrade+0x6d0/0x6d0 [ 1131.433197] ? find_held_lock+0x2c/0x110 [ 1131.433769] ? __fget_files+0x2f8/0x520 [ 1131.434331] ? __fget_light+0xea/0x290 [ 1131.434882] __sys_sendmsg+0xe5/0x1b0 [ 1131.435405] ? __sys_sendmsg_sock+0x40/0x40 [ 1131.435997] ? rcu_read_lock_any_held+0x75/0xa0 [ 1131.436648] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1131.437363] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1131.438079] do_syscall_64+0x33/0x40 [ 1131.438596] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1131.439329] RIP: 0033:0x7fa462201b19 [ 1131.439837] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1131.442398] RSP: 002b:00007fa45f777188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1131.443453] RAX: ffffffffffffffda RBX: 00007fa462314f60 RCX: 00007fa462201b19 [ 1131.444432] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1131.445413] RBP: 00007fa45f7771d0 R08: 0000000000000000 R09: 0000000000000000 [ 1131.446413] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1131.447385] R13: 00007ffc6547cc4f R14: 00007fa45f777300 R15: 0000000000022000 02:58:11 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(0xffffffffffffffff, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 02:58:11 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x0, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:58:11 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x801}, 0x0) [ 1131.466853] FAT-fs (loop0): bogus number of reserved sectors [ 1131.467703] FAT-fs (loop0): Can't find a valid FAT filesystem [ 1131.504279] FAT-fs (loop0): bogus number of reserved sectors [ 1131.505157] FAT-fs (loop0): Can't find a valid FAT filesystem 02:58:11 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(0xffffffffffffffff, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 02:58:11 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={0x0}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:58:11 executing program 0: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) sendfile(0xffffffffffffffff, r0, &(0x7f0000000340)=0x10000, 0x0) ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f00000000c0)={'ip6gre0\x00', &(0x7f0000000040)={'syztnl0\x00', 0x0, 0x2f, 0x4, 0x7f, 0x4, 0x18, @private1, @local, 0x7, 0x1, 0x80000001, 0x20}}) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r0, 0x89f8, &(0x7f0000000480)={'syztnl2\x00', &(0x7f0000000400)={'syztnl0\x00', r1, 0x4, 0x20, 0x7, 0x51, 0x42, @remote, @dev={0xfe, 0x80, '\x00', 0x1b}, 0x0, 0x80, 0x8, 0x7c4b}}) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x90a8940}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0x64, 0x0, 0x800, 0x70bd25, 0x25dfdbfd, {}, [@BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x10000}, @BATADV_ATTR_GW_MODE={0x5, 0x33, 0x1}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r1}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_MULTICAST_FORCEFLOOD_ENABLED={0x5}, @BATADV_ATTR_ISOLATION_MASK={0x8, 0x2c, 0x6}, @BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x30}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r2}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_GW_SEL_CLASS={0x8, 0x34, 0x7}]}, 0x64}, 0x1, 0x0, 0x0, 0x80}, 0x20000000) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000180), r3) ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000200)={'wpan0\x00'}) sendmsg$IEEE802154_LLSEC_DEL_DEVKEY(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000380)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="0004000000000000100028b2fa6417bded03c6d70e65beb18700000005002b000600000008002c0000008000060006000200000005002e0000000000"], 0x34}}, 0x8010) 02:58:11 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={0x0}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:58:11 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(0xffffffffffffffff, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) [ 1131.649433] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. [ 1131.717740] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1131.720093] FAULT_INJECTION: forcing a failure. [ 1131.720093] name failslab, interval 1, probability 0, space 0, times 0 [ 1131.722473] CPU: 1 PID: 7897 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 1131.723937] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1131.725709] Call Trace: [ 1131.726288] dump_stack+0x107/0x167 [ 1131.727076] should_fail.cold+0x5/0xa [ 1131.727894] should_failslab+0x5/0x20 [ 1131.728689] __kmalloc_track_caller+0x79/0x370 [ 1131.729655] ? kasprintf+0xbb/0xf0 [ 1131.730427] kvasprintf+0xb5/0x150 [ 1131.731190] ? bust_spinlocks+0xe0/0xe0 [ 1131.732043] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1131.733168] ? get_random_u32+0x3cb/0x670 [ 1131.734059] kasprintf+0xbb/0xf0 [ 1131.734794] ? kvasprintf_const+0x1a0/0x1a0 [ 1131.735725] ? lockdep_init_map_type+0x2c7/0x780 [ 1131.736741] ? lockdep_init_map_type+0x2c7/0x780 [ 1131.737762] ieee80211_alloc_led_names+0x1ac/0x420 [ 1131.738824] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1131.739835] ? trace_hardirqs_on+0x5b/0x180 [ 1131.740758] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1131.741787] ? trace_hardirqs_on+0x5b/0x180 [ 1131.742728] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1131.743715] ? __kmalloc+0x16e/0x390 [ 1131.744511] hwsim_new_radio_nl+0x991/0x1080 [ 1131.745434] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1131.746536] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1131.747915] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1131.749295] genl_family_rcv_msg_doit+0x22d/0x330 [ 1131.750330] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1131.751703] ? cap_capable+0x1cd/0x230 [ 1131.752542] ? ns_capable+0xe2/0x110 [ 1131.753330] genl_rcv_msg+0x36a/0x5a0 [ 1131.754144] ? genl_get_cmd+0x480/0x480 [ 1131.754988] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1131.756075] ? lock_release+0x680/0x680 [ 1131.756917] ? netlink_deliver_tap+0xf4/0xcc0 [ 1131.757862] netlink_rcv_skb+0x14b/0x430 [ 1131.758730] ? genl_get_cmd+0x480/0x480 [ 1131.759594] ? netlink_ack+0xab0/0xab0 [ 1131.760433] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1131.761384] ? is_vmalloc_addr+0x7b/0xb0 [ 1131.762253] genl_rcv+0x24/0x40 [ 1131.762947] netlink_unicast+0x54e/0x800 [ 1131.763823] ? netlink_attachskb+0x870/0x870 [ 1131.764756] netlink_sendmsg+0x90f/0xe00 [ 1131.765633] ? netlink_unicast+0x800/0x800 [ 1131.766562] ? netlink_unicast+0x800/0x800 [ 1131.767475] __sock_sendmsg+0x154/0x190 [ 1131.768333] ____sys_sendmsg+0x70d/0x870 [ 1131.769219] ? sock_write_iter+0x3d0/0x3d0 [ 1131.770128] ? do_recvmmsg+0x6d0/0x6d0 [ 1131.770971] ? lock_downgrade+0x6d0/0x6d0 [ 1131.771871] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1131.773010] ___sys_sendmsg+0xf3/0x170 [ 1131.773838] ? sendmsg_copy_msghdr+0x160/0x160 [ 1131.774810] ? __fget_files+0x2cf/0x520 [ 1131.775657] ? lock_downgrade+0x6d0/0x6d0 [ 1131.776529] ? find_held_lock+0x2c/0x110 [ 1131.777393] ? __fget_files+0x2f8/0x520 [ 1131.778248] ? __fget_light+0xea/0x290 [ 1131.779090] __sys_sendmsg+0xe5/0x1b0 [ 1131.779905] ? __sys_sendmsg_sock+0x40/0x40 [ 1131.780827] ? rcu_read_lock_any_held+0x75/0xa0 [ 1131.781822] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1131.782951] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1131.784057] do_syscall_64+0x33/0x40 [ 1131.784846] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1131.785915] RIP: 0033:0x7f051132ab19 [ 1131.786715] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1131.790628] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1131.792240] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 1131.793733] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1131.795251] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 1131.796766] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1131.798275] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 [ 1131.869139] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1131.870416] FAULT_INJECTION: forcing a failure. [ 1131.870416] name failslab, interval 1, probability 0, space 0, times 0 [ 1131.871856] CPU: 0 PID: 7899 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 1131.872696] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1131.873717] Call Trace: [ 1131.874049] dump_stack+0x107/0x167 [ 1131.874505] should_fail.cold+0x5/0xa [ 1131.874977] ? create_object.isra.0+0x3a/0xa20 [ 1131.875543] should_failslab+0x5/0x20 [ 1131.876019] kmem_cache_alloc+0x5b/0x310 [ 1131.876542] create_object.isra.0+0x3a/0xa20 [ 1131.877079] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1131.877707] __kmalloc_track_caller+0x177/0x370 [ 1131.878293] ? kasprintf+0xbb/0xf0 [ 1131.878733] kvasprintf+0xb5/0x150 [ 1131.879177] ? bust_spinlocks+0xe0/0xe0 [ 1131.879670] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1131.880323] ? get_random_u32+0x3cb/0x670 [ 1131.880842] kasprintf+0xbb/0xf0 [ 1131.881261] ? kvasprintf_const+0x1a0/0x1a0 [ 1131.881794] ? lockdep_init_map_type+0x2c7/0x780 [ 1131.882390] ? lockdep_init_map_type+0x2c7/0x780 [ 1131.882987] ieee80211_alloc_led_names+0x117/0x420 [ 1131.883597] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1131.884189] ? trace_hardirqs_on+0x5b/0x180 [ 1131.884744] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1131.885351] ? trace_hardirqs_on+0x5b/0x180 [ 1131.885888] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1131.886468] ? __kmalloc+0x16e/0x390 [ 1131.886927] hwsim_new_radio_nl+0x991/0x1080 [ 1131.887476] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1131.888126] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1131.888932] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1131.889737] genl_family_rcv_msg_doit+0x22d/0x330 [ 1131.890344] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1131.891154] ? cap_capable+0x1cd/0x230 [ 1131.891648] ? ns_capable+0xe2/0x110 [ 1131.892111] genl_rcv_msg+0x36a/0x5a0 [ 1131.892590] ? genl_get_cmd+0x480/0x480 [ 1131.893084] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1131.893732] ? lock_release+0x680/0x680 [ 1131.894231] ? netlink_deliver_tap+0xf4/0xcc0 [ 1131.894796] netlink_rcv_skb+0x14b/0x430 [ 1131.895291] ? genl_get_cmd+0x480/0x480 [ 1131.895790] ? netlink_ack+0xab0/0xab0 [ 1131.896284] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1131.896857] ? is_vmalloc_addr+0x7b/0xb0 [ 1131.897364] genl_rcv+0x24/0x40 [ 1131.897767] netlink_unicast+0x54e/0x800 [ 1131.898277] ? netlink_attachskb+0x870/0x870 [ 1131.898827] netlink_sendmsg+0x90f/0xe00 [ 1131.899332] ? netlink_unicast+0x800/0x800 [ 1131.899858] ? netlink_unicast+0x800/0x800 [ 1131.900383] __sock_sendmsg+0x154/0x190 [ 1131.900877] ____sys_sendmsg+0x70d/0x870 [ 1131.901384] ? sock_write_iter+0x3d0/0x3d0 [ 1131.901913] ? do_recvmmsg+0x6d0/0x6d0 [ 1131.902408] ? lock_downgrade+0x6d0/0x6d0 [ 1131.902949] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1131.903597] ___sys_sendmsg+0xf3/0x170 [ 1131.904079] ? sendmsg_copy_msghdr+0x160/0x160 [ 1131.904651] ? __fget_files+0x2cf/0x520 [ 1131.905151] ? lock_downgrade+0x6d0/0x6d0 [ 1131.905667] ? find_held_lock+0x2c/0x110 [ 1131.906185] ? __fget_files+0x2f8/0x520 [ 1131.906676] ? __fget_light+0xea/0x290 [ 1131.907160] __sys_sendmsg+0xe5/0x1b0 [ 1131.907627] ? __sys_sendmsg_sock+0x40/0x40 [ 1131.908175] ? rcu_read_lock_any_held+0x75/0xa0 [ 1131.908750] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1131.909403] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1131.910054] do_syscall_64+0x33/0x40 [ 1131.910524] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1131.911168] RIP: 0033:0x7faee752eb19 [ 1131.911627] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1131.913899] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1131.914859] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 1131.915743] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1131.916626] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1131.917510] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1131.918412] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 02:58:26 executing program 0: r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}, {0x0, 0x0, 0x400008000}], 0x0, &(0x7f0000000140)={[{@journal_dev}, {@min_batch_time}]}) fstat(r0, &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, 0x0}) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0xffff, 0x6, &(0x7f0000000680)=[{&(0x7f0000000280)="ea94b5fba0856a00af399a24f2b252b1f35b261d4f592ffa1c084888c8318aeb2fdab118898daa18cf3683cbddacbcdb60b36d3e7d6d10d8f7c9a8529c6c111ec77e8cfd354c82fb86e9640fb7097232e28381bf39cd8010a30602b90523674c8616e95ce6fad8328239e8c14731cda3b3ea5fe84203e96fd9c1628b1eb27ae9e791dde8e6d3e570de2378c4fb48764bd0d4448132f52fd7cb6c26557228df5495a91ea8f39d8d295d4a2ba1", 0xac, 0x21b}, {&(0x7f0000000340)="88e97992cbf2527ee088633b0e48a76eb6b77d750fc8c9c2c99aa1bef1e182efd7773b0f4e7a4c7e7551231c40582181c8e9669a2a29514a3491cfc59ae7606e6b381fdcbe4f3059fb1c6187bb280876f6734eb54df9686db9c20c63f8b326b6d93e75ad0f688caf9f0cbe911efa669ae507f92ae9cb3168a0e33284f88a10ddd6613dd971929044d5fa201dd44145ceb4deef2e56bbcd0813bbed2a87045208df2bdaed4f82a5207de8f88cd933b07d045b59be1394680727776c1a6294c35801dad51893bed1afcdd9a602", 0xcc, 0x1}, {&(0x7f00000000c0)="b4c3a4", 0x3, 0x8001}, {&(0x7f0000000440)="3d09a2c507e589064231a7c4fe80de711c2750fed9897cb4105089434cb673842e2c6b5596d6c6fa6461210f4157db80f13f1d24d9f8260569566597459c9c455a681bcf3b62128ea0d12f585346e2dbb66b79774406a655142ffd366f6b9d52d9666455ae10e1cbf5dd967ed171a5be1121d34a6e835dff868321a1b61fa6cd2c15f7cbb191d93c01c4b02231c0beb3bbb6c56ab1814b17b5820c247239a959d636a04d38c8bbdd04aeef73c21449a8f5c499a66b6b83221f9f35", 0xbb, 0x8000}, {&(0x7f0000000500)="a82f41a649b5fd4fa326288abd088e6475114234f7d170431faa288ddf772163a146dcc5f2f256511e33ec226e70d11159e3706a8d8b2d8c134115ed91f63eaeab06601092616329d9d294373e39908b29169c937874142b46bebaacf22dca5700938fa01b5cd69f2ca99c6e5d61aea43d581ef8c807140b6e2999de696019de876416d980533ef7752e82702bca473e47ff5d5b05eba1039dd478d80b8d37e59e9978ce3568c5a754185e3be002c4af805086736f8d87d0de587a7147fa9a661560d5dce00ee75db0ffc7", 0xcb, 0x8}, {&(0x7f0000000600)="5b9b059c656f141343ad8a33f2d5b92bcdca8d07a52965ca5b2b22bf9d3b7861190612967db40da975b8132de37664ba9cdc1e3b01bd7fc34cca41408dc718a297ae5f0cc16148574cde63fb7e3b74dd9ef1d3048f02621911c372e6714c4d6d774465d625da4aa943c9f8cfaeab83eb74b53f88ac4b615486", 0x79}], 0x44004, &(0x7f00000007c0)={[{@nomblk_io_submit}, {}, {@dioread_nolock}, {@acl}], [{@dont_hash}, {@fowner_eq={'fowner', 0x3d, r1}}, {@smackfsdef={'smackfsdef', 0x3d, '$.+'}}]}) 02:58:26 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(0xffffffffffffffff, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) [ 1146.785194] loop0: detected capacity change from 0 to 2162688 02:58:26 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:58:26 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={0x0}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:58:26 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x13, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 02:58:26 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 24) 02:58:26 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 23) 02:58:26 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 22) [ 1146.827939] EXT4-fs (loop0): mounted filesystem without journal. Opts: journal_dev=0x0000000000000000,min_batch_time=0x0000000000000000,,errors=continue 02:58:26 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x0, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:58:26 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x0, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:58:26 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(0xffffffffffffffff, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) [ 1146.914633] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 02:58:26 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pidfd_getfd(0xffffffffffffffff, r0, 0x0) ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f0000001e00)={0x0, 0x0, "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", "96409917853f2fe629426766ce0e39b56d6d32eae97dad4fe251de78f69240ab641cfcb39922adbc4056ae1ccb6845712a294570bca89738cd4ded142e05c3ed360a387bd1d02e8d111c29287a0cb3689690ea18609e88f8e3629569bc51e681b4c365097921e13338b8d53e1e629b6e77406a753f5d72bd06238cb2a3c1ba335f51ea86c4e7a8d2d2c5e44649e0a55434ebf6da78f98bd51b99e1fb64f4f288780952c13ca18f2aba6032f710cdd5aaee3f0aac7615a58c98cfefe0fe5a44e293683712ae14062c289c58ab146440e108adde89f804f9663b92747fbd2709e399b13167062720bd21887dd518e11c1557287d28c7c49ccdbf4783a1d7b8eabdb810f517869f695de513c94a298f1dd6c8e8f4de28270b520d7cf875be259ee56cc09a65da3bbee6fe2ee13caca71faf37ead8d322f6211a798cf4076def4df18fe724a1d909efa392c43da34ffdc645fd26b19864ec562f2b87dd26cae46d1afda6166aa9ff7a23c3eca06d825c687adcd626659182c9d47e8ca2b850b59367dc70be94ec9f10e918a9726042d98bdfbed2428dd4eb9dda5e9c582f4065178a4ed18e66271a0b78a47a62f7883fb725136f4ab0196e38a11187afa6f72195405181578e3d3902ce6bdbe346d15e97b843171dcde5630244c9f374ba768ed61ca0a01c7c6abec6269bbcf367b19a41a8fb00d0a562bf0ce59a213985f53c2b30aab65bab6af70fa3316b700f9172aedc8cc6fc465652d826bdf187b72c0d9853040d39b8f23f36b13df34247a241d0fca74a90a2e84a97266c5040cd994bd9b8b22456c8ddb7b65470c4c8a7cd90468aadb3afea50577fbf501d3ce4319eed5d85963d37d893d27f7292eeac340399da882f91ffe8574f5c74a26496ffc308cc97d989c0873f3f0a2a2ca96e209626bd9021e17a3d84d8dd3605bda06606c7c2e9f64e135d0378aff687c4d23cf3cead1b39eaef04b012eedb39e41e496fc06ce97978c4d2faa27159e7c5ce09938f0c81bbf697ebb0f608f2f78e86078b91f7092e9de2b58d35d50aae3abd9a1ce20a08967a9575f694e1bf7db7585ca322b9b24ec20c46f2eac746cd194952cae61a6fb562d2c00f83a773214c6e6ad5544245c3d8ab5b5c7e00c2169c9c1b6defa100e39732bceba57244b273006eac256aaed9b297ca0907b8aee92559afb66131e02f4d1d8c7a84759bf466a060b84eff9ba3cb3589b9b464d21a6765734e75b6457a74665fe3e5e0fc6a08acd1d3e9059b23956b3ba63e4e8a56de103d1e723fb76facacb6a959b8961f34165d6d88b6a5b4c3ba842c276ba274a80d9d2d4bc4e89b8fb200b432a337d4ae8eb7a90ecb5331a393ef7fd3d6da7ba6667bb2e99d4210df0a479bcf20fefb9f15839cfa6c7c3f50e337fc990eb16458d060936b4fc94bbb72ce5268947162dd7a23b1a631dc96fca2af806e385c2174409714c93628fdffdb7b7f93fc4ef573106ae70a389bc743a00bc2deee8356671dcd028d98596391be0e5ea148f436d0122af2898f411d5f01f08211412e3819249baf55216a7e7f1557d6efa2dae76e1a95dae70ce73cdbb8149b1eb6e10c03f7130e95dac697e9218862e072565ad194730ca17ac37e3267a5969523d33fb1abeea1cf90502bc57db5d3ccaa9ecb23785c16d725640d378a646cfdca7d5fc702a7a4f8356a549f131104ec7888de58d9ab8a8ad15b26d36745d334a4362580e291518497fbe4318bea3edc48783f11a62a837f8076cbd0674a86a5fa4da76ac0abaa5a8b8d5dba8e670fdad0146f04bed727555546175f197546015e1c35351a6ef15fc16ac6860152c26f4a724040beaf5880b2b0a1c1d2d61df1ede313c37ca3faf48cf4915e2f5002cbd0e611dc6ea95ff997c6f646464c4433abf62ef46b2f0dfc9126bcb2d5f78563d1bee59075c8bd6907702c8bc508419d356ff331c0e57bf456c1490e9cc8984391d72d7b6ecd6850da9e9e42457e0662a388f3f6ed0162ada25d5bb0ee534b08dad5463f2057140c7e6a03c29087bd8b7b93c424d22ebe47b854b12bc404e8e299bee40027baf5a393d8358a29cdc668be92f043cc282141cf4bcf8c324b2bb3300f3ed152b67b5720ba90506d32298d679e564f4fc49cc236ef23788710a33f3c1981bec82e3460ff4050183fbb8f7a7d44bd7ca2eb22ec3df1d6c960cda8ea3833cac4ecc47dbcb3f30d5a758126984ac619a7bb7098f6c2c38fac086da53eefe9832947199e6670cb4574962cea117d353ee23d0115afc2e382691499b4d8a40dd4a9171dd53ed928225f615666bdbff23326288991f49104700707459b3eeb2ae3049ba8f0b48f1e05ea1a5fa686c7e73e4b48705b00aa3d305d50a31f4f57d9590620df8af2efc0bd5ca171658c3612ee6bdad0ac3576fde9181a667660666301dfbaad16ca2ef4306a4060239ec3a5c2dc133650d0692bc257128bad38bf186384b6d8ca9b054d7e3632c8e04e866fc1e9c0f4860ca74b800e0640ffd32c32c2cfac659bc1274427aedcf40e6ebc9ce184656c2669cb54df632943a707035b9c97282c75f44764c43d0f33024d215db4ad563d4815b898259945b35d6e1089d7bfd13ff0196d8e94f6f68f139f8b975343d5f17329f4ce86d3dca507ba26ec39fdba64576af6da439bdf5b9a13f5da43ef18087c97a8a0ae24b224c5b0300032f1d5800a44a432c642de24368922ffee60a7969c7ca8217d353a1d2a776dd9c4adf5a869f2c7a08376a995d6ca4685cec5352edc1c18ab72925426d4364a1ca364339839b3a6a388af205b03acd05994c2c435a16c8c7803cc32d8a3b476f12030a97c872a6e086d08d519ee50c1b20e518619856df960fe6d897dd0ba24cdafe240d4000476ab0e1095c4cc7a66f05794fe6aac5316d970ebb2c5d6a72ca09c093f5b10ba4101df0830efac6699f49f68c0496e454016f1f7893be6335d5f2f0663d19469cf49e892cc6e41c40c67d827836e02260890071b079ace50b90d551b710952736a44e6c58f6b2084fee369dbe9dd50955bcca4a3698746d347c09e2fb395c5308ab6fa23a5d8bc0f7749a7ee626e77cd0834decfb083632672a528357946fc0d48ed951362252fa7acacbb01ae0a572cd54a0a980f5d6e7ad81b2fe5e20b6cb5443b0bd4e8bae494297d42cbeec58dcbb816ab8ff4bc99efd6b35e2f6bb5ea318a92631e2bd95f6a9bb43c69a1047d31689f65beabf469452a1ab92f30110b742db6bca0deee0907cd12388ab3ec09770160c428770c2432dd68cf11421435db484743b04bd5649a4def7cb03f8f2b7ae50458f294de286b7efd7956418ae57392be4d23c06a896ca21f48effbe9dd3cb45057efd2cb416df7ce36848c1f30296b2f3ee30f15088bec9a91bb8898721dc849a81009367224e09b7a91085ed198f9200ab3d66cd56731fb6df56dfcaa7dc8b0503fd70247cd994f09792d5287e45c9c2ad55fc323eebdc6e9fd27ed6ff1dccec171b869df5594e6a9766606754e0618e5e9f3aa7163541b0a47ed5fa21555f35fbdf9ae6b15955b6f174cf80a32fd7f5889b42a45bcefc51305c50831925208c89d3b5550cd435f6132110af744d2ec150f5382bfafcbf8dfee5d0c2d2320a04811c6b325532370776c23eca0af1a8a0fe4847bb8f48c712b9447e380c2544c137688ef8ada8b6e20262cc7b99a82520c2d0b822fe91e8d4eff6fc6f8ded3912bd7a09025ad3a520189c3fbee54e8c361edb39e45a85e4e6334ef39734602db1bf1a9e6bd352b88a4d1169853b41ea752d900b59d0c1980043adb76a311aeea1793eebc9f33c66001d1c602657ac6b1421cad18c7533472768de72f798f7463b7316f2d13dcfb13e25b067961da35c29450ddd9eedd39fdc19253b79bd11aaabc4f71397eb823f34bbedcb28f2dcc4f160596b5bee35f3c4ad186c3c61266dc4f090c1751b86117fa8d4bc2167a80e71b2ac36bfdfd79ff60103d6936cc8fdc84256dc1fd98cbfaddc2f9cac2725e2b7531cbab474ed1653c6532b0b758c6c51904a11e6a8fa7eaa1964931150b54b76a3e4fe85a258fc8d7c12baaf82239e810b82275c85904d7bc7f107a3a26948f310ac5a998f2c073ddb475cd72f0b5acecd8fad7d123112d60a5482415bb8d458b67c70d800b24a839e360421238b87799e7b728211b0992d645c5c0e936d0fc0dd7fd782942520f50fdbba43f1acb1ea015e7ee86be226af702ac1758e4bfb347c74777b8ff778dce6af479972923ded39d874ffece78b38ecaf1244f94f1245d92bb47a0b0b391e8b9ba873058dd1c8fee08dd82573268b677240da722ae90b1aecc2f060e7e4b15217abbb3f2494159d493a2c091e32275c716b2b83de574c577d0de2451b4d541cb219cdf1865bee86edf37c1ddaa417d885e3ce2b5d81f4fce2fe7da5a54bbf0679f7bc367131c55a694a0b59e85f0fae9cc22efcb0e4ff7643ae2259352e4c61a8c3e9e5bc6dca0f8bdeafdbb6338e000a1167d8d7ac5907153b3cb5e953cc2a789c9e66908a1bb145651e70b7945cf66ab1add958bc5a5a569e71240a85892460bbd9ebcc7fbd3ad6822266494539814f8a9f927de2c0b54b42d97e40c869fe63c1f5e5bc0dba5f0ad05ade4881b5ee503472db5d176b8d353245b174e7dee69419535fd7f09b84c4f5a7a6711b562afbb2002f70a20393c07cf30b6caa8f59da79d9d1c8666c221dce00c022160a61b9bdb95e9b4dd9236ad817ff98ea5b5c97eb184d2e7a2c437b14f974845ff941e7eb1c9ab687cc37e249d1a201af412034c244e499227285ce6809f3c714f483c2ab5f5434f2f461812929d2e9de601375302ee7ea792756425377af08d30a6c0e44eb1fc863c0e6ca40539cf209f9d12b1596f435394c9328fbe42734837d30bd99fd53b2173e00bfdb07777d35106fa10a33c177e9c7dc71a3141161765d8a3c146e3334cf90699570015e7d771080de16b9aaed3ca05052b8551a8126c2ce70b51dbeba04c426cfd2e10d28dc2ffbf28157fe62d6b5d70fc744065a925c2b4292acc05fa8ce1b6c4799ccc7661b31d54fa3acd15ab35212b8e8e5321c1aba2b500825dcfcd2e0a9995df8390f0ca9a943205b9c8887b1a86ab50f8ad1d6fa7edcd4676f745347f7e52ff4bd92db84ea6af0aa7c8f76bcc5ca6f54c88d06c3611f347fdda44d6f48cec8e1d878670c2f7dea73e85a803dabbd224815113ad17ea0b40d4f26d0a45434a892ec6cefcc85cc46617bb6fabeda465e2e3109e28fc4e940f4763a262f8196a18972e389e72869d06e958771a75abb24efc67ce3ad21cff6f4a667500b8aa40c593fade8064e15fa1aa10edf1c48454bc781fb772aa235ff91473643c59b8f7e3e7e4d514b5b1f2bbe48d"}) r1 = socket$inet_udp(0x2, 0x2, 0x0) connect$inet(r1, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10) connect$inet(r1, &(0x7f0000000080)={0x2, 0x0, @multicast1}, 0x10) sendmmsg$inet(r1, &(0x7f0000000300)=[{{&(0x7f0000000000)={0x2, 0x4e20, @multicast1}, 0x10, 0x0}, 0xe00}], 0x40001a9, 0x0) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r2, &(0x7f0000000180)=""/198, 0xc6) setsockopt$inet_mtu(r2, 0x0, 0xa, &(0x7f00000000c0)=0x4, 0x4) 02:58:26 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1147.011320] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1147.012947] FAULT_INJECTION: forcing a failure. [ 1147.012947] name failslab, interval 1, probability 0, space 0, times 0 [ 1147.014786] CPU: 0 PID: 7937 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 1147.015894] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1147.017200] Call Trace: [ 1147.017616] dump_stack+0x107/0x167 [ 1147.018195] should_fail.cold+0x5/0xa [ 1147.018827] should_failslab+0x5/0x20 [ 1147.019443] __kmalloc_track_caller+0x79/0x370 [ 1147.020192] ? kasprintf+0xbb/0xf0 [ 1147.020783] kvasprintf+0xb5/0x150 [ 1147.021378] ? bust_spinlocks+0xe0/0xe0 [ 1147.022032] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1147.022916] ? get_random_u32+0x3cb/0x670 [ 1147.023609] kasprintf+0xbb/0xf0 [ 1147.024173] ? kvasprintf_const+0x1a0/0x1a0 [ 1147.024895] ? lockdep_init_map_type+0x2c7/0x780 [ 1147.025671] ? lockdep_init_map_type+0x2c7/0x780 [ 1147.026446] ieee80211_alloc_led_names+0x1ac/0x420 [ 1147.027254] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1147.028020] ? trace_hardirqs_on+0x5b/0x180 [ 1147.028732] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1147.029535] ? trace_hardirqs_on+0x5b/0x180 [ 1147.030259] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1147.031009] ? __kmalloc+0x16e/0x390 [ 1147.031615] hwsim_new_radio_nl+0x991/0x1080 [ 1147.032345] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1147.033202] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1147.034302] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1147.035354] genl_family_rcv_msg_doit+0x22d/0x330 [ 1147.036101] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1147.037115] ? cap_capable+0x1cd/0x230 [ 1147.037738] ? ns_capable+0xe2/0x110 [ 1147.038323] genl_rcv_msg+0x36a/0x5a0 [ 1147.038908] ? genl_get_cmd+0x480/0x480 [ 1147.039522] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1147.040331] ? lock_release+0x680/0x680 [ 1147.040969] ? netlink_deliver_tap+0xf4/0xcc0 [ 1147.041683] netlink_rcv_skb+0x14b/0x430 [ 1147.042343] ? genl_get_cmd+0x480/0x480 [ 1147.042975] ? netlink_ack+0xab0/0xab0 [ 1147.043620] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1147.044364] ? is_vmalloc_addr+0x7b/0xb0 [ 1147.045000] genl_rcv+0x24/0x40 [ 1147.045527] netlink_unicast+0x54e/0x800 [ 1147.046177] ? netlink_attachskb+0x870/0x870 [ 1147.046890] netlink_sendmsg+0x90f/0xe00 [ 1147.047534] ? netlink_unicast+0x800/0x800 [ 1147.048195] ? netlink_unicast+0x800/0x800 [ 1147.048856] __sock_sendmsg+0x154/0x190 [ 1147.049512] ____sys_sendmsg+0x70d/0x870 [ 1147.050175] ? sock_write_iter+0x3d0/0x3d0 [ 1147.050848] ? do_recvmmsg+0x6d0/0x6d0 [ 1147.051476] ? lock_downgrade+0x6d0/0x6d0 [ 1147.052132] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1147.052996] ___sys_sendmsg+0xf3/0x170 [ 1147.053594] ? sendmsg_copy_msghdr+0x160/0x160 [ 1147.054329] ? __fget_files+0x2cf/0x520 [ 1147.054947] ? lock_downgrade+0x6d0/0x6d0 [ 1147.055612] ? find_held_lock+0x2c/0x110 [ 1147.056257] ? __fget_files+0x2f8/0x520 [ 1147.056881] ? __fget_light+0xea/0x290 [ 1147.057503] __sys_sendmsg+0xe5/0x1b0 [ 1147.058102] ? __sys_sendmsg_sock+0x40/0x40 [ 1147.058801] ? trace_hardirqs_on+0x5b/0x180 [ 1147.059519] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1147.060330] do_syscall_64+0x33/0x40 [ 1147.060916] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1147.061721] RIP: 0033:0x7f051132ab19 [ 1147.062344] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1147.065274] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1147.066503] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 1147.067616] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1147.068756] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 1147.069866] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1147.071021] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 02:58:27 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x0, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 02:58:27 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x0, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:58:27 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x14, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 02:58:27 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0x0, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) [ 1147.194549] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1147.195968] FAULT_INJECTION: forcing a failure. [ 1147.195968] name failslab, interval 1, probability 0, space 0, times 0 [ 1147.197613] CPU: 0 PID: 7939 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 1147.198629] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1147.199829] Call Trace: [ 1147.200223] dump_stack+0x107/0x167 [ 1147.200750] should_fail.cold+0x5/0xa [ 1147.201306] should_failslab+0x5/0x20 [ 1147.201860] __kmalloc_track_caller+0x79/0x370 [ 1147.202532] ? kasprintf+0xbb/0xf0 [ 1147.203058] kvasprintf+0xb5/0x150 [ 1147.203567] ? bust_spinlocks+0xe0/0xe0 [ 1147.204146] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1147.204911] ? get_random_u32+0x3cb/0x670 [ 1147.205500] kasprintf+0xbb/0xf0 [ 1147.205988] ? kvasprintf_const+0x1a0/0x1a0 [ 1147.206600] ? lockdep_init_map_type+0x2c7/0x780 [ 1147.207267] ? lockdep_init_map_type+0x2c7/0x780 [ 1147.207942] ieee80211_alloc_led_names+0x1ac/0x420 [ 1147.208632] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1147.209310] ? trace_hardirqs_on+0x5b/0x180 [ 1147.209912] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1147.210592] ? trace_hardirqs_on+0x5b/0x180 [ 1147.211208] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1147.211877] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1147.212644] ? trace_hardirqs_on+0x5b/0x180 [ 1147.213264] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1147.214051] hwsim_new_radio_nl+0x991/0x1080 [ 1147.214689] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1147.215427] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1147.216358] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1147.217269] genl_family_rcv_msg_doit+0x22d/0x330 [ 1147.217935] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1147.218842] ? cap_capable+0x1cd/0x230 [ 1147.219408] ? ns_capable+0xe2/0x110 [ 1147.219932] genl_rcv_msg+0x36a/0x5a0 [ 1147.220460] ? genl_get_cmd+0x480/0x480 [ 1147.221012] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1147.221735] ? lock_release+0x680/0x680 [ 1147.222299] ? netlink_deliver_tap+0xf4/0xcc0 [ 1147.222920] netlink_rcv_skb+0x14b/0x430 [ 1147.223504] ? genl_get_cmd+0x480/0x480 [ 1147.224068] ? netlink_ack+0xab0/0xab0 [ 1147.224611] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1147.225236] ? is_vmalloc_addr+0x7b/0xb0 [ 1147.225806] genl_rcv+0x24/0x40 [ 1147.226286] netlink_unicast+0x54e/0x800 [ 1147.226854] ? netlink_attachskb+0x870/0x870 [ 1147.227472] netlink_sendmsg+0x90f/0xe00 [ 1147.228039] ? netlink_unicast+0x800/0x800 [ 1147.228630] ? netlink_unicast+0x800/0x800 [ 1147.229223] __sock_sendmsg+0x154/0x190 [ 1147.229765] ____sys_sendmsg+0x70d/0x870 [ 1147.230345] ? sock_write_iter+0x3d0/0x3d0 [ 1147.230924] ? do_recvmmsg+0x6d0/0x6d0 [ 1147.231480] ? lock_downgrade+0x6d0/0x6d0 [ 1147.232064] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1147.232794] ___sys_sendmsg+0xf3/0x170 [ 1147.233329] ? sendmsg_copy_msghdr+0x160/0x160 [ 1147.233956] ? __fget_files+0x2cf/0x520 [ 1147.234503] ? lock_downgrade+0x6d0/0x6d0 [ 1147.235080] ? find_held_lock+0x2c/0x110 [ 1147.235646] ? __fget_files+0x2f8/0x520 [ 1147.236197] ? __fget_light+0xea/0x290 [ 1147.236745] __sys_sendmsg+0xe5/0x1b0 [ 1147.237275] ? __sys_sendmsg_sock+0x40/0x40 [ 1147.237870] ? rcu_read_lock_any_held+0x75/0xa0 [ 1147.238536] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1147.239250] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1147.239966] do_syscall_64+0x33/0x40 [ 1147.240479] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1147.241175] RIP: 0033:0x7faee752eb19 [ 1147.241690] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1147.244241] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1147.245287] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 1147.246275] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1147.247253] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1147.248239] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1147.249206] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 02:58:27 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 24) 02:58:27 executing program 0: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000a00)=ANY=[], 0x98a) r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) getdents(0xffffffffffffffff, &(0x7f0000000180)=""/198, 0xc6) mount$9p_fd(0x0, &(0x7f0000000400)='./file0\x00', &(0x7f0000000440), 0x400002, &(0x7f00000005c0)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@access_any}, {@debug={'debug', 0x3d, 0x8}}, {@access_user}], [{@fowner_eq={'fowner', 0x3d, 0xffffffffffffffff}}, {@context={'context', 0x3d, 'system_u'}}, {@fowner_eq={'fowner', 0x3d, 0xffffffffffffffff}}, {@fowner_lt={'fowner<', 0xffffffffffffffff}}, {@hash}, {@euid_eq}]}}) r2 = getpgrp(0x0) pidfd_open(r2, 0x0) fcntl$lock(r1, 0x5, &(0x7f0000000000)={0x0, 0x4, 0x7, 0xff, r2}) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000080)={0x0, 0xfdfdffff, 0x102, 0x0, '\x00', [{}, {0x800, 0x0, 0x400000000000000}], ['\x00']}) ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f00000001c0)={'macsec0\x00', &(0x7f0000000240)=ANY=[@ANYBLOB="3c00000001000000030015c1e10000030000000220000001dee8fc131fc92b570000000100008068fb93f20624d998bb2382fbef2e605d20efd13ad8020454fe726d5ec46065bf6e5c2fd748b7382cb035aee7d07675"]}) clone3(&(0x7f0000000480)={0x2080, &(0x7f0000000180), &(0x7f00000002c0), &(0x7f0000000300), {0x2}, &(0x7f0000000380)=""/10, 0xa, &(0x7f0000000900)=""/4096, &(0x7f0000000380)}, 0x58) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = dup(0xffffffffffffffff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000500)=""/142, 0x8e}], 0x1}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x81) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) unshare(0x48020200) clock_gettime(0x0, &(0x7f0000000340)={0x0, 0x0}) futimesat(r3, &(0x7f0000000200)='./file0\x00', &(0x7f00000003c0)={{0x77359400}, {r4, r5/1000+60000}}) [ 1147.315879] FAULT_INJECTION: forcing a failure. [ 1147.315879] name failslab, interval 1, probability 0, space 0, times 0 [ 1147.317425] CPU: 0 PID: 7942 Comm: syz-executor.6 Not tainted 5.10.237 #1 [ 1147.318342] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1147.319450] Call Trace: [ 1147.319816] dump_stack+0x107/0x167 [ 1147.320306] should_fail.cold+0x5/0xa [ 1147.320808] should_failslab+0x5/0x20 [ 1147.321316] __kmalloc_track_caller+0x79/0x370 [ 1147.321934] ? kasprintf+0xbb/0xf0 [ 1147.322435] kvasprintf+0xb5/0x150 [ 1147.322903] ? bust_spinlocks+0xe0/0xe0 [ 1147.323429] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1147.324138] ? get_random_u32+0x3cb/0x670 [ 1147.324698] kasprintf+0xbb/0xf0 [ 1147.325166] ? kvasprintf_const+0x1a0/0x1a0 [ 1147.325748] ? lockdep_init_map_type+0x2c7/0x780 [ 1147.326378] ? lockdep_init_map_type+0x2c7/0x780 [ 1147.327017] ieee80211_alloc_led_names+0x23f/0x420 [ 1147.327672] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1147.328307] ? trace_hardirqs_on+0x5b/0x180 [ 1147.328899] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1147.329542] ? ____sys_sendmsg+0x70d/0x870 [ 1147.330105] ? ___sys_sendmsg+0xf3/0x170 [ 1147.330640] ? __sys_sendmsg+0xe5/0x1b0 [ 1147.331167] ? do_syscall_64+0x33/0x40 [ 1147.331687] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1147.332376] ? lock_acquire+0x197/0x470 [ 1147.332896] ? create_object.isra.0+0x3ad/0xa20 [ 1147.333507] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1147.334108] ? __kmalloc+0x16e/0x390 [ 1147.334599] hwsim_new_radio_nl+0x991/0x1080 [ 1147.335181] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1147.335884] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1147.336751] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1147.337610] genl_family_rcv_msg_doit+0x22d/0x330 [ 1147.338259] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1147.339121] ? cap_capable+0x1cd/0x230 [ 1147.339644] ? ns_capable+0xe2/0x110 [ 1147.340134] genl_rcv_msg+0x36a/0x5a0 [ 1147.340638] ? genl_get_cmd+0x480/0x480 [ 1147.341169] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1147.341862] ? lock_release+0x680/0x680 [ 1147.342379] ? netlink_deliver_tap+0xf4/0xcc0 [ 1147.342968] netlink_rcv_skb+0x14b/0x430 [ 1147.343487] ? genl_get_cmd+0x480/0x480 [ 1147.344000] ? netlink_ack+0xab0/0xab0 [ 1147.344508] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1147.345104] ? is_vmalloc_addr+0x7b/0xb0 [ 1147.345629] genl_rcv+0x24/0x40 [ 1147.346056] netlink_unicast+0x54e/0x800 [ 1147.346583] ? netlink_attachskb+0x870/0x870 [ 1147.347160] netlink_sendmsg+0x90f/0xe00 [ 1147.347689] ? netlink_unicast+0x800/0x800 [ 1147.348247] ? netlink_unicast+0x800/0x800 [ 1147.348791] __sock_sendmsg+0x154/0x190 [ 1147.349313] ____sys_sendmsg+0x70d/0x870 [ 1147.349849] ? sock_write_iter+0x3d0/0x3d0 [ 1147.350416] ? do_recvmmsg+0x6d0/0x6d0 [ 1147.350928] ? lock_downgrade+0x6d0/0x6d0 [ 1147.351458] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1147.352142] ___sys_sendmsg+0xf3/0x170 [ 1147.352657] ? sendmsg_copy_msghdr+0x160/0x160 [ 1147.353264] ? __fget_files+0x2cf/0x520 [ 1147.353791] ? lock_downgrade+0x6d0/0x6d0 [ 1147.354329] ? find_held_lock+0x2c/0x110 [ 1147.354858] ? __fget_files+0x2f8/0x520 [ 1147.355384] ? __fget_light+0xea/0x290 [ 1147.355895] __sys_sendmsg+0xe5/0x1b0 [ 1147.356384] ? __sys_sendmsg_sock+0x40/0x40 [ 1147.356935] ? rcu_read_lock_any_held+0x75/0xa0 [ 1147.357560] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1147.358250] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1147.358920] do_syscall_64+0x33/0x40 [ 1147.359394] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1147.360050] RIP: 0033:0x7fa462201b19 [ 1147.360528] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1147.362925] RSP: 002b:00007fa45f777188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1147.363952] RAX: ffffffffffffffda RBX: 00007fa462314f60 RCX: 00007fa462201b19 [ 1147.364871] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1147.365804] RBP: 00007fa45f7771d0 R08: 0000000000000000 R09: 0000000000000000 [ 1147.366751] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1147.367683] R13: 00007ffc6547cc4f R14: 00007fa45f777300 R15: 0000000000022000 02:58:27 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0x0, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) [ 1147.402734] 9pnet: Insufficient options for proto=fd 02:58:27 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 23) 02:58:27 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 25) 02:58:27 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0x0, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) [ 1147.525426] 9pnet: Insufficient options for proto=fd 02:58:27 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x0, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) [ 1147.587451] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. [ 1147.700341] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1147.702543] FAULT_INJECTION: forcing a failure. [ 1147.702543] name failslab, interval 1, probability 0, space 0, times 0 [ 1147.704953] CPU: 1 PID: 7971 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 1147.706408] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1147.708192] Call Trace: [ 1147.708764] dump_stack+0x107/0x167 [ 1147.709550] should_fail.cold+0x5/0xa [ 1147.710381] should_failslab+0x5/0x20 [ 1147.711199] __kmalloc_track_caller+0x79/0x370 [ 1147.712165] ? kasprintf+0xbb/0xf0 [ 1147.712931] kvasprintf+0xb5/0x150 [ 1147.713697] ? bust_spinlocks+0xe0/0xe0 [ 1147.714553] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1147.715663] ? get_random_u32+0x3cb/0x670 [ 1147.716559] kasprintf+0xbb/0xf0 [ 1147.717293] ? kvasprintf_const+0x1a0/0x1a0 [ 1147.718215] ? lockdep_init_map_type+0x2c7/0x780 [ 1147.719226] ? lockdep_init_map_type+0x2c7/0x780 [ 1147.720241] ieee80211_alloc_led_names+0x23f/0x420 [ 1147.721552] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1147.722677] ? trace_hardirqs_on+0x5b/0x180 [ 1147.723731] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1147.724895] ? trace_hardirqs_on+0x5b/0x180 [ 1147.725943] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1147.727049] ? __kmalloc+0x16e/0x390 [ 1147.727846] hwsim_new_radio_nl+0x991/0x1080 [ 1147.728782] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1147.729912] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1147.731324] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1147.732740] genl_family_rcv_msg_doit+0x22d/0x330 [ 1147.733782] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1147.735186] ? cap_capable+0x1cd/0x230 [ 1147.736026] ? ns_capable+0xe2/0x110 [ 1147.736936] genl_rcv_msg+0x36a/0x5a0 [ 1147.737851] ? genl_get_cmd+0x480/0x480 [ 1147.738807] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1147.739920] ? lock_release+0x680/0x680 [ 1147.740786] ? netlink_deliver_tap+0xf4/0xcc0 [ 1147.741854] netlink_rcv_skb+0x14b/0x430 [ 1147.742839] ? genl_get_cmd+0x480/0x480 [ 1147.743711] ? netlink_ack+0xab0/0xab0 [ 1147.744677] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1147.745737] ? is_vmalloc_addr+0x7b/0xb0 [ 1147.746730] genl_rcv+0x24/0x40 [ 1147.747510] netlink_unicast+0x54e/0x800 [ 1147.748494] ? netlink_attachskb+0x870/0x870 [ 1147.749532] netlink_sendmsg+0x90f/0xe00 [ 1147.750403] ? netlink_unicast+0x800/0x800 [ 1147.751379] ? netlink_unicast+0x800/0x800 [ 1147.752283] __sock_sendmsg+0x154/0x190 [ 1147.753137] ____sys_sendmsg+0x70d/0x870 [ 1147.754006] ? sock_write_iter+0x3d0/0x3d0 [ 1147.754904] ? do_recvmmsg+0x6d0/0x6d0 [ 1147.755737] ? lock_downgrade+0x6d0/0x6d0 [ 1147.756731] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1147.757842] ___sys_sendmsg+0xf3/0x170 [ 1147.758797] ? sendmsg_copy_msghdr+0x160/0x160 [ 1147.759776] ? __fget_files+0x2cf/0x520 [ 1147.760722] ? lock_downgrade+0x6d0/0x6d0 [ 1147.761602] ? find_held_lock+0x2c/0x110 [ 1147.762485] ? __fget_files+0x2f8/0x520 [ 1147.763361] ? __fget_light+0xea/0x290 [ 1147.764313] __sys_sendmsg+0xe5/0x1b0 [ 1147.765136] ? __sys_sendmsg_sock+0x40/0x40 [ 1147.766049] ? rcu_read_lock_any_held+0x75/0xa0 [ 1147.767210] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1147.768443] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1147.769552] do_syscall_64+0x33/0x40 [ 1147.770358] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1147.771446] RIP: 0033:0x7f051132ab19 [ 1147.772265] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1147.776390] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1147.778099] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 1147.779720] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1147.781439] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 1147.783154] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1147.784683] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 [ 1147.872137] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1147.875695] FAULT_INJECTION: forcing a failure. [ 1147.875695] name failslab, interval 1, probability 0, space 0, times 0 [ 1147.878653] CPU: 1 PID: 7977 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 1147.880123] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1147.881904] Call Trace: [ 1147.882477] dump_stack+0x107/0x167 [ 1147.883261] should_fail.cold+0x5/0xa [ 1147.884077] ? create_object.isra.0+0x3a/0xa20 [ 1147.885058] should_failslab+0x5/0x20 [ 1147.885872] kmem_cache_alloc+0x5b/0x310 [ 1147.886752] ? vsnprintf+0x4ba/0x1600 [ 1147.887555] create_object.isra.0+0x3a/0xa20 [ 1147.888493] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1147.889586] __kmalloc_track_caller+0x177/0x370 [ 1147.890588] ? kasprintf+0xbb/0xf0 [ 1147.891337] kvasprintf+0xb5/0x150 [ 1147.892091] ? bust_spinlocks+0xe0/0xe0 [ 1147.892935] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1147.894045] ? get_random_u32+0x3cb/0x670 [ 1147.894940] kasprintf+0xbb/0xf0 [ 1147.895663] ? kvasprintf_const+0x1a0/0x1a0 [ 1147.896593] ? lockdep_init_map_type+0x2c7/0x780 [ 1147.897603] ? lockdep_init_map_type+0x2c7/0x780 [ 1147.898631] ieee80211_alloc_led_names+0x1ac/0x420 [ 1147.899672] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1147.900663] ? trace_hardirqs_on+0x5b/0x180 [ 1147.901580] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1147.902612] ? trace_hardirqs_on+0x5b/0x180 [ 1147.903556] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1147.904549] ? __kmalloc+0x16e/0x390 [ 1147.905349] hwsim_new_radio_nl+0x991/0x1080 [ 1147.906299] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1147.907421] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1147.908831] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1147.910221] genl_family_rcv_msg_doit+0x22d/0x330 [ 1147.911230] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1147.912611] ? cap_capable+0x1cd/0x230 [ 1147.913453] ? ns_capable+0xe2/0x110 [ 1147.914258] genl_rcv_msg+0x36a/0x5a0 [ 1147.915072] ? genl_get_cmd+0x480/0x480 [ 1147.915925] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1147.917034] ? lock_release+0x680/0x680 [ 1147.917878] ? netlink_deliver_tap+0xf4/0xcc0 [ 1147.918842] netlink_rcv_skb+0x14b/0x430 [ 1147.919705] ? genl_get_cmd+0x480/0x480 [ 1147.920529] ? netlink_ack+0xab0/0xab0 [ 1147.921364] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1147.922349] ? is_vmalloc_addr+0x7b/0xb0 [ 1147.923199] genl_rcv+0x24/0x40 [ 1147.923900] netlink_unicast+0x54e/0x800 [ 1147.924757] ? netlink_attachskb+0x870/0x870 [ 1147.925695] netlink_sendmsg+0x90f/0xe00 [ 1147.926579] ? netlink_unicast+0x800/0x800 [ 1147.927501] ? netlink_unicast+0x800/0x800 [ 1147.928411] __sock_sendmsg+0x154/0x190 [ 1147.929264] ____sys_sendmsg+0x70d/0x870 [ 1147.930128] ? sock_write_iter+0x3d0/0x3d0 [ 1147.931046] ? do_recvmmsg+0x6d0/0x6d0 [ 1147.931876] ? lock_downgrade+0x6d0/0x6d0 [ 1147.932764] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1147.933883] ___sys_sendmsg+0xf3/0x170 [ 1147.934716] ? sendmsg_copy_msghdr+0x160/0x160 [ 1147.935702] ? __fget_files+0x2cf/0x520 [ 1147.936555] ? lock_downgrade+0x6d0/0x6d0 [ 1147.937435] ? find_held_lock+0x2c/0x110 [ 1147.938300] ? __fget_files+0x2f8/0x520 [ 1147.939146] ? __fget_light+0xea/0x290 [ 1147.939987] __sys_sendmsg+0xe5/0x1b0 [ 1147.940796] ? __sys_sendmsg_sock+0x40/0x40 [ 1147.941706] ? rcu_read_lock_any_held+0x75/0xa0 [ 1147.942720] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1147.943841] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1147.944937] do_syscall_64+0x33/0x40 [ 1147.945727] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1147.946806] RIP: 0033:0x7faee752eb19 [ 1147.947606] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1147.951515] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1147.953122] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 1147.954635] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1147.956149] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1147.957651] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1147.959164] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 [ 1148.048821] FAULT_INJECTION: forcing a failure. [ 1148.048821] name failslab, interval 1, probability 0, space 0, times 0 [ 1148.050318] CPU: 0 PID: 7980 Comm: syz-executor.6 Not tainted 5.10.237 #1 [ 1148.051160] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1148.052180] Call Trace: [ 1148.052512] dump_stack+0x107/0x167 [ 1148.052958] should_fail.cold+0x5/0xa [ 1148.053434] ? create_object.isra.0+0x3a/0xa20 [ 1148.054003] should_failslab+0x5/0x20 [ 1148.054481] kmem_cache_alloc+0x5b/0x310 [ 1148.054982] ? vsnprintf+0x4ba/0x1600 [ 1148.055457] create_object.isra.0+0x3a/0xa20 [ 1148.055999] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1148.056625] __kmalloc_track_caller+0x177/0x370 [ 1148.057198] ? kasprintf+0xbb/0xf0 [ 1148.057648] kvasprintf+0xb5/0x150 [ 1148.058083] ? bust_spinlocks+0xe0/0xe0 [ 1148.058583] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1148.059231] ? get_random_u32+0x3cb/0x670 [ 1148.059749] kasprintf+0xbb/0xf0 [ 1148.060164] ? kvasprintf_const+0x1a0/0x1a0 [ 1148.060701] ? lockdep_init_map_type+0x2c7/0x780 [ 1148.061286] ? lockdep_init_map_type+0x2c7/0x780 [ 1148.061881] ieee80211_alloc_led_names+0x23f/0x420 [ 1148.062491] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1148.063081] ? trace_hardirqs_on+0x5b/0x180 [ 1148.063613] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1148.064222] ? ____sys_sendmsg+0x70d/0x870 [ 1148.064739] ? ___sys_sendmsg+0xf3/0x170 [ 1148.065238] ? __sys_sendmsg+0xe5/0x1b0 [ 1148.065734] ? do_syscall_64+0x33/0x40 [ 1148.066214] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1148.066874] ? lock_acquire+0x197/0x470 [ 1148.067354] ? create_object.isra.0+0x3ad/0xa20 [ 1148.067932] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1148.068503] ? __kmalloc+0x16e/0x390 [ 1148.068965] hwsim_new_radio_nl+0x991/0x1080 [ 1148.069497] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1148.070145] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1148.070969] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1148.071766] genl_family_rcv_msg_doit+0x22d/0x330 [ 1148.072358] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1148.073153] ? cap_capable+0x1cd/0x230 [ 1148.073645] ? ns_capable+0xe2/0x110 [ 1148.074103] genl_rcv_msg+0x36a/0x5a0 [ 1148.074582] ? genl_get_cmd+0x480/0x480 [ 1148.075072] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1148.075716] ? lock_release+0x680/0x680 [ 1148.076201] ? netlink_deliver_tap+0xf4/0xcc0 [ 1148.076752] netlink_rcv_skb+0x14b/0x430 [ 1148.077252] ? genl_get_cmd+0x480/0x480 [ 1148.077740] ? netlink_ack+0xab0/0xab0 [ 1148.078223] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1148.078792] ? is_vmalloc_addr+0x7b/0xb0 [ 1148.079289] genl_rcv+0x24/0x40 [ 1148.079694] netlink_unicast+0x54e/0x800 [ 1148.080200] ? netlink_attachskb+0x870/0x870 [ 1148.080744] netlink_sendmsg+0x90f/0xe00 [ 1148.081248] ? netlink_unicast+0x800/0x800 [ 1148.081770] ? netlink_unicast+0x800/0x800 [ 1148.082295] __sock_sendmsg+0x154/0x190 [ 1148.082781] ____sys_sendmsg+0x70d/0x870 [ 1148.083284] ? sock_write_iter+0x3d0/0x3d0 [ 1148.083802] ? do_recvmmsg+0x6d0/0x6d0 [ 1148.084288] ? lock_downgrade+0x6d0/0x6d0 [ 1148.084797] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1148.085440] ___sys_sendmsg+0xf3/0x170 [ 1148.085920] ? sendmsg_copy_msghdr+0x160/0x160 [ 1148.086493] ? __fget_files+0x2cf/0x520 [ 1148.086981] ? lock_downgrade+0x6d0/0x6d0 [ 1148.087489] ? find_held_lock+0x2c/0x110 [ 1148.087996] ? __fget_files+0x2f8/0x520 [ 1148.088490] ? __fget_light+0xea/0x290 [ 1148.088977] __sys_sendmsg+0xe5/0x1b0 [ 1148.089445] ? __sys_sendmsg_sock+0x40/0x40 [ 1148.089977] ? rcu_read_lock_any_held+0x75/0xa0 [ 1148.090569] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1148.091216] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1148.091850] do_syscall_64+0x33/0x40 [ 1148.092315] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1148.092942] RIP: 0033:0x7fa462201b19 [ 1148.093398] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1148.095679] RSP: 002b:00007fa45f777188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1148.096615] RAX: ffffffffffffffda RBX: 00007fa462314f60 RCX: 00007fa462201b19 [ 1148.097492] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1148.098374] RBP: 00007fa45f7771d0 R08: 0000000000000000 R09: 0000000000000000 [ 1148.099263] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1148.100147] R13: 00007ffc6547cc4f R14: 00007fa45f777300 R15: 0000000000022000 [ 1163.217210] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1163.221234] FAULT_INJECTION: forcing a failure. [ 1163.221234] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1163.223753] CPU: 1 PID: 7995 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1163.225213] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1163.226981] Call Trace: [ 1163.227541] dump_stack+0x107/0x167 [ 1163.228316] should_fail.cold+0x5/0xa [ 1163.229144] _copy_from_user+0x2e/0x1b0 02:58:43 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x0, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) 02:58:43 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x1a, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 02:58:43 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 26) 02:58:43 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x0, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 02:58:43 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x1000003) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)={0x0, 0x0, 0xca}) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000540)=ANY=[@ANYBLOB="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", @ANYBLOB="f79d23b462973152dc4f42108d25000052"]) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x44000) ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(0xffffffffffffffff, 0x80489439, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000007d440)={0x0, [{}, {0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0}, {}, {}, {}, {}, {0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0}, {}, {0x0, 0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}], 0x0, "46dacd8396fe92"}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000007d440)={0x9, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r3, r6}, {}, {}, {}, {}, {r2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r7}], 0x0, "46dacd8396fe92"}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f000004dc80)) r9 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r9, &(0x7f0000000180)=""/198, 0xc6) ioctl$FS_IOC_RESVSP(r9, 0x40305828, &(0x7f00000000c0)={0x0, 0x1, 0x4, 0xb}) lseek(r1, 0x0, 0x2) lseek(r0, 0x14, 0x2) r10 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x128) copy_file_range(r10, 0x0, r1, 0x0, 0x200f5ef, 0x0) 02:58:43 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 1) 02:58:43 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 25) 02:58:43 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 24) [ 1163.230247] __copy_msghdr_from_user+0x91/0x4b0 [ 1163.231701] ? __ia32_sys_shutdown+0x80/0x80 [ 1163.232900] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1163.234330] ? __lock_acquire+0x1657/0x5b00 [ 1163.235523] ? __lock_acquire+0xbb1/0x5b00 [ 1163.236650] sendmsg_copy_msghdr+0xa1/0x160 [ 1163.237815] ? do_recvmmsg+0x6d0/0x6d0 [ 1163.238861] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1163.240295] ? lock_downgrade+0x6d0/0x6d0 [ 1163.241439] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1163.242908] ___sys_sendmsg+0xc6/0x170 [ 1163.243988] ? sendmsg_copy_msghdr+0x160/0x160 [ 1163.245255] ? __fget_files+0x2cf/0x520 [ 1163.246362] ? lock_downgrade+0x6d0/0x6d0 [ 1163.247522] ? find_held_lock+0x2c/0x110 [ 1163.248661] ? __fget_files+0x2f8/0x520 [ 1163.249778] ? __fget_light+0xea/0x290 [ 1163.250489] FAULT_INJECTION: forcing a failure. [ 1163.250489] name failslab, interval 1, probability 0, space 0, times 0 [ 1163.250803] __sys_sendmsg+0xe5/0x1b0 [ 1163.250831] ? __sys_sendmsg_sock+0x40/0x40 [ 1163.250864] ? rcu_read_lock_any_held+0x75/0xa0 [ 1163.256993] ? fput_many+0x2f/0x1a0 [ 1163.257926] ? ksys_write+0x1a9/0x260 [ 1163.258913] ? __ia32_sys_read+0xb0/0xb0 [ 1163.259954] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1163.261270] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1163.262569] do_syscall_64+0x33/0x40 [ 1163.263359] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1163.264445] RIP: 0033:0x7fdcf09cab19 [ 1163.265223] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1163.269122] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1163.270707] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1163.272222] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1163.273750] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1163.275244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1163.276730] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 [ 1163.278235] CPU: 0 PID: 7998 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 1163.279808] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1163.281710] Call Trace: [ 1163.282300] dump_stack+0x107/0x167 [ 1163.283135] should_fail.cold+0x5/0xa [ 1163.284023] should_failslab+0x5/0x20 [ 1163.284902] __kmalloc_track_caller+0x79/0x370 [ 1163.285950] ? kasprintf+0xbb/0xf0 [ 1163.286788] kvasprintf+0xb5/0x150 [ 1163.287613] ? bust_spinlocks+0xe0/0xe0 [ 1163.288524] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1163.289711] ? get_random_u32+0x3cb/0x670 [ 1163.290655] kasprintf+0xbb/0xf0 [ 1163.291415] ? kvasprintf_const+0x1a0/0x1a0 [ 1163.292406] ? lockdep_init_map_type+0x2c7/0x780 [ 1163.293474] ? lockdep_init_map_type+0x2c7/0x780 [ 1163.294593] ieee80211_alloc_led_names+0x23f/0x420 [ 1163.295724] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1163.296795] ? trace_hardirqs_on+0x5b/0x180 [ 1163.297786] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1163.298917] ? trace_hardirqs_on+0x5b/0x180 [ 1163.299921] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1163.300998] ? __kmalloc+0x16e/0x390 [ 1163.301857] hwsim_new_radio_nl+0x991/0x1080 [ 1163.302880] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1163.304089] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1163.305610] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1163.307085] genl_family_rcv_msg_doit+0x22d/0x330 [ 1163.308174] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1163.309641] ? cap_capable+0x1cd/0x230 [ 1163.310532] ? ns_capable+0xe2/0x110 [ 1163.311387] genl_rcv_msg+0x36a/0x5a0 [ 1163.312266] ? genl_get_cmd+0x480/0x480 [ 1163.313177] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1163.314364] ? lock_release+0x680/0x680 [ 1163.315257] ? netlink_deliver_tap+0xf4/0xcc0 [ 1163.316270] netlink_rcv_skb+0x14b/0x430 [ 1163.317181] ? genl_get_cmd+0x480/0x480 [ 1163.318073] ? netlink_ack+0xab0/0xab0 [ 1163.319000] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1163.320044] ? is_vmalloc_addr+0x7b/0xb0 [ 1163.320977] genl_rcv+0x24/0x40 [ 1163.321727] netlink_unicast+0x54e/0x800 [ 1163.322669] ? netlink_attachskb+0x870/0x870 [ 1163.323676] netlink_sendmsg+0x90f/0xe00 [ 1163.324605] ? netlink_unicast+0x800/0x800 [ 1163.325593] ? netlink_unicast+0x800/0x800 [ 1163.326574] __sock_sendmsg+0x154/0x190 [ 1163.327488] ____sys_sendmsg+0x70d/0x870 [ 1163.328436] ? sock_write_iter+0x3d0/0x3d0 [ 1163.329404] ? do_recvmmsg+0x6d0/0x6d0 [ 1163.330301] ? lock_downgrade+0x6d0/0x6d0 [ 1163.331240] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1163.332458] ___sys_sendmsg+0xf3/0x170 [ 1163.333375] ? sendmsg_copy_msghdr+0x160/0x160 [ 1163.334428] ? __fget_files+0x2cf/0x520 [ 1163.335342] ? lock_downgrade+0x6d0/0x6d0 [ 1163.336296] ? find_held_lock+0x2c/0x110 [ 1163.337214] ? __fget_files+0x2f8/0x520 [ 1163.338135] ? __fget_light+0xea/0x290 [ 1163.339052] __sys_sendmsg+0xe5/0x1b0 [ 1163.339926] ? __sys_sendmsg_sock+0x40/0x40 [ 1163.340887] ? rcu_read_lock_any_held+0x75/0xa0 [ 1163.341945] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1163.343137] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1163.344291] do_syscall_64+0x33/0x40 [ 1163.345134] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1163.346282] RIP: 0033:0x7faee752eb19 [ 1163.347184] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1163.351412] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1163.353158] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 1163.354825] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1163.356474] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1163.358106] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1163.359763] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 02:58:43 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 2) 02:58:43 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1163.414439] FAULT_INJECTION: forcing a failure. [ 1163.414439] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1163.417069] CPU: 1 PID: 8013 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1163.418528] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1163.420269] Call Trace: [ 1163.420835] dump_stack+0x107/0x167 [ 1163.421618] should_fail.cold+0x5/0xa [ 1163.422426] _copy_from_user+0x2e/0x1b0 [ 1163.423272] iovec_from_user+0x141/0x400 [ 1163.424144] __import_iovec+0x67/0x590 [ 1163.424969] ? __ia32_sys_shutdown+0x80/0x80 [ 1163.425903] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1163.427032] import_iovec+0x83/0xb0 [ 1163.427806] sendmsg_copy_msghdr+0x131/0x160 [ 1163.428735] ? do_recvmmsg+0x6d0/0x6d0 [ 1163.429566] ? lock_downgrade+0x6d0/0x6d0 [ 1163.430457] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1163.431574] ___sys_sendmsg+0xc6/0x170 [ 1163.432402] ? sendmsg_copy_msghdr+0x160/0x160 [ 1163.433385] ? __fget_files+0x2cf/0x520 [ 1163.434226] ? lock_downgrade+0x6d0/0x6d0 [ 1163.435115] ? find_held_lock+0x2c/0x110 [ 1163.435995] ? __fget_files+0x2f8/0x520 [ 1163.436852] ? __fget_light+0xea/0x290 [ 1163.437695] __sys_sendmsg+0xe5/0x1b0 [ 1163.438511] ? __sys_sendmsg_sock+0x40/0x40 [ 1163.439422] ? rcu_read_lock_any_held+0x75/0xa0 [ 1163.440409] ? fput_many+0x2f/0x1a0 [ 1163.441183] ? ksys_write+0x1a9/0x260 [ 1163.441991] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1163.443117] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1163.444224] do_syscall_64+0x33/0x40 [ 1163.445021] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1163.446118] RIP: 0033:0x7fdcf09cab19 [ 1163.446921] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1163.450839] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1163.452447] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1163.453961] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1163.455492] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1163.457016] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1163.458551] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 02:58:43 executing program 0: listen(0xffffffffffffffff, 0x0) copy_file_range(0xffffffffffffffff, &(0x7f00000001c0), 0xffffffffffffffff, &(0x7f0000000200), 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, 0x0) pread64(0xffffffffffffffff, &(0x7f00000000c0)=""/77, 0x4d, 0x9) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x48, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}, @nested={0x20, 0x0, 0x0, 0x1, [@typed={0x8, 0x0, 0x0, 0x0, @fd=r0}, @typed={0x14, 0x0, 0x0, 0x0, @ipv6=@remote}]}]}, 0x48}}, 0x0) fremovexattr(r0, &(0x7f0000000040)=@random={'security.', '\x00'}) [ 1163.565618] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 02:58:43 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 3) [ 1163.620515] FAULT_INJECTION: forcing a failure. [ 1163.620515] name failslab, interval 1, probability 0, space 0, times 0 [ 1163.623025] CPU: 1 PID: 8021 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1163.624482] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1163.626231] Call Trace: [ 1163.626808] dump_stack+0x107/0x167 [ 1163.627580] should_fail.cold+0x5/0xa [ 1163.628375] ? __alloc_skb+0x6d/0x5b0 [ 1163.629189] should_failslab+0x5/0x20 [ 1163.629991] kmem_cache_alloc_node+0x55/0x330 [ 1163.630957] __alloc_skb+0x6d/0x5b0 [ 1163.631741] netlink_sendmsg+0x998/0xe00 [ 1163.632605] ? netlink_unicast+0x800/0x800 [ 1163.633509] ? netlink_unicast+0x800/0x800 [ 1163.634410] __sock_sendmsg+0x154/0x190 [ 1163.635254] ____sys_sendmsg+0x70d/0x870 [ 1163.636122] ? sock_write_iter+0x3d0/0x3d0 [ 1163.637030] ? do_recvmmsg+0x6d0/0x6d0 [ 1163.637861] ? lock_downgrade+0x6d0/0x6d0 [ 1163.638752] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1163.639843] ___sys_sendmsg+0xf3/0x170 [ 1163.640676] ? sendmsg_copy_msghdr+0x160/0x160 [ 1163.641647] ? __fget_files+0x2cf/0x520 [ 1163.642490] ? lock_downgrade+0x6d0/0x6d0 [ 1163.643380] ? find_held_lock+0x2c/0x110 [ 1163.644253] ? __fget_files+0x2f8/0x520 [ 1163.645087] ? __fget_light+0xea/0x290 [ 1163.645904] __sys_sendmsg+0xe5/0x1b0 [ 1163.646712] ? __sys_sendmsg_sock+0x40/0x40 [ 1163.647615] ? rcu_read_lock_any_held+0x75/0xa0 [ 1163.648613] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1163.649727] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1163.650818] do_syscall_64+0x33/0x40 [ 1163.651614] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1163.652697] RIP: 0033:0x7fdcf09cab19 [ 1163.653481] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1163.657385] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1163.659015] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1163.660506] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1163.662000] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1163.663514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1163.665011] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 [ 1163.670155] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1163.672528] FAULT_INJECTION: forcing a failure. [ 1163.672528] name failslab, interval 1, probability 0, space 0, times 0 [ 1163.675241] CPU: 0 PID: 8008 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 1163.676809] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1163.678701] Call Trace: [ 1163.679305] dump_stack+0x107/0x167 [ 1163.680142] should_fail.cold+0x5/0xa [ 1163.681012] ? create_object.isra.0+0x3a/0xa20 [ 1163.682053] should_failslab+0x5/0x20 [ 1163.682926] kmem_cache_alloc+0x5b/0x310 [ 1163.683860] ? vsnprintf+0x4ba/0x1600 [ 1163.684726] create_object.isra.0+0x3a/0xa20 [ 1163.685721] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1163.686897] __kmalloc_track_caller+0x177/0x370 [ 1163.687952] ? kasprintf+0xbb/0xf0 [ 1163.688766] kvasprintf+0xb5/0x150 [ 1163.689577] ? bust_spinlocks+0xe0/0xe0 [ 1163.690505] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1163.691714] ? get_random_u32+0x3cb/0x670 [ 1163.692659] kasprintf+0xbb/0xf0 [ 1163.693433] ? kvasprintf_const+0x1a0/0x1a0 [ 1163.694426] ? lockdep_init_map_type+0x2c7/0x780 [ 1163.695507] ? lockdep_init_map_type+0x2c7/0x780 [ 1163.696595] ieee80211_alloc_led_names+0x23f/0x420 [ 1163.697711] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1163.698806] ? trace_hardirqs_on+0x5b/0x180 [ 1163.699793] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1163.700915] ? trace_hardirqs_on+0x5b/0x180 [ 1163.701914] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1163.702995] ? __kmalloc+0x16e/0x390 [ 1163.703849] hwsim_new_radio_nl+0x991/0x1080 [ 1163.704856] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1163.706048] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1163.707543] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1163.709033] genl_family_rcv_msg_doit+0x22d/0x330 [ 1163.710131] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1163.711645] ? cap_capable+0x1cd/0x230 [ 1163.712557] ? ns_capable+0xe2/0x110 [ 1163.713407] genl_rcv_msg+0x36a/0x5a0 [ 1163.714279] ? genl_get_cmd+0x480/0x480 [ 1163.715197] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1163.716379] ? lock_release+0x680/0x680 [ 1163.717290] ? netlink_deliver_tap+0xf4/0xcc0 [ 1163.718319] netlink_rcv_skb+0x14b/0x430 [ 1163.719252] ? genl_get_cmd+0x480/0x480 [ 1163.720162] ? netlink_ack+0xab0/0xab0 [ 1163.721058] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1163.722096] ? is_vmalloc_addr+0x7b/0xb0 [ 1163.723031] genl_rcv+0x24/0x40 [ 1163.723779] netlink_unicast+0x54e/0x800 [ 1163.724707] ? netlink_attachskb+0x870/0x870 [ 1163.725770] netlink_sendmsg+0x90f/0xe00 [ 1163.726709] ? netlink_unicast+0x800/0x800 [ 1163.727697] ? netlink_unicast+0x800/0x800 [ 1163.728668] __sock_sendmsg+0x154/0x190 [ 1163.729578] ____sys_sendmsg+0x70d/0x870 [ 1163.730521] ? sock_write_iter+0x3d0/0x3d0 [ 1163.731493] ? do_recvmmsg+0x6d0/0x6d0 [ 1163.732374] ? lock_downgrade+0x6d0/0x6d0 [ 1163.733320] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1163.734555] ___sys_sendmsg+0xf3/0x170 [ 1163.735449] ? sendmsg_copy_msghdr+0x160/0x160 [ 1163.736498] ? __fget_files+0x2cf/0x520 [ 1163.737399] ? lock_downgrade+0x6d0/0x6d0 [ 1163.738347] ? find_held_lock+0x2c/0x110 [ 1163.739289] ? __fget_files+0x2f8/0x520 [ 1163.740202] ? __fget_light+0xea/0x290 [ 1163.741097] __sys_sendmsg+0xe5/0x1b0 [ 1163.741964] ? __sys_sendmsg_sock+0x40/0x40 [ 1163.742945] ? rcu_read_lock_any_held+0x75/0xa0 [ 1163.744016] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1163.745204] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1163.746376] do_syscall_64+0x33/0x40 [ 1163.747228] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1163.748388] RIP: 0033:0x7f051132ab19 [ 1163.749242] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1163.753407] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1163.755148] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 1163.756776] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1163.758408] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 1163.760036] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1163.761678] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 [ 1163.897680] debugfs: Directory '€˜§°ÇÛ ”uòQÇC !' with parent 'ieee80211' already present! [ 1164.029440] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1164.031454] CPU: 0 PID: 8019 Comm: syz-executor.0 Not tainted 5.10.237 #1 [ 1164.033045] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1164.034944] Call Trace: [ 1164.035559] dump_stack+0x107/0x167 [ 1164.036394] sysfs_warn_dup.cold+0x1c/0x29 [ 1164.037368] sysfs_do_create_link_sd+0x122/0x140 [ 1164.038459] sysfs_create_link+0x5f/0xc0 [ 1164.039385] device_add+0x703/0x1c50 [ 1164.040241] ? devlink_add_symlinks+0x970/0x970 [ 1164.041310] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1164.042519] wiphy_register+0x1da6/0x2850 [ 1164.043477] ? wiphy_unregister+0xb90/0xb90 [ 1164.044480] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1164.045711] ieee80211_register_hw+0x23c5/0x38b0 [ 1164.046814] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1164.047911] ? net_generic+0xdb/0x2b0 [ 1164.048786] ? lockdep_init_map_type+0x2c7/0x780 [ 1164.049864] ? memset+0x20/0x50 [ 1164.050629] ? __hrtimer_init+0x12c/0x270 [ 1164.051580] mac80211_hwsim_new_radio+0x1d04/0x4290 [ 1164.052740] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1164.053805] ? hwsim_new_radio_nl+0x967/0x1080 [ 1164.054849] ? memcpy+0x39/0x60 [ 1164.055609] hwsim_new_radio_nl+0x991/0x1080 [ 1164.056613] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1164.057804] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1164.059319] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1164.060801] genl_family_rcv_msg_doit+0x22d/0x330 [ 1164.061902] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1164.063415] ? cap_capable+0x1cd/0x230 [ 1164.064310] ? ns_capable+0xe2/0x110 [ 1164.065161] genl_rcv_msg+0x36a/0x5a0 [ 1164.066033] ? genl_get_cmd+0x480/0x480 [ 1164.066951] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1164.068134] ? lock_release+0x680/0x680 [ 1164.069034] ? netlink_deliver_tap+0xf4/0xcc0 [ 1164.070075] netlink_rcv_skb+0x14b/0x430 [ 1164.071007] ? genl_get_cmd+0x480/0x480 [ 1164.071908] ? netlink_ack+0xab0/0xab0 [ 1164.072817] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1164.073851] ? is_vmalloc_addr+0x7b/0xb0 [ 1164.074790] genl_rcv+0x24/0x40 [ 1164.075566] netlink_unicast+0x54e/0x800 [ 1164.076504] ? netlink_attachskb+0x870/0x870 [ 1164.077518] netlink_sendmsg+0x90f/0xe00 [ 1164.078462] ? netlink_unicast+0x800/0x800 [ 1164.079438] ? netlink_unicast+0x800/0x800 [ 1164.080404] __sock_sendmsg+0x154/0x190 [ 1164.081309] ____sys_sendmsg+0x70d/0x870 [ 1164.082235] ? sock_write_iter+0x3d0/0x3d0 [ 1164.083204] ? do_recvmmsg+0x6d0/0x6d0 [ 1164.084108] ___sys_sendmsg+0xf3/0x170 [ 1164.084991] ? sendmsg_copy_msghdr+0x160/0x160 [ 1164.086038] ? __fget_files+0x2cf/0x520 [ 1164.086955] ? lock_downgrade+0x6d0/0x6d0 [ 1164.087903] ? clockevents_program_event+0x14b/0x360 [ 1164.089073] ? __fget_files+0x2f8/0x520 [ 1164.089979] ? __fget_light+0xea/0x290 [ 1164.090882] __sys_sendmsg+0xe5/0x1b0 [ 1164.091760] ? __sys_sendmsg_sock+0x40/0x40 [ 1164.092763] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1164.093959] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1164.095150] do_syscall_64+0x33/0x40 [ 1164.096005] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1164.097171] RIP: 0033:0x7f2baa965b19 [ 1164.098014] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1164.102182] RSP: 002b:00007f2ba7eba188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1164.103920] RAX: ffffffffffffffda RBX: 00007f2baaa79020 RCX: 00007f2baa965b19 [ 1164.105533] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1164.107149] RBP: 00007f2baa9bff6d R08: 0000000000000000 R09: 0000000000000000 [ 1164.108774] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1164.110396] R13: 00007ffdb95b787f R14: 00007f2ba7eba300 R15: 0000000000022000 [ 1178.351286] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. 02:58:58 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 25) 02:58:58 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x21, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 02:58:58 executing program 0: dup2(0xffffffffffffffff, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0x5, 0xffffffffffffffff, 0x9) r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$VT_RESIZEX(r0, 0x4b52, &(0x7f0000000040)) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x882c2, 0x0) r2 = open(&(0x7f0000000040)='./file0\x00', 0x1a18c1, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) r5 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_GET_SCAN(r3, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)={0x1c, r4, 0x301, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}}, 0x1c}}, 0x0) write$binfmt_elf64(r2, &(0x7f0000000140)=ANY=[@ANYRESHEX, @ANYRES16=r6], 0xffffffffffffff05) fallocate(r1, 0x0, 0x0, 0x2) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0x0, r2, 0xfffffff0, 0x0, 0x10000000}) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16, @ANYBLOB="050000000000000000000200000008000300", @ANYRES32=r7, @ANYBLOB='\f\x00@'], 0x30}}, 0x0) sendmsg$NL80211_CMD_GET_POWER_SAVE(r1, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x28, r4, 0x400, 0x70bd2b, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r7}, @val={0xc, 0x99, {0x36, 0x34}}}}, ["", "", "", ""]}, 0x28}}, 0x8084) ioctl$TIOCSLCKTRMIOS(r1, 0x5457, &(0x7f0000000000)) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) openat$autofs(0xffffffffffffff9c, 0x0, 0x20000, 0x0) 02:58:58 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x0, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 02:58:58 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 4) 02:58:58 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 26) 02:58:58 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 02:58:58 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x0, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32}]}, 0x1c}, 0x1, 0x0, 0x0, 0x801}, 0x0) [ 1178.359163] FAULT_INJECTION: forcing a failure. 02:58:58 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 27) [ 1178.359163] name failslab, interval 1, probability 0, space 0, times 0 [ 1178.359176] CPU: 1 PID: 8036 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 1178.359183] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1178.359187] Call Trace: [ 1178.359203] dump_stack+0x107/0x167 [ 1178.359217] should_fail.cold+0x5/0xa [ 1178.359233] ? device_create_groups_vargs+0x8a/0x280 [ 1178.359247] should_failslab+0x5/0x20 [ 1178.359260] kmem_cache_alloc_trace+0x55/0x320 [ 1178.359277] device_create_groups_vargs+0x8a/0x280 [ 1178.359292] device_create+0xdc/0x120 [ 1178.359307] ? device_create_groups_vargs+0x280/0x280 [ 1178.359320] ? init_timer_key+0x12a/0x240 [ 1178.359337] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1178.359354] mac80211_hwsim_new_radio+0x376/0x4290 [ 1178.359365] ? trace_hardirqs_on+0x5b/0x180 [ 1178.359387] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1178.359405] ? __kmalloc+0x16e/0x390 [ 1178.359420] hwsim_new_radio_nl+0x991/0x1080 [ 1178.359435] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1178.359459] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1178.359471] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1178.359488] genl_family_rcv_msg_doit+0x22d/0x330 [ 1178.359503] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1178.359515] ? cap_capable+0x1cd/0x230 [ 1178.359535] ? ns_capable+0xe2/0x110 [ 1178.359554] genl_rcv_msg+0x36a/0x5a0 [ 1178.359568] ? genl_get_cmd+0x480/0x480 [ 1178.359581] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1178.359597] ? lock_release+0x680/0x680 [ 1178.359607] ? netlink_deliver_tap+0xf4/0xcc0 [ 1178.359622] netlink_rcv_skb+0x14b/0x430 [ 1178.359634] ? genl_get_cmd+0x480/0x480 [ 1178.359647] ? netlink_ack+0xab0/0xab0 [ 1178.359664] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1178.359676] ? is_vmalloc_addr+0x7b/0xb0 [ 1178.359690] genl_rcv+0x24/0x40 02:58:58 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}, 0x1, 0x0, 0x0, 0x801}, 0x0) [ 1178.359700] netlink_unicast+0x54e/0x800 [ 1178.359715] ? netlink_attachskb+0x870/0x870 [ 1178.359734] netlink_sendmsg+0x90f/0xe00 [ 1178.359750] ? netlink_unicast+0x800/0x800 [ 1178.359769] ? netlink_unicast+0x800/0x800 [ 1178.359782] __sock_sendmsg+0x154/0x190 [ 1178.359795] ____sys_sendmsg+0x70d/0x870 02:58:58 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x23, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 02:58:58 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 5) [ 1178.359809] ? sock_write_iter+0x3d0/0x3d0 [ 1178.359820] ? do_recvmmsg+0x6d0/0x6d0 [ 1178.359835] ? lock_downgrade+0x6d0/0x6d0 [ 1178.359849] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1178.359865] ___sys_sendmsg+0xf3/0x170 [ 1178.359879] ? sendmsg_copy_msghdr+0x160/0x160 [ 1178.359895] ? __fget_files+0x2cf/0x520 [ 1178.359907] ? lock_downgrade+0x6d0/0x6d0 [ 1178.359919] ? find_held_lock+0x2c/0x110 [ 1178.359938] ? __fget_files+0x2f8/0x520 02:58:58 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 28) [ 1178.359955] ? __fget_light+0xea/0x290 [ 1178.359972] __sys_sendmsg+0xe5/0x1b0 [ 1178.359985] ? __sys_sendmsg_sock+0x40/0x40 [ 1178.359996] ? rcu_read_lock_any_held+0x75/0xa0 [ 1178.360019] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1178.360032] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1178.360046] do_syscall_64+0x33/0x40 [ 1178.360058] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1178.360066] RIP: 0033:0x7f051132ab19 [ 1178.360078] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1178.360085] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1178.360098] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 1178.360105] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1178.360112] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 1178.360119] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1178.360126] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 [ 1178.362703] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. [ 1178.396040] FAULT_INJECTION: forcing a failure. [ 1178.396040] name failslab, interval 1, probability 0, space 0, times 0 [ 1178.396053] CPU: 1 PID: 8042 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1178.396059] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1178.396063] Call Trace: [ 1178.396077] dump_stack+0x107/0x167 [ 1178.396089] should_fail.cold+0x5/0xa [ 1178.396102] ? create_object.isra.0+0x3a/0xa20 [ 1178.396115] should_failslab+0x5/0x20 [ 1178.396126] kmem_cache_alloc+0x5b/0x310 [ 1178.396141] create_object.isra.0+0x3a/0xa20 [ 1178.396150] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1178.396165] kmem_cache_alloc_node+0x169/0x330 [ 1178.396180] __alloc_skb+0x6d/0x5b0 [ 1178.396195] netlink_sendmsg+0x998/0xe00 [ 1178.396210] ? netlink_unicast+0x800/0x800 [ 1178.396227] ? netlink_unicast+0x800/0x800 [ 1178.396239] __sock_sendmsg+0x154/0x190 [ 1178.396251] ____sys_sendmsg+0x70d/0x870 [ 1178.396265] ? sock_write_iter+0x3d0/0x3d0 [ 1178.396275] ? do_recvmmsg+0x6d0/0x6d0 [ 1178.396290] ? lock_downgrade+0x6d0/0x6d0 [ 1178.396303] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1178.396319] ___sys_sendmsg+0xf3/0x170 [ 1178.396332] ? sendmsg_copy_msghdr+0x160/0x160 [ 1178.396346] ? __fget_files+0x2cf/0x520 [ 1178.396358] ? lock_downgrade+0x6d0/0x6d0 [ 1178.396372] ? find_held_lock+0x2c/0x110 [ 1178.396392] ? __fget_files+0x2f8/0x520 [ 1178.396407] ? __fget_light+0xea/0x290 [ 1178.396424] __sys_sendmsg+0xe5/0x1b0 [ 1178.396436] ? __sys_sendmsg_sock+0x40/0x40 [ 1178.396447] ? rcu_read_lock_any_held+0x75/0xa0 [ 1178.396469] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1178.396481] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1178.396494] do_syscall_64+0x33/0x40 [ 1178.396506] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1178.396513] RIP: 0033:0x7fdcf09cab19 [ 1178.396525] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1178.396531] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1178.396544] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1178.396551] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1178.396557] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1178.396564] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1178.396571] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 [ 1178.521220] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1178.521394] FAULT_INJECTION: forcing a failure. [ 1178.521394] name failslab, interval 1, probability 0, space 0, times 0 [ 1178.521407] CPU: 1 PID: 8044 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 1178.521417] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1178.521421] Call Trace: [ 1178.521437] dump_stack+0x107/0x167 [ 1178.521450] should_fail.cold+0x5/0xa [ 1178.521464] ? create_object.isra.0+0x3a/0xa20 [ 1178.521478] should_failslab+0x5/0x20 [ 1178.521489] kmem_cache_alloc+0x5b/0x310 [ 1178.521505] create_object.isra.0+0x3a/0xa20 [ 1178.521514] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1178.521530] kmem_cache_alloc_trace+0x151/0x320 [ 1178.521548] device_create_groups_vargs+0x8a/0x280 [ 1178.521563] device_create+0xdc/0x120 [ 1178.521577] ? device_create_groups_vargs+0x280/0x280 [ 1178.521590] ? init_timer_key+0x12a/0x240 [ 1178.521606] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1178.521623] mac80211_hwsim_new_radio+0x376/0x4290 [ 1178.521633] ? trace_hardirqs_on+0x5b/0x180 [ 1178.521655] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1178.521668] ? __kmalloc+0x16e/0x390 [ 1178.521683] hwsim_new_radio_nl+0x991/0x1080 [ 1178.521698] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1178.521721] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1178.521733] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1178.521749] genl_family_rcv_msg_doit+0x22d/0x330 [ 1178.521764] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1178.521777] ? cap_capable+0x1cd/0x230 [ 1178.521797] ? ns_capable+0xe2/0x110 [ 1178.521811] genl_rcv_msg+0x36a/0x5a0 [ 1178.521825] ? genl_get_cmd+0x480/0x480 [ 1178.521838] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1178.521854] ? lock_release+0x680/0x680 [ 1178.521864] ? netlink_deliver_tap+0xf4/0xcc0 [ 1178.521879] netlink_rcv_skb+0x14b/0x430 [ 1178.521891] ? genl_get_cmd+0x480/0x480 [ 1178.521903] ? netlink_ack+0xab0/0xab0 [ 1178.521920] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1178.521932] ? is_vmalloc_addr+0x7b/0xb0 [ 1178.521945] genl_rcv+0x24/0x40 [ 1178.521956] netlink_unicast+0x54e/0x800 [ 1178.521971] ? netlink_attachskb+0x870/0x870 [ 1178.521989] netlink_sendmsg+0x90f/0xe00 [ 1178.522005] ? netlink_unicast+0x800/0x800 [ 1178.522023] ? netlink_unicast+0x800/0x800 [ 1178.522036] __sock_sendmsg+0x154/0x190 [ 1178.522049] ____sys_sendmsg+0x70d/0x870 [ 1178.522063] ? sock_write_iter+0x3d0/0x3d0 [ 1178.522074] ? do_recvmmsg+0x6d0/0x6d0 [ 1178.522088] ? lock_downgrade+0x6d0/0x6d0 [ 1178.522102] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1178.522118] ___sys_sendmsg+0xf3/0x170 [ 1178.522132] ? sendmsg_copy_msghdr+0x160/0x160 [ 1178.522146] ? __fget_files+0x2cf/0x520 [ 1178.522158] ? lock_downgrade+0x6d0/0x6d0 [ 1178.522170] ? find_held_lock+0x2c/0x110 [ 1178.522188] ? __fget_files+0x2f8/0x520 [ 1178.522205] ? __fget_light+0xea/0x290 [ 1178.522222] __sys_sendmsg+0xe5/0x1b0 [ 1178.522234] ? __sys_sendmsg_sock+0x40/0x40 [ 1178.522246] ? rcu_read_lock_any_held+0x75/0xa0 [ 1178.522269] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1178.522281] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1178.522295] do_syscall_64+0x33/0x40 [ 1178.522307] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1178.522315] RIP: 0033:0x7f051132ab19 [ 1178.522327] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1178.522333] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1178.522346] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 1178.522353] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1178.522360] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 1178.522367] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1178.522374] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 [ 1178.598798] FAULT_INJECTION: forcing a failure. [ 1178.598798] name failslab, interval 1, probability 0, space 0, times 0 [ 1178.598813] CPU: 1 PID: 8058 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1178.598820] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1178.598824] Call Trace: [ 1178.598843] dump_stack+0x107/0x167 [ 1178.598856] should_fail.cold+0x5/0xa [ 1178.598873] should_failslab+0x5/0x20 [ 1178.598886] __kmalloc_node_track_caller+0x74/0x3b0 [ 1178.598897] ? netlink_sendmsg+0x998/0xe00 [ 1178.598913] __alloc_skb+0xb1/0x5b0 [ 1178.598926] netlink_sendmsg+0x998/0xe00 [ 1178.598940] ? netlink_unicast+0x800/0x800 [ 1178.598957] ? netlink_unicast+0x800/0x800 [ 1178.598970] __sock_sendmsg+0x154/0x190 [ 1178.598982] ____sys_sendmsg+0x70d/0x870 [ 1178.598994] ? sock_write_iter+0x3d0/0x3d0 [ 1178.599005] ? do_recvmmsg+0x6d0/0x6d0 [ 1178.599020] ? lock_downgrade+0x6d0/0x6d0 [ 1178.599034] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1178.599048] ___sys_sendmsg+0xf3/0x170 [ 1178.599061] ? sendmsg_copy_msghdr+0x160/0x160 [ 1178.599075] ? __fget_files+0x2cf/0x520 [ 1178.599086] ? lock_downgrade+0x6d0/0x6d0 [ 1178.599098] ? find_held_lock+0x2c/0x110 [ 1178.599119] ? __fget_files+0x2f8/0x520 [ 1178.599134] ? __fget_light+0xea/0x290 [ 1178.599149] __sys_sendmsg+0xe5/0x1b0 [ 1178.599161] ? __sys_sendmsg_sock+0x40/0x40 [ 1178.599172] ? rcu_read_lock_any_held+0x75/0xa0 [ 1178.599193] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1178.599206] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1178.599219] do_syscall_64+0x33/0x40 [ 1178.599230] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1178.599238] RIP: 0033:0x7fdcf09cab19 [ 1178.599249] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1178.599256] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1178.599269] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1178.599276] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1178.599283] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1178.599290] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1178.599296] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 [ 1178.619939] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1178.620155] FAULT_INJECTION: forcing a failure. [ 1178.620155] name failslab, interval 1, probability 0, space 0, times 0 [ 1178.620175] CPU: 0 PID: 8046 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 1178.620185] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1178.620192] Call Trace: [ 1178.620219] dump_stack+0x107/0x167 [ 1178.620241] should_fail.cold+0x5/0xa [ 1178.620264] ? create_object.isra.0+0x3a/0xa20 [ 1178.620287] should_failslab+0x5/0x20 [ 1178.620306] kmem_cache_alloc+0x5b/0x310 [ 1178.620324] ? vsnprintf+0x4ba/0x1600 [ 1178.620347] create_object.isra.0+0x3a/0xa20 [ 1178.620363] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1178.620389] __kmalloc_track_caller+0x177/0x370 [ 1178.620407] ? kasprintf+0xbb/0xf0 [ 1178.620432] kvasprintf+0xb5/0x150 [ 1178.620452] ? bust_spinlocks+0xe0/0xe0 [ 1178.620472] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1178.620496] ? get_random_u32+0x3cb/0x670 [ 1178.620523] kasprintf+0xbb/0xf0 [ 1178.620544] ? kvasprintf_const+0x1a0/0x1a0 [ 1178.620567] ? lockdep_init_map_type+0x2c7/0x780 [ 1178.620589] ? lockdep_init_map_type+0x2c7/0x780 [ 1178.620621] ieee80211_alloc_led_names+0x23f/0x420 [ 1178.620642] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1178.620661] ? trace_hardirqs_on+0x5b/0x180 [ 1178.620685] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1178.620700] ? trace_hardirqs_on+0x5b/0x180 [ 1178.620735] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1178.620765] ? __kmalloc+0x16e/0x390 [ 1178.620790] hwsim_new_radio_nl+0x991/0x1080 [ 1178.620813] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1178.620851] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1178.620870] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1178.620896] genl_family_rcv_msg_doit+0x22d/0x330 [ 1178.620920] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1178.620939] ? cap_capable+0x1cd/0x230 [ 1178.620971] ? ns_capable+0xe2/0x110 [ 1178.620995] genl_rcv_msg+0x36a/0x5a0 [ 1178.621018] ? genl_get_cmd+0x480/0x480 [ 1178.621038] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1178.621063] ? lock_release+0x680/0x680 [ 1178.621080] ? netlink_deliver_tap+0xf4/0xcc0 [ 1178.621104] netlink_rcv_skb+0x14b/0x430 [ 1178.621123] ? genl_get_cmd+0x480/0x480 [ 1178.621143] ? netlink_ack+0xab0/0xab0 [ 1178.621171] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1178.621190] ? is_vmalloc_addr+0x7b/0xb0 [ 1178.621212] genl_rcv+0x24/0x40 [ 1178.621229] netlink_unicast+0x54e/0x800 [ 1178.621253] ? netlink_attachskb+0x870/0x870 [ 1178.621284] netlink_sendmsg+0x90f/0xe00 [ 1178.621310] ? netlink_unicast+0x800/0x800 [ 1178.621340] ? netlink_unicast+0x800/0x800 [ 1178.621361] __sock_sendmsg+0x154/0x190 [ 1178.621382] ____sys_sendmsg+0x70d/0x870 [ 1178.621405] ? sock_write_iter+0x3d0/0x3d0 [ 1178.621422] ? do_recvmmsg+0x6d0/0x6d0 [ 1178.621446] ? lock_downgrade+0x6d0/0x6d0 [ 1178.621469] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1178.621496] ___sys_sendmsg+0xf3/0x170 [ 1178.621518] ? sendmsg_copy_msghdr+0x160/0x160 [ 1178.621543] ? __fget_files+0x2cf/0x520 [ 1178.621562] ? lock_downgrade+0x6d0/0x6d0 [ 1178.621582] ? find_held_lock+0x2c/0x110 [ 1178.621612] ? __fget_files+0x2f8/0x520 [ 1178.621639] ? __fget_light+0xea/0x290 [ 1178.621668] __sys_sendmsg+0xe5/0x1b0 [ 1178.621688] ? __sys_sendmsg_sock+0x40/0x40 [ 1178.621706] ? rcu_read_lock_any_held+0x75/0xa0 [ 1178.621744] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1178.621765] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1178.621787] do_syscall_64+0x33/0x40 [ 1178.621806] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1178.621819] RIP: 0033:0x7faee752eb19 [ 1178.621838] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1178.621848] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1178.621869] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 1178.621880] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1178.621891] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1178.621902] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1178.621913] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 [ 1178.709084] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. [ 1178.827165] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1178.827332] FAULT_INJECTION: forcing a failure. [ 1178.827332] name failslab, interval 1, probability 0, space 0, times 0 [ 1178.827343] CPU: 1 PID: 8062 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 1178.827350] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1178.827354] Call Trace: [ 1178.827371] dump_stack+0x107/0x167 [ 1178.827383] should_fail.cold+0x5/0xa [ 1178.827400] should_failslab+0x5/0x20 [ 1178.827412] __kmalloc_track_caller+0x79/0x370 [ 1178.827424] ? kvasprintf_const+0x60/0x1a0 [ 1178.827438] kvasprintf+0xb5/0x150 [ 1178.827449] ? bust_spinlocks+0xe0/0xe0 [ 1178.827465] ? lockdep_init_map_type+0x2c7/0x780 [ 1178.827480] kvasprintf_const+0x60/0x1a0 [ 1178.827493] kobject_set_name_vargs+0x56/0x150 [ 1178.827506] device_create_groups_vargs+0x1c0/0x280 [ 1178.827519] device_create+0xdc/0x120 [ 1178.827532] ? device_create_groups_vargs+0x280/0x280 [ 1178.827543] ? init_timer_key+0x12a/0x240 [ 1178.827559] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1178.827575] mac80211_hwsim_new_radio+0x376/0x4290 [ 1178.827584] ? trace_hardirqs_on+0x5b/0x180 [ 1178.827603] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1178.827615] ? __kmalloc+0x16e/0x390 [ 1178.827628] hwsim_new_radio_nl+0x991/0x1080 [ 1178.827641] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1178.827661] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1178.827672] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1178.827686] genl_family_rcv_msg_doit+0x22d/0x330 [ 1178.827699] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1178.827710] ? cap_capable+0x1cd/0x230 [ 1178.827728] ? ns_capable+0xe2/0x110 [ 1178.827741] genl_rcv_msg+0x36a/0x5a0 [ 1178.827758] ? genl_get_cmd+0x480/0x480 [ 1178.827769] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1178.827782] ? lock_release+0x680/0x680 [ 1178.827791] ? netlink_deliver_tap+0xf4/0xcc0 [ 1178.827804] netlink_rcv_skb+0x14b/0x430 [ 1178.827814] ? genl_get_cmd+0x480/0x480 [ 1178.827825] ? netlink_ack+0xab0/0xab0 [ 1178.827840] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1178.827850] ? is_vmalloc_addr+0x7b/0xb0 [ 1178.827862] genl_rcv+0x24/0x40 [ 1178.827871] netlink_unicast+0x54e/0x800 [ 1178.827884] ? netlink_attachskb+0x870/0x870 [ 1178.827900] netlink_sendmsg+0x90f/0xe00 [ 1178.827914] ? netlink_unicast+0x800/0x800 [ 1178.827930] ? netlink_unicast+0x800/0x800 [ 1178.827942] __sock_sendmsg+0x154/0x190 [ 1178.827953] ____sys_sendmsg+0x70d/0x870 [ 1178.827965] ? sock_write_iter+0x3d0/0x3d0 [ 1178.827975] ? do_recvmmsg+0x6d0/0x6d0 [ 1178.827987] ? lock_downgrade+0x6d0/0x6d0 [ 1178.828000] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1178.828014] ___sys_sendmsg+0xf3/0x170 [ 1178.828026] ? sendmsg_copy_msghdr+0x160/0x160 [ 1178.828040] ? __fget_files+0x2cf/0x520 [ 1178.828050] ? lock_downgrade+0x6d0/0x6d0 [ 1178.828061] ? find_held_lock+0x2c/0x110 [ 1178.828077] ? __fget_files+0x2f8/0x520 [ 1178.828092] ? __fget_light+0xea/0x290 [ 1178.828107] __sys_sendmsg+0xe5/0x1b0 [ 1178.828118] ? __sys_sendmsg_sock+0x40/0x40 [ 1178.828129] ? rcu_read_lock_any_held+0x75/0xa0 [ 1178.828152] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1178.828164] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1178.828176] do_syscall_64+0x33/0x40 [ 1178.828187] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1178.828195] RIP: 0033:0x7f051132ab19 [ 1178.828205] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1178.828211] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1178.828223] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 1178.828230] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1178.828236] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 1178.828242] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1178.828262] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 [ 1192.783847] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1192.785465] FAULT_INJECTION: forcing a failure. [ 1192.785465] name failslab, interval 1, probability 0, space 0, times 0 [ 1192.787147] CPU: 0 PID: 8072 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 1192.788101] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1192.789263] Call Trace: [ 1192.789641] dump_stack+0x107/0x167 [ 1192.790158] should_fail.cold+0x5/0xa [ 1192.790709] ? create_object.isra.0+0x3a/0xa20 [ 1192.791358] should_failslab+0x5/0x20 [ 1192.791890] kmem_cache_alloc+0x5b/0x310 [ 1192.792457] ? vsnprintf+0x4ba/0x1600 [ 1192.792989] create_object.isra.0+0x3a/0xa20 [ 1192.793609] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1192.794319] __kmalloc_track_caller+0x177/0x370 [ 1192.794973] ? kvasprintf_const+0x60/0x1a0 [ 1192.795570] kvasprintf+0xb5/0x150 [ 1192.796068] ? bust_spinlocks+0xe0/0xe0 [ 1192.796633] ? lockdep_init_map_type+0x2c7/0x780 [ 1192.797299] kvasprintf_const+0x60/0x1a0 [ 1192.797876] kobject_set_name_vargs+0x56/0x150 [ 1192.798523] device_create_groups_vargs+0x1c0/0x280 [ 1192.799233] device_create+0xdc/0x120 [ 1192.799770] ? device_create_groups_vargs+0x280/0x280 [ 1192.800494] ? init_timer_key+0x12a/0x240 [ 1192.801072] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1192.801760] mac80211_hwsim_new_radio+0x376/0x4290 [ 1192.802440] ? trace_hardirqs_on+0x5b/0x180 [ 1192.803051] ? hwsim_send_nullfunc_ps+0x80/0x80 02:59:12 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 6) 02:59:12 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) socket$unix(0x1, 0x5, 0x0) connect$unix(0xffffffffffffffff, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 02:59:12 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r2, &(0x7f0000000180)=""/198, 0xc6) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r0, 0xc018937b, &(0x7f0000000100)={{0x1, 0x1, 0x18, r2, {0xee00, 0xffffffffffffffff}}, './file0\x00'}) write$binfmt_elf64(r1, &(0x7f0000000280)=ANY=[], 0xfdef) ftruncate(r0, 0x7) r3 = openat2$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)={0x200, 0x1a0, 0xfcd8babf18236e07}, 0x18) sendfile(0xffffffffffffffff, r3, &(0x7f00000000c0)=0x54, 0x2) 02:59:12 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x24, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 02:59:12 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x2, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 02:59:12 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 26) 02:59:12 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 29) [ 1192.803699] ? __kmalloc+0x16e/0x390 [ 1192.804403] hwsim_new_radio_nl+0x991/0x1080 [ 1192.805027] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1192.805753] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1192.806659] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1192.807565] genl_family_rcv_msg_doit+0x22d/0x330 [ 1192.808236] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1192.809164] ? cap_capable+0x1cd/0x230 [ 1192.809710] ? ns_capable+0xe2/0x110 [ 1192.810233] genl_rcv_msg+0x36a/0x5a0 [ 1192.810768] ? genl_get_cmd+0x480/0x480 [ 1192.811319] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1192.811746] FAULT_INJECTION: forcing a failure. [ 1192.811746] name failslab, interval 1, probability 0, space 0, times 0 [ 1192.812032] ? lock_release+0x680/0x680 [ 1192.812045] ? netlink_deliver_tap+0xf4/0xcc0 [ 1192.812068] netlink_rcv_skb+0x14b/0x430 [ 1192.816104] ? genl_get_cmd+0x480/0x480 [ 1192.816656] ? netlink_ack+0xab0/0xab0 [ 1192.817198] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1192.817826] ? is_vmalloc_addr+0x7b/0xb0 [ 1192.818386] genl_rcv+0x24/0x40 [ 1192.818850] netlink_unicast+0x54e/0x800 [ 1192.819423] ? netlink_attachskb+0x870/0x870 [ 1192.820039] netlink_sendmsg+0x90f/0xe00 [ 1192.820604] ? netlink_unicast+0x800/0x800 [ 1192.821193] ? netlink_unicast+0x800/0x800 [ 1192.821782] __sock_sendmsg+0x154/0x190 [ 1192.822330] ____sys_sendmsg+0x70d/0x870 [ 1192.822898] ? sock_write_iter+0x3d0/0x3d0 [ 1192.823482] ? do_recvmmsg+0x6d0/0x6d0 [ 1192.824016] ? lock_downgrade+0x6d0/0x6d0 [ 1192.824589] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1192.825309] ___sys_sendmsg+0xf3/0x170 [ 1192.825851] ? sendmsg_copy_msghdr+0x160/0x160 [ 1192.826477] ? __fget_files+0x2cf/0x520 [ 1192.827036] ? lock_downgrade+0x6d0/0x6d0 [ 1192.827609] ? find_held_lock+0x2c/0x110 [ 1192.828179] ? __fget_files+0x2f8/0x520 [ 1192.828735] ? __fget_light+0xea/0x290 [ 1192.829279] __sys_sendmsg+0xe5/0x1b0 [ 1192.829801] ? __sys_sendmsg_sock+0x40/0x40 [ 1192.830392] ? rcu_read_lock_any_held+0x75/0xa0 [ 1192.831046] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1192.831764] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1192.832472] do_syscall_64+0x33/0x40 [ 1192.832983] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1192.833682] RIP: 0033:0x7f051132ab19 [ 1192.834194] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1192.836719] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1192.837761] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 1192.838749] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1192.839731] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 1192.840708] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1192.841692] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 [ 1192.842698] CPU: 1 PID: 8080 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1192.844184] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1192.845990] Call Trace: [ 1192.846550] dump_stack+0x107/0x167 [ 1192.847332] should_fail.cold+0x5/0xa [ 1192.848135] ? create_object.isra.0+0x3a/0xa20 [ 1192.849098] should_failslab+0x5/0x20 [ 1192.849895] kmem_cache_alloc+0x5b/0x310 [ 1192.849920] create_object.isra.0+0x3a/0xa20 [ 1192.849942] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1192.852458] __kmalloc_node_track_caller+0x1a6/0x3b0 [ 1192.853520] ? netlink_sendmsg+0x998/0xe00 [ 1192.854413] __alloc_skb+0xb1/0x5b0 [ 1192.855188] netlink_sendmsg+0x998/0xe00 [ 1192.856045] ? netlink_unicast+0x800/0x800 [ 1192.856942] ? netlink_unicast+0x800/0x800 [ 1192.857828] __sock_sendmsg+0x154/0x190 [ 1192.858664] ____sys_sendmsg+0x70d/0x870 [ 1192.859522] ? sock_write_iter+0x3d0/0x3d0 [ 1192.860406] ? do_recvmmsg+0x6d0/0x6d0 [ 1192.861225] ? lock_downgrade+0x6d0/0x6d0 [ 1192.862097] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1192.863209] ___sys_sendmsg+0xf3/0x170 [ 1192.864028] ? sendmsg_copy_msghdr+0x160/0x160 [ 1192.864995] ? __fget_files+0x2cf/0x520 [ 1192.865839] ? lock_downgrade+0x6d0/0x6d0 [ 1192.866717] ? find_held_lock+0x2c/0x110 [ 1192.867584] ? __fget_files+0x2f8/0x520 [ 1192.868431] ? __fget_light+0xea/0x290 [ 1192.869257] __sys_sendmsg+0xe5/0x1b0 [ 1192.870061] ? __sys_sendmsg_sock+0x40/0x40 [ 1192.870974] ? rcu_read_lock_any_held+0x75/0xa0 [ 1192.871966] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1192.873062] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1192.874159] do_syscall_64+0x33/0x40 [ 1192.874955] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1192.876035] RIP: 0033:0x7fdcf09cab19 [ 1192.876813] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1192.880683] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1192.882274] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1192.883779] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1192.885270] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1192.886777] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1192.888283] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 [ 1192.899924] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 02:59:12 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 02:59:12 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 30) 02:59:12 executing program 0: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, 0xffffff7e) fcntl$setstatus(r0, 0x4, 0x2000) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r1, &(0x7f0000000180)=""/198, 0xc6) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0xffffffffffffffcb, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) r2 = syz_open_dev$vcsa(&(0x7f0000000040), 0x72, 0x488400) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000180)={'ip6gre0\x00', &(0x7f0000000200)={'sit0\x00', 0x0, 0x29, 0xa0, 0x8, 0x80000001, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}, @private2, 0x700, 0x8, 0xfff, 0x8}}) ioctl$sock_inet6_SIOCDELRT(r2, 0x890c, &(0x7f0000000280)={@private2, @dev={0xfe, 0x80, '\x00', 0x18}, @mcast2, 0x6, 0x2, 0x101, 0x0, 0x3c, 0x844000a2, r3}) 02:59:12 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x26, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1193.015881] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1193.017209] FAULT_INJECTION: forcing a failure. [ 1193.017209] name failslab, interval 1, probability 0, space 0, times 0 [ 1193.018671] CPU: 0 PID: 8081 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 1193.019555] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1193.020615] Call Trace: [ 1193.020960] dump_stack+0x107/0x167 [ 1193.021438] should_fail.cold+0x5/0xa [ 1193.021945] ? device_create_groups_vargs+0x8a/0x280 [ 1193.022601] should_failslab+0x5/0x20 [ 1193.023098] kmem_cache_alloc_trace+0x55/0x320 [ 1193.023690] device_create_groups_vargs+0x8a/0x280 [ 1193.024314] device_create+0xdc/0x120 [ 1193.024814] ? device_create_groups_vargs+0x280/0x280 [ 1193.025482] ? init_timer_key+0x12a/0x240 [ 1193.026026] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1193.026659] mac80211_hwsim_new_radio+0x376/0x4290 [ 1193.027286] ? trace_hardirqs_on+0x5b/0x180 [ 1193.027842] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1193.028450] ? __kmalloc+0x16e/0x390 [ 1193.028942] hwsim_new_radio_nl+0x991/0x1080 [ 1193.029508] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1193.030185] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1193.031045] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1193.031880] genl_family_rcv_msg_doit+0x22d/0x330 [ 1193.032503] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1193.033354] ? cap_capable+0x1cd/0x230 [ 1193.033868] ? ns_capable+0xe2/0x110 [ 1193.034344] genl_rcv_msg+0x36a/0x5a0 [ 1193.034840] ? genl_get_cmd+0x480/0x480 [ 1193.035348] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1193.036011] ? lock_release+0x680/0x680 [ 1193.036514] ? netlink_deliver_tap+0xf4/0xcc0 [ 1193.037101] netlink_rcv_skb+0x14b/0x430 [ 1193.037637] ? genl_get_cmd+0x480/0x480 [ 1193.038145] ? netlink_ack+0xab0/0xab0 [ 1193.038648] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1193.039248] ? is_vmalloc_addr+0x7b/0xb0 [ 1193.039772] genl_rcv+0x24/0x40 [ 1193.040196] netlink_unicast+0x54e/0x800 [ 1193.040716] ? netlink_attachskb+0x870/0x870 [ 1193.041283] netlink_sendmsg+0x90f/0xe00 [ 1193.041798] ? netlink_unicast+0x800/0x800 [ 1193.042344] ? netlink_unicast+0x800/0x800 [ 1193.042889] __sock_sendmsg+0x154/0x190 [ 1193.043388] ____sys_sendmsg+0x70d/0x870 [ 1193.043911] ? sock_write_iter+0x3d0/0x3d0 [ 1193.044452] ? do_recvmmsg+0x6d0/0x6d0 [ 1193.044953] ? lock_downgrade+0x6d0/0x6d0 [ 1193.045489] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1193.046158] ___sys_sendmsg+0xf3/0x170 [ 1193.046648] ? sendmsg_copy_msghdr+0x160/0x160 [ 1193.047245] ? __fget_files+0x2cf/0x520 [ 1193.047755] ? lock_downgrade+0x6d0/0x6d0 [ 1193.048289] ? find_held_lock+0x2c/0x110 [ 1193.048816] ? __fget_files+0x2f8/0x520 [ 1193.049324] ? __fget_light+0xea/0x290 [ 1193.049824] __sys_sendmsg+0xe5/0x1b0 [ 1193.050306] ? __sys_sendmsg_sock+0x40/0x40 [ 1193.050853] ? rcu_read_lock_any_held+0x75/0xa0 [ 1193.051457] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1193.052128] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1193.052787] do_syscall_64+0x33/0x40 [ 1193.053260] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1193.053913] RIP: 0033:0x7faee752eb19 [ 1193.054383] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1193.056715] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1193.057659] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 1193.058572] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1193.059477] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1193.060387] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1193.061285] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 02:59:13 executing program 0: prctl$PR_GET_TAGGED_ADDR_CTRL(0x38) prctl$PR_GET_TAGGED_ADDR_CTRL(0x38) r0 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r0, 0xc0189373, &(0x7f0000000380)=ANY=[@ANYBLOB="01000040ff0f000018000000a35cdb56715c87048e6093b231465a608b265e94abc32e9a8ea8199096cfe5298d4f9b980f66dc8cac6bc0ba891005f3bc191fc5cee85f0f3fba3042c8cbaf58cb5f1227c91a2c91a4544874bf681a4a6d58d2e64bdd02a210c1a45dbafa32cfcef6bc9748000d522a278db7b1687d88b017f73a7327dbaf4d3268826bedbe6fee5ad5e041075e86f0e691c4f48fe0d385969e645671f8c5fe1aba0177d3c133e959cad74528bb959dd5de606702bd29953e0c0d", @ANYRES32=r0, @ANYBLOB="000000c0000000002e2f66696c653000"]) r2 = openat(r1, &(0x7f0000000140)='./file1\x00', 0x80000, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0xffffffffffffffff, 0x0, 0x0, 0x12020, &(0x7f0000000600)=ANY=[@ANYBLOB='inode_readahead_blks=0x0000000000800000,uid=', @ANYRES64, @ANYBLOB="2ee5fdff3e", @ANYRESDEC, @ANYBLOB=',\x00'/16, @ANYRESDEC, @ANYRESOCT=r2]) mount$9p_fd(0x0, &(0x7f0000000180)='./file1\x00', &(0x7f0000000240), 0x29c880, &(0x7f0000000480)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@msize={'msize', 0x3d, 0x7}}, {@afid={'afid', 0x3d, 0x5}}, {@afid={'afid', 0x3d, 0x4}}, {@noextend}, {@dfltgid={'dfltgid', 0x3d, 0xee00}}, {@cache_fscache}, {@uname={'uname', 0x3d, '/dev/vcs\x00'}}, {@access_any}, {@msize}], [{@rootcontext={'rootcontext', 0x3d, 'user_u'}}, {@appraise_type}, {@fscontext={'fscontext', 0x3d, 'staff_u'}}, {@obj_type={'obj_type', 0x3d, '/dev/vcs\x00'}}, {@smackfstransmute={'smackfstransmute', 0x3d, '/dev/vcs\x00'}}, {@fowner_lt}]}}) r3 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r4 = perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x7, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000000}, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair(0x1f, 0x3, 0x3, &(0x7f0000000200)) readahead(r4, 0x8, 0x8) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x9, 0x0, 0x0, 0x40, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0x1, r3, 0x1) signalfd(0xffffffffffffffff, &(0x7f0000000340)={[0x8001]}, 0x8) r5 = openat$vcs(0xffffffffffffff9c, &(0x7f00000001c0), 0x101300, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r5) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x400, 0x80000, 0x0, 0x204738d712d63115, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r6 = syz_open_dev$tty1(0xc, 0x4, 0x1) setsockopt$inet6_group_source_req(0xffffffffffffffff, 0x29, 0x2e, &(0x7f0000000000)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x5}}}, {{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}}}, 0x108) accept4$inet(r6, &(0x7f0000000000)={0x2, 0x0, @local}, &(0x7f0000000040)=0x10, 0x0) write$binfmt_elf64(r6, &(0x7f0000000740)=ANY=[@ANYBLOB="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"], 0x42a) 02:59:13 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1193.113660] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1193.114989] FAULT_INJECTION: forcing a failure. [ 1193.114989] name failslab, interval 1, probability 0, space 0, times 0 [ 1193.116388] CPU: 0 PID: 8086 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 1193.117226] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1193.118253] Call Trace: [ 1193.118581] dump_stack+0x107/0x167 [ 1193.119032] should_fail.cold+0x5/0xa [ 1193.119497] ? create_object.isra.0+0x3a/0xa20 [ 1193.120061] should_failslab+0x5/0x20 [ 1193.120604] kmem_cache_alloc+0x5b/0x310 [ 1193.121206] ? vsnprintf+0x4ba/0x1600 [ 1193.121667] create_object.isra.0+0x3a/0xa20 [ 1193.122205] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1193.122833] __kmalloc_track_caller+0x177/0x370 [ 1193.123396] ? kvasprintf_const+0x60/0x1a0 [ 1193.123921] kvasprintf+0xb5/0x150 [ 1193.124357] ? bust_spinlocks+0xe0/0xe0 [ 1193.124844] ? lockdep_init_map_type+0x2c7/0x780 [ 1193.125427] kvasprintf_const+0x60/0x1a0 [ 1193.125928] kobject_set_name_vargs+0x56/0x150 [ 1193.126482] device_create_groups_vargs+0x1c0/0x280 [ 1193.127093] device_create+0xdc/0x120 [ 1193.127554] ? device_create_groups_vargs+0x280/0x280 [ 1193.128201] ? init_timer_key+0x12a/0x240 [ 1193.128714] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1193.129314] mac80211_hwsim_new_radio+0x376/0x4290 [ 1193.129908] ? trace_hardirqs_on+0x5b/0x180 [ 1193.130448] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1193.131023] ? __kmalloc+0x16e/0x390 [ 1193.131491] hwsim_new_radio_nl+0x991/0x1080 [ 1193.132025] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1193.132662] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1193.133468] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1193.134266] genl_family_rcv_msg_doit+0x22d/0x330 [ 1193.134858] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1193.135661] ? cap_capable+0x1cd/0x230 [ 1193.136153] ? ns_capable+0xe2/0x110 [ 1193.136612] genl_rcv_msg+0x36a/0x5a0 [ 1193.137079] ? genl_get_cmd+0x480/0x480 [ 1193.137561] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1193.138198] ? lock_release+0x680/0x680 [ 1193.138686] ? netlink_deliver_tap+0xf4/0xcc0 [ 1193.139245] netlink_rcv_skb+0x14b/0x430 [ 1193.139734] ? genl_get_cmd+0x480/0x480 [ 1193.140230] ? netlink_ack+0xab0/0xab0 [ 1193.140703] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1193.141264] ? is_vmalloc_addr+0x7b/0xb0 [ 1193.141756] genl_rcv+0x24/0x40 [ 1193.142162] netlink_unicast+0x54e/0x800 [ 1193.142663] ? netlink_attachskb+0x870/0x870 [ 1193.143212] netlink_sendmsg+0x90f/0xe00 [ 1193.143705] ? netlink_unicast+0x800/0x800 [ 1193.144241] ? netlink_unicast+0x800/0x800 [ 1193.144756] __sock_sendmsg+0x154/0x190 [ 1193.145247] ____sys_sendmsg+0x70d/0x870 [ 1193.145740] ? sock_write_iter+0x3d0/0x3d0 [ 1193.146259] ? do_recvmmsg+0x6d0/0x6d0 [ 1193.146734] ? lock_downgrade+0x6d0/0x6d0 [ 1193.147258] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1193.147895] ___sys_sendmsg+0xf3/0x170 [ 1193.148369] ? sendmsg_copy_msghdr+0x160/0x160 [ 1193.148932] ? __fget_files+0x2cf/0x520 [ 1193.149424] ? lock_downgrade+0x6d0/0x6d0 [ 1193.149927] ? find_held_lock+0x2c/0x110 [ 1193.150427] ? __fget_files+0x2f8/0x520 [ 1193.150924] ? __fget_light+0xea/0x290 [ 1193.151406] __sys_sendmsg+0xe5/0x1b0 [ 1193.151872] ? __sys_sendmsg_sock+0x40/0x40 [ 1193.152402] ? rcu_read_lock_any_held+0x75/0xa0 [ 1193.152981] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1193.153630] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1193.154275] do_syscall_64+0x33/0x40 [ 1193.154732] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1193.155367] RIP: 0033:0x7f051132ab19 [ 1193.155825] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1193.158105] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1193.159040] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 1193.159922] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1193.160792] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 1193.161667] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1193.162554] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 02:59:13 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 27) 02:59:13 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 31) [ 1193.229620] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 02:59:13 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 7) [ 1193.276808] FAULT_INJECTION: forcing a failure. [ 1193.276808] name fail_usercopy, interval 1, probability 0, space 0, times 0 02:59:13 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 8) [ 1193.276821] CPU: 0 PID: 8105 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1193.276827] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1193.276831] Call Trace: [ 1193.276848] dump_stack+0x107/0x167 [ 1193.276860] should_fail.cold+0x5/0xa [ 1193.276874] _copy_from_iter_full+0x201/0xa60 [ 1193.276887] ? __virt_addr_valid+0x170/0x5d0 [ 1193.276900] ? __check_object_size+0x319/0x440 [ 1193.276914] netlink_sendmsg+0x879/0xe00 [ 1193.276927] ? netlink_unicast+0x800/0x800 [ 1193.276942] ? netlink_unicast+0x800/0x800 [ 1193.276953] __sock_sendmsg+0x154/0x190 [ 1193.276965] ____sys_sendmsg+0x70d/0x870 [ 1193.276977] ? sock_write_iter+0x3d0/0x3d0 [ 1193.276986] ? do_recvmmsg+0x6d0/0x6d0 [ 1193.277001] ? lock_downgrade+0x6d0/0x6d0 [ 1193.277013] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1193.277026] ___sys_sendmsg+0xf3/0x170 [ 1193.277038] ? sendmsg_copy_msghdr+0x160/0x160 [ 1193.277051] ? __fget_files+0x2cf/0x520 [ 1193.277062] ? lock_downgrade+0x6d0/0x6d0 [ 1193.277072] ? find_held_lock+0x2c/0x110 [ 1193.277087] ? __fget_files+0x2f8/0x520 [ 1193.277101] ? __fget_light+0xea/0x290 [ 1193.277116] __sys_sendmsg+0xe5/0x1b0 [ 1193.277126] ? __sys_sendmsg_sock+0x40/0x40 [ 1193.277137] ? rcu_read_lock_any_held+0x75/0xa0 [ 1193.277155] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1193.277166] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1193.277177] do_syscall_64+0x33/0x40 [ 1193.277188] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1193.277195] RIP: 0033:0x7fdcf09cab19 [ 1193.277204] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1193.277210] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1193.277222] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1193.277228] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1193.277234] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1193.277244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1193.277250] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 [ 1193.363086] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1193.365389] FAULT_INJECTION: forcing a failure. [ 1193.365389] name failslab, interval 1, probability 0, space 0, times 0 [ 1193.367923] CPU: 1 PID: 8100 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 1193.369385] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1193.371180] Call Trace: [ 1193.371756] dump_stack+0x107/0x167 [ 1193.372542] should_fail.cold+0x5/0xa [ 1193.373372] ? create_object.isra.0+0x3a/0xa20 [ 1193.374352] should_failslab+0x5/0x20 [ 1193.375180] kmem_cache_alloc+0x5b/0x310 [ 1193.376054] create_object.isra.0+0x3a/0xa20 [ 1193.376996] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1193.378092] kmem_cache_alloc_trace+0x151/0x320 [ 1193.379112] device_create_groups_vargs+0x8a/0x280 [ 1193.380176] device_create+0xdc/0x120 [ 1193.380994] ? device_create_groups_vargs+0x280/0x280 [ 1193.382101] ? init_timer_key+0x12a/0x240 [ 1193.383010] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1193.384051] mac80211_hwsim_new_radio+0x376/0x4290 [ 1193.385093] ? trace_hardirqs_on+0x5b/0x180 [ 1193.386035] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1193.387041] ? __kmalloc+0x16e/0x390 [ 1193.387844] hwsim_new_radio_nl+0x991/0x1080 [ 1193.388792] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1193.389916] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1193.391336] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1193.392729] genl_family_rcv_msg_doit+0x22d/0x330 [ 1193.393762] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1193.395215] ? __sanitizer_cov_trace_pc+0x3c/0x60 [ 1193.396253] ? ns_capable+0xe2/0x110 [ 1193.397051] genl_rcv_msg+0x36a/0x5a0 [ 1193.397868] ? genl_get_cmd+0x480/0x480 [ 1193.398738] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1193.399855] ? lock_release+0x680/0x680 [ 1193.400700] ? netlink_deliver_tap+0xf4/0xcc0 [ 1193.401661] netlink_rcv_skb+0x14b/0x430 [ 1193.402528] ? genl_get_cmd+0x480/0x480 [ 1193.403389] ? netlink_ack+0xab0/0xab0 [ 1193.404239] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1193.405218] ? is_vmalloc_addr+0x7b/0xb0 [ 1193.406087] genl_rcv+0x24/0x40 [ 1193.406804] netlink_unicast+0x54e/0x800 [ 1193.407686] ? netlink_attachskb+0x870/0x870 [ 1193.408637] netlink_sendmsg+0x90f/0xe00 [ 1193.409512] ? netlink_unicast+0x800/0x800 [ 1193.410430] ? netlink_unicast+0x800/0x800 [ 1193.411344] __sock_sendmsg+0x154/0x190 [ 1193.412194] ____sys_sendmsg+0x70d/0x870 [ 1193.413077] ? sock_write_iter+0x3d0/0x3d0 [ 1193.413989] ? do_recvmmsg+0x6d0/0x6d0 [ 1193.414832] ? lock_downgrade+0x6d0/0x6d0 [ 1193.415725] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1193.416850] ___sys_sendmsg+0xf3/0x170 [ 1193.417689] ? sendmsg_copy_msghdr+0x160/0x160 [ 1193.418682] ? __fget_files+0x2cf/0x520 [ 1193.419546] ? lock_downgrade+0x6d0/0x6d0 [ 1193.420435] ? find_held_lock+0x2c/0x110 [ 1193.421319] ? __fget_files+0x2f8/0x520 [ 1193.422181] ? __fget_light+0xea/0x290 [ 1193.423032] __sys_sendmsg+0xe5/0x1b0 [ 1193.423851] ? __sys_sendmsg_sock+0x40/0x40 [ 1193.424777] ? rcu_read_lock_any_held+0x75/0xa0 [ 1193.425796] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1193.426936] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1193.428041] do_syscall_64+0x33/0x40 [ 1193.428836] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1193.429930] RIP: 0033:0x7faee752eb19 [ 1193.430729] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1193.434674] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1193.436311] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 1193.437861] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1193.439390] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1193.440921] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1193.442445] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 [ 1193.526860] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1193.528174] FAULT_INJECTION: forcing a failure. [ 1193.528174] name failslab, interval 1, probability 0, space 0, times 0 [ 1193.529611] CPU: 0 PID: 8103 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 1193.530438] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1193.531468] Call Trace: [ 1193.531796] dump_stack+0x107/0x167 [ 1193.532245] should_fail.cold+0x5/0xa [ 1193.532715] ? create_object.isra.0+0x3a/0xa20 [ 1193.533271] should_failslab+0x5/0x20 [ 1193.533736] kmem_cache_alloc+0x5b/0x310 [ 1193.534235] create_object.isra.0+0x3a/0xa20 [ 1193.534780] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1193.535398] kmem_cache_alloc_trace+0x151/0x320 [ 1193.535969] device_add+0x106f/0x1c50 [ 1193.536433] ? devlink_add_symlinks+0x970/0x970 [ 1193.537003] device_create_groups_vargs+0x207/0x280 [ 1193.537606] device_create+0xdc/0x120 [ 1193.538077] ? device_create_groups_vargs+0x280/0x280 [ 1193.538701] ? init_timer_key+0x12a/0x240 [ 1193.539217] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1193.539804] mac80211_hwsim_new_radio+0x376/0x4290 [ 1193.540400] ? trace_hardirqs_on+0x5b/0x180 [ 1193.540930] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1193.541494] ? __kmalloc+0x16e/0x390 [ 1193.541952] hwsim_new_radio_nl+0x991/0x1080 [ 1193.542485] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1193.543137] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1193.543932] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1193.544725] genl_family_rcv_msg_doit+0x22d/0x330 [ 1193.545311] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1193.546113] ? cap_capable+0x1cd/0x230 [ 1193.546593] ? ns_capable+0xe2/0x110 [ 1193.547062] genl_rcv_msg+0x36a/0x5a0 [ 1193.547540] ? genl_get_cmd+0x480/0x480 [ 1193.548023] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1193.548652] ? lock_release+0x680/0x680 [ 1193.549132] ? netlink_deliver_tap+0xf4/0xcc0 [ 1193.549674] netlink_rcv_skb+0x14b/0x430 [ 1193.550166] ? genl_get_cmd+0x480/0x480 [ 1193.550647] ? netlink_ack+0xab0/0xab0 [ 1193.551134] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1193.551691] ? is_vmalloc_addr+0x7b/0xb0 [ 1193.552190] genl_rcv+0x24/0x40 [ 1193.552589] netlink_unicast+0x54e/0x800 [ 1193.553082] ? netlink_attachskb+0x870/0x870 [ 1193.553627] netlink_sendmsg+0x90f/0xe00 [ 1193.554121] ? netlink_unicast+0x800/0x800 [ 1193.554638] ? netlink_unicast+0x800/0x800 [ 1193.555158] __sock_sendmsg+0x154/0x190 [ 1193.555640] ____sys_sendmsg+0x70d/0x870 [ 1193.556131] ? sock_write_iter+0x3d0/0x3d0 [ 1193.556648] ? do_recvmmsg+0x6d0/0x6d0 [ 1193.557120] ? lock_downgrade+0x6d0/0x6d0 [ 1193.557619] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1193.558256] ___sys_sendmsg+0xf3/0x170 [ 1193.558744] ? sendmsg_copy_msghdr+0x160/0x160 [ 1193.559301] ? __fget_files+0x2cf/0x520 [ 1193.559784] ? lock_downgrade+0x6d0/0x6d0 [ 1193.560287] ? find_held_lock+0x2c/0x110 [ 1193.560784] ? __fget_files+0x2f8/0x520 [ 1193.561277] ? __fget_light+0xea/0x290 [ 1193.561754] __sys_sendmsg+0xe5/0x1b0 [ 1193.562218] ? __sys_sendmsg_sock+0x40/0x40 [ 1193.562748] ? rcu_read_lock_any_held+0x75/0xa0 [ 1193.563330] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1193.563968] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1193.564602] do_syscall_64+0x33/0x40 [ 1193.565055] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1193.565681] RIP: 0033:0x7f051132ab19 [ 1193.566140] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1193.568379] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1193.569298] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 1193.570166] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1193.571034] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 1193.571897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1193.572764] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 [ 1193.614006] FAULT_INJECTION: forcing a failure. [ 1193.614006] name failslab, interval 1, probability 0, space 0, times 0 [ 1193.616508] CPU: 1 PID: 8107 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1193.617954] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1193.619715] Call Trace: [ 1193.620277] dump_stack+0x107/0x167 [ 1193.621049] should_fail.cold+0x5/0xa [ 1193.621870] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xdb/0x280 [ 1193.623263] should_failslab+0x5/0x20 [ 1193.624068] __kmalloc+0x72/0x390 [ 1193.624810] genl_family_rcv_msg_attrs_parse.constprop.0+0xdb/0x280 [ 1193.626161] genl_family_rcv_msg_doit+0xda/0x330 [ 1193.627175] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1193.628569] ? cap_capable+0x1cd/0x230 [ 1193.629399] ? security_capable+0x95/0xc0 [ 1193.630281] ? ns_capable+0xe2/0x110 [ 1193.631079] genl_rcv_msg+0x36a/0x5a0 [ 1193.631888] ? genl_get_cmd+0x480/0x480 [ 1193.632728] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1193.633827] ? lock_release+0x680/0x680 [ 1193.634667] ? netlink_deliver_tap+0xf4/0xcc0 [ 1193.635637] netlink_rcv_skb+0x14b/0x430 [ 1193.636501] ? genl_get_cmd+0x480/0x480 [ 1193.637349] ? netlink_ack+0xab0/0xab0 [ 1193.638179] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1193.639158] ? is_vmalloc_addr+0x7b/0xb0 [ 1193.640018] genl_rcv+0x24/0x40 [ 1193.640716] netlink_unicast+0x54e/0x800 [ 1193.641581] ? netlink_attachskb+0x870/0x870 [ 1193.642520] netlink_sendmsg+0x90f/0xe00 [ 1193.643389] ? netlink_unicast+0x800/0x800 [ 1193.644291] ? netlink_unicast+0x800/0x800 [ 1193.645186] __sock_sendmsg+0x154/0x190 [ 1193.646027] ____sys_sendmsg+0x70d/0x870 [ 1193.646896] ? sock_write_iter+0x3d0/0x3d0 [ 1193.647786] ? do_recvmmsg+0x6d0/0x6d0 [ 1193.648618] ? lock_downgrade+0x6d0/0x6d0 [ 1193.649499] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1193.650611] ___sys_sendmsg+0xf3/0x170 [ 1193.651443] ? sendmsg_copy_msghdr+0x160/0x160 [ 1193.652411] ? __fget_files+0x2cf/0x520 [ 1193.653251] ? lock_downgrade+0x6d0/0x6d0 [ 1193.654126] ? find_held_lock+0x2c/0x110 [ 1193.655001] ? __fget_files+0x2f8/0x520 [ 1193.655848] ? __fget_light+0xea/0x290 [ 1193.656680] __sys_sendmsg+0xe5/0x1b0 [ 1193.657484] ? __sys_sendmsg_sock+0x40/0x40 [ 1193.658395] ? rcu_read_lock_any_held+0x75/0xa0 [ 1193.659404] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1193.660516] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1193.661608] do_syscall_64+0x33/0x40 [ 1193.662396] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1193.663489] RIP: 0033:0x7fdcf09cab19 [ 1193.664273] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1193.668150] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1193.669746] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1193.671253] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1193.672760] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1193.674259] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1193.675778] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 [ 1209.496698] FAULT_INJECTION: forcing a failure. [ 1209.496698] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1209.499488] CPU: 0 PID: 8121 Comm: syz-executor.5 Not tainted 5.10.237 #1 [ 1209.501036] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1209.502924] Call Trace: [ 1209.503518] dump_stack+0x107/0x167 [ 1209.504356] should_fail.cold+0x5/0xa [ 1209.505221] _copy_from_user+0x2e/0x1b0 [ 1209.506125] __copy_msghdr_from_user+0x91/0x4b0 [ 1209.507195] ? __ia32_sys_shutdown+0x80/0x80 [ 1209.508195] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1209.509373] ? __lock_acquire+0x1657/0x5b00 [ 1209.510352] ? __lock_acquire+0xbb1/0x5b00 [ 1209.511323] sendmsg_copy_msghdr+0xa1/0x160 [ 1209.512293] ? do_recvmmsg+0x6d0/0x6d0 [ 1209.513179] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1209.514362] ? lock_downgrade+0x6d0/0x6d0 [ 1209.515312] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1209.516512] ___sys_sendmsg+0xc6/0x170 [ 1209.517390] ? sendmsg_copy_msghdr+0x160/0x160 [ 1209.518424] ? __fget_files+0x2cf/0x520 [ 1209.519327] ? lock_downgrade+0x6d0/0x6d0 [ 1209.520266] ? find_held_lock+0x2c/0x110 [ 1209.521193] ? __fget_files+0x2f8/0x520 [ 1209.522103] ? __fget_light+0xea/0x290 [ 1209.522987] __sys_sendmsg+0xe5/0x1b0 [ 1209.523845] ? __sys_sendmsg_sock+0x40/0x40 [ 1209.524826] ? rcu_read_lock_any_held+0x75/0xa0 [ 1209.525873] ? fput_many+0x2f/0x1a0 [ 1209.526694] ? ksys_write+0x1a9/0x260 [ 1209.527567] ? __ia32_sys_read+0xb0/0xb0 [ 1209.528490] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1209.529673] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1209.530844] do_syscall_64+0x33/0x40 [ 1209.531341] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1209.531696] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1209.533054] FAULT_INJECTION: forcing a failure. [ 1209.533054] name failslab, interval 1, probability 0, space 0, times 0 [ 1209.534007] RIP: 0033:0x7fd7004f8b19 [ 1209.534026] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1209.534041] RSP: 002b:00007fd6fda6e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1209.542163] RAX: ffffffffffffffda RBX: 00007fd70060bf60 RCX: 00007fd7004f8b19 [ 1209.543767] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1209.545362] RBP: 00007fd6fda6e1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1209.546984] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1209.548585] R13: 00007ffe37d3003f R14: 00007fd6fda6e300 R15: 0000000000022000 [ 1209.550221] CPU: 1 PID: 8125 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 1209.551123] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1209.552189] Call Trace: [ 1209.552532] dump_stack+0x107/0x167 [ 1209.553010] should_fail.cold+0x5/0xa [ 1209.553504] should_failslab+0x5/0x20 [ 1209.553992] __kmalloc_track_caller+0x79/0x370 [ 1209.554593] ? kvasprintf_const+0x60/0x1a0 [ 1209.555153] kvasprintf+0xb5/0x150 [ 1209.555614] ? bust_spinlocks+0xe0/0xe0 [ 1209.556138] ? lockdep_init_map_type+0x2c7/0x780 [ 1209.556750] kvasprintf_const+0x60/0x1a0 [ 1209.557274] kobject_set_name_vargs+0x56/0x150 [ 1209.557860] device_create_groups_vargs+0x1c0/0x280 [ 1209.558569] device_create+0xdc/0x120 [ 1209.559183] ? device_create_groups_vargs+0x280/0x280 [ 1209.559843] ? init_timer_key+0x12a/0x240 [ 1209.560385] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1209.561004] mac80211_hwsim_new_radio+0x376/0x4290 [ 1209.561648] ? trace_hardirqs_on+0x5b/0x180 [ 1209.562212] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1209.562811] ? __kmalloc+0x16e/0x390 [ 1209.563306] hwsim_new_radio_nl+0x991/0x1080 [ 1209.563866] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1209.564534] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1209.565378] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1209.566211] genl_family_rcv_msg_doit+0x22d/0x330 [ 1209.566827] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1209.567668] ? cap_capable+0x1cd/0x230 [ 1209.568173] ? ns_capable+0xe2/0x110 [ 1209.568649] genl_rcv_msg+0x36a/0x5a0 [ 1209.569137] ? genl_get_cmd+0x480/0x480 [ 1209.569643] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1209.570300] ? lock_release+0x680/0x680 [ 1209.570804] ? netlink_deliver_tap+0xf4/0xcc0 [ 1209.571384] netlink_rcv_skb+0x14b/0x430 [ 1209.571896] ? genl_get_cmd+0x480/0x480 [ 1209.572404] ? netlink_ack+0xab0/0xab0 [ 1209.572902] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1209.573481] ? is_vmalloc_addr+0x7b/0xb0 [ 1209.574000] genl_rcv+0x24/0x40 [ 1209.574428] netlink_unicast+0x54e/0x800 [ 1209.574965] ? netlink_attachskb+0x870/0x870 [ 1209.575538] netlink_sendmsg+0x90f/0xe00 [ 1209.576057] ? netlink_unicast+0x800/0x800 [ 1209.576599] ? netlink_unicast+0x800/0x800 [ 1209.577143] __sock_sendmsg+0x154/0x190 [ 1209.577648] ____sys_sendmsg+0x70d/0x870 [ 1209.578177] ? sock_write_iter+0x3d0/0x3d0 [ 1209.578718] ? do_recvmmsg+0x6d0/0x6d0 [ 1209.579228] ? lock_downgrade+0x6d0/0x6d0 [ 1209.579753] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1209.580420] ___sys_sendmsg+0xf3/0x170 [ 1209.580928] ? sendmsg_copy_msghdr+0x160/0x160 [ 1209.581508] ? __fget_files+0x2cf/0x520 [ 1209.582014] ? lock_downgrade+0x6d0/0x6d0 [ 1209.582542] ? find_held_lock+0x2c/0x110 [ 1209.583068] ? __fget_files+0x2f8/0x520 [ 1209.583578] ? __fget_light+0xea/0x290 [ 1209.584072] __sys_sendmsg+0xe5/0x1b0 [ 1209.584550] ? __sys_sendmsg_sock+0x40/0x40 [ 1209.585100] ? rcu_read_lock_any_held+0x75/0xa0 [ 1209.585700] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1209.586365] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1209.587020] do_syscall_64+0x33/0x40 [ 1209.587491] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1209.588142] RIP: 0033:0x7faee752eb19 [ 1209.588609] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1209.590956] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1209.591913] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 1209.592826] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1209.593720] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1209.594618] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1209.595526] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 02:59:29 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 32) 02:59:29 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x28, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 02:59:29 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 1) 02:59:29 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x4, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 02:59:29 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) symlink(&(0x7f0000000180)='./file1\x00', &(0x7f0000000980)='./file1\x00') r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) open_by_handle_at(r2, &(0x7f0000000240)=ANY=[@ANYBLOB="640000004f000000d199cf99708ab3b1852b8ec576d1f1e9d2fbfc6eb4e3844d2a5e66af0bc7e7726078578eacefcc28efcc17e7ff2515d37091448ed8e5668c7bf46632e043d5fcdf362eab04ec4035d98119060ee6622a38bbed2f960000733f3e1062b6b931e8b8a16a285069aeff070000ef84b86c93caa6792a0e25a695abe4e8d725ab32adab65e3ad25b504f8e115427ca03b7d95c488b29708e1df90ab015812a9f98afedd9d7a3602e36dcd9275a8308d63d584321a1b5bc68f07000000d554eb2d645860"], 0x200900) bind$inet6(r2, &(0x7f0000000200)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) fcntl$setstatus(r2, 0x4, 0xc00) eventfd(0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r3 = perf_event_open(&(0x7f0000000880)={0x5, 0x80, 0x1, 0xdc, 0x2, 0x7f, 0x0, 0xff, 0x40, 0x8, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x3, 0x1, @perf_config_ext={0xffffffffffffffe0, 0x3f}, 0x0, 0x6, 0xa6, 0x7, 0x1, 0x7, 0x0, 0x0, 0x1, 0x0, 0x8001}, 0x0, 0x5, r1, 0x2) perf_event_open(&(0x7f0000000640)={0x4, 0x80, 0x0, 0x0, 0xfd, 0x80, 0x0, 0xbe5f, 0x138, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x3, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0xe5, 0x4, @perf_bp={&(0x7f0000000600), 0x2}, 0x2101, 0x3, 0x200, 0x1, 0x6, 0x1, 0x2, 0x0, 0x4, 0x0, 0x4}, 0x0, 0x6, r3, 0x9) connect$inet6(r2, &(0x7f0000000900)={0xa, 0x4e24, 0x0, @dev={0xfe, 0x80, '\x00', 0x1e}, 0x858}, 0x1c) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r4, &(0x7f0000000180)=""/198, 0xc6) sendmsg$IPVS_CMD_DEL_SERVICE(r4, &(0x7f00000005c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x20148c03}, 0xc, &(0x7f0000000440)={&(0x7f0000000700)=ANY=[@ANYBLOB="7b010008", @ANYRES16=0x0, @ANYBLOB="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"], 0x168}, 0x1, 0x0, 0x0, 0x40008c0}, 0x20000000) sendmsg$NL80211_CMD_SET_MPATH(r0, &(0x7f0000000580)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000400)={&(0x7f0000000500)={0x70, 0x0, 0x400, 0x70bd26, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x4, 0x6e}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x70}, 0x1, 0x0, 0x0, 0x10}, 0x4015) sendmsg$inet6(r2, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000001c0)}, {&(0x7f00000000c0)="9a17e64cdc67bd627708c4", 0xb}, {&(0x7f0000000100)="11fa030674fe5d5c8842559152d3126c4249dfe24d8d98a6439e8cb160e171b641b5cd528f240594de4abf45957c095ea90b68d62f55fc64541601bff7e106fb023db64e8c15f6346c745da761ffee826727bd98b2bffae59c91c021ffc59f6081dbaa196e95a3b173cddce6b01c1e5bac179d6881414edcc12bf994d30576798a19d0f9db5d054e8fdf2821230a23ed81a02369234a399d7115", 0x9a}, {&(0x7f0000000380)="d21e0ed1ee27c972fd2bef67c6a077b239514e0a205b38c982a5a6ca75c562f403f161f541cbc23b2e120f45812688f0de482c2bf16064f11091e836607a0e0217e4ccf2", 0x44}], 0x4}, 0x38008004) dup2(r0, r2) 02:59:29 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 28) 02:59:29 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 9) 02:59:29 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) socket$unix(0x1, 0x5, 0x0) connect$unix(0xffffffffffffffff, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) [ 1209.677362] FAULT_INJECTION: forcing a failure. [ 1209.677362] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1209.678866] CPU: 1 PID: 8137 Comm: syz-executor.5 Not tainted 5.10.237 #1 [ 1209.679722] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1209.680735] Call Trace: [ 1209.681063] dump_stack+0x107/0x167 [ 1209.681507] should_fail.cold+0x5/0xa [ 1209.681975] _copy_from_user+0x2e/0x1b0 [ 1209.682466] iovec_from_user+0x141/0x400 [ 1209.682970] __import_iovec+0x67/0x590 [ 1209.683446] ? __ia32_sys_shutdown+0x80/0x80 [ 1209.683984] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1209.684625] import_iovec+0x83/0xb0 [ 1209.685074] sendmsg_copy_msghdr+0x131/0x160 [ 1209.685612] ? do_recvmmsg+0x6d0/0x6d0 [ 1209.686089] ? lock_downgrade+0x6d0/0x6d0 [ 1209.686598] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1209.687242] ___sys_sendmsg+0xc6/0x170 [ 1209.687715] ? sendmsg_copy_msghdr+0x160/0x160 [ 1209.688272] ? __fget_files+0x2cf/0x520 [ 1209.688756] ? lock_downgrade+0x6d0/0x6d0 [ 1209.689260] ? find_held_lock+0x2c/0x110 [ 1209.689768] ? __fget_files+0x2f8/0x520 [ 1209.690266] ? __fget_light+0xea/0x290 [ 1209.690740] __sys_sendmsg+0xe5/0x1b0 [ 1209.691213] ? __sys_sendmsg_sock+0x40/0x40 [ 1209.691737] ? rcu_read_lock_any_held+0x75/0xa0 [ 1209.692300] ? fput_many+0x2f/0x1a0 [ 1209.692739] ? ksys_write+0x1a9/0x260 [ 1209.693202] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1209.693844] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1209.694466] do_syscall_64+0x33/0x40 [ 1209.694925] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1209.695557] RIP: 0033:0x7fd7004f8b19 [ 1209.696004] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1209.698231] RSP: 002b:00007fd6fda6e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1209.699156] RAX: ffffffffffffffda RBX: 00007fd70060bf60 RCX: 00007fd7004f8b19 [ 1209.700020] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1209.700886] RBP: 00007fd6fda6e1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1209.701747] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1209.702611] R13: 00007ffe37d3003f R14: 00007fd6fda6e300 R15: 0000000000022000 02:59:29 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 29) 02:59:29 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 2) [ 1209.729869] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 02:59:29 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 3) 02:59:29 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x5, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1209.785269] FAULT_INJECTION: forcing a failure. [ 1209.785269] name failslab, interval 1, probability 0, space 0, times 0 [ 1209.786712] CPU: 1 PID: 8142 Comm: syz-executor.5 Not tainted 5.10.237 #1 [ 1209.787527] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1209.788485] Call Trace: [ 1209.788795] dump_stack+0x107/0x167 [ 1209.789221] should_fail.cold+0x5/0xa [ 1209.789663] ? __alloc_skb+0x6d/0x5b0 [ 1209.790107] should_failslab+0x5/0x20 [ 1209.790566] kmem_cache_alloc_node+0x55/0x330 [ 1209.791093] __alloc_skb+0x6d/0x5b0 [ 1209.791519] netlink_sendmsg+0x998/0xe00 [ 1209.791993] ? netlink_unicast+0x800/0x800 [ 1209.792487] ? netlink_unicast+0x800/0x800 [ 1209.792983] __sock_sendmsg+0x154/0x190 [ 1209.793440] ____sys_sendmsg+0x70d/0x870 [ 1209.793924] ? sock_write_iter+0x3d0/0x3d0 [ 1209.794412] ? do_recvmmsg+0x6d0/0x6d0 [ 1209.794867] ? lock_downgrade+0x6d0/0x6d0 [ 1209.795354] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1209.795963] ___sys_sendmsg+0xf3/0x170 [ 1209.796333] FAULT_INJECTION: forcing a failure. [ 1209.796333] name failslab, interval 1, probability 0, space 0, times 0 [ 1209.796423] ? sendmsg_copy_msghdr+0x160/0x160 [ 1209.799493] ? __fget_files+0x2cf/0x520 [ 1209.799955] ? lock_downgrade+0x6d0/0x6d0 [ 1209.800434] ? find_held_lock+0x2c/0x110 [ 1209.800903] ? __fget_files+0x2f8/0x520 [ 1209.801380] ? __fget_light+0xea/0x290 [ 1209.801835] __sys_sendmsg+0xe5/0x1b0 [ 1209.802277] ? __sys_sendmsg_sock+0x40/0x40 [ 1209.802783] ? rcu_read_lock_any_held+0x75/0xa0 [ 1209.803338] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1209.803947] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1209.804550] do_syscall_64+0x33/0x40 [ 1209.804978] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1209.805570] RIP: 0033:0x7fd7004f8b19 [ 1209.806000] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1209.808131] RSP: 002b:00007fd6fda6e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1209.809011] RAX: ffffffffffffffda RBX: 00007fd70060bf60 RCX: 00007fd7004f8b19 [ 1209.809832] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1209.810652] RBP: 00007fd6fda6e1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1209.811479] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1209.812299] R13: 00007ffe37d3003f R14: 00007fd6fda6e300 R15: 0000000000022000 [ 1209.813145] CPU: 0 PID: 8127 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1209.814715] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1209.816615] Call Trace: [ 1209.817216] dump_stack+0x107/0x167 [ 1209.818048] should_fail.cold+0x5/0xa [ 1209.818922] ? create_object.isra.0+0x3a/0xa20 [ 1209.819966] should_failslab+0x5/0x20 [ 1209.820834] kmem_cache_alloc+0x5b/0x310 [ 1209.821762] ? __mutex_lock+0x5af/0x10b0 [ 1209.822693] create_object.isra.0+0x3a/0xa20 [ 1209.823707] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1209.824861] __kmalloc+0x16e/0x390 [ 1209.825692] genl_family_rcv_msg_attrs_parse.constprop.0+0xdb/0x280 [ 1209.827148] genl_family_rcv_msg_doit+0xda/0x330 [ 1209.828243] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1209.829735] ? cap_capable+0x1cd/0x230 [ 1209.830636] ? security_capable+0x95/0xc0 [ 1209.831594] ? ns_capable+0xe2/0x110 [ 1209.832439] genl_rcv_msg+0x36a/0x5a0 [ 1209.833314] ? genl_get_cmd+0x480/0x480 [ 1209.834228] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1209.835412] ? lock_release+0x680/0x680 [ 1209.836310] ? netlink_deliver_tap+0xf4/0xcc0 [ 1209.837344] netlink_rcv_skb+0x14b/0x430 [ 1209.838259] ? genl_get_cmd+0x480/0x480 [ 1209.839181] ? netlink_ack+0xab0/0xab0 [ 1209.840084] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1209.841140] ? is_vmalloc_addr+0x7b/0xb0 [ 1209.842073] genl_rcv+0x24/0x40 [ 1209.842827] netlink_unicast+0x54e/0x800 [ 1209.843775] ? netlink_attachskb+0x870/0x870 [ 1209.844795] netlink_sendmsg+0x90f/0xe00 [ 1209.845734] ? netlink_unicast+0x800/0x800 [ 1209.846714] ? netlink_unicast+0x800/0x800 [ 1209.847681] __sock_sendmsg+0x154/0x190 [ 1209.848596] ____sys_sendmsg+0x70d/0x870 [ 1209.849533] ? sock_write_iter+0x3d0/0x3d0 [ 1209.850503] ? do_recvmmsg+0x6d0/0x6d0 [ 1209.851406] ? lock_downgrade+0x6d0/0x6d0 [ 1209.852344] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1209.853546] ___sys_sendmsg+0xf3/0x170 [ 1209.854439] ? sendmsg_copy_msghdr+0x160/0x160 [ 1209.855497] ? __fget_files+0x2cf/0x520 [ 1209.856404] ? lock_downgrade+0x6d0/0x6d0 [ 1209.857346] ? find_held_lock+0x2c/0x110 [ 1209.858287] ? __fget_files+0x2f8/0x520 [ 1209.859199] ? __fget_light+0xea/0x290 [ 1209.860104] __sys_sendmsg+0xe5/0x1b0 [ 1209.860975] ? __sys_sendmsg_sock+0x40/0x40 [ 1209.861962] ? rcu_read_lock_any_held+0x75/0xa0 [ 1209.863048] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1209.864250] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1209.865431] do_syscall_64+0x33/0x40 [ 1209.866287] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1209.867465] RIP: 0033:0x7fdcf09cab19 [ 1209.868328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1209.872551] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1209.874296] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1209.875935] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1209.877572] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1209.879222] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1209.880861] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 02:59:29 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x38, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1209.969395] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1209.970700] FAULT_INJECTION: forcing a failure. [ 1209.970700] name failslab, interval 1, probability 0, space 0, times 0 [ 1209.971992] CPU: 1 PID: 8132 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 1209.972776] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1209.973725] Call Trace: [ 1209.974032] dump_stack+0x107/0x167 [ 1209.974454] should_fail.cold+0x5/0xa [ 1209.974903] should_failslab+0x5/0x20 [ 1209.975341] __kmalloc_track_caller+0x79/0x370 [ 1209.975870] ? kstrdup_const+0x53/0x80 [ 1209.976319] kstrdup+0x36/0x70 [ 1209.976688] kstrdup_const+0x53/0x80 [ 1209.977120] __kernfs_new_node+0x9d/0x860 [ 1209.977596] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1209.978147] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1209.978751] kernfs_new_node+0x18d/0x250 [ 1209.979222] kernfs_create_dir_ns+0x49/0x160 [ 1209.979721] sysfs_create_dir_ns+0x127/0x290 [ 1209.980223] ? sysfs_create_mount_point+0xb0/0xb0 [ 1209.980778] ? rwlock_bug.part.0+0x90/0x90 [ 1209.981270] ? class_dir_child_ns_type+0x9/0x60 [ 1209.981803] kobject_add_internal+0x25e/0xa30 [ 1209.982313] kobject_add+0x150/0x1c0 [ 1209.982741] ? kset_create_and_add+0x1a0/0x1a0 [ 1209.983275] ? lockdep_init_map_type+0x2c7/0x780 [ 1209.983837] device_add+0x35a/0x1c50 [ 1209.984261] ? devlink_add_symlinks+0x970/0x970 [ 1209.984798] device_create_groups_vargs+0x207/0x280 [ 1209.985364] device_create+0xdc/0x120 [ 1209.985798] ? device_create_groups_vargs+0x280/0x280 [ 1209.986396] ? init_timer_key+0x12a/0x240 [ 1209.986870] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1209.987433] mac80211_hwsim_new_radio+0x376/0x4290 [ 1209.987990] ? trace_hardirqs_on+0x5b/0x180 [ 1209.988485] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1209.989020] ? __kmalloc+0x16e/0x390 [ 1209.989446] hwsim_new_radio_nl+0x991/0x1080 [ 1209.989948] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1209.990557] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1209.991310] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1209.992063] genl_family_rcv_msg_doit+0x22d/0x330 [ 1209.992616] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1209.993371] ? cap_capable+0x1cd/0x230 [ 1209.993821] ? ns_capable+0xe2/0x110 [ 1209.994249] genl_rcv_msg+0x36a/0x5a0 [ 1209.994682] ? genl_get_cmd+0x480/0x480 [ 1209.995140] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1209.995724] ? lock_release+0x680/0x680 [ 1209.996174] ? netlink_deliver_tap+0xf4/0xcc0 [ 1209.996683] netlink_rcv_skb+0x14b/0x430 [ 1209.997146] ? genl_get_cmd+0x480/0x480 [ 1209.997596] ? netlink_ack+0xab0/0xab0 [ 1209.998045] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1209.998564] ? is_vmalloc_addr+0x7b/0xb0 [ 1209.999044] genl_rcv+0x24/0x40 [ 1209.999419] netlink_unicast+0x54e/0x800 [ 1209.999887] ? netlink_attachskb+0x870/0x870 [ 1210.000392] netlink_sendmsg+0x90f/0xe00 [ 1210.000873] ? netlink_unicast+0x800/0x800 [ 1210.001370] ? netlink_unicast+0x800/0x800 [ 1210.001853] __sock_sendmsg+0x154/0x190 [ 1210.002318] ____sys_sendmsg+0x70d/0x870 [ 1210.002783] ? sock_write_iter+0x3d0/0x3d0 [ 1210.003278] ? do_recvmmsg+0x6d0/0x6d0 [ 1210.003725] ? lock_downgrade+0x6d0/0x6d0 [ 1210.004199] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1210.004805] ___sys_sendmsg+0xf3/0x170 [ 1210.005248] ? sendmsg_copy_msghdr+0x160/0x160 [ 1210.005770] ? __fget_files+0x2cf/0x520 [ 1210.006222] ? lock_downgrade+0x6d0/0x6d0 [ 1210.006701] ? find_held_lock+0x2c/0x110 [ 1210.007176] ? __fget_files+0x2f8/0x520 [ 1210.007630] ? __fget_light+0xea/0x290 [ 1210.008078] __sys_sendmsg+0xe5/0x1b0 [ 1210.008516] ? __sys_sendmsg_sock+0x40/0x40 [ 1210.009008] ? rcu_read_lock_any_held+0x75/0xa0 [ 1210.009548] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1210.010147] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1210.010738] do_syscall_64+0x33/0x40 [ 1210.011169] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1210.011752] RIP: 0033:0x7f051132ab19 [ 1210.012175] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1210.014290] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1210.015163] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 1210.015970] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1210.016776] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 1210.017584] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1210.018392] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 [ 1210.019265] kobject_add_internal failed for hwsim265 (error: -12 parent: mac80211_hwsim) 02:59:30 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 4) [ 1210.037679] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1210.038960] FAULT_INJECTION: forcing a failure. [ 1210.038960] name failslab, interval 1, probability 0, space 0, times 0 [ 1210.040255] CPU: 1 PID: 8139 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 1210.041038] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1210.041988] Call Trace: [ 1210.042286] dump_stack+0x107/0x167 [ 1210.042712] should_fail.cold+0x5/0xa [ 1210.043161] ? create_object.isra.0+0x3a/0xa20 [ 1210.043687] should_failslab+0x5/0x20 [ 1210.044120] kmem_cache_alloc+0x5b/0x310 [ 1210.044585] ? vsnprintf+0x4ba/0x1600 [ 1210.045016] create_object.isra.0+0x3a/0xa20 [ 1210.045517] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1210.046091] __kmalloc_track_caller+0x177/0x370 [ 1210.046623] ? kvasprintf_const+0x60/0x1a0 [ 1210.047114] kvasprintf+0xb5/0x150 [ 1210.047523] ? bust_spinlocks+0xe0/0xe0 [ 1210.047989] ? lockdep_init_map_type+0x2c7/0x780 [ 1210.048530] kvasprintf_const+0x60/0x1a0 [ 1210.048993] kobject_set_name_vargs+0x56/0x150 [ 1210.049515] device_create_groups_vargs+0x1c0/0x280 [ 1210.050089] device_create+0xdc/0x120 [ 1210.050466] FAULT_INJECTION: forcing a failure. [ 1210.050466] name failslab, interval 1, probability 0, space 0, times 0 [ 1210.050532] ? device_create_groups_vargs+0x280/0x280 [ 1210.053658] ? init_timer_key+0x12a/0x240 [ 1210.054130] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1210.054683] mac80211_hwsim_new_radio+0x376/0x4290 [ 1210.055254] ? trace_hardirqs_on+0x5b/0x180 [ 1210.055757] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1210.056297] ? __kmalloc+0x16e/0x390 [ 1210.056716] hwsim_new_radio_nl+0x991/0x1080 [ 1210.057229] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1210.057821] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1210.058582] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1210.059336] genl_family_rcv_msg_doit+0x22d/0x330 [ 1210.059883] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1210.060624] ? cap_capable+0x1cd/0x230 [ 1210.061077] ? ns_capable+0xe2/0x110 [ 1210.061504] genl_rcv_msg+0x36a/0x5a0 [ 1210.061933] ? genl_get_cmd+0x480/0x480 [ 1210.062386] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1210.062983] ? lock_release+0x680/0x680 [ 1210.063428] ? netlink_deliver_tap+0xf4/0xcc0 [ 1210.063941] netlink_rcv_skb+0x14b/0x430 [ 1210.064399] ? genl_get_cmd+0x480/0x480 [ 1210.064856] ? netlink_ack+0xab0/0xab0 [ 1210.065306] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1210.065821] ? is_vmalloc_addr+0x7b/0xb0 [ 1210.066283] genl_rcv+0x24/0x40 [ 1210.066657] netlink_unicast+0x54e/0x800 [ 1210.067128] ? netlink_attachskb+0x870/0x870 [ 1210.067629] netlink_sendmsg+0x90f/0xe00 [ 1210.068089] ? netlink_unicast+0x800/0x800 [ 1210.068579] ? netlink_unicast+0x800/0x800 [ 1210.069066] __sock_sendmsg+0x154/0x190 [ 1210.069522] ____sys_sendmsg+0x70d/0x870 [ 1210.069990] ? sock_write_iter+0x3d0/0x3d0 [ 1210.070470] ? do_recvmmsg+0x6d0/0x6d0 [ 1210.070929] ? lock_downgrade+0x6d0/0x6d0 [ 1210.071402] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1210.071999] ___sys_sendmsg+0xf3/0x170 [ 1210.072444] ? sendmsg_copy_msghdr+0x160/0x160 [ 1210.072962] ? __fget_files+0x2cf/0x520 [ 1210.073415] ? lock_downgrade+0x6d0/0x6d0 [ 1210.073882] ? find_held_lock+0x2c/0x110 [ 1210.074350] ? __fget_files+0x2f8/0x520 [ 1210.074805] ? __fget_light+0xea/0x290 [ 1210.075276] __sys_sendmsg+0xe5/0x1b0 [ 1210.075718] ? __sys_sendmsg_sock+0x40/0x40 [ 1210.076213] ? rcu_read_lock_any_held+0x75/0xa0 [ 1210.076749] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1210.077348] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1210.077951] do_syscall_64+0x33/0x40 [ 1210.078374] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1210.078961] RIP: 0033:0x7faee752eb19 [ 1210.079389] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1210.081479] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1210.082336] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 1210.083155] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1210.083965] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1210.084781] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1210.085601] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 [ 1210.086433] CPU: 0 PID: 8152 Comm: syz-executor.5 Not tainted 5.10.237 #1 [ 1210.088023] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1210.089935] Call Trace: [ 1210.090542] dump_stack+0x107/0x167 [ 1210.091388] should_fail.cold+0x5/0xa [ 1210.092272] ? create_object.isra.0+0x3a/0xa20 [ 1210.093321] should_failslab+0x5/0x20 [ 1210.094198] kmem_cache_alloc+0x5b/0x310 [ 1210.095139] create_object.isra.0+0x3a/0xa20 [ 1210.096152] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1210.097322] kmem_cache_alloc_node+0x169/0x330 [ 1210.097349] __alloc_skb+0x6d/0x5b0 [ 1210.098703] netlink_sendmsg+0x998/0xe00 [ 1210.099640] ? netlink_unicast+0x800/0x800 [ 1210.100619] ? netlink_unicast+0x800/0x800 [ 1210.101590] __sock_sendmsg+0x154/0x190 [ 1210.102501] ____sys_sendmsg+0x70d/0x870 [ 1210.103440] ? sock_write_iter+0x3d0/0x3d0 [ 1210.104409] ? do_recvmmsg+0x6d0/0x6d0 [ 1210.105308] ? lock_downgrade+0x6d0/0x6d0 [ 1210.106258] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1210.107466] ___sys_sendmsg+0xf3/0x170 [ 1210.108363] ? sendmsg_copy_msghdr+0x160/0x160 [ 1210.109413] ? __fget_files+0x2cf/0x520 [ 1210.110322] ? lock_downgrade+0x6d0/0x6d0 [ 1210.111274] ? find_held_lock+0x2c/0x110 [ 1210.112215] ? __fget_files+0x2f8/0x520 [ 1210.113135] ? __fget_light+0xea/0x290 [ 1210.114042] __sys_sendmsg+0xe5/0x1b0 [ 1210.114918] ? __sys_sendmsg_sock+0x40/0x40 [ 1210.115905] ? rcu_read_lock_any_held+0x75/0xa0 [ 1210.116985] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1210.118188] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1210.119373] do_syscall_64+0x33/0x40 [ 1210.120224] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1210.121392] RIP: 0033:0x7fd7004f8b19 [ 1210.122244] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1210.126474] RSP: 002b:00007fd6fda6e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1210.126502] RAX: ffffffffffffffda RBX: 00007fd70060bf60 RCX: 00007fd7004f8b19 [ 1210.128990] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1210.130630] RBP: 00007fd6fda6e1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1210.132273] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1210.133895] R13: 00007ffe37d3003f R14: 00007fd6fda6e300 R15: 0000000000022000 02:59:30 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 33) [ 1210.178175] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 02:59:30 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x6, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 02:59:30 executing program 0: io_submit(0x0, 0x1, &(0x7f0000000400)=[&(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x2, 0xffffffffffffffff, &(0x7f0000000540)="4fa961a32c46292c4c203b03c6cfcb7f41a36b2033c451524efa095f3259d324fe60cf5baa606c7c29d5626c6a425a3357a6ef9b122793056fe62dc737af44a1070dcbaede3f1a1a803aeec79b506e019ba9a0faad0ffeddee88e9c7f880a2b88dd7ec8a16c3670691b02178a9efe72a78120600fe8be129a52b1b4d82cc8adf2f88522df22ee2ca034bd40b6be1e2b77c7b9594a599", 0x96, 0x0, 0x0, 0x3}]) syz_usb_connect$cdc_ecm(0x4, 0x0, 0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000004c0), 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) clock_gettime(0x0, &(0x7f00000003c0)={0x0, 0x0}) timer_settime(0x0, 0x0, &(0x7f0000000440)={{}, {r1, r2+60000000}}, &(0x7f0000000700)) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)=0x0) timer_create(0x7, &(0x7f0000000180)={0x0, 0xe, 0x1, @thr={&(0x7f0000000600), &(0x7f00000006c0)="d268db7656a375b39a1a8696902ef074b8ab"}}, &(0x7f0000000340)) timer_create(0x3, &(0x7f0000000000)={0x0, 0x1c, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000040)=0x0) clock_gettime(0x0, &(0x7f00000000c0)) clock_gettime(0x0, &(0x7f0000000100)) timer_gettime(0x0, &(0x7f0000000280)) close(r0) timer_create(0x6, &(0x7f0000000240)={0x0, 0x4, 0x4, @tid=r3}, &(0x7f00000002c0)) timer_gettime(r4, &(0x7f0000000380)) timer_gettime(0x0, &(0x7f0000000080)) clone3(&(0x7f0000000740)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) timer_create(0x4, &(0x7f00000001c0)={0x0, 0x16, 0x0, @thr={&(0x7f00000007c0)="6f7bdf9df55dc5a69203c82075516e66de01b2bc5ab543593a0155667f3d58a58b754eac5eac319cf19e18c166b75581c64b2c32c8a3c7919aab9286134808bedf51b68b656e9dc4bd5d8dcfc7c848f2f596632159b70113b68ef7eefb32710e404207c883ff5921a21173803f8eb43583dcb94752e5f45485c3fac41b083e3fa1a84b25aa50e56f11082b2c18c740c0d1783122af1b8243e536573df75462a2d2905895f7463294579f2ec44b313bf075c4303d07e1b137c69b3997a1823ba31702cc1f547d8d721144ffec05ff0ef75062140b36c32b5ed9a9fce3aa538c5357ce64ec4c1fa538f4a9542a9388", 0x0}}, &(0x7f0000000200)) 02:59:30 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 10) 02:59:30 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 30) [ 1210.262273] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1210.263567] FAULT_INJECTION: forcing a failure. [ 1210.263567] name failslab, interval 1, probability 0, space 0, times 0 [ 1210.264880] CPU: 1 PID: 8154 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 1210.265654] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1210.266606] Call Trace: [ 1210.266919] dump_stack+0x107/0x167 [ 1210.267332] should_fail.cold+0x5/0xa [ 1210.267771] ? create_object.isra.0+0x3a/0xa20 [ 1210.268299] should_failslab+0x5/0x20 [ 1210.268739] kmem_cache_alloc+0x5b/0x310 [ 1210.269201] ? find_held_lock+0x2c/0x110 [ 1210.269671] create_object.isra.0+0x3a/0xa20 [ 1210.270170] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1210.270746] __kmalloc_track_caller+0x177/0x370 [ 1210.271289] ? kstrdup_const+0x53/0x80 [ 1210.271731] kstrdup+0x36/0x70 [ 1210.272100] kstrdup_const+0x53/0x80 [ 1210.272529] __kernfs_new_node+0x9d/0x860 [ 1210.273002] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1210.273554] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1210.274157] kernfs_new_node+0x18d/0x250 [ 1210.274621] kernfs_create_dir_ns+0x49/0x160 [ 1210.275137] sysfs_create_dir_ns+0x127/0x290 [ 1210.275636] ? sysfs_create_mount_point+0xb0/0xb0 [ 1210.276183] ? rwlock_bug.part.0+0x90/0x90 [ 1210.276674] ? class_dir_child_ns_type+0x9/0x60 [ 1210.277217] kobject_add_internal+0x25e/0xa30 [ 1210.277732] kobject_add+0x150/0x1c0 [ 1210.278154] ? kset_create_and_add+0x1a0/0x1a0 [ 1210.278673] ? lockdep_init_map_type+0x2c7/0x780 [ 1210.279228] device_add+0x35a/0x1c50 [ 1210.279650] ? devlink_add_symlinks+0x970/0x970 [ 1210.280187] device_create_groups_vargs+0x207/0x280 [ 1210.280755] device_create+0xdc/0x120 [ 1210.281193] ? device_create_groups_vargs+0x280/0x280 [ 1210.281788] ? init_timer_key+0x12a/0x240 [ 1210.282258] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1210.282818] mac80211_hwsim_new_radio+0x376/0x4290 [ 1210.283387] ? trace_hardirqs_on+0x5b/0x180 [ 1210.283892] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1210.284420] ? __kmalloc+0x16e/0x390 [ 1210.284848] hwsim_new_radio_nl+0x991/0x1080 [ 1210.285354] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1210.285950] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1210.286699] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1210.287450] genl_family_rcv_msg_doit+0x22d/0x330 [ 1210.287996] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1210.288742] ? cap_capable+0x1cd/0x230 [ 1210.289194] ? ns_capable+0xe2/0x110 [ 1210.289617] genl_rcv_msg+0x36a/0x5a0 [ 1210.290054] ? genl_get_cmd+0x480/0x480 [ 1210.290508] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1210.291108] ? lock_release+0x680/0x680 [ 1210.291556] ? netlink_deliver_tap+0xf4/0xcc0 [ 1210.292063] netlink_rcv_skb+0x14b/0x430 [ 1210.292526] ? genl_get_cmd+0x480/0x480 [ 1210.292987] ? netlink_ack+0xab0/0xab0 [ 1210.293440] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1210.293955] ? is_vmalloc_addr+0x7b/0xb0 [ 1210.294417] genl_rcv+0x24/0x40 [ 1210.294800] netlink_unicast+0x54e/0x800 [ 1210.295274] ? netlink_attachskb+0x870/0x870 [ 1210.295784] netlink_sendmsg+0x90f/0xe00 [ 1210.296250] ? netlink_unicast+0x800/0x800 [ 1210.296737] ? netlink_unicast+0x800/0x800 [ 1210.297219] __sock_sendmsg+0x154/0x190 [ 1210.297670] ____sys_sendmsg+0x70d/0x870 [ 1210.298141] ? sock_write_iter+0x3d0/0x3d0 [ 1210.298634] ? do_recvmmsg+0x6d0/0x6d0 [ 1210.299090] ? lock_downgrade+0x6d0/0x6d0 [ 1210.299567] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1210.300170] ___sys_sendmsg+0xf3/0x170 [ 1210.300617] ? sendmsg_copy_msghdr+0x160/0x160 [ 1210.301152] ? __fget_files+0x2cf/0x520 [ 1210.301607] ? lock_downgrade+0x6d0/0x6d0 [ 1210.302086] ? find_held_lock+0x2c/0x110 [ 1210.302555] ? __fget_files+0x2f8/0x520 [ 1210.303022] ? __fget_light+0xea/0x290 [ 1210.303468] __sys_sendmsg+0xe5/0x1b0 [ 1210.303899] ? __sys_sendmsg_sock+0x40/0x40 [ 1210.304391] ? rcu_read_lock_any_held+0x75/0xa0 [ 1210.304931] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1210.305527] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1210.306125] do_syscall_64+0x33/0x40 [ 1210.306548] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1210.307131] RIP: 0033:0x7f051132ab19 [ 1210.307554] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1210.309672] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1210.310547] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 1210.311362] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1210.312167] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 1210.312976] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1210.313804] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 02:59:30 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x3a, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 02:59:30 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x42, 0x0) io_setup(0x1ff, &(0x7f0000000080)=0x0) io_setup(0x3, &(0x7f0000000000)=0x0) r3 = inotify_init1(0x0) r4 = creat(&(0x7f0000000040)='./file0\x00', 0x0) inotify_add_watch(r3, &(0x7f0000000000)='./file0\x00', 0x43) dup3(r4, r3, 0x0) io_cancel(r2, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x6, 0x427, r3, &(0x7f0000000080)="9b092f6d4da7d173fbc970301e3efff493a04ced5782a5cd6755bbcc95af47e62284", 0x22, 0x100000000}, &(0x7f0000000180)) r5 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r2, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r5, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) r6 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$FS_IOC_FSSETXATTR(r6, 0x401c5820, &(0x7f0000000400)={0x3, 0xc401, 0x0, 0x1, 0x2}) r7 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r7, &(0x7f0000000180)=""/198, 0xc6) r8 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000240)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0) io_submit(r2, 0x2, &(0x7f00000003c0)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x8, 0x4f, r7, &(0x7f0000000140)="bfa84d5425c5297752aeef0c987ae98c54836a4c770aa6ab4a5398b0ce9249db93fdc7c88273f4b074adbffcd145546210e8d5db4e10ab34af3a40e312f3442ac54f83ebee7d8231b2d765c86c3e032ca9afabc85e0b49785797e3b40475baad54c44b48692c830c6846745ddaf0bca5372e6639b95e23ebd5a01d44b330d1178e3ac0e664eca677c1ff0dcf84f75ccc3cb91c9a30f5857a554015b527082fc7da0404bcc8cc53d7c6c3562b5cf41f2175c8290df5cbed76db069699c711a0ff4e31da405fc3fa8498b7be9a23cc64dd69ff3a6c4617114438e77c", 0xdb, 0x4, 0x0, 0x5, r0}, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x1, 0x18c6, r8, &(0x7f0000000280)="5f6f65ce6816ad804f7f9bbf80bfe034490cb97ba7a42fb69329af3e770a738f9415f3221c6d5ffe88d2e0df10232a3d57f7614876eb27aeb7e3a1af0d4c0cf1c370c8c801d47cab140e754d4f3571e81d552ce7eb5d3a1697650e7b11b95a0046f65febd5e79e59f6cbf2081346512a961bb8a5e92a8385da8b91ccd092fd76ebf853102ee4db1988a92525e4b7e4a6cb4fedbbc562a896ed028d70c5d0dbbb9e7df2d100e3a4bc68498132b7cb0ac87866aaa691e5e38fe4501f61e271cff389ec266ff814440a893cecab14650b960495712c842a2e2ed8979ae8f5c18df635b3", 0xe2, 0x1f, 0x0, 0x2}]) io_submit(r1, 0x1, &(0x7f0000000100)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000040)='\n', 0x1}]) 02:59:30 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 34) [ 1210.435193] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1210.436505] print_req_error: 6 callbacks suppressed [ 1210.436525] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1210.440930] buffer_io_error: 6 callbacks suppressed [ 1210.440942] Buffer I/O error on dev sr0, logical block 0, async page read [ 1210.444109] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1210.445381] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 7 prio class 0 [ 1210.447663] Buffer I/O error on dev sr0, logical block 1, async page read [ 1210.449286] Buffer I/O error on dev sr0, logical block 2, async page read [ 1210.450906] Buffer I/O error on dev sr0, logical block 3, async page read [ 1210.452525] Buffer I/O error on dev sr0, logical block 4, async page read [ 1210.454145] Buffer I/O error on dev sr0, logical block 5, async page read [ 1210.455794] Buffer I/O error on dev sr0, logical block 6, async page read [ 1210.457392] Buffer I/O error on dev sr0, logical block 7, async page read 02:59:30 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) socket$unix(0x1, 0x5, 0x0) connect$unix(0xffffffffffffffff, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) [ 1210.511181] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1210.511858] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1210.513011] Buffer I/O error on dev sr0, logical block 0, async page read [ 1210.513915] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1210.514529] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1210.516115] Buffer I/O error on dev sr0, logical block 1, async page read [ 1210.517024] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1210.517647] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1210.519097] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1210.519705] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1210.521061] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1210.521668] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1210.522955] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1210.523564] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1210.524862] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1210.525480] blk_update_request: I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1210.526727] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1210.527393] blk_update_request: I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1210.536097] FAULT_INJECTION: forcing a failure. [ 1210.536097] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1210.538858] CPU: 0 PID: 8160 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1210.540443] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1210.542357] Call Trace: [ 1210.542976] dump_stack+0x107/0x167 [ 1210.543813] should_fail.cold+0x5/0xa [ 1210.544698] __alloc_pages_nodemask+0x182/0x600 [ 1210.545777] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1210.547166] ? __is_insn_slot_addr+0x14c/0x290 [ 1210.548222] ? lock_chain_count+0x20/0x20 [ 1210.549176] ? __kernel_text_address+0x9/0x40 [ 1210.550208] ? unwind_get_return_address+0x55/0xa0 [ 1210.551349] ? create_prof_cpu_mask+0x20/0x20 [ 1210.552379] ? arch_stack_walk+0x99/0xf0 [ 1210.553313] alloc_pages_current+0x187/0x280 [ 1210.554333] kmalloc_order+0x35/0x160 [ 1210.555210] kmalloc_order_trace+0x14/0xa0 [ 1210.556190] wiphy_new_nm+0x6f3/0x1e00 [ 1210.557085] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1210.558155] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1210.559360] ? __local_bh_enable_ip+0x9d/0x100 [ 1210.560404] ? trace_hardirqs_on+0x5b/0x180 [ 1210.561399] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1210.562517] ? ____sys_sendmsg+0x70d/0x870 [ 1210.563494] ? ___sys_sendmsg+0xf3/0x170 [ 1210.564418] ? __sys_sendmsg+0xe5/0x1b0 [ 1210.565318] ? do_syscall_64+0x33/0x40 [ 1210.566201] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1210.567414] ? lock_acquire+0x197/0x470 [ 1210.568317] ? create_object.isra.0+0x3ad/0xa20 [ 1210.569380] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1210.570441] ? __kmalloc+0x16e/0x390 [ 1210.571299] hwsim_new_radio_nl+0x991/0x1080 [ 1210.572311] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1210.573506] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1210.575033] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1210.576531] genl_family_rcv_msg_doit+0x22d/0x330 [ 1210.577641] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1210.579165] ? cap_capable+0x1cd/0x230 [ 1210.580071] ? ns_capable+0xe2/0x110 [ 1210.580928] genl_rcv_msg+0x36a/0x5a0 [ 1210.581808] ? genl_get_cmd+0x480/0x480 [ 1210.582725] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1210.583930] ? lock_release+0x680/0x680 [ 1210.584841] ? netlink_deliver_tap+0xf4/0xcc0 [ 1210.585872] netlink_rcv_skb+0x14b/0x430 [ 1210.586804] ? genl_get_cmd+0x480/0x480 [ 1210.587734] ? netlink_ack+0xab0/0xab0 [ 1210.588637] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1210.589691] ? is_vmalloc_addr+0x7b/0xb0 [ 1210.590627] genl_rcv+0x24/0x40 [ 1210.591395] netlink_unicast+0x54e/0x800 [ 1210.592332] ? netlink_attachskb+0x870/0x870 [ 1210.593353] netlink_sendmsg+0x90f/0xe00 [ 1210.594297] ? netlink_unicast+0x800/0x800 [ 1210.595286] ? netlink_unicast+0x800/0x800 [ 1210.596257] __sock_sendmsg+0x154/0x190 [ 1210.597171] ____sys_sendmsg+0x70d/0x870 [ 1210.598104] ? sock_write_iter+0x3d0/0x3d0 [ 1210.599083] ? do_recvmmsg+0x6d0/0x6d0 [ 1210.599985] ? lock_downgrade+0x6d0/0x6d0 [ 1210.600946] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1210.602158] ___sys_sendmsg+0xf3/0x170 [ 1210.603061] ? sendmsg_copy_msghdr+0x160/0x160 [ 1210.604110] ? __fget_files+0x2cf/0x520 [ 1210.605024] ? lock_downgrade+0x6d0/0x6d0 [ 1210.605976] ? find_held_lock+0x2c/0x110 [ 1210.606929] ? __fget_files+0x2f8/0x520 [ 1210.607856] ? __fget_light+0xea/0x290 [ 1210.608758] __sys_sendmsg+0xe5/0x1b0 [ 1210.609637] ? __sys_sendmsg_sock+0x40/0x40 [ 1210.610628] ? rcu_read_lock_any_held+0x75/0xa0 [ 1210.611714] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1210.612915] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1210.614098] do_syscall_64+0x33/0x40 [ 1210.614958] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1210.616133] RIP: 0033:0x7fdcf09cab19 [ 1210.616988] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1210.621229] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1210.622984] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1210.624623] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1210.626262] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1210.627913] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1210.629557] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 [ 1210.635613] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1210.638769] FAULT_INJECTION: forcing a failure. [ 1210.638769] name failslab, interval 1, probability 0, space 0, times 0 [ 1210.641405] CPU: 0 PID: 8162 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 1210.642986] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1210.644894] Call Trace: [ 1210.645496] dump_stack+0x107/0x167 [ 1210.646331] should_fail.cold+0x5/0xa [ 1210.647216] ? create_object.isra.0+0x3a/0xa20 [ 1210.648278] should_failslab+0x5/0x20 [ 1210.649156] kmem_cache_alloc+0x5b/0x310 [ 1210.650095] create_object.isra.0+0x3a/0xa20 [ 1210.651075] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1210.652217] __kmalloc_track_caller+0x177/0x370 [ 1210.653252] ? kvasprintf_const+0x60/0x1a0 [ 1210.654200] kvasprintf+0xb5/0x150 [ 1210.654993] ? bust_spinlocks+0xe0/0xe0 [ 1210.655868] ? lockdep_init_map_type+0x2c7/0x780 [ 1210.656938] kvasprintf_const+0x60/0x1a0 [ 1210.657863] kobject_set_name_vargs+0x56/0x150 [ 1210.658882] device_create_groups_vargs+0x1c0/0x280 [ 1210.659993] device_create+0xdc/0x120 [ 1210.660834] ? device_create_groups_vargs+0x280/0x280 [ 1210.661965] ? init_timer_key+0x12a/0x240 [ 1210.662873] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1210.663976] mac80211_hwsim_new_radio+0x376/0x4290 [ 1210.665086] ? trace_hardirqs_on+0x5b/0x180 [ 1210.666064] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1210.667111] ? __kmalloc+0x16e/0x390 [ 1210.667953] hwsim_new_radio_nl+0x991/0x1080 [ 1210.668944] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1210.670115] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1210.671625] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1210.673089] genl_family_rcv_msg_doit+0x22d/0x330 [ 1210.674175] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1210.675663] ? cap_capable+0x1cd/0x230 [ 1210.676552] ? ns_capable+0xe2/0x110 [ 1210.677389] genl_rcv_msg+0x36a/0x5a0 [ 1210.678244] ? genl_get_cmd+0x480/0x480 [ 1210.679124] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1210.680257] ? lock_release+0x680/0x680 [ 1210.681129] ? netlink_deliver_tap+0xf4/0xcc0 [ 1210.682122] netlink_rcv_skb+0x14b/0x430 [ 1210.683027] ? genl_get_cmd+0x480/0x480 [ 1210.683919] ? netlink_ack+0xab0/0xab0 [ 1210.684801] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1210.685822] ? is_vmalloc_addr+0x7b/0xb0 [ 1210.686736] genl_rcv+0x24/0x40 [ 1210.687475] netlink_unicast+0x54e/0x800 [ 1210.688393] ? netlink_attachskb+0x870/0x870 [ 1210.689384] netlink_sendmsg+0x90f/0xe00 [ 1210.690295] ? netlink_unicast+0x800/0x800 [ 1210.691266] ? netlink_unicast+0x800/0x800 [ 1210.692212] __sock_sendmsg+0x154/0x190 [ 1210.693106] ____sys_sendmsg+0x70d/0x870 [ 1210.694033] ? sock_write_iter+0x3d0/0x3d0 [ 1210.694985] ? do_recvmmsg+0x6d0/0x6d0 [ 1210.695866] ? lock_downgrade+0x6d0/0x6d0 [ 1210.696794] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1210.697980] ___sys_sendmsg+0xf3/0x170 [ 1210.698859] ? sendmsg_copy_msghdr+0x160/0x160 [ 1210.699891] ? __fget_files+0x2cf/0x520 [ 1210.700787] ? lock_downgrade+0x6d0/0x6d0 [ 1210.701706] ? find_held_lock+0x2c/0x110 [ 1210.702615] ? __fget_files+0x2f8/0x520 [ 1210.703514] ? __fget_light+0xea/0x290 [ 1210.704395] __sys_sendmsg+0xe5/0x1b0 [ 1210.705238] ? __sys_sendmsg_sock+0x40/0x40 [ 1210.706210] ? rcu_read_lock_any_held+0x75/0xa0 [ 1210.707250] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1210.708381] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1210.709504] do_syscall_64+0x33/0x40 [ 1210.710308] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1210.711438] RIP: 0033:0x7faee752eb19 [ 1210.712267] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1210.716425] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1210.718116] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 1210.719712] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1210.721289] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1210.722869] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1210.724460] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 [ 1210.799289] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. [ 1210.843032] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1210.844353] FAULT_INJECTION: forcing a failure. [ 1210.844353] name failslab, interval 1, probability 0, space 0, times 0 [ 1210.845633] CPU: 1 PID: 8173 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 1210.846406] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1210.847358] Call Trace: [ 1210.847663] dump_stack+0x107/0x167 [ 1210.848074] should_fail.cold+0x5/0xa [ 1210.848509] ? create_object.isra.0+0x3a/0xa20 [ 1210.849045] should_failslab+0x5/0x20 [ 1210.849487] kmem_cache_alloc+0x5b/0x310 [ 1210.849968] ? find_held_lock+0x2c/0x110 [ 1210.850446] create_object.isra.0+0x3a/0xa20 [ 1210.850970] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1210.851560] __kmalloc_track_caller+0x177/0x370 [ 1210.852097] ? kstrdup_const+0x53/0x80 [ 1210.852551] kstrdup+0x36/0x70 [ 1210.852923] kstrdup_const+0x53/0x80 [ 1210.853360] __kernfs_new_node+0x9d/0x860 [ 1210.853847] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1210.854416] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1210.855035] kernfs_new_node+0x18d/0x250 [ 1210.855508] kernfs_create_dir_ns+0x49/0x160 [ 1210.856025] sysfs_create_dir_ns+0x127/0x290 [ 1210.856540] ? sysfs_create_mount_point+0xb0/0xb0 [ 1210.857089] ? rwlock_bug.part.0+0x90/0x90 [ 1210.857573] ? class_dir_child_ns_type+0x9/0x60 [ 1210.858103] kobject_add_internal+0x25e/0xa30 [ 1210.858615] kobject_add+0x150/0x1c0 [ 1210.859046] ? kset_create_and_add+0x1a0/0x1a0 [ 1210.859577] ? lockdep_init_map_type+0x2c7/0x780 [ 1210.860133] device_add+0x35a/0x1c50 [ 1210.860559] ? devlink_add_symlinks+0x970/0x970 [ 1210.861104] device_create_groups_vargs+0x207/0x280 [ 1210.861667] device_create+0xdc/0x120 [ 1210.862099] ? device_create_groups_vargs+0x280/0x280 [ 1210.862692] ? init_timer_key+0x12a/0x240 [ 1210.863185] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1210.863739] mac80211_hwsim_new_radio+0x376/0x4290 [ 1210.864293] ? trace_hardirqs_on+0x5b/0x180 [ 1210.864801] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1210.865325] ? __kmalloc+0x16e/0x390 [ 1210.865751] hwsim_new_radio_nl+0x991/0x1080 [ 1210.866256] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1210.866851] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1210.867615] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1210.868369] genl_family_rcv_msg_doit+0x22d/0x330 [ 1210.868918] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1210.869677] ? cap_capable+0x1cd/0x230 [ 1210.870128] ? ns_capable+0xe2/0x110 [ 1210.870555] genl_rcv_msg+0x36a/0x5a0 [ 1210.871004] ? genl_get_cmd+0x480/0x480 [ 1210.871457] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1210.872036] ? lock_release+0x680/0x680 [ 1210.872490] ? netlink_deliver_tap+0xf4/0xcc0 [ 1210.873006] netlink_rcv_skb+0x14b/0x430 [ 1210.873472] ? genl_get_cmd+0x480/0x480 [ 1210.873930] ? netlink_ack+0xab0/0xab0 [ 1210.874383] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1210.874920] ? is_vmalloc_addr+0x7b/0xb0 [ 1210.875390] genl_rcv+0x24/0x40 [ 1210.875768] netlink_unicast+0x54e/0x800 [ 1210.876237] ? netlink_attachskb+0x870/0x870 [ 1210.876750] netlink_sendmsg+0x90f/0xe00 [ 1210.877221] ? netlink_unicast+0x800/0x800 [ 1210.877711] ? netlink_unicast+0x800/0x800 [ 1210.878192] __sock_sendmsg+0x154/0x190 [ 1210.878647] ____sys_sendmsg+0x70d/0x870 [ 1210.879127] ? sock_write_iter+0x3d0/0x3d0 [ 1210.879605] ? do_recvmmsg+0x6d0/0x6d0 [ 1210.880049] ? lock_downgrade+0x6d0/0x6d0 [ 1210.880527] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1210.881124] ___sys_sendmsg+0xf3/0x170 [ 1210.881576] ? sendmsg_copy_msghdr+0x160/0x160 [ 1210.882096] ? __fget_files+0x2cf/0x520 [ 1210.882542] ? lock_downgrade+0x6d0/0x6d0 [ 1210.883018] ? find_held_lock+0x2c/0x110 [ 1210.883479] ? __fget_files+0x2f8/0x520 [ 1210.883935] ? __fget_light+0xea/0x290 [ 1210.884378] __sys_sendmsg+0xe5/0x1b0 [ 1210.884824] ? __sys_sendmsg_sock+0x40/0x40 [ 1210.885324] ? rcu_read_lock_any_held+0x75/0xa0 [ 1210.885884] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1210.886484] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1210.887080] do_syscall_64+0x33/0x40 [ 1210.887504] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1210.888087] RIP: 0033:0x7f051132ab19 [ 1210.888509] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1210.890599] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1210.891468] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 1210.892272] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1210.893077] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 1210.893882] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1210.894685] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 02:59:45 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 5) [ 1225.847449] FAULT_INJECTION: forcing a failure. [ 1225.847449] name failslab, interval 1, probability 0, space 0, times 0 [ 1225.850029] CPU: 0 PID: 8193 Comm: syz-executor.5 Not tainted 5.10.237 #1 [ 1225.851588] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1225.853465] Call Trace: [ 1225.854060] dump_stack+0x107/0x167 [ 1225.854875] should_fail.cold+0x5/0xa [ 1225.855744] should_failslab+0x5/0x20 [ 1225.856613] __kmalloc_node_track_caller+0x74/0x3b0 [ 1225.857984] ? netlink_sendmsg+0x998/0xe00 [ 1225.858946] __alloc_skb+0xb1/0x5b0 [ 1225.859775] netlink_sendmsg+0x998/0xe00 [ 1225.860691] ? netlink_unicast+0x800/0x800 [ 1225.861660] ? netlink_unicast+0x800/0x800 [ 1225.862623] __sock_sendmsg+0x154/0x190 [ 1225.863544] ____sys_sendmsg+0x70d/0x870 [ 1225.864469] ? sock_write_iter+0x3d0/0x3d0 [ 1225.865421] ? do_recvmmsg+0x6d0/0x6d0 [ 1225.866304] ? lock_downgrade+0x6d0/0x6d0 [ 1225.867247] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1225.868434] ___sys_sendmsg+0xf3/0x170 [ 1225.869308] ? sendmsg_copy_msghdr+0x160/0x160 [ 1225.870342] ? __fget_files+0x2cf/0x520 [ 1225.871238] ? lock_downgrade+0x6d0/0x6d0 [ 1225.872165] ? find_held_lock+0x2c/0x110 [ 1225.873094] ? __fget_files+0x2f8/0x520 [ 1225.873994] ? __fget_light+0xea/0x290 [ 1225.874876] __sys_sendmsg+0xe5/0x1b0 [ 1225.875749] ? __sys_sendmsg_sock+0x40/0x40 [ 1225.876715] ? rcu_read_lock_any_held+0x75/0xa0 [ 1225.877778] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1225.878970] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1225.880137] do_syscall_64+0x33/0x40 [ 1225.880971] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1225.882120] RIP: 0033:0x7fd7004f8b19 [ 1225.882949] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1225.887104] RSP: 002b:00007fd6fda6e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1225.888810] RAX: ffffffffffffffda RBX: 00007fd70060bf60 RCX: 00007fd7004f8b19 [ 1225.890408] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1225.892010] RBP: 00007fd6fda6e1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1225.893606] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1225.895216] R13: 00007ffe37d3003f R14: 00007fd6fda6e300 R15: 0000000000022000 02:59:45 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, 0x0, 0x0) 02:59:45 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 35) 02:59:45 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 11) 02:59:45 executing program 0: ioctl$BTRFS_IOC_SCRUB_CANCEL(0xffffffffffffffff, 0x941c, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x161000, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$BTRFS_IOC_SNAP_DESTROY(r2, 0x5000940f, &(0x7f0000000640)={{r1}, "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"}) connect$inet6(r2, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c) sendmmsg$inet6(r2, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x400000000000095, 0x0) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_mreqsrc(r3, 0x0, 0x27, &(0x7f0000000080)={@multicast2, @dev={0xac, 0x14, 0x14, 0x41}, @remote}, 0xc) setsockopt$inet_mreqsrc(r3, 0x0, 0x25, &(0x7f0000001480)={@broadcast, @dev={0xac, 0x14, 0x14, 0x20}, @empty}, 0xc) connect$inet6(r1, &(0x7f0000000200)={0xa, 0x4e24, 0x65899913, @private1={0xfc, 0x1, '\x00', 0x1}, 0x80000000}, 0x1c) setsockopt$inet_group_source_req(r3, 0x0, 0x2f, &(0x7f0000000240)={0x3, {{0x2, 0x4e22, @broadcast}}, {{0x2, 0x4e20, @loopback}}}, 0x108) close(r3) getsockopt$IPT_SO_GET_INFO(r3, 0x0, 0x40, &(0x7f0000000140)={'nat\x00', 0x0, [0x5, 0x5, 0x0, 0x5, 0x94]}, &(0x7f00000001c0)=0x54) r4 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x22b80, 0x1b7) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) pipe(&(0x7f0000000040)) r5 = ioctl$NS_GET_PARENT(r4, 0xb702, 0x0) fcntl$F_SET_RW_HINT(r5, 0x40c, &(0x7f00000003c0)) 02:59:45 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x7, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 02:59:45 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 31) 02:59:45 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x3e, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1225.898576] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1225.903409] FAULT_INJECTION: forcing a failure. [ 1225.903409] name failslab, interval 1, probability 0, space 0, times 0 [ 1225.905975] CPU: 0 PID: 8187 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 1225.907521] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1225.909396] Call Trace: [ 1225.909992] dump_stack+0x107/0x167 [ 1225.910822] should_fail.cold+0x5/0xa [ 1225.911689] ? create_object.isra.0+0x3a/0xa20 [ 1225.912714] should_failslab+0x5/0x20 [ 1225.913576] kmem_cache_alloc+0x5b/0x310 [ 1225.914491] create_object.isra.0+0x3a/0xa20 [ 1225.915479] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1225.916623] kmem_cache_alloc_trace+0x151/0x320 [ 1225.917676] device_add+0x106f/0x1c50 [ 1225.918537] ? devlink_add_symlinks+0x970/0x970 [ 1225.919610] device_create_groups_vargs+0x207/0x280 [ 1225.920737] device_create+0xdc/0x120 [ 1225.921603] ? device_create_groups_vargs+0x280/0x280 [ 1225.922774] ? init_timer_key+0x12a/0x240 [ 1225.923729] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1225.924821] mac80211_hwsim_new_radio+0x376/0x4290 [ 1225.925920] ? trace_hardirqs_on+0x5b/0x180 [ 1225.926907] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1225.927969] ? __kmalloc+0x16e/0x390 [ 1225.928807] hwsim_new_radio_nl+0x991/0x1080 [ 1225.929806] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1225.930981] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1225.932468] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1225.933956] genl_family_rcv_msg_doit+0x22d/0x330 [ 1225.935043] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1225.936552] ? cap_capable+0x1cd/0x230 [ 1225.937450] ? ns_capable+0xe2/0x110 [ 1225.938300] genl_rcv_msg+0x36a/0x5a0 [ 1225.939171] ? genl_get_cmd+0x480/0x480 [ 1225.940069] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1225.941231] ? lock_release+0x680/0x680 [ 1225.942125] ? netlink_deliver_tap+0xf4/0xcc0 [ 1225.943154] netlink_rcv_skb+0x14b/0x430 [ 1225.944071] ? genl_get_cmd+0x480/0x480 [ 1225.944965] ? netlink_ack+0xab0/0xab0 [ 1225.945855] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1225.946884] ? is_vmalloc_addr+0x7b/0xb0 [ 1225.947804] genl_rcv+0x24/0x40 [ 1225.948550] netlink_unicast+0x54e/0x800 [ 1225.949474] ? netlink_attachskb+0x870/0x870 [ 1225.950478] netlink_sendmsg+0x90f/0xe00 [ 1225.951416] ? netlink_unicast+0x800/0x800 [ 1225.952383] ? netlink_unicast+0x800/0x800 [ 1225.953339] __sock_sendmsg+0x154/0x190 [ 1225.954237] ____sys_sendmsg+0x70d/0x870 [ 1225.955169] ? sock_write_iter+0x3d0/0x3d0 [ 1225.956116] ? do_recvmmsg+0x6d0/0x6d0 [ 1225.957005] ? lock_downgrade+0x6d0/0x6d0 [ 1225.957945] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1225.959136] ___sys_sendmsg+0xf3/0x170 [ 1225.960028] ? sendmsg_copy_msghdr+0x160/0x160 [ 1225.961057] ? __fget_files+0x2cf/0x520 [ 1225.961955] ? lock_downgrade+0x6d0/0x6d0 [ 1225.962911] ? find_held_lock+0x2c/0x110 [ 1225.963851] ? __fget_files+0x2f8/0x520 [ 1225.964761] ? __fget_light+0xea/0x290 [ 1225.965645] __sys_sendmsg+0xe5/0x1b0 [ 1225.966502] ? __sys_sendmsg_sock+0x40/0x40 [ 1225.967477] ? rcu_read_lock_any_held+0x75/0xa0 [ 1225.968546] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1225.969735] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1225.970906] do_syscall_64+0x33/0x40 [ 1225.971756] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1225.972915] RIP: 0033:0x7faee752eb19 [ 1225.973754] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1225.977927] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1225.979660] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 1225.981263] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1225.982872] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1225.984496] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1225.986109] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 02:59:45 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 6) 02:59:45 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x8, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1226.027372] FAULT_INJECTION: forcing a failure. [ 1226.027372] name failslab, interval 1, probability 0, space 0, times 0 [ 1226.030042] CPU: 0 PID: 8202 Comm: syz-executor.5 Not tainted 5.10.237 #1 [ 1226.031608] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1226.033505] Call Trace: [ 1226.034101] dump_stack+0x107/0x167 [ 1226.034935] should_fail.cold+0x5/0xa [ 1226.035813] ? create_object.isra.0+0x3a/0xa20 [ 1226.036850] should_failslab+0x5/0x20 [ 1226.037725] kmem_cache_alloc+0x5b/0x310 [ 1226.038654] create_object.isra.0+0x3a/0xa20 [ 1226.039653] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1226.040807] __kmalloc_node_track_caller+0x1a6/0x3b0 [ 1226.041976] ? netlink_sendmsg+0x998/0xe00 [ 1226.042944] __alloc_skb+0xb1/0x5b0 [ 1226.043793] netlink_sendmsg+0x998/0xe00 [ 1226.044726] ? netlink_unicast+0x800/0x800 [ 1226.045704] ? netlink_unicast+0x800/0x800 [ 1226.046668] __sock_sendmsg+0x154/0x190 [ 1226.047576] ____sys_sendmsg+0x70d/0x870 [ 1226.048506] ? sock_write_iter+0x3d0/0x3d0 [ 1226.049463] ? do_recvmmsg+0x6d0/0x6d0 [ 1226.050352] ? lock_downgrade+0x6d0/0x6d0 [ 1226.051301] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1226.052492] ___sys_sendmsg+0xf3/0x170 [ 1226.053375] ? sendmsg_copy_msghdr+0x160/0x160 [ 1226.054421] ? __fget_files+0x2cf/0x520 [ 1226.055332] ? lock_downgrade+0x6d0/0x6d0 [ 1226.056276] ? find_held_lock+0x2c/0x110 [ 1226.057206] ? __fget_files+0x2f8/0x520 [ 1226.058119] ? __fget_light+0xea/0x290 [ 1226.059014] __sys_sendmsg+0xe5/0x1b0 [ 1226.059885] ? __sys_sendmsg_sock+0x40/0x40 [ 1226.060868] ? rcu_read_lock_any_held+0x75/0xa0 [ 1226.061933] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1226.063123] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1226.064302] do_syscall_64+0x33/0x40 [ 1226.065144] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1226.066310] RIP: 0033:0x7fd7004f8b19 [ 1226.067160] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1226.071349] RSP: 002b:00007fd6fda6e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1226.073079] RAX: ffffffffffffffda RBX: 00007fd70060bf60 RCX: 00007fd7004f8b19 [ 1226.074718] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1226.076366] RBP: 00007fd6fda6e1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1226.077980] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1226.079632] R13: 00007ffe37d3003f R14: 00007fd6fda6e300 R15: 0000000000022000 [ 1226.101447] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 02:59:46 executing program 0: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000de087468d1810719369475457002"], 0x14}}, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) io_uring_setup(0x0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x80161}) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r1, &(0x7f0000000180)=""/198, 0xc6) mmap$IORING_OFF_SQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, 0x1010, r1, 0x0) r2 = socket$inet(0x2, 0xa, 0x0) ioctl$TUNSETQUEUE(r1, 0x400454d9, &(0x7f0000000080)={'hsr0\x00'}) ioctl$sock_inet_SIOCGIFNETMASK(r2, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}}) [ 1226.163198] FAULT_INJECTION: forcing a failure. [ 1226.163198] name failslab, interval 1, probability 0, space 0, times 0 [ 1226.165845] CPU: 0 PID: 8192 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1226.167408] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1226.169304] Call Trace: [ 1226.169907] dump_stack+0x107/0x167 [ 1226.170741] should_fail.cold+0x5/0xa [ 1226.171617] ? create_object.isra.0+0x3a/0xa20 [ 1226.172663] should_failslab+0x5/0x20 [ 1226.173528] kmem_cache_alloc+0x5b/0x310 [ 1226.174456] create_object.isra.0+0x3a/0xa20 [ 1226.175488] ? kasan_unpoison_shadow+0x33/0x50 [ 1226.176537] kmalloc_order+0xfe/0x160 [ 1226.177406] kmalloc_order_trace+0x14/0xa0 [ 1226.178382] wiphy_new_nm+0x6f3/0x1e00 [ 1226.179276] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1226.180335] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1226.181521] ? __local_bh_enable_ip+0x9d/0x100 [ 1226.182557] ? trace_hardirqs_on+0x5b/0x180 [ 1226.183545] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1226.184663] ? ____sys_sendmsg+0x70d/0x870 [ 1226.185614] ? ___sys_sendmsg+0xf3/0x170 [ 1226.186533] ? __sys_sendmsg+0xe5/0x1b0 [ 1226.187450] ? do_syscall_64+0x33/0x40 [ 1226.188334] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1226.189540] ? lock_acquire+0x197/0x470 [ 1226.190439] ? create_object.isra.0+0x3ad/0xa20 [ 1226.191507] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1226.192568] ? __kmalloc+0x16e/0x390 [ 1226.193418] hwsim_new_radio_nl+0x991/0x1080 [ 1226.194425] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1226.195623] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1226.197119] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1226.198593] genl_family_rcv_msg_doit+0x22d/0x330 [ 1226.199702] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1226.201186] ? cap_capable+0x1cd/0x230 [ 1226.202080] ? ns_capable+0xe2/0x110 [ 1226.202925] genl_rcv_msg+0x36a/0x5a0 [ 1226.203793] ? genl_get_cmd+0x480/0x480 [ 1226.204688] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1226.205859] ? lock_release+0x680/0x680 [ 1226.206765] ? netlink_deliver_tap+0xf4/0xcc0 [ 1226.207796] netlink_rcv_skb+0x14b/0x430 [ 1226.208719] ? genl_get_cmd+0x480/0x480 [ 1226.209621] ? netlink_ack+0xab0/0xab0 [ 1226.210515] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1226.211555] ? is_vmalloc_addr+0x7b/0xb0 [ 1226.212471] genl_rcv+0x24/0x40 [ 1226.213223] netlink_unicast+0x54e/0x800 [ 1226.214148] ? netlink_attachskb+0x870/0x870 [ 1226.215167] netlink_sendmsg+0x90f/0xe00 [ 1226.216096] ? netlink_unicast+0x800/0x800 [ 1226.217065] ? netlink_unicast+0x800/0x800 [ 1226.218022] __sock_sendmsg+0x154/0x190 [ 1226.218925] ____sys_sendmsg+0x70d/0x870 [ 1226.219860] ? sock_write_iter+0x3d0/0x3d0 [ 1226.220820] ? do_recvmmsg+0x6d0/0x6d0 [ 1226.221710] ? lock_downgrade+0x6d0/0x6d0 [ 1226.222645] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1226.223848] ___sys_sendmsg+0xf3/0x170 [ 1226.224738] ? sendmsg_copy_msghdr+0x160/0x160 [ 1226.225775] ? __fget_files+0x2cf/0x520 [ 1226.226668] ? lock_downgrade+0x6d0/0x6d0 [ 1226.227615] ? find_held_lock+0x2c/0x110 [ 1226.228545] ? __fget_files+0x2f8/0x520 [ 1226.229449] ? __fget_light+0xea/0x290 [ 1226.230333] __sys_sendmsg+0xe5/0x1b0 [ 1226.231201] ? __sys_sendmsg_sock+0x40/0x40 [ 1226.232178] ? rcu_read_lock_any_held+0x75/0xa0 [ 1226.233248] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1226.234442] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1226.235618] do_syscall_64+0x33/0x40 [ 1226.236469] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1226.237625] RIP: 0033:0x7fdcf09cab19 [ 1226.238468] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1226.242664] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1226.244387] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1226.246008] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1226.247638] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1226.249255] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1226.250882] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 [ 1226.260025] device veth0_vlan entered promiscuous mode [ 1226.317912] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1226.320447] FAULT_INJECTION: forcing a failure. [ 1226.320447] name failslab, interval 1, probability 0, space 0, times 0 [ 1226.323010] CPU: 0 PID: 8194 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 1226.324589] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1226.326491] Call Trace: [ 1226.327102] dump_stack+0x107/0x167 [ 1226.327936] should_fail.cold+0x5/0xa [ 1226.328819] ? create_object.isra.0+0x3a/0xa20 [ 1226.329859] should_failslab+0x5/0x20 [ 1226.330733] kmem_cache_alloc+0x5b/0x310 [ 1226.331671] create_object.isra.0+0x3a/0xa20 [ 1226.332671] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1226.333834] kmem_cache_alloc+0x159/0x310 [ 1226.334785] __kernfs_new_node+0xd4/0x860 [ 1226.335758] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1226.336872] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1226.338075] kernfs_new_node+0x18d/0x250 [ 1226.339006] kernfs_create_dir_ns+0x49/0x160 [ 1226.340013] sysfs_create_dir_ns+0x127/0x290 [ 1226.341017] ? sysfs_create_mount_point+0xb0/0xb0 [ 1226.342115] ? rwlock_bug.part.0+0x90/0x90 [ 1226.343106] ? class_dir_child_ns_type+0x9/0x60 [ 1226.344172] kobject_add_internal+0x25e/0xa30 [ 1226.345200] kobject_add+0x150/0x1c0 [ 1226.346043] ? kset_create_and_add+0x1a0/0x1a0 [ 1226.347098] ? lockdep_init_map_type+0x2c7/0x780 [ 1226.348198] device_add+0x35a/0x1c50 [ 1226.349052] ? devlink_add_symlinks+0x970/0x970 [ 1226.350117] device_create_groups_vargs+0x207/0x280 [ 1226.351269] device_create+0xdc/0x120 [ 1226.352141] ? device_create_groups_vargs+0x280/0x280 [ 1226.353308] ? init_timer_key+0x12a/0x240 [ 1226.354257] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1226.355370] mac80211_hwsim_new_radio+0x376/0x4290 [ 1226.356485] ? trace_hardirqs_on+0x5b/0x180 [ 1226.357483] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1226.358545] ? __kmalloc+0x16e/0x390 [ 1226.359404] hwsim_new_radio_nl+0x991/0x1080 [ 1226.360417] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1226.361611] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1226.363133] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1226.364640] genl_family_rcv_msg_doit+0x22d/0x330 [ 1226.365739] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1226.367254] ? cap_capable+0x1cd/0x230 [ 1226.368148] ? ns_capable+0xe2/0x110 [ 1226.368994] genl_rcv_msg+0x36a/0x5a0 [ 1226.369870] ? genl_get_cmd+0x480/0x480 [ 1226.370780] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1226.371957] ? lock_release+0x680/0x680 [ 1226.372861] ? netlink_deliver_tap+0xf4/0xcc0 [ 1226.373879] netlink_rcv_skb+0x14b/0x430 [ 1226.374798] ? genl_get_cmd+0x480/0x480 [ 1226.375728] ? netlink_ack+0xab0/0xab0 [ 1226.376628] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1226.377661] ? is_vmalloc_addr+0x7b/0xb0 [ 1226.378582] genl_rcv+0x24/0x40 [ 1226.379342] netlink_unicast+0x54e/0x800 [ 1226.380275] ? netlink_attachskb+0x870/0x870 [ 1226.381281] netlink_sendmsg+0x90f/0xe00 [ 1226.382212] ? netlink_unicast+0x800/0x800 [ 1226.383198] ? netlink_unicast+0x800/0x800 [ 1226.384158] __sock_sendmsg+0x154/0x190 [ 1226.385063] ____sys_sendmsg+0x70d/0x870 [ 1226.385995] ? sock_write_iter+0x3d0/0x3d0 [ 1226.386960] ? do_recvmmsg+0x6d0/0x6d0 [ 1226.387860] ? lock_downgrade+0x6d0/0x6d0 [ 1226.388806] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1226.390005] ___sys_sendmsg+0xf3/0x170 [ 1226.390890] ? sendmsg_copy_msghdr+0x160/0x160 [ 1226.391951] ? __fget_files+0x2cf/0x520 [ 1226.392856] ? lock_downgrade+0x6d0/0x6d0 [ 1226.393795] ? find_held_lock+0x2c/0x110 [ 1226.394728] ? __fget_files+0x2f8/0x520 [ 1226.395646] ? __fget_light+0xea/0x290 [ 1226.396535] __sys_sendmsg+0xe5/0x1b0 [ 1226.397404] ? __sys_sendmsg_sock+0x40/0x40 [ 1226.398377] ? rcu_read_lock_any_held+0x75/0xa0 [ 1226.399471] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1226.400662] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1226.401836] do_syscall_64+0x33/0x40 [ 1226.402684] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1226.403862] RIP: 0033:0x7f051132ab19 [ 1226.404698] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1226.408893] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1226.410624] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 1226.412256] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1226.413887] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 1226.415504] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1226.417121] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 03:00:00 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 32) 03:00:00 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, 0x0, 0x0) 03:00:00 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 12) 03:00:00 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x9, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:00:00 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 36) 03:00:00 executing program 0: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x9}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setpriority(0x0, 0x0, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000dc0)={0x54c, 0x10, 0x1, 0xa, 0x0, {0xe}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @nested={0x11, 0x16, 0x0, 0x1, [@generic="487fec864b245e0f3f9be149f8"]}, @nested={0x185, 0x8f, 0x0, 0x1, [@generic="463750d4640b71338367e2756d58918824267aab9a0c96aa1b73589c13422b81e1bef4488df64c351fbfc7d89beec4f94f6d5e120cde5dc2260e3a76d8344c425f77aee2d7", @typed={0x5, 0x61, 0x0, 0x0, @str='\x00'}, @generic="af559dc4a0ad52ad184eac990fbdd6b9a233595b87f4911f5d3de22931b72e1e19f3758c84b45f90a3ce7d9bc30eacd0c1e12dec8fd5d3e8324b923567e43858fd2c9d7f9274d11b9b99188daa638551c75a3e78762cf3751e73e2de5d977f01eb23644fef204890cce48ae3a4ac92cb7d7ced77b4596c05e95d0af44fd0ea702b218c59e4ff3a6451bff0b518e2f145e9fba1d8523f9e6a61a458cbb0183feff0", @generic="0994d1289d3560f2570c02dc283a2a20450649c164fb1f94cbf5efb53470cbd1186ca0e2431fa6c50234a966114880cf48ca406e3a5aa2d3b04184e678de6aff180876808d32651d0b89bcfb16493493da53c49cf24f6557ebaa076755842fcf2d08f00b3da04a84404edd06c38534baa1ae663ce835f0b4ccfebf5d7db5ab6298875236a8da01fa56354532a83c042007e01b"]}, @nested={0x4, 0x1}, @nested={0x2f7, 0x50, 0x0, 0x1, [@generic="52dd8d7d2e1b31f2580bb26c7b709e5c7ea7b61d9ffed5cc130adacbbbff624e448e474bd7f106671673d9f65bc96c15717204f79e7417b7cbd4c0e53816fb047e670a6c91b8", @generic="ba542be71e83c6d198d932c73ca50bc6e2bd5bc14f76bd242ae09c9b4cb8bd27ae2d679b39c9ee35b4af741798a2431b", @generic="402a8de9fc48337c6f6567551335e68323cef144a76d2da95b56a5055bc39fc0d3d15862b5b2bb32153fbeef6ee516f6d0b3352dc84db66f786d97d99ce3765bf6eae4cd3bd4dcf5d759c30529bae5ddc4c883f567290247c61ae611915622bd19d238969ca8c00f12d8880796b2a276499cc6c470feebe9e99d6ea0a7133dc2a9676916aea8148cb5aab3d46a29702340fba1296f59694123906a62135b7db94fdae3094ce2b66c62641ffe45f5c151324aeff43642cb61cc36407b06ce3de3531c92d4402e283546a2c0cfc9fdebc4873f", @generic="1c1182797c42b5a1e41ae4ceb59c1e89e044aaf4a86a919a9cb6a68e0ce1ab2409623899c7e937509b804902355156989939013b72d61aba48c3a0f0b30c6b4694c7346793c9b744337e77500858d5e85400f826d8431dbab530a4a9", @typed={0x8, 0x84, 0x0, 0x0, @pid}, @generic="0f702cdc81e0bd9b43b07d5413cce5e41f570ebd8c0d7afa28754d742cdf7000440656979fe42114f1cc619297754383a45a20035284b968438cc7a4a751fa321e3de97254abfc03093dc6f02cfb049415b2ed73a0f1b07360bf35f91565586dc4fd3d66201aab9f403bf5f6e91dc1e793ef2c", @generic="8fd3947334851fd225516afb1cb43479cb880c46a03eed86b3fc4e2367514f226c6141bab59162442ab58163bc82ffa885798acff31ee6856be6e11a014daa3a30ff873dd5e42643db512c0a2285d64e2f3d65c2a7153da968afb4df755e72c67e25de714fabf4510290b0f972985f6595d4ce2a6dc287c734cbe40a007711f1f320ee00779222387816f4f3c701d5bbb4107ed99ff51f5695fab72a4057aec10b4b843ff8b1d083314d39338cf541b0db6c3ecfe37a1d88351606a0caf55873b57a77a77f1dc4adb5027213", @typed={0x8, 0xa, 0x0, 0x0, @u32=0x4}]}, @generic="e1d04511a3e50454c8993e6cd25065b93368c7e93741dc7f3e7e55545f2339ede435dde3b505fcf64aef2aa1cec42f6956970472206e097093f2120f5a77dde1359ebbeeb4cba33066d1b94dd8748f1d0e8bb1141ed386d4951895be3a3b4e836882d6b1aa8a49e98ae52710c29edd851ff4bd7fa145f2791ccd32d86069296ac211a5f0d04b844c287e7edc6023f9053e843a8e61"]}, 0x54c}, 0x1, 0x0, 0x0, 0x10}, 0x0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0x4, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='map_files\x00') getdents64(r1, &(0x7f00000007c0)=""/180, 0x200007d8) getdents64(r1, 0x0, 0x0) sendmsg$TIPC_CMD_RESET_LINK_STATS(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x30, 0x0, 0x1, 0x70bd27, 0x25dfdbfd, {{}, {}, {0x14, 0x14, 'broadcast-link\x00'}}, [""]}, 0x30}}, 0x1) syz_genetlink_get_family_id$ipvs(0x0, r1) lseek(r0, 0x1, 0x4) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000080)={0x403f}) unshare(0x48020200) 03:00:00 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 7) 03:00:00 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x41, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1240.568463] FAULT_INJECTION: forcing a failure. [ 1240.568463] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1240.571172] CPU: 0 PID: 8218 Comm: syz-executor.5 Not tainted 5.10.237 #1 [ 1240.572710] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1240.574571] Call Trace: [ 1240.575165] dump_stack+0x107/0x167 [ 1240.576029] should_fail.cold+0x5/0xa [ 1240.576903] _copy_from_iter_full+0x201/0xa60 [ 1240.577912] ? __virt_addr_valid+0x170/0x5d0 [ 1240.578903] ? __check_object_size+0x319/0x440 [ 1240.579945] netlink_sendmsg+0x879/0xe00 [ 1240.580863] ? netlink_unicast+0x800/0x800 [ 1240.581831] ? netlink_unicast+0x800/0x800 [ 1240.582782] __sock_sendmsg+0x154/0x190 [ 1240.583686] ____sys_sendmsg+0x70d/0x870 [ 1240.584599] ? sock_write_iter+0x3d0/0x3d0 [ 1240.585545] ? do_recvmmsg+0x6d0/0x6d0 [ 1240.586438] ? lock_downgrade+0x6d0/0x6d0 [ 1240.587382] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1240.588570] ___sys_sendmsg+0xf3/0x170 [ 1240.589454] ? sendmsg_copy_msghdr+0x160/0x160 [ 1240.590492] ? __fget_files+0x2cf/0x520 [ 1240.591387] ? lock_downgrade+0x6d0/0x6d0 [ 1240.592318] ? find_held_lock+0x2c/0x110 [ 1240.593240] ? __fget_files+0x2f8/0x520 [ 1240.594135] ? __fget_light+0xea/0x290 [ 1240.595025] __sys_sendmsg+0xe5/0x1b0 [ 1240.595886] ? __sys_sendmsg_sock+0x40/0x40 [ 1240.596862] ? rcu_read_lock_any_held+0x75/0xa0 [ 1240.597926] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1240.599114] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1240.600276] do_syscall_64+0x33/0x40 [ 1240.601120] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1240.602266] RIP: 0033:0x7fd7004f8b19 [ 1240.603104] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1240.607257] RSP: 002b:00007fd6fda6e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1240.608965] RAX: ffffffffffffffda RBX: 00007fd70060bf60 RCX: 00007fd7004f8b19 [ 1240.610573] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1240.612180] RBP: 00007fd6fda6e1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1240.613777] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1240.615384] R13: 00007ffe37d3003f R14: 00007fd6fda6e300 R15: 0000000000022000 [ 1240.630136] netlink: 1324 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1240.637212] FAULT_INJECTION: forcing a failure. [ 1240.637212] name failslab, interval 1, probability 0, space 0, times 0 [ 1240.638680] CPU: 1 PID: 8217 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1240.639519] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1240.640599] Call Trace: [ 1240.640928] dump_stack+0x107/0x167 [ 1240.641373] should_fail.cold+0x5/0xa [ 1240.641850] should_failslab+0x5/0x20 [ 1240.642316] __kmalloc_track_caller+0x79/0x370 [ 1240.642874] ? kvasprintf_const+0x60/0x1a0 [ 1240.643399] kvasprintf+0xb5/0x150 [ 1240.643835] ? bust_spinlocks+0xe0/0xe0 [ 1240.644344] ? lock_release+0x680/0x680 [ 1240.644829] ? find_held_lock+0x2c/0x110 [ 1240.645347] kvasprintf_const+0x60/0x1a0 [ 1240.645847] kobject_set_name_vargs+0x56/0x150 [ 1240.646406] dev_set_name+0xbb/0xf0 [ 1240.646850] ? device_initialize+0x620/0x620 [ 1240.647417] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1240.648068] ? kmalloc_order+0xfe/0x160 [ 1240.648562] wiphy_new_nm+0x805/0x1e00 [ 1240.649039] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1240.649605] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1240.650245] ? __local_bh_enable_ip+0x9d/0x100 [ 1240.650802] ? trace_hardirqs_on+0x5b/0x180 [ 1240.651358] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1240.651963] ? ____sys_sendmsg+0x70d/0x870 [ 1240.652478] ? ___sys_sendmsg+0xf3/0x170 [ 1240.652971] ? __sys_sendmsg+0xe5/0x1b0 [ 1240.653456] ? do_syscall_64+0x33/0x40 [ 1240.653932] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1240.654580] ? lock_acquire+0x197/0x470 [ 1240.655066] ? create_object.isra.0+0x3ad/0xa20 [ 1240.655678] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1240.656246] ? __kmalloc+0x16e/0x390 [ 1240.656703] hwsim_new_radio_nl+0x991/0x1080 [ 1240.657241] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1240.657911] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1240.658704] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1240.659543] genl_family_rcv_msg_doit+0x22d/0x330 [ 1240.660137] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1240.660960] ? cap_capable+0x1cd/0x230 [ 1240.661451] ? ns_capable+0xe2/0x110 [ 1240.661920] genl_rcv_msg+0x36a/0x5a0 [ 1240.662396] ? genl_get_cmd+0x480/0x480 [ 1240.662907] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1240.663569] ? lock_release+0x680/0x680 [ 1240.664070] ? netlink_deliver_tap+0xf4/0xcc0 [ 1240.664633] netlink_rcv_skb+0x14b/0x430 [ 1240.665127] ? genl_get_cmd+0x480/0x480 [ 1240.665627] ? netlink_ack+0xab0/0xab0 [ 1240.666106] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1240.666678] ? is_vmalloc_addr+0x7b/0xb0 [ 1240.667176] genl_rcv+0x24/0x40 [ 1240.667592] netlink_unicast+0x54e/0x800 [ 1240.668118] ? netlink_attachskb+0x870/0x870 [ 1240.668691] netlink_sendmsg+0x90f/0xe00 [ 1240.669229] ? netlink_unicast+0x800/0x800 [ 1240.669764] ? netlink_unicast+0x800/0x800 [ 1240.670303] __sock_sendmsg+0x154/0x190 [ 1240.670799] ____sys_sendmsg+0x70d/0x870 [ 1240.671328] ? sock_write_iter+0x3d0/0x3d0 [ 1240.671839] ? do_recvmmsg+0x6d0/0x6d0 [ 1240.672338] ? lock_downgrade+0x6d0/0x6d0 [ 1240.672865] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1240.673526] ___sys_sendmsg+0xf3/0x170 [ 1240.674013] ? sendmsg_copy_msghdr+0x160/0x160 [ 1240.674591] ? __fget_files+0x2cf/0x520 [ 1240.675085] ? lock_downgrade+0x6d0/0x6d0 [ 1240.675589] ? find_held_lock+0x2c/0x110 [ 1240.676080] ? __fget_files+0x2f8/0x520 [ 1240.676561] ? __fget_light+0xea/0x290 [ 1240.677032] __sys_sendmsg+0xe5/0x1b0 [ 1240.677486] ? __sys_sendmsg_sock+0x40/0x40 [ 1240.678001] ? rcu_read_lock_any_held+0x75/0xa0 [ 1240.678595] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1240.679249] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1240.679891] do_syscall_64+0x33/0x40 [ 1240.680338] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1240.680974] RIP: 0033:0x7fdcf09cab19 [ 1240.681423] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1240.683747] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1240.684655] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1240.685505] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1240.686357] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1240.687214] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1240.688100] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 [ 1240.689135] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1240.690456] FAULT_INJECTION: forcing a failure. [ 1240.690456] name failslab, interval 1, probability 0, space 0, times 0 [ 1240.691943] CPU: 1 PID: 8222 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 1240.692834] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1240.693908] Call Trace: [ 1240.694248] dump_stack+0x107/0x167 [ 1240.694716] should_fail.cold+0x5/0xa [ 1240.695221] ? __kernfs_new_node+0xd4/0x860 [ 1240.695780] should_failslab+0x5/0x20 [ 1240.696277] kmem_cache_alloc+0x5b/0x310 [ 1240.696805] __kernfs_new_node+0xd4/0x860 [ 1240.697345] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1240.697965] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1240.698650] kernfs_new_node+0x18d/0x250 [ 1240.699180] kernfs_create_dir_ns+0x49/0x160 [ 1240.699752] sysfs_create_dir_ns+0x127/0x290 [ 1240.700316] ? sysfs_create_mount_point+0xb0/0xb0 [ 1240.700940] ? rwlock_bug.part.0+0x90/0x90 [ 1240.701487] ? class_dir_child_ns_type+0x9/0x60 [ 1240.702101] kobject_add_internal+0x25e/0xa30 [ 1240.702679] kobject_add+0x150/0x1c0 [ 1240.703154] ? kset_create_and_add+0x1a0/0x1a0 [ 1240.703748] ? lockdep_init_map_type+0x2c7/0x780 [ 1240.704369] device_add+0x35a/0x1c50 [ 1240.704853] ? devlink_add_symlinks+0x970/0x970 [ 1240.705463] device_create_groups_vargs+0x207/0x280 [ 1240.706109] device_create+0xdc/0x120 [ 1240.706601] ? device_create_groups_vargs+0x280/0x280 [ 1240.707276] ? init_timer_key+0x12a/0x240 [ 1240.707813] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1240.708441] mac80211_hwsim_new_radio+0x376/0x4290 [ 1240.709073] ? trace_hardirqs_on+0x5b/0x180 [ 1240.709637] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1240.710238] ? __kmalloc+0x16e/0x390 [ 1240.710715] hwsim_new_radio_nl+0x991/0x1080 [ 1240.711284] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1240.711953] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1240.712795] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1240.713629] genl_family_rcv_msg_doit+0x22d/0x330 [ 1240.714250] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1240.715088] ? cap_capable+0x1cd/0x230 [ 1240.715596] ? ns_capable+0xe2/0x110 [ 1240.716073] genl_rcv_msg+0x36a/0x5a0 [ 1240.716559] ? genl_get_cmd+0x480/0x480 [ 1240.717066] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1240.717723] ? lock_release+0x680/0x680 [ 1240.718231] ? netlink_deliver_tap+0xf4/0xcc0 [ 1240.718802] netlink_rcv_skb+0x14b/0x430 [ 1240.719327] ? genl_get_cmd+0x480/0x480 [ 1240.719832] ? netlink_ack+0xab0/0xab0 [ 1240.720333] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1240.720912] ? is_vmalloc_addr+0x7b/0xb0 [ 1240.721430] genl_rcv+0x24/0x40 [ 1240.721848] netlink_unicast+0x54e/0x800 [ 1240.722366] ? netlink_attachskb+0x870/0x870 [ 1240.722933] netlink_sendmsg+0x90f/0xe00 [ 1240.723475] ? netlink_unicast+0x800/0x800 [ 1240.724045] ? netlink_unicast+0x800/0x800 [ 1240.724609] __sock_sendmsg+0x154/0x190 [ 1240.725146] ____sys_sendmsg+0x70d/0x870 [ 1240.725694] ? sock_write_iter+0x3d0/0x3d0 [ 1240.726257] ? do_recvmmsg+0x6d0/0x6d0 [ 1240.726779] ? lock_downgrade+0x6d0/0x6d0 [ 1240.727338] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1240.728038] ___sys_sendmsg+0xf3/0x170 [ 1240.728554] ? sendmsg_copy_msghdr+0x160/0x160 [ 1240.729164] ? __fget_files+0x2cf/0x520 [ 1240.729689] ? lock_downgrade+0x6d0/0x6d0 [ 1240.730247] ? find_held_lock+0x2c/0x110 [ 1240.730790] ? __fget_files+0x2f8/0x520 [ 1240.731329] ? __fget_light+0xea/0x290 [ 1240.731851] __sys_sendmsg+0xe5/0x1b0 [ 1240.732358] ? __sys_sendmsg_sock+0x40/0x40 [ 1240.732939] ? rcu_read_lock_any_held+0x75/0xa0 [ 1240.733569] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1240.734259] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1240.734945] do_syscall_64+0x33/0x40 [ 1240.735442] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1240.736126] RIP: 0033:0x7f051132ab19 [ 1240.736624] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1240.739057] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1240.740065] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 1240.741000] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1240.741950] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 1240.742895] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1240.743851] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 [ 1240.744875] kobject_add_internal failed for hwsim286 (error: -12 parent: mac80211_hwsim) 03:00:00 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 8) 03:00:00 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xa, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1240.785180] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1240.786588] FAULT_INJECTION: forcing a failure. [ 1240.786588] name failslab, interval 1, probability 0, space 0, times 0 [ 1240.788047] CPU: 1 PID: 8229 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 1240.788924] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1240.789995] Call Trace: [ 1240.790331] dump_stack+0x107/0x167 [ 1240.790798] should_fail.cold+0x5/0xa [ 1240.791293] ? device_add+0x106f/0x1c50 [ 1240.791801] should_failslab+0x5/0x20 [ 1240.792282] kmem_cache_alloc_trace+0x55/0x320 [ 1240.792864] ? kvasprintf+0xe9/0x150 [ 1240.793338] device_add+0x106f/0x1c50 [ 1240.793823] ? devlink_add_symlinks+0x970/0x970 [ 1240.794422] device_create_groups_vargs+0x207/0x280 [ 1240.795056] device_create+0xdc/0x120 [ 1240.795550] ? device_create_groups_vargs+0x280/0x280 [ 1240.796207] ? init_timer_key+0x12a/0x240 [ 1240.796739] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1240.797361] mac80211_hwsim_new_radio+0x376/0x4290 [ 1240.797983] ? trace_hardirqs_on+0x5b/0x180 [ 1240.798537] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1240.799132] ? __kmalloc+0x16e/0x390 [ 1240.799612] hwsim_new_radio_nl+0x991/0x1080 [ 1240.800176] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1240.800836] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1240.801675] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1240.802500] genl_family_rcv_msg_doit+0x22d/0x330 [ 1240.803116] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1240.803961] ? cap_capable+0x1cd/0x230 [ 1240.804460] ? ns_capable+0xe2/0x110 [ 1240.804936] genl_rcv_msg+0x36a/0x5a0 [ 1240.805418] ? genl_get_cmd+0x480/0x480 [ 1240.805920] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1240.806591] ? lock_release+0x680/0x680 [ 1240.807095] ? netlink_deliver_tap+0xf4/0xcc0 [ 1240.807664] netlink_rcv_skb+0x14b/0x430 [ 1240.808175] ? genl_get_cmd+0x480/0x480 [ 1240.808671] ? netlink_ack+0xab0/0xab0 [ 1240.809165] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1240.809738] ? is_vmalloc_addr+0x7b/0xb0 [ 1240.810254] genl_rcv+0x24/0x40 [ 1240.810669] netlink_unicast+0x54e/0x800 [ 1240.811187] ? netlink_attachskb+0x870/0x870 [ 1240.811748] netlink_sendmsg+0x90f/0xe00 [ 1240.812260] ? netlink_unicast+0x800/0x800 [ 1240.812793] ? netlink_unicast+0x800/0x800 [ 1240.813321] __sock_sendmsg+0x154/0x190 [ 1240.813809] ____sys_sendmsg+0x70d/0x870 [ 1240.814287] ? sock_write_iter+0x3d0/0x3d0 [ 1240.814762] ? do_recvmmsg+0x6d0/0x6d0 [ 1240.815201] ? lock_downgrade+0x6d0/0x6d0 [ 1240.815675] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1240.816270] ___sys_sendmsg+0xf3/0x170 [ 1240.816711] ? sendmsg_copy_msghdr+0x160/0x160 [ 1240.817231] ? __fget_files+0x2cf/0x520 [ 1240.817679] ? lock_downgrade+0x6d0/0x6d0 [ 1240.818166] ? find_held_lock+0x2c/0x110 [ 1240.818649] ? __fget_files+0x2f8/0x520 [ 1240.819121] ? __fget_light+0xea/0x290 [ 1240.819570] __sys_sendmsg+0xe5/0x1b0 [ 1240.820005] ? __sys_sendmsg_sock+0x40/0x40 [ 1240.820489] ? rcu_read_lock_any_held+0x75/0xa0 [ 1240.821021] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1240.821611] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1240.822224] do_syscall_64+0x33/0x40 [ 1240.822642] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1240.823247] RIP: 0033:0x7faee752eb19 [ 1240.823666] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1240.825808] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1240.826656] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 1240.827461] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1240.828259] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1240.829052] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1240.829845] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 [ 1240.841233] netlink: 1324 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1240.854289] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 03:00:00 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 13) 03:00:00 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 37) 03:00:00 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 33) [ 1240.939886] FAULT_INJECTION: forcing a failure. [ 1240.939886] name failslab, interval 1, probability 0, space 0, times 0 [ 1240.941246] CPU: 1 PID: 8234 Comm: syz-executor.5 Not tainted 5.10.237 #1 [ 1240.942056] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1240.943036] Call Trace: [ 1240.943351] dump_stack+0x107/0x167 [ 1240.943784] should_fail.cold+0x5/0xa [ 1240.944242] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xdb/0x280 [ 1240.945015] should_failslab+0x5/0x20 [ 1240.945467] __kmalloc+0x72/0x390 [ 1240.945883] genl_family_rcv_msg_attrs_parse.constprop.0+0xdb/0x280 [ 1240.946641] genl_family_rcv_msg_doit+0xda/0x330 [ 1240.947211] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1240.947992] ? cap_capable+0x1cd/0x230 [ 1240.948439] ? security_capable+0x95/0xc0 [ 1240.948935] ? ns_capable+0xe2/0x110 [ 1240.949376] genl_rcv_msg+0x36a/0x5a0 [ 1240.949832] ? genl_get_cmd+0x480/0x480 [ 1240.950308] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1240.950905] ? lock_release+0x680/0x680 [ 1240.951383] ? netlink_deliver_tap+0xf4/0xcc0 [ 1240.951896] netlink_rcv_skb+0x14b/0x430 [ 1240.952379] ? genl_get_cmd+0x480/0x480 [ 1240.952850] ? netlink_ack+0xab0/0xab0 [ 1240.953314] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1240.953855] ? is_vmalloc_addr+0x7b/0xb0 [ 1240.954345] genl_rcv+0x24/0x40 [ 1240.954734] netlink_unicast+0x54e/0x800 [ 1240.955224] ? netlink_attachskb+0x870/0x870 [ 1240.955757] netlink_sendmsg+0x90f/0xe00 [ 1240.956242] ? netlink_unicast+0x800/0x800 [ 1240.956748] ? netlink_unicast+0x800/0x800 [ 1240.957251] __sock_sendmsg+0x154/0x190 [ 1240.957723] ____sys_sendmsg+0x70d/0x870 [ 1240.958207] ? sock_write_iter+0x3d0/0x3d0 [ 1240.958709] ? do_recvmmsg+0x6d0/0x6d0 [ 1240.959174] ? lock_downgrade+0x6d0/0x6d0 [ 1240.959672] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1240.960297] ___sys_sendmsg+0xf3/0x170 [ 1240.960762] ? sendmsg_copy_msghdr+0x160/0x160 [ 1240.961309] ? __fget_files+0x2cf/0x520 [ 1240.961779] ? lock_downgrade+0x6d0/0x6d0 [ 1240.962270] ? find_held_lock+0x2c/0x110 [ 1240.962757] ? __fget_files+0x2f8/0x520 [ 1240.963242] ? __fget_light+0xea/0x290 [ 1240.963706] __sys_sendmsg+0xe5/0x1b0 [ 1240.964158] ? __sys_sendmsg_sock+0x40/0x40 [ 1240.964669] ? rcu_read_lock_any_held+0x75/0xa0 [ 1240.965231] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1240.965854] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1240.966466] do_syscall_64+0x33/0x40 [ 1240.966908] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1240.967519] RIP: 0033:0x7fd7004f8b19 [ 1240.967960] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1240.970134] RSP: 002b:00007fd6fda6e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1240.971034] RAX: ffffffffffffffda RBX: 00007fd70060bf60 RCX: 00007fd7004f8b19 [ 1240.971878] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1240.972717] RBP: 00007fd6fda6e1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1240.973559] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1240.974399] R13: 00007ffe37d3003f R14: 00007fd6fda6e300 R15: 0000000000022000 03:00:01 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x47, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1241.045180] FAULT_INJECTION: forcing a failure. [ 1241.045180] name failslab, interval 1, probability 0, space 0, times 0 [ 1241.046580] CPU: 1 PID: 8239 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1241.047406] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1241.048385] Call Trace: [ 1241.048708] dump_stack+0x107/0x167 [ 1241.049141] should_fail.cold+0x5/0xa [ 1241.049597] ? create_object.isra.0+0x3a/0xa20 [ 1241.050138] should_failslab+0x5/0x20 [ 1241.050589] kmem_cache_alloc+0x5b/0x310 [ 1241.051055] ? vsnprintf+0x4ba/0x1600 [ 1241.051517] create_object.isra.0+0x3a/0xa20 [ 1241.052033] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1241.052637] __kmalloc_track_caller+0x177/0x370 [ 1241.053192] ? kvasprintf_const+0x60/0x1a0 [ 1241.053695] kvasprintf+0xb5/0x150 [ 1241.054116] ? bust_spinlocks+0xe0/0xe0 [ 1241.054586] ? lock_release+0x680/0x680 [ 1241.055054] ? find_held_lock+0x2c/0x110 [ 1241.055542] kvasprintf_const+0x60/0x1a0 [ 1241.056024] kobject_set_name_vargs+0x56/0x150 [ 1241.056564] dev_set_name+0xbb/0xf0 [ 1241.056991] ? device_initialize+0x620/0x620 [ 1241.057512] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1241.058135] ? kmalloc_order+0xfe/0x160 [ 1241.058614] wiphy_new_nm+0x805/0x1e00 [ 1241.059075] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1241.059630] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1241.060248] ? __local_bh_enable_ip+0x9d/0x100 [ 1241.060783] ? trace_hardirqs_on+0x5b/0x180 [ 1241.061271] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1241.061854] ? ____sys_sendmsg+0x70d/0x870 [ 1241.062353] ? ___sys_sendmsg+0xf3/0x170 [ 1241.062830] ? __sys_sendmsg+0xe5/0x1b0 [ 1241.063304] ? do_syscall_64+0x33/0x40 [ 1241.063762] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1241.064361] ? lock_acquire+0x197/0x470 [ 1241.064827] ? create_object.isra.0+0x3ad/0xa20 [ 1241.065354] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1241.065900] ? __kmalloc+0x16e/0x390 [ 1241.066321] hwsim_new_radio_nl+0x991/0x1080 [ 1241.066843] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1241.067464] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1241.068247] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1241.069016] genl_family_rcv_msg_doit+0x22d/0x330 [ 1241.069586] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1241.070365] ? cap_capable+0x1cd/0x230 [ 1241.070837] ? ns_capable+0xe2/0x110 [ 1241.071285] genl_rcv_msg+0x36a/0x5a0 [ 1241.071734] ? genl_get_cmd+0x480/0x480 [ 1241.072185] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1241.072796] ? lock_release+0x680/0x680 [ 1241.073262] ? netlink_deliver_tap+0xf4/0xcc0 [ 1241.073771] netlink_rcv_skb+0x14b/0x430 [ 1241.074253] ? genl_get_cmd+0x480/0x480 [ 1241.074707] ? netlink_ack+0xab0/0xab0 [ 1241.075171] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1241.075716] ? is_vmalloc_addr+0x7b/0xb0 [ 1241.076195] genl_rcv+0x24/0x40 [ 1241.076581] netlink_unicast+0x54e/0x800 [ 1241.077062] ? netlink_attachskb+0x870/0x870 [ 1241.077587] netlink_sendmsg+0x90f/0xe00 [ 1241.078069] ? netlink_unicast+0x800/0x800 [ 1241.078572] ? netlink_unicast+0x800/0x800 [ 1241.079068] __sock_sendmsg+0x154/0x190 [ 1241.079546] ____sys_sendmsg+0x70d/0x870 [ 1241.080026] ? sock_write_iter+0x3d0/0x3d0 [ 1241.080522] ? do_recvmmsg+0x6d0/0x6d0 [ 1241.080981] ? lock_downgrade+0x6d0/0x6d0 [ 1241.081467] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1241.082085] ___sys_sendmsg+0xf3/0x170 [ 1241.082543] ? sendmsg_copy_msghdr+0x160/0x160 [ 1241.083084] ? __fget_files+0x2cf/0x520 [ 1241.083559] ? lock_downgrade+0x6d0/0x6d0 [ 1241.084049] ? find_held_lock+0x2c/0x110 [ 1241.084534] ? __fget_files+0x2f8/0x520 [ 1241.085008] ? __fget_light+0xea/0x290 [ 1241.085467] __sys_sendmsg+0xe5/0x1b0 [ 1241.085913] ? __sys_sendmsg_sock+0x40/0x40 [ 1241.086434] ? rcu_read_lock_any_held+0x75/0xa0 [ 1241.086991] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1241.087612] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1241.088216] do_syscall_64+0x33/0x40 [ 1241.088651] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1241.089252] RIP: 0033:0x7fdcf09cab19 [ 1241.089689] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1241.091856] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1241.092750] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1241.093586] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1241.094424] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1241.095271] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1241.096111] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 03:00:01 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 9) 03:00:01 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xb, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:00:01 executing program 0: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x9}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setpriority(0x0, 0x0, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000dc0)={0x54c, 0x10, 0x1, 0xa, 0x0, {0xe}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @nested={0x11, 0x16, 0x0, 0x1, [@generic="487fec864b245e0f3f9be149f8"]}, @nested={0x185, 0x8f, 0x0, 0x1, [@generic="463750d4640b71338367e2756d58918824267aab9a0c96aa1b73589c13422b81e1bef4488df64c351fbfc7d89beec4f94f6d5e120cde5dc2260e3a76d8344c425f77aee2d7", @typed={0x5, 0x61, 0x0, 0x0, @str='\x00'}, @generic="af559dc4a0ad52ad184eac990fbdd6b9a233595b87f4911f5d3de22931b72e1e19f3758c84b45f90a3ce7d9bc30eacd0c1e12dec8fd5d3e8324b923567e43858fd2c9d7f9274d11b9b99188daa638551c75a3e78762cf3751e73e2de5d977f01eb23644fef204890cce48ae3a4ac92cb7d7ced77b4596c05e95d0af44fd0ea702b218c59e4ff3a6451bff0b518e2f145e9fba1d8523f9e6a61a458cbb0183feff0", @generic="0994d1289d3560f2570c02dc283a2a20450649c164fb1f94cbf5efb53470cbd1186ca0e2431fa6c50234a966114880cf48ca406e3a5aa2d3b04184e678de6aff180876808d32651d0b89bcfb16493493da53c49cf24f6557ebaa076755842fcf2d08f00b3da04a84404edd06c38534baa1ae663ce835f0b4ccfebf5d7db5ab6298875236a8da01fa56354532a83c042007e01b"]}, @nested={0x4, 0x1}, @nested={0x2f7, 0x50, 0x0, 0x1, [@generic="52dd8d7d2e1b31f2580bb26c7b709e5c7ea7b61d9ffed5cc130adacbbbff624e448e474bd7f106671673d9f65bc96c15717204f79e7417b7cbd4c0e53816fb047e670a6c91b8", @generic="ba542be71e83c6d198d932c73ca50bc6e2bd5bc14f76bd242ae09c9b4cb8bd27ae2d679b39c9ee35b4af741798a2431b", @generic="402a8de9fc48337c6f6567551335e68323cef144a76d2da95b56a5055bc39fc0d3d15862b5b2bb32153fbeef6ee516f6d0b3352dc84db66f786d97d99ce3765bf6eae4cd3bd4dcf5d759c30529bae5ddc4c883f567290247c61ae611915622bd19d238969ca8c00f12d8880796b2a276499cc6c470feebe9e99d6ea0a7133dc2a9676916aea8148cb5aab3d46a29702340fba1296f59694123906a62135b7db94fdae3094ce2b66c62641ffe45f5c151324aeff43642cb61cc36407b06ce3de3531c92d4402e283546a2c0cfc9fdebc4873f", @generic="1c1182797c42b5a1e41ae4ceb59c1e89e044aaf4a86a919a9cb6a68e0ce1ab2409623899c7e937509b804902355156989939013b72d61aba48c3a0f0b30c6b4694c7346793c9b744337e77500858d5e85400f826d8431dbab530a4a9", @typed={0x8, 0x84, 0x0, 0x0, @pid}, @generic="0f702cdc81e0bd9b43b07d5413cce5e41f570ebd8c0d7afa28754d742cdf7000440656979fe42114f1cc619297754383a45a20035284b968438cc7a4a751fa321e3de97254abfc03093dc6f02cfb049415b2ed73a0f1b07360bf35f91565586dc4fd3d66201aab9f403bf5f6e91dc1e793ef2c", @generic="8fd3947334851fd225516afb1cb43479cb880c46a03eed86b3fc4e2367514f226c6141bab59162442ab58163bc82ffa885798acff31ee6856be6e11a014daa3a30ff873dd5e42643db512c0a2285d64e2f3d65c2a7153da968afb4df755e72c67e25de714fabf4510290b0f972985f6595d4ce2a6dc287c734cbe40a007711f1f320ee00779222387816f4f3c701d5bbb4107ed99ff51f5695fab72a4057aec10b4b843ff8b1d083314d39338cf541b0db6c3ecfe37a1d88351606a0caf55873b57a77a77f1dc4adb5027213", @typed={0x8, 0xa, 0x0, 0x0, @u32=0x4}]}, @generic="e1d04511a3e50454c8993e6cd25065b93368c7e93741dc7f3e7e55545f2339ede435dde3b505fcf64aef2aa1cec42f6956970472206e097093f2120f5a77dde1359ebbeeb4cba33066d1b94dd8748f1d0e8bb1141ed386d4951895be3a3b4e836882d6b1aa8a49e98ae52710c29edd851ff4bd7fa145f2791ccd32d86069296ac211a5f0d04b844c287e7edc6023f9053e843a8e61"]}, 0x54c}, 0x1, 0x0, 0x0, 0x10}, 0x0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0x4, 0x0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='map_files\x00') getdents64(r1, &(0x7f00000007c0)=""/180, 0x200007d8) getdents64(r1, 0x0, 0x0) sendmsg$TIPC_CMD_RESET_LINK_STATS(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x30, 0x0, 0x1, 0x70bd27, 0x25dfdbfd, {{}, {}, {0x14, 0x14, 'broadcast-link\x00'}}, [""]}, 0x30}}, 0x1) syz_genetlink_get_family_id$ipvs(0x0, r1) lseek(r0, 0x1, 0x4) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000080)={0x403f}) unshare(0x48020200) [ 1241.179230] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1241.180555] FAULT_INJECTION: forcing a failure. [ 1241.180555] name failslab, interval 1, probability 0, space 0, times 0 [ 1241.181889] CPU: 1 PID: 8240 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 1241.182368] netlink: 1324 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1241.182694] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1241.182700] Call Trace: [ 1241.182719] dump_stack+0x107/0x167 [ 1241.182732] should_fail.cold+0x5/0xa [ 1241.182757] ? create_object.isra.0+0x3a/0xa20 [ 1241.187367] should_failslab+0x5/0x20 [ 1241.187820] kmem_cache_alloc+0x5b/0x310 [ 1241.188284] create_object.isra.0+0x3a/0xa20 [ 1241.188795] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1241.189388] kmem_cache_alloc+0x159/0x310 [ 1241.189880] __kernfs_new_node+0xd4/0x860 [ 1241.190367] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1241.190931] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1241.191543] ? kernfs_add_one+0x124/0x4d0 [ 1241.192016] kernfs_new_node+0x18d/0x250 [ 1241.192492] __kernfs_create_file+0x51/0x350 [ 1241.193003] sysfs_add_file_mode_ns+0x221/0x560 [ 1241.193549] sysfs_create_file_ns+0x131/0x1d0 [ 1241.194081] ? sysfs_add_file_mode_ns+0x560/0x560 [ 1241.194651] ? is_acpi_device_node+0x6e/0x90 [ 1241.195169] device_create_file+0xea/0x1d0 [ 1241.195670] device_add+0x547/0x1c50 [ 1241.196104] ? devlink_add_symlinks+0x970/0x970 [ 1241.196649] device_create_groups_vargs+0x207/0x280 [ 1241.197232] device_create+0xdc/0x120 [ 1241.197674] ? device_create_groups_vargs+0x280/0x280 [ 1241.198261] ? init_timer_key+0x12a/0x240 [ 1241.198747] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1241.199302] mac80211_hwsim_new_radio+0x376/0x4290 [ 1241.199877] ? trace_hardirqs_on+0x5b/0x180 [ 1241.200385] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1241.200924] ? __kmalloc+0x16e/0x390 [ 1241.201360] hwsim_new_radio_nl+0x991/0x1080 [ 1241.201874] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1241.202485] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1241.203255] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1241.204017] genl_family_rcv_msg_doit+0x22d/0x330 [ 1241.204562] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1241.205333] ? cap_capable+0x1cd/0x230 [ 1241.205796] ? ns_capable+0xe2/0x110 [ 1241.206256] genl_rcv_msg+0x36a/0x5a0 [ 1241.206698] ? genl_get_cmd+0x480/0x480 [ 1241.207160] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1241.207766] ? lock_release+0x680/0x680 [ 1241.208230] ? netlink_deliver_tap+0xf4/0xcc0 [ 1241.208750] netlink_rcv_skb+0x14b/0x430 [ 1241.209224] ? genl_get_cmd+0x480/0x480 [ 1241.209685] ? netlink_ack+0xab0/0xab0 [ 1241.210141] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1241.210671] ? is_vmalloc_addr+0x7b/0xb0 [ 1241.211145] genl_rcv+0x24/0x40 [ 1241.211530] netlink_unicast+0x54e/0x800 [ 1241.212001] ? netlink_attachskb+0x870/0x870 [ 1241.212519] netlink_sendmsg+0x90f/0xe00 [ 1241.213002] ? netlink_unicast+0x800/0x800 [ 1241.213499] ? netlink_unicast+0x800/0x800 [ 1241.213989] __sock_sendmsg+0x154/0x190 [ 1241.214449] ____sys_sendmsg+0x70d/0x870 [ 1241.214921] ? sock_write_iter+0x3d0/0x3d0 [ 1241.215414] ? do_recvmmsg+0x6d0/0x6d0 [ 1241.215870] ? lock_downgrade+0x6d0/0x6d0 [ 1241.216353] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1241.216964] ___sys_sendmsg+0xf3/0x170 [ 1241.217415] ? sendmsg_copy_msghdr+0x160/0x160 [ 1241.217945] ? __fget_files+0x2cf/0x520 [ 1241.218407] ? lock_downgrade+0x6d0/0x6d0 [ 1241.218891] ? find_held_lock+0x2c/0x110 [ 1241.219374] ? __fget_files+0x2f8/0x520 [ 1241.219842] ? __fget_light+0xea/0x290 [ 1241.220296] __sys_sendmsg+0xe5/0x1b0 [ 1241.220735] ? __sys_sendmsg_sock+0x40/0x40 [ 1241.221235] ? rcu_read_lock_any_held+0x75/0xa0 [ 1241.221782] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1241.222388] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1241.222992] do_syscall_64+0x33/0x40 [ 1241.223433] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1241.224029] RIP: 0033:0x7f051132ab19 [ 1241.224459] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1241.226589] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1241.227476] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 1241.228304] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1241.229128] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 1241.229959] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1241.230786] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 03:00:01 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 14) [ 1241.307321] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1241.309997] FAULT_INJECTION: forcing a failure. [ 1241.309997] name failslab, interval 1, probability 0, space 0, times 0 [ 1241.312719] CPU: 0 PID: 8242 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 1241.314313] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1241.316258] Call Trace: [ 1241.316877] dump_stack+0x107/0x167 [ 1241.317728] should_fail.cold+0x5/0xa [ 1241.318620] ? device_add+0x106f/0x1c50 [ 1241.319560] should_failslab+0x5/0x20 [ 1241.320450] kmem_cache_alloc_trace+0x55/0x320 [ 1241.321511] ? kvasprintf+0xe9/0x150 [ 1241.322381] device_add+0x106f/0x1c50 [ 1241.323285] ? devlink_add_symlinks+0x970/0x970 [ 1241.324380] device_create_groups_vargs+0x207/0x280 [ 1241.325548] device_create+0xdc/0x120 [ 1241.326436] ? device_create_groups_vargs+0x280/0x280 [ 1241.327643] ? init_timer_key+0x12a/0x240 [ 1241.328621] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1241.329755] mac80211_hwsim_new_radio+0x376/0x4290 [ 1241.330893] ? trace_hardirqs_on+0x5b/0x180 [ 1241.331921] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1241.333011] ? __kmalloc+0x16e/0x390 [ 1241.333886] hwsim_new_radio_nl+0x991/0x1080 [ 1241.334925] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1241.336156] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1241.337686] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1241.339205] genl_family_rcv_msg_doit+0x22d/0x330 [ 1241.340342] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1241.341878] ? cap_capable+0x1cd/0x230 [ 1241.342800] ? ns_capable+0xe2/0x110 [ 1241.343677] genl_rcv_msg+0x36a/0x5a0 [ 1241.344566] ? genl_get_cmd+0x480/0x480 [ 1241.345500] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1241.346711] ? lock_release+0x680/0x680 [ 1241.347648] ? netlink_deliver_tap+0xf4/0xcc0 [ 1241.348696] netlink_rcv_skb+0x14b/0x430 [ 1241.349641] ? genl_get_cmd+0x480/0x480 [ 1241.350565] ? netlink_ack+0xab0/0xab0 [ 1241.351489] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1241.352552] ? is_vmalloc_addr+0x7b/0xb0 [ 1241.353501] genl_rcv+0x24/0x40 [ 1241.354274] netlink_unicast+0x54e/0x800 [ 1241.355231] ? netlink_attachskb+0x870/0x870 [ 1241.356268] netlink_sendmsg+0x90f/0xe00 [ 1241.357217] ? netlink_unicast+0x800/0x800 [ 1241.358210] ? netlink_unicast+0x800/0x800 [ 1241.359198] __sock_sendmsg+0x154/0x190 [ 1241.360133] ____sys_sendmsg+0x70d/0x870 [ 1241.361080] ? sock_write_iter+0x3d0/0x3d0 [ 1241.362059] ? do_recvmmsg+0x6d0/0x6d0 [ 1241.362972] ? lock_downgrade+0x6d0/0x6d0 [ 1241.363950] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1241.365175] ___sys_sendmsg+0xf3/0x170 [ 1241.366089] ? sendmsg_copy_msghdr+0x160/0x160 [ 1241.367154] ? __fget_files+0x2cf/0x520 [ 1241.368082] ? lock_downgrade+0x6d0/0x6d0 [ 1241.369044] ? find_held_lock+0x2c/0x110 [ 1241.369994] ? __fget_files+0x2f8/0x520 [ 1241.370923] ? __fget_light+0xea/0x290 [ 1241.371841] __sys_sendmsg+0xe5/0x1b0 [ 1241.372728] ? __sys_sendmsg_sock+0x40/0x40 [ 1241.373732] ? rcu_read_lock_any_held+0x75/0xa0 [ 1241.374838] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1241.376068] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1241.377268] do_syscall_64+0x33/0x40 [ 1241.378134] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1241.379329] RIP: 0033:0x7faee752eb19 [ 1241.380192] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1241.384480] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1241.386253] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 1241.387919] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1241.389574] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1241.391237] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1241.392894] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 [ 1241.455418] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. [ 1241.523217] FAULT_INJECTION: forcing a failure. [ 1241.523217] name failslab, interval 1, probability 0, space 0, times 0 [ 1241.524559] CPU: 1 PID: 8248 Comm: syz-executor.5 Not tainted 5.10.237 #1 [ 1241.525330] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1241.526270] Call Trace: [ 1241.526584] dump_stack+0x107/0x167 [ 1241.527000] should_fail.cold+0x5/0xa [ 1241.527449] ? create_object.isra.0+0x3a/0xa20 [ 1241.527971] should_failslab+0x5/0x20 [ 1241.528414] kmem_cache_alloc+0x5b/0x310 [ 1241.528888] create_object.isra.0+0x3a/0xa20 [ 1241.529385] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1241.529963] __kmalloc+0x16e/0x390 [ 1241.530375] genl_family_rcv_msg_attrs_parse.constprop.0+0xdb/0x280 [ 1241.531098] genl_family_rcv_msg_doit+0xda/0x330 [ 1241.531647] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1241.532398] ? cap_capable+0x1cd/0x230 [ 1241.532842] ? security_capable+0x95/0xc0 [ 1241.533317] ? ns_capable+0xe2/0x110 [ 1241.533739] genl_rcv_msg+0x36a/0x5a0 [ 1241.534175] ? genl_get_cmd+0x480/0x480 [ 1241.534632] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1241.535236] ? lock_release+0x680/0x680 [ 1241.535689] ? netlink_deliver_tap+0xf4/0xcc0 [ 1241.536202] netlink_rcv_skb+0x14b/0x430 [ 1241.536658] ? genl_get_cmd+0x480/0x480 [ 1241.537112] ? netlink_ack+0xab0/0xab0 [ 1241.537555] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1241.538073] ? is_vmalloc_addr+0x7b/0xb0 [ 1241.538542] genl_rcv+0x24/0x40 [ 1241.538914] netlink_unicast+0x54e/0x800 [ 1241.539383] ? netlink_attachskb+0x870/0x870 [ 1241.539902] netlink_sendmsg+0x90f/0xe00 [ 1241.540363] ? netlink_unicast+0x800/0x800 [ 1241.540859] ? netlink_unicast+0x800/0x800 [ 1241.541338] __sock_sendmsg+0x154/0x190 [ 1241.541801] ____sys_sendmsg+0x70d/0x870 [ 1241.542261] ? sock_write_iter+0x3d0/0x3d0 [ 1241.542742] ? do_recvmmsg+0x6d0/0x6d0 [ 1241.543182] ? lock_downgrade+0x6d0/0x6d0 [ 1241.543660] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1241.544262] ___sys_sendmsg+0xf3/0x170 [ 1241.544713] ? sendmsg_copy_msghdr+0x160/0x160 [ 1241.545236] ? __fget_files+0x2cf/0x520 [ 1241.545686] ? lock_downgrade+0x6d0/0x6d0 [ 1241.546156] ? find_held_lock+0x2c/0x110 [ 1241.546622] ? __fget_files+0x2f8/0x520 [ 1241.547081] ? __fget_light+0xea/0x290 [ 1241.547543] __sys_sendmsg+0xe5/0x1b0 [ 1241.547979] ? __sys_sendmsg_sock+0x40/0x40 [ 1241.548476] ? rcu_read_lock_any_held+0x75/0xa0 [ 1241.549014] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1241.549613] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1241.550207] do_syscall_64+0x33/0x40 [ 1241.550638] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1241.551225] RIP: 0033:0x7fd7004f8b19 [ 1241.551648] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1241.553714] RSP: 002b:00007fd6fda6e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1241.554581] RAX: ffffffffffffffda RBX: 00007fd70060bf60 RCX: 00007fd7004f8b19 [ 1241.555393] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1241.556200] RBP: 00007fd6fda6e1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1241.557006] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1241.557828] R13: 00007ffe37d3003f R14: 00007fd6fda6e300 R15: 0000000000022000 [ 1241.608517] FAULT_INJECTION: forcing a failure. [ 1241.608517] name failslab, interval 1, probability 0, space 0, times 0 [ 1241.611225] CPU: 0 PID: 8253 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1241.612786] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1241.614681] Call Trace: [ 1241.615298] dump_stack+0x107/0x167 [ 1241.616140] should_fail.cold+0x5/0xa [ 1241.617020] ? rfkill_alloc+0xa6/0x2c0 [ 1241.617910] should_failslab+0x5/0x20 [ 1241.618779] __kmalloc+0x72/0x390 [ 1241.619583] rfkill_alloc+0xa6/0x2c0 [ 1241.620436] wiphy_new_nm+0x12a3/0x1e00 [ 1241.621355] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1241.622402] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1241.623598] ? __local_bh_enable_ip+0x9d/0x100 [ 1241.624626] ? trace_hardirqs_on+0x5b/0x180 [ 1241.625618] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1241.626725] ? ____sys_sendmsg+0x70d/0x870 [ 1241.627697] ? ___sys_sendmsg+0xf3/0x170 [ 1241.628614] ? __sys_sendmsg+0xe5/0x1b0 [ 1241.629517] ? do_syscall_64+0x33/0x40 [ 1241.630405] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1241.631626] ? lock_acquire+0x197/0x470 [ 1241.632532] ? create_object.isra.0+0x3ad/0xa20 [ 1241.633583] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1241.634649] ? __kmalloc+0x16e/0x390 [ 1241.635512] hwsim_new_radio_nl+0x991/0x1080 [ 1241.636523] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1241.637721] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1241.639239] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1241.640716] genl_family_rcv_msg_doit+0x22d/0x330 [ 1241.641810] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1241.643312] ? cap_capable+0x1cd/0x230 [ 1241.644206] ? ns_capable+0xe2/0x110 [ 1241.645060] genl_rcv_msg+0x36a/0x5a0 [ 1241.645928] ? genl_get_cmd+0x480/0x480 [ 1241.646831] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1241.648020] ? lock_release+0x680/0x680 [ 1241.648925] ? netlink_deliver_tap+0xf4/0xcc0 [ 1241.649959] netlink_rcv_skb+0x14b/0x430 [ 1241.650874] ? genl_get_cmd+0x480/0x480 [ 1241.651795] ? netlink_ack+0xab0/0xab0 [ 1241.652697] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1241.653730] ? is_vmalloc_addr+0x7b/0xb0 [ 1241.654654] genl_rcv+0x24/0x40 [ 1241.655409] netlink_unicast+0x54e/0x800 [ 1241.656329] ? netlink_attachskb+0x870/0x870 [ 1241.657333] netlink_sendmsg+0x90f/0xe00 [ 1241.658271] ? netlink_unicast+0x800/0x800 [ 1241.659254] ? netlink_unicast+0x800/0x800 [ 1241.660212] __sock_sendmsg+0x154/0x190 [ 1241.661120] ____sys_sendmsg+0x70d/0x870 [ 1241.662040] ? sock_write_iter+0x3d0/0x3d0 [ 1241.662997] ? do_recvmmsg+0x6d0/0x6d0 [ 1241.663896] ? lock_downgrade+0x6d0/0x6d0 [ 1241.664837] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1241.666030] ___sys_sendmsg+0xf3/0x170 [ 1241.666923] ? sendmsg_copy_msghdr+0x160/0x160 [ 1241.667976] ? __fget_files+0x2cf/0x520 [ 1241.668875] ? lock_downgrade+0x6d0/0x6d0 [ 1241.669822] ? find_held_lock+0x2c/0x110 [ 1241.670752] ? __fget_files+0x2f8/0x520 [ 1241.671667] ? __fget_light+0xea/0x290 [ 1241.672560] __sys_sendmsg+0xe5/0x1b0 [ 1241.673432] ? __sys_sendmsg_sock+0x40/0x40 [ 1241.674407] ? rcu_read_lock_any_held+0x75/0xa0 [ 1241.675486] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1241.676680] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1241.677850] do_syscall_64+0x33/0x40 [ 1241.678703] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1241.679881] RIP: 0033:0x7fdcf09cab19 [ 1241.680736] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1241.684932] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1241.686656] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1241.688282] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1241.689917] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1241.691561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1241.693182] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 03:00:17 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 38) 03:00:17 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 15) 03:00:17 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 10) 03:00:17 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 34) 03:00:17 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, 0x0, 0x0) 03:00:17 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x20, 0x0, 0x0, 0x0, 0x4800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x5, 0x4}, 0x0, 0x0, 0x0, 0x0, 0xc5}, 0x0, 0x1, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000180)={{0x1, 0x1, 0x18, r0, {0x2}}, './mnt\x00'}) perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x3, 0x3, 0x4, 0x0, 0x7, 0x2000, 0x2, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8ad, 0x4, @perf_bp={&(0x7f0000000140), 0xf}, 0x1c002, 0x2, 0x5, 0x5, 0x10001, 0x9, 0x3f, 0x0, 0x3, 0x0, 0x7f}, 0xffffffffffffffff, 0xc, r1, 0x0) r2 = signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0) r3 = syz_io_uring_setup(0x3a7b, &(0x7f0000000480)={0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, r2}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0)=0x0, &(0x7f0000000080)=0x0) r6 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r6, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./mnt\x00', 0x0, 0x0, 0x0, 0x0, 0x0) syz_io_uring_setup(0x7bdf, &(0x7f0000000380)={0x0, 0x8a14, 0x878182130d812f64, 0x2, 0xc9, 0x0, r3}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000280), &(0x7f0000000400)=0x0) syz_io_uring_submit(r4, r7, &(0x7f0000000500)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r6, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x9) r8 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2000000, 0x810, r2, 0x0) r9 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r9, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000480)={0xa4, 0x26, 0x101, 0x0, 0x0, {0x1}, [@typed={0x90, 0x63, 0x0, 0x0, @binary="a0eab51f24f4074cfbfbbb07324cc62f701d9f2905855dd18b1f0d5ce7f3493090af5beef11c281fbcc10f4675223ffc29811a6d82c0c17acd7a40480a51d57b2b3cc217bf3558b4d61924aa0922349a895d495ac12b16cb2b0cb00a0c3d1fb5b695cfebd4ad94d1a5642d3ec010c0792e9f8a9bff9bc38d6a5f4c42eb9238b7bc3a2be2cefbfd2d17065093"}]}, 0xa4}, 0x1, 0x0, 0x0, 0xb0}, 0x8044) syz_io_uring_setup(0x22, &(0x7f0000000240)={0x0, 0x813d, 0x0, 0x0, 0x12d}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f00000b0000)=nil, &(0x7f00000002c0), &(0x7f0000002a40)) syz_io_uring_submit(r8, r7, &(0x7f0000001740)=@IORING_OP_RECVMSG={0xa, 0x4, 0x0, r2, 0x0, &(0x7f0000001700)={&(0x7f0000000540)=@nfc_llcp, 0x80, &(0x7f00000015c0)=[{&(0x7f00000005c0)=""/4096, 0x1000}], 0x1, &(0x7f0000001600)=""/216, 0xd8}, 0x0, 0x10000, 0x0, {0x2}}, 0x8d) clone3(&(0x7f0000000000)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) execveat(0xffffffffffffffff, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1100) close_range(r6, r1, 0x0) 03:00:17 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x48, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1257.476718] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 03:00:17 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xc, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1257.536542] netlink: 128 bytes leftover after parsing attributes in process `syz-executor.0'. 03:00:17 executing program 0: r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) sendmsg$nl_generic(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000006c0)=ANY=[@ANYBLOB="2400000c000000000000000002000000080000000000000008001000e000000100000000"], 0x24}}, 0x0) socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000006c0)={0x24, 0x1a, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x0, 0x0, 0x0, @u32}, @typed={0x8, 0x10, 0x0, 0x0, @ipv4=@multicast1}]}, 0x24}}, 0x0) mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180), 0x200000, &(0x7f00000001c0)=ANY=[@ANYBLOB="7472faeacf6f3d", @ANYRESHEX=r2, @ANYRES32, @ANYRESHEX, @ANYBLOB="2c64656275003d3030362c6d65ffffffffb07572"]) r3 = openat$rtc(0xffffffffffffff9c, 0x0, 0x0, 0x0) r4 = syz_io_uring_setup(0x205e8b, 0x0, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f00000004c0), 0x0) io_uring_register$IORING_REGISTER_BUFFERS(r4, 0x0, 0x0, 0x0) r5 = fsmount(r0, 0x1, 0x8) preadv2(r5, &(0x7f0000001680)=[{&(0x7f0000000240)=""/162, 0xa2}, {&(0x7f0000000300)=""/229, 0xe5}, {&(0x7f00000014c0)=""/162, 0xa2}, {&(0x7f0000000400)=""/4, 0x4}, {&(0x7f0000001580)=""/149, 0x95}, {&(0x7f0000001640)}], 0x6, 0x7, 0x401, 0x1e) openat$zero(0xffffffffffffff9c, &(0x7f0000001640), 0x434300, 0x0) ioctl$BTRFS_IOC_RM_DEV(0xffffffffffffffff, 0x5000940b, &(0x7f00000004c0)={{r3}, "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"}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x14, 0x1e, 0xc21}, 0x14}}, 0x0) ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f0000001700)={0x51, 0x4, 0x1000, {0xfffd, 0x3ff}, {0x7ff, 0x1a}, @rumble={0x5, 0xfdd0}}) socket$inet(0x2, 0x2, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000140)) [ 1257.620328] loop0: detected capacity change from 0 to 16776704 03:00:17 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x4c, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1257.657542] FAULT_INJECTION: forcing a failure. [ 1257.657542] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1257.660554] CPU: 0 PID: 8273 Comm: syz-executor.5 Not tainted 5.10.237 #1 [ 1257.662231] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1257.664280] Call Trace: [ 1257.664932] dump_stack+0x107/0x167 [ 1257.665827] should_fail.cold+0x5/0xa [ 1257.666783] __alloc_pages_nodemask+0x182/0x600 [ 1257.667939] ? __alloc_pages_slowpath.constprop.0+0x2170/0x2170 [ 1257.669405] ? __is_insn_slot_addr+0x14c/0x290 [ 1257.670535] ? lock_chain_count+0x20/0x20 [ 1257.671560] ? __kernel_text_address+0x9/0x40 [ 1257.672675] ? unwind_get_return_address+0x55/0xa0 [ 1257.673866] ? create_prof_cpu_mask+0x20/0x20 [ 1257.674961] ? arch_stack_walk+0x99/0xf0 [ 1257.675963] alloc_pages_current+0x187/0x280 [ 1257.677049] kmalloc_order+0x35/0x160 [ 1257.677966] kmalloc_order_trace+0x14/0xa0 [ 1257.678990] wiphy_new_nm+0x6f3/0x1e00 [ 1257.679948] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1257.681069] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1257.682340] ? __local_bh_enable_ip+0x9d/0x100 [ 1257.683488] ? trace_hardirqs_on+0x5b/0x180 [ 1257.684553] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1257.685754] ? ____sys_sendmsg+0x70d/0x870 [ 1257.686765] ? ___sys_sendmsg+0xf3/0x170 [ 1257.687762] ? __sys_sendmsg+0xe5/0x1b0 [ 1257.688710] ? do_syscall_64+0x33/0x40 [ 1257.689663] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1257.690966] ? lock_acquire+0x197/0x470 [ 1257.691937] ? create_object.isra.0+0x3ad/0xa20 [ 1257.693054] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1257.694183] ? __kmalloc+0x16e/0x390 [ 1257.695105] hwsim_new_radio_nl+0x991/0x1080 [ 1257.696189] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1257.697460] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1257.699081] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1257.700673] genl_family_rcv_msg_doit+0x22d/0x330 [ 1257.701861] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1257.703501] ? cap_capable+0x1cd/0x230 [ 1257.704463] ? ns_capable+0xe2/0x110 [ 1257.705381] genl_rcv_msg+0x36a/0x5a0 [ 1257.706318] ? genl_get_cmd+0x480/0x480 [ 1257.707312] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1257.708618] ? lock_release+0x680/0x680 [ 1257.709604] ? netlink_deliver_tap+0xf4/0xcc0 [ 1257.710723] netlink_rcv_skb+0x14b/0x430 [ 1257.711729] ? genl_get_cmd+0x480/0x480 [ 1257.712710] ? netlink_ack+0xab0/0xab0 [ 1257.713670] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1257.714769] ? is_vmalloc_addr+0x7b/0xb0 [ 1257.715770] genl_rcv+0x24/0x40 [ 1257.716571] netlink_unicast+0x54e/0x800 [ 1257.717581] ? netlink_attachskb+0x870/0x870 [ 1257.718672] netlink_sendmsg+0x90f/0xe00 [ 1257.719699] ? netlink_unicast+0x800/0x800 [ 1257.720764] ? netlink_unicast+0x800/0x800 [ 1257.721814] __sock_sendmsg+0x154/0x190 [ 1257.722789] ____sys_sendmsg+0x70d/0x870 [ 1257.723807] ? sock_write_iter+0x3d0/0x3d0 [ 1257.724835] ? do_recvmmsg+0x6d0/0x6d0 [ 1257.725774] ? lock_downgrade+0x6d0/0x6d0 [ 1257.726775] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1257.728083] ___sys_sendmsg+0xf3/0x170 [ 1257.729038] ? sendmsg_copy_msghdr+0x160/0x160 [ 1257.730165] ? __fget_files+0x2cf/0x520 [ 1257.731154] ? lock_downgrade+0x6d0/0x6d0 [ 1257.732183] ? find_held_lock+0x2c/0x110 [ 1257.733211] ? __fget_files+0x2f8/0x520 [ 1257.734187] ? __fget_light+0xea/0x290 [ 1257.735145] __sys_sendmsg+0xe5/0x1b0 [ 1257.736069] ? __sys_sendmsg_sock+0x40/0x40 [ 1257.737124] ? rcu_read_lock_any_held+0x75/0xa0 [ 1257.738272] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1257.739541] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1257.740789] do_syscall_64+0x33/0x40 [ 1257.741682] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1257.742932] RIP: 0033:0x7fd7004f8b19 [ 1257.743856] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1257.748387] RSP: 002b:00007fd6fda6e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1257.750257] RAX: ffffffffffffffda RBX: 00007fd70060bf60 RCX: 00007fd7004f8b19 [ 1257.752025] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1257.753779] RBP: 00007fd6fda6e1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1257.755543] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1257.757291] R13: 00007ffe37d3003f R14: 00007fd6fda6e300 R15: 0000000000022000 [ 1257.759251] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1257.763645] FAULT_INJECTION: forcing a failure. [ 1257.763645] name failslab, interval 1, probability 0, space 0, times 0 [ 1257.766532] CPU: 0 PID: 8276 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 1257.768209] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1257.770246] Call Trace: [ 1257.770892] dump_stack+0x107/0x167 [ 1257.771799] should_fail.cold+0x5/0xa [ 1257.772739] ? __kernfs_new_node+0xd4/0x860 [ 1257.773799] should_failslab+0x5/0x20 [ 1257.774732] kmem_cache_alloc+0x5b/0x310 [ 1257.775751] __kernfs_new_node+0xd4/0x860 [ 1257.776759] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1257.778039] ? kernfs_add_one+0x124/0x4d0 [ 1257.779047] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1257.780216] ? lock_acquire+0x197/0x470 [ 1257.781190] ? find_held_lock+0x2c/0x110 [ 1257.782184] ? sysfs_do_create_link_sd+0x82/0x140 [ 1257.783370] kernfs_new_node+0x18d/0x250 [ 1257.784383] kernfs_create_link+0xcb/0x230 [ 1257.785432] sysfs_do_create_link_sd+0x90/0x140 [ 1257.786567] sysfs_create_link+0x5f/0xc0 [ 1257.787584] device_add+0x5e1/0x1c50 [ 1257.788499] ? devlink_add_symlinks+0x970/0x970 [ 1257.789660] device_create_groups_vargs+0x207/0x280 [ 1257.790897] device_create+0xdc/0x120 [ 1257.791845] ? device_create_groups_vargs+0x280/0x280 [ 1257.793093] ? init_timer_key+0x12a/0x240 [ 1257.794102] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1257.795284] mac80211_hwsim_new_radio+0x376/0x4290 [ 1257.796495] ? trace_hardirqs_on+0x5b/0x180 [ 1257.797565] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1257.798693] ? __kmalloc+0x16e/0x390 [ 1257.799630] hwsim_new_radio_nl+0x991/0x1080 [ 1257.800713] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1257.801992] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1257.803624] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1257.805226] genl_family_rcv_msg_doit+0x22d/0x330 [ 1257.806406] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1257.808024] ? cap_capable+0x1cd/0x230 [ 1257.808965] ? ns_capable+0xe2/0x110 [ 1257.809892] genl_rcv_msg+0x36a/0x5a0 [ 1257.810832] ? genl_get_cmd+0x480/0x480 [ 1257.811825] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1257.813089] ? lock_release+0x680/0x680 [ 1257.814050] ? netlink_deliver_tap+0xf4/0xcc0 [ 1257.815155] netlink_rcv_skb+0x14b/0x430 [ 1257.816151] ? genl_get_cmd+0x480/0x480 [ 1257.817128] ? netlink_ack+0xab0/0xab0 [ 1257.818098] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1257.819207] ? is_vmalloc_addr+0x7b/0xb0 [ 1257.820223] genl_rcv+0x24/0x40 [ 1257.821041] netlink_unicast+0x54e/0x800 [ 1257.822045] ? netlink_attachskb+0x870/0x870 [ 1257.823117] netlink_sendmsg+0x90f/0xe00 [ 1257.824145] ? netlink_unicast+0x800/0x800 [ 1257.825193] ? netlink_unicast+0x800/0x800 [ 1257.826231] __sock_sendmsg+0x154/0x190 [ 1257.827201] ____sys_sendmsg+0x70d/0x870 [ 1257.828211] ? sock_write_iter+0x3d0/0x3d0 [ 1257.829227] ? do_recvmmsg+0x6d0/0x6d0 [ 1257.830188] ? lock_downgrade+0x6d0/0x6d0 [ 1257.831209] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1257.832507] ___sys_sendmsg+0xf3/0x170 [ 1257.833466] ? sendmsg_copy_msghdr+0x160/0x160 [ 1257.834591] ? __fget_files+0x2cf/0x520 [ 1257.835573] ? lock_downgrade+0x6d0/0x6d0 [ 1257.836598] ? find_held_lock+0x2c/0x110 [ 1257.837601] ? __fget_files+0x2f8/0x520 [ 1257.838592] ? __fget_light+0xea/0x290 [ 1257.839566] __sys_sendmsg+0xe5/0x1b0 [ 1257.840499] ? __sys_sendmsg_sock+0x40/0x40 [ 1257.841554] ? rcu_read_lock_any_held+0x75/0xa0 [ 1257.842724] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1257.844033] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1257.845313] do_syscall_64+0x33/0x40 [ 1257.846221] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1257.847495] RIP: 0033:0x7f051132ab19 [ 1257.848414] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1257.852955] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1257.854800] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 1257.856543] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1257.858283] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 1257.860032] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1257.861780] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 [ 1257.880231] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue 03:00:17 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xd, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1258.009578] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1258.011161] FAULT_INJECTION: forcing a failure. [ 1258.011161] name failslab, interval 1, probability 0, space 0, times 0 [ 1258.012787] CPU: 1 PID: 8279 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 1258.013766] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1258.014942] Call Trace: [ 1258.015333] dump_stack+0x107/0x167 [ 1258.015877] should_fail.cold+0x5/0xa [ 1258.016426] ? __kernfs_new_node+0xd4/0x860 [ 1258.017046] should_failslab+0x5/0x20 [ 1258.017583] kmem_cache_alloc+0x5b/0x310 [ 1258.018162] __kernfs_new_node+0xd4/0x860 [ 1258.018783] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1258.019485] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1258.020237] kernfs_new_node+0x18d/0x250 [ 1258.020818] kernfs_create_dir_ns+0x49/0x160 [ 1258.021454] sysfs_create_dir_ns+0x127/0x290 [ 1258.022074] ? sysfs_create_mount_point+0xb0/0xb0 [ 1258.022748] ? rwlock_bug.part.0+0x90/0x90 [ 1258.023346] ? class_dir_child_ns_type+0x9/0x60 [ 1258.024006] kobject_add_internal+0x25e/0xa30 [ 1258.024639] kobject_add+0x150/0x1c0 [ 1258.025165] ? kset_create_and_add+0x1a0/0x1a0 [ 1258.025818] ? lockdep_init_map_type+0x2c7/0x780 [ 1258.026493] device_add+0x35a/0x1c50 [ 1258.027020] ? devlink_add_symlinks+0x970/0x970 [ 1258.027689] device_create_groups_vargs+0x207/0x280 [ 1258.028389] device_create+0xdc/0x120 [ 1258.028926] ? device_create_groups_vargs+0x280/0x280 [ 1258.029651] ? init_timer_key+0x12a/0x240 [ 1258.030248] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1258.030930] mac80211_hwsim_new_radio+0x376/0x4290 [ 1258.031625] ? trace_hardirqs_on+0x5b/0x180 [ 1258.032245] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1258.032909] ? __kmalloc+0x16e/0x390 [ 1258.033618] hwsim_new_radio_nl+0x991/0x1080 [ 1258.034395] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1258.035194] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1258.036356] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1258.037403] genl_family_rcv_msg_doit+0x22d/0x330 [ 1258.038197] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1258.039339] ? cap_capable+0x1cd/0x230 [ 1258.039927] ? ns_capable+0xe2/0x110 [ 1258.040591] genl_rcv_msg+0x36a/0x5a0 [ 1258.041256] ? genl_get_cmd+0x480/0x480 [ 1258.041824] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1258.042717] ? lock_release+0x680/0x680 [ 1258.043351] ? netlink_deliver_tap+0xf4/0xcc0 [ 1258.044157] netlink_rcv_skb+0x14b/0x430 [ 1258.044857] ? genl_get_cmd+0x480/0x480 [ 1258.045448] ? netlink_ack+0xab0/0xab0 [ 1258.046104] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1258.046841] ? is_vmalloc_addr+0x7b/0xb0 [ 1258.047568] genl_rcv+0x24/0x40 [ 1258.048153] netlink_unicast+0x54e/0x800 [ 1258.048734] ? netlink_attachskb+0x870/0x870 [ 1258.049369] netlink_sendmsg+0x90f/0xe00 [ 1258.050084] ? netlink_unicast+0x800/0x800 [ 1258.050810] ? netlink_unicast+0x800/0x800 [ 1258.051404] __sock_sendmsg+0x154/0x190 [ 1258.051965] ____sys_sendmsg+0x70d/0x870 [ 1258.052631] ? sock_write_iter+0x3d0/0x3d0 [ 1258.053252] ? do_recvmmsg+0x6d0/0x6d0 [ 1258.053919] ? lock_downgrade+0x6d0/0x6d0 [ 1258.054553] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1258.055445] ___sys_sendmsg+0xf3/0x170 [ 1258.055990] ? sendmsg_copy_msghdr+0x160/0x160 [ 1258.056626] ? __fget_files+0x2cf/0x520 [ 1258.057312] ? lock_downgrade+0x6d0/0x6d0 [ 1258.057917] ? find_held_lock+0x2c/0x110 [ 1258.058491] ? __fget_files+0x2f8/0x520 [ 1258.059171] ? __fget_light+0xea/0x290 [ 1258.059732] __sys_sendmsg+0xe5/0x1b0 [ 1258.060371] ? __sys_sendmsg_sock+0x40/0x40 [ 1258.061113] ? rcu_read_lock_any_held+0x75/0xa0 [ 1258.061768] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1258.062494] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1258.063204] do_syscall_64+0x33/0x40 [ 1258.063725] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1258.064429] RIP: 0033:0x7faee752eb19 [ 1258.064948] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1258.067481] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1258.068537] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 1258.069625] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1258.070808] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1258.071846] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1258.072824] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 [ 1258.074653] kobject_add_internal failed for hwsim301 (error: -12 parent: mac80211_hwsim) [ 1258.081197] FAULT_INJECTION: forcing a failure. [ 1258.081197] name failslab, interval 1, probability 0, space 0, times 0 [ 1258.083432] CPU: 1 PID: 8278 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1258.084373] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1258.085507] Call Trace: [ 1258.085866] dump_stack+0x107/0x167 [ 1258.086369] should_fail.cold+0x5/0xa [ 1258.086886] ? create_object.isra.0+0x3a/0xa20 [ 1258.087516] should_failslab+0x5/0x20 [ 1258.088042] kmem_cache_alloc+0x5b/0x310 [ 1258.088597] create_object.isra.0+0x3a/0xa20 [ 1258.089193] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1258.089886] __kmalloc+0x16e/0x390 [ 1258.090383] rfkill_alloc+0xa6/0x2c0 [ 1258.090893] wiphy_new_nm+0x12a3/0x1e00 [ 1258.091451] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1258.092090] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1258.092801] ? __local_bh_enable_ip+0x9d/0x100 [ 1258.093422] ? trace_hardirqs_on+0x5b/0x180 [ 1258.094012] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1258.094682] ? ____sys_sendmsg+0x70d/0x870 [ 1258.095262] ? ___sys_sendmsg+0xf3/0x170 [ 1258.095824] ? __sys_sendmsg+0xe5/0x1b0 [ 1258.096356] ? do_syscall_64+0x33/0x40 [ 1258.096881] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1258.097613] ? lock_acquire+0x197/0x470 [ 1258.098152] ? create_object.isra.0+0x3ad/0xa20 [ 1258.098789] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1258.099413] ? __kmalloc+0x16e/0x390 [ 1258.099918] hwsim_new_radio_nl+0x991/0x1080 [ 1258.100530] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1258.101237] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1258.102125] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1258.103008] genl_family_rcv_msg_doit+0x22d/0x330 [ 1258.103668] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1258.104562] ? cap_capable+0x1cd/0x230 [ 1258.105104] ? ns_capable+0xe2/0x110 [ 1258.105623] genl_rcv_msg+0x36a/0x5a0 [ 1258.106136] ? genl_get_cmd+0x480/0x480 [ 1258.106672] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1258.107364] ? lock_release+0x680/0x680 [ 1258.107912] ? netlink_deliver_tap+0xf4/0xcc0 [ 1258.108513] netlink_rcv_skb+0x14b/0x430 [ 1258.109061] ? genl_get_cmd+0x480/0x480 [ 1258.109614] ? netlink_ack+0xab0/0xab0 [ 1258.110140] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1258.110749] ? is_vmalloc_addr+0x7b/0xb0 [ 1258.111293] genl_rcv+0x24/0x40 [ 1258.111743] netlink_unicast+0x54e/0x800 [ 1258.112290] ? netlink_attachskb+0x870/0x870 [ 1258.112899] netlink_sendmsg+0x90f/0xe00 [ 1258.113457] ? netlink_unicast+0x800/0x800 [ 1258.114042] ? netlink_unicast+0x800/0x800 [ 1258.114604] __sock_sendmsg+0x154/0x190 [ 1258.115136] ____sys_sendmsg+0x70d/0x870 [ 1258.115693] ? sock_write_iter+0x3d0/0x3d0 [ 1258.116249] ? do_recvmmsg+0x6d0/0x6d0 [ 1258.116769] ? lock_downgrade+0x6d0/0x6d0 [ 1258.117329] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1258.118094] ___sys_sendmsg+0xf3/0x170 [ 1258.118619] ? sendmsg_copy_msghdr+0x160/0x160 [ 1258.119293] ? __fget_files+0x2cf/0x520 [ 1258.119847] ? lock_downgrade+0x6d0/0x6d0 [ 1258.120416] ? find_held_lock+0x2c/0x110 [ 1258.120962] ? __fget_files+0x2f8/0x520 [ 1258.121493] ? __fget_light+0xea/0x290 [ 1258.122077] __sys_sendmsg+0xe5/0x1b0 [ 1258.122592] ? __sys_sendmsg_sock+0x40/0x40 [ 1258.123172] ? rcu_read_lock_any_held+0x75/0xa0 [ 1258.123823] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1258.124528] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1258.125266] do_syscall_64+0x33/0x40 [ 1258.125800] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1258.126502] RIP: 0033:0x7fdcf09cab19 [ 1258.127003] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1258.129581] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1258.130589] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1258.131558] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1258.132576] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1258.133535] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1258.134537] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 03:00:18 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 39) 03:00:18 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 11) 03:00:18 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 35) 03:00:18 executing program 0: ioctl$EVIOCGID(0xffffffffffffffff, 0x80084502, &(0x7f0000000380)=""/140) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) fremovexattr(r0, &(0x7f0000000440)=ANY=[@ANYRESOCT=r0]) sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="7c000000260001010000000000000000008000006500008008000000", @ANYRES32=0xee00, @ANYBLOB="0c0000000000000000000000080018007f0000011a0011da209b3ab1439ee7eb92371ce639242a927e2d1c35e4296dc6cbeb7dec7f4aafe073d0bb1c5da5e8220ea3b29a9f2a94e17cf1990944353c11453e0cc2d1610de67d000000"], 0x7c}, 0x1, 0x0, 0x0, 0xa0}, 0x0) syz_io_uring_setup(0x22, &(0x7f0000000240)={0x0, 0x813d, 0x0, 0x0, 0x12d}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f00000b0000)=nil, &(0x7f00000002c0), &(0x7f0000002a40)) pipe2(&(0x7f0000000040), 0x0) syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x802073, &(0x7f0000000700)=ANY=[@ANYRES16, @ANYRESOCT, @ANYRES64, @ANYRESDEC]) r2 = gettid() timer_create(0x4, &(0x7f00000000c0)={0x0, 0x27, 0x2, @tid=r2}, &(0x7f0000000100)) getpriority(0x1, r2) r3 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000140), 0x408000, 0x0) ioctl$EVIOCGSW(r3, 0x8040451b, &(0x7f0000000740)=""/4096) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_int(r4, 0x29, 0x49, 0x0, &(0x7f0000000040)) getuid() setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, &(0x7f0000002ec0)=0x20, 0x4) [ 1258.292861] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 03:00:18 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xe, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:00:18 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 16) 03:00:18 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e) [ 1258.373400] netlink: 88 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1258.374588] FAULT_INJECTION: forcing a failure. [ 1258.374588] name failslab, interval 1, probability 0, space 0, times 0 [ 1258.375888] CPU: 1 PID: 8300 Comm: syz-executor.5 Not tainted 5.10.237 #1 [ 1258.376678] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1258.377626] Call Trace: [ 1258.377938] dump_stack+0x107/0x167 [ 1258.378354] should_fail.cold+0x5/0xa [ 1258.378792] ? create_object.isra.0+0x3a/0xa20 [ 1258.379319] should_failslab+0x5/0x20 [ 1258.379768] kmem_cache_alloc+0x5b/0x310 [ 1258.380243] create_object.isra.0+0x3a/0xa20 [ 1258.380744] ? kasan_unpoison_shadow+0x33/0x50 [ 1258.381269] kmalloc_order+0xfe/0x160 [ 1258.381712] kmalloc_order_trace+0x14/0xa0 [ 1258.382201] wiphy_new_nm+0x6f3/0x1e00 [ 1258.382651] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1258.383188] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1258.383791] ? __local_bh_enable_ip+0x9d/0x100 [ 1258.384321] ? trace_hardirqs_on+0x5b/0x180 [ 1258.384818] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1258.385376] ? ____sys_sendmsg+0x70d/0x870 [ 1258.385864] ? ___sys_sendmsg+0xf3/0x170 [ 1258.386328] ? __sys_sendmsg+0xe5/0x1b0 [ 1258.386784] ? do_syscall_64+0x33/0x40 [ 1258.387233] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1258.387845] ? lock_acquire+0x197/0x470 [ 1258.388298] ? create_object.isra.0+0x3ad/0xa20 [ 1258.388829] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1258.389359] ? __kmalloc+0x16e/0x390 [ 1258.389785] hwsim_new_radio_nl+0x991/0x1080 [ 1258.390288] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1258.390890] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1258.391646] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1258.392393] genl_family_rcv_msg_doit+0x22d/0x330 [ 1258.392949] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1258.393698] ? cap_capable+0x1cd/0x230 [ 1258.394150] ? ns_capable+0xe2/0x110 [ 1258.394578] genl_rcv_msg+0x36a/0x5a0 [ 1258.395014] ? genl_get_cmd+0x480/0x480 [ 1258.395474] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1258.396065] ? lock_release+0x680/0x680 [ 1258.396520] netlink_rcv_skb+0x14b/0x430 [ 1258.396981] ? genl_get_cmd+0x480/0x480 [ 1258.397439] ? netlink_ack+0xab0/0xab0 [ 1258.397889] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1258.398406] ? is_vmalloc_addr+0x7b/0xb0 [ 1258.398870] genl_rcv+0x24/0x40 [ 1258.399243] netlink_unicast+0x54e/0x800 [ 1258.399718] ? netlink_attachskb+0x870/0x870 [ 1258.400233] netlink_sendmsg+0x90f/0xe00 [ 1258.400700] ? netlink_unicast+0x800/0x800 [ 1258.401189] ? netlink_unicast+0x800/0x800 [ 1258.401669] __sock_sendmsg+0x154/0x190 [ 1258.402123] ____sys_sendmsg+0x70d/0x870 [ 1258.402587] ? sock_write_iter+0x3d0/0x3d0 [ 1258.403066] ? do_recvmmsg+0x6d0/0x6d0 [ 1258.403526] ? lock_downgrade+0x6d0/0x6d0 [ 1258.403999] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1258.404602] ___sys_sendmsg+0xf3/0x170 [ 1258.405052] ? sendmsg_copy_msghdr+0x160/0x160 [ 1258.405579] ? __fget_files+0x2cf/0x520 [ 1258.406031] ? lock_downgrade+0x6d0/0x6d0 [ 1258.406506] ? find_held_lock+0x2c/0x110 [ 1258.406977] ? __fget_files+0x2f8/0x520 [ 1258.407446] ? __fget_light+0xea/0x290 [ 1258.407896] __sys_sendmsg+0xe5/0x1b0 [ 1258.408331] ? __sys_sendmsg_sock+0x40/0x40 [ 1258.408823] ? rcu_read_lock_any_held+0x75/0xa0 [ 1258.409363] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1258.409965] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1258.410554] do_syscall_64+0x33/0x40 [ 1258.410984] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1258.411584] RIP: 0033:0x7fd7004f8b19 [ 1258.412014] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1258.414107] RSP: 002b:00007fd6fda6e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1258.414979] RAX: ffffffffffffffda RBX: 00007fd70060bf60 RCX: 00007fd7004f8b19 [ 1258.415805] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1258.416615] RBP: 00007fd6fda6e1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1258.417428] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1258.418240] R13: 00007ffe37d3003f R14: 00007fd6fda6e300 R15: 0000000000022000 [ 1258.431861] netlink: 88 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1258.472710] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1258.473989] FAULT_INJECTION: forcing a failure. [ 1258.473989] name failslab, interval 1, probability 0, space 0, times 0 [ 1258.475331] CPU: 1 PID: 8302 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 1258.476126] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1258.477072] Call Trace: [ 1258.477384] dump_stack+0x107/0x167 [ 1258.477804] should_fail.cold+0x5/0xa [ 1258.478247] ? __kernfs_new_node+0xd4/0x860 [ 1258.478745] should_failslab+0x5/0x20 [ 1258.479181] kmem_cache_alloc+0x5b/0x310 [ 1258.479659] __kernfs_new_node+0xd4/0x860 [ 1258.480138] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1258.480747] ? kernfs_add_one+0x124/0x4d0 [ 1258.481226] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1258.481778] ? lock_acquire+0x197/0x470 [ 1258.482239] ? find_held_lock+0x2c/0x110 [ 1258.482709] ? sysfs_do_create_link_sd+0x82/0x140 [ 1258.483265] kernfs_new_node+0x18d/0x250 [ 1258.483745] kernfs_create_link+0xcb/0x230 [ 1258.484233] sysfs_do_create_link_sd+0x90/0x140 [ 1258.484770] sysfs_create_link+0x5f/0xc0 [ 1258.485239] device_add+0x5e1/0x1c50 [ 1258.485671] ? devlink_add_symlinks+0x970/0x970 [ 1258.486213] device_create_groups_vargs+0x207/0x280 [ 1258.486791] device_create+0xdc/0x120 [ 1258.487232] ? device_create_groups_vargs+0x280/0x280 [ 1258.487837] ? init_timer_key+0x12a/0x240 [ 1258.488317] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1258.488875] mac80211_hwsim_new_radio+0x376/0x4290 [ 1258.489433] ? trace_hardirqs_on+0x5b/0x180 [ 1258.489944] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1258.490482] ? __kmalloc+0x16e/0x390 [ 1258.490917] hwsim_new_radio_nl+0x991/0x1080 [ 1258.491434] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1258.492034] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1258.492789] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1258.493539] genl_family_rcv_msg_doit+0x22d/0x330 [ 1258.494095] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1258.494851] ? cap_capable+0x1cd/0x230 [ 1258.495307] ? ns_capable+0xe2/0x110 [ 1258.495746] genl_rcv_msg+0x36a/0x5a0 [ 1258.496185] ? genl_get_cmd+0x480/0x480 [ 1258.496641] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1258.497237] ? lock_release+0x680/0x680 [ 1258.497691] ? netlink_deliver_tap+0xf4/0xcc0 [ 1258.498212] netlink_rcv_skb+0x14b/0x430 [ 1258.498676] ? genl_get_cmd+0x480/0x480 [ 1258.499131] ? netlink_ack+0xab0/0xab0 [ 1258.499592] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1258.500114] ? is_vmalloc_addr+0x7b/0xb0 [ 1258.500581] genl_rcv+0x24/0x40 [ 1258.500958] netlink_unicast+0x54e/0x800 [ 1258.501429] ? netlink_attachskb+0x870/0x870 [ 1258.501940] netlink_sendmsg+0x90f/0xe00 [ 1258.502410] ? netlink_unicast+0x800/0x800 [ 1258.502899] ? netlink_unicast+0x800/0x800 [ 1258.503387] __sock_sendmsg+0x154/0x190 [ 1258.503853] ____sys_sendmsg+0x70d/0x870 [ 1258.504323] ? sock_write_iter+0x3d0/0x3d0 [ 1258.504806] ? do_recvmmsg+0x6d0/0x6d0 [ 1258.505257] ? lock_downgrade+0x6d0/0x6d0 [ 1258.505734] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1258.506342] ___sys_sendmsg+0xf3/0x170 [ 1258.506794] ? sendmsg_copy_msghdr+0x160/0x160 [ 1258.507324] ? __fget_files+0x2cf/0x520 [ 1258.507789] ? lock_downgrade+0x6d0/0x6d0 [ 1258.508263] ? find_held_lock+0x2c/0x110 [ 1258.508735] ? __fget_files+0x2f8/0x520 [ 1258.509199] ? __fget_light+0xea/0x290 [ 1258.509655] __sys_sendmsg+0xe5/0x1b0 [ 1258.510094] ? __sys_sendmsg_sock+0x40/0x40 [ 1258.510591] ? rcu_read_lock_any_held+0x75/0xa0 [ 1258.511137] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1258.511747] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1258.512342] do_syscall_64+0x33/0x40 [ 1258.512768] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1258.513360] RIP: 0033:0x7f051132ab19 [ 1258.513794] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1258.515917] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1258.516793] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 1258.517610] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1258.518432] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 1258.519253] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1258.520079] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 [ 1258.522483] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1258.523687] FAULT_INJECTION: forcing a failure. [ 1258.523687] name failslab, interval 1, probability 0, space 0, times 0 [ 1258.524984] CPU: 1 PID: 8304 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 1258.525765] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1258.526722] Call Trace: [ 1258.527025] dump_stack+0x107/0x167 [ 1258.527457] should_fail.cold+0x5/0xa [ 1258.527896] ? create_object.isra.0+0x3a/0xa20 [ 1258.528419] should_failslab+0x5/0x20 [ 1258.528855] kmem_cache_alloc+0x5b/0x310 [ 1258.529319] create_object.isra.0+0x3a/0xa20 [ 1258.529821] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1258.530404] kmem_cache_alloc+0x159/0x310 [ 1258.530887] __kernfs_new_node+0xd4/0x860 [ 1258.531367] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1258.531928] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1258.532533] kernfs_new_node+0x18d/0x250 [ 1258.533005] kernfs_create_dir_ns+0x49/0x160 [ 1258.533517] sysfs_create_dir_ns+0x127/0x290 [ 1258.534023] ? sysfs_create_mount_point+0xb0/0xb0 [ 1258.534576] ? rwlock_bug.part.0+0x90/0x90 [ 1258.535064] ? class_dir_child_ns_type+0x9/0x60 [ 1258.535608] kobject_add_internal+0x25e/0xa30 [ 1258.536128] kobject_add+0x150/0x1c0 [ 1258.536568] ? kset_create_and_add+0x1a0/0x1a0 [ 1258.537093] ? lockdep_init_map_type+0x2c7/0x780 [ 1258.537643] device_add+0x35a/0x1c50 [ 1258.538077] ? devlink_add_symlinks+0x970/0x970 [ 1258.538615] device_create_groups_vargs+0x207/0x280 [ 1258.539189] device_create+0xdc/0x120 [ 1258.539638] ? device_create_groups_vargs+0x280/0x280 [ 1258.540232] ? init_timer_key+0x12a/0x240 [ 1258.540714] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1258.541268] mac80211_hwsim_new_radio+0x376/0x4290 [ 1258.541831] ? trace_hardirqs_on+0x5b/0x180 [ 1258.542336] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1258.542875] ? __kmalloc+0x16e/0x390 [ 1258.543305] hwsim_new_radio_nl+0x991/0x1080 [ 1258.543824] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1258.544429] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1258.545189] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1258.545939] genl_family_rcv_msg_doit+0x22d/0x330 [ 1258.546495] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1258.547249] ? cap_capable+0x1cd/0x230 [ 1258.547708] ? ns_capable+0xe2/0x110 [ 1258.548136] genl_rcv_msg+0x36a/0x5a0 [ 1258.548577] ? genl_get_cmd+0x480/0x480 [ 1258.549032] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1258.549627] ? lock_release+0x680/0x680 [ 1258.550083] ? netlink_deliver_tap+0xf4/0xcc0 [ 1258.550601] netlink_rcv_skb+0x14b/0x430 [ 1258.551067] ? genl_get_cmd+0x480/0x480 [ 1258.551529] ? netlink_ack+0xab0/0xab0 [ 1258.551978] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1258.552506] ? is_vmalloc_addr+0x7b/0xb0 [ 1258.552975] genl_rcv+0x24/0x40 [ 1258.553355] netlink_unicast+0x54e/0x800 [ 1258.553827] ? netlink_attachskb+0x870/0x870 [ 1258.554341] netlink_sendmsg+0x90f/0xe00 [ 1258.554811] ? netlink_unicast+0x800/0x800 [ 1258.555313] ? netlink_unicast+0x800/0x800 [ 1258.555808] __sock_sendmsg+0x154/0x190 [ 1258.556262] ____sys_sendmsg+0x70d/0x870 [ 1258.556732] ? sock_write_iter+0x3d0/0x3d0 [ 1258.557212] ? do_recvmmsg+0x6d0/0x6d0 [ 1258.557662] ? lock_downgrade+0x6d0/0x6d0 [ 1258.558143] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1258.558748] ___sys_sendmsg+0xf3/0x170 [ 1258.559199] ? sendmsg_copy_msghdr+0x160/0x160 [ 1258.559735] ? __fget_files+0x2cf/0x520 [ 1258.560192] ? lock_downgrade+0x6d0/0x6d0 [ 1258.560670] ? find_held_lock+0x2c/0x110 [ 1258.561144] ? __fget_files+0x2f8/0x520 [ 1258.561605] ? __fget_light+0xea/0x290 [ 1258.562057] __sys_sendmsg+0xe5/0x1b0 [ 1258.562497] ? __sys_sendmsg_sock+0x40/0x40 [ 1258.562995] ? rcu_read_lock_any_held+0x75/0xa0 [ 1258.563553] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1258.564154] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1258.564742] do_syscall_64+0x33/0x40 [ 1258.565171] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1258.565760] RIP: 0033:0x7faee752eb19 [ 1258.566188] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1258.568304] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1258.569172] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 1258.569990] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1258.570803] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1258.571636] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1258.572458] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 [ 1258.674329] FAULT_INJECTION: forcing a failure. [ 1258.674329] name failslab, interval 1, probability 0, space 0, times 0 [ 1258.677094] CPU: 0 PID: 8312 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1258.678700] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1258.680659] Call Trace: [ 1258.681286] dump_stack+0x107/0x167 [ 1258.682181] should_fail.cold+0x5/0xa [ 1258.683096] ? kvmalloc_node+0x119/0x170 [ 1258.684073] should_failslab+0x5/0x20 [ 1258.684978] __kmalloc_node+0x76/0x420 [ 1258.685913] kvmalloc_node+0x119/0x170 [ 1258.686844] bucket_table_alloc.isra.0+0x88/0x490 [ 1258.687990] rhashtable_init+0x341/0x760 [ 1258.688942] rhltable_init+0x1c/0x60 [ 1258.689826] sta_info_init+0x1f/0x110 [ 1258.690739] ieee80211_alloc_hw_nm+0x6a0/0x2320 [ 1258.691856] ? trace_hardirqs_on+0x5b/0x180 [ 1258.692885] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1258.694053] ? ____sys_sendmsg+0x70d/0x870 [ 1258.695052] ? ___sys_sendmsg+0xf3/0x170 [ 1258.696025] ? __sys_sendmsg+0xe5/0x1b0 [ 1258.696977] ? do_syscall_64+0x33/0x40 [ 1258.697884] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1258.699131] ? lock_acquire+0x197/0x470 [ 1258.700089] ? create_object.isra.0+0x3ad/0xa20 [ 1258.701186] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1258.702281] ? __kmalloc+0x16e/0x390 [ 1258.703165] hwsim_new_radio_nl+0x991/0x1080 [ 1258.704198] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1258.705416] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1258.706941] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1258.708504] genl_family_rcv_msg_doit+0x22d/0x330 [ 1258.709643] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1258.711187] ? cap_capable+0x1cd/0x230 [ 1258.712132] ? ns_capable+0xe2/0x110 [ 1258.713006] genl_rcv_msg+0x36a/0x5a0 [ 1258.713898] ? genl_get_cmd+0x480/0x480 [ 1258.714836] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1258.716045] ? lock_release+0x680/0x680 [ 1258.716983] netlink_rcv_skb+0x14b/0x430 [ 1258.717923] ? genl_get_cmd+0x480/0x480 [ 1258.718841] ? netlink_ack+0xab0/0xab0 [ 1258.719767] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1258.720821] ? is_vmalloc_addr+0x7b/0xb0 [ 1258.721767] genl_rcv+0x24/0x40 [ 1258.722542] netlink_unicast+0x54e/0x800 [ 1258.723512] ? netlink_attachskb+0x870/0x870 [ 1258.724540] netlink_sendmsg+0x90f/0xe00 [ 1258.725497] ? netlink_unicast+0x800/0x800 [ 1258.726503] ? netlink_unicast+0x800/0x800 [ 1258.727490] __sock_sendmsg+0x154/0x190 [ 1258.728409] ____sys_sendmsg+0x70d/0x870 [ 1258.729365] ? sock_write_iter+0x3d0/0x3d0 [ 1258.730343] ? do_recvmmsg+0x6d0/0x6d0 [ 1258.731250] ? lock_downgrade+0x6d0/0x6d0 [ 1258.732224] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1258.733455] ___sys_sendmsg+0xf3/0x170 [ 1258.734363] ? sendmsg_copy_msghdr+0x160/0x160 [ 1258.735447] ? __fget_files+0x2cf/0x520 [ 1258.736375] ? lock_downgrade+0x6d0/0x6d0 [ 1258.737348] ? find_held_lock+0x2c/0x110 [ 1258.738302] ? __fget_files+0x2f8/0x520 [ 1258.739226] ? __fget_light+0xea/0x290 [ 1258.740142] __sys_sendmsg+0xe5/0x1b0 [ 1258.741022] ? __sys_sendmsg_sock+0x40/0x40 [ 1258.741999] ? rcu_read_lock_any_held+0x75/0xa0 [ 1258.743081] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1258.744294] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1258.745481] do_syscall_64+0x33/0x40 [ 1258.746342] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1258.747522] RIP: 0033:0x7fdcf09cab19 [ 1258.748374] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1258.752589] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1258.754342] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1258.755972] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1258.757604] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1258.759254] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1258.760904] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 03:00:34 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e) 03:00:34 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 17) 03:00:34 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 40) 03:00:34 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x4f, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:00:34 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x48040, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e22, @multicast1}, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000011c0)=ANY=[@ANYBLOB="180000001d00210c00000000000000000400020004001280a6ffbeb91721a560c2849f9d6bc557b0d3692506583a69e09f45d8b8d1328c161c7e7ef00cbe3823fa91b0284691ac80f4097d0ecb4335860fb353234dcbac6e2694634e9db925eff4d8a1b1a8e4083ddec25f2303ce19dd39cda7ad00c55561c45109ad542c376dc4ae95a27d4793"], 0x18}}, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000001280)={{0x1, 0x1, 0x18, r0, {0xffffffffffffffff}}, './file0\x00'}) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000010c0)='/proc/diskstats\x00', 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r2, 0xc0189373, &(0x7f0000001080)={{0x1, 0x1, 0x18, r0, {0x80000001}}, './file0\x00'}) sendmsg$NL80211_CMD_NEW_KEY(r3, &(0x7f0000001400)={&(0x7f0000001300)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000013c0)={&(0x7f0000001340)={0x64, 0x0, 0x20, 0x70bd28, 0x25dfdbfc, {{}, {@val={0x8}, @val={0xc, 0x99, {0xfffeffff, 0x7d}}}}, [@NL80211_ATTR_KEY_DATA_WEP40={0x9, 0x7, "9986adb301"}, @NL80211_ATTR_KEY={0x24, 0x50, 0x0, 0x1, [@NL80211_KEY_MODE={0x5, 0x9, 0x2}, @NL80211_KEY_DATA_WEP40={0x9, 0x1, "233ce8313a"}, @NL80211_KEY_TYPE={0x8, 0x7, 0x2}, @NL80211_KEY_DEFAULT={0x4}]}, @NL80211_ATTR_KEY_DEFAULT_MGMT={0x4}, @NL80211_ATTR_KEY_TYPE={0x8, 0x37, 0x2}]}, 0x64}}, 0xc0c0) syz_io_uring_setup(0x0, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r6 = socket$inet_tcp(0x2, 0x1, 0x0) r7 = socket$nl_xfrm(0x10, 0x3, 0x6) getsockopt$inet_tcp_int(r6, 0x6, 0x9, &(0x7f0000000040), &(0x7f00000001c0)=0x4) syz_io_uring_submit(r4, r5, &(0x7f0000001400)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x4, 0x0, r7}, 0x4) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r6, 0x0, &(0x7f00000029c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000002900)=""/158, 0x9e}, 0x0, 0x2203, 0x0, {0x1}}, 0x0) ioctl$BTRFS_IOC_RESIZE(0xffffffffffffffff, 0x50009403, &(0x7f0000000000)={{r6}, {@void, @actul_num={@val=0x2d, 0x5, 0x65}}}) pread64(r2, &(0x7f0000000040)=""/4126, 0x101e, 0x2000) ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r2) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x8000, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(r1, &(0x7f0000001100)=""/171, 0xab, 0x80) 03:00:34 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 12) 03:00:34 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 36) 03:00:34 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xf, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1274.346451] FAULT_INJECTION: forcing a failure. [ 1274.346451] name failslab, interval 1, probability 0, space 0, times 0 [ 1274.348239] CPU: 1 PID: 8327 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1274.349177] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1274.350315] Call Trace: [ 1274.350683] dump_stack+0x107/0x167 [ 1274.351190] should_fail.cold+0x5/0xa [ 1274.351728] ? create_object.isra.0+0x3a/0xa20 [ 1274.352366] should_failslab+0x5/0x20 [ 1274.352894] kmem_cache_alloc+0x5b/0x310 [ 1274.353456] create_object.isra.0+0x3a/0xa20 [ 1274.354060] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1274.354769] __kmalloc_node+0x1ae/0x420 [ 1274.355322] kvmalloc_node+0x119/0x170 [ 1274.355869] bucket_table_alloc.isra.0+0x88/0x490 [ 1274.356535] rhashtable_init+0x341/0x760 [ 1274.357092] rhltable_init+0x1c/0x60 [ 1274.357600] sta_info_init+0x1f/0x110 [ 1274.358120] ieee80211_alloc_hw_nm+0x6a0/0x2320 [ 1274.358756] ? trace_hardirqs_on+0x5b/0x180 [ 1274.359351] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1274.360028] ? ____sys_sendmsg+0x70d/0x870 [ 1274.360604] ? ___sys_sendmsg+0xf3/0x170 [ 1274.361167] ? __sys_sendmsg+0xe5/0x1b0 [ 1274.361709] ? do_syscall_64+0x33/0x40 [ 1274.362242] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1274.362985] ? lock_acquire+0x197/0x470 [ 1274.363526] ? create_object.isra.0+0x3ad/0xa20 [ 1274.364183] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1274.364821] ? __kmalloc+0x16e/0x390 [ 1274.365344] hwsim_new_radio_nl+0x991/0x1080 [ 1274.365956] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1274.366642] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1274.367553] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1274.368488] genl_family_rcv_msg_doit+0x22d/0x330 [ 1274.369171] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1274.370101] ? cap_capable+0x1cd/0x230 [ 1274.370665] ? ns_capable+0xe2/0x110 [ 1274.371191] genl_rcv_msg+0x36a/0x5a0 [ 1274.371740] ? genl_get_cmd+0x480/0x480 [ 1274.372300] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1274.373030] ? lock_release+0x680/0x680 [ 1274.373590] ? netlink_deliver_tap+0xf4/0xcc0 [ 1274.374225] netlink_rcv_skb+0x14b/0x430 [ 1274.374801] ? genl_get_cmd+0x480/0x480 [ 1274.375340] ? netlink_ack+0xab0/0xab0 [ 1274.375903] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1274.376547] ? is_vmalloc_addr+0x7b/0xb0 [ 1274.377122] genl_rcv+0x24/0x40 [ 1274.377588] netlink_unicast+0x54e/0x800 [ 1274.378143] ? netlink_attachskb+0x870/0x870 [ 1274.378774] netlink_sendmsg+0x90f/0xe00 [ 1274.379354] ? netlink_unicast+0x800/0x800 [ 1274.379959] ? netlink_unicast+0x800/0x800 [ 1274.380572] __sock_sendmsg+0x154/0x190 [ 1274.381139] ____sys_sendmsg+0x70d/0x870 [ 1274.381724] ? sock_write_iter+0x3d0/0x3d0 [ 1274.382320] ? do_recvmmsg+0x6d0/0x6d0 [ 1274.382843] ? lock_downgrade+0x6d0/0x6d0 [ 1274.383432] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1274.384191] ___sys_sendmsg+0xf3/0x170 [ 1274.384740] ? sendmsg_copy_msghdr+0x160/0x160 [ 1274.385396] ? __fget_files+0x2cf/0x520 [ 1274.385964] ? lock_downgrade+0x6d0/0x6d0 [ 1274.386560] ? find_held_lock+0x2c/0x110 [ 1274.387107] ? __fget_files+0x2f8/0x520 [ 1274.387671] ? __fget_light+0xea/0x290 [ 1274.388220] __sys_sendmsg+0xe5/0x1b0 [ 1274.388759] ? __sys_sendmsg_sock+0x40/0x40 [ 1274.389364] ? rcu_read_lock_any_held+0x75/0xa0 [ 1274.390030] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1274.390763] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1274.391486] do_syscall_64+0x33/0x40 [ 1274.392009] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1274.392727] RIP: 0033:0x7fdcf09cab19 [ 1274.393249] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1274.395855] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1274.396929] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1274.397954] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1274.398948] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1274.399944] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1274.400943] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 [ 1274.459819] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1274.462713] FAULT_INJECTION: forcing a failure. [ 1274.462713] name failslab, interval 1, probability 0, space 0, times 0 [ 1274.465666] CPU: 0 PID: 8325 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 1274.467379] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1274.469437] Call Trace: [ 1274.470091] dump_stack+0x107/0x167 [ 1274.470992] should_fail.cold+0x5/0xa [ 1274.471952] ? __kernfs_new_node+0xd4/0x860 [ 1274.473030] should_failslab+0x5/0x20 [ 1274.473986] kmem_cache_alloc+0x5b/0x310 [ 1274.474998] __kernfs_new_node+0xd4/0x860 [ 1274.476051] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1274.477241] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1274.478550] ? kernfs_add_one+0x124/0x4d0 [ 1274.479607] kernfs_new_node+0x18d/0x250 [ 1274.480614] __kernfs_create_file+0x51/0x350 [ 1274.481723] sysfs_add_file_mode_ns+0x221/0x560 [ 1274.482902] sysfs_create_file_ns+0x131/0x1d0 [ 1274.484038] ? sysfs_add_file_mode_ns+0x560/0x560 [ 1274.485209] ? is_acpi_device_node+0x6e/0x90 [ 1274.486314] device_create_file+0xea/0x1d0 [ 1274.487378] device_add+0x547/0x1c50 [ 1274.488292] ? devlink_add_symlinks+0x970/0x970 [ 1274.489454] device_create_groups_vargs+0x207/0x280 [ 1274.490709] device_create+0xdc/0x120 [ 1274.491677] ? device_create_groups_vargs+0x280/0x280 [ 1274.492964] ? init_timer_key+0x12a/0x240 [ 1274.494010] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1274.495225] mac80211_hwsim_new_radio+0x376/0x4290 [ 1274.496462] ? trace_hardirqs_on+0x5b/0x180 [ 1274.497536] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1274.498703] ? __kmalloc+0x16e/0x390 [ 1274.499654] hwsim_new_radio_nl+0x991/0x1080 [ 1274.500764] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1274.502074] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1274.503732] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1274.505375] genl_family_rcv_msg_doit+0x22d/0x330 [ 1274.506586] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1274.508251] ? cap_capable+0x1cd/0x230 [ 1274.509238] ? ns_capable+0xe2/0x110 [ 1274.510155] genl_rcv_msg+0x36a/0x5a0 [ 1274.511118] ? genl_get_cmd+0x480/0x480 [ 1274.512126] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1274.513424] ? lock_release+0x680/0x680 [ 1274.514421] ? netlink_deliver_tap+0xf4/0xcc0 [ 1274.515505] netlink_rcv_skb+0x14b/0x430 [ 1274.516545] ? genl_get_cmd+0x480/0x480 [ 1274.517550] ? netlink_ack+0xab0/0xab0 [ 1274.518540] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1274.519708] ? is_vmalloc_addr+0x7b/0xb0 [ 1274.520726] genl_rcv+0x24/0x40 [ 1274.521551] netlink_unicast+0x54e/0x800 [ 1274.522562] ? netlink_attachskb+0x870/0x870 [ 1274.523685] netlink_sendmsg+0x90f/0xe00 [ 1274.524714] ? netlink_unicast+0x800/0x800 [ 1274.525781] ? netlink_unicast+0x800/0x800 [ 1274.526846] __sock_sendmsg+0x154/0x190 [ 1274.527849] ____sys_sendmsg+0x70d/0x870 [ 1274.528874] ? sock_write_iter+0x3d0/0x3d0 [ 1274.529926] ? do_recvmmsg+0x6d0/0x6d0 [ 1274.530913] ? lock_downgrade+0x6d0/0x6d0 [ 1274.531927] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1274.533203] ___sys_sendmsg+0xf3/0x170 [ 1274.534150] ? sendmsg_copy_msghdr+0x160/0x160 [ 1274.535257] ? __fget_files+0x2cf/0x520 [ 1274.536261] ? lock_downgrade+0x6d0/0x6d0 [ 1274.537275] ? find_held_lock+0x2c/0x110 [ 1274.538299] ? __fget_files+0x2f8/0x520 [ 1274.539312] ? __fget_light+0xea/0x290 [ 1274.540300] __sys_sendmsg+0xe5/0x1b0 [ 1274.541260] ? __sys_sendmsg_sock+0x40/0x40 [ 1274.542330] ? rcu_read_lock_any_held+0x75/0xa0 [ 1274.543510] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1274.544844] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1274.546144] do_syscall_64+0x33/0x40 [ 1274.547081] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1274.548373] RIP: 0033:0x7faee752eb19 [ 1274.549313] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1274.553927] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1274.555835] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 1274.557624] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1274.559394] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1274.561190] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1274.562974] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 03:00:34 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 18) 03:00:34 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 37) [ 1274.630687] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. [ 1274.790758] FAULT_INJECTION: forcing a failure. [ 1274.790758] name failslab, interval 1, probability 0, space 0, times 0 [ 1274.793569] CPU: 0 PID: 8335 Comm: syz-executor.5 Not tainted 5.10.237 #1 [ 1274.795259] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1274.797308] Call Trace: [ 1274.797964] dump_stack+0x107/0x167 [ 1274.798847] should_fail.cold+0x5/0xa [ 1274.799805] should_failslab+0x5/0x20 [ 1274.800743] __kmalloc_track_caller+0x79/0x370 [ 1274.801871] ? kvasprintf_const+0x60/0x1a0 [ 1274.802890] kvasprintf+0xb5/0x150 [ 1274.803772] ? bust_spinlocks+0xe0/0xe0 [ 1274.804745] ? lock_release+0x680/0x680 [ 1274.805695] ? find_held_lock+0x2c/0x110 [ 1274.806705] kvasprintf_const+0x60/0x1a0 [ 1274.807695] kobject_set_name_vargs+0x56/0x150 [ 1274.808816] dev_set_name+0xbb/0xf0 [ 1274.809693] ? device_initialize+0x620/0x620 [ 1274.810757] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1274.812059] ? kmalloc_order+0xfe/0x160 [ 1274.813032] wiphy_new_nm+0x805/0x1e00 [ 1274.813993] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1274.815137] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1274.816432] ? __local_bh_enable_ip+0x9d/0x100 [ 1274.817543] ? trace_hardirqs_on+0x5b/0x180 [ 1274.818580] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1274.819790] ? ____sys_sendmsg+0x70d/0x870 [ 1274.820805] ? ___sys_sendmsg+0xf3/0x170 [ 1274.821786] ? __sys_sendmsg+0xe5/0x1b0 [ 1274.822729] ? do_syscall_64+0x33/0x40 [ 1274.823672] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1274.824968] ? lock_acquire+0x197/0x470 [ 1274.825950] ? create_object.isra.0+0x3ad/0xa20 [ 1274.827095] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1274.828230] ? __kmalloc+0x16e/0x390 [ 1274.829126] hwsim_new_radio_nl+0x991/0x1080 [ 1274.830198] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1274.831467] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1274.833092] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1274.834675] genl_family_rcv_msg_doit+0x22d/0x330 [ 1274.835864] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1274.837466] ? cap_capable+0x1cd/0x230 [ 1274.838434] ? ns_capable+0xe2/0x110 [ 1274.839337] genl_rcv_msg+0x36a/0x5a0 [ 1274.840290] ? genl_get_cmd+0x480/0x480 [ 1274.841250] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1274.842501] ? lock_release+0x680/0x680 [ 1274.843482] ? netlink_deliver_tap+0xf4/0xcc0 [ 1274.844596] netlink_rcv_skb+0x14b/0x430 [ 1274.845602] ? genl_get_cmd+0x480/0x480 [ 1274.846570] ? netlink_ack+0xab0/0xab0 [ 1274.847531] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1274.848671] ? is_vmalloc_addr+0x7b/0xb0 [ 1274.849672] genl_rcv+0x24/0x40 [ 1274.850495] netlink_unicast+0x54e/0x800 [ 1274.851495] ? netlink_attachskb+0x870/0x870 [ 1274.852590] netlink_sendmsg+0x90f/0xe00 [ 1274.853590] ? netlink_unicast+0x800/0x800 [ 1274.854639] ? netlink_unicast+0x800/0x800 [ 1274.855701] __sock_sendmsg+0x154/0x190 [ 1274.856620] ____sys_sendmsg+0x70d/0x870 [ 1274.857545] ? sock_write_iter+0x3d0/0x3d0 [ 1274.858501] ? do_recvmmsg+0x6d0/0x6d0 [ 1274.859386] ? lock_downgrade+0x6d0/0x6d0 [ 1274.860341] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1274.861529] ___sys_sendmsg+0xf3/0x170 [ 1274.862406] ? sendmsg_copy_msghdr+0x160/0x160 [ 1274.863439] ? __fget_files+0x2cf/0x520 [ 1274.864343] ? lock_downgrade+0x6d0/0x6d0 [ 1274.865276] ? find_held_lock+0x2c/0x110 [ 1274.866201] ? __fget_files+0x2f8/0x520 [ 1274.867104] ? __fget_light+0xea/0x290 [ 1274.867998] __sys_sendmsg+0xe5/0x1b0 [ 1274.868861] ? __sys_sendmsg_sock+0x40/0x40 [ 1274.869840] ? rcu_read_lock_any_held+0x75/0xa0 [ 1274.870926] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1274.872108] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1274.873273] do_syscall_64+0x33/0x40 [ 1274.874113] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1274.875280] RIP: 0033:0x7fd7004f8b19 [ 1274.876132] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1274.880306] RSP: 002b:00007fd6fda6e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1274.882020] RAX: ffffffffffffffda RBX: 00007fd70060bf60 RCX: 00007fd7004f8b19 [ 1274.883650] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1274.885274] RBP: 00007fd6fda6e1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1274.886893] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1274.888514] R13: 00007ffe37d3003f R14: 00007fd6fda6e300 R15: 0000000000022000 [ 1274.895161] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1274.897590] FAULT_INJECTION: forcing a failure. [ 1274.897590] name failslab, interval 1, probability 0, space 0, times 0 [ 1274.900159] CPU: 0 PID: 8326 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 1274.901735] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1274.903632] Call Trace: [ 1274.904233] dump_stack+0x107/0x167 [ 1274.905080] should_fail.cold+0x5/0xa [ 1274.905964] should_failslab+0x5/0x20 [ 1274.906831] __kmalloc_track_caller+0x79/0x370 [ 1274.907873] ? kstrdup_const+0x53/0x80 [ 1274.908771] kstrdup+0x36/0x70 [ 1274.909501] kstrdup_const+0x53/0x80 [ 1274.910345] __kernfs_new_node+0x9d/0x860 [ 1274.911303] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1274.912511] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1274.913595] ? lock_acquire+0x197/0x470 [ 1274.914499] ? find_held_lock+0x2c/0x110 [ 1274.915427] ? sysfs_do_create_link_sd+0x82/0x140 [ 1274.916536] kernfs_new_node+0x18d/0x250 [ 1274.917463] kernfs_create_link+0xcb/0x230 [ 1274.918436] sysfs_do_create_link_sd+0x90/0x140 [ 1274.919490] sysfs_create_link+0x5f/0xc0 [ 1274.920443] device_add+0x703/0x1c50 [ 1274.921297] ? devlink_add_symlinks+0x970/0x970 [ 1274.922370] device_create_groups_vargs+0x207/0x280 [ 1274.923509] device_create+0xdc/0x120 [ 1274.924399] ? device_create_groups_vargs+0x280/0x280 [ 1274.925569] ? init_timer_key+0x12a/0x240 [ 1274.926517] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1274.927640] mac80211_hwsim_new_radio+0x376/0x4290 [ 1274.928752] ? trace_hardirqs_on+0x5b/0x180 [ 1274.929758] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1274.930823] ? __kmalloc+0x16e/0x390 [ 1274.931682] hwsim_new_radio_nl+0x991/0x1080 [ 1274.932683] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1274.933875] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1274.935384] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1274.936878] genl_family_rcv_msg_doit+0x22d/0x330 [ 1274.937994] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1274.939490] ? cap_capable+0x1cd/0x230 [ 1274.940411] ? ns_capable+0xe2/0x110 [ 1274.941268] genl_rcv_msg+0x36a/0x5a0 [ 1274.942143] ? genl_get_cmd+0x480/0x480 [ 1274.943053] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1274.944240] ? lock_release+0x680/0x680 [ 1274.945149] ? netlink_deliver_tap+0xf4/0xcc0 [ 1274.946173] netlink_rcv_skb+0x14b/0x430 [ 1274.947094] ? genl_get_cmd+0x480/0x480 [ 1274.948002] ? netlink_ack+0xab0/0xab0 [ 1274.948896] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1274.949928] ? is_vmalloc_addr+0x7b/0xb0 [ 1274.950852] genl_rcv+0x24/0x40 [ 1274.951608] netlink_unicast+0x54e/0x800 [ 1274.952541] ? netlink_attachskb+0x870/0x870 [ 1274.953550] netlink_sendmsg+0x90f/0xe00 [ 1274.954489] ? netlink_unicast+0x800/0x800 [ 1274.955466] ? netlink_unicast+0x800/0x800 [ 1274.956431] __sock_sendmsg+0x154/0x190 [ 1274.957337] ____sys_sendmsg+0x70d/0x870 [ 1274.958261] ? sock_write_iter+0x3d0/0x3d0 [ 1274.959219] ? do_recvmmsg+0x6d0/0x6d0 [ 1274.960114] ? lock_downgrade+0x6d0/0x6d0 [ 1274.961054] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1274.962241] ___sys_sendmsg+0xf3/0x170 [ 1274.963135] ? sendmsg_copy_msghdr+0x160/0x160 [ 1274.964181] ? __fget_files+0x2cf/0x520 [ 1274.965080] ? lock_downgrade+0x6d0/0x6d0 [ 1274.966021] ? find_held_lock+0x2c/0x110 [ 1274.966951] ? __fget_files+0x2f8/0x520 [ 1274.967884] ? __fget_light+0xea/0x290 [ 1274.968783] __sys_sendmsg+0xe5/0x1b0 [ 1274.969653] ? __sys_sendmsg_sock+0x40/0x40 [ 1274.970632] ? rcu_read_lock_any_held+0x75/0xa0 [ 1274.971716] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1274.972911] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1274.974091] do_syscall_64+0x33/0x40 [ 1274.974938] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1274.976153] RIP: 0033:0x7f051132ab19 [ 1274.977007] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1274.981199] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1274.982938] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 1274.984560] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1274.986181] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 1274.987811] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1274.989428] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 [ 1275.004435] FAULT_INJECTION: forcing a failure. [ 1275.004435] name failslab, interval 1, probability 0, space 0, times 0 [ 1275.007625] CPU: 0 PID: 8341 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1275.009190] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1275.011097] Call Trace: [ 1275.011698] dump_stack+0x107/0x167 [ 1275.012524] should_fail.cold+0x5/0xa [ 1275.013396] should_failslab+0x5/0x20 [ 1275.014269] __kmalloc_track_caller+0x79/0x370 [ 1275.015308] ? kasprintf+0xbb/0xf0 [ 1275.016126] kvasprintf+0xb5/0x150 [ 1275.016941] ? bust_spinlocks+0xe0/0xe0 [ 1275.017856] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1275.019057] ? get_random_u32+0x3cb/0x670 [ 1275.020009] kasprintf+0xbb/0xf0 [ 1275.020774] ? kvasprintf_const+0x1a0/0x1a0 [ 1275.021757] ? lockdep_init_map_type+0x2c7/0x780 [ 1275.022838] ? lockdep_init_map_type+0x2c7/0x780 [ 1275.023931] ieee80211_alloc_led_names+0x82/0x420 [ 1275.025038] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1275.026108] ? trace_hardirqs_on+0x5b/0x180 [ 1275.027089] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1275.028201] ? ____sys_sendmsg+0x70d/0x870 [ 1275.029163] ? ___sys_sendmsg+0xf3/0x170 [ 1275.030075] ? __sys_sendmsg+0xe5/0x1b0 [ 1275.030979] ? do_syscall_64+0x33/0x40 [ 1275.031859] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1275.033063] ? lock_acquire+0x197/0x470 [ 1275.033963] ? create_object.isra.0+0x3ad/0xa20 [ 1275.035026] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1275.036087] ? __kmalloc+0x16e/0x390 [ 1275.036939] hwsim_new_radio_nl+0x991/0x1080 [ 1275.037939] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1275.039122] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1275.040615] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1275.042108] genl_family_rcv_msg_doit+0x22d/0x330 [ 1275.043211] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1275.044723] ? cap_capable+0x1cd/0x230 [ 1275.045629] ? ns_capable+0xe2/0x110 [ 1275.046483] genl_rcv_msg+0x36a/0x5a0 [ 1275.047351] ? genl_get_cmd+0x480/0x480 [ 1275.048269] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1275.049442] ? lock_release+0x680/0x680 [ 1275.050346] ? netlink_deliver_tap+0xf4/0xcc0 [ 1275.051374] netlink_rcv_skb+0x14b/0x430 [ 1275.052303] ? genl_get_cmd+0x480/0x480 [ 1275.053205] ? netlink_ack+0xab0/0xab0 [ 1275.054101] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1275.055129] ? is_vmalloc_addr+0x7b/0xb0 [ 1275.056068] genl_rcv+0x24/0x40 [ 1275.056813] netlink_unicast+0x54e/0x800 [ 1275.057736] ? netlink_attachskb+0x870/0x870 [ 1275.058745] netlink_sendmsg+0x90f/0xe00 [ 1275.059693] ? netlink_unicast+0x800/0x800 [ 1275.060686] ? netlink_unicast+0x800/0x800 [ 1275.061644] __sock_sendmsg+0x154/0x190 [ 1275.062540] ____sys_sendmsg+0x70d/0x870 [ 1275.063469] ? sock_write_iter+0x3d0/0x3d0 [ 1275.064441] ? do_recvmmsg+0x6d0/0x6d0 [ 1275.065337] ? lock_downgrade+0x6d0/0x6d0 [ 1275.066280] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1275.067474] ___sys_sendmsg+0xf3/0x170 [ 1275.068369] ? sendmsg_copy_msghdr+0x160/0x160 [ 1275.069412] ? __fget_files+0x2cf/0x520 [ 1275.070323] ? lock_downgrade+0x6d0/0x6d0 [ 1275.071265] ? find_held_lock+0x2c/0x110 [ 1275.072212] ? __fget_files+0x2f8/0x520 [ 1275.073131] ? __fget_light+0xea/0x290 [ 1275.074023] __sys_sendmsg+0xe5/0x1b0 [ 1275.074878] ? __sys_sendmsg_sock+0x40/0x40 [ 1275.075860] ? rcu_read_lock_any_held+0x75/0xa0 [ 1275.076936] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1275.078125] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1275.079295] do_syscall_64+0x33/0x40 [ 1275.080141] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1275.081324] RIP: 0033:0x7fdcf09cab19 [ 1275.082171] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1275.086367] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1275.088105] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1275.089725] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1275.091348] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1275.092980] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1275.094635] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 [ 1275.163814] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1275.166196] FAULT_INJECTION: forcing a failure. [ 1275.166196] name failslab, interval 1, probability 0, space 0, times 0 [ 1275.168741] CPU: 1 PID: 8343 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 1275.170298] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1275.172083] Call Trace: [ 1275.172649] dump_stack+0x107/0x167 [ 1275.173449] should_fail.cold+0x5/0xa [ 1275.174272] ? create_object.isra.0+0x3a/0xa20 [ 1275.175253] should_failslab+0x5/0x20 [ 1275.176100] kmem_cache_alloc+0x5b/0x310 [ 1275.176986] create_object.isra.0+0x3a/0xa20 [ 1275.177928] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1275.179025] kmem_cache_alloc+0x159/0x310 [ 1275.179940] __kernfs_new_node+0xd4/0x860 [ 1275.180850] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1275.181874] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1275.183003] ? kernfs_add_one+0x124/0x4d0 [ 1275.183927] kernfs_new_node+0x18d/0x250 [ 1275.184817] __kernfs_create_file+0x51/0x350 [ 1275.185757] sysfs_add_file_mode_ns+0x221/0x560 [ 1275.186771] sysfs_create_file_ns+0x131/0x1d0 [ 1275.187744] ? sysfs_add_file_mode_ns+0x560/0x560 [ 1275.188802] ? is_acpi_device_node+0x6e/0x90 [ 1275.189751] device_create_file+0xea/0x1d0 [ 1275.190652] device_add+0x547/0x1c50 [ 1275.191459] ? devlink_add_symlinks+0x970/0x970 [ 1275.192483] device_create_groups_vargs+0x207/0x280 [ 1275.193571] device_create+0xdc/0x120 [ 1275.194390] ? device_create_groups_vargs+0x280/0x280 [ 1275.195498] ? init_timer_key+0x12a/0x240 [ 1275.196409] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1275.197466] mac80211_hwsim_new_radio+0x376/0x4290 [ 1275.198510] ? trace_hardirqs_on+0x5b/0x180 [ 1275.199457] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1275.200471] ? __kmalloc+0x16e/0x390 [ 1275.201284] hwsim_new_radio_nl+0x991/0x1080 [ 1275.202234] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1275.203351] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1275.204480] genl_family_rcv_msg_doit+0x22d/0x330 [ 1275.205526] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1275.206949] ? cap_capable+0x1cd/0x230 [ 1275.207809] ? ns_capable+0xe2/0x110 [ 1275.208599] genl_rcv_msg+0x36a/0x5a0 [ 1275.209443] ? genl_get_cmd+0x480/0x480 [ 1275.210308] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1275.211414] ? lock_release+0x680/0x680 [ 1275.212286] ? netlink_deliver_tap+0xf4/0xcc0 [ 1275.213248] netlink_rcv_skb+0x14b/0x430 [ 1275.214132] ? genl_get_cmd+0x480/0x480 [ 1275.215001] ? netlink_ack+0xab0/0xab0 [ 1275.215853] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1275.216832] ? is_vmalloc_addr+0x7b/0xb0 [ 1275.217701] genl_rcv+0x24/0x40 [ 1275.218407] netlink_unicast+0x54e/0x800 [ 1275.219301] ? netlink_attachskb+0x870/0x870 [ 1275.220282] netlink_sendmsg+0x90f/0xe00 [ 1275.221158] ? netlink_unicast+0x800/0x800 [ 1275.222093] ? netlink_unicast+0x800/0x800 [ 1275.222999] __sock_sendmsg+0x154/0x190 [ 1275.223884] ____sys_sendmsg+0x70d/0x870 [ 1275.224766] ? sock_write_iter+0x3d0/0x3d0 [ 1275.225657] ? do_recvmmsg+0x6d0/0x6d0 [ 1275.226495] ? lock_downgrade+0x6d0/0x6d0 [ 1275.227387] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1275.228530] ___sys_sendmsg+0xf3/0x170 [ 1275.229386] ? sendmsg_copy_msghdr+0x160/0x160 [ 1275.230377] ? __fget_files+0x2cf/0x520 [ 1275.231256] ? lock_downgrade+0x6d0/0x6d0 [ 1275.232165] ? find_held_lock+0x2c/0x110 [ 1275.233066] ? __fget_files+0x2f8/0x520 [ 1275.233934] ? __fget_light+0xea/0x290 [ 1275.234785] __sys_sendmsg+0xe5/0x1b0 [ 1275.235604] ? __sys_sendmsg_sock+0x40/0x40 [ 1275.236537] ? rcu_read_lock_any_held+0x75/0xa0 [ 1275.237574] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1275.238710] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1275.239845] do_syscall_64+0x33/0x40 [ 1275.240638] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1275.241762] RIP: 0033:0x7faee752eb19 [ 1275.242551] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1275.246517] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1275.248183] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 1275.249734] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1275.251267] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1275.252828] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1275.254345] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 03:00:50 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:00:50 executing program 0: r0 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000a00)=ANY=[], 0x98a) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = getpgrp(0x0) pidfd_open(r3, 0x0) fcntl$lock(r2, 0x25, &(0x7f0000000300)={0x2, 0x4, 0x7, 0x9}) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000080)=ANY=[@ANYBLOB="00000000fffffdfd020100000000000000000000000000000000000000000000000000000000000000000000000000000000000000a8fa3cb18b24ee858f377cf600000000000000000000000000000000000000000000000000000000000000005f4d4e19584c71d70b1848810000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000004000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004e2b0c1fae4855f3294b3020761d0000009cb3e96e49c7"]) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000001c0)={'macsec0\x00', &(0x7f0000000340)=ANY=[@ANYBLOB="3c00000001000000030015c1e10000030000000220000001dee8fc131fc92b570000000100008068fb93f20624d998bb2382fbef2e605d20efd13ad8020454fe726d5ec46065bf6e5c2fd748b7382cb035aee7d076757e09d86ab4476c81ec7492a8001ef183a88f20ca72ab1f4b3d6076dc6050178704c3f670e38e23"]}) ioctl$TUNSETPERSIST(r0, 0x400454cb, 0x1) r4 = dup(0xffffffffffffffff) ioctl$SCSI_IOCTL_STOP_UNIT(r0, 0x6) close(r0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000200)='/proc/consoles\x00', 0x0, 0x0) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x2010, r1, 0x10000000) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_FSYNC={0x3, 0x3, 0x0, @fd=r1, 0x0, 0x0, 0x0, 0x1, 0x0, {0x0, r5}}, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) unshare(0x48020200) 03:00:50 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 38) 03:00:50 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e) 03:00:50 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 13) [ 1290.054081] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 03:00:50 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 41) 03:00:50 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 19) 03:00:50 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x52, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:00:50 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x55, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1290.171145] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1290.176960] FAULT_INJECTION: forcing a failure. [ 1290.176960] name failslab, interval 1, probability 0, space 0, times 0 [ 1290.179556] CPU: 0 PID: 8358 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 1290.181130] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1290.183023] Call Trace: [ 1290.183634] dump_stack+0x107/0x167 [ 1290.184474] should_fail.cold+0x5/0xa [ 1290.185366] ? create_object.isra.0+0x3a/0xa20 [ 1290.186415] should_failslab+0x5/0x20 [ 1290.187290] kmem_cache_alloc+0x5b/0x310 [ 1290.188234] create_object.isra.0+0x3a/0xa20 [ 1290.189241] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1290.190405] __kmalloc_track_caller+0x177/0x370 [ 1290.191469] ? kstrdup_const+0x53/0x80 [ 1290.192370] kstrdup+0x36/0x70 [ 1290.193121] kstrdup_const+0x53/0x80 [ 1290.193968] __kernfs_new_node+0x9d/0x860 03:00:50 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x11, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1290.194922] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1290.196287] ? rwlock_bug.part.0+0x90/0x90 [ 1290.197252] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1290.198325] ? wake_up_q+0xab/0x110 [ 1290.199171] ? do_raw_spin_unlock+0x4f/0x220 [ 1290.200214] ? lock_acquire+0x197/0x470 [ 1290.201140] ? find_held_lock+0x2c/0x110 [ 1290.202094] ? sysfs_do_create_link_sd+0x82/0x140 [ 1290.203231] kernfs_new_node+0x18d/0x250 [ 1290.204200] kernfs_create_link+0xcb/0x230 [ 1290.205192] sysfs_do_create_link_sd+0x90/0x140 [ 1290.206283] sysfs_create_link+0x5f/0xc0 [ 1290.207238] device_add+0x703/0x1c50 [ 1290.208114] ? devlink_add_symlinks+0x970/0x970 [ 1290.209212] device_create_groups_vargs+0x207/0x280 [ 1290.210385] device_create+0xdc/0x120 [ 1290.211282] ? device_create_groups_vargs+0x280/0x280 [ 1290.212504] ? init_timer_key+0x12a/0x240 [ 1290.213484] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1290.214627] mac80211_hwsim_new_radio+0x376/0x4290 [ 1290.215788] ? trace_hardirqs_on+0x5b/0x180 [ 1290.216820] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1290.217917] ? __kmalloc+0x16e/0x390 [ 1290.218802] hwsim_new_radio_nl+0x991/0x1080 [ 1290.219848] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1290.221086] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1290.222647] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1290.224189] genl_family_rcv_msg_doit+0x22d/0x330 [ 1290.225329] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1290.226878] ? cap_capable+0x1cd/0x230 [ 1290.227809] ? ns_capable+0xe2/0x110 [ 1290.228689] genl_rcv_msg+0x36a/0x5a0 [ 1290.229581] ? genl_get_cmd+0x480/0x480 [ 1290.230516] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1290.231739] ? lock_release+0x680/0x680 [ 1290.232673] ? netlink_deliver_tap+0xf4/0xcc0 [ 1290.233723] netlink_rcv_skb+0x14b/0x430 [ 1290.234676] ? genl_get_cmd+0x480/0x480 [ 1290.235611] ? netlink_ack+0xab0/0xab0 [ 1290.236537] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1290.237608] ? is_vmalloc_addr+0x7b/0xb0 [ 1290.238561] genl_rcv+0x24/0x40 [ 1290.239331] netlink_unicast+0x54e/0x800 [ 1290.240291] ? netlink_attachskb+0x870/0x870 [ 1290.241333] netlink_sendmsg+0x90f/0xe00 [ 1290.242283] ? netlink_unicast+0x800/0x800 [ 1290.243284] ? netlink_unicast+0x800/0x800 [ 1290.244284] __sock_sendmsg+0x154/0x190 [ 1290.245213] ____sys_sendmsg+0x70d/0x870 [ 1290.246167] ? sock_write_iter+0x3d0/0x3d0 [ 1290.247154] ? do_recvmmsg+0x6d0/0x6d0 [ 1290.248074] ? lock_downgrade+0x6d0/0x6d0 [ 1290.249045] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1290.250273] ___sys_sendmsg+0xf3/0x170 [ 1290.251190] ? sendmsg_copy_msghdr+0x160/0x160 [ 1290.252265] ? __fget_files+0x2cf/0x520 [ 1290.253194] ? lock_downgrade+0x6d0/0x6d0 [ 1290.254164] ? find_held_lock+0x2c/0x110 [ 1290.255126] ? __fget_files+0x2f8/0x520 [ 1290.256072] ? __fget_light+0xea/0x290 [ 1290.256988] __sys_sendmsg+0xe5/0x1b0 [ 1290.257874] ? __sys_sendmsg_sock+0x40/0x40 [ 1290.258878] ? rcu_read_lock_any_held+0x75/0xa0 [ 1290.259985] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1290.261208] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1290.262414] do_syscall_64+0x33/0x40 [ 1290.263282] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1290.264486] RIP: 0033:0x7f051132ab19 [ 1290.265351] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1290.269642] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1290.271412] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 1290.273078] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1290.274735] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 1290.276397] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1290.278058] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 03:00:50 executing program 0: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f00000001c0), 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000300)={0x0}, 0x1, 0x0, 0x0, 0x20000001}, 0x0) syz_80211_inject_frame(&(0x7f0000000300)=@device_b, &(0x7f0000000040)=ANY=[@ANYBLOB="800000000802ba08000000e8ffffff000000005065000000060202020202020100"], 0x2e) syz_open_dev$ptys(0xc, 0x3, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_MCAST_LEAVE_GROUP(r1, 0x29, 0x2d, 0x0, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) nanosleep(&(0x7f0000000080)={0x0, 0x4c4b40}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0xe, 0xffffffffffffffff, 0x0) ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f00000000c0)={@ipv4={'\x00', '\xff\xff', @multicast1}}) [ 1290.387981] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1290.389311] FAULT_INJECTION: forcing a failure. [ 1290.389311] name failslab, interval 1, probability 0, space 0, times 0 [ 1290.390625] CPU: 1 PID: 8359 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 1290.391416] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1290.392373] Call Trace: [ 1290.392685] dump_stack+0x107/0x167 [ 1290.393106] should_fail.cold+0x5/0xa [ 1290.393553] ? __kernfs_new_node+0xd4/0x860 [ 1290.394055] should_failslab+0x5/0x20 [ 1290.394495] kmem_cache_alloc+0x5b/0x310 [ 1290.394967] __kernfs_new_node+0xd4/0x860 [ 1290.395445] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1290.396059] ? kernfs_add_one+0x124/0x4d0 [ 1290.396537] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1290.397087] ? lock_acquire+0x197/0x470 [ 1290.397544] ? find_held_lock+0x2c/0x110 [ 1290.398014] ? sysfs_do_create_link_sd+0x82/0x140 [ 1290.398571] kernfs_new_node+0x18d/0x250 [ 1290.399044] kernfs_create_link+0xcb/0x230 [ 1290.399532] sysfs_do_create_link_sd+0x90/0x140 [ 1290.400075] sysfs_create_link+0x5f/0xc0 [ 1290.400547] device_add+0x5e1/0x1c50 [ 1290.400979] ? devlink_add_symlinks+0x970/0x970 [ 1290.401523] device_create_groups_vargs+0x207/0x280 [ 1290.402100] device_create+0xdc/0x120 [ 1290.402541] ? device_create_groups_vargs+0x280/0x280 [ 1290.403138] ? init_timer_key+0x12a/0x240 [ 1290.403617] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1290.404186] mac80211_hwsim_new_radio+0x376/0x4290 [ 1290.404743] ? trace_hardirqs_on+0x5b/0x180 [ 1290.405246] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1290.405777] ? __kmalloc+0x16e/0x390 [ 1290.406206] hwsim_new_radio_nl+0x991/0x1080 [ 1290.406712] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1290.407315] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1290.408076] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1290.408827] genl_family_rcv_msg_doit+0x22d/0x330 [ 1290.409381] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1290.410132] ? cap_capable+0x1cd/0x230 [ 1290.410586] ? ns_capable+0xe2/0x110 [ 1290.411014] genl_rcv_msg+0x36a/0x5a0 [ 1290.411449] ? genl_get_cmd+0x480/0x480 [ 1290.411910] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1290.412498] ? lock_release+0x680/0x680 [ 1290.412947] ? netlink_deliver_tap+0xf4/0xcc0 [ 1290.413461] netlink_rcv_skb+0x14b/0x430 [ 1290.413924] ? genl_get_cmd+0x480/0x480 [ 1290.414377] ? netlink_ack+0xab0/0xab0 [ 1290.414823] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1290.415344] ? is_vmalloc_addr+0x7b/0xb0 [ 1290.415817] genl_rcv+0x24/0x40 [ 1290.416196] netlink_unicast+0x54e/0x800 [ 1290.416662] ? netlink_attachskb+0x870/0x870 [ 1290.417167] netlink_sendmsg+0x90f/0xe00 [ 1290.417633] ? netlink_unicast+0x800/0x800 [ 1290.418118] ? netlink_unicast+0x800/0x800 [ 1290.418601] __sock_sendmsg+0x154/0x190 [ 1290.419053] ____sys_sendmsg+0x70d/0x870 [ 1290.419516] ? sock_write_iter+0x3d0/0x3d0 [ 1290.420003] ? do_recvmmsg+0x6d0/0x6d0 [ 1290.420451] ? lock_downgrade+0x6d0/0x6d0 [ 1290.420925] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1290.421525] ___sys_sendmsg+0xf3/0x170 [ 1290.421968] ? sendmsg_copy_msghdr+0x160/0x160 [ 1290.422492] ? __fget_files+0x2cf/0x520 [ 1290.422943] ? lock_downgrade+0x6d0/0x6d0 [ 1290.423415] ? find_held_lock+0x2c/0x110 [ 1290.423889] ? __fget_files+0x2f8/0x520 [ 1290.424349] ? __fget_light+0xea/0x290 [ 1290.424796] __sys_sendmsg+0xe5/0x1b0 [ 1290.425230] ? __sys_sendmsg_sock+0x40/0x40 [ 1290.425724] ? rcu_read_lock_any_held+0x75/0xa0 [ 1290.426263] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1290.426865] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1290.427456] do_syscall_64+0x33/0x40 [ 1290.427887] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1290.428474] RIP: 0033:0x7faee752eb19 [ 1290.428901] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1290.430991] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1290.431865] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 1290.432679] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1290.433493] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1290.434306] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1290.435121] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 [ 1290.438197] FAULT_INJECTION: forcing a failure. [ 1290.438197] name failslab, interval 1, probability 0, space 0, times 0 [ 1290.439534] CPU: 1 PID: 8362 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1290.440336] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1290.441284] Call Trace: [ 1290.441587] dump_stack+0x107/0x167 [ 1290.442005] should_fail.cold+0x5/0xa [ 1290.442440] ? create_object.isra.0+0x3a/0xa20 [ 1290.442969] should_failslab+0x5/0x20 [ 1290.443401] kmem_cache_alloc+0x5b/0x310 [ 1290.443875] ? vsnprintf+0x4ba/0x1600 [ 1290.444313] create_object.isra.0+0x3a/0xa20 [ 1290.444817] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1290.445397] __kmalloc_track_caller+0x177/0x370 [ 1290.445929] ? kasprintf+0xbb/0xf0 [ 1290.446338] kvasprintf+0xb5/0x150 [ 1290.446745] ? bust_spinlocks+0xe0/0xe0 [ 1290.447206] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1290.447835] ? get_random_u32+0x3cb/0x670 [ 1290.448315] kasprintf+0xbb/0xf0 [ 1290.448705] ? kvasprintf_const+0x1a0/0x1a0 [ 1290.449202] ? lockdep_init_map_type+0x2c7/0x780 [ 1290.449748] ? lockdep_init_map_type+0x2c7/0x780 [ 1290.450299] ieee80211_alloc_led_names+0x82/0x420 [ 1290.450853] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1290.451403] ? trace_hardirqs_on+0x5b/0x180 [ 1290.451910] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1290.452466] ? ____sys_sendmsg+0x70d/0x870 [ 1290.452954] ? ___sys_sendmsg+0xf3/0x170 [ 1290.453417] ? __sys_sendmsg+0xe5/0x1b0 [ 1290.453870] ? do_syscall_64+0x33/0x40 [ 1290.454317] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1290.454928] ? lock_acquire+0x197/0x470 [ 1290.455389] ? create_object.isra.0+0x3ad/0xa20 [ 1290.455935] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1290.456480] ? __kmalloc+0x16e/0x390 [ 1290.456908] hwsim_new_radio_nl+0x991/0x1080 [ 1290.457414] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1290.458011] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1290.458763] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1290.459508] genl_family_rcv_msg_doit+0x22d/0x330 [ 1290.460069] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1290.460822] ? cap_capable+0x1cd/0x230 [ 1290.461272] ? ns_capable+0xe2/0x110 [ 1290.461701] genl_rcv_msg+0x36a/0x5a0 [ 1290.462136] ? genl_get_cmd+0x480/0x480 [ 1290.462590] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1290.463185] ? lock_release+0x680/0x680 [ 1290.463637] ? netlink_deliver_tap+0xf4/0xcc0 [ 1290.464159] netlink_rcv_skb+0x14b/0x430 [ 1290.464620] ? genl_get_cmd+0x480/0x480 [ 1290.465075] ? netlink_ack+0xab0/0xab0 [ 1290.465525] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1290.466046] ? is_vmalloc_addr+0x7b/0xb0 [ 1290.466510] genl_rcv+0x24/0x40 [ 1290.466886] netlink_unicast+0x54e/0x800 [ 1290.467353] ? netlink_attachskb+0x870/0x870 [ 1290.467869] netlink_sendmsg+0x90f/0xe00 [ 1290.468339] ? netlink_unicast+0x800/0x800 [ 1290.468831] ? netlink_unicast+0x800/0x800 [ 1290.469312] __sock_sendmsg+0x154/0x190 [ 1290.469768] ____sys_sendmsg+0x70d/0x870 [ 1290.470237] ? sock_write_iter+0x3d0/0x3d0 [ 1290.470719] ? do_recvmmsg+0x6d0/0x6d0 [ 1290.471171] ? lock_downgrade+0x6d0/0x6d0 [ 1290.471643] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1290.472258] ___sys_sendmsg+0xf3/0x170 [ 1290.472708] ? sendmsg_copy_msghdr+0x160/0x160 [ 1290.473235] ? __fget_files+0x2cf/0x520 [ 1290.473688] ? lock_downgrade+0x6d0/0x6d0 [ 1290.474180] ? find_held_lock+0x2c/0x110 [ 1290.474647] ? __fget_files+0x2f8/0x520 [ 1290.475109] ? __fget_light+0xea/0x290 [ 1290.475556] __sys_sendmsg+0xe5/0x1b0 [ 1290.476004] ? __sys_sendmsg_sock+0x40/0x40 [ 1290.476495] ? rcu_read_lock_any_held+0x75/0xa0 [ 1290.477042] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1290.477648] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1290.478243] do_syscall_64+0x33/0x40 [ 1290.478670] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1290.479258] RIP: 0033:0x7fdcf09cab19 [ 1290.479685] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1290.481785] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1290.482651] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1290.483466] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1290.484288] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1290.485105] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1290.485916] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 03:00:50 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 39) [ 1290.541522] FAULT_INJECTION: forcing a failure. [ 1290.541522] name failslab, interval 1, probability 0, space 0, times 0 [ 1290.544274] CPU: 0 PID: 8353 Comm: syz-executor.5 Not tainted 5.10.237 #1 [ 1290.545835] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1290.547740] Call Trace: [ 1290.548351] dump_stack+0x107/0x167 [ 1290.549182] should_fail.cold+0x5/0xa [ 1290.550057] ? create_object.isra.0+0x3a/0xa20 [ 1290.551110] should_failslab+0x5/0x20 [ 1290.551986] kmem_cache_alloc+0x5b/0x310 [ 1290.552910] ? vsnprintf+0x4ba/0x1600 [ 1290.553787] create_object.isra.0+0x3a/0xa20 [ 1290.554792] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1290.555971] __kmalloc_track_caller+0x177/0x370 [ 1290.557042] ? kvasprintf_const+0x60/0x1a0 03:00:50 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 20) 03:00:50 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 42) [ 1290.558016] kvasprintf+0xb5/0x150 [ 1290.558992] ? bust_spinlocks+0xe0/0xe0 [ 1290.559907] ? lock_release+0x680/0x680 [ 1290.560813] ? find_held_lock+0x2c/0x110 [ 1290.561750] kvasprintf_const+0x60/0x1a0 [ 1290.562671] kobject_set_name_vargs+0x56/0x150 [ 1290.563706] dev_set_name+0xbb/0xf0 [ 1290.564542] ? device_initialize+0x620/0x620 [ 1290.565538] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1290.566734] ? kmalloc_order+0xfe/0x160 [ 1290.567647] wiphy_new_nm+0x805/0x1e00 [ 1290.568540] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1290.569592] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1290.570775] ? __local_bh_enable_ip+0x9d/0x100 [ 1290.571817] ? trace_hardirqs_on+0x5b/0x180 [ 1290.572804] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1290.573921] ? ____sys_sendmsg+0x70d/0x870 [ 1290.574881] ? ___sys_sendmsg+0xf3/0x170 [ 1290.575810] ? __sys_sendmsg+0xe5/0x1b0 [ 1290.576715] ? do_syscall_64+0x33/0x40 [ 1290.577609] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1290.578813] ? lock_acquire+0x197/0x470 [ 1290.579708] ? create_object.isra.0+0x3ad/0xa20 [ 1290.580779] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1290.581834] ? __kmalloc+0x16e/0x390 [ 1290.582680] hwsim_new_radio_nl+0x991/0x1080 [ 1290.583679] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1290.584879] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1290.586379] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1290.587888] genl_family_rcv_msg_doit+0x22d/0x330 [ 1290.588984] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1290.590483] ? cap_capable+0x1cd/0x230 [ 1290.591377] ? ns_capable+0xe2/0x110 [ 1290.592233] genl_rcv_msg+0x36a/0x5a0 [ 1290.593100] ? genl_get_cmd+0x480/0x480 [ 1290.594004] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1290.595181] ? lock_release+0x680/0x680 [ 1290.596089] ? netlink_deliver_tap+0xf4/0xcc0 [ 1290.597122] netlink_rcv_skb+0x14b/0x430 [ 1290.598045] ? genl_get_cmd+0x480/0x480 [ 1290.598952] ? netlink_ack+0xab0/0xab0 [ 1290.599851] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1290.600890] ? is_vmalloc_addr+0x7b/0xb0 [ 1290.601817] genl_rcv+0x24/0x40 [ 1290.602568] netlink_unicast+0x54e/0x800 [ 1290.603493] ? netlink_attachskb+0x870/0x870 [ 1290.604514] netlink_sendmsg+0x90f/0xe00 [ 1290.605447] ? netlink_unicast+0x800/0x800 [ 1290.606415] ? netlink_unicast+0x800/0x800 [ 1290.607382] __sock_sendmsg+0x154/0x190 [ 1290.608296] ____sys_sendmsg+0x70d/0x870 [ 1290.609226] ? sock_write_iter+0x3d0/0x3d0 [ 1290.610190] ? do_recvmmsg+0x6d0/0x6d0 [ 1290.611090] ? lock_downgrade+0x6d0/0x6d0 [ 1290.612049] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1290.613245] ___sys_sendmsg+0xf3/0x170 [ 1290.614138] ? sendmsg_copy_msghdr+0x160/0x160 [ 1290.615181] ? __fget_files+0x2cf/0x520 [ 1290.616096] ? lock_downgrade+0x6d0/0x6d0 [ 1290.617042] ? find_held_lock+0x2c/0x110 [ 1290.617991] ? __fget_files+0x2f8/0x520 [ 1290.618906] ? __fget_light+0xea/0x290 [ 1290.619816] __sys_sendmsg+0xe5/0x1b0 [ 1290.620678] ? __sys_sendmsg_sock+0x40/0x40 [ 1290.621662] ? rcu_read_lock_any_held+0x75/0xa0 [ 1290.622734] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1290.623929] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1290.625100] do_syscall_64+0x33/0x40 [ 1290.625948] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1290.627110] RIP: 0033:0x7fd7004f8b19 [ 1290.627962] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1290.632148] RSP: 002b:00007fd6fda6e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1290.633882] RAX: ffffffffffffffda RBX: 00007fd70060bf60 RCX: 00007fd7004f8b19 [ 1290.635503] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1290.637146] RBP: 00007fd6fda6e1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1290.638774] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1290.640402] R13: 00007ffe37d3003f R14: 00007fd6fda6e300 R15: 0000000000022000 [ 1290.708227] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 03:00:50 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 14) [ 1290.778757] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1290.782069] FAULT_INJECTION: forcing a failure. [ 1290.782069] name failslab, interval 1, probability 0, space 0, times 0 [ 1290.784763] CPU: 0 PID: 8379 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 1290.786327] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1290.788234] Call Trace: [ 1290.788839] dump_stack+0x107/0x167 [ 1290.789678] should_fail.cold+0x5/0xa [ 1290.790546] ? create_object.isra.0+0x3a/0xa20 [ 1290.791593] should_failslab+0x5/0x20 [ 1290.792472] kmem_cache_alloc+0x5b/0x310 [ 1290.793401] ? mutex_lock_io_nested+0xf30/0xf30 [ 1290.794466] create_object.isra.0+0x3a/0xa20 [ 1290.795465] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1290.796644] kmem_cache_alloc+0x159/0x310 [ 1290.797601] __kernfs_new_node+0xd4/0x860 [ 1290.798547] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1290.799759] ? kernfs_add_one+0x124/0x4d0 [ 1290.800705] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1290.801797] ? lock_acquire+0x197/0x470 03:00:50 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x56, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1290.802703] ? find_held_lock+0x2c/0x110 [ 1290.803809] ? sysfs_do_create_link_sd+0x82/0x140 [ 1290.804899] kernfs_new_node+0x18d/0x250 [ 1290.805820] kernfs_create_link+0xcb/0x230 [ 1290.806780] sysfs_do_create_link_sd+0x90/0x140 [ 1290.807839] sysfs_create_link+0x5f/0xc0 [ 1290.808777] device_add+0x5e1/0x1c50 [ 1290.809625] ? devlink_add_symlinks+0x970/0x970 [ 1290.810700] device_create_groups_vargs+0x207/0x280 [ 1290.811849] device_create+0xdc/0x120 [ 1290.812713] ? device_create_groups_vargs+0x280/0x280 [ 1290.813880] ? init_timer_key+0x12a/0x240 [ 1290.814820] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1290.815923] mac80211_hwsim_new_radio+0x376/0x4290 [ 1290.817031] ? trace_hardirqs_on+0x5b/0x180 [ 1290.818022] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1290.819072] ? __kmalloc+0x16e/0x390 [ 1290.819933] hwsim_new_radio_nl+0x991/0x1080 [ 1290.820941] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1290.822127] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1290.823635] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1290.825137] genl_family_rcv_msg_doit+0x22d/0x330 [ 1290.826236] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1290.827755] ? cap_capable+0x1cd/0x230 [ 1290.828654] ? ns_capable+0xe2/0x110 [ 1290.829503] genl_rcv_msg+0x36a/0x5a0 [ 1290.830376] ? genl_get_cmd+0x480/0x480 [ 1290.831281] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1290.832472] ? lock_release+0x680/0x680 [ 1290.833372] ? netlink_deliver_tap+0xf4/0xcc0 [ 1290.834395] netlink_rcv_skb+0x14b/0x430 [ 1290.835317] ? genl_get_cmd+0x480/0x480 [ 1290.836232] ? netlink_ack+0xab0/0xab0 [ 1290.837121] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1290.838160] ? is_vmalloc_addr+0x7b/0xb0 [ 1290.839083] genl_rcv+0x24/0x40 [ 1290.839844] netlink_unicast+0x54e/0x800 [ 1290.840779] ? netlink_attachskb+0x870/0x870 [ 1290.841788] netlink_sendmsg+0x90f/0xe00 [ 1290.842720] ? netlink_unicast+0x800/0x800 [ 1290.843697] ? netlink_unicast+0x800/0x800 [ 1290.844663] __sock_sendmsg+0x154/0x190 [ 1290.845564] ____sys_sendmsg+0x70d/0x870 [ 1290.846500] ? sock_write_iter+0x3d0/0x3d0 [ 1290.847463] ? do_recvmmsg+0x6d0/0x6d0 [ 1290.848361] ? lock_downgrade+0x6d0/0x6d0 [ 1290.849305] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1290.850498] ___sys_sendmsg+0xf3/0x170 [ 1290.851383] ? sendmsg_copy_msghdr+0x160/0x160 [ 1290.852434] ? __fget_files+0x2cf/0x520 [ 1290.853344] ? lock_downgrade+0x6d0/0x6d0 [ 1290.854283] ? find_held_lock+0x2c/0x110 [ 1290.855218] ? __fget_files+0x2f8/0x520 [ 1290.856140] ? __fget_light+0xea/0x290 [ 1290.857030] __sys_sendmsg+0xe5/0x1b0 [ 1290.857892] ? __sys_sendmsg_sock+0x40/0x40 [ 1290.858874] ? rcu_read_lock_any_held+0x75/0xa0 [ 1290.859952] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1290.861152] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1290.862330] do_syscall_64+0x33/0x40 [ 1290.863169] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1290.864343] RIP: 0033:0x7faee752eb19 [ 1290.865185] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1290.869374] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1290.871109] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 1290.872751] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1290.874378] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1290.876007] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1290.877639] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 03:00:50 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x12, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:00:50 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x13, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:00:50 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) (fail_nth: 1) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 03:00:50 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) [ 1290.981389] FAULT_INJECTION: forcing a failure. [ 1290.981389] name failslab, interval 1, probability 0, space 0, times 0 [ 1290.982715] CPU: 1 PID: 8382 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1290.983499] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1290.984457] Call Trace: [ 1290.984766] dump_stack+0x107/0x167 [ 1290.985183] should_fail.cold+0x5/0xa [ 1290.985626] ? create_object.isra.0+0x3a/0xa20 [ 1290.986146] should_failslab+0x5/0x20 [ 1290.986585] kmem_cache_alloc+0x5b/0x310 [ 1290.987050] ? vsnprintf+0x4ba/0x1600 [ 1290.987486] create_object.isra.0+0x3a/0xa20 [ 1290.987997] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1290.988578] __kmalloc_track_caller+0x177/0x370 [ 1290.989113] ? kasprintf+0xbb/0xf0 [ 1290.989534] kvasprintf+0xb5/0x150 [ 1290.989943] ? bust_spinlocks+0xe0/0xe0 [ 1290.990399] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1290.991003] ? get_random_u32+0x3cb/0x670 [ 1290.991486] kasprintf+0xbb/0xf0 [ 1290.991881] ? kvasprintf_const+0x1a0/0x1a0 [ 1290.992379] ? lockdep_init_map_type+0x2c7/0x780 [ 1290.992923] ? lockdep_init_map_type+0x2c7/0x780 [ 1290.993472] ieee80211_alloc_led_names+0x82/0x420 [ 1290.994023] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1290.994566] ? trace_hardirqs_on+0x5b/0x180 [ 1290.995065] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1290.995627] ? ____sys_sendmsg+0x70d/0x870 [ 1290.996115] ? ___sys_sendmsg+0xf3/0x170 [ 1290.996581] ? __sys_sendmsg+0xe5/0x1b0 [ 1290.997038] ? do_syscall_64+0x33/0x40 [ 1290.997486] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1290.998097] ? lock_acquire+0x197/0x470 [ 1290.998549] ? create_object.isra.0+0x3ad/0xa20 [ 1290.999081] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1290.999613] ? __kmalloc+0x16e/0x390 [ 1291.000051] hwsim_new_radio_nl+0x991/0x1080 [ 1291.000555] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1291.001152] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1291.001901] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1291.002648] genl_family_rcv_msg_doit+0x22d/0x330 [ 1291.003203] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1291.003962] ? cap_capable+0x1cd/0x230 [ 1291.004412] ? ns_capable+0xe2/0x110 [ 1291.004840] genl_rcv_msg+0x36a/0x5a0 [ 1291.005278] ? genl_get_cmd+0x480/0x480 [ 1291.005736] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1291.006329] ? lock_release+0x680/0x680 [ 1291.006783] ? netlink_deliver_tap+0xf4/0xcc0 [ 1291.007297] netlink_rcv_skb+0x14b/0x430 [ 1291.007774] ? genl_get_cmd+0x480/0x480 [ 1291.008226] ? netlink_ack+0xab0/0xab0 [ 1291.008676] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1291.009196] ? is_vmalloc_addr+0x7b/0xb0 [ 1291.009663] genl_rcv+0x24/0x40 [ 1291.010036] netlink_unicast+0x54e/0x800 [ 1291.010504] ? netlink_attachskb+0x870/0x870 [ 1291.011008] netlink_sendmsg+0x90f/0xe00 [ 1291.011476] ? netlink_unicast+0x800/0x800 [ 1291.011972] ? netlink_unicast+0x800/0x800 [ 1291.012453] __sock_sendmsg+0x154/0x190 [ 1291.012907] ____sys_sendmsg+0x70d/0x870 [ 1291.013371] ? sock_write_iter+0x3d0/0x3d0 [ 1291.013853] ? do_recvmmsg+0x6d0/0x6d0 [ 1291.014298] ? lock_downgrade+0x6d0/0x6d0 [ 1291.014769] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1291.015374] ___sys_sendmsg+0xf3/0x170 [ 1291.015826] ? sendmsg_copy_msghdr+0x160/0x160 [ 1291.016352] ? __fget_files+0x2cf/0x520 [ 1291.016807] ? lock_downgrade+0x6d0/0x6d0 [ 1291.017283] ? find_held_lock+0x2c/0x110 [ 1291.017751] ? __fget_files+0x2f8/0x520 [ 1291.018212] ? __fget_light+0xea/0x290 [ 1291.018661] __sys_sendmsg+0xe5/0x1b0 [ 1291.019096] ? __sys_sendmsg_sock+0x40/0x40 [ 1291.019589] ? rcu_read_lock_any_held+0x75/0xa0 [ 1291.020138] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1291.020733] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1291.021323] do_syscall_64+0x33/0x40 [ 1291.021748] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1291.022334] RIP: 0033:0x7fdcf09cab19 [ 1291.022759] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1291.024862] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1291.025740] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1291.026556] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1291.027374] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1291.028197] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1291.029009] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 03:00:51 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 40) [ 1291.061223] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1291.062595] FAULT_INJECTION: forcing a failure. [ 1291.062595] name failslab, interval 1, probability 0, space 0, times 0 [ 1291.064669] CPU: 1 PID: 8383 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 1291.065456] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1291.066401] Call Trace: [ 1291.066713] dump_stack+0x107/0x167 [ 1291.067140] should_fail.cold+0x5/0xa [ 1291.067581] ? create_object.isra.0+0x3a/0xa20 [ 1291.068122] should_failslab+0x5/0x20 [ 1291.068560] kmem_cache_alloc+0x5b/0x310 [ 1291.069033] create_object.isra.0+0x3a/0xa20 [ 1291.069534] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1291.070133] kmem_cache_alloc+0x159/0x310 [ 1291.070614] radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 1291.071260] idr_get_free+0x4b5/0x8f0 [ 1291.071704] idr_alloc_u32+0x170/0x2d0 [ 1291.072183] ? __fprop_inc_percpu_max+0x130/0x130 [ 1291.072737] ? lock_acquire+0x197/0x470 [ 1291.073199] ? __kernfs_new_node+0xff/0x860 [ 1291.073698] idr_alloc_cyclic+0x102/0x230 [ 1291.074172] ? idr_alloc+0x130/0x130 [ 1291.074602] ? rwlock_bug.part.0+0x90/0x90 [ 1291.075093] __kernfs_new_node+0x117/0x860 [ 1291.075578] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1291.076194] ? kernfs_add_one+0x124/0x4d0 [ 1291.076675] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1291.077231] ? lock_acquire+0x197/0x470 [ 1291.077686] ? find_held_lock+0x2c/0x110 [ 1291.078155] ? sysfs_do_create_link_sd+0x82/0x140 [ 1291.078714] kernfs_new_node+0x18d/0x250 [ 1291.079186] kernfs_create_link+0xcb/0x230 [ 1291.079673] sysfs_do_create_link_sd+0x90/0x140 [ 1291.080219] sysfs_create_link+0x5f/0xc0 [ 1291.080686] device_add+0x5e1/0x1c50 [ 1291.081118] ? devlink_add_symlinks+0x970/0x970 [ 1291.081659] device_create_groups_vargs+0x207/0x280 [ 1291.082233] device_create+0xdc/0x120 [ 1291.082672] ? device_create_groups_vargs+0x280/0x280 [ 1291.083262] ? init_timer_key+0x12a/0x240 [ 1291.083754] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1291.084309] mac80211_hwsim_new_radio+0x376/0x4290 [ 1291.084868] ? trace_hardirqs_on+0x5b/0x180 [ 1291.085379] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1291.085916] ? __kmalloc+0x16e/0x390 [ 1291.086351] hwsim_new_radio_nl+0x991/0x1080 [ 1291.086859] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1291.087461] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1291.088223] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1291.088972] genl_family_rcv_msg_doit+0x22d/0x330 [ 1291.089527] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1291.090280] ? cap_capable+0x1cd/0x230 [ 1291.090735] ? ns_capable+0xe2/0x110 [ 1291.091167] genl_rcv_msg+0x36a/0x5a0 [ 1291.091602] ? genl_get_cmd+0x480/0x480 [ 1291.092067] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1291.092660] ? lock_release+0x680/0x680 [ 1291.093117] ? netlink_deliver_tap+0xf4/0xcc0 [ 1291.093631] netlink_rcv_skb+0x14b/0x430 [ 1291.094096] ? genl_get_cmd+0x480/0x480 [ 1291.094558] ? netlink_ack+0xab0/0xab0 [ 1291.095012] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1291.095534] ? is_vmalloc_addr+0x7b/0xb0 [ 1291.096011] genl_rcv+0x24/0x40 [ 1291.096387] netlink_unicast+0x54e/0x800 [ 1291.096855] ? netlink_attachskb+0x870/0x870 [ 1291.097361] netlink_sendmsg+0x90f/0xe00 [ 1291.097828] ? netlink_unicast+0x800/0x800 [ 1291.098319] ? netlink_unicast+0x800/0x800 [ 1291.098807] __sock_sendmsg+0x154/0x190 [ 1291.099262] ____sys_sendmsg+0x70d/0x870 [ 1291.099738] ? sock_write_iter+0x3d0/0x3d0 [ 1291.100224] ? do_recvmmsg+0x6d0/0x6d0 [ 1291.100672] ? lock_downgrade+0x6d0/0x6d0 [ 1291.101152] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1291.101760] ___sys_sendmsg+0xf3/0x170 [ 1291.102212] ? sendmsg_copy_msghdr+0x160/0x160 [ 1291.102743] ? __fget_files+0x2cf/0x520 [ 1291.103204] ? lock_downgrade+0x6d0/0x6d0 [ 1291.103680] ? find_held_lock+0x2c/0x110 [ 1291.104164] ? __fget_files+0x2f8/0x520 [ 1291.104627] ? __fget_light+0xea/0x290 [ 1291.105084] __sys_sendmsg+0xe5/0x1b0 [ 1291.105519] ? __sys_sendmsg_sock+0x40/0x40 [ 1291.106014] ? rcu_read_lock_any_held+0x75/0xa0 [ 1291.106557] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1291.107158] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1291.107759] do_syscall_64+0x33/0x40 [ 1291.108193] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1291.108782] RIP: 0033:0x7f051132ab19 [ 1291.109204] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1291.111302] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1291.112178] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 1291.112996] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1291.113812] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 1291.114626] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1291.115439] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 03:00:51 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e21}, 0x6e) 03:00:51 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 21) [ 1291.158332] FAULT_INJECTION: forcing a failure. [ 1291.158332] name failslab, interval 1, probability 0, space 0, times 0 [ 1291.159951] CPU: 1 PID: 8385 Comm: syz-executor.5 Not tainted 5.10.237 #1 [ 1291.160731] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1291.161685] Call Trace: [ 1291.161994] dump_stack+0x107/0x167 [ 1291.162413] should_fail.cold+0x5/0xa [ 1291.162854] ? rfkill_alloc+0xa6/0x2c0 [ 1291.163308] should_failslab+0x5/0x20 [ 1291.163752] __kmalloc+0x72/0x390 [ 1291.164158] rfkill_alloc+0xa6/0x2c0 [ 1291.164585] wiphy_new_nm+0x12a3/0x1e00 [ 1291.165049] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1291.165587] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1291.166188] ? __local_bh_enable_ip+0x9d/0x100 [ 1291.166711] ? trace_hardirqs_on+0x5b/0x180 [ 1291.167206] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1291.167777] ? ____sys_sendmsg+0x70d/0x870 [ 1291.168264] ? ___sys_sendmsg+0xf3/0x170 [ 1291.168728] ? __sys_sendmsg+0xe5/0x1b0 [ 1291.169182] ? do_syscall_64+0x33/0x40 [ 1291.169631] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1291.170238] ? lock_acquire+0x197/0x470 [ 1291.170692] ? create_object.isra.0+0x3ad/0xa20 [ 1291.171231] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1291.171770] ? __kmalloc+0x16e/0x390 [ 1291.172200] hwsim_new_radio_nl+0x991/0x1080 [ 1291.172705] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1291.173306] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1291.174072] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1291.174817] genl_family_rcv_msg_doit+0x22d/0x330 [ 1291.175373] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1291.176131] ? cap_capable+0x1cd/0x230 [ 1291.176586] ? ns_capable+0xe2/0x110 [ 1291.177015] genl_rcv_msg+0x36a/0x5a0 [ 1291.177473] ? genl_get_cmd+0x480/0x480 [ 1291.177930] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1291.178521] ? lock_release+0x680/0x680 [ 1291.178978] ? netlink_deliver_tap+0xf4/0xcc0 [ 1291.179492] netlink_rcv_skb+0x14b/0x430 [ 1291.179964] ? genl_get_cmd+0x480/0x480 [ 1291.180418] ? netlink_ack+0xab0/0xab0 [ 1291.180870] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1291.181395] ? is_vmalloc_addr+0x7b/0xb0 [ 1291.181864] genl_rcv+0x24/0x40 [ 1291.182244] netlink_unicast+0x54e/0x800 [ 1291.182712] ? netlink_attachskb+0x870/0x870 [ 1291.183222] netlink_sendmsg+0x90f/0xe00 [ 1291.183687] ? netlink_unicast+0x800/0x800 [ 1291.184186] ? netlink_unicast+0x800/0x800 [ 1291.184667] __sock_sendmsg+0x154/0x190 [ 1291.185127] ____sys_sendmsg+0x70d/0x870 [ 1291.185592] ? sock_write_iter+0x3d0/0x3d0 [ 1291.186078] ? do_recvmmsg+0x6d0/0x6d0 [ 1291.186525] ? lock_downgrade+0x6d0/0x6d0 [ 1291.187003] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1291.187603] ___sys_sendmsg+0xf3/0x170 [ 1291.188063] ? sendmsg_copy_msghdr+0x160/0x160 [ 1291.188589] ? __fget_files+0x2cf/0x520 [ 1291.189046] ? lock_downgrade+0x6d0/0x6d0 [ 1291.189522] ? find_held_lock+0x2c/0x110 [ 1291.189995] ? __fget_files+0x2f8/0x520 [ 1291.190453] ? __fget_light+0xea/0x290 [ 1291.190907] __sys_sendmsg+0xe5/0x1b0 [ 1291.191341] ? __sys_sendmsg_sock+0x40/0x40 [ 1291.191844] ? rcu_read_lock_any_held+0x75/0xa0 [ 1291.192383] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1291.192980] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1291.193569] do_syscall_64+0x33/0x40 [ 1291.193992] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1291.194577] RIP: 0033:0x7fd7004f8b19 [ 1291.195003] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1291.197098] RSP: 002b:00007fd6fda6e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1291.197966] RAX: ffffffffffffffda RBX: 00007fd70060bf60 RCX: 00007fd7004f8b19 [ 1291.198779] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1291.199591] RBP: 00007fd6fda6e1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1291.200414] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1291.201231] R13: 00007ffe37d3003f R14: 00007fd6fda6e300 R15: 0000000000022000 [ 1291.203140] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. [ 1291.203313] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1291.354634] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1291.356324] FAULT_INJECTION: forcing a failure. [ 1291.356324] name failslab, interval 1, probability 0, space 0, times 0 [ 1291.357633] CPU: 1 PID: 8399 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 1291.358419] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1291.359367] Call Trace: [ 1291.359675] dump_stack+0x107/0x167 [ 1291.360103] should_fail.cold+0x5/0xa [ 1291.360546] should_failslab+0x5/0x20 [ 1291.360987] __kmalloc_track_caller+0x79/0x370 [ 1291.361518] ? kstrdup_const+0x53/0x80 [ 1291.361982] kstrdup+0x36/0x70 [ 1291.362360] kstrdup_const+0x53/0x80 [ 1291.362795] __kernfs_new_node+0x9d/0x860 [ 1291.363269] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1291.363885] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1291.364437] ? lock_acquire+0x197/0x470 [ 1291.364902] ? find_held_lock+0x2c/0x110 [ 1291.365381] ? sysfs_do_create_link_sd+0x82/0x140 [ 1291.365937] kernfs_new_node+0x18d/0x250 [ 1291.366409] kernfs_create_link+0xcb/0x230 [ 1291.366903] sysfs_do_create_link_sd+0x90/0x140 [ 1291.367435] sysfs_create_link+0x5f/0xc0 [ 1291.367917] device_add+0x703/0x1c50 [ 1291.368355] ? devlink_add_symlinks+0x970/0x970 [ 1291.368897] device_create_groups_vargs+0x207/0x280 [ 1291.369471] device_create+0xdc/0x120 [ 1291.369913] ? device_create_groups_vargs+0x280/0x280 [ 1291.370504] ? init_timer_key+0x12a/0x240 [ 1291.370988] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1291.371554] mac80211_hwsim_new_radio+0x376/0x4290 [ 1291.372135] ? trace_hardirqs_on+0x5b/0x180 [ 1291.372644] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1291.373177] ? __kmalloc+0x16e/0x390 [ 1291.373612] hwsim_new_radio_nl+0x991/0x1080 [ 1291.374126] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1291.374732] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1291.375486] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1291.376245] genl_family_rcv_msg_doit+0x22d/0x330 [ 1291.376814] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1291.377566] ? cap_capable+0x1cd/0x230 [ 1291.378027] ? ns_capable+0xe2/0x110 [ 1291.378466] genl_rcv_msg+0x36a/0x5a0 [ 1291.378913] ? genl_get_cmd+0x480/0x480 [ 1291.379373] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1291.379982] ? lock_release+0x680/0x680 [ 1291.380438] ? netlink_deliver_tap+0xf4/0xcc0 [ 1291.380964] netlink_rcv_skb+0x14b/0x430 [ 1291.381439] ? genl_get_cmd+0x480/0x480 [ 1291.381901] ? netlink_ack+0xab0/0xab0 [ 1291.382364] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1291.382889] ? is_vmalloc_addr+0x7b/0xb0 [ 1291.383363] genl_rcv+0x24/0x40 [ 1291.383753] netlink_unicast+0x54e/0x800 [ 1291.384227] ? netlink_attachskb+0x870/0x870 [ 1291.384742] netlink_sendmsg+0x90f/0xe00 [ 1291.385214] ? netlink_unicast+0x800/0x800 [ 1291.385708] ? netlink_unicast+0x800/0x800 [ 1291.386194] __sock_sendmsg+0x154/0x190 [ 1291.386650] ____sys_sendmsg+0x70d/0x870 [ 1291.387118] ? sock_write_iter+0x3d0/0x3d0 [ 1291.387605] ? do_recvmmsg+0x6d0/0x6d0 [ 1291.388065] ? lock_downgrade+0x6d0/0x6d0 [ 1291.388541] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1291.389142] ___sys_sendmsg+0xf3/0x170 [ 1291.389587] ? sendmsg_copy_msghdr+0x160/0x160 [ 1291.390112] ? __fget_files+0x2cf/0x520 [ 1291.390577] ? lock_downgrade+0x6d0/0x6d0 [ 1291.391057] ? find_held_lock+0x2c/0x110 [ 1291.391539] ? __fget_files+0x2f8/0x520 [ 1291.392020] ? __fget_light+0xea/0x290 [ 1291.392481] __sys_sendmsg+0xe5/0x1b0 [ 1291.392922] ? __sys_sendmsg_sock+0x40/0x40 [ 1291.393422] ? rcu_read_lock_any_held+0x75/0xa0 [ 1291.393968] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1291.394578] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1291.395179] do_syscall_64+0x33/0x40 [ 1291.395617] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1291.396217] RIP: 0033:0x7faee752eb19 [ 1291.396650] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1291.398755] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1291.399633] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 1291.400465] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1291.401287] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1291.402106] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1291.402925] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 [ 1291.405650] FAULT_INJECTION: forcing a failure. [ 1291.405650] name failslab, interval 1, probability 0, space 0, times 0 [ 1291.407012] CPU: 1 PID: 8404 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1291.407806] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1291.408774] Call Trace: [ 1291.409094] dump_stack+0x107/0x167 [ 1291.409522] should_fail.cold+0x5/0xa [ 1291.409978] ? create_object.isra.0+0x3a/0xa20 [ 1291.410521] should_failslab+0x5/0x20 [ 1291.410984] kmem_cache_alloc+0x5b/0x310 [ 1291.411472] ? vsnprintf+0x4ba/0x1600 [ 1291.411936] create_object.isra.0+0x3a/0xa20 [ 1291.412463] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1291.413068] __kmalloc_track_caller+0x177/0x370 [ 1291.413613] ? kasprintf+0xbb/0xf0 [ 1291.414028] kvasprintf+0xb5/0x150 [ 1291.414442] ? bust_spinlocks+0xe0/0xe0 [ 1291.414915] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1291.415536] ? get_random_u32+0x3cb/0x670 [ 1291.416035] kasprintf+0xbb/0xf0 [ 1291.416441] ? kvasprintf_const+0x1a0/0x1a0 [ 1291.416958] ? lockdep_init_map_type+0x2c7/0x780 [ 1291.417519] ? lockdep_init_map_type+0x2c7/0x780 [ 1291.418094] ieee80211_alloc_led_names+0x117/0x420 [ 1291.418674] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1291.419239] ? trace_hardirqs_on+0x5b/0x180 [ 1291.419758] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1291.420333] ? ____sys_sendmsg+0x70d/0x870 [ 1291.420827] ? ___sys_sendmsg+0xf3/0x170 [ 1291.421307] ? __sys_sendmsg+0xe5/0x1b0 [ 1291.421776] ? do_syscall_64+0x33/0x40 [ 1291.422240] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1291.422871] ? lock_acquire+0x197/0x470 [ 1291.423345] ? create_object.isra.0+0x3ad/0xa20 [ 1291.423913] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1291.424469] ? __kmalloc+0x16e/0x390 [ 1291.424915] hwsim_new_radio_nl+0x991/0x1080 [ 1291.425439] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1291.426065] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1291.426838] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1291.427609] genl_family_rcv_msg_doit+0x22d/0x330 [ 1291.428194] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1291.428964] ? cap_capable+0x1cd/0x230 [ 1291.429435] ? ns_capable+0xe2/0x110 [ 1291.429878] genl_rcv_msg+0x36a/0x5a0 [ 1291.430325] ? genl_get_cmd+0x480/0x480 [ 1291.430797] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1291.431403] ? lock_release+0x680/0x680 [ 1291.431881] ? netlink_deliver_tap+0xf4/0xcc0 [ 1291.432406] netlink_rcv_skb+0x14b/0x430 [ 1291.432893] ? genl_get_cmd+0x480/0x480 [ 1291.433360] ? netlink_ack+0xab0/0xab0 [ 1291.433834] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1291.434371] ? is_vmalloc_addr+0x7b/0xb0 [ 1291.434854] genl_rcv+0x24/0x40 [ 1291.435249] netlink_unicast+0x54e/0x800 [ 1291.435757] ? netlink_attachskb+0x870/0x870 [ 1291.436292] netlink_sendmsg+0x90f/0xe00 [ 1291.436785] ? netlink_unicast+0x800/0x800 [ 1291.437296] ? netlink_unicast+0x800/0x800 [ 1291.437800] __sock_sendmsg+0x154/0x190 [ 1291.438274] ____sys_sendmsg+0x70d/0x870 [ 1291.438755] ? sock_write_iter+0x3d0/0x3d0 [ 1291.439255] ? do_recvmmsg+0x6d0/0x6d0 [ 1291.439714] ? lock_downgrade+0x6d0/0x6d0 [ 1291.440228] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1291.440847] ___sys_sendmsg+0xf3/0x170 [ 1291.441311] ? sendmsg_copy_msghdr+0x160/0x160 [ 1291.441842] ? __fget_files+0x2cf/0x520 [ 1291.442322] ? lock_downgrade+0x6d0/0x6d0 [ 1291.442806] ? find_held_lock+0x2c/0x110 [ 1291.443295] ? __fget_files+0x2f8/0x520 [ 1291.443769] ? __fget_light+0xea/0x290 [ 1291.444242] __sys_sendmsg+0xe5/0x1b0 [ 1291.444688] ? __sys_sendmsg_sock+0x40/0x40 [ 1291.445191] ? rcu_read_lock_any_held+0x75/0xa0 [ 1291.445750] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1291.446365] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1291.446977] do_syscall_64+0x33/0x40 [ 1291.447424] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1291.448032] RIP: 0033:0x7fdcf09cab19 [ 1291.448469] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1291.450590] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1291.451495] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1291.452332] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1291.453159] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1291.453990] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1291.454822] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 [ 1291.588695] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium [ 1307.730283] FAULT_INJECTION: forcing a failure. [ 1307.730283] name failslab, interval 1, probability 0, space 0, times 0 [ 1307.731867] CPU: 1 PID: 8417 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1307.732814] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1307.733927] Call Trace: [ 1307.734286] dump_stack+0x107/0x167 [ 1307.734778] should_fail.cold+0x5/0xa [ 1307.735286] should_failslab+0x5/0x20 [ 1307.735797] __kmalloc_track_caller+0x79/0x370 [ 1307.736421] ? kasprintf+0xbb/0xf0 [ 1307.736896] kvasprintf+0xb5/0x150 [ 1307.737380] ? bust_spinlocks+0xe0/0xe0 [ 1307.737907] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1307.738604] ? get_random_u32+0x3cb/0x670 [ 1307.739162] kasprintf+0xbb/0xf0 [ 1307.739612] ? kvasprintf_const+0x1a0/0x1a0 [ 1307.740194] ? lockdep_init_map_type+0x2c7/0x780 [ 1307.740826] ? lockdep_init_map_type+0x2c7/0x780 [ 1307.741466] ieee80211_alloc_led_names+0x1ac/0x420 [ 1307.742111] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1307.742736] ? trace_hardirqs_on+0x5b/0x180 [ 1307.743315] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1307.743970] ? ____sys_sendmsg+0x70d/0x870 [ 1307.744524] ? ___sys_sendmsg+0xf3/0x170 [ 1307.745060] ? __sys_sendmsg+0xe5/0x1b0 [ 1307.745578] ? do_syscall_64+0x33/0x40 [ 1307.746097] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1307.746813] ? lock_acquire+0x197/0x470 [ 1307.747333] ? create_object.isra.0+0x3ad/0xa20 [ 1307.747957] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1307.748568] ? __kmalloc+0x16e/0x390 03:01:07 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 43) 03:01:07 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x2, 0x0) r1 = socket$unix(0x1, 0x2, 0x0) bind$unix(r1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r2 = socket$unix(0x1, 0x2, 0x0) connect$unix(r2, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 03:01:07 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r2, &(0x7f0000000280)=ANY=[], 0xfdef) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) dup2(r3, r2) syz_io_uring_complete(r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) 03:01:07 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 41) 03:01:07 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x59, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:01:07 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 15) 03:01:07 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 22) 03:01:07 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x14, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1307.749060] hwsim_new_radio_nl+0x991/0x1080 [ 1307.749941] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1307.750644] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1307.751517] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1307.752395] genl_family_rcv_msg_doit+0x22d/0x330 [ 1307.753043] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1307.753927] ? cap_capable+0x1cd/0x230 [ 1307.754461] ? ns_capable+0xe2/0x110 [ 1307.754956] genl_rcv_msg+0x36a/0x5a0 [ 1307.755466] ? genl_get_cmd+0x480/0x480 [ 1307.756001] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1307.756689] ? lock_release+0x680/0x680 [ 1307.757212] ? netlink_deliver_tap+0xf4/0xcc0 [ 1307.757800] netlink_rcv_skb+0x14b/0x430 [ 1307.758333] ? genl_get_cmd+0x480/0x480 [ 1307.758854] ? netlink_ack+0xab0/0xab0 [ 1307.759372] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1307.759980] ? is_vmalloc_addr+0x7b/0xb0 [ 1307.760515] genl_rcv+0x24/0x40 [ 1307.760948] netlink_unicast+0x54e/0x800 [ 1307.761492] ? netlink_attachskb+0x870/0x870 [ 1307.762089] netlink_sendmsg+0x90f/0xe00 [ 1307.762648] ? netlink_unicast+0x800/0x800 [ 1307.763226] ? netlink_unicast+0x800/0x800 [ 1307.763783] __sock_sendmsg+0x154/0x190 [ 1307.764320] ____sys_sendmsg+0x70d/0x870 [ 1307.764855] ? sock_write_iter+0x3d0/0x3d0 [ 1307.765419] ? do_recvmmsg+0x6d0/0x6d0 [ 1307.765953] ___sys_sendmsg+0xf3/0x170 [ 1307.766470] ? sendmsg_copy_msghdr+0x160/0x160 [ 1307.767073] ? __fget_files+0x2cf/0x520 [ 1307.767595] ? lock_downgrade+0x6d0/0x6d0 [ 1307.768154] ? finish_task_switch+0x126/0x5d0 [ 1307.768743] ? lock_downgrade+0x6d0/0x6d0 [ 1307.769288] ? __fget_files+0x2f8/0x520 [ 1307.769813] ? __fget_light+0xea/0x290 [ 1307.770341] __sys_sendmsg+0xe5/0x1b0 [ 1307.770840] ? __sys_sendmsg_sock+0x40/0x40 [ 1307.771413] ? io_schedule_timeout+0x140/0x140 [ 1307.772232] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1307.772955] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1307.773701] do_syscall_64+0x33/0x40 [ 1307.774192] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1307.774969] RIP: 0033:0x7fdcf09cab19 [ 1307.775533] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1307.777969] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1307.778978] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1307.779926] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1307.780869] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1307.781801] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1307.782723] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 03:01:07 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) r1 = syz_open_dev$mouse(&(0x7f0000000100), 0x4, 0x40201) connect$unix(r1, &(0x7f0000000140)=@abs={0x0, 0x0, 0x4e23}, 0x6e) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r2, &(0x7f0000000180)=""/198, 0xc6) ioctl$INCFS_IOC_FILL_BLOCKS(r2, 0x80106720, &(0x7f0000000980)={0x6, &(0x7f00000008c0)=[{0x8, 0xcf, &(0x7f0000000500)="6aada8b69727758508f8ad0eaa36beb133ab1f8ede0209ae9b1dc26744f7f607c858d6d45b5c812006a93e0ad73646f36a1d43ec85d78e8836082465531b215910607f83d84218669c076d26ad63c9533386a9973c0e1a4d4bfb291e22758a6ca6772759a9ade7240a52db23d463e1248ff8bc15686e29bddb188a346ab147ac93d89c34e782c07a1b002f0e1770a699868af2c26759c7c2c2fa3271d4286e4cced004d0b2164677ad6fcc3cdef2f5a20caafed672371f81f726afd91608ecff85d2360de1d5e65c3c9013c7995078"}, {0x3ff, 0xba, &(0x7f0000000600)="ad02413f3b1161d16522663b871347354fdf88d0e570c567a70ebcd2e79747df96cb1213e3de4de0bb97975692860e289c1a811187a2861c59af2a8fdf2c685b1c07dc0ae0fbf82d8a7e029f2bf1d8733b49048de539ffa937dbc4228cd50f2d6b815b968aec6697eff196ec4eecb080828a12ba4d4863a657d332fb8fe9794d06e2cfaadbd0052601e01bf52129b4cd8312bc640bca56af0c46d93eb5fd592df52c9fd2945a4be1f5143041e5fcb4f54613b5713f85bf110c58", 0x1}, {0x100, 0x5b, &(0x7f00000006c0)="99a35a97485c5e9b422273a13ae6aaa4aa16a8124d6f2cb021855dc4b1b430b48d2c2b7348de40a673750a03852ee5529b4571a20ad1eee243d494e1c1d2234804bba2395e753daa980e53b8bef19517c5e83d79f3233de2ace5a5", 0x1}, {0x0, 0xee, &(0x7f0000000740)="880bdae498847a27453d5e43e980ebef5aa3bb077f050804673179c0321bcdb2dfeb63f1cd24ace083a54edae20d10a27f99a24d152de97ee2030a65f21c43e618063d2c027e0659b59a95563ebc1b2d2b40aae2c3cd6b9e04e2dc324d9badf82570aeade57fa044c34860ed17317d255ae718c08cea5d584b51b175fcf1c34a391825a923e382ea1979835c0656c556c5978eb458eb5c19797e531e4cc3dc1179712814f19b0e9a84b8c5d021b502d5c29ccc20885ff0fc80ceeb0bf471fe256c36eecbed6f90483fc296dcbbf4721842a75c8cc4ff49e682aa5de149a45779d5063beea984951d7b768fcaa7ab", 0x1}, {0x40, 0x30, &(0x7f0000000840)="e8e18257dd50d164ffd9222c35262c3ffe2596ecb0caf4c00b3b0dd7aebb502ea2a8e21040a495200bddd9a9924eedc9"}, {0x9, 0x18, &(0x7f0000000880)="5def2a4f7f12127dd5f83bb5eaa1add2b30ff92be91b79e2", 0x1}]}) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) accept4$unix(0xffffffffffffffff, &(0x7f00000009c0)=@abs, &(0x7f0000000a40)=0x6e, 0x0) r3 = socket$unix(0x1, 0x5, 0x0) r4 = accept4$inet(r1, &(0x7f00000001c0)={0x2, 0x0, @broadcast}, &(0x7f0000000200)=0x10, 0x80000) ioctl$VFAT_IOCTL_READDIR_SHORT(r4, 0x82307202, &(0x7f0000000240)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, r4, {0x0, 0xee01}}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r5, 0xc0189374, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, {0x1}}, './file0\x00'}) connect$unix(r3, &(0x7f0000000480)=@file={0x0, './file0\x00'}, 0x6e) 03:01:07 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000140)=0x0) r3 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000100), 0x80, 0x0) perf_event_open$cgroup(&(0x7f0000000340)={0x4, 0x80, 0x20, 0x90, 0x6c, 0x7, 0x0, 0x30, 0x5254, 0x2, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x200, 0x2, @perf_bp={&(0x7f00000000c0), 0x4}, 0x8ede3ba5523c591, 0x7, 0x4, 0x0, 0xfffffffffffff001, 0x4000000e, 0x4, 0x0, 0x3, 0x0, 0x4}, 0xffffffffffffffff, 0x10, r3, 0x2) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r5 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x101000, 0xce) r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r6, &(0x7f0000000180)=""/198, 0xc6) sendfile(r5, r6, &(0x7f00000003c0), 0x2) ioctl$BTRFS_IOC_TREE_SEARCH_V2(0xffffffffffffffff, 0xc0709411, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000900)={&(0x7f0000000200)=@l2tp6={0xa, 0x0, 0x0, @mcast2}, 0x80, &(0x7f0000000840)=[{&(0x7f0000000300)="a63a", 0x2}, {0x0}, {0x0}], 0x33}, 0x0, 0x4008000}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xb, 0x30, r0, 0x8000000) openat$cgroup_freezer_state(0xffffffffffffffff, &(0x7f0000000080), 0x2, 0x0) syz_io_uring_submit(r7, r2, &(0x7f00000002c0)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x80000001) read(r4, &(0x7f0000000500)=""/255, 0xff) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) r8 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r8, &(0x7f0000000180)=""/198, 0xc6) ioctl$FS_IOC_MEASURE_VERITY(r8, 0xc0046686, &(0x7f0000000600)=ANY=[@ANYBLOB="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"]) [ 1307.958642] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. [ 1308.034300] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1308.037131] FAULT_INJECTION: forcing a failure. [ 1308.037131] name failslab, interval 1, probability 0, space 0, times 0 [ 1308.039708] CPU: 0 PID: 8424 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 1308.041265] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1308.043147] Call Trace: [ 1308.043756] dump_stack+0x107/0x167 [ 1308.044595] should_fail.cold+0x5/0xa [ 1308.045468] ? create_object.isra.0+0x3a/0xa20 [ 1308.046508] should_failslab+0x5/0x20 [ 1308.047369] kmem_cache_alloc+0x5b/0x310 [ 1308.048309] create_object.isra.0+0x3a/0xa20 [ 1308.049302] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1308.050456] kmem_cache_alloc+0x159/0x310 [ 1308.051411] __kernfs_new_node+0xd4/0x860 [ 1308.052362] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1308.053574] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1308.054659] ? lock_acquire+0x197/0x470 [ 1308.055563] ? find_held_lock+0x2c/0x110 [ 1308.056503] ? sysfs_do_create_link_sd+0x82/0x140 [ 1308.057599] kernfs_new_node+0x18d/0x250 [ 1308.058524] kernfs_create_link+0xcb/0x230 [ 1308.059485] sysfs_do_create_link_sd+0x90/0x140 [ 1308.060547] sysfs_create_link+0x5f/0xc0 [ 1308.061477] device_add+0x703/0x1c50 [ 1308.062331] ? devlink_add_symlinks+0x970/0x970 [ 1308.063400] device_create_groups_vargs+0x207/0x280 [ 1308.064554] device_create+0xdc/0x120 [ 1308.065423] ? device_create_groups_vargs+0x280/0x280 [ 1308.066593] ? init_timer_key+0x12a/0x240 [ 1308.067550] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1308.068708] mac80211_hwsim_new_radio+0x376/0x4290 [ 1308.069833] ? trace_hardirqs_on+0x5b/0x180 [ 1308.070832] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1308.071892] ? __kmalloc+0x16e/0x390 [ 1308.072772] hwsim_new_radio_nl+0x991/0x1080 [ 1308.073778] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1308.074991] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1308.076506] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1308.078006] genl_family_rcv_msg_doit+0x22d/0x330 [ 1308.079109] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1308.080656] ? cap_capable+0x1cd/0x230 [ 1308.081559] ? ns_capable+0xe2/0x110 [ 1308.082436] genl_rcv_msg+0x36a/0x5a0 [ 1308.083315] ? genl_get_cmd+0x480/0x480 [ 1308.084227] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1308.085415] ? lock_release+0x680/0x680 [ 1308.086332] ? netlink_deliver_tap+0xf4/0xcc0 [ 1308.087365] netlink_rcv_skb+0x14b/0x430 [ 1308.088293] ? genl_get_cmd+0x480/0x480 [ 1308.089210] ? netlink_ack+0xab0/0xab0 [ 1308.090101] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1308.091142] ? is_vmalloc_addr+0x7b/0xb0 [ 1308.092073] genl_rcv+0x24/0x40 [ 1308.092808] netlink_unicast+0x54e/0x800 [ 1308.093737] ? netlink_attachskb+0x870/0x870 [ 1308.094765] netlink_sendmsg+0x90f/0xe00 [ 1308.095696] ? netlink_unicast+0x800/0x800 [ 1308.096694] ? netlink_unicast+0x800/0x800 [ 1308.097653] __sock_sendmsg+0x154/0x190 [ 1308.098557] ____sys_sendmsg+0x70d/0x870 [ 1308.099481] ? sock_write_iter+0x3d0/0x3d0 [ 1308.100460] ? do_recvmmsg+0x6d0/0x6d0 [ 1308.101352] ? lock_downgrade+0x6d0/0x6d0 [ 1308.102316] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1308.103510] ___sys_sendmsg+0xf3/0x170 [ 1308.104438] ? sendmsg_copy_msghdr+0x160/0x160 [ 1308.105488] ? __fget_files+0x2cf/0x520 [ 1308.106391] ? lock_downgrade+0x6d0/0x6d0 [ 1308.107327] ? find_held_lock+0x2c/0x110 [ 1308.108291] ? __fget_files+0x2f8/0x520 [ 1308.109226] ? __fget_light+0xea/0x290 [ 1308.110134] __sys_sendmsg+0xe5/0x1b0 [ 1308.111010] ? __sys_sendmsg_sock+0x40/0x40 [ 1308.112017] ? rcu_read_lock_any_held+0x75/0xa0 [ 1308.113097] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1308.114313] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1308.115496] do_syscall_64+0x33/0x40 [ 1308.116372] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1308.117568] RIP: 0033:0x7f051132ab19 [ 1308.118447] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1308.122660] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1308.124428] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 1308.126069] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1308.127715] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 1308.129354] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1308.131000] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 [ 1308.187040] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1308.189461] FAULT_INJECTION: forcing a failure. [ 1308.189461] name failslab, interval 1, probability 0, space 0, times 0 [ 1308.192195] CPU: 0 PID: 8425 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 1308.193801] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1308.195729] Call Trace: [ 1308.196360] dump_stack+0x107/0x167 [ 1308.197221] should_fail.cold+0x5/0xa [ 1308.198096] ? create_object.isra.0+0x3a/0xa20 [ 1308.199141] should_failslab+0x5/0x20 [ 1308.200034] kmem_cache_alloc+0x5b/0x310 [ 1308.200981] create_object.isra.0+0x3a/0xa20 [ 1308.202008] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1308.203184] __kmalloc_track_caller+0x177/0x370 [ 1308.204272] ? kstrdup_const+0x53/0x80 [ 1308.205198] kstrdup+0x36/0x70 [ 1308.205937] kstrdup_const+0x53/0x80 [ 1308.206804] __kernfs_new_node+0x9d/0x860 [ 1308.207774] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1308.208990] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1308.210095] ? lock_acquire+0x197/0x470 [ 1308.211005] ? find_held_lock+0x2c/0x110 [ 1308.211966] ? sysfs_do_create_link_sd+0x82/0x140 [ 1308.213078] kernfs_new_node+0x18d/0x250 [ 1308.214014] kernfs_create_link+0xcb/0x230 [ 1308.214999] sysfs_do_create_link_sd+0x90/0x140 [ 1308.216096] sysfs_create_link+0x5f/0xc0 [ 1308.217032] device_add+0x703/0x1c50 [ 1308.217897] ? devlink_add_symlinks+0x970/0x970 [ 1308.218988] device_create_groups_vargs+0x207/0x280 [ 1308.220168] device_create+0xdc/0x120 [ 1308.221050] ? device_create_groups_vargs+0x280/0x280 [ 1308.222246] ? init_timer_key+0x12a/0x240 [ 1308.223207] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1308.224334] mac80211_hwsim_new_radio+0x376/0x4290 [ 1308.225473] ? trace_hardirqs_on+0x5b/0x180 [ 1308.226483] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1308.227573] ? __kmalloc+0x16e/0x390 [ 1308.228449] hwsim_new_radio_nl+0x991/0x1080 [ 1308.229453] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1308.230670] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1308.232189] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1308.233673] genl_family_rcv_msg_doit+0x22d/0x330 [ 1308.234782] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1308.236321] ? cap_capable+0x1cd/0x230 [ 1308.237253] ? ns_capable+0xe2/0x110 [ 1308.238120] genl_rcv_msg+0x36a/0x5a0 [ 1308.238998] ? genl_get_cmd+0x480/0x480 [ 1308.239920] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1308.241110] ? lock_release+0x680/0x680 [ 1308.242039] ? netlink_deliver_tap+0xf4/0xcc0 [ 1308.243078] netlink_rcv_skb+0x14b/0x430 [ 1308.244055] ? genl_get_cmd+0x480/0x480 [ 1308.244965] ? netlink_ack+0xab0/0xab0 [ 1308.245869] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1308.246921] ? is_vmalloc_addr+0x7b/0xb0 [ 1308.247858] genl_rcv+0x24/0x40 [ 1308.248636] netlink_unicast+0x54e/0x800 [ 1308.249577] ? netlink_attachskb+0x870/0x870 [ 1308.250629] netlink_sendmsg+0x90f/0xe00 [ 1308.251569] ? netlink_unicast+0x800/0x800 [ 1308.252584] ? netlink_unicast+0x800/0x800 [ 1308.253543] __sock_sendmsg+0x154/0x190 [ 1308.254455] ____sys_sendmsg+0x70d/0x870 [ 1308.255396] ? sock_write_iter+0x3d0/0x3d0 [ 1308.256377] ? do_recvmmsg+0x6d0/0x6d0 [ 1308.257286] ? lock_downgrade+0x6d0/0x6d0 [ 1308.258267] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1308.259485] ___sys_sendmsg+0xf3/0x170 [ 1308.260401] ? sendmsg_copy_msghdr+0x160/0x160 [ 1308.261490] ? __fget_files+0x2cf/0x520 [ 1308.262404] ? lock_downgrade+0x6d0/0x6d0 [ 1308.263383] ? find_held_lock+0x2c/0x110 [ 1308.264326] ? __fget_files+0x2f8/0x520 [ 1308.265249] ? __fget_light+0xea/0x290 [ 1308.266160] __sys_sendmsg+0xe5/0x1b0 [ 1308.267049] ? __sys_sendmsg_sock+0x40/0x40 [ 1308.268048] ? rcu_read_lock_any_held+0x75/0xa0 [ 1308.269133] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1308.270338] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1308.271514] do_syscall_64+0x33/0x40 [ 1308.272397] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1308.273583] RIP: 0033:0x7faee752eb19 [ 1308.274437] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1308.278657] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1308.280396] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 1308.282036] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1308.283663] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1308.285327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1308.286978] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 [ 1308.339023] FAULT_INJECTION: forcing a failure. [ 1308.339023] name failslab, interval 1, probability 0, space 0, times 0 [ 1308.340483] CPU: 1 PID: 8416 Comm: syz-executor.5 Not tainted 5.10.237 #1 [ 1308.341288] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1308.342268] Call Trace: [ 1308.342589] dump_stack+0x107/0x167 [ 1308.343016] should_fail.cold+0x5/0xa [ 1308.343471] ? create_object.isra.0+0x3a/0xa20 [ 1308.344014] should_failslab+0x5/0x20 [ 1308.344459] kmem_cache_alloc+0x5b/0x310 [ 1308.344939] create_object.isra.0+0x3a/0xa20 [ 1308.345452] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1308.346051] __kmalloc+0x16e/0x390 [ 1308.346469] rfkill_alloc+0xa6/0x2c0 [ 1308.346910] wiphy_new_nm+0x12a3/0x1e00 [ 1308.347378] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1308.347938] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1308.348551] ? __local_bh_enable_ip+0x9d/0x100 [ 1308.349083] ? trace_hardirqs_on+0x5b/0x180 [ 1308.349602] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1308.350176] ? ____sys_sendmsg+0x70d/0x870 [ 1308.350670] ? ___sys_sendmsg+0xf3/0x170 [ 1308.351145] ? __sys_sendmsg+0xe5/0x1b0 [ 1308.351611] ? do_syscall_64+0x33/0x40 [ 1308.352075] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1308.352702] ? lock_acquire+0x197/0x470 [ 1308.353162] ? create_object.isra.0+0x3ad/0xa20 [ 1308.353710] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1308.354254] ? __kmalloc+0x16e/0x390 [ 1308.354692] hwsim_new_radio_nl+0x991/0x1080 [ 1308.355206] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1308.355827] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1308.356609] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1308.357376] genl_family_rcv_msg_doit+0x22d/0x330 [ 1308.357940] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1308.358716] ? cap_capable+0x1cd/0x230 [ 1308.359176] ? ns_capable+0xe2/0x110 [ 1308.359615] genl_rcv_msg+0x36a/0x5a0 [ 1308.360072] ? genl_get_cmd+0x480/0x480 [ 1308.360541] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1308.361143] ? lock_release+0x680/0x680 [ 1308.361612] ? netlink_deliver_tap+0xf4/0xcc0 [ 1308.362137] netlink_rcv_skb+0x14b/0x430 [ 1308.362614] ? genl_get_cmd+0x480/0x480 [ 1308.363077] ? netlink_ack+0xab0/0xab0 [ 1308.363536] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1308.364079] ? is_vmalloc_addr+0x7b/0xb0 [ 1308.364558] genl_rcv+0x24/0x40 [ 1308.364950] netlink_unicast+0x54e/0x800 [ 1308.365429] ? netlink_attachskb+0x870/0x870 [ 1308.365951] netlink_sendmsg+0x90f/0xe00 [ 1308.366433] ? netlink_unicast+0x800/0x800 [ 1308.366932] ? netlink_unicast+0x800/0x800 [ 1308.367427] __sock_sendmsg+0x154/0x190 [ 1308.367889] ____sys_sendmsg+0x70d/0x870 [ 1308.368375] ? sock_write_iter+0x3d0/0x3d0 [ 1308.368862] ? do_recvmmsg+0x6d0/0x6d0 [ 1308.369318] ? lock_downgrade+0x6d0/0x6d0 [ 1308.369800] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1308.370413] ___sys_sendmsg+0xf3/0x170 [ 1308.370868] ? sendmsg_copy_msghdr+0x160/0x160 [ 1308.371405] ? __fget_files+0x2cf/0x520 [ 1308.371875] ? lock_downgrade+0x6d0/0x6d0 [ 1308.372368] ? find_held_lock+0x2c/0x110 [ 1308.372846] ? __fget_files+0x2f8/0x520 [ 1308.373312] ? __fget_light+0xea/0x290 [ 1308.373770] __sys_sendmsg+0xe5/0x1b0 [ 1308.374214] ? __sys_sendmsg_sock+0x40/0x40 [ 1308.374718] ? rcu_read_lock_any_held+0x75/0xa0 [ 1308.375269] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1308.375877] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1308.376484] do_syscall_64+0x33/0x40 [ 1308.376920] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1308.377517] RIP: 0033:0x7fd7004f8b19 [ 1308.377948] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1308.380090] RSP: 002b:00007fd6fda6e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1308.380982] RAX: ffffffffffffffda RBX: 00007fd70060bf60 RCX: 00007fd7004f8b19 [ 1308.381812] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1308.382646] RBP: 00007fd6fda6e1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1308.383476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1308.384312] R13: 00007ffe37d3003f R14: 00007fd6fda6e300 R15: 0000000000022000 03:01:29 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x5b, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:01:29 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 23) 03:01:29 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x1a, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1329.962319] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 03:01:29 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 42) 03:01:29 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 44) 03:01:29 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 16) 03:01:29 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) getsockname$inet(0xffffffffffffffff, &(0x7f0000000180)={0x2, 0x0, @empty}, &(0x7f00000001c0)=0x10) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) bind$unix(r1, &(0x7f0000000100)=@file={0x0, './file0\x00'}, 0x6e) 03:01:29 executing program 0: pread64(0xffffffffffffffff, &(0x7f0000000200)=""/155, 0x9b, 0x200) r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x73, 0x0, 0x0, 0x0, 0x0, 0x4, 0x12418, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000140)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) memfd_create(&(0x7f0000000000)='\x00', 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r1, 0x0) perf_event_open(&(0x7f0000000740)={0x1, 0x80, 0x0, 0x0, 0x4, 0x0, 0x0, 0x9e, 0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext, 0xd00, 0x0, 0x0, 0x0, 0x5, 0x0, 0xce1c}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) openat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x640182, 0x40) r2 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2000003, 0x1f012, r2, 0x0) openat(0xffffffffffffffff, 0x0, 0x36400, 0xe375d1901a7fcc3b) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) r3 = signalfd(0xffffffffffffffff, &(0x7f0000000040)={[0x7ff]}, 0x8) name_to_handle_at(r0, &(0x7f0000000180)='./file1\x00', &(0x7f0000000500)=ANY=[@ANYBLOB="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"], &(0x7f0000000300), 0x1400) syz_io_uring_setup(0x8003a75, &(0x7f0000000080)={0x0, 0xa91f, 0x10, 0x0, 0x3be, 0x0, r3}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000002c0), &(0x7f0000000100)) ioctl(0xffffffffffffffff, 0x8, &(0x7f0000000380)="cb5fff213bc7d125cf3b7327d971b5297abb9b650600637c0bc53ff4d40a00000000f67d5855a6db9e2168b1b3f8df9a492dbfba02c743d109d183be3118413c4faeccc9321f9fd393f4a5aa8db2b9e8919afd920c7d0d8b3dea44f2730c8244fc7fcfdc") r4 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000400)=@IORING_OP_FALLOCATE={0x11, 0x4, 0x0, @fd=r2, 0x4, 0x0, 0x5, 0x0, 0x1, {0x0, r4}}, 0xfe) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f012, r0, 0x0) dup2(r1, r3) io_uring_enter(0xffffffffffffffff, 0x0, 0x8ce8, 0x0, &(0x7f0000000340), 0x8) [ 1330.022966] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.024137] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1330.026257] buffer_io_error: 6 callbacks suppressed [ 1330.026269] Buffer I/O error on dev sr0, logical block 0, async page read [ 1330.028984] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.030161] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1330.032261] Buffer I/O error on dev sr0, logical block 1, async page read [ 1330.033903] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.035150] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1330.037261] Buffer I/O error on dev sr0, logical block 2, async page read [ 1330.038912] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.040097] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1330.043289] Buffer I/O error on dev sr0, logical block 3, async page read [ 1330.045679] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1330.047092] FAULT_INJECTION: forcing a failure. [ 1330.047092] name failslab, interval 1, probability 0, space 0, times 0 [ 1330.048574] CPU: 0 PID: 8451 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 1330.049412] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1330.050429] Call Trace: [ 1330.050759] dump_stack+0x107/0x167 [ 1330.051211] should_fail.cold+0x5/0xa [ 1330.051684] ? __kernfs_new_node+0xd4/0x860 [ 1330.052221] should_failslab+0x5/0x20 [ 1330.052690] kmem_cache_alloc+0x5b/0x310 [ 1330.053195] __kernfs_new_node+0xd4/0x860 [ 1330.053706] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1330.054350] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1330.054931] ? wake_up_q+0xab/0x110 [ 1330.055378] ? do_raw_spin_unlock+0x4f/0x220 [ 1330.055922] ? lock_acquire+0x197/0x470 [ 1330.056417] ? find_held_lock+0x2c/0x110 [ 1330.056919] ? sysfs_do_create_link_sd+0x82/0x140 [ 1330.057517] kernfs_new_node+0x18d/0x250 [ 1330.058018] kernfs_create_link+0xcb/0x230 [ 1330.058537] sysfs_do_create_link_sd+0x90/0x140 [ 1330.059109] sysfs_create_link+0x5f/0xc0 [ 1330.059608] device_add+0x703/0x1c50 [ 1330.060069] ? devlink_add_symlinks+0x970/0x970 [ 1330.060655] device_create_groups_vargs+0x207/0x280 [ 1330.061265] device_create+0xdc/0x120 [ 1330.061738] ? device_create_groups_vargs+0x280/0x280 [ 1330.062371] ? init_timer_key+0x12a/0x240 [ 1330.062885] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1330.063479] mac80211_hwsim_new_radio+0x376/0x4290 [ 1330.064086] ? trace_hardirqs_on+0x5b/0x180 [ 1330.064630] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1330.065204] ? __kmalloc+0x16e/0x390 [ 1330.065665] hwsim_new_radio_nl+0x991/0x1080 [ 1330.066208] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1330.066849] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1330.067657] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1330.068473] genl_family_rcv_msg_doit+0x22d/0x330 [ 1330.069065] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1330.069875] ? cap_capable+0x1cd/0x230 [ 1330.070365] ? ns_capable+0xe2/0x110 [ 1330.070827] genl_rcv_msg+0x36a/0x5a0 [ 1330.071297] ? genl_get_cmd+0x480/0x480 [ 1330.071787] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1330.072426] ? lock_release+0x680/0x680 [ 1330.072912] ? netlink_deliver_tap+0xf4/0xcc0 [ 1330.073467] netlink_rcv_skb+0x14b/0x430 [ 1330.073966] ? genl_get_cmd+0x480/0x480 [ 1330.074454] ? netlink_ack+0xab0/0xab0 [ 1330.074936] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1330.075494] ? is_vmalloc_addr+0x7b/0xb0 [ 1330.075995] genl_rcv+0x24/0x40 [ 1330.076407] netlink_unicast+0x54e/0x800 [ 1330.076909] ? netlink_attachskb+0x870/0x870 [ 1330.077452] netlink_sendmsg+0x90f/0xe00 [ 1330.077956] ? netlink_unicast+0x800/0x800 [ 1330.078482] ? netlink_unicast+0x800/0x800 [ 1330.079003] __sock_sendmsg+0x154/0x190 [ 1330.079496] ____sys_sendmsg+0x70d/0x870 [ 1330.079995] ? sock_write_iter+0x3d0/0x3d0 [ 1330.080519] ? do_recvmmsg+0x6d0/0x6d0 [ 1330.080999] ? lock_downgrade+0x6d0/0x6d0 [ 1330.081510] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1330.082159] ___sys_sendmsg+0xf3/0x170 [ 1330.082643] ? sendmsg_copy_msghdr+0x160/0x160 [ 1330.083207] ? __fget_files+0x2cf/0x520 [ 1330.083695] ? lock_downgrade+0x6d0/0x6d0 [ 1330.084209] ? find_held_lock+0x2c/0x110 [ 1330.084714] ? __fget_files+0x2f8/0x520 [ 1330.085205] ? __fget_light+0xea/0x290 [ 1330.085687] __sys_sendmsg+0xe5/0x1b0 [ 1330.086154] ? __sys_sendmsg_sock+0x40/0x40 [ 1330.086680] ? rcu_read_lock_any_held+0x75/0xa0 [ 1330.087264] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1330.087911] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1330.088561] do_syscall_64+0x33/0x40 [ 1330.089017] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1330.089643] RIP: 0033:0x7faee752eb19 [ 1330.090099] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1330.092357] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1330.093282] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 1330.094152] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1330.095016] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1330.095883] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1330.096757] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 [ 1330.100482] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1330.101685] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1330.102552] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1330.103352] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 01 00 00 01 00 [ 1330.104278] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 4 prio class 0 [ 1330.105481] Buffer I/O error on dev sr0, logical block 4, async page read [ 1330.106338] Buffer I/O error on dev sr0, logical block 5, async page read [ 1330.107186] Buffer I/O error on dev sr0, logical block 6, async page read [ 1330.108037] Buffer I/O error on dev sr0, logical block 7, async page read [ 1330.109218] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.109905] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1330.111311] Buffer I/O error on dev sr0, logical block 0, async page read [ 1330.112488] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.113175] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1330.114453] Buffer I/O error on dev sr0, logical block 1, async page read [ 1330.115501] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.116199] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1330.117829] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.118511] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1330.118726] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.121324] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1330.122674] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.123653] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.124532] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 03:01:30 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x100010, 0xffffffffffffffff, 0x0) r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x7f, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) syz_io_uring_submit(r5, r4, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) ioctl$AUTOFS_IOC_SETTIMEOUT(r0, 0x80049367, &(0x7f0000000180)=0x80010000000) syz_io_uring_submit(r1, r4, &(0x7f0000000100)=@IORING_OP_CLOSE={0x13, 0x1}, 0x1) r6 = socket$unix(0x1, 0x5, 0x0) socket$nl_generic(0x10, 0x3, 0x10) connect$unix(r6, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) [ 1330.175841] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1330.177434] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1330.178274] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1330.179076] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 02 00 [ 1330.180282] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.183503] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.184440] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.185270] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.186438] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.187175] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.187981] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.188856] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.189692] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.190485] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.191323] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.192088] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.192938] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.193679] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.194531] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.195297] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.196299] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.197108] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.197928] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.198669] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.199521] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.200297] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.201130] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.201899] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.203402] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.204871] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.206225] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.208212] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.209586] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.210980] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.212506] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.213926] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.215392] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.216888] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.218265] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.219650] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.221056] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.222419] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.223856] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.225243] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.226593] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.227599] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.228402] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.229581] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.230356] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.231284] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.232056] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.232993] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.233888] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.234714] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.235506] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.236358] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.237177] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.238022] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.238806] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.239636] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.240729] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.242151] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.243739] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.245146] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.246515] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.250072] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.251499] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.252933] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.254559] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.256171] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.257197] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.257952] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.258736] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.259551] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.260370] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.261194] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.262004] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.262837] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.263543] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.264361] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.265132] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.265951] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.266661] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.267497] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.268373] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 03:01:30 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x5d, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:01:30 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) (fail_nth: 43) [ 1330.270091] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.272571] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.274139] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.275978] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.277395] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.278860] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.280241] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.281629] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.282593] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.283338] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.284512] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.285258] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.286168] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.286908] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.287700] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.288554] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.289368] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.290154] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.290966] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.291674] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.292515] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.293261] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.294086] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.295138] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.296008] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.296788] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.297627] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.298423] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.299292] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.300080] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.301072] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.302855] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.304266] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.305714] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.307259] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.308677] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.312220] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.313631] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.315298] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.317395] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.319055] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.320481] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.322067] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.323495] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.324975] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.326392] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 03:01:30 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r2, &(0x7f0000000180)=""/198, 0xc6) sendfile(0xffffffffffffffff, r2, 0x0, 0x8) [ 1330.327902] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.329507] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.330992] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.332420] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.333899] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.335314] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.336714] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.338107] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.339530] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.341071] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.341095] FAULT_INJECTION: forcing a failure. [ 1330.341095] name failslab, interval 1, probability 0, space 0, times 0 [ 1330.342568] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.343902] CPU: 0 PID: 8461 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1330.343909] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1330.343914] Call Trace: [ 1330.343931] dump_stack+0x107/0x167 [ 1330.343948] should_fail.cold+0x5/0xa [ 1330.343969] ? create_object.isra.0+0x3a/0xa20 [ 1330.345315] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.345907] should_failslab+0x5/0x20 [ 1330.345919] kmem_cache_alloc+0x5b/0x310 [ 1330.345938] ? vsnprintf+0x4ba/0x1600 [ 1330.347986] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.348032] create_object.isra.0+0x3a/0xa20 [ 1330.349116] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.349270] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1330.349288] __kmalloc_track_caller+0x177/0x370 [ 1330.352022] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.352297] ? kasprintf+0xbb/0xf0 [ 1330.352316] kvasprintf+0xb5/0x150 [ 1330.353684] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.353948] ? bust_spinlocks+0xe0/0xe0 [ 1330.353962] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1330.353977] ? get_random_u32+0x3cb/0x670 [ 1330.353995] kasprintf+0xbb/0xf0 [ 1330.355365] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.355718] ? kvasprintf_const+0x1a0/0x1a0 [ 1330.357010] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.357348] ? lockdep_init_map_type+0x2c7/0x780 [ 1330.358376] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.358537] ? lockdep_init_map_type+0x2c7/0x780 [ 1330.359949] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.360137] ieee80211_alloc_led_names+0x1ac/0x420 [ 1330.361509] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.361745] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1330.362727] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.363086] ? trace_hardirqs_on+0x5b/0x180 [ 1330.363101] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1330.363120] ? ____sys_sendmsg+0x70d/0x870 [ 1330.364315] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.364658] ? ___sys_sendmsg+0xf3/0x170 [ 1330.364676] ? __sys_sendmsg+0xe5/0x1b0 [ 1330.365972] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.366305] ? do_syscall_64+0x33/0x40 [ 1330.366324] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1330.367590] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.367959] ? lock_acquire+0x197/0x470 [ 1330.367969] ? create_object.isra.0+0x3ad/0xa20 [ 1330.367990] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1330.369379] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.369666] ? __kmalloc+0x16e/0x390 [ 1330.371028] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.371290] hwsim_new_radio_nl+0x991/0x1080 [ 1330.372476] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.372802] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1330.372836] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1330.374027] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.374351] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1330.374369] genl_family_rcv_msg_doit+0x22d/0x330 [ 1330.375492] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.375713] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1330.377088] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.377295] ? cap_capable+0x1cd/0x230 [ 1330.378681] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.379056] ? ns_capable+0xe2/0x110 [ 1330.379071] genl_rcv_msg+0x36a/0x5a0 [ 1330.379088] ? genl_get_cmd+0x480/0x480 [ 1330.380235] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.380493] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1330.381764] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.382107] ? lock_release+0x680/0x680 [ 1330.383158] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.383525] ? netlink_deliver_tap+0xf4/0xcc0 [ 1330.383541] netlink_rcv_skb+0x14b/0x430 [ 1330.384756] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.385115] ? genl_get_cmd+0x480/0x480 [ 1330.386464] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.386997] ? netlink_ack+0xab0/0xab0 [ 1330.387014] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1330.387032] ? is_vmalloc_addr+0x7b/0xb0 [ 1330.388416] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.388929] genl_rcv+0x24/0x40 [ 1330.388939] netlink_unicast+0x54e/0x800 [ 1330.388959] ? netlink_attachskb+0x870/0x870 [ 1330.390244] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.390607] netlink_sendmsg+0x90f/0xe00 [ 1330.392278] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.392638] ? netlink_unicast+0x800/0x800 [ 1330.393728] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.394092] ? netlink_unicast+0x800/0x800 [ 1330.394104] __sock_sendmsg+0x154/0x190 [ 1330.394120] ____sys_sendmsg+0x70d/0x870 [ 1330.395285] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.395358] ? sock_write_iter+0x3d0/0x3d0 [ 1330.396494] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.396824] ? do_recvmmsg+0x6d0/0x6d0 [ 1330.396838] ? SOFTIRQ_verbose+0x10/0x10 [ 1330.396848] ? lock_downgrade+0x6d0/0x6d0 [ 1330.396866] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1330.398210] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.398570] ? SOFTIRQ_verbose+0x10/0x10 [ 1330.398587] ___sys_sendmsg+0xf3/0x170 [ 1330.399697] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.400057] ? sendmsg_copy_msghdr+0x160/0x160 [ 1330.400072] ? __fget_files+0x2cf/0x520 [ 1330.400089] ? lock_downgrade+0x6d0/0x6d0 [ 1330.401308] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.401528] ? find_held_lock+0x2c/0x110 [ 1330.402930] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.403107] ? __fget_files+0x2f8/0x520 [ 1330.404483] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.404686] ? __fget_light+0xea/0x290 [ 1330.405958] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.406135] __sys_sendmsg+0xe5/0x1b0 [ 1330.407572] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.407642] ? __sys_sendmsg_sock+0x40/0x40 [ 1330.408819] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.409042] ? rcu_read_lock_any_held+0x75/0xa0 [ 1330.409066] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1330.410427] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.410646] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1330.410662] do_syscall_64+0x33/0x40 [ 1330.412047] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.412293] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1330.413662] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.413886] RIP: 0033:0x7fdcf09cab19 [ 1330.413900] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1330.413906] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1330.415020] sr 1:0:0:0: [sr0] tag#0 unaligned transfer 03:01:30 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r1, &(0x7f0000000180)=""/198, 0xc6) bind$unix(r1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e) ioctl$AUTOFS_IOC_SETTIMEOUT(r0, 0x80049367, &(0x7f00000012c0)=0xffffffffffffd378) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r2 = socket$unix(0x1, 0x5, 0x0) connect$unix(r2, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) r3 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000280), 0x200, 0x0) read(r3, &(0x7f00000002c0)=""/4096, 0x1000) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={'\x00', 0xfff, 0x0, 0x6, 0x7, 0x9, 0xffffffffffffffff}) [ 1330.415240] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1330.415254] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 03:01:30 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x21, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1330.416633] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.416862] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1330.416869] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1330.416876] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 [ 1330.465264] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.466590] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.467556] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.468352] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.472132] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.472899] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.473724] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.474506] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.475847] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.476641] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.477482] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.478230] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.479083] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.479837] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.480663] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.481406] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.482235] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.483072] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.483915] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.484639] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.485471] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.486216] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.487045] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.487783] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.488621] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.489408] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.490244] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.490993] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.491852] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.492601] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.493450] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.494205] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.495034] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.495841] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.496669] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.497427] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.498258] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.498997] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.499836] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.500562] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.501397] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.502192] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.503023] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.503738] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.504582] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.505330] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.506172] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.506916] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.507731] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.508558] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.509503] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.510250] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.511080] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.511820] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.512652] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.513393] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.514245] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.515049] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.515926] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.516690] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.517871] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.519146] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.520030] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.520874] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.521800] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.522575] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.523444] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.524231] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.525111] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.525880] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.526700] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.527453] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.528318] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.529137] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.530001] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.530723] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.531681] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.532473] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.533337] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.534100] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.534960] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.535718] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.536615] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.537444] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.538328] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.539106] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.539997] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.540865] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.541750] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.542583] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.543440] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.544220] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.545071] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.545829] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.546657] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.547446] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.548329] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.549184] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.550026] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.550749] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.551623] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.552396] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.553375] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.554163] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.555566] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.556973] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.557720] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.558646] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.559474] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.560385] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.561255] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.562130] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.562921] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.563830] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.564553] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.565406] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.566177] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.567008] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.567723] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.568587] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.569354] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.570367] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.571256] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.572112] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.572924] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.573836] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.574589] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.575497] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.576280] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.578428] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.579163] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.580003] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.580726] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.581545] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.582292] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.583119] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.583853] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.584730] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.585474] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.586311] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.587045] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.587882] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.588600] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.589426] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.590173] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.590986] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.591772] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.592523] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.593335] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.594104] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.594914] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.595657] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.596475] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.597262] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.598085] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.598926] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.599729] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.600497] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.601306] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.602066] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.602889] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.603669] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.604545] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.605340] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.606194] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.606972] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.607863] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.609152] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.610468] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.611342] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.612615] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.613380] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.614237] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.615836] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.616572] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.617445] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.618305] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.619252] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.620031] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.620946] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.621673] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.622529] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.623298] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.624174] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.625004] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.625911] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.626678] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.627591] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.628429] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.629320] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.630108] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.631296] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.632194] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.632981] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.633866] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.634605] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.635452] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.636239] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.637101] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.638052] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.639540] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.640483] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.641303] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.642186] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.642967] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.643900] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.644672] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.645573] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.646447] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.647969] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.649494] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.650941] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.652304] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.653714] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.655081] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.656475] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.658974] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.659899] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.660720] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.661840] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.662631] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.663528] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.664339] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.665238] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.666111] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.667813] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.669763] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.671313] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.672733] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.674406] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.675851] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.677181] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.678588] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.680056] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.681428] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.682241] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.683247] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.684195] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.685079] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.685906] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.686845] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.689385] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.691120] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.692475] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.693873] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.695327] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.696692] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.698060] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.699487] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.700523] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.701322] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.702743] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.703560] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.704485] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.705312] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.706220] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.707051] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.709554] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.711019] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.712372] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.713725] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.715304] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.716665] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.718037] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.719449] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.720861] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.721644] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.723023] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.723883] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.724754] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.725557] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.726541] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.727408] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.729056] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.730412] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.731952] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.733326] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.734888] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.736277] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.737633] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.739160] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.740537] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.742091] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.743445] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.744957] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.746325] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.747679] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.749059] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.754192] FAULT_INJECTION: forcing a failure. [ 1330.754192] name failslab, interval 1, probability 0, space 0, times 0 [ 1330.754212] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.756599] CPU: 1 PID: 8463 Comm: syz-executor.5 Not tainted 5.10.237 #1 [ 1330.757396] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.758649] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1330.758657] Call Trace: [ 1330.758684] dump_stack+0x107/0x167 [ 1330.758707] should_fail.cold+0x5/0xa [ 1330.758727] ? kvmalloc_node+0x119/0x170 [ 1330.758750] should_failslab+0x5/0x20 [ 1330.758769] __kmalloc_node+0x76/0x420 [ 1330.758794] kvmalloc_node+0x119/0x170 [ 1330.758818] bucket_table_alloc.isra.0+0x88/0x490 [ 1330.758842] rhashtable_init+0x341/0x760 [ 1330.758866] rhltable_init+0x1c/0x60 [ 1330.758886] sta_info_init+0x1f/0x110 [ 1330.758905] ieee80211_alloc_hw_nm+0x6a0/0x2320 [ 1330.758924] ? trace_hardirqs_on+0x5b/0x180 [ 1330.758950] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1330.760282] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.761363] ? ____sys_sendmsg+0x70d/0x870 [ 1330.761381] ? ___sys_sendmsg+0xf3/0x170 [ 1330.761399] ? __sys_sendmsg+0xe5/0x1b0 [ 1330.761419] ? do_syscall_64+0x33/0x40 [ 1330.761909] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.762500] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1330.763127] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.763806] ? lock_acquire+0x197/0x470 [ 1330.763826] ? create_object.isra.0+0x3ad/0xa20 [ 1330.764447] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.765112] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1330.765135] ? __kmalloc+0x16e/0x390 [ 1330.765779] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.766611] hwsim_new_radio_nl+0x991/0x1080 [ 1330.767284] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.767879] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1330.767920] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1330.768612] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.769350] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1330.769379] genl_family_rcv_msg_doit+0x22d/0x330 [ 1330.770048] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.770917] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1330.770939] ? cap_capable+0x1cd/0x230 [ 1330.771752] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.772472] ? ns_capable+0xe2/0x110 [ 1330.773115] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.773785] genl_rcv_msg+0x36a/0x5a0 [ 1330.773811] ? genl_get_cmd+0x480/0x480 [ 1330.774426] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.775374] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1330.775404] ? lock_release+0x680/0x680 [ 1330.776218] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.777143] ? netlink_deliver_tap+0xf4/0xcc0 [ 1330.777169] netlink_rcv_skb+0x14b/0x430 [ 1330.777190] ? genl_get_cmd+0x480/0x480 [ 1330.777844] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.778639] ? netlink_ack+0xab0/0xab0 [ 1330.779435] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.780273] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1330.780294] ? is_vmalloc_addr+0x7b/0xb0 [ 1330.781017] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.781847] genl_rcv+0x24/0x40 [ 1330.781867] netlink_unicast+0x54e/0x800 [ 1330.782542] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.783502] ? netlink_attachskb+0x870/0x870 [ 1330.783536] netlink_sendmsg+0x90f/0xe00 [ 1330.784309] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.785562] ? netlink_unicast+0x800/0x800 [ 1330.785596] ? netlink_unicast+0x800/0x800 [ 1330.786403] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.787605] __sock_sendmsg+0x154/0x190 [ 1330.787627] ____sys_sendmsg+0x70d/0x870 [ 1330.787652] ? sock_write_iter+0x3d0/0x3d0 [ 1330.788427] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.789347] ? do_recvmmsg+0x6d0/0x6d0 [ 1330.789372] ? SOFTIRQ_verbose+0x10/0x10 [ 1330.789393] ? lock_downgrade+0x6d0/0x6d0 [ 1330.790328] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.790998] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1330.791019] ? SOFTIRQ_verbose+0x10/0x10 [ 1330.791838] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.792431] ___sys_sendmsg+0xf3/0x170 [ 1330.793242] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.793850] ? sendmsg_copy_msghdr+0x160/0x160 [ 1330.793877] ? __fget_files+0x2cf/0x520 [ 1330.794569] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.795436] ? lock_downgrade+0x6d0/0x6d0 [ 1330.795458] ? find_held_lock+0x2c/0x110 [ 1330.795491] ? __fget_files+0x2f8/0x520 [ 1330.796269] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.796938] ? __fget_light+0xea/0x290 [ 1330.796969] __sys_sendmsg+0xe5/0x1b0 [ 1330.797793] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.798534] ? __sys_sendmsg_sock+0x40/0x40 [ 1330.799184] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.799853] ? rcu_read_lock_any_held+0x75/0xa0 [ 1330.799895] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1330.800668] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.801330] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1330.801355] do_syscall_64+0x33/0x40 [ 1330.802160] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.802947] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1330.802964] RIP: 0033:0x7fd7004f8b19 [ 1330.805409] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.806076] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1330.806088] RSP: 002b:00007fd6fda6e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1330.806917] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.807655] RAX: ffffffffffffffda RBX: 00007fd70060bf60 RCX: 00007fd7004f8b19 [ 1330.808385] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.809237] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1330.809250] RBP: 00007fd6fda6e1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1330.809262] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1330.809278] R13: 00007ffe37d3003f R14: 00007fd6fda6e300 R15: 0000000000022000 [ 1330.809960] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.840229] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.841228] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.843147] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.844615] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.847715] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.849276] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.850703] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.852911] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.854992] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.856074] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.856883] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.857635] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.859023] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.859800] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.860588] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.861346] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.862825] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.864257] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.865652] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.867245] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.868658] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.870327] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.871734] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.873187] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.874605] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.875993] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.876818] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.877571] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.878731] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.879486] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.880463] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.881218] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.882101] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.882982] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.884677] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.886099] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.887953] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.889507] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.891011] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.892421] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.893951] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.895380] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.896218] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.897199] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.897998] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.898705] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.899685] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.900463] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.901312] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.902501] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.904168] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.905589] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.907150] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.908666] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.910143] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.911546] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.913012] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.914398] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.915531] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.916300] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.917461] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.918219] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.919092] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.919874] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.920661] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.921544] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.923036] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.924453] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.926072] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.971199] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1330.972409] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1330.973240] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1330.974042] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 01 00 00 01 00 [ 1330.975195] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.975973] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.976855] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.977624] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.978360] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.978824] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1330.979121] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.981392] FAULT_INJECTION: forcing a failure. [ 1330.981392] name failslab, interval 1, probability 0, space 0, times 0 [ 1330.981569] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.983879] CPU: 1 PID: 8462 Comm: syz-executor.1 Not tainted 5.10.237 #1 [ 1330.984561] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.985899] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1330.985907] Call Trace: [ 1330.985939] dump_stack+0x107/0x167 [ 1330.986688] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.988329] should_fail.cold+0x5/0xa [ 1330.988356] ? __kernfs_new_node+0xd4/0x860 [ 1330.988812] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.989425] should_failslab+0x5/0x20 [ 1330.990222] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.990857] kmem_cache_alloc+0x5b/0x310 [ 1330.990888] __kernfs_new_node+0xd4/0x860 [ 1330.991531] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.992511] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1330.992539] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1330.992572] ? lock_acquire+0x197/0x470 [ 1330.993162] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.994123] ? find_held_lock+0x2c/0x110 [ 1330.994151] ? sysfs_do_create_link_sd+0x82/0x140 [ 1330.994753] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.995493] kernfs_new_node+0x18d/0x250 [ 1330.996290] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.997236] kernfs_create_link+0xcb/0x230 [ 1330.997261] sysfs_do_create_link_sd+0x90/0x140 [ 1330.997955] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1330.998654] sysfs_create_link+0x5f/0xc0 [ 1330.999437] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.000130] device_add+0x703/0x1c50 [ 1331.000169] ? devlink_add_symlinks+0x970/0x970 [ 1331.000862] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.001864] device_create_groups_vargs+0x207/0x280 [ 1331.001891] device_create+0xdc/0x120 [ 1331.002454] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.003462] ? device_create_groups_vargs+0x280/0x280 [ 1331.003484] ? init_timer_key+0x12a/0x240 [ 1331.004091] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.004982] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1331.005012] mac80211_hwsim_new_radio+0x376/0x4290 [ 1331.005728] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.006468] ? trace_hardirqs_on+0x5b/0x180 [ 1331.006508] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1331.007231] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.007895] ? __kmalloc+0x16e/0x390 [ 1331.007923] hwsim_new_radio_nl+0x991/0x1080 [ 1331.008585] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.009580] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1331.009621] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1331.010302] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.010994] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1331.011023] genl_family_rcv_msg_doit+0x22d/0x330 [ 1331.011806] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.012737] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1331.013328] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.014328] ? cap_capable+0x1cd/0x230 [ 1331.014364] ? ns_capable+0xe2/0x110 [ 1331.015024] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.015958] genl_rcv_msg+0x36a/0x5a0 [ 1331.015984] ? genl_get_cmd+0x480/0x480 [ 1331.016726] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.017526] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1331.017554] ? lock_release+0x680/0x680 [ 1331.018210] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.019186] ? netlink_deliver_tap+0xf4/0xcc0 [ 1331.019213] netlink_rcv_skb+0x14b/0x430 [ 1331.019736] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.020578] ? genl_get_cmd+0x480/0x480 [ 1331.020601] ? netlink_ack+0xab0/0xab0 [ 1331.021330] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.022312] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1331.022334] ? is_vmalloc_addr+0x7b/0xb0 [ 1331.023303] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.024238] genl_rcv+0x24/0x40 [ 1331.024261] netlink_unicast+0x54e/0x800 [ 1331.025201] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.026050] ? netlink_attachskb+0x870/0x870 [ 1331.026085] netlink_sendmsg+0x90f/0xe00 [ 1331.026852] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.028090] ? netlink_unicast+0x800/0x800 [ 1331.028124] ? netlink_unicast+0x800/0x800 [ 1331.028882] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.029562] __sock_sendmsg+0x154/0x190 [ 1331.030166] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.031116] ____sys_sendmsg+0x70d/0x870 [ 1331.031142] ? sock_write_iter+0x3d0/0x3d0 [ 1331.031731] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.032431] ? do_recvmmsg+0x6d0/0x6d0 [ 1331.032457] ? SOFTIRQ_verbose+0x10/0x10 [ 1331.033218] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.034155] ? lock_downgrade+0x6d0/0x6d0 [ 1331.034184] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1331.034799] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.035749] ? SOFTIRQ_verbose+0x10/0x10 [ 1331.035779] ___sys_sendmsg+0xf3/0x170 [ 1331.036456] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.037181] ? sendmsg_copy_msghdr+0x160/0x160 [ 1331.037208] ? __fget_files+0x2cf/0x520 [ 1331.037977] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.038662] ? lock_downgrade+0x6d0/0x6d0 [ 1331.039249] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.040234] ? find_held_lock+0x2c/0x110 [ 1331.040267] ? __fget_files+0x2f8/0x520 [ 1331.040900] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.041662] ? __fget_light+0xea/0x290 [ 1331.042401] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.042985] __sys_sendmsg+0xe5/0x1b0 [ 1331.043007] ? __sys_sendmsg_sock+0x40/0x40 [ 1331.043595] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.044587] ? rcu_read_lock_any_held+0x75/0xa0 [ 1331.044630] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1331.045232] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.045983] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1331.046007] do_syscall_64+0x33/0x40 [ 1331.046729] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.047506] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1331.047522] RIP: 0033:0x7f051132ab19 [ 1331.048163] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.049141] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1331.049154] RSP: 002b:00007f050e8a0188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1331.049788] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.050731] RAX: ffffffffffffffda RBX: 00007f051143df60 RCX: 00007f051132ab19 [ 1331.051335] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.052107] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1331.052119] RBP: 00007f050e8a01d0 R08: 0000000000000000 R09: 0000000000000000 [ 1331.052134] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1331.052877] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.053578] R13: 00007fff6960b86f R14: 00007f050e8a0300 R15: 0000000000022000 [ 1331.054173] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.093577] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1331.094801] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1331.095617] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1331.096435] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 01 00 00 01 00 [ 1331.097668] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.099035] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.100466] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.102467] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.103398] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.104595] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.105975] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.106729] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.107646] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.108505] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.109434] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.110204] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.111069] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.111847] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.112656] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.113412] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.114239] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.114997] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.115864] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.116687] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.117520] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.118255] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.119058] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.119786] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.120593] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.121359] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.122230] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.123036] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.123959] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.124737] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.125608] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.126408] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.127289] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.128087] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.128997] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.129724] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.130563] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.131330] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.132169] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.132940] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.133728] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.134491] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.135321] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.136113] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.136897] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.137847] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.138624] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.139432] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.140228] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.141042] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.141900] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.142719] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.143527] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.144404] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.145255] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.146101] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.146921] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.147799] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.148657] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.149483] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.150276] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.151389] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.152188] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.153036] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.153753] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.154608] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.155408] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.156239] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.157013] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.157822] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.158640] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.159474] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.160256] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.161115] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.161918] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.162811] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.163611] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.164468] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.165266] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.166118] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.166947] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.167818] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.169699] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.170467] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.171655] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.172435] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.173264] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.174208] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.175056] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.175832] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.176707] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.177492] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.178345] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.179136] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.180025] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.180877] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.181718] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.182519] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.183378] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.184163] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.185009] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.185733] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.186553] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.187321] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.188160] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.188928] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1331.195255] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1331.196667] FAULT_INJECTION: forcing a failure. [ 1331.196667] name failslab, interval 1, probability 0, space 0, times 0 [ 1331.198070] CPU: 0 PID: 8473 Comm: syz-executor.4 Not tainted 5.10.237 #1 [ 1331.198915] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1331.199924] Call Trace: [ 1331.200262] dump_stack+0x107/0x167 [ 1331.200717] should_fail.cold+0x5/0xa [ 1331.201187] ? create_object.isra.0+0x3a/0xa20 [ 1331.201761] should_failslab+0x5/0x20 [ 1331.202225] kmem_cache_alloc+0x5b/0x310 [ 1331.202732] create_object.isra.0+0x3a/0xa20 [ 1331.203267] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1331.203894] kmem_cache_alloc+0x159/0x310 [ 1331.204423] __kernfs_new_node+0xd4/0x860 [ 1331.204930] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1331.205573] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1331.206174] ? lock_acquire+0x197/0x470 [ 1331.206665] ? find_held_lock+0x2c/0x110 [ 1331.207170] ? sysfs_do_create_link_sd+0x82/0x140 [ 1331.207768] kernfs_new_node+0x18d/0x250 [ 1331.208277] kernfs_create_link+0xcb/0x230 [ 1331.208797] sysfs_do_create_link_sd+0x90/0x140 [ 1331.209371] sysfs_create_link+0x5f/0xc0 [ 1331.209872] device_add+0x703/0x1c50 [ 1331.210337] ? devlink_add_symlinks+0x970/0x970 [ 1331.210917] device_create_groups_vargs+0x207/0x280 [ 1331.211525] device_create+0xdc/0x120 [ 1331.212001] ? device_create_groups_vargs+0x280/0x280 [ 1331.212638] ? init_timer_key+0x12a/0x240 [ 1331.213159] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1331.213751] mac80211_hwsim_new_radio+0x376/0x4290 [ 1331.214356] ? trace_hardirqs_on+0x5b/0x180 [ 1331.214892] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1331.215472] ? __kmalloc+0x16e/0x390 [ 1331.215930] hwsim_new_radio_nl+0x991/0x1080 [ 1331.216485] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1331.217128] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1331.217927] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1331.218730] genl_family_rcv_msg_doit+0x22d/0x330 [ 1331.219328] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1331.220140] ? cap_capable+0x1cd/0x230 [ 1331.220633] ? ns_capable+0xe2/0x110 [ 1331.221091] genl_rcv_msg+0x36a/0x5a0 [ 1331.221556] ? genl_get_cmd+0x480/0x480 [ 1331.222042] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1331.222673] ? lock_release+0x680/0x680 [ 1331.223159] ? netlink_deliver_tap+0xf4/0xcc0 [ 1331.223709] netlink_rcv_skb+0x14b/0x430 [ 1331.224224] ? genl_get_cmd+0x480/0x480 [ 1331.224707] ? netlink_ack+0xab0/0xab0 [ 1331.225190] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1331.225754] ? is_vmalloc_addr+0x7b/0xb0 [ 1331.226256] genl_rcv+0x24/0x40 [ 1331.226668] netlink_unicast+0x54e/0x800 [ 1331.227185] ? netlink_attachskb+0x870/0x870 [ 1331.227730] netlink_sendmsg+0x90f/0xe00 [ 1331.228248] ? netlink_unicast+0x800/0x800 [ 1331.228771] ? netlink_unicast+0x800/0x800 [ 1331.229290] __sock_sendmsg+0x154/0x190 [ 1331.229786] ____sys_sendmsg+0x70d/0x870 [ 1331.230302] ? sock_write_iter+0x3d0/0x3d0 [ 1331.230816] ? do_recvmmsg+0x6d0/0x6d0 [ 1331.231301] ? SOFTIRQ_verbose+0x10/0x10 [ 1331.231799] ? lock_downgrade+0x6d0/0x6d0 [ 1331.232317] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1331.232984] ? SOFTIRQ_verbose+0x10/0x10 [ 1331.233482] ___sys_sendmsg+0xf3/0x170 [ 1331.233959] ? sendmsg_copy_msghdr+0x160/0x160 [ 1331.234521] ? __fget_files+0x2cf/0x520 [ 1331.235016] ? lock_downgrade+0x6d0/0x6d0 [ 1331.235530] ? find_held_lock+0x2c/0x110 [ 1331.236049] ? __fget_files+0x2f8/0x520 [ 1331.236548] ? __fget_light+0xea/0x290 [ 1331.237029] __sys_sendmsg+0xe5/0x1b0 [ 1331.237495] ? __sys_sendmsg_sock+0x40/0x40 [ 1331.238028] ? rcu_read_lock_any_held+0x75/0xa0 [ 1331.238607] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1331.239248] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1331.239885] do_syscall_64+0x33/0x40 [ 1331.240346] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1331.240967] RIP: 0033:0x7faee752eb19 [ 1331.241423] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1331.243673] RSP: 002b:00007faee4aa4188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1331.244607] RAX: ffffffffffffffda RBX: 00007faee7641f60 RCX: 00007faee752eb19 [ 1331.245479] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1331.246348] RBP: 00007faee4aa41d0 R08: 0000000000000000 R09: 0000000000000000 [ 1331.247218] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1331.248089] R13: 00007ffcd98f94ef R14: 00007faee4aa4300 R15: 0000000000022000 [ 1331.292479] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 03:01:44 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1344.849818] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. 03:01:44 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 24) 03:01:44 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x23, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:01:44 executing program 0: r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_io_uring_setup(0x620e, &(0x7f0000000180)={0x0, 0x4ac1}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000900)={&(0x7f0000000200)=@l2tp6={0xa, 0x0, 0x0, @ipv4, 0xffffffff}, 0x80, &(0x7f0000000840)=[{&(0x7f0000000300)="a64485f108d23b76be1cc06a8682449c18157c739b4f25f709", 0x19}, {0x0}, {0x0}], 0x3}, 0x0, 0x4000000}, 0x0) r5 = socket$inet6_udplite(0xa, 0x2, 0x88) pwritev2(r0, &(0x7f0000000780)=[{&(0x7f0000000940)="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", 0x1000}, {&(0x7f0000000040)="c3442580cc299af4d88d06ef6b113d788bffc654fc5944a0ca7d7087ea428e5566cf6334af", 0x25}, {&(0x7f0000001940)="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", 0x1000}, {&(0x7f0000000340)="8661651f42a63adff786fea1c356e92f7de93d9c832526692db81cdf22d5bb29ebd58ac240cb216da42145fab5fd716b36cef0628f91d2a5846edaffd5734320ee014550e5a68a1449ae31db992d354ca004eb9853777f8bc775d7f64f490656bfb35f4c2fe29dbb2d2bf8cda388311ec106593afd63c487a8732f951eecbbed504ebe514a1b16ebe401b76972e1eba83cf1a91bed56dea35a509fecf5cd12ea9d2e74eb279a9a9583b1", 0xaa}, {&(0x7f0000000080)}, {&(0x7f0000000500)="1e259ffa62ea41bf7ebbaf219cda5c82ac6f60cc86781e162dfde77637ca7a2788c9dabb9a5acd83d8fcdab5a9f7951e9d6ea016e5d7e24a024ea17da55a7537c92065c789368713d587a923adff96ed47920d61f92a520b4de846aaabaad11a75061c1054c5f7a26420e32711e05f77a7656923a34908e84b5ee8d8b5ad5774d82152f409cb7ba95c3482ac6a917c3324bddada1483453f11264215e8004fb3b2dbc71ba875", 0xa6}, {&(0x7f00000005c0)="06729268a23b1d8d4fa3d2fa1ad85d65f0ae110a59b63ad3fc1cea1e01385d870239157f4463aded9338e228dc927634d1e9491607a722ebcc0a1e4bef0eaac7c85444e7d72531458e0aa2c3aefc18a00314b84edaaacfad8469434642150745fbb9a3d3fb39475f74d06bc03dbea40e9e8634f172a1d4b51272d451c04f5faf2e9fed1e42973677fe2b5af562a2f5f15d610c57fecc42ff205e51a44ac22160cfa773", 0xa3}, {&(0x7f0000000680)="be6f74153fb57fcd47a383525a20ddfac5b71b19cdc12dcaf34cc5aa7e762c5358b005b6db993779cff10778f3787f3d44ad4c229f7c75b8e7fc664cf0980a50d91015ef87291f77c3d9003d89f580ef9e28e9dfffe5ac3ea91eb97dc3ad5cabd61417fb09c1e2546403a1a835e852d1b907caec26f82183051681cfd0e7c582a20f5dbf5db53f6edd7fccfcef13f1af9a7bddf5c873fb8117e40fd0bebd5a279624301df0c4d6035758f9a4ee711c23c63531265d1a4239c38d78fa6301543069820dd09926e3fd43323dc85c2b0419fa4eb9aecdcf85c567173d34a420ad60f1227363bcef67ab34616798", 0xec}, {&(0x7f00000000c0)="ebd328211a19b0d406fc", 0xa}, {&(0x7f0000000400)="56da6ae86a71740b86ec3fdf46d2f5b55900b3260ae30e6e772af73f4c0353a5ee347c60a63417e7a045e043f8f1343ce249f153dc218bc0513566ba51cbcbbd22eb0e9edab34d630776", 0x4a}], 0xa, 0x81, 0x8, 0x1e) setsockopt$inet6_IPV6_HOPOPTS(r5, 0x29, 0x36, &(0x7f0000000280)=ANY=[@ANYBLOB="041f003dcf60f0ecb90000008d6df69af408b1a603050200010758"], 0x108) clone3(&(0x7f0000002b00)={0x40000000, &(0x7f0000000080), &(0x7f0000000880), &(0x7f00000008c0)=0x0, {0x27}, &(0x7f0000002940)=""/121, 0x79, &(0x7f00000029c0)=""/194, &(0x7f0000002ac0)=[0x0, 0xffffffffffffffff, 0x0], 0x3}, 0x58) r7 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r8, r9, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x5, 0x0, r5, 0x0, &(0x7f0000003240)={&(0x7f0000002c40)=@in={0x2, 0x0, @dev}, 0x80, &(0x7f00000030c0)=[{&(0x7f0000002cc0)=""/6, 0x6}, {&(0x7f0000002d00)=""/190, 0xbe}, {&(0x7f0000003280)=""/199, 0xc7}, {&(0x7f0000002ec0)=""/234, 0xea}, {&(0x7f0000002fc0)=""/208, 0xd0}], 0x5, &(0x7f0000003140)=""/217, 0xd9}, 0x0, 0x40002002, 0x1, {0x1}}, 0x0) r10 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r7, 0x0) syz_io_uring_submit(r10, r9, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) syz_io_uring_submit(r2, r9, &(0x7f0000002c00)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x1, 0x0, @fd_index=0x7, 0x3, 0x0, 0x2, 0x0, 0x1}, 0x3) r11 = syz_open_procfs(r6, &(0x7f0000002b80)='net/vlan/vlan1\x00') setsockopt$inet6_opts(r5, 0x29, 0x36, 0x0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) r12 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r1, 0x8000000) syz_io_uring_submit(r12, r3, &(0x7f00000002c0)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x80000001) io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0) openat(r11, &(0x7f0000002bc0)='./file0\x00', 0x10081, 0x80) 03:01:44 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:01:44 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:01:44 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x60, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:01:44 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) r1 = accept$unix(r0, 0x0, 0x0) r2 = socket$unix(0x1, 0x5, 0x0) connect$unix(r2, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r3, &(0x7f0000000180)=""/198, 0xc6) r4 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000480), 0x8000, 0x0) r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r5, &(0x7f0000000180)=""/198, 0xc6) r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r6, &(0x7f0000000180)=""/198, 0xc6) r7 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r7, &(0x7f0000000180)=""/198, 0xc6) clock_gettime(0x0, &(0x7f00000049c0)={0x0, 0x0}) recvmmsg$unix(0xffffffffffffffff, &(0x7f00000048c0)=[{{&(0x7f00000004c0), 0x6e, &(0x7f0000000640)=[{&(0x7f0000000540)=""/249, 0xf9}], 0x1, &(0x7f0000000680)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x10}}], 0x88}}, {{&(0x7f0000000740), 0x6e, &(0x7f0000000e00)=[{&(0x7f00000007c0)=""/209, 0xd1}, {&(0x7f00000008c0)=""/206, 0xce}, {&(0x7f00000009c0)=""/177, 0xb1}, {&(0x7f0000000a80)=""/178, 0xb2}, {&(0x7f0000000b40)=""/36, 0x24}, {&(0x7f0000000b80)=""/26, 0x1a}, {&(0x7f0000000bc0)=""/145, 0x91}, {&(0x7f0000000c80)=""/228, 0xe4}, {&(0x7f0000000d80)=""/123, 0x7b}], 0x9, &(0x7f0000000ec0)=[@cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0}}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x58}}, {{&(0x7f0000000f40)=@abs, 0x6e, &(0x7f0000002400)=[{&(0x7f0000000fc0)=""/4096, 0x1000}, {&(0x7f0000001fc0)=""/166, 0xa6}, {&(0x7f0000002080)=""/218, 0xda}, {&(0x7f0000002180)=""/2, 0x2}, {&(0x7f00000021c0)=""/156, 0x9c}, {&(0x7f0000002280)=""/162, 0xa2}, {&(0x7f0000002340)=""/81, 0x51}, {&(0x7f00000023c0)=""/51, 0x33}], 0x8, &(0x7f0000002480)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x58}}, {{0x0, 0x0, &(0x7f00000047c0)=[{&(0x7f0000002500)=""/176, 0xb0}, {&(0x7f00000025c0)=""/123, 0x7b}, {&(0x7f0000002640)=""/4096, 0x1000}, {&(0x7f0000003640)=""/161, 0xa1}, {&(0x7f0000003700)=""/61, 0x3d}, {&(0x7f0000003740)}, {&(0x7f0000003780)=""/20, 0x14}, {&(0x7f00000037c0)=""/4096, 0x1000}], 0x8, &(0x7f0000004840)=[@cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x80}}], 0x4, 0x40, &(0x7f0000004a00)={r8, r9+10000000}) recvmsg$unix(r2, &(0x7f0000005d00)={0x0, 0x0, &(0x7f0000005c40)=[{&(0x7f0000004a40)=""/175, 0xaf}, {&(0x7f0000004b00)=""/14, 0xe}, {&(0x7f0000004b40)=""/98, 0x62}, {&(0x7f0000004bc0)=""/127, 0x7f}, {&(0x7f0000004c40)=""/4096, 0x1000}], 0x5, &(0x7f0000005cc0)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0x0}}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x40}, 0x0) sendmsg$unix(r1, &(0x7f0000005dc0)={&(0x7f0000000100)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000440)=[{&(0x7f0000000180)="8aa9c82103ad255b492d40de9a6b7d512c4423b564cf233628201cc936859821b02f9d1513ded338bf345d11942c837f96361ec9a2a8215a3ff82218dcbd6b14565b25b2ccb4b3e45e9819e2d25ca9ceb546ab1920ece3785c68450a79409f5ceb8d785ed3220ee4cad769464d0742ee4485172d37c7fdaa0144f7dd9a22f70baff52b9aa10db396d219b360af8328d7", 0x90}, {&(0x7f0000000240)="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", 0xfe}, {&(0x7f0000000340)="26a6027987828e7dc161bf309a2a84051687befc87cdfe7cbad02b3f3dec0ce951d7e754cb2a72eaa12713ea7466cf9e740591be8ca89ceae5f1167154d34f22e19f5e8746ab0054327051874e5fbb5b521d338f4ae838385f46b2adf6c4bbc87074ef6d57f0217bd4ae2f7ba8b2a1d2358393ad0d7336544d68d9de392b2234c10a0579a25fda30aa281033785160461559a685bbf1c4abb50509dc971dadac6420ed29e076adbcd7744a97472f10ce9036c8c2346f86a15b10ce110c69707a2439038acc20016903c684d855f5e1d9027c1b993fda30ac7e8a28cf557904531dffd689169615a3", 0xe8}], 0x3, &(0x7f0000005d40)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, r3, r4, r5, r6, r7, r1, r1]}}, @cred={{0x1c, 0x1, 0x2, {0x0, r10, r11}}}], 0x50, 0x20000000}, 0x400401d) [ 1344.937595] FAULT_INJECTION: forcing a failure. [ 1344.937595] name failslab, interval 1, probability 0, space 0, times 0 [ 1344.940193] CPU: 0 PID: 8495 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1344.941760] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1344.943637] Call Trace: [ 1344.944233] dump_stack+0x107/0x167 [ 1344.945070] should_fail.cold+0x5/0xa [ 1344.945943] should_failslab+0x5/0x20 [ 1344.946807] __kmalloc_track_caller+0x79/0x370 [ 1344.947848] ? kasprintf+0xbb/0xf0 [ 1344.948670] kvasprintf+0xb5/0x150 [ 1344.949482] ? bust_spinlocks+0xe0/0xe0 [ 1344.950400] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1344.951600] ? get_random_u32+0x3cb/0x670 [ 1344.952572] kasprintf+0xbb/0xf0 [ 1344.953345] ? kvasprintf_const+0x1a0/0x1a0 [ 1344.954338] ? lockdep_init_map_type+0x2c7/0x780 [ 1344.955426] ? lockdep_init_map_type+0x2c7/0x780 [ 1344.956531] ieee80211_alloc_led_names+0x23f/0x420 [ 1344.957657] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1344.958763] ? trace_hardirqs_on+0x5b/0x180 [ 1344.959773] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1344.960944] ? ____sys_sendmsg+0x70d/0x870 [ 1344.961931] ? ___sys_sendmsg+0xf3/0x170 [ 1344.962874] ? __sys_sendmsg+0xe5/0x1b0 [ 1344.963795] ? do_syscall_64+0x33/0x40 [ 1344.964707] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1344.965949] ? lock_acquire+0x197/0x470 [ 1344.966872] ? create_object.isra.0+0x3ad/0xa20 [ 1344.967960] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1344.969053] ? __kmalloc+0x16e/0x390 [ 1344.969927] hwsim_new_radio_nl+0x991/0x1080 [ 1344.970953] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1344.972174] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1344.973714] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1344.975237] genl_family_rcv_msg_doit+0x22d/0x330 [ 1344.976372] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1344.977907] ? cap_capable+0x1cd/0x230 [ 1344.978824] ? ns_capable+0xe2/0x110 [ 1344.979696] genl_rcv_msg+0x36a/0x5a0 [ 1344.980596] ? genl_get_cmd+0x480/0x480 [ 1344.981520] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1344.982721] ? lock_release+0x680/0x680 [ 1344.983640] ? netlink_deliver_tap+0xf4/0xcc0 [ 1344.984692] netlink_rcv_skb+0x14b/0x430 [ 1344.985632] ? genl_get_cmd+0x480/0x480 [ 1344.986552] ? netlink_ack+0xab0/0xab0 [ 1344.987463] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1344.988537] ? is_vmalloc_addr+0x7b/0xb0 [ 1344.989485] genl_rcv+0x24/0x40 [ 1344.990250] netlink_unicast+0x54e/0x800 [ 1344.991202] ? netlink_attachskb+0x870/0x870 [ 1344.992233] netlink_sendmsg+0x90f/0xe00 [ 1344.993197] ? netlink_unicast+0x800/0x800 [ 1344.994189] ? netlink_unicast+0x800/0x800 [ 1344.995168] __sock_sendmsg+0x154/0x190 [ 1344.996096] ____sys_sendmsg+0x70d/0x870 [ 1344.997057] ? sock_write_iter+0x3d0/0x3d0 [ 1344.998042] ? do_recvmmsg+0x6d0/0x6d0 [ 1344.998955] ? lock_downgrade+0x6d0/0x6d0 [ 1344.999926] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1345.001135] ___sys_sendmsg+0xf3/0x170 [ 1345.002026] ? sendmsg_copy_msghdr+0x160/0x160 [ 1345.003073] ? __fget_files+0x2cf/0x520 [ 1345.003980] ? lock_downgrade+0x6d0/0x6d0 [ 1345.004928] ? find_held_lock+0x2c/0x110 [ 1345.005857] ? __fget_files+0x2f8/0x520 [ 1345.006767] ? __fget_light+0xea/0x290 [ 1345.007655] __sys_sendmsg+0xe5/0x1b0 [ 1345.008529] ? __sys_sendmsg_sock+0x40/0x40 [ 1345.009511] ? rcu_read_lock_any_held+0x75/0xa0 [ 1345.010583] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1345.011772] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1345.012950] do_syscall_64+0x33/0x40 [ 1345.013793] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1345.014958] RIP: 0033:0x7fdcf09cab19 [ 1345.015801] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1345.020005] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1345.021741] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1345.023364] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1345.025006] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1345.026637] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1345.028264] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 03:01:45 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r1, &(0x7f0000000180)=""/198, 0xc6) ioctl$BTRFS_IOC_RM_DEV(r1, 0x5000940b, &(0x7f0000000280)={{r0}, "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"}) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r2, &(0x7f0000000180)=""/198, 0xc6) getsockname$unix(r2, &(0x7f0000000140), &(0x7f00000001c0)=0x6e) r3 = socket$unix(0x1, 0x5, 0x0) setsockopt$sock_int(r3, 0x1, 0x2b, &(0x7f0000000100)=0xffffffff, 0x4) connect$unix(r3, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 03:01:45 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:01:45 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r1, &(0x7f0000000180)=""/198, 0xc6) connect$unix(r1, &(0x7f0000000100)=@file={0x0, './file0\x00'}, 0x6e) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r2 = socket$unix(0x1, 0x5, 0x0) connect$unix(r2, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 03:01:45 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 25) 03:01:45 executing program 0: pwrite64(0xffffffffffffffff, &(0x7f00000000c0)="04", 0x1, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) pipe2(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x800) sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000001700)={0x5c, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x18, 0x1, 0x0, 0x1, [@CTA_TUPLE_ZONE={0x6}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @dev}, {0x8, 0x2, @multicast1}}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_SRC={0x4}]}, 0x5c}}, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), r2) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000700)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000) sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000003c0)={0x14, 0x2, 0x1, 0x101}, 0x14}}, 0x0) [ 1345.338275] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. 03:01:45 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:01:45 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x2000000, 0x12, 0xffffffffffffffff, 0x0) r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x7f, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) syz_io_uring_submit(r5, r4, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r6 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000480)={0xa4, 0x26, 0x101, 0x0, 0x0, {0x1}, [@typed={0x90, 0x63, 0x0, 0x0, @binary="a0eab51f24f4074cfbfbbb07324cc62f701d9f2905855dd18b1f0d5ce7f3493090af5beef11c281fbcc10f4675223ffc29811a6d82c0c17acd7a40480a51d57b2b3cc217bf3558b4d61924aa0922349a895d495ac12b16cb2b0cb00a0c3d1fb5b695cfebd4ad94d1a5642d3ec010c0792e9f8a9bff9bc38d6a5f4c42eb9238b7bc3a2be2cefbfd2d17065093"}]}, 0xa4}, 0x1, 0x0, 0x0, 0xb0}, 0x8044) r7 = syz_io_uring_setup(0x7ce5, &(0x7f0000000180)={0x0, 0x813d, 0x0, 0x0, 0x12d}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f00000b0000)=nil, &(0x7f00000002c0)=0x0, &(0x7f0000002a40)) pipe2(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r10 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x2000000, 0x140010, r9, 0x10000000) r11 = io_uring_register$IORING_REGISTER_PERSONALITY(r7, 0x9, 0x0, 0x0) syz_io_uring_submit(r8, r10, &(0x7f0000000300)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, r6, &(0x7f0000000200), 0x0, 0x0, 0x1000, 0x0, {0x0, r11}}, 0x9) syz_io_uring_submit(r1, r4, &(0x7f0000000140)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, r0, &(0x7f0000000100), 0x0, 0x0, 0x800, 0x0, {0x0, r11}}, 0x2) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r12 = socket$unix(0x1, 0x5, 0x0) connect$unix(r12, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) [ 1345.534683] netlink: 128 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1345.557271] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 03:01:45 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x24, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:01:45 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1345.638629] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1345.684987] FAULT_INJECTION: forcing a failure. [ 1345.684987] name failslab, interval 1, probability 0, space 0, times 0 [ 1345.687787] CPU: 0 PID: 8523 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1345.689351] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1345.691236] Call Trace: [ 1345.691840] dump_stack+0x107/0x167 [ 1345.692674] should_fail.cold+0x5/0xa [ 1345.693537] ? create_object.isra.0+0x3a/0xa20 [ 1345.694574] should_failslab+0x5/0x20 [ 1345.695437] kmem_cache_alloc+0x5b/0x310 [ 1345.696372] ? vsnprintf+0x4ba/0x1600 [ 1345.697242] create_object.isra.0+0x3a/0xa20 [ 1345.698232] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1345.699384] __kmalloc_track_caller+0x177/0x370 [ 1345.700450] ? kasprintf+0xbb/0xf0 [ 1345.701260] kvasprintf+0xb5/0x150 [ 1345.702070] ? bust_spinlocks+0xe0/0xe0 [ 1345.702981] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1345.704180] ? get_random_u32+0x3cb/0x670 [ 1345.705138] kasprintf+0xbb/0xf0 [ 1345.705915] ? kvasprintf_const+0x1a0/0x1a0 [ 1345.706900] ? lockdep_init_map_type+0x2c7/0x780 [ 1345.707981] ? lockdep_init_map_type+0x2c7/0x780 [ 1345.709078] ieee80211_alloc_led_names+0x23f/0x420 [ 1345.710196] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1345.711276] ? trace_hardirqs_on+0x5b/0x180 [ 1345.712265] mac80211_hwsim_new_radio+0x1cd/0x4290 [ 1345.713385] ? ____sys_sendmsg+0x70d/0x870 [ 1345.714352] ? ___sys_sendmsg+0xf3/0x170 [ 1345.715275] ? __sys_sendmsg+0xe5/0x1b0 [ 1345.716179] ? do_syscall_64+0x33/0x40 [ 1345.717068] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1345.718276] ? lock_acquire+0x197/0x470 [ 1345.719178] ? create_object.isra.0+0x3ad/0xa20 [ 1345.720245] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1345.721311] ? __kmalloc+0x16e/0x390 [ 1345.722160] hwsim_new_radio_nl+0x991/0x1080 [ 1345.723161] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1345.724352] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1345.725848] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1345.727326] genl_family_rcv_msg_doit+0x22d/0x330 [ 1345.728433] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1345.729934] ? cap_capable+0x1cd/0x230 [ 1345.730830] ? ns_capable+0xe2/0x110 [ 1345.731678] genl_rcv_msg+0x36a/0x5a0 [ 1345.732548] ? genl_get_cmd+0x480/0x480 [ 1345.733451] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1345.734625] ? lock_release+0x680/0x680 [ 1345.735524] ? netlink_deliver_tap+0xf4/0xcc0 [ 1345.736548] netlink_rcv_skb+0x14b/0x430 [ 1345.737468] ? genl_get_cmd+0x480/0x480 [ 1345.738369] ? netlink_ack+0xab0/0xab0 [ 1345.739258] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1345.740300] ? is_vmalloc_addr+0x7b/0xb0 [ 1345.741235] genl_rcv+0x24/0x40 [ 1345.741981] netlink_unicast+0x54e/0x800 [ 1345.742906] ? netlink_attachskb+0x870/0x870 [ 1345.743917] netlink_sendmsg+0x90f/0xe00 [ 1345.744854] ? netlink_unicast+0x800/0x800 [ 1345.745823] ? netlink_unicast+0x800/0x800 [ 1345.746780] __sock_sendmsg+0x154/0x190 [ 1345.747681] ____sys_sendmsg+0x70d/0x870 [ 1345.748616] ? sock_write_iter+0x3d0/0x3d0 [ 1345.749569] ? do_recvmmsg+0x6d0/0x6d0 [ 1345.750470] ? lock_downgrade+0x6d0/0x6d0 [ 1345.751436] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1345.752672] ___sys_sendmsg+0xf3/0x170 [ 1345.753580] ? sendmsg_copy_msghdr+0x160/0x160 [ 1345.754646] ? __fget_files+0x2cf/0x520 [ 1345.755569] ? lock_downgrade+0x6d0/0x6d0 [ 1345.756541] ? find_held_lock+0x2c/0x110 [ 1345.757496] ? __fget_files+0x2f8/0x520 [ 1345.758426] ? __fget_light+0xea/0x290 [ 1345.759342] __sys_sendmsg+0xe5/0x1b0 [ 1345.760231] ? __sys_sendmsg_sock+0x40/0x40 [ 1345.761241] ? rcu_read_lock_any_held+0x75/0xa0 [ 1345.762343] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1345.763560] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1345.764767] do_syscall_64+0x33/0x40 [ 1345.765634] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1345.766822] RIP: 0033:0x7fdcf09cab19 [ 1345.767688] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1345.771975] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1345.773755] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1345.775417] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1345.777081] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1345.778740] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1345.780404] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 [ 1345.950197] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. 03:02:01 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x2, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:02:01 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) r2 = syz_open_dev$vcsa(&(0x7f00000000c0), 0x7fff, 0x2041) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_CONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="050000000000000000000200000008000300", @ANYRES32=r5, @ANYBLOB='\f\x00@'], 0x30}}, 0x0) sendmsg$NL80211_CMD_GET_STATION(r2, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, r4, 0x20, 0x70bd25, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x7, 0x5e}}}}, [@NL80211_ATTR_STA_PLINK_STATE={0x5, 0x74, 0x3}, @NL80211_ATTR_STA_PLINK_STATE={0x5, 0x74, 0x1}, @NL80211_ATTR_STA_AID={0x6, 0x10, 0x14b}]}, 0x38}, 0x1, 0x0, 0x0, 0x20004004}, 0x8045) ioctl$F2FS_IOC_DEFRAGMENT(r0, 0xc010f508, &(0x7f0000000000)={0x2, 0x5}) r6 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000480)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000003900000008000300", @ANYRES32=r7, @ANYBLOB="10005a800c0000800540020048000000"], 0x2c}}, 0x0) 03:02:01 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 26) 03:02:01 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x61, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:02:01 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x2, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:02:01 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x2, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:02:01 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x26, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:02:02 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) r1 = accept$unix(r0, 0x0, 0x0) r2 = signalfd(r1, &(0x7f0000000100)={[0x819b]}, 0x8) connect$unix(r2, &(0x7f0000000140)=@file={0x0, './file0/file0\x00'}, 0x6e) r3 = socket$unix(0x1, 0x5, 0x0) connect$unix(r3, &(0x7f0000000000)=@file={0x1, './file0/file0\x00'}, 0x6e) [ 1362.067426] FAULT_INJECTION: forcing a failure. [ 1362.067426] name failslab, interval 1, probability 0, space 0, times 0 [ 1362.069353] CPU: 1 PID: 8552 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1362.070255] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1362.071547] Call Trace: [ 1362.071971] dump_stack+0x107/0x167 [ 1362.072448] should_fail.cold+0x5/0xa [ 1362.072956] ? device_create_groups_vargs+0x8a/0x280 [ 1362.073626] should_failslab+0x5/0x20 [ 1362.074122] kmem_cache_alloc_trace+0x55/0x320 [ 1362.074869] device_create_groups_vargs+0x8a/0x280 [ 1362.075583] device_create+0xdc/0x120 [ 1362.076079] ? device_create_groups_vargs+0x280/0x280 [ 1362.076912] ? init_timer_key+0x12a/0x240 [ 1362.077589] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1362.078356] mac80211_hwsim_new_radio+0x376/0x4290 [ 1362.078992] ? ____sys_sendmsg+0x70d/0x870 [ 1362.079543] ? ___sys_sendmsg+0xf3/0x170 [ 1362.080065] ? __sys_sendmsg+0xe5/0x1b0 [ 1362.080616] ? do_syscall_64+0x33/0x40 [ 1362.081124] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1362.081814] ? lock_acquire+0x197/0x470 [ 1362.082329] ? create_object.isra.0+0x3ad/0xa20 [ 1362.082943] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1362.083543] ? __kmalloc+0x16e/0x390 [ 1362.084031] hwsim_new_radio_nl+0x991/0x1080 [ 1362.084632] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1362.085331] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1362.086197] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1362.087054] genl_family_rcv_msg_doit+0x22d/0x330 [ 1362.087678] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1362.088539] ? cap_capable+0x1cd/0x230 [ 1362.089065] ? ns_capable+0xe2/0x110 [ 1362.089551] genl_rcv_msg+0x36a/0x5a0 [ 1362.090044] ? genl_get_cmd+0x480/0x480 [ 1362.090555] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1362.091219] ? lock_release+0x680/0x680 [ 1362.091726] ? netlink_deliver_tap+0xf4/0xcc0 [ 1362.092314] netlink_rcv_skb+0x14b/0x430 [ 1362.092842] ? genl_get_cmd+0x480/0x480 [ 1362.093363] ? netlink_ack+0xab0/0xab0 [ 1362.093865] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1362.094460] ? is_vmalloc_addr+0x7b/0xb0 [ 1362.094980] genl_rcv+0x24/0x40 [ 1362.095403] netlink_unicast+0x54e/0x800 [ 1362.095925] ? netlink_attachskb+0x870/0x870 [ 1362.096503] netlink_sendmsg+0x90f/0xe00 [ 1362.097030] ? netlink_unicast+0x800/0x800 [ 1362.097577] ? netlink_unicast+0x800/0x800 [ 1362.098117] __sock_sendmsg+0x154/0x190 [ 1362.098634] ____sys_sendmsg+0x70d/0x870 [ 1362.099174] ? sock_write_iter+0x3d0/0x3d0 [ 1362.099729] ? do_recvmmsg+0x6d0/0x6d0 [ 1362.100231] ? lock_downgrade+0x6d0/0x6d0 [ 1362.100779] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1362.101462] ___sys_sendmsg+0xf3/0x170 [ 1362.101965] ? sendmsg_copy_msghdr+0x160/0x160 [ 1362.102559] ? __fget_files+0x2cf/0x520 [ 1362.103069] ? lock_downgrade+0x6d0/0x6d0 [ 1362.103602] ? find_held_lock+0x2c/0x110 [ 1362.104128] ? __fget_files+0x2f8/0x520 [ 1362.104653] ? __fget_light+0xea/0x290 [ 1362.105164] __sys_sendmsg+0xe5/0x1b0 [ 1362.105673] ? __sys_sendmsg_sock+0x40/0x40 [ 1362.106234] ? rcu_read_lock_any_held+0x75/0xa0 [ 1362.106859] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1362.107549] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1362.108213] do_syscall_64+0x33/0x40 [ 1362.108715] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1362.109367] RIP: 0033:0x7fdcf09cab19 [ 1362.109844] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1362.112199] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1362.113179] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1362.114088] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1362.115018] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1362.115939] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1362.116879] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 [ 1362.119495] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. 03:02:02 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1362.243892] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 03:02:02 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x28, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:02:02 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 27) [ 1362.329420] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1362.382845] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. 03:02:02 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x62, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:02:02 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1362.504919] netlink: 'syz-executor.0': attribute type 64 has an invalid length. [ 1362.505857] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. 03:02:02 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1362.560268] FAULT_INJECTION: forcing a failure. [ 1362.560268] name failslab, interval 1, probability 0, space 0, times 0 [ 1362.562838] CPU: 0 PID: 8571 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1362.564384] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1362.566274] Call Trace: [ 1362.566874] dump_stack+0x107/0x167 [ 1362.567720] should_fail.cold+0x5/0xa [ 1362.568598] ? create_object.isra.0+0x3a/0xa20 [ 1362.569642] should_failslab+0x5/0x20 [ 1362.570502] kmem_cache_alloc+0x5b/0x310 [ 1362.571432] create_object.isra.0+0x3a/0xa20 [ 1362.572435] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1362.573604] kmem_cache_alloc_trace+0x151/0x320 03:02:02 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x4, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1362.574663] device_create_groups_vargs+0x8a/0x280 [ 1362.575906] device_create+0xdc/0x120 [ 1362.576800] ? device_create_groups_vargs+0x280/0x280 [ 1362.577996] ? init_timer_key+0x12a/0x240 [ 1362.578964] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1362.580092] mac80211_hwsim_new_radio+0x376/0x4290 [ 1362.581230] ? ____sys_sendmsg+0x70d/0x870 [ 1362.582198] ? ___sys_sendmsg+0xf3/0x170 [ 1362.583138] ? __sys_sendmsg+0xe5/0x1b0 [ 1362.584054] ? do_syscall_64+0x33/0x40 [ 1362.584957] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1362.586183] ? lock_acquire+0x197/0x470 [ 1362.587097] ? create_object.isra.0+0x3ad/0xa20 [ 1362.588173] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1362.589254] ? __kmalloc+0x16e/0x390 [ 1362.590120] hwsim_new_radio_nl+0x991/0x1080 [ 1362.591140] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1362.592345] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1362.593867] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1362.595377] genl_family_rcv_msg_doit+0x22d/0x330 [ 1362.596501] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1362.598029] ? cap_capable+0x1cd/0x230 [ 1362.598942] ? ns_capable+0xe2/0x110 [ 1362.599806] genl_rcv_msg+0x36a/0x5a0 [ 1362.600694] ? genl_get_cmd+0x480/0x480 [ 1362.601611] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1362.602807] ? lock_release+0x680/0x680 [ 1362.603722] ? netlink_deliver_tap+0xf4/0xcc0 [ 1362.604766] netlink_rcv_skb+0x14b/0x430 [ 1362.605710] ? genl_get_cmd+0x480/0x480 [ 1362.606629] ? netlink_ack+0xab0/0xab0 [ 1362.607532] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1362.608593] ? is_vmalloc_addr+0x7b/0xb0 [ 1362.609511] genl_rcv+0x24/0x40 [ 1362.610250] netlink_unicast+0x54e/0x800 [ 1362.611171] ? netlink_attachskb+0x870/0x870 [ 1362.612172] netlink_sendmsg+0x90f/0xe00 [ 1362.613104] ? netlink_unicast+0x800/0x800 [ 1362.614073] ? netlink_unicast+0x800/0x800 [ 1362.615028] __sock_sendmsg+0x154/0x190 [ 1362.615931] ____sys_sendmsg+0x70d/0x870 [ 1362.616863] ? sock_write_iter+0x3d0/0x3d0 [ 1362.617813] ? do_recvmmsg+0x6d0/0x6d0 [ 1362.618693] ? lock_downgrade+0x6d0/0x6d0 [ 1362.619654] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1362.620859] ___sys_sendmsg+0xf3/0x170 [ 1362.621763] ? sendmsg_copy_msghdr+0x160/0x160 [ 1362.622803] ? __fget_files+0x2cf/0x520 [ 1362.623703] ? lock_downgrade+0x6d0/0x6d0 [ 1362.624663] ? find_held_lock+0x2c/0x110 [ 1362.625597] ? __fget_files+0x2f8/0x520 [ 1362.626511] ? __fget_light+0xea/0x290 [ 1362.627404] __sys_sendmsg+0xe5/0x1b0 [ 1362.628265] ? __sys_sendmsg_sock+0x40/0x40 [ 1362.629260] ? rcu_read_lock_any_held+0x75/0xa0 [ 1362.630333] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1362.631522] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1362.632723] do_syscall_64+0x33/0x40 [ 1362.633564] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1362.634729] RIP: 0033:0x7fdcf09cab19 [ 1362.635566] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1362.639808] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1362.641541] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1362.643159] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1362.644780] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1362.646396] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1362.648020] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 03:02:02 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x38, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1362.732144] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. 03:02:02 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x500000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) socket$inet(0x2, 0xa, 0x1) r0 = syz_mount_image$ext4(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0, 0x100000, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, {0xffffffffffffffff, 0xee01}}, './file0\x00'}) mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x1, 0x12, 0xffffffffffffffff, 0xc76cc000) mount$9p_fd(0x0, &(0x7f0000000380)='./file0/../file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB="047766646e6f3d", @ANYRESHEX=r2, @ANYBLOB=',noextend,fscache,version=9p2000.L,cache=loose,posixacl,uname=hash,version=9p2000,version=9p2000.L,\x00']) [ 1362.790274] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 03:02:02 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 28) 03:02:02 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x10000, 0xc0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) [ 1362.864515] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. 03:02:02 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x4, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:02:02 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x63, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1362.949713] 9pnet: Insufficient options for proto=fd [ 1362.990372] 9pnet: Insufficient options for proto=fd 03:02:02 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r1, &(0x7f0000000180)=""/198, 0xc6) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r2, &(0x7f0000000180)=""/198, 0xc6) listen(r2, 0x0) accept$unix(r0, 0x0, 0x0) r3 = socket$unix(0x1, 0x5, 0x0) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r4, &(0x7f0000000180)=""/198, 0xc6) flock(r4, 0xa) connect$unix(r3, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) socket$unix(0x1, 0x5, 0x0) [ 1363.064509] FAULT_INJECTION: forcing a failure. [ 1363.064509] name failslab, interval 1, probability 0, space 0, times 0 [ 1363.065944] CPU: 1 PID: 8589 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1363.066731] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1363.067681] Call Trace: [ 1363.068004] dump_stack+0x107/0x167 [ 1363.068427] should_fail.cold+0x5/0xa [ 1363.068885] should_failslab+0x5/0x20 [ 1363.069324] __kmalloc_track_caller+0x79/0x370 [ 1363.069858] ? kvasprintf_const+0x60/0x1a0 [ 1363.070347] kvasprintf+0xb5/0x150 [ 1363.070759] ? bust_spinlocks+0xe0/0xe0 [ 1363.071224] ? lockdep_init_map_type+0x2c7/0x780 [ 1363.071772] kvasprintf_const+0x60/0x1a0 [ 1363.072248] kobject_set_name_vargs+0x56/0x150 [ 1363.072790] device_create_groups_vargs+0x1c0/0x280 [ 1363.073368] device_create+0xdc/0x120 [ 1363.073814] ? device_create_groups_vargs+0x280/0x280 [ 1363.074409] ? init_timer_key+0x12a/0x240 [ 1363.074892] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1363.075462] mac80211_hwsim_new_radio+0x376/0x4290 [ 1363.076031] ? ____sys_sendmsg+0x70d/0x870 [ 1363.076536] ? ___sys_sendmsg+0xf3/0x170 [ 1363.077008] ? __sys_sendmsg+0xe5/0x1b0 [ 1363.077473] ? do_syscall_64+0x33/0x40 [ 1363.077926] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1363.078538] ? lock_acquire+0x197/0x470 [ 1363.079006] ? create_object.isra.0+0x3ad/0xa20 [ 1363.079550] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1363.080087] ? __kmalloc+0x16e/0x390 [ 1363.080529] hwsim_new_radio_nl+0x991/0x1080 [ 1363.081040] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1363.081647] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1363.082403] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1363.083165] genl_family_rcv_msg_doit+0x22d/0x330 [ 1363.083725] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1363.084498] ? cap_capable+0x1cd/0x230 [ 1363.084960] ? ns_capable+0xe2/0x110 [ 1363.085393] genl_rcv_msg+0x36a/0x5a0 [ 1363.085840] ? genl_get_cmd+0x480/0x480 [ 1363.086300] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1363.086899] ? lock_release+0x680/0x680 [ 1363.087358] ? netlink_deliver_tap+0xf4/0xcc0 [ 1363.087883] netlink_rcv_skb+0x14b/0x430 [ 1363.088352] ? genl_get_cmd+0x480/0x480 [ 1363.088824] ? netlink_ack+0xab0/0xab0 [ 1363.089284] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1363.089819] ? is_vmalloc_addr+0x7b/0xb0 [ 1363.090293] genl_rcv+0x24/0x40 [ 1363.090672] netlink_unicast+0x54e/0x800 [ 1363.091147] ? netlink_attachskb+0x870/0x870 [ 1363.091660] netlink_sendmsg+0x90f/0xe00 [ 1363.092136] ? netlink_unicast+0x800/0x800 [ 1363.092640] ? netlink_unicast+0x800/0x800 [ 1363.093134] __sock_sendmsg+0x154/0x190 [ 1363.093598] ____sys_sendmsg+0x70d/0x870 [ 1363.094072] ? sock_write_iter+0x3d0/0x3d0 [ 1363.094563] ? do_recvmmsg+0x6d0/0x6d0 [ 1363.095013] ? lock_downgrade+0x6d0/0x6d0 [ 1363.095496] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1363.096110] ___sys_sendmsg+0xf3/0x170 [ 1363.096574] ? sendmsg_copy_msghdr+0x160/0x160 [ 1363.097107] ? __fget_files+0x2cf/0x520 [ 1363.097568] ? lock_downgrade+0x6d0/0x6d0 [ 1363.098049] ? find_held_lock+0x2c/0x110 [ 1363.098523] ? __fget_files+0x2f8/0x520 [ 1363.098988] ? __fget_light+0xea/0x290 [ 1363.099443] __sys_sendmsg+0xe5/0x1b0 [ 1363.099886] ? __sys_sendmsg_sock+0x40/0x40 [ 1363.100385] ? rcu_read_lock_any_held+0x75/0xa0 [ 1363.100941] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1363.101550] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1363.102146] do_syscall_64+0x33/0x40 [ 1363.102576] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1363.103173] RIP: 0033:0x7fdcf09cab19 [ 1363.103609] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1363.105750] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1363.106629] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1363.107456] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1363.108279] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1363.109118] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1363.109948] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 [ 1363.113917] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1363.189466] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 03:02:19 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x4, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:02:19 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x64, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:02:19 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x5, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:02:19 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x5, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:02:19 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7}, 0x0, 0x9, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = getpgrp(0xffffffffffffffff) perf_event_open(&(0x7f00000002c0)={0x1, 0x80, 0x0, 0x4, 0x3, 0x0, 0x0, 0x72b6, 0x11000, 0x7, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x1, @perf_bp={&(0x7f0000000280)}, 0x1000, 0x81, 0x2, 0x6, 0xfffffffffffffffb, 0x6, 0x3f, 0x0, 0x7, 0x0, 0x4}, r1, 0x1, r0, 0x2015006500ab59ea) r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140), 0x40001, 0x0) ioctl$SNAPSHOT_PLATFORM_SUPPORT(r2, 0x330f, 0x3) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = dup2(r3, r2) r5 = syz_io_uring_setup(0x35a, &(0x7f0000000180)={0x0, 0x3}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mknodat$loop(r4, &(0x7f0000000240)='./file0/../file0\x00', 0x200, 0x1) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) openat$null(0xffffffffffffff9c, &(0x7f00000012c0), 0x100, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x2) 03:02:19 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) link(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='./file0\x00') r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e21}, 0x6e) socket$nl_generic(0x10, 0x3, 0x10) 03:02:19 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x3a, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:02:19 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 29) [ 1379.778270] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 03:02:19 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x6, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:02:19 executing program 0: sendmsg$NL80211_CMD_SET_MESH_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, 0x0) sendmsg$BATADV_CMD_GET_GATEWAYS(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, &(0x7f00000001c0)={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x78, r0}) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) dup(r1) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, &(0x7f0000000080)={@local, 0x78}) sendmsg$ETHTOOL_MSG_COALESCE_GET(0xffffffffffffffff, &(0x7f0000000700)={&(0x7f0000000040), 0xc, &(0x7f0000000440)={&(0x7f0000000200)=ANY=[@ANYBLOB="8c000000", @ANYRES16=0x0, @ANYBLOB="00002cbd7000fddbdf2513000000040001805c0001800800030001000000140002006d6163766c616e3100ae00000000000008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="0800030002000000140002006272696467655f5a6c6176655f300000080003000200000008000100c3e9d7acd5433957388014d3b7a1fd83d17701d301ca739ba851c08433524e7895979f", @ANYRES32=0x0, @ANYBLOB="180001801400020067726574617030000000000000000000"], 0x8c}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x4, 0x80, 0x0, 0x0, 0x0, 0xfe, 0x0, 0x4307, 0x40020, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)=ANY=[@ANYBLOB="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", @ANYRES32=r2, @ANYBLOB="0b00080013192f262f2d0000080000006401010014001000fe8000000000000000000000000000bb08000a00ac1e000100"], 0x120}}, 0x0) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r3, &(0x7f0000000180)=""/198, 0xc6) ioctl$sock_inet6_SIOCSIFADDR(r3, 0x8916, &(0x7f0000000100)={@private1, 0x50, r0}) openat(0xffffffffffffffff, &(0x7f00000002c0)='./file0\x00', 0x80800, 0x120) [ 1379.924713] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1379.997391] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. 03:02:20 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x66, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1380.075228] FAULT_INJECTION: forcing a failure. [ 1380.075228] name failslab, interval 1, probability 0, space 0, times 0 [ 1380.077758] CPU: 1 PID: 8621 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1380.079215] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1380.080956] Call Trace: [ 1380.081515] dump_stack+0x107/0x167 [ 1380.082286] should_fail.cold+0x5/0xa [ 1380.083085] ? create_object.isra.0+0x3a/0xa20 [ 1380.084047] should_failslab+0x5/0x20 [ 1380.084857] kmem_cache_alloc+0x5b/0x310 [ 1380.085717] ? vsnprintf+0x4ba/0x1600 [ 1380.086522] create_object.isra.0+0x3a/0xa20 [ 1380.087439] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1380.088484] __kmalloc_track_caller+0x177/0x370 [ 1380.089477] ? kvasprintf_const+0x60/0x1a0 [ 1380.090371] kvasprintf+0xb5/0x150 [ 1380.091117] ? bust_spinlocks+0xe0/0xe0 [ 1380.091962] ? lockdep_init_map_type+0x2c7/0x780 [ 1380.092965] kvasprintf_const+0x60/0x1a0 [ 1380.093824] kobject_set_name_vargs+0x56/0x150 [ 1380.094783] device_create_groups_vargs+0x1c0/0x280 [ 1380.095842] device_create+0xdc/0x120 [ 1380.096645] ? device_create_groups_vargs+0x280/0x280 [ 1380.097735] ? init_timer_key+0x12a/0x240 [ 1380.098605] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1380.099622] mac80211_hwsim_new_radio+0x376/0x4290 [ 1380.100644] ? ____sys_sendmsg+0x70d/0x870 [ 1380.101542] ? ___sys_sendmsg+0xf3/0x170 [ 1380.102393] ? __sys_sendmsg+0xe5/0x1b0 [ 1380.103218] ? do_syscall_64+0x33/0x40 [ 1380.104030] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1380.105151] ? lock_acquire+0x197/0x470 [ 1380.105995] ? create_object.isra.0+0x3ad/0xa20 [ 1380.106973] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1380.107947] ? __kmalloc+0x16e/0x390 [ 1380.108734] hwsim_new_radio_nl+0x991/0x1080 [ 1380.109668] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1380.110767] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1380.112138] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1380.113516] genl_family_rcv_msg_doit+0x22d/0x330 [ 1380.114528] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1380.115915] ? cap_capable+0x1cd/0x230 [ 1380.116751] ? ns_capable+0xe2/0x110 03:02:20 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x6, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1380.117538] genl_rcv_msg+0x36a/0x5a0 [ 1380.118596] ? genl_get_cmd+0x480/0x480 [ 1380.119428] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1380.120505] ? lock_release+0x680/0x680 [ 1380.121355] ? netlink_deliver_tap+0xf4/0xcc0 [ 1380.122302] netlink_rcv_skb+0x14b/0x430 [ 1380.123151] ? genl_get_cmd+0x480/0x480 [ 1380.123980] ? netlink_ack+0xab0/0xab0 [ 1380.124817] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1380.125777] ? is_vmalloc_addr+0x7b/0xb0 [ 1380.126627] genl_rcv+0x24/0x40 [ 1380.127305] netlink_unicast+0x54e/0x800 [ 1380.128157] ? netlink_attachskb+0x870/0x870 [ 1380.129090] netlink_sendmsg+0x90f/0xe00 [ 1380.129942] ? netlink_unicast+0x800/0x800 [ 1380.130833] ? netlink_unicast+0x800/0x800 [ 1380.131711] __sock_sendmsg+0x154/0x190 [ 1380.132536] ____sys_sendmsg+0x70d/0x870 [ 1380.133401] ? sock_write_iter+0x3d0/0x3d0 [ 1380.134286] ? do_recvmmsg+0x6d0/0x6d0 03:02:20 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x5, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1380.135104] ? lock_downgrade+0x6d0/0x6d0 [ 1380.136098] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1380.137240] ___sys_sendmsg+0xf3/0x170 [ 1380.138039] ? sendmsg_copy_msghdr+0x160/0x160 [ 1380.138977] ? __fget_files+0x2cf/0x520 [ 1380.139787] ? lock_downgrade+0x6d0/0x6d0 [ 1380.140652] ? find_held_lock+0x2c/0x110 [ 1380.141522] ? __fget_files+0x2f8/0x520 [ 1380.142362] ? __fget_light+0xea/0x290 [ 1380.143202] __sys_sendmsg+0xe5/0x1b0 [ 1380.143997] ? __sys_sendmsg_sock+0x40/0x40 [ 1380.144914] ? rcu_read_lock_any_held+0x75/0xa0 [ 1380.145900] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1380.147001] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1380.148080] do_syscall_64+0x33/0x40 [ 1380.148868] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1380.149930] RIP: 0033:0x7fdcf09cab19 [ 1380.150704] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1380.154585] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1380.156173] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1380.157666] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1380.159161] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1380.160646] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1380.162143] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 [ 1380.372170] netlink: 248 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1380.377260] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1380.379172] CPU: 0 PID: 8630 Comm: syz-executor.0 Not tainted 5.10.237 #1 [ 1380.380735] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1380.382623] Call Trace: [ 1380.383226] dump_stack+0x107/0x167 [ 1380.384054] sysfs_warn_dup.cold+0x1c/0x29 [ 1380.385043] sysfs_do_create_link_sd+0x122/0x140 [ 1380.386120] sysfs_create_link+0x5f/0xc0 [ 1380.387034] device_add+0x703/0x1c50 [ 1380.387881] ? devlink_add_symlinks+0x970/0x970 [ 1380.388941] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1380.390125] wiphy_register+0x1da6/0x2850 [ 1380.391077] ? wiphy_unregister+0xb90/0xb90 [ 1380.392064] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1380.393272] ieee80211_register_hw+0x23c5/0x38b0 [ 1380.394352] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1380.395436] ? net_generic+0xdb/0x2b0 [ 1380.396304] ? lockdep_init_map_type+0x2c7/0x780 [ 1380.397387] ? memset+0x20/0x50 [ 1380.398131] ? __hrtimer_init+0x12c/0x270 [ 1380.399071] mac80211_hwsim_new_radio+0x1d04/0x4290 [ 1380.400211] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1380.401264] ? hwsim_new_radio_nl+0x967/0x1080 [ 1380.402286] ? memcpy+0x39/0x60 [ 1380.403034] hwsim_new_radio_nl+0x991/0x1080 [ 1380.404026] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1380.405213] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1380.406703] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1380.408184] genl_family_rcv_msg_doit+0x22d/0x330 [ 1380.409285] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1380.410769] ? cap_capable+0x1cd/0x230 [ 1380.411657] ? ns_capable+0xe2/0x110 [ 1380.412499] genl_rcv_msg+0x36a/0x5a0 [ 1380.413366] ? genl_get_cmd+0x480/0x480 [ 1380.414261] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1380.415433] ? lock_release+0x680/0x680 [ 1380.416326] ? netlink_deliver_tap+0xf4/0xcc0 [ 1380.417352] netlink_rcv_skb+0x14b/0x430 [ 1380.418285] ? genl_get_cmd+0x480/0x480 [ 1380.419187] ? netlink_ack+0xab0/0xab0 [ 1380.420072] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1380.421111] ? is_vmalloc_addr+0x7b/0xb0 [ 1380.422040] genl_rcv+0x24/0x40 [ 1380.422783] netlink_unicast+0x54e/0x800 [ 1380.423707] ? netlink_attachskb+0x870/0x870 [ 1380.424714] netlink_sendmsg+0x90f/0xe00 [ 1380.425632] ? netlink_unicast+0x800/0x800 [ 1380.426592] ? netlink_unicast+0x800/0x800 [ 1380.427545] __sock_sendmsg+0x154/0x190 [ 1380.428449] ____sys_sendmsg+0x70d/0x870 [ 1380.429375] ? sock_write_iter+0x3d0/0x3d0 [ 1380.430334] ? do_recvmmsg+0x6d0/0x6d0 [ 1380.431229] ___sys_sendmsg+0xf3/0x170 [ 1380.432099] ? sendmsg_copy_msghdr+0x160/0x160 [ 1380.433125] ? __fget_files+0x2cf/0x520 [ 1380.434012] ? lock_downgrade+0x6d0/0x6d0 [ 1380.434943] ? finish_task_switch+0x126/0x5d0 [ 1380.435937] ? lock_downgrade+0x6d0/0x6d0 [ 1380.436876] ? __fget_files+0x2f8/0x520 [ 1380.437769] ? __fget_light+0xea/0x290 [ 1380.438649] __sys_sendmsg+0xe5/0x1b0 [ 1380.439495] ? __sys_sendmsg_sock+0x40/0x40 [ 1380.440465] ? io_schedule_timeout+0x140/0x140 [ 1380.441503] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1380.442663] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1380.443806] do_syscall_64+0x33/0x40 [ 1380.444637] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1380.445785] RIP: 0033:0x7f2baa965b19 [ 1380.446611] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1380.450734] RSP: 002b:00007f2ba7edb188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1380.452430] RAX: ffffffffffffffda RBX: 00007f2baaa78f60 RCX: 00007f2baa965b19 [ 1380.454026] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1380.455618] RBP: 00007f2baa9bff6d R08: 0000000000000000 R09: 0000000000000000 [ 1380.457214] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1380.458801] R13: 00007ffdb95b787f R14: 00007f2ba7edb300 R15: 0000000000022000 [ 1380.473987] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. [ 1380.536321] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1380.626209] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1380.749077] netlink: 248 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1380.753388] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1380.755021] CPU: 0 PID: 8630 Comm: syz-executor.0 Not tainted 5.10.237 #1 [ 1380.756336] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1380.757933] Call Trace: [ 1380.758440] dump_stack+0x107/0x167 [ 1380.759135] sysfs_warn_dup.cold+0x1c/0x29 [ 1380.759946] sysfs_do_create_link_sd+0x122/0x140 [ 1380.760854] sysfs_create_link+0x5f/0xc0 [ 1380.761631] device_add+0x703/0x1c50 [ 1380.762344] ? devlink_add_symlinks+0x970/0x970 [ 1380.763237] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1380.764239] wiphy_register+0x1da6/0x2850 [ 1380.765044] ? wiphy_unregister+0xb90/0xb90 [ 1380.765882] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1380.766902] ieee80211_register_hw+0x23c5/0x38b0 [ 1380.767818] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1380.768749] ? net_generic+0xdb/0x2b0 [ 1380.769479] ? lockdep_init_map_type+0x2c7/0x780 [ 1380.770374] ? memset+0x20/0x50 [ 1380.771000] ? __hrtimer_init+0x12c/0x270 [ 1380.771785] mac80211_hwsim_new_radio+0x1d04/0x4290 [ 1380.772753] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1380.773626] ? hwsim_new_radio_nl+0x967/0x1080 [ 1380.774493] ? memcpy+0x39/0x60 [ 1380.775123] hwsim_new_radio_nl+0x991/0x1080 [ 1380.775969] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1380.776963] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1380.778209] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1380.779434] genl_family_rcv_msg_doit+0x22d/0x330 [ 1380.780344] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1380.781583] ? cap_capable+0x1cd/0x230 [ 1380.782327] ? ns_capable+0xe2/0x110 [ 1380.783029] genl_rcv_msg+0x36a/0x5a0 [ 1380.783746] ? genl_get_cmd+0x480/0x480 [ 1380.784497] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1380.785475] ? lock_release+0x680/0x680 [ 1380.786212] ? netlink_deliver_tap+0xf4/0xcc0 [ 1380.787052] netlink_rcv_skb+0x14b/0x430 [ 1380.787804] ? genl_get_cmd+0x480/0x480 [ 1380.788541] ? netlink_ack+0xab0/0xab0 [ 1380.789286] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1380.790132] ? is_vmalloc_addr+0x7b/0xb0 [ 1380.790888] genl_rcv+0x24/0x40 [ 1380.791494] netlink_unicast+0x54e/0x800 [ 1380.792250] ? netlink_attachskb+0x870/0x870 [ 1380.793092] netlink_sendmsg+0x90f/0xe00 [ 1380.793851] ? netlink_unicast+0x800/0x800 [ 1380.794654] ? netlink_unicast+0x800/0x800 [ 1380.795440] __sock_sendmsg+0x154/0x190 [ 1380.796177] ____sys_sendmsg+0x70d/0x870 [ 1380.796939] ? sock_write_iter+0x3d0/0x3d0 [ 1380.797724] ? do_recvmmsg+0x6d0/0x6d0 [ 1380.798459] ? lock_acquire+0x197/0x470 [ 1380.799199] ? find_held_lock+0x2c/0x110 [ 1380.799963] ___sys_sendmsg+0xf3/0x170 [ 1380.800700] ? sendmsg_copy_msghdr+0x160/0x160 [ 1380.801565] ? __fget_files+0x2cf/0x520 [ 1380.802301] ? lock_downgrade+0x6d0/0x6d0 [ 1380.803068] ? futex_exit_release+0x220/0x220 [ 1380.803897] ? __fget_files+0x2f8/0x520 [ 1380.804633] ? __fget_light+0xea/0x290 [ 1380.805369] __sys_sendmsg+0xe5/0x1b0 [ 1380.806072] ? __sys_sendmsg_sock+0x40/0x40 [ 1380.806862] ? __do_sys_futex+0x2bb/0x480 [ 1380.807639] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1380.808605] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1380.809568] do_syscall_64+0x33/0x40 [ 1380.810260] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1380.811203] RIP: 0033:0x7f2baa965b19 [ 1380.811886] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1380.815276] RSP: 002b:00007f2ba7edb188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1380.816687] RAX: ffffffffffffffda RBX: 00007f2baaa78f60 RCX: 00007f2baa965b19 [ 1380.818011] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1380.819310] RBP: 00007f2baa9bff6d R08: 0000000000000000 R09: 0000000000000000 [ 1380.820603] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1380.821908] R13: 00007ffdb95b787f R14: 00007f2ba7edb300 R15: 0000000000022000 03:02:36 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 30) 03:02:36 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x6, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:02:36 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x3e, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:02:36 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x7, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:02:36 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x7, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:02:36 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_NOACK_MAP(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000100), 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x38, 0x0, 0x2, 0x70bd28, 0x25dfdbff, {{}, {@val={0x8, 0x3, r0}, @val={0xc, 0x99, {0x606, 0x4}}}}, [@NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x8}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x4}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000080}, 0x4044) r1 = socket$unix(0x1, 0x5, 0x0) bind$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r1, 0x0) accept$unix(r1, 0x0, 0x0) r2 = socket$unix(0x1, 0x5, 0x0) connect$unix(r2, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 03:02:36 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x67, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:02:36 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x6, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1396.738945] FAULT_INJECTION: forcing a failure. [ 1396.738945] name failslab, interval 1, probability 0, space 0, times 0 [ 1396.741373] CPU: 1 PID: 8650 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1396.742810] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1396.744547] Call Trace: [ 1396.745124] dump_stack+0x107/0x167 [ 1396.745893] should_fail.cold+0x5/0xa [ 1396.746694] ? device_add+0x106f/0x1c50 [ 1396.747527] should_failslab+0x5/0x20 [ 1396.748321] kmem_cache_alloc_trace+0x55/0x320 [ 1396.749286] ? kvasprintf+0xe9/0x150 [ 1396.750073] device_add+0x106f/0x1c50 [ 1396.750879] ? devlink_add_symlinks+0x970/0x970 [ 1396.751873] device_create_groups_vargs+0x207/0x280 [ 1396.752932] device_create+0xdc/0x120 [ 1396.753737] ? device_create_groups_vargs+0x280/0x280 [ 1396.754838] ? init_timer_key+0x12a/0x240 [ 1396.755712] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1396.756730] mac80211_hwsim_new_radio+0x376/0x4290 [ 1396.757777] ? ____sys_sendmsg+0x70d/0x870 [ 1396.758687] ? ___sys_sendmsg+0xf3/0x170 [ 1396.759557] ? __sys_sendmsg+0xe5/0x1b0 [ 1396.760403] ? do_syscall_64+0x33/0x40 [ 1396.761245] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1396.762389] ? lock_acquire+0x197/0x470 [ 1396.763240] ? create_object.isra.0+0x3ad/0xa20 [ 1396.764248] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1396.765263] ? __kmalloc+0x16e/0x390 [ 1396.766067] hwsim_new_radio_nl+0x991/0x1080 [ 1396.767017] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1396.768148] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1396.769575] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1396.770967] genl_family_rcv_msg_doit+0x22d/0x330 [ 1396.772010] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1396.773423] ? cap_capable+0x1cd/0x230 [ 1396.774267] ? ns_capable+0xe2/0x110 [ 1396.775067] genl_rcv_msg+0x36a/0x5a0 [ 1396.775886] ? genl_get_cmd+0x480/0x480 [ 1396.776736] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1396.777852] ? lock_release+0x680/0x680 [ 1396.778697] ? netlink_deliver_tap+0xf4/0xcc0 [ 1396.779666] netlink_rcv_skb+0x14b/0x430 [ 1396.780536] ? genl_get_cmd+0x480/0x480 [ 1396.781396] ? netlink_ack+0xab0/0xab0 [ 1396.782248] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1396.783224] ? is_vmalloc_addr+0x7b/0xb0 [ 1396.784099] genl_rcv+0x24/0x40 [ 1396.784804] netlink_unicast+0x54e/0x800 [ 1396.785691] ? netlink_attachskb+0x870/0x870 [ 1396.786649] netlink_sendmsg+0x90f/0xe00 [ 1396.787527] ? netlink_unicast+0x800/0x800 [ 1396.788445] ? netlink_unicast+0x800/0x800 [ 1396.789361] __sock_sendmsg+0x154/0x190 [ 1396.790217] ____sys_sendmsg+0x70d/0x870 [ 1396.791093] ? sock_write_iter+0x3d0/0x3d0 [ 1396.792006] ? do_recvmmsg+0x6d0/0x6d0 [ 1396.792850] ? lock_downgrade+0x6d0/0x6d0 [ 1396.793743] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1396.794881] ___sys_sendmsg+0xf3/0x170 [ 1396.795723] ? sendmsg_copy_msghdr+0x160/0x160 [ 1396.796705] ? __fget_files+0x2cf/0x520 [ 1396.797563] ? lock_downgrade+0x6d0/0x6d0 [ 1396.798454] ? find_held_lock+0x2c/0x110 [ 1396.799333] ? __fget_files+0x2f8/0x520 [ 1396.800194] ? __fget_light+0xea/0x290 [ 1396.801047] __sys_sendmsg+0xe5/0x1b0 [ 1396.801867] ? __sys_sendmsg_sock+0x40/0x40 [ 1396.802803] ? rcu_read_lock_any_held+0x75/0xa0 [ 1396.803822] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1396.804957] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1396.806054] do_syscall_64+0x33/0x40 [ 1396.806857] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1396.807949] RIP: 0033:0x7fdcf09cab19 [ 1396.808743] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1396.812698] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1396.814352] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1396.815888] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1396.817435] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1396.818976] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1396.820524] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 [ 1396.826095] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.0'. 03:02:36 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 31) 03:02:36 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/module/video', 0x634b45, 0x90) getdents(r1, &(0x7f0000000180)=""/198, 0xc6) accept$unix(r0, 0x0, &(0x7f0000000100)) socket(0x1a, 0x4, 0x7f) r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000140), 0x10a02, 0x0) bind$unix(r2, &(0x7f0000000080)=@abs={0x1, 0x0, 0x4e21}, 0x44) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r3 = socket$unix(0x1, 0x5, 0x0) connect$unix(r3, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) [ 1396.911450] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1396.955658] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. 03:02:36 executing program 0: syz_emit_ethernet(0x76, &(0x7f0000000000)={@local, @broadcast, @void, {@x25={0x805, {0x0, 0x40, 0xfb, "b4ed35da2d90435d60f315f017e91a1f1a53f573ea9925ba85a4349a48821ca1a364dd86e14c91fb02f2f08b86b6ffc00c7bbebb49133ecdbd97495647a685e2ff39c1198c473247dcdcb1c651391bef9b32d7cffe6c3fc38aee008aa4ac9c9d04296d267e"}}}}, 0x0) 03:02:37 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x7, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:02:37 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) r1 = accept$unix(r0, 0x0, 0x0) bind$unix(r1, &(0x7f0000000100)=@abs={0x1, 0x0, 0x4e21}, 0x6e) r2 = socket$unix(0x1, 0x5, 0x0) connect$unix(r2, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 03:02:37 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x8, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1397.132573] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. [ 1397.180151] FAULT_INJECTION: forcing a failure. [ 1397.180151] name failslab, interval 1, probability 0, space 0, times 0 [ 1397.182631] CPU: 1 PID: 8667 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1397.184076] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1397.185849] Call Trace: [ 1397.186414] dump_stack+0x107/0x167 [ 1397.187190] should_fail.cold+0x5/0xa [ 1397.188001] ? create_object.isra.0+0x3a/0xa20 [ 1397.188987] should_failslab+0x5/0x20 [ 1397.189801] kmem_cache_alloc+0x5b/0x310 [ 1397.190670] create_object.isra.0+0x3a/0xa20 [ 1397.191603] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1397.192687] kmem_cache_alloc_trace+0x151/0x320 [ 1397.193697] device_add+0x106f/0x1c50 [ 1397.194519] ? devlink_add_symlinks+0x970/0x970 [ 1397.195527] device_create_groups_vargs+0x207/0x280 [ 1397.196591] device_create+0xdc/0x120 [ 1397.197423] ? device_create_groups_vargs+0x280/0x280 [ 1397.198522] ? init_timer_key+0x12a/0x240 [ 1397.199411] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1397.200443] mac80211_hwsim_new_radio+0x376/0x4290 [ 1397.201501] ? ____sys_sendmsg+0x70d/0x870 [ 1397.202392] ? ___sys_sendmsg+0xf3/0x170 [ 1397.203248] ? __sys_sendmsg+0xe5/0x1b0 [ 1397.204090] ? do_syscall_64+0x33/0x40 [ 1397.204930] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1397.206055] ? lock_acquire+0x197/0x470 [ 1397.206903] ? create_object.isra.0+0x3ad/0xa20 [ 1397.207903] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1397.208899] ? __kmalloc+0x16e/0x390 [ 1397.209697] hwsim_new_radio_nl+0x991/0x1080 [ 1397.210635] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1397.211744] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1397.213144] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1397.214529] genl_family_rcv_msg_doit+0x22d/0x330 [ 1397.215541] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1397.216895] ? cap_capable+0x1cd/0x230 [ 1397.217710] ? ns_capable+0xe2/0x110 [ 1397.218497] genl_rcv_msg+0x36a/0x5a0 [ 1397.219312] ? genl_get_cmd+0x480/0x480 [ 1397.220153] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1397.221272] ? lock_release+0x680/0x680 [ 1397.222116] ? netlink_deliver_tap+0xf4/0xcc0 [ 1397.223072] netlink_rcv_skb+0x14b/0x430 [ 1397.223933] ? genl_get_cmd+0x480/0x480 [ 1397.224772] ? netlink_ack+0xab0/0xab0 [ 1397.225609] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1397.226582] ? is_vmalloc_addr+0x7b/0xb0 [ 1397.227449] genl_rcv+0x24/0x40 [ 1397.228150] netlink_unicast+0x54e/0x800 [ 1397.229025] ? netlink_attachskb+0x870/0x870 [ 1397.229971] netlink_sendmsg+0x90f/0xe00 [ 1397.230845] ? netlink_unicast+0x800/0x800 [ 1397.231761] ? netlink_unicast+0x800/0x800 [ 1397.232665] __sock_sendmsg+0x154/0x190 [ 1397.233523] ____sys_sendmsg+0x70d/0x870 [ 1397.234379] ? sock_write_iter+0x3d0/0x3d0 [ 1397.235285] ? do_recvmmsg+0x6d0/0x6d0 [ 1397.236114] ? lock_downgrade+0x6d0/0x6d0 [ 1397.237007] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1397.238118] ___sys_sendmsg+0xf3/0x170 [ 1397.238941] ? sendmsg_copy_msghdr+0x160/0x160 [ 1397.239910] ? __fget_files+0x2cf/0x520 [ 1397.240759] ? lock_downgrade+0x6d0/0x6d0 [ 1397.241655] ? find_held_lock+0x2c/0x110 [ 1397.242522] ? __fget_files+0x2f8/0x520 [ 1397.243365] ? __fget_light+0xea/0x290 [ 1397.244198] __sys_sendmsg+0xe5/0x1b0 [ 1397.245021] ? __sys_sendmsg_sock+0x40/0x40 [ 1397.245930] ? rcu_read_lock_any_held+0x75/0xa0 [ 1397.246926] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1397.248033] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1397.249134] do_syscall_64+0x33/0x40 [ 1397.249920] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1397.251014] RIP: 0033:0x7fdcf09cab19 [ 1397.251800] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1397.255683] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1397.257294] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1397.258798] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1397.260305] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1397.261813] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1397.263322] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 [ 1397.362144] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1397.418916] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1414.359990] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. 03:02:54 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x9, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:02:54 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xc}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='tracefs\x00', 0x0, 0x0) syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x20020, &(0x7f0000000140)={[{@gid}]}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f00000004c0)) stat(&(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0)) stat(&(0x7f00000007c0)='./file0\x00', &(0x7f0000000800)) stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = fcntl$dupfd(r3, 0x0, r2) sendmsg$nl_generic(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="18bdcd8f9bffff0032000000000004006c00000000fcffffffffffffbe2f1576d8d9c4d6362064ed96fa37f881addb655c80"], 0x18}}, 0x0) setresuid(0xffffffffffffffff, r1, 0x0) 03:02:54 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x8, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:02:54 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x68, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:02:54 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x8, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:02:54 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x41, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:02:54 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) sendmsg$BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x2c, 0x0, 0x1, 0x70bd2d, 0x25dfdbfd, {}, [@BATADV_ATTR_ORIG_INTERVAL={0x8, 0x39, 0x6}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x4}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5, 0x2a, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x538655c05795dc7e}, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 03:02:54 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 32) 03:02:54 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@abs={0x1, 0x0, 0x4e22}, 0x6e) listen(r0, 0x0) fcntl$setown(r0, 0x8, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r1, &(0x7f0000000180)=""/198, 0xc6) r2 = syz_io_uring_setup(0x4d51, &(0x7f00000002c0)={0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000380)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x7f, &(0x7f00000005c0)=[{&(0x7f0000000600)=""/142, 0x8e}, {&(0x7f0000000400)=""/28, 0x1c}, {&(0x7f0000000440)=""/229, 0xe5}, {&(0x7f0000000540)=""/112, 0x70}], 0x4}, 0x0) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) syz_io_uring_submit(r5, r4, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) syz_io_uring_submit(r5, 0x0, &(0x7f00000002c0)=@IORING_OP_ASYNC_CANCEL={0xe, 0x2, 0x0, 0x0, 0x0, 0x12345}, 0xffffffff) r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r6, &(0x7f0000000180)=""/198, 0xc6) r7 = openat$null(0xffffffffffffff9c, &(0x7f0000000280), 0x700, 0x0) accept$unix(r7, 0x0, 0x0) r8 = socket$unix(0x1, 0x5, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)) connect$unix(r8, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 03:02:54 executing program 0: socket$inet6(0xa, 0x0, 0x7e) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) getsockopt$inet6_int(r0, 0x29, 0x18, &(0x7f0000000000), &(0x7f0000000040)=0x4) [ 1414.536156] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. 03:02:54 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x9, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1414.604973] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 03:02:54 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x47, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:02:54 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xa, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:02:54 executing program 3: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) close_range(0xffffffffffffffff, r0, 0x2) r1 = socket$unix(0x1, 0x5, 0x0) bind$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r1, 0x0) r2 = accept$unix(r1, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000340)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r0, &(0x7f0000000880)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000840)={&(0x7f0000000380)={0x4a8, 0x0, 0x1, 0x70bd2b, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_TX_RATES={0x2ec, 0x5a, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x4c, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HT={0x48, 0x2, [{0x0, 0x1}, {0x1, 0x5}, {0x3, 0xa}, {0x1, 0x1}, {0x5, 0x8}, {0x7, 0xa}, {0x5, 0x2}, {0x0, 0x9}, {0x7}, {0x3, 0x8}, {0x0, 0xa}, {0x4}, {0x0, 0x7}, {0x4, 0x6}, {0x5, 0x9}, {0x0, 0x7}, {0x1, 0x4}, {0x6, 0x5}, {0x6, 0x4}, {0x7, 0x3}, {0x2, 0x7}, {0x5, 0x4}, {0x2, 0x5}, {0x2, 0x2}, {0x0, 0x2}, {0x7, 0x6}, {0x1, 0x2}, {0x5, 0x2}, {0x7, 0x2}, {0x5, 0x9}, {0x1, 0x5}, {0x1, 0xa}, {0x6, 0x4}, {0x4, 0xa}, {0x3, 0x6}, {0x2}, {0x1, 0x5}, {0x4, 0x7}, {0x5, 0x5}, {0x4}, {0x4, 0x8}, {0x1, 0x7}, {0x2, 0xa}, {0x7, 0x8}, {0x7}, {0x1, 0x5}, {0x0, 0x3}, {0x3, 0x9}, {0x6, 0x3}, {0x5}, {0x5}, {0x0, 0x7}, {0x5, 0x5}, {0x6, 0x9}, {0x4, 0x9}, {0x6}, {0x6, 0x8}, {0x0, 0xa}, {0x0, 0x1}, {0x0, 0xa}, {0x2, 0x5}, {0x1, 0xa}, {0x0, 0x8}, {0x4, 0xa}, {0x2, 0x6}, {0x1, 0x3}, {0x4, 0x7}, {0x5, 0x1}]}]}, @NL80211_BAND_2GHZ={0xac, 0x0, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_HT={0x11, 0x2, [{0x0, 0x7}, {0x2, 0x4}, {0x1, 0x7}, {0x4, 0x4}, {0x3, 0x7}, {0x7, 0x2}, {0x4, 0x2}, {0x0, 0x5}, {0x0, 0x1}, {0x5, 0x7}, {0x1, 0x9}, {0x1, 0x8}, {0x2, 0x5}]}, @NL80211_TXRATE_LEGACY={0xd, 0x1, [0x24, 0x18, 0x6, 0xc, 0x4, 0x30, 0x60, 0x9, 0x1b]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x0, 0x3, 0x3, 0x3, 0x7, 0x6, 0x6, 0x75fb]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_HT={0x33, 0x2, [{0x5}, {0x6, 0x4}, {0x2, 0xa}, {0x1, 0x8}, {0x4, 0x8}, {0x3, 0x8}, {0x4}, {0x1, 0x6}, {0x7, 0x4}, {0x3, 0x8}, {0x7, 0x3}, {0x6, 0xa}, {0x7, 0x3}, {0x0, 0xa}, {0x5, 0x5}, {0x0, 0x7}, {0x6, 0x1}, {0x6, 0x9}, {0x7, 0xa}, {0x0, 0xa}, {0x2, 0x2}, {0x3, 0xa}, {0x4, 0x7}, {0x2, 0xa}, {0x0, 0x6}, {0x2, 0x7}, {0x2, 0x7}, {0x7, 0x8}, {0x7, 0x5}, {0x2, 0x9}, {0x6}, {0x3, 0xa}, {0x5}, {0x6, 0x4}, {0x4, 0x1}, {0x0, 0x8}, {0x6, 0x3}, {0x4, 0x8}, {0x5, 0x5}, {0x7, 0x9}, {0x1, 0x9}, {0x7, 0x1}, {0x2, 0x6}, {0x7, 0x1}, {0x3}, {0x6, 0x6}, {0x1, 0xa}]}, @NL80211_TXRATE_LEGACY={0x15, 0x1, [0x6c, 0x555dc4055d697373, 0x60, 0x0, 0x6, 0x74, 0x1, 0x48, 0x60, 0x48, 0x2, 0x4c, 0x18, 0xb, 0x3, 0xc, 0x3]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8, 0x3, 0xfffc, 0x5, 0xfffd, 0x8, 0x9, 0xef22]}}]}, @NL80211_BAND_5GHZ={0x28, 0x1, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x80, 0x4, 0x4, 0x40, 0x7, 0xf800, 0x80, 0x7fff]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}]}, @NL80211_BAND_6GHZ={0x74, 0x3, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_HT={0x42, 0x2, [{0x3, 0x2}, {0x1, 0x1}, {0x2, 0x7}, {0x4, 0x5}, {0x5, 0x4}, {0x4, 0x1}, {0x1, 0x4}, {0x6, 0x8}, {0x1, 0x9}, {0x3, 0x2}, {0x7, 0x1}, {0x0, 0x7}, {0x0, 0x2}, {0x2, 0xa}, {0x5, 0x4}, {0x2, 0x3}, {0x3, 0x4}, {0x1, 0x7}, {0x3, 0x6}, {0x3, 0x5}, {0x0, 0x8}, {0x3, 0x6}, {0x7, 0x1}, {0x6, 0xa}, {0x7, 0x4}, {0x7, 0x7}, {0x0, 0x8}, {0x2, 0x6}, {0x6, 0x2}, {0x0, 0x5}, {0x1, 0x8}, {0x0, 0x4}, {0x3, 0x1}, {0x4, 0x5}, {0x0, 0x9}, {0x7}, {0x1, 0x3}, {0x3, 0x1}, {0x6, 0x7}, {0x1}, {0x7}, {0x1, 0x3}, {0x1}, {0x6, 0x8}, {0x1, 0x8}, {0x6}, {0x6, 0x4}, {0x2, 0x9}, {0x1, 0x2}, {0x7, 0x8}, {0x7, 0x1}, {0x3, 0x4}, {0x6, 0x5}, {0x4, 0x5}, {0x7, 0x4}, {0x4, 0x5}, {0x0, 0x3}, {0x4, 0x8}, {0x2, 0x6}, {0x7, 0xa}, {0x2, 0x9}, {0x0, 0x3}]}, @NL80211_TXRATE_LEGACY={0xf, 0x1, [0xc, 0x1b, 0x30, 0x6c, 0x30, 0x1e, 0x9, 0x6, 0x0, 0x12, 0x9]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8, 0x100, 0x100, 0x7, 0x5000, 0x5, 0x5, 0x2]}}]}, @NL80211_BAND_60GHZ={0x98, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_HT={0x17, 0x2, [{0x7}, {0x3}, {0x0, 0x3}, {0x2, 0xa}, {0x4, 0x6}, {0x4}, {0x2}, {0x5, 0x2}, {0x6, 0x5}, {0x6, 0x2}, {0x2, 0x5}, {0x6, 0x4}, {0x6, 0x7}, {0x7, 0x9}, {0x0, 0x2}, {0x2, 0x6}, {0x6, 0xa}, {0x0, 0x1}, {0x1, 0x7}]}, @NL80211_TXRATE_LEGACY={0xf, 0x1, [0x9, 0x16, 0xb, 0x16, 0x30, 0x1b, 0x18, 0x3, 0x30, 0x48, 0x24]}, @NL80211_TXRATE_HT={0x3a, 0x2, [{0x7, 0x1}, {0x6, 0x5}, {0x1, 0x1}, {0x5, 0x6}, {0x0, 0x7}, {0x0, 0x3}, {0x4, 0x5}, {0x7, 0x2}, {0x0, 0x9}, {0x4, 0x7}, {0x1, 0x8}, {0x1, 0xa}, {0x4, 0x5}, {0x6, 0x4}, {0x0, 0x7}, {0x0, 0x8}, {0x3, 0x3}, {0x5, 0x2}, {0x3, 0x5}, {0x2, 0xa}, {0x4, 0x2}, {0x6}, {0x3, 0x5}, {0x1, 0x5}, {}, {0x5}, {0x0, 0x8}, {0x7, 0x2}, {0x1, 0x3}, {0x4}, {0x1, 0xa}, {0x2, 0xa}, {0x2, 0x5}, {0x4, 0x9}, {0x0, 0x6}, {0x4, 0x5}, {0x2, 0x6}, {0x1}, {0x3, 0x5}, {0x6, 0x4}, {0x0, 0x4}, {}, {0x2, 0x7}, {0x4, 0x6}, {0x5, 0x9}, {0x1, 0x1}, {0x7, 0x6}, {0x5, 0x6}, {0x7, 0x5}, {0x4, 0x2}, {0x2, 0x6}, {0x7, 0x8}, {0x0, 0x5}, {0x2, 0x9}]}, @NL80211_TXRATE_HT={0x26, 0x2, [{0x5, 0x8}, {0x0, 0x2}, {0x2, 0xa}, {0x7, 0x1}, {0x3, 0x3}, {0x4, 0x5}, {0x4, 0x8}, {0x3, 0x2}, {0x1, 0x7}, {0x2, 0x9}, {0x4}, {0x7, 0x8}, {0x5, 0x3}, {0x0, 0x6}, {0x7, 0x7}, {0x2, 0x2}, {0x0, 0x9}, {0x7, 0x1}, {0x1, 0xa}, {0x2, 0x3}, {0x5, 0x1}, {0x7, 0x7}, {0x7, 0x9}, {0x4, 0x3}, {0x5, 0xa}, {0x7, 0x7}, {0x1, 0x6}, {0x3, 0x2}, {0x1}, {0x3, 0x4}, {0x0, 0xa}, {0x4, 0xa}, {0x7}, {0x2, 0x1}]}]}, @NL80211_BAND_2GHZ={0x58, 0x0, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x12, 0x1, [0x48, 0x3, 0x2, 0x48, 0x16, 0x48, 0x24, 0x48, 0x1b, 0x1b, 0x48, 0x1, 0x1c, 0x48]}, @NL80211_TXRATE_HT={0x25, 0x2, [{0x0, 0x1}, {0x1, 0x8}, {0x6, 0x5}, {0x6, 0x8}, {0x6, 0x1}, {0x1, 0x4}, {0x0, 0x2}, {0x7, 0x3}, {0x7, 0x4}, {0x6, 0x2}, {0x4, 0xa}, {0x2, 0x1}, {0x1, 0x5}, {0x1, 0x9}, {0x3, 0x4}, {0x2, 0x3}, {0x4, 0x1}, {0x1}, {0x5, 0x7}, {0x2, 0x6}, {0x3, 0x4}, {0x1, 0x9}, {0x7, 0x1}, {0x4, 0x6}, {0x0, 0x9}, {0x6, 0x8}, {0x3, 0x6}, {0x0, 0x8}, {0x0, 0x1}, {0x6, 0x3}, {0x6, 0x3}, {0x0, 0x2}, {0x4, 0x5}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_HT={0x10, 0x2, [{0x1, 0xa}, {0x1, 0x6}, {0x7, 0x6}, {0x4, 0x2}, {0x0, 0x1}, {0x5, 0x2}, {0x0, 0x7}, {0x6, 0xa}, {0x6, 0x5}, {0x1, 0x4}, {0x0, 0xa}, {0x0, 0x8}]}]}, @NL80211_BAND_2GHZ={0x64, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x43, 0x2, [{0x1, 0x6}, {0x0, 0x1}, {0x7, 0x1}, {}, {0x7, 0x5}, {0x1, 0x3}, {0x5, 0x3}, {0x3, 0x1}, {0x5, 0x1}, {0x4, 0xa}, {0x5, 0x2}, {0x1}, {0x0, 0x4}, {0x6, 0x5}, {0x5, 0x6}, {0x0, 0x8}, {0x3, 0x3}, {0x2, 0x2}, {0x2, 0xa}, {0x0, 0x3}, {0x4, 0x3}, {0x1, 0x1}, {0x4, 0x4}, {0x7, 0x4}, {0x1, 0x7}, {0x0, 0x4}, {0x1, 0xa}, {0x4}, {0x3, 0x6}, {0x0, 0x9}, {0x0, 0x4}, {0x6, 0x5}, {0x7, 0x9}, {0x3, 0x3}, {0x6, 0x8}, {0x1}, {0x0, 0x8}, {0x1}, {0x1}, {0x1, 0x1}, {0x6, 0x5}, {0x4, 0x9}, {0x7, 0x4}, {0x1, 0x8}, {0x4, 0xa}, {0x6, 0x2}, {0x5, 0x9}, {0x4, 0x8}, {0x4, 0x5}, {0x1, 0x2}, {0x4, 0xa}, {0x4, 0x9}, {0x4, 0x3}, {0x5, 0xa}, {0x7, 0x1}, {0x6, 0x4}, {0x3, 0x7}, {0x0, 0x1}, {0x1, 0x5}, {0x2, 0x2}, {0x1, 0x9}, {0x6, 0x6}, {0x3, 0x7}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x0, 0x2, 0x20, 0x81, 0x200, 0x11c, 0x1, 0x1000]}}]}]}, @NL80211_ATTR_TX_RATES={0xe0, 0x5a, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x84, 0x2, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x1e, 0x1, [0x3, 0x18, 0x0, 0x36, 0x18, 0x1b, 0xc, 0x60, 0x1, 0x5, 0x0, 0xc, 0x6c, 0x0, 0x9, 0x9, 0x6c, 0x16, 0x4, 0x53731162351e0307, 0x30, 0x9, 0x16, 0x13, 0x1b, 0x62]}, @NL80211_TXRATE_LEGACY={0x1b, 0x1, [0x24, 0x1, 0xe2c0a79e62f9d0f6, 0x9, 0x65cdffa3be1f4a32, 0x6c, 0xc, 0x3f, 0x16, 0x36, 0xb, 0x36, 0x16, 0x12, 0x0, 0x5, 0x18, 0xc, 0x34, 0x16, 0x6c, 0x2526222157cf0cea, 0x24]}, @NL80211_TXRATE_HT={0x1b, 0x2, [{0x0, 0x5}, {0x0, 0x2}, {0x1, 0x5}, {0x0, 0x5}, {0x0, 0x8}, {0x4, 0x2}, {0x6, 0x8}, {}, {0x0, 0x7}, {0x6, 0x6}, {0x6}, {0x2, 0xa}, {0x6, 0x2}, {0x5, 0x1}, {0x3, 0x9}, {0x2, 0x2}, {0x0, 0x2}, {0x1, 0x4}, {0x1, 0x6}, {0x7, 0x2}, {0x3, 0x2}, {0x1, 0x9}, {0x5, 0x4}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x6, 0x3, 0x31, 0x1, 0x3, 0x4, 0x5]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xba2, 0x7ff, 0x1, 0x80, 0x40, 0x3, 0x2, 0x1]}}]}, @NL80211_BAND_2GHZ={0x30, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0xf, 0x2, [{0x3, 0x1}, {0x1, 0x6}, {0x3, 0x2}, {0x2, 0x5}, {0x0, 0x5}, {0x3}, {0x3, 0x2}, {0x1, 0x6}, {0x6, 0x3}, {0x7, 0x7}, {0x3, 0x9}]}, @NL80211_TXRATE_LEGACY={0x1c, 0x1, [0x6, 0x30, 0x1b, 0x4, 0x48, 0xb, 0x16, 0x16, 0x16, 0x60, 0x36, 0x9, 0xb, 0x6c, 0x6, 0x48, 0x30, 0x6c, 0x5, 0x2, 0xf, 0x5, 0x9, 0xb]}]}, @NL80211_BAND_2GHZ={0x28, 0x0, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0xf, 0x1, [0x30, 0x1b, 0x9, 0x4, 0x3, 0xc, 0x16, 0x2, 0x5, 0x6c, 0x6c]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x6, 0x0, 0x9, 0xffff, 0xffff, 0xfff8, 0x8, 0x4]}}]}]}, @NL80211_ATTR_TX_RATES={0xc0, 0x5a, 0x0, 0x1, [@NL80211_BAND_60GHZ={0xbc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x15, 0x1, [0x4f, 0x18, 0x6c, 0x2, 0x48, 0x3, 0xc, 0x3, 0x36, 0xb, 0x4, 0x1, 0x1, 0x6, 0xbcd50e6cad1d0dc1, 0x2, 0x24]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x332, 0x0, 0x9, 0x200, 0x5, 0x0, 0x7f, 0x20]}}, @NL80211_TXRATE_HT={0x5, 0x2, [{0x5, 0x6}]}, @NL80211_TXRATE_LEGACY={0x22, 0x1, [0x5, 0x3b, 0x1b, 0x24, 0x12, 0xa, 0x1, 0xb, 0x36, 0x9, 0x1, 0xa314c44573ca4a8a, 0x24, 0x12, 0x3, 0xc, 0x6c, 0x4, 0xb86b404b7af404c3, 0x1, 0x4, 0x59, 0x16, 0x5, 0xc, 0x9, 0x2, 0xb, 0x36, 0x16]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xc1, 0x8, 0x7, 0x0, 0x0, 0x27, 0x6, 0x1]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_LEGACY={0x1a, 0x1, [0x1, 0x36, 0x24, 0x60, 0x22, 0x30, 0x12, 0x36, 0x30, 0x4, 0xb, 0xb, 0x16, 0x4, 0x5, 0x2, 0x5, 0x6, 0x6, 0x48, 0x24, 0xb]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x5c5, 0xfff8, 0xfff8, 0x1000, 0x6, 0x40, 0xfff7, 0x101]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x4, 0x1000, 0x8, 0x5, 0x8001, 0x2, 0x0, 0x3f]}}]}]}]}, 0x4a8}, 0x1, 0x0, 0x0, 0x4}, 0x40010) bind(r0, &(0x7f0000000100)=@pppol2tpin6={0x18, 0x1, {0x0, r0, 0x3, 0x2, 0x2, 0x4, {0xa, 0x4e23, 0x5, @rand_addr=' \x01\x00', 0xff}}}, 0x80) r4 = socket$unix(0x1, 0x5, 0x0) connect$unix(r4, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) connect$unix(r4, &(0x7f0000000280)=@file={0x1, './file0\x00'}, 0x6e) 03:02:54 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x6a, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1414.784516] FAULT_INJECTION: forcing a failure. [ 1414.784516] name failslab, interval 1, probability 0, space 0, times 0 [ 1414.787288] CPU: 0 PID: 8706 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1414.788850] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1414.790736] Call Trace: [ 1414.791335] dump_stack+0x107/0x167 [ 1414.792165] should_fail.cold+0x5/0xa [ 1414.793047] should_failslab+0x5/0x20 [ 1414.793916] __kmalloc_track_caller+0x79/0x370 [ 1414.794959] ? kstrdup_const+0x53/0x80 [ 1414.795848] kstrdup+0x36/0x70 [ 1414.796581] kstrdup_const+0x53/0x80 [ 1414.797443] __kernfs_new_node+0x9d/0x860 [ 1414.798390] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1414.799481] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1414.800682] kernfs_new_node+0x18d/0x250 [ 1414.801613] kernfs_create_dir_ns+0x49/0x160 [ 1414.802628] sysfs_create_dir_ns+0x127/0x290 [ 1414.803630] ? sysfs_create_mount_point+0xb0/0xb0 [ 1414.804722] ? rwlock_bug.part.0+0x90/0x90 [ 1414.805706] ? class_dir_child_ns_type+0x9/0x60 [ 1414.806785] kobject_add_internal+0x25e/0xa30 [ 1414.807822] kobject_add+0x150/0x1c0 [ 1414.808680] ? kset_create_and_add+0x1a0/0x1a0 [ 1414.809740] ? lockdep_init_map_type+0x2c7/0x780 [ 1414.810850] device_add+0x35a/0x1c50 [ 1414.811702] ? devlink_add_symlinks+0x970/0x970 [ 1414.812774] device_create_groups_vargs+0x207/0x280 [ 1414.813944] device_create+0xdc/0x120 [ 1414.814832] ? device_create_groups_vargs+0x280/0x280 [ 1414.816020] ? init_timer_key+0x12a/0x240 [ 1414.816972] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1414.818078] mac80211_hwsim_new_radio+0x376/0x4290 [ 1414.819199] ? ____sys_sendmsg+0x70d/0x870 [ 1414.820168] ? ___sys_sendmsg+0xf3/0x170 [ 1414.821107] ? __sys_sendmsg+0xe5/0x1b0 [ 1414.822004] ? do_syscall_64+0x33/0x40 [ 1414.822882] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1414.824099] ? lock_acquire+0x197/0x470 [ 1414.825005] ? create_object.isra.0+0x3ad/0xa20 [ 1414.826099] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1414.827163] ? __kmalloc+0x16e/0x390 [ 1414.828021] hwsim_new_radio_nl+0x991/0x1080 [ 1414.829043] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1414.830258] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1414.831765] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1414.833288] genl_family_rcv_msg_doit+0x22d/0x330 [ 1414.834403] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1414.835910] ? cap_capable+0x1cd/0x230 [ 1414.836816] ? ns_capable+0xe2/0x110 [ 1414.837680] genl_rcv_msg+0x36a/0x5a0 [ 1414.838555] ? genl_get_cmd+0x480/0x480 [ 1414.839482] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1414.840683] ? lock_release+0x680/0x680 [ 1414.841610] ? netlink_deliver_tap+0xf4/0xcc0 [ 1414.842660] netlink_rcv_skb+0x14b/0x430 [ 1414.843597] ? genl_get_cmd+0x480/0x480 [ 1414.844503] ? netlink_ack+0xab0/0xab0 [ 1414.845410] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1414.846466] ? is_vmalloc_addr+0x7b/0xb0 [ 1414.847419] genl_rcv+0x24/0x40 [ 1414.848179] netlink_unicast+0x54e/0x800 [ 1414.849133] ? netlink_attachskb+0x870/0x870 [ 1414.850162] netlink_sendmsg+0x90f/0xe00 [ 1414.851104] ? netlink_unicast+0x800/0x800 [ 1414.852077] ? netlink_unicast+0x800/0x800 [ 1414.853048] __sock_sendmsg+0x154/0x190 [ 1414.853970] ____sys_sendmsg+0x70d/0x870 [ 1414.854901] ? sock_write_iter+0x3d0/0x3d0 [ 1414.855878] ? do_recvmmsg+0x6d0/0x6d0 [ 1414.856769] ? lock_downgrade+0x6d0/0x6d0 [ 1414.857724] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1414.858933] ___sys_sendmsg+0xf3/0x170 [ 1414.859825] ? sendmsg_copy_msghdr+0x160/0x160 [ 1414.860877] ? __fget_files+0x2cf/0x520 [ 1414.861806] ? lock_downgrade+0x6d0/0x6d0 [ 1414.862748] ? find_held_lock+0x2c/0x110 [ 1414.863687] ? __fget_files+0x2f8/0x520 [ 1414.864621] ? __fget_light+0xea/0x290 [ 1414.865536] __sys_sendmsg+0xe5/0x1b0 [ 1414.866421] ? __sys_sendmsg_sock+0x40/0x40 [ 1414.867403] ? rcu_read_lock_any_held+0x75/0xa0 [ 1414.868489] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1414.869707] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1414.870908] do_syscall_64+0x33/0x40 [ 1414.871757] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1414.872941] RIP: 0033:0x7fdcf09cab19 [ 1414.873818] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1414.878058] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1414.879783] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1414.881422] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1414.883039] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1414.884652] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1414.886278] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 [ 1414.888002] kobject_add_internal failed for hwsim407 (error: -12 parent: mac80211_hwsim) 03:02:54 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x9, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:02:54 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x9, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1414.923893] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. 03:02:54 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r0, @in_args={0x2}}, './file0\x00'}) bind$unix(r1, &(0x7f0000000080)=@file={0x0, './file0\x00'}, 0x6e) listen(r0, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r2) r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000001700), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_STRSET_GET(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x18, r3, 0xb0b, 0x0, 0x0, {}, [@ETHTOOL_A_STRSET_HEADER={0x4}]}, 0x18}}, 0x0) ioctl$sock_SIOCADDRT(r0, 0x890b, &(0x7f0000000300)={0x0, @qipcrtr={0x2a, 0x4563a935b277606c, 0x3fff}, @vsock={0x28, 0x0, 0xffffffff}, @xdp={0x2c, 0x1, 0x0, 0x1d}, 0x235f, 0x0, 0x0, 0x0, 0x6, &(0x7f0000000200)='erspan0\x00', 0x8000, 0x1, 0x4483}) r4 = socket$packet(0x11, 0x2, 0x300) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) bind$packet(r4, &(0x7f0000000040)={0x11, 0x1, r6, 0x1, 0x8, 0x6, @random="190002400a00"}, 0x14) ioctl$sock_ipv6_tunnel_SIOCADD6RD(0xffffffffffffffff, 0x89f9, &(0x7f0000000240)={'syztnl2\x00', &(0x7f0000000140)={'sit0\x00', r6, 0x4, 0x3, 0x6, 0x8, 0x7c, @rand_addr=' \x01\x00', @private1={0xfc, 0x1, '\x00', 0x1}, 0x20, 0x700, 0x1, 0x6}}) ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000680)={0xc4, 0x0, &(0x7f0000000500)=[@increfs_done, @transaction_sg={0x40486311, {0x3, 0x0, 0x0, 0x0, 0x31, 0x0, 0x0, 0x58, 0x18, &(0x7f0000000380)={@fd={0x66642a85, 0x0, r2}, @fda={0x66646185, 0x1, 0x1, 0x3e}, @fda={0x66646185, 0x2, 0x1, 0x24}}, &(0x7f0000000400)={0x0, 0x18, 0x38}}}, @increfs, @decrefs={0x40046307, 0x2}, @acquire, @reply_sg={0x40486312, {0x0, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x48, 0x18, &(0x7f0000000440)={@fd, @fd={0x66642a85, 0x0, r2}, @flat=@handle={0x73682a85, 0xa, 0x3}}, &(0x7f00000004c0)={0x0, 0x18, 0x30}}, 0x1000}], 0x48, 0x0, &(0x7f0000000600)="0cca745e475e4c2d790534feb6807316e7412a9233804e5efa287c3c0fec81ef844cc3c7da05df5932457031b6b8ecd73f910da35d4d0b83fa312d1b6c7a2f8de053dfa48d256b5f"}) sendmsg$ETHTOOL_MSG_DEBUG_SET(0xffffffffffffffff, &(0x7f00000018c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000001880)={&(0x7f0000001900)=ANY=[@ANYBLOB="70160000", @ANYRES16=r3, @ANYBLOB="00022dbd7000fedbdf2508000000ec12028008000200010000001f00050099f5893e5dc1ce59b071d6b07cce3b65616aca0cfcb04ff394aca8006c0103804000018008000100030000000800010007000000080001000600000008000100bd249506060002005b0000000400030004000300050002000000000004000300340001800400030008000100fbffffff08000100ffffffff040003000400030004000300050002000000000008000100010000002000018004000300160002002c2d26402e23262624c6271e7b882a5e3a000000240001800400030004000300140002002b2c287d5c262726282e5d2d28195d00040003004000018008000100fdffffff040003000800010006000000080001000004000005000200000000000500020000000000050002000000000006000200270000002c000180040003000600020024000000090002007d7d2e25000000000d0002002b275d245d5d3a7b00000000200001800800010031000000080001000000000008000100050000000400030024000180040003000c0002002a27235d2a2d25000400030004000300070002002a29000059000500cb18455640216df7249a607903d7e6fd33156ede1d7e166147185ffc2f6133ad3554e75dfa9528ddc3e598aac5dc1e9df665ad5d0f4238dfc0c1d1f9f2c6317172abc31beed8d77a0599563ff68286896743c52dea00000004000100e90004004d947ecd2d8aca14085d88543d89b683d19e9d44f0fdf77a8ce81344cd19a5f927decc9cd4faf282a99610037ed00e0b45552f6c3e53b76cdff54c86583f972d2d77150d4d5093a7f24006ba759338954a6800a5a11b448678f613888061827c26f2d777f5335436cc7c0e9c97170fbf38a081551fd9526aec4c42b7fa1182a807a0fa288eceff3ceddd9a43893596c8b93d76c3aa37e4daeea60815ea04a3f9ab01119fdba9065ac784c0bcf4811a546e93a865dd6aae5e46605ab889bd14860f56a7ec9970c55a2a61192684bdebaa5646ea9d5f090c58ad1f0f4f4ea7cb21a23496526b00000004100500a1eb72100820b61c4ed7b4e8368cef59c75ef52c80364cf74747fa8dd2b9af45a118b03a6ade61767de6034961c2c9937b94889d1e09d679bc36571e7f96a29cb57b137b571cf3b996537abd86d0c91264f716e5fc39dc381b6e2bc39c4ba1bb1e14dad432d82356a59471ec0d4a59c7d2164e76b8067a8fb6310b1fc120229c8fcc7083a483851230448b9dca7b114bbb19fafde3ab94b3899e938e6d52d83cf705a827ebc7e8b5f04dac805bbf3d621b7362d3e2d380ba2573f3a86d3970b2637c4dd9cde5143d80eea6c33430824fef22ec8a1d22b8c525985ec03c1eec35d0f9470d5e5b4d97a0e11526f8049bf11f7fc053e86fc8b149d1413d1f5f7ccc694985da77347b76a132652d562ddb0aedf7b78a565f61d78946fc4f48b08fc63fc4920b9b5f53cb0da88f12eccfe810784f4d0521c8d9f69f5ba9e9e20b87a5b1198aee4b7b1818b19bf718ef798868ce27eebf3e720acb9111581313c5c64b99ee5f59aa2a24f4933de656a41b5dc79b0061bf21c756f0832f5e85f46ad3ad055bcdd24857a4be7fb42886acaa336769a97269aa835022e72b370e47618c14ca8b27064238da01f2dd55006e629e5e94369cd65462ddf60240e154739cc6f8d8afabf71e4bd4265c40b77a20644df933c4feca00bfbd8b32b442dc8fb13f1ee70631acc2bda40ee5feebc9ad8960a330e27cf015ff5675266ee15113d59edf7b5516890d26e58b5b80b51b2cc56891b76eec7e8679461b514b39c0f4dbee98fe6f110bf9ea07c7b5f4f45b96a90a484ffdd8181bf10740657d6ee93d4de90f95363af85c67b27655a8680296011ad7f459e5ab907f126a84d08cb298b5f12a544037f7e0f58f59a346f98f9f031e8eaa8f1bdf90f7216b3b8ecbb8105360ffdf4c3acb9e833ed4d68779c047befe4f418ef9ebdb1ed061f4d7d2a81d4e47e9e27c24c9859e3de77561e8bdde1074f10ce070233f1f70f66f1ea0f24b0f1ebd726f0bcfae77b9828a742dee9fcc64990e262564fe98da8a576760799a4300dcc5a347a34d85d2edd0be520c58a1fcfa38e104145757712eac788d581c85c557a9d90967b8feb546c3d2ef3d115137ba53dd28f95d8de00bfe4f2923559c78cb0d0448ba649ab6c709f70e6df0762bddbaebf92e2eb2af2c5f14b5317983dfdb41970a37746889a7227ba466edd93f088e568923672419fb4796e6876112ce842079345de00cf6b39de9fde3df73bfdf210bcb8e5642cd199f9f96423f2fc95e523c9ab63fe3c22e14caa1b788f864d94e2c525c937779dd3080705bcbcf64b068cc7c4466f43782fdecefc221a5b71510d13c633c906acff8ce75fc83a55c0ddf6b3a1b4d641304345575440da8d6babdd42f2d9604673cb2e9f92159727a6af5dbf96ebba3565a3e7fed0c23cdaa6986380cf2269ea8b91807cc996ee4b5c7865fe8474c3258640b0279fcbbbbe45a8e46af5eca95f4b886a42663d9d8490f69ffd5464431b33c4bb6c94987a295ab8f0bce487a2126e97b4bd49e1e2f9512e4ec98bcecd3c0942b4add62bad92710bdbd881f37caddb01503ccb83b8cb8bb5da5df96494db0747cfdb2134dc9a485f20df8bad6262747ffd6a9f1becd0cbe4e3217c4785d0a820d94fa2deb4977195b2b55b5a8462427ac82b3de057107fa0f8825afc446edcf869882075de6a659094e770dc4785fbb52899e877713d00c5548c81d58cbe90d15f15d14ffa233079cfa4aca126fcf4e92ff0e85986ea7b607f7a0cdb0d4d93ec42ba941e057c2bbf8eec7d48c8c044b3111280b5b6ab78de6aa02929063851e1a01c5abaae2d5c1a7f6832866bd29c882acf4c40bd97857c999155ed584177e2cb393c6303d7158368f63d3de1fbb0ba4ac2f638c877f5b4fd7af1cce4c0ff6a7cd582c3f1b2acdf4e900ef135e016c0db8a3fae88031d0e9c725401ded10a1820540de0a73470c98869e3c242958aec4a52008b0c695b18a3ac85c548dee303f0e439a68e9abc7aa4861467627896a96c3c573b0cb24b9b16663c91d32ed46a251e8a1b8457a965099ac8cd3dd4135666d20e4192b6ac7d23eab5819ba2cfca44f6d7dfb37f3f11820d61e6025e589adac339c44c900864436b189aed49de31934b7977dfc47f6e35953344529b209bf3487751145072a8775322dc8c40e013721d34ab0137fc75e230d3e23fa327dec90fd495107efb42de212d18c79c15d1ef7f1026de293352bf8c6ac633dc1ca6726d5ec39aaa866342ffd1e76357afa8b92b8523137f005935cc9d5ba760628fe7467c610f5e2b02ddc304d226cc20d6f86b45fb5ccdabf169925f0d511a59745a9691ab75383b10b6ecde36dd866a4658eefa7ab457224bd5983427e7b76697c13ac62c9fdfc90b342044d1937bcb4b47425804dd7dbe27739859b93fbe2034a6f0a242e7100d83b302ff5da8352be3219806eaebeb15dd5cbf8817e40022bd24e412b4b08f642232fe54e7b6aa7f31da8d91fe6bce35cb299ec59d0d2fc4a65cd13bc0985f6577f0809177a33f938a1413be45bb79e1178ff82f7a62780618ad5a94b5d811fd50f2640650a0d08486e49a5fdeb850e8caf77ac24405bc8545c2d7c897115989b2dccc677803c7c85f61168b643fb66a055fb048aaa7a80ac0bb39d14bde8c4d7b095ef5a383f952129c42011a9e6b78aa7b005960b4b3544b9644bc0382e23a4592cf7fb74ed90d14bd96f995828acba406e41ac0329e30a5094f17c2f2ba1c1fb6c75518f8e711e37d440ec7ef4caf079b43218ac1aa4ca6d586f0d017ea8c4aa9d7aa388a39c65098b4e1497767d995fda6c541f3232166452213034436f3b979d284d0e6d71423916e8a915f6cfa18a84755c7605d43eb6e21c8aea0b7594c215630a8cbd199f9c4e6fcb01841b47f02b95dcf5bc685fa5c2265510c57e714f23579bb1d32424b1f753a582517237f6e545a08bef96b5f4a2e6e9c6ec0b52c360015bf9de3fe28814c4fa85b90b7cf481000ba032453bb97d8679fb4b25ed168829cd4eb97cb7cedffd4d273cb022fabed412556bbc81b1270d7119989be46cb9819110cca9533caa67b8a2cc634f9c20d85a3935b7f8f821c5a843008fe1e93d8db8e17d246e9c09e723b32031341dc54230c895b670929e9b51e161a4f7cdaa0154846e27135022b725dadb3ebf5ecf8d4fb52d3be20e72a505681b2788072cbeda2d85d697a453facd76a6682d951bdfa7c885d6ed55e678b2a6128782e38fd28f9433ba89b3db636962c6edeccd48b0f6056ec1640fa6729d3c025c577720216f60477b9b782630d513c123533c48a5d6dbb3fff673f2239eae79939667dc34c10b33e3b35ecec1cca5a948bdecafbad22ef629a5af9cd0cd7f7c108a84fd997a3f996be77df561e130995c9eed987fcff5ce1a068c782a5bcf4612bf493b24df205eb32bcb5624f8f627254a5c19dec2edd9210680b934d8ce3b67911b63975997b5baad0960d709a3a9a1e4dcedc8383261293022391da50c77f7e1ca0d207b705db6e034b3b0443799eb4ca8d2400d9fb9b3e1779be2f053fd7f98eb55cb023d45ff86bb7e0bfe2e14d567f748d8c1041090272c96d029f81767649a0b6c6f353aa30ec296d2f7a67002013615a77eaa38fd27e223e964e80a8b978a48ec389aa2d3caef5eba0a13ba9bbc32e47441a1935ddfee9a56641983fdbaf16595b4444cf5390c5c9b39957d1a1d1bdd38aac6df7299967a59acd71b3d0bd34fb9478f4895c5f31e67d2529bc301b619da8e37a7f910a9a44a72a7af0bacc2453330a319f3ccfedf1dadac417e08a58edbafceb714a8cdb13feae4027ae9ab5e75d7a02cbba91a45b3ba91d9b75c131b6e388cdcf0742b8fd9d354c997b76d06bb17f1af19f80f208744e2bc9af1a09f2075e62dde67074124caddd37e58062a6451d9490def8cde5485bdb64d1cb9c3b00438f43ef7a781274fffbdf5bea58400ba3f287f2c3114ba83492a4c8529dc3b3404ebaa36ad5de7b4584b68d0ab386a2cedd24b4d4a9948c34026c9e9671798a166d584e23c956322253b42a2e8f0bea2c6782b0233e868cd0a81b192d5d00c5e391a3a4b1f850e424b1cfffdaded6ccdde81682675fae3bb72c5080b548446bfb551aca56b65bca4d4aef33b21d7893bd5b2437236d9795e34ca0247f4671c0fe4a21067be227ecb2640d7e6e4d950e6e2b26a72778f7ee5942dc066996630a3cec9d16a46ea133336a2643c5aac96add2f7c46e698d71096cb168854fecd6b0e50cb5a5703a7b568bf47be32cc47e40d49958aabd2b391af2031dda71e4ec512afa4f8ea8c0b622c12548687f511d47b9f3a247587f8acbf9a0a2d2ac6dbc331c6959a1654eb9c6fb400b17924a57ab91bacbdee95da21f4d439810a3ec450ae6a0b3c3e92c8a9bc1c0bfb43f321ad5e7665c406148949237faa239ebc1b2c3b257a05898031261e572e54b9d42404198dd29fce2f27cb5b34e1e3613546c1705dba84a495e5fccc5fd5d925340bce161891b9c032570d05e6f6a251f96182ace3391310d8d3e92e13185f3ac8a1c605cdadb1cc35a5b1349415ef2c31d8416c6544b01ecd03b5600d13893b652adc0eb648ec588aebd65cefaa31a56353bce55cb086d12b4ff19b8785e2aca831d79c9d9d8b4858ee728970afc217208734df7e842265cfd151d1d6cecc939e7bc8d7de6a469d35c7a48fc79825b83ee89a924aa67cdd73152de95905810d86784aee2356169c2ed939c829532acb6b2bf3ed87022d31f0e277ff2cc9c9e3a073d1f53f3903fa23eb247520edc7878ef3652ca255e03c2889793502cb948beec7cf1eb3283d16c53875b8b31f80f28d977442d4214d65acaa6d4011b1fc96f7d8159e95129f2e491229ff28fe6c4aaebe123b7e66b58326748950ba1125316de38dfa3fa35c51a755a481493c45bc4b9e8557b9626faa2d19da730483f0be030ea62972f7bc0fcd08bad1c08dd8c17fc1263119809fa2a45529114c236c5f2df711180993d3f478b1233e3bbbf5292e792021bd94097d704590e686ff0e1fbc2ef56ff625ab9b5dbe2aa4bddd385306a8a8a564f50ea53e78fb1ea60b5dd081a9c5ca1e819d15a493bbf90fd16a8fcae176abb98dbd1a33d431f90fe795f7034f394d7311bdffe5929198210a60d832659681aa28239005960736d9a775cc99637f0456c6cb6824c539033f2ff66b67a1f985a45d4e9202619829c97498b59808509fff921fe33fce9f4189a2cc2b6b58767fa9c14131f6f2ce45fb14426f7c4c1c9891327cca0c6f97f90aedbfd15c8a1eb364452cec82cd63fbbfadf629d04fa8133a49309ed1f8750f54f7f53604d47ef3e4079c41f5b9c51aa799a31cdd4de74ec2d350d1f9b15b1017fe8555b0b0a404412ca4bcc851ef46469af6cddae48eeddf6f603f23318a34fc762b4fe7fd9b5ab4a644789f031e37b83718ad8de2a76eee514d999104c5eac8d7b0b1244e8f227a9562b855a62f437ee28e12b1927e144944d615f8a66db298d20eb67e482eb7c1a5777dd147646866edae0f540b3d74ebe0b56957aa15cedeff6fa4b533f5b9bad3a44e7d52be9218c03d7ce3b2902cdbbae96d6b3c39c18cf43ff3d19be5d7921cc400c5b7cdbc0b43866caf3d4db5b8bdcb751d2b67ef33c2abd162e178beee717e955375949ab49f699e991b98d1eba15bf214f886171b309073b154928c3477aedd393f3896c1518efd0e1a7314167335e5542fa8fe1913e451daef8955a588567756730205313d2fe04000100ec00028004000100d90005008fda48ec8fd242e4e8e271e5260b6018159d4eeb59108986ea413c0ff8e03f1eeca26021e2526deb8455698b65e89db7978d46aff741bac8be1c43ba842b2465b998cf4a196e1bae573b814dd7d30c52bfbec2235af40a4a7fca0a269fa95f3d252c8bbda2ccff15e7afe043b47e958d2394bbe63734ff86e6a5e49ba88d51d419d2539b912eb33431ad968e9500ca993575ffec67c2bc8d235cee7dddc4dc10b24624196a98f3534d1f5df85b9d9a35a9c88d3cabafac14092914d2f2a336e53bd225f8ba3e6388c11e4821e545aeeabc880c239800000008000200ff0100004c00018008000100", @ANYRES32=0x0, @ANYBLOB="08000300000000000800030001000000080003000200000014000200767863616e3100000000000000000000140002006e657464657673696d300000000000006000018008ffff00030000001400020076657468315f746f5f626f6e6400000008000100618dc903b6112f34c03859190f9a64b71af827da7eacb32e4ff8183ea72e745915169b5736447806005f42773f0105d57cd05e0fc3aea7f05061a2f7f16a4162a7277362a1e1d6e7e8c0154fa662609dd6c9e3e8021eb96ce86f420ef335252051ec7eada2dae80f0f0cafb63d4727910e386e842f22bfa2e1c7c0d1", @ANYRES32=r7, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="0800030003000000080003000000000008000100", @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="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"], 0x1670}}, 0x40) accept$unix(r0, 0x0, 0x0) r8 = socket$unix(0x1, 0x5, 0x0) connect$unix(r8, &(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e) 03:02:54 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 33) [ 1415.032476] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. 03:02:55 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x48, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:02:55 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xa, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1415.128429] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. [ 1415.203621] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1415.240416] FAULT_INJECTION: forcing a failure. [ 1415.240416] name failslab, interval 1, probability 0, space 0, times 0 [ 1415.241751] CPU: 1 PID: 8744 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1415.242528] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1415.243487] Call Trace: [ 1415.243800] dump_stack+0x107/0x167 [ 1415.244227] should_fail.cold+0x5/0xa [ 1415.244676] ? create_object.isra.0+0x3a/0xa20 [ 1415.245223] should_failslab+0x5/0x20 [ 1415.245668] kmem_cache_alloc+0x5b/0x310 [ 1415.246134] ? find_held_lock+0x2c/0x110 [ 1415.246598] create_object.isra.0+0x3a/0xa20 [ 1415.247096] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1415.247691] __kmalloc_track_caller+0x177/0x370 [ 1415.248225] ? kstrdup_const+0x53/0x80 [ 1415.248670] kstrdup+0x36/0x70 [ 1415.249055] kstrdup_const+0x53/0x80 [ 1415.249483] __kernfs_new_node+0x9d/0x860 [ 1415.249960] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1415.250509] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1415.251112] kernfs_new_node+0x18d/0x250 [ 1415.251577] kernfs_create_dir_ns+0x49/0x160 [ 1415.252085] sysfs_create_dir_ns+0x127/0x290 [ 1415.252590] ? sysfs_create_mount_point+0xb0/0xb0 [ 1415.253149] ? rwlock_bug.part.0+0x90/0x90 [ 1415.253642] ? class_dir_child_ns_type+0x9/0x60 [ 1415.254186] kobject_add_internal+0x25e/0xa30 [ 1415.254714] kobject_add+0x150/0x1c0 [ 1415.255143] ? kset_create_and_add+0x1a0/0x1a0 [ 1415.255668] ? lockdep_init_map_type+0x2c7/0x780 [ 1415.256235] device_add+0x35a/0x1c50 [ 1415.256670] ? devlink_add_symlinks+0x970/0x970 [ 1415.257225] device_create_groups_vargs+0x207/0x280 [ 1415.257799] device_create+0xdc/0x120 [ 1415.258239] ? device_create_groups_vargs+0x280/0x280 [ 1415.258850] ? init_timer_key+0x12a/0x240 [ 1415.259330] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1415.259901] mac80211_hwsim_new_radio+0x376/0x4290 [ 1415.260467] ? ____sys_sendmsg+0x70d/0x870 [ 1415.260957] ? ___sys_sendmsg+0xf3/0x170 [ 1415.261431] ? __sys_sendmsg+0xe5/0x1b0 [ 1415.261892] ? do_syscall_64+0x33/0x40 [ 1415.262339] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1415.262956] ? lock_acquire+0x197/0x470 [ 1415.263414] ? create_object.isra.0+0x3ad/0xa20 [ 1415.263953] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1415.264487] ? __kmalloc+0x16e/0x390 [ 1415.264916] hwsim_new_radio_nl+0x991/0x1080 [ 1415.265434] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1415.266042] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1415.266803] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1415.267561] genl_family_rcv_msg_doit+0x22d/0x330 [ 1415.268116] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1415.268877] ? cap_capable+0x1cd/0x230 [ 1415.269342] ? ns_capable+0xe2/0x110 [ 1415.269772] genl_rcv_msg+0x36a/0x5a0 [ 1415.270218] ? genl_get_cmd+0x480/0x480 [ 1415.270675] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1415.271269] ? lock_release+0x680/0x680 [ 1415.271724] ? netlink_deliver_tap+0xf4/0xcc0 [ 1415.272234] netlink_rcv_skb+0x14b/0x430 [ 1415.272706] ? genl_get_cmd+0x480/0x480 [ 1415.273172] ? netlink_ack+0xab0/0xab0 [ 1415.273622] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1415.274146] ? is_vmalloc_addr+0x7b/0xb0 [ 1415.274610] genl_rcv+0x24/0x40 [ 1415.274989] netlink_unicast+0x54e/0x800 [ 1415.275458] ? netlink_attachskb+0x870/0x870 [ 1415.275964] netlink_sendmsg+0x90f/0xe00 [ 1415.276433] ? netlink_unicast+0x800/0x800 [ 1415.276923] ? netlink_unicast+0x800/0x800 [ 1415.277418] __sock_sendmsg+0x154/0x190 [ 1415.277873] ____sys_sendmsg+0x70d/0x870 [ 1415.278340] ? sock_write_iter+0x3d0/0x3d0 [ 1415.278825] ? do_recvmmsg+0x6d0/0x6d0 [ 1415.279282] ? lock_downgrade+0x6d0/0x6d0 [ 1415.279762] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1415.280373] ___sys_sendmsg+0xf3/0x170 [ 1415.280824] ? sendmsg_copy_msghdr+0x160/0x160 [ 1415.281364] ? __fget_files+0x2cf/0x520 [ 1415.281822] ? lock_downgrade+0x6d0/0x6d0 [ 1415.282300] ? find_held_lock+0x2c/0x110 [ 1415.282771] ? __fget_files+0x2f8/0x520 [ 1415.283233] ? __fget_light+0xea/0x290 [ 1415.283684] __sys_sendmsg+0xe5/0x1b0 [ 1415.284123] ? __sys_sendmsg_sock+0x40/0x40 [ 1415.284615] ? rcu_read_lock_any_held+0x75/0xa0 [ 1415.285166] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1415.285763] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1415.286351] do_syscall_64+0x33/0x40 [ 1415.286773] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1415.287355] RIP: 0033:0x7fdcf09cab19 [ 1415.287780] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1415.289873] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1415.290746] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1415.291561] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1415.292376] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1415.293192] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1415.294010] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 [ 1415.392361] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. 03:03:09 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xa, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:03:09 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xb, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:03:09 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) socket$unix(0x1, 0x5, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r1, &(0x7f0000000180)=""/198, 0xc6) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 03:03:09 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xb, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:03:09 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) close(r0) socket$nl_generic(0x10, 0x3, 0x10) pipe(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setstatus(r2, 0x4, 0x42800) write(r2, &(0x7f0000000080)="1f", 0x1) splice(r1, 0x0, r0, 0x0, 0x1, 0x5) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_CONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="050000000000000000000200000008000300", @ANYRES32=r5, @ANYBLOB='\f\x00@'], 0x30}}, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000500)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x94002}, 0xc, &(0x7f00000004c0)={&(0x7f0000000140)={0x354, r4, 0x4, 0x70bd2d, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r6}, @val={0xc, 0x99, {0x9, 0x31}}}}, [@NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @chandef_params=[@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}], @NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}, @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x4}], @NL80211_ATTR_OFFCHANNEL_TX_OK={0x4}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}, @NL80211_ATTR_FRAME={0x302, 0x33, @assoc_req={@with_ht={{{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {0xff}, @broadcast, @device_a, @initial, {0x4, 0x1}}, @ver_80211n={0x0, 0x56fc, 0x1, 0x3, 0x0, 0x2, 0x1}}, 0x8088, 0xb1, {0x0, 0x6, @default_ap_ssid}, @void, @val={0x2d, 0x1a, {0x20, 0x0, 0x3, 0x0, {0x5, 0x8, 0x0, 0xff, 0x0, 0x1, 0x0, 0x2}, 0x6, 0xfffffffc, 0x1}}, [{0xdd, 0x99, "1e46e04545a0cf047532bb403f04bfd52f9dd3c85bc0ca47e5098a92f7937b181bf1f47a73b61a4340c00b54cb35b379a90831eae3fbad098fd157fcc3ea5dca28b1f092337edf913a806348e69958163cae37a76260cb43af09b1781684f4a43269b3b3f87d44ce2e50d7424749d39dd517765c7baf12010cfdec40c6ea517649bdb9efae0b113a614458c784ca8746cf2c564444c4661909"}, {0xdd, 0x49, "880d12a44509f51d1e79ba5a61dc58c45538a88ca187ac33ed4d0349a8149cb9eccb4a4874bd6577a9de8b7ad8702f17aee5b590fca89d6936b5e7be0f79ba5fe03dc721a00c0b0555"}, {0xdd, 0x1c, "89c780e41aab1f812716e134ba7b805532c583eaec029b40f132ab72"}, {0xdd, 0x85, "8f081a3252c2fe19cb0b590fa46cd862894eaeb1733a0d5371a4cbcff5f835bac8e1db63ba0d7759dd80df80f677d67136a3f808fd89c770258f41226f8e049b66fccd49c96a33edfa3898de1052f8c93796b37e48678b5f868d21fbd4b03d9519928dc641b62169340d0e685421ba58bf75f086a108a83c427e55be39cd8c60c163a0ecef"}, {0xdd, 0x6f, "40fc45783b400c44e96a6aefd9bbc2a2d5ccff7bd411de640bab2d65eed1c02643136efe87a2d73ce147640ab8a60d2219495e5c8364869d90ab9f26ef3fc2df7ca6dc69167b9f2554608096ac39fa30832afed665768ae38a549816fff56457112077351be7ff0be65ce3256c0bf9"}, {0xdd, 0xbc, "57791e4b5daabff7be427c0d3a9ca3407d0c64f28bee1594ee1f0cf9503d936bfd3fdafeb9ebf000997d0a1e40b6c475d1b1d77f6a35850dc3a332edfaa00cc36b616ed4590f3586af94d410b06297da53cab4743ada918eb936b388c02a0b4118dd24b021fd3f6952f3bd4c26608f2461ea56947b847a231c20bed5313984260289db0a3bfe9980804452d7bc22e64bb03fa2357b95f092ba9cb0dafff030f2ecd8acba1f9d7e69ceb3d67214d8de8303a6dd34dc2213145ca67b72"}]}}, @NL80211_ATTR_TX_NO_CCK_RATE={0x4}]}, 0x354}, 0x1, 0x0, 0x0, 0x10}, 0x8040) 03:03:09 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 34) 03:03:09 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x4c, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:03:09 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x6b, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1429.672482] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 03:03:09 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x4f, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1429.791645] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1429.876566] FAULT_INJECTION: forcing a failure. [ 1429.876566] name failslab, interval 1, probability 0, space 0, times 0 [ 1429.878045] CPU: 1 PID: 8772 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1429.878882] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1429.879902] Call Trace: [ 1429.880234] dump_stack+0x107/0x167 [ 1429.880688] should_fail.cold+0x5/0xa [ 1429.881162] ? __kernfs_new_node+0xd4/0x860 [ 1429.881711] should_failslab+0x5/0x20 [ 1429.882180] kmem_cache_alloc+0x5b/0x310 [ 1429.882687] __kernfs_new_node+0xd4/0x860 [ 1429.883200] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1429.883793] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1429.884444] kernfs_new_node+0x18d/0x250 [ 1429.884947] kernfs_create_dir_ns+0x49/0x160 [ 1429.885498] sysfs_create_dir_ns+0x127/0x290 [ 1429.886041] ? sysfs_create_mount_point+0xb0/0xb0 [ 1429.886628] ? rwlock_bug.part.0+0x90/0x90 [ 1429.887152] ? class_dir_child_ns_type+0x9/0x60 [ 1429.887728] kobject_add_internal+0x25e/0xa30 [ 1429.888283] kobject_add+0x150/0x1c0 [ 1429.888743] ? kset_create_and_add+0x1a0/0x1a0 [ 1429.889315] ? lockdep_init_map_type+0x2c7/0x780 [ 1429.889906] device_add+0x35a/0x1c50 [ 1429.890367] ? devlink_add_symlinks+0x970/0x970 [ 1429.890943] device_create_groups_vargs+0x207/0x280 [ 1429.891553] device_create+0xdc/0x120 [ 1429.892021] ? device_create_groups_vargs+0x280/0x280 [ 1429.892647] ? init_timer_key+0x12a/0x240 [ 1429.893157] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1429.893756] mac80211_hwsim_new_radio+0x376/0x4290 [ 1429.894352] ? ____sys_sendmsg+0x70d/0x870 [ 1429.894870] ? ___sys_sendmsg+0xf3/0x170 [ 1429.895362] ? __sys_sendmsg+0xe5/0x1b0 [ 1429.895849] ? do_syscall_64+0x33/0x40 [ 1429.896325] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1429.896971] ? lock_acquire+0x197/0x470 [ 1429.897462] ? create_object.isra.0+0x3ad/0xa20 [ 1429.898031] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1429.898597] ? __kmalloc+0x16e/0x390 [ 1429.899052] hwsim_new_radio_nl+0x991/0x1080 [ 1429.899591] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1429.900229] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1429.901029] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1429.901833] genl_family_rcv_msg_doit+0x22d/0x330 [ 1429.902419] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1429.903219] ? cap_capable+0x1cd/0x230 [ 1429.903698] ? ns_capable+0xe2/0x110 [ 1429.904156] genl_rcv_msg+0x36a/0x5a0 [ 1429.904622] ? genl_get_cmd+0x480/0x480 [ 1429.905103] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1429.905736] ? lock_release+0x680/0x680 [ 1429.906215] ? netlink_deliver_tap+0xf4/0xcc0 [ 1429.906756] netlink_rcv_skb+0x14b/0x430 [ 1429.907247] ? genl_get_cmd+0x480/0x480 [ 1429.907725] ? netlink_ack+0xab0/0xab0 [ 1429.908200] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1429.908761] ? is_vmalloc_addr+0x7b/0xb0 [ 1429.909259] genl_rcv+0x24/0x40 [ 1429.909657] netlink_unicast+0x54e/0x800 [ 1429.910148] ? netlink_attachskb+0x870/0x870 [ 1429.910682] netlink_sendmsg+0x90f/0xe00 [ 1429.911172] ? netlink_unicast+0x800/0x800 [ 1429.911695] ? netlink_unicast+0x800/0x800 [ 1429.912205] __sock_sendmsg+0x154/0x190 [ 1429.912685] ____sys_sendmsg+0x70d/0x870 [ 1429.913178] ? sock_write_iter+0x3d0/0x3d0 [ 1429.913697] ? do_recvmmsg+0x6d0/0x6d0 [ 1429.914172] ? lock_downgrade+0x6d0/0x6d0 [ 1429.914676] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1429.915313] ___sys_sendmsg+0xf3/0x170 [ 1429.915788] ? sendmsg_copy_msghdr+0x160/0x160 [ 1429.916345] ? __fget_files+0x2cf/0x520 [ 1429.916826] ? lock_downgrade+0x6d0/0x6d0 [ 1429.917335] ? find_held_lock+0x2c/0x110 [ 1429.917833] ? __fget_files+0x2f8/0x520 [ 1429.918321] ? __fget_light+0xea/0x290 [ 1429.918797] __sys_sendmsg+0xe5/0x1b0 [ 1429.919258] ? __sys_sendmsg_sock+0x40/0x40 [ 1429.919782] ? rcu_read_lock_any_held+0x75/0xa0 [ 1429.920350] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1429.920982] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1429.921610] do_syscall_64+0x33/0x40 [ 1429.922056] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1429.922672] RIP: 0033:0x7fdcf09cab19 [ 1429.923130] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1429.925352] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1429.926265] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1429.927121] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1429.927973] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1429.928828] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1429.929694] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 [ 1429.931348] kobject_add_internal failed for hwsim421 (error: -12 parent: mac80211_hwsim) [ 1429.967968] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1430.025997] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'. 03:03:25 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xc, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:03:25 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x6c, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:03:25 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@abs={0x1, 0x0, 0x4e24}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r1, &(0x7f0000000180)=""/198, 0xc6) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) ioctl$sock_SIOCSIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(r2, 0x8983, &(0x7f0000000280)={0x2, 'wlan1\x00', {0x9}, 0x180}) connect$unix(r1, &(0x7f0000000100)=@file={0x1, './file0\x00'}, 0x6e) r3 = socket$unix(0x1, 0x5, 0x0) connect$unix(r3, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 03:03:25 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x52, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:03:25 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 35) 03:03:25 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xc, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:03:25 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff) openat(r0, &(0x7f0000000140)='./file1\x00', 0x14800, 0x101) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r1, &(0x7f0000000180)=""/198, 0xc6) syz_io_uring_setup(0x400021, &(0x7f0000000300)={0x0, 0x79df, 0x10, 0x2, 0x2f5, 0x0, r1}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f00000002c0), 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) preadv(r2, 0x0, 0x0, 0x0, 0x0) stat(&(0x7f0000000380)='./file1/file0\x00', &(0x7f00000003c0)) openat(r2, &(0x7f0000000040)='./file1\x00', 0x20641, 0x0) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x8, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xd9, 0xfa8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r3, &(0x7f0000000180)=""/198, 0xc6) perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0x3, 0x5, 0xfc, 0x5, 0x0, 0x2, 0x200, 0x3, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x4, @perf_config_ext={0x7aaf, 0x5}, 0x14125, 0x5, 0x100, 0x3, 0x0, 0xffffffff, 0x3ff, 0x0, 0xa6, 0x0, 0x7}, 0xffffffffffffffff, 0x0, r3, 0x0) close(r0) umount2(&(0x7f0000000280)='./file1/file0\x00', 0x9) stat(&(0x7f0000000440)='./file1/file0\x00', &(0x7f0000000500)) execveat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0, 0x0) 03:03:25 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xb, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1445.636640] FAULT_INJECTION: forcing a failure. [ 1445.636640] name failslab, interval 1, probability 0, space 0, times 0 [ 1445.638255] CPU: 1 PID: 8791 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1445.639200] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1445.640354] Call Trace: [ 1445.640726] dump_stack+0x107/0x167 [ 1445.641244] should_fail.cold+0x5/0xa [ 1445.641781] ? __kernfs_new_node+0xd4/0x860 [ 1445.642391] should_failslab+0x5/0x20 [ 1445.642923] kmem_cache_alloc+0x5b/0x310 [ 1445.643489] __kernfs_new_node+0xd4/0x860 [ 1445.644071] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1445.644738] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1445.645478] kernfs_new_node+0x18d/0x250 [ 1445.646048] kernfs_create_dir_ns+0x49/0x160 [ 1445.646656] sysfs_create_dir_ns+0x127/0x290 [ 1445.647271] ? sysfs_create_mount_point+0xb0/0xb0 [ 1445.647933] ? rwlock_bug.part.0+0x90/0x90 [ 1445.648529] ? class_dir_child_ns_type+0x9/0x60 [ 1445.649179] kobject_add_internal+0x25e/0xa30 [ 1445.649816] kobject_add+0x150/0x1c0 [ 1445.650329] ? kset_create_and_add+0x1a0/0x1a0 [ 1445.650966] ? lockdep_init_map_type+0x2c7/0x780 [ 1445.651629] device_add+0x35a/0x1c50 [ 1445.652149] ? devlink_add_symlinks+0x970/0x970 [ 1445.652800] device_create_groups_vargs+0x207/0x280 [ 1445.653501] device_create+0xdc/0x120 [ 1445.654025] ? device_create_groups_vargs+0x280/0x280 [ 1445.654747] ? init_timer_key+0x12a/0x240 [ 1445.655320] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1445.655988] mac80211_hwsim_new_radio+0x376/0x4290 [ 1445.656657] ? ____sys_sendmsg+0x70d/0x870 [ 1445.657240] ? ___sys_sendmsg+0xf3/0x170 [ 1445.657808] ? __sys_sendmsg+0xe5/0x1b0 [ 1445.658358] ? do_syscall_64+0x33/0x40 [ 1445.658891] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1445.659628] ? lock_acquire+0x197/0x470 [ 1445.660174] ? create_object.isra.0+0x3ad/0xa20 [ 1445.660819] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1445.661476] ? __kmalloc+0x16e/0x390 [ 1445.661991] hwsim_new_radio_nl+0x991/0x1080 [ 1445.662596] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1445.663321] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1445.664223] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1445.665118] genl_family_rcv_msg_doit+0x22d/0x330 [ 1445.665787] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1445.666700] ? cap_capable+0x1cd/0x230 [ 1445.667247] ? ns_capable+0xe2/0x110 [ 1445.667762] genl_rcv_msg+0x36a/0x5a0 [ 1445.668287] ? genl_get_cmd+0x480/0x480 [ 1445.668834] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1445.669558] ? lock_release+0x680/0x680 [ 1445.670103] ? netlink_deliver_tap+0xf4/0xcc0 [ 1445.670718] netlink_rcv_skb+0x14b/0x430 [ 1445.671273] ? genl_get_cmd+0x480/0x480 [ 1445.671818] ? netlink_ack+0xab0/0xab0 [ 1445.672356] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1445.672984] ? is_vmalloc_addr+0x7b/0xb0 [ 1445.673548] genl_rcv+0x24/0x40 [ 1445.673998] netlink_unicast+0x54e/0x800 [ 1445.674557] ? netlink_attachskb+0x870/0x870 [ 1445.675165] netlink_sendmsg+0x90f/0xe00 [ 1445.675725] ? netlink_unicast+0x800/0x800 [ 1445.676306] ? netlink_unicast+0x800/0x800 [ 1445.676894] __sock_sendmsg+0x154/0x190 [ 1445.677444] ____sys_sendmsg+0x70d/0x870 [ 1445.678006] ? sock_write_iter+0x3d0/0x3d0 [ 1445.678579] ? do_recvmmsg+0x6d0/0x6d0 [ 1445.679115] ? lock_downgrade+0x6d0/0x6d0 [ 1445.679685] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1445.680415] ___sys_sendmsg+0xf3/0x170 [ 1445.680944] ? sendmsg_copy_msghdr+0x160/0x160 [ 1445.681576] ? __fget_files+0x2cf/0x520 [ 1445.682115] ? lock_downgrade+0x6d0/0x6d0 [ 1445.682689] ? find_held_lock+0x2c/0x110 [ 1445.683251] ? __fget_files+0x2f8/0x520 [ 1445.683812] ? __fget_light+0xea/0x290 [ 1445.684351] __sys_sendmsg+0xe5/0x1b0 [ 1445.684874] ? __sys_sendmsg_sock+0x40/0x40 [ 1445.685471] ? rcu_read_lock_any_held+0x75/0xa0 [ 1445.686119] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1445.686828] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1445.687536] do_syscall_64+0x33/0x40 [ 1445.688041] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1445.688734] RIP: 0033:0x7fdcf09cab19 [ 1445.689241] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1445.691756] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1445.692787] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1445.693763] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1445.694725] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1445.695687] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1445.696649] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 [ 1445.698472] kobject_add_internal failed for hwsim425 (error: -12 parent: mac80211_hwsim) 03:03:25 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x55, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:03:25 executing program 0: r0 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000a00)=ANY=[], 0x98a) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = getpgrp(0x0) pidfd_open(r2, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000080)={0x0, 0xfdfdffff, 0x102, 0x0, '\x00', [{}, {0x800, 0x0, 0x400000000000000}], ['\x00']}) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000001c0)={'macsec0\x00', &(0x7f0000000240)=ANY=[@ANYBLOB="3c00000001000000030015c1e10000030000000220000001dee8fc131fc92b570000000100008068fb93f20624d998bb2382fbef2e605d20efd13ad8020454fe726d5ec46065bf6e5c2fd748b7382cb035aee7d0"]}) ioctl$TUNSETPERSIST(r0, 0x400454cb, 0x1) r3 = dup(0xffffffffffffffff) close(r0) r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x2010, r1, 0x10000000) r5 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x810, r1, 0x10000000) r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r6, &(0x7f0000000180)=""/198, 0xc6) syz_io_uring_submit(0x0, r5, &(0x7f0000000180)=@IORING_OP_FSYNC={0x3, 0x7, 0x0, @fd=r6, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r4}}, 0x9) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) unshare(0x48020200) 03:03:25 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 36) [ 1445.840257] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 03:03:25 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xc, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1445.986132] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. 03:03:26 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x6f, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1446.061391] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. 03:03:26 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xd, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:03:26 executing program 0: r0 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000a00)=ANY=[], 0x98a) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = getpgrp(0x0) pidfd_open(r2, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000080)={0x0, 0xfdfdffff, 0x102, 0x0, '\x00', [{}, {0x800, 0x0, 0x400000000000000}], ['\x00']}) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000001c0)={'macsec0\x00', &(0x7f0000000240)=ANY=[@ANYBLOB="3c00000001000000030015c1e10000030000000220000001dee8fc131fc92b570000000100008068fb93f20624d998bb2382fbef2e605d20efd13ad8020454fe726d5ec46065bf6e5c2fd748b7382cb035aee7d0"]}) ioctl$TUNSETPERSIST(r0, 0x400454cb, 0x1) r3 = dup(0xffffffffffffffff) close(r0) r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) mmap$IORING_OFF_SQES(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x2010, r1, 0x10000000) r5 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x810, r1, 0x10000000) r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r6, &(0x7f0000000180)=""/198, 0xc6) syz_io_uring_submit(0x0, r5, &(0x7f0000000180)=@IORING_OP_FSYNC={0x3, 0x7, 0x0, @fd=r6, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r4}}, 0x9) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) unshare(0x48020200) [ 1446.259365] FAULT_INJECTION: forcing a failure. [ 1446.259365] name failslab, interval 1, probability 0, space 0, times 0 [ 1446.262012] CPU: 0 PID: 8815 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1446.263568] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1446.265463] Call Trace: [ 1446.266065] dump_stack+0x107/0x167 [ 1446.266898] should_fail.cold+0x5/0xa [ 1446.267766] ? __kernfs_new_node+0xd4/0x860 [ 1446.268750] should_failslab+0x5/0x20 [ 1446.269633] kmem_cache_alloc+0x5b/0x310 [ 1446.270563] __kernfs_new_node+0xd4/0x860 [ 1446.271511] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1446.272594] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1446.273792] ? kernfs_add_one+0x124/0x4d0 [ 1446.274745] kernfs_new_node+0x18d/0x250 [ 1446.275674] __kernfs_create_file+0x51/0x350 [ 1446.276685] sysfs_add_file_mode_ns+0x221/0x560 [ 1446.277761] sysfs_create_file_ns+0x131/0x1d0 [ 1446.278797] ? sysfs_add_file_mode_ns+0x560/0x560 [ 1446.279904] ? is_acpi_device_node+0x6e/0x90 [ 1446.280910] device_create_file+0xea/0x1d0 [ 1446.281877] device_add+0x547/0x1c50 [ 1446.282733] ? devlink_add_symlinks+0x970/0x970 [ 1446.283783] device_create_groups_vargs+0x207/0x280 [ 1446.284915] device_create+0xdc/0x120 [ 1446.285797] ? device_create_groups_vargs+0x280/0x280 [ 1446.286963] ? init_timer_key+0x12a/0x240 [ 1446.287905] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1446.289019] mac80211_hwsim_new_radio+0x376/0x4290 [ 1446.290138] ? ____sys_sendmsg+0x70d/0x870 [ 1446.291104] ? ___sys_sendmsg+0xf3/0x170 [ 1446.292021] ? __sys_sendmsg+0xe5/0x1b0 [ 1446.292915] ? do_syscall_64+0x33/0x40 [ 1446.293796] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1446.295000] ? lock_acquire+0x197/0x470 [ 1446.295904] ? create_object.isra.0+0x3ad/0xa20 [ 1446.296957] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1446.298016] ? __kmalloc+0x16e/0x390 [ 1446.298873] hwsim_new_radio_nl+0x991/0x1080 [ 1446.299893] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1446.301078] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1446.302593] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1446.304070] genl_family_rcv_msg_doit+0x22d/0x330 [ 1446.305170] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1446.306669] ? cap_capable+0x1cd/0x230 [ 1446.307565] ? ns_capable+0xe2/0x110 [ 1446.308412] genl_rcv_msg+0x36a/0x5a0 [ 1446.309276] ? genl_get_cmd+0x480/0x480 [ 1446.310195] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1446.311367] ? lock_release+0x680/0x680 [ 1446.312264] ? netlink_deliver_tap+0xf4/0xcc0 [ 1446.313281] netlink_rcv_skb+0x14b/0x430 [ 1446.314207] ? genl_get_cmd+0x480/0x480 [ 1446.315127] ? netlink_ack+0xab0/0xab0 [ 1446.316022] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1446.317054] ? is_vmalloc_addr+0x7b/0xb0 [ 1446.317989] genl_rcv+0x24/0x40 [ 1446.318735] netlink_unicast+0x54e/0x800 [ 1446.319661] ? netlink_attachskb+0x870/0x870 [ 1446.320667] netlink_sendmsg+0x90f/0xe00 [ 1446.321599] ? netlink_unicast+0x800/0x800 [ 1446.322566] ? netlink_unicast+0x800/0x800 [ 1446.323521] __sock_sendmsg+0x154/0x190 [ 1446.324421] ____sys_sendmsg+0x70d/0x870 [ 1446.325344] ? sock_write_iter+0x3d0/0x3d0 [ 1446.326308] ? do_recvmmsg+0x6d0/0x6d0 [ 1446.327191] ? lock_downgrade+0x6d0/0x6d0 [ 1446.328132] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1446.329323] ___sys_sendmsg+0xf3/0x170 [ 1446.330212] ? sendmsg_copy_msghdr+0x160/0x160 [ 1446.331252] ? __fget_files+0x2cf/0x520 [ 1446.332155] ? lock_downgrade+0x6d0/0x6d0 [ 1446.333092] ? find_held_lock+0x2c/0x110 [ 1446.334031] ? __fget_files+0x2f8/0x520 [ 1446.334939] ? __fget_light+0xea/0x290 [ 1446.335826] __sys_sendmsg+0xe5/0x1b0 [ 1446.336687] ? __sys_sendmsg_sock+0x40/0x40 [ 1446.337670] ? rcu_read_lock_any_held+0x75/0xa0 [ 1446.338743] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1446.339930] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1446.341097] do_syscall_64+0x33/0x40 [ 1446.341945] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1446.343109] RIP: 0033:0x7fdcf09cab19 [ 1446.343954] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1446.348109] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1446.349840] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1446.351469] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1446.353079] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1446.354705] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1446.356334] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 03:03:26 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x56, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:03:26 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 37) [ 1446.433267] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 03:03:26 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xd, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1446.485511] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. 03:03:26 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) bind$unix(r0, &(0x7f0000001540)=@file={0x1, './file0\x00'}, 0x6e) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) recvmsg$unix(r1, &(0x7f0000001500)={&(0x7f0000000140), 0x6e, &(0x7f0000001400)=[{&(0x7f00000001c0)=""/48, 0x30}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f0000001200)=""/235, 0xeb}, {&(0x7f0000001300)}, {&(0x7f0000001340)=""/46, 0x2e}, {&(0x7f0000001380)=""/109, 0x6d}], 0x6, &(0x7f0000001480)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0}}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0x78}, 0x202) r3 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, r2, 0x0, 0xffffffffffffffff, 0x0) r4 = getpid() fcntl$setown(r3, 0x8, r4) fcntl$lock(r1, 0x24, &(0x7f0000000100)={0x0, 0x4, 0x4d10, 0x9, r4}) 03:03:26 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xd, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:03:26 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x70, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1446.683318] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. 03:03:26 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x59, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:03:26 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xe, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:03:26 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xe, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1446.917285] FAULT_INJECTION: forcing a failure. [ 1446.917285] name failslab, interval 1, probability 0, space 0, times 0 [ 1446.918668] CPU: 1 PID: 8843 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1446.919451] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1446.920388] Call Trace: [ 1446.920694] dump_stack+0x107/0x167 [ 1446.921107] should_fail.cold+0x5/0xa [ 1446.921550] ? __kernfs_new_node+0xd4/0x860 [ 1446.922044] should_failslab+0x5/0x20 [ 1446.922471] kmem_cache_alloc+0x5b/0x310 [ 1446.922934] __kernfs_new_node+0xd4/0x860 [ 1446.923406] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1446.923949] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1446.924538] ? kernfs_add_one+0x124/0x4d0 [ 1446.925014] kernfs_new_node+0x18d/0x250 [ 1446.925483] __kernfs_create_file+0x51/0x350 [ 1446.925980] sysfs_add_file_mode_ns+0x221/0x560 [ 1446.926510] sysfs_create_file_ns+0x131/0x1d0 [ 1446.927016] ? sysfs_add_file_mode_ns+0x560/0x560 [ 1446.927565] ? is_acpi_device_node+0x6e/0x90 [ 1446.928066] device_create_file+0xea/0x1d0 [ 1446.928544] device_add+0x547/0x1c50 [ 1446.928966] ? devlink_add_symlinks+0x970/0x970 [ 1446.929528] device_create_groups_vargs+0x207/0x280 [ 1446.930094] device_create+0xdc/0x120 [ 1446.930522] ? device_create_groups_vargs+0x280/0x280 [ 1446.931102] ? init_timer_key+0x12a/0x240 [ 1446.931576] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1446.932122] mac80211_hwsim_new_radio+0x376/0x4290 [ 1446.932671] ? ____sys_sendmsg+0x70d/0x870 [ 1446.933146] ? ___sys_sendmsg+0xf3/0x170 [ 1446.933608] ? __sys_sendmsg+0xe5/0x1b0 [ 1446.934053] ? do_syscall_64+0x33/0x40 [ 1446.934492] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1446.935099] ? lock_acquire+0x197/0x470 [ 1446.935550] ? create_object.isra.0+0x3ad/0xa20 [ 1446.936095] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1446.936626] ? __kmalloc+0x16e/0x390 [ 1446.937048] hwsim_new_radio_nl+0x991/0x1080 [ 1446.937553] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1446.938140] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1446.938881] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1446.939613] genl_family_rcv_msg_doit+0x22d/0x330 [ 1446.940155] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1446.940887] ? cap_capable+0x1cd/0x230 [ 1446.941328] ? ns_capable+0xe2/0x110 [ 1446.941756] genl_rcv_msg+0x36a/0x5a0 [ 1446.942189] ? genl_get_cmd+0x480/0x480 [ 1446.942634] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1446.943220] ? lock_release+0x680/0x680 [ 1446.943665] ? netlink_deliver_tap+0xf4/0xcc0 [ 1446.944171] netlink_rcv_skb+0x14b/0x430 [ 1446.944626] ? genl_get_cmd+0x480/0x480 [ 1446.945075] ? netlink_ack+0xab0/0xab0 [ 1446.945527] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1446.946044] ? is_vmalloc_addr+0x7b/0xb0 [ 1446.946499] genl_rcv+0x24/0x40 [ 1446.946868] netlink_unicast+0x54e/0x800 [ 1446.947327] ? netlink_attachskb+0x870/0x870 [ 1446.947828] netlink_sendmsg+0x90f/0xe00 [ 1446.948287] ? netlink_unicast+0x800/0x800 [ 1446.948767] ? netlink_unicast+0x800/0x800 [ 1446.949243] __sock_sendmsg+0x154/0x190 [ 1446.949702] ____sys_sendmsg+0x70d/0x870 [ 1446.950161] ? sock_write_iter+0x3d0/0x3d0 [ 1446.950634] ? do_recvmmsg+0x6d0/0x6d0 [ 1446.951072] ? lock_downgrade+0x6d0/0x6d0 [ 1446.951538] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1446.952129] ___sys_sendmsg+0xf3/0x170 [ 1446.952568] ? sendmsg_copy_msghdr+0x160/0x160 [ 1446.953082] ? __fget_files+0x2cf/0x520 [ 1446.953538] ? lock_downgrade+0x6d0/0x6d0 [ 1446.954002] ? find_held_lock+0x2c/0x110 [ 1446.954465] ? __fget_files+0x2f8/0x520 [ 1446.954919] ? __fget_light+0xea/0x290 [ 1446.955360] __sys_sendmsg+0xe5/0x1b0 [ 1446.955789] ? __sys_sendmsg_sock+0x40/0x40 [ 1446.956272] ? rcu_read_lock_any_held+0x75/0xa0 [ 1446.956802] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1446.957395] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1446.957975] do_syscall_64+0x33/0x40 [ 1446.958393] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1446.958970] RIP: 0033:0x7fdcf09cab19 [ 1446.959389] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1446.961464] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1446.962325] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1446.963127] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1446.963939] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1446.964744] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1446.965553] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 [ 1446.980340] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. [ 1447.096277] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1447.154459] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. 03:03:41 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) openat(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x600000, 0x42) 03:03:41 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xf, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1461.681048] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 03:03:41 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x71, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:03:41 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xe, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:03:41 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 38) 03:03:41 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x5b, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:03:41 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xf, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:03:41 executing program 0: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet(0x2, 0x3, 0x6) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x342, 0x0) ioctl$sock_inet_SIOCADDRT(r0, 0x890b, &(0x7f00000000c0)={0x0, {0x2, 0x4e22, @broadcast}, {0x2, 0x4e20, @rand_addr=0x64010102}, {0x2, 0x4e22, @broadcast}, 0x24d, 0x0, 0x0, 0x0, 0x3, &(0x7f0000000080)='wg2\x00', 0x2, 0x2, 0xff}) r2 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x0, 0x1f012, r2, 0x0) dup2(r2, r1) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="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"/1561], 0x619) fallocate(r1, 0x3, 0x0, 0x30000000000) r3 = inotify_init() ioctl$BTRFS_IOC_QGROUP_LIMIT(r2, 0x8030942b, &(0x7f00000007c0)={0xff, {0x22, 0x0, 0x100, 0x7, 0x5552}}) ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r3, 0x80489439, 0x0) dup(r3) connect$inet(r1, &(0x7f0000000140)={0x2, 0x0, @local}, 0x10) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r4, &(0x7f0000000180)=""/198, 0xc6) writev(r4, &(0x7f0000000bc0)=[{&(0x7f0000000800)="567250e310ecd46997e788d5e0dc8783c7d39184bdf01da4377643ccbcd78f3ecf51ba5587375410f4f669babdef5a7bf58547158474fa72e6cbf9695efbbe529df7822d13d260b54b29307aa6ec89910a4c431c9fcedb1ea71cc5bfc0d882e283de6302cf192559d060aafbc0b1dd8b", 0x70}, {&(0x7f0000000880)="8a256ef1a9bdf6ea48954a9f4a7eca3ca7353f78f88cf62af756918cd9297be1a00f426f50410e65936cc7a5fbba00f1afc5b99724e444994319ca8dc2e4dba40dbb3945a162cfddb439214fe425e73830618c5b6d233add5f00f70e37a3459f976c11af36edbbaf422785f0ecfc4dbf8486a1099017cbb00131200b0ef5abf8bf20287de337062600343d2f75afa433f4544307654de413db193549531964bc0822f31ae7ec5153a62e1cc2a20e4d467811c04600095e76a69c", 0xba}, {&(0x7f0000000940)="a7161b298f0ae34e7297f9ff30df1476c86fc65306c646ee39a380431fbb8894213f", 0x22}, {&(0x7f0000000980)="415a791afce8f3b2910b94604e92ac8b5b0272295ddbb8f14069128f8d0c13ff41f35897bed1466102e2e296a6164e4fa3ba231b9c9ec82ed79647d9c486093d60c1db5b7aa7", 0x46}, {&(0x7f0000000a00)="a15d7f8358e11d12645b51730dcaa0acc7ed365cbb65f2fe363e783defa4cd651aad1ef1956bd064cd230cf13e13b1ac4c871d0d863f877b2b9a7e8d6ae26b5c0730648692454a321c60217cbf437d4b87063cf7057d10363e2201e793f05bd99090947b2fa7881eacd63a9fd4087ad20b4ca3fdeee703fc4d585757a2a2d1e2e6ebc7a25c80435118056bffff6956d53bb321fcd981a2a644ce01af91c6d79f18b7cb8dc3f4a15e5e0000", 0xab}, {&(0x7f0000000b40)="38985ae91b2645a5b8575341c92bdf0771236ba21baaf161a3d1c8d03914d367f2d24f9da8ff3ae86d2a978f817e396349e2934a5352e74f00788f35bc7ed867debc9ac34a15a1ee1406fcc4ec2a333f5bf19adc9e160d048bf54e8510", 0x5d}], 0x6) sendmmsg$inet(r0, &(0x7f0000000000), 0x400000d, 0x34000) 03:03:41 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r1, &(0x7f0000000180)=""/198, 0xc6) ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r1, 0x40a85321, &(0x7f0000000100)={{0x9, 0x52}, 'port1\x00', 0x8, 0x10000, 0x7fffffff, 0x3, 0x5, 0x80000001, 0x80000001, 0x0, 0x6}) r2 = socket$unix(0x1, 0x5, 0x0) connect$unix(r2, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) [ 1461.768520] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. 03:03:41 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x72, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:03:41 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) recvmsg$unix(0xffffffffffffffff, &(0x7f0000001300)={&(0x7f0000000140), 0x6e, &(0x7f0000001280)=[{&(0x7f00000001c0)=""/184, 0xb8}, {&(0x7f0000000280)=""/4096, 0x1000}], 0x2, &(0x7f00000012c0)=[@cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0}}}], 0x40}, 0x23) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000017c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000001780)={&(0x7f0000001340)={0x430, 0x38, 0x800, 0x70bd2a, 0x25dfdbfc, {0x5}, [@nested={0x12d, 0x71, 0x0, 0x1, [@typed={0x8, 0x68, 0x0, 0x0, @u32=0x1}, @typed={0x8, 0x20, 0x0, 0x0, @fd}, @typed={0x4, 0x3c}, @generic="0f315904180c03960760078c156896ee49c1094a35592678d684cb6f377e9bf129134a920354b91aa60a522e2c48abdc4ce2b864f9df8312787f7af104f52205d5d70595973f", @generic="65da8a1bb4f47b598af989b22197f15b4adf2d65fd6972d76392352bd63c177e31a5b01757cd13fa265f5d0a65d98fd67946ad24d66222ca33624bf333b2f4fe8a636c9afd32e1c97fb9537f3537d8fd74c2c7077bfe9371578cc8af43aa7c60ee25cebca4f9a829f94a7c7af5207d7ceeb25c7a524254d5428ebba3e38fbbede26784372dc6f4acc2f6042b7fdb858e2a5c9c01350fb05c5174e86b5ad8ba0b00fa3af22894f2c328def1819aaf6f00c2de96c67d070f6814a993958af17cf6ae3952692aae170b37b1e1320902f3"]}, @nested={0x196, 0x76, 0x0, 0x1, [@typed={0x8, 0x45, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x1, 0x0}}, @generic="7d8beaf30c1408d321f2a1fbf6f9e681cb2d5a4f8448", @generic="b86dbe526c2395ca7558f2869956945fcb4949c2164a5e493b29d9cc1969aff590c0b58b76e21732ca3b14f12a164767bb64e023fccb32ad0ae891c586f36aec07e253b1e557997427769cc68e6114ed807b46d92051586363d0cc48fbd91f17ffbf67d614ed715c4efd8a1dbc6cd6122f3fa3e5ef1a6f38604b916524129bf9ad20f518f655114956aefdeba3bf2df104a62737f2c4c3b8ddb109", @typed={0x8, 0x64, 0x0, 0x0, @uid=r0}, @typed={0x8, 0x48, 0x0, 0x0, @u32=0x5}, @generic="8e3a8c03ac6bd81a31c4e12dd319a3c9e0fc6f8d7f8e7396bf5139cdb2c008f21b697ac0142d90fd865f68914b25b9fcbff9d4bb0211df8c7ea228e0bfce6ae497b88041b23c885c85bcdd21d3845600e3efe2d321be631483a00dd0ad28bfe63556e5191fd008850f7e280448e53952e26c6e66dad2f2ff21004fe82553703760a8acd689c330c7f506f81f38f09d48a56f7e2de2016c82ae5a958396fcad8b75edc7bb523d3a6cc3978498d7069a84108c8f162937dac90f017c21db982b66c76e2eb3f058341069"]}, @typed={0xc, 0x6c, 0x0, 0x0, @u64=0x8}, @nested={0x20, 0x18, 0x0, 0x1, [@typed={0x4, 0x79}, @typed={0xc, 0x3, 0x0, 0x0, @u64=0xffff}, @typed={0x9, 0x91, 0x0, 0x0, @str='(@[:\x00'}]}, @generic="948ef6884053e7c3be2fb7b62c6ed3a56f2c38c7ae689171933f8ae03564166886aadb28cb8628496ef2d2afd4aeb62c8b82ff3af44b4c0cf7a3ba0ef15d09f7e99f494d0890b416a4ce1b61e22b4fcc9aeafe62d594c6b7b7e39ea71035d892fba4484bf2a799a57d841fb98122bff635d3fe59a1c21f62cf2d815dfe30e5604514cca7979f85abcafdb7116c99e993ee004722fe891d7803c30e7cd8c172e7af9e5e5066d68fde35c818a7aca18e7f0b53bb05dcb17492cf807fe61b713b5f0f86697be39cae507b69ba24cb38b6dc7b64db753b1b41713f16978398cb6c88b24dccac396dcb07a9d2e6ef84", @generic="6f0246c41d759b2fd6d3df4c72bdfaa008f8d3a36aa85952e416e384ad5f61ea42fcb65843ffe116397e7ba8b19fab54f7e8b75ce4ab6eed"]}, 0x430}, 0x1, 0x0, 0x0, 0x8880}, 0x1) r1 = socket$unix(0x1, 0x5, 0x0) bind$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r1, 0x0) accept$unix(r1, 0x0, 0x0) r2 = socket$unix(0x1, 0x5, 0x0) connect$unix(r2, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 03:03:41 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1461.926573] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. 03:03:41 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), r0) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000001c0)={'tunl0\x00', &(0x7f0000000100)={'ip_vti0\x00', 0x0, 0x7, 0x80, 0x4, 0xcf, {{0x1e, 0x4, 0x3, 0x0, 0x78, 0x64, 0x0, 0x1c, 0x4, 0x0, @loopback, @private=0xa010100, {[@cipso={0x86, 0x51, 0x1, [{0x7, 0x12, "183009ec7fa8df90a59efa3c702a53b2"}, {0x1, 0x8, "1e341e8dfc0c"}, {0x2, 0x12, "4d182886be58357c47ca6ef77bdf07b2"}, {0x5, 0x12, "7ce064246b35bf64a5f3e388c531a2de"}, {0x2, 0x2}, {0x2, 0xb, "a25aab378e743aa3dd"}]}, @ssrr={0x89, 0xb, 0xf8, [@local, @remote]}, @noop, @ra={0x94, 0x4, 0x1}]}}}}}) r4 = socket$packet(0x11, 0x2, 0x300) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) bind$packet(r4, &(0x7f0000000040)={0x11, 0x1, r6, 0x1, 0x8, 0x6, @random="190002400a00"}, 0x14) accept4$packet(0xffffffffffffffff, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, &(0x7f0000000240)=0x14, 0x80000) sendmsg$ETHTOOL_MSG_DEBUG_SET(r1, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x74, r2, 0x0, 0x70bd26, 0x25dfdbfc, {}, [@ETHTOOL_A_DEBUG_HEADER={0x60, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x74}, 0x1, 0x0, 0x0, 0x11}, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000bc0)={0x2c, 0x1d, 0xc21, 0x0, 0x0, {0x5, 0x0, 0x2}, [@nested={0x16, 0x11, 0x0, 0x1, [@generic="3215bca751e71be8aedfdf121cdde4ed9882"]}]}, 0x2c}}, 0x0) 03:03:42 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xf, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1462.050849] FAULT_INJECTION: forcing a failure. [ 1462.050849] name failslab, interval 1, probability 0, space 0, times 0 [ 1462.053405] CPU: 0 PID: 8869 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1462.054976] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1462.056861] Call Trace: [ 1462.057463] dump_stack+0x107/0x167 [ 1462.058305] should_fail.cold+0x5/0xa [ 1462.059176] ? create_object.isra.0+0x3a/0xa20 [ 1462.060221] should_failslab+0x5/0x20 [ 1462.061089] kmem_cache_alloc+0x5b/0x310 [ 1462.062030] create_object.isra.0+0x3a/0xa20 [ 1462.063032] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1462.064194] kmem_cache_alloc+0x159/0x310 [ 1462.065146] __kernfs_new_node+0xd4/0x860 [ 1462.066103] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1462.067187] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1462.068372] ? kernfs_add_one+0x124/0x4d0 [ 1462.069321] kernfs_new_node+0x18d/0x250 [ 1462.070259] __kernfs_create_file+0x51/0x350 [ 1462.071265] sysfs_add_file_mode_ns+0x221/0x560 [ 1462.072337] sysfs_create_file_ns+0x131/0x1d0 [ 1462.073358] ? sysfs_add_file_mode_ns+0x560/0x560 [ 1462.074470] ? is_acpi_device_node+0x6e/0x90 [ 1462.075475] device_create_file+0xea/0x1d0 [ 1462.076441] device_add+0x547/0x1c50 [ 1462.077292] ? devlink_add_symlinks+0x970/0x970 [ 1462.078370] device_create_groups_vargs+0x207/0x280 [ 1462.079508] device_create+0xdc/0x120 [ 1462.080377] ? device_create_groups_vargs+0x280/0x280 [ 1462.081565] ? init_timer_key+0x12a/0x240 [ 1462.082520] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1462.083628] mac80211_hwsim_new_radio+0x376/0x4290 [ 1462.084743] ? ____sys_sendmsg+0x70d/0x870 [ 1462.085725] ? ___sys_sendmsg+0xf3/0x170 [ 1462.086652] ? __sys_sendmsg+0xe5/0x1b0 [ 1462.087556] ? do_syscall_64+0x33/0x40 [ 1462.088439] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1462.089670] ? lock_acquire+0x197/0x470 [ 1462.090570] ? create_object.isra.0+0x3ad/0xa20 [ 1462.091639] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1462.092698] ? __kmalloc+0x16e/0x390 [ 1462.093569] hwsim_new_radio_nl+0x991/0x1080 [ 1462.094572] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1462.095766] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1462.097272] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1462.098771] genl_family_rcv_msg_doit+0x22d/0x330 03:03:42 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) listen(r0, 0x400002) accept$unix(r0, 0x0, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r1, &(0x7f0000000180)=""/198, 0xc6) newfstatat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x400) statx(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', 0x400, 0x4, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r4 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$setown(r4, 0x8, 0x0) lstat(&(0x7f00000002c0)='./file1\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x2, &(0x7f0000000840)={'trans=fd,', {}, 0x2c, {}, 0x2c, {[{@dfltgid}, {@posixacl}, {@access_any}, {@version_u}, {@dfltgid={'dfltgid', 0x3d, r5}}, {@version_9p2000}], [{@fowner_eq}, {@dont_hash}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}, {@measure}, {@smackfshat={'smackfshat', 0x3d, '\',\'A'}}, {@seclabel}, {@pcr={'pcr', 0x3d, 0x33}}, {@defcontext={'defcontext', 0x3d, 'user_u'}}, {@appraise}]}}) fcntl$getownex(0xffffffffffffffff, 0x10, &(0x7f00000004c0)={0x0, 0x0}) r7 = getuid() lstat(&(0x7f00000002c0)='./file1\x00', &(0x7f0000000300)) sendmsg$unix(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000500)="fc46373089e80d921bee84a7666435988be0585f32439e0d0d0226260bb044c3399c5a625dcfeaae8fe0fbf11c4276ba3d5d70278722f2bd92192d6bf8b7e9415881c80fb81d13dd8bc9ef56a2ff34ec8be21cb3c9c4a9", 0x57}, {&(0x7f0000000240)="b339e924c01f42150fb33d7396e723887caf762cf9381951e6711d8c1ac06097963b920dfc06058546f7b47fdccccbb451b5d29b348e6b6a91e51ffaa7ad0a86050a48852501d01574819265304af743b8dd4a6be2a42519040f281ae350ffb0cf8c19a2d1cd1f6b88030d9c50d0b38cdbf0d43f106a3c2de05bab6e070d", 0x7e}, {&(0x7f0000000000)="a059b5", 0x3}], 0x3, &(0x7f00000005c0)=[@cred={{0x1c, 0x1, 0x2, {0xffffffffffffffff, r2, r3}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee00, r5}}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r6, r7, 0xee00}}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x90, 0x80}, 0x8010) socket$unix(0x1, 0x2, 0x0) r8 = syz_open_procfs(0x0, &(0x7f0000000040)='net/nfsfs\x00') connect$unix(r8, &(0x7f0000000140)=@file={0x1, './file0\x00'}, 0x6e) [ 1462.099878] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1462.101580] ? cap_capable+0x1cd/0x230 [ 1462.102644] ? ns_capable+0xe2/0x110 [ 1462.103660] genl_rcv_msg+0x36a/0x5a0 [ 1462.104693] ? genl_get_cmd+0x480/0x480 [ 1462.105785] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1462.107177] ? lock_release+0x680/0x680 [ 1462.108248] ? netlink_deliver_tap+0xf4/0xcc0 [ 1462.109460] netlink_rcv_skb+0x14b/0x430 [ 1462.110563] ? genl_get_cmd+0x480/0x480 [ 1462.111638] ? netlink_ack+0xab0/0xab0 [ 1462.112617] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1462.113867] ? is_vmalloc_addr+0x7b/0xb0 [ 1462.114805] genl_rcv+0x24/0x40 [ 1462.115559] netlink_unicast+0x54e/0x800 [ 1462.116501] ? netlink_attachskb+0x870/0x870 [ 1462.117521] netlink_sendmsg+0x90f/0xe00 [ 1462.118471] ? netlink_unicast+0x800/0x800 [ 1462.119455] ? netlink_unicast+0x800/0x800 [ 1462.120425] __sock_sendmsg+0x154/0x190 [ 1462.121342] ____sys_sendmsg+0x70d/0x870 [ 1462.122293] ? sock_write_iter+0x3d0/0x3d0 [ 1462.123261] ? do_recvmmsg+0x6d0/0x6d0 [ 1462.124166] ? lock_downgrade+0x6d0/0x6d0 [ 1462.125122] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1462.126337] ___sys_sendmsg+0xf3/0x170 [ 1462.127236] ? sendmsg_copy_msghdr+0x160/0x160 [ 1462.128290] ? __fget_files+0x2cf/0x520 [ 1462.129205] ? lock_downgrade+0x6d0/0x6d0 [ 1462.130174] ? find_held_lock+0x2c/0x110 [ 1462.131123] ? __fget_files+0x2f8/0x520 [ 1462.132050] ? __fget_light+0xea/0x290 [ 1462.132955] __sys_sendmsg+0xe5/0x1b0 [ 1462.133837] ? __sys_sendmsg_sock+0x40/0x40 [ 1462.134831] ? rcu_read_lock_any_held+0x75/0xa0 [ 1462.135918] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1462.137119] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1462.138317] do_syscall_64+0x33/0x40 [ 1462.139172] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1462.140351] RIP: 0033:0x7fdcf09cab19 [ 1462.141207] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1462.145408] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1462.147156] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1462.148794] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1462.150419] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1462.152041] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1462.153668] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 [ 1462.297341] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. [ 1462.348960] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. 03:03:58 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:03:58 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:03:58 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0xc02c2, 0x0) openat(r0, &(0x7f0000000780)='./file0\x00', 0x0, 0x158) r1 = open(&(0x7f0000000040)='./file0\x00', 0x1831c1, 0x0) writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(0xffffffffffffffff, 0x43, 0x6a08, 0x0) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/stat\x00') r4 = syz_mount_image$tmpfs(&(0x7f00000000c0), &(0x7f00000001c0)='./file1\x00', 0x0, 0x5, &(0x7f0000000640)=[{&(0x7f0000000400)}, {&(0x7f0000000140)="969647155fc87d608c78375943c7a019eda3458149d307377437a220b5a5dc5e6f947ef3e2adc25f3a990b73827c6a442a51", 0x32, 0xffff}, {&(0x7f00000004c0)="df8a748ff9ed65819ce78dd104175254e44fd1921755cd5b8e03b974fe0120ad97576c517e1cf91c1130280395498167d6989fbb0eb4ba9878c88057b319ee0f566794789b09656ed57e263816b3e2b07e2654fce6b2ec6964bdd38e8e94fc440f3b2471ff0986ef1b2a22594b51c98b6c3ae85df0bde539e0670cc8a18aaf082e7a175bb282491403b46bf20dafa62e23de1085e695e57165968a4a260cab26c7f04994fd5c439186b7f1f1d6c7244a653af56c76afe72209502fe21d85a5d457d911f18a69fab555d5a19a2d840ec1930eb1d3b7013b12c13080", 0xdb, 0x9}, {&(0x7f0000000340)="8729a67de1a2d45db91a1667068e6ae1f28f6a31d37faea8bf5527accfb8f6c40a39c1fa61a47ff34608fb64346844f38233efc0bcd3034804fef6c2ecb4e6c0019f6cd14113d5dd1aee775eba169abd4bb144a8dafe204268ad83ee3346595dc204f66c27bdf10a", 0x68, 0x101}, {&(0x7f0000000380), 0x0, 0x7ff}], 0x2001, &(0x7f00000008c0)=ANY=[@ANYBLOB="f8684e042cc37b4ac788f4ca15147fbb3ee5ec4848cb385754d0f2d18b81d2220c1b3b864d6b3ef8281b1ec044f4ab7c73804c0fdf96a241774f7add7d74304d32e314cbd836cfa558490eafe4e8d3ad5f10fb7af78cfa2bb0090c0559cd3f1021278bb80906447355ee2a9a1a6b67127cdd342a855bf72e332c9e0cd682dddde0e5eeb12a25eee0b8e5da83c3ea7f5b27a72605a234a1514f94d3", @ANYRESHEX=0x0, @ANYRESDEC=r0]) r5 = openat$incfs(r4, 0x0, 0x501200, 0x0) sendmsg$GTP_CMD_DELPDP(r3, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x4002) fallocate(0xffffffffffffffff, 0x1, 0x6, 0x7fffffff) fallocate(r2, 0x20, 0xfffffffffffffff9, 0x8001) faccessat2(r1, &(0x7f0000000740)='./file1\x00', 0x0, 0x1000) lseek(0xffffffffffffffff, 0x2, 0x0) r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x4) ioctl$FS_IOC_RESVSP(r6, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006}) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r1, 0xc0189374, &(0x7f0000000180)=ANY=[@ANYBLOB="040000000100000018000000c07aad0f0fe4196c3177e95c29190d7cc5c0381cab19441aa1a53436726b6d00", @ANYRES32=r2, @ANYBLOB='\t\x00\x00\x00\x00\x00\x00\x00./file2\x00']) setsockopt$IP_VS_SO_SET_DELDEST(0xffffffffffffffff, 0x0, 0x488, &(0x7f00000002c0)={{0x3b, @remote, 0x4e21, 0x2, 'lblcr\x00', 0x12, 0x92, 0x68}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x4e24, 0x0, 0x4, 0x10000, 0x9}}, 0x44) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1}, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9) ioctl$EXT4_IOC_MOVE_EXT(r5, 0xc028660f, &(0x7f0000000040)={0x0, r0, 0x2, 0xfffffffffffffffa, 0x4, 0xb0}) 03:03:58 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x5d, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:03:58 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x0, './file0\x00'}, 0x81) listen(0xffffffffffffffff, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r1, &(0x7f0000000180)=""/198, 0xc6) r2 = syz_open_dev$hiddev(&(0x7f0000000240), 0xad0, 0x40) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r3, &(0x7f0000000180)=""/198, 0xc6) r4 = gettid() r5 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x1ab6eb98d6bb370e) r6 = getpid() fcntl$setown(r5, 0x8, r6) r7 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r7, &(0x7f0000000180)=""/198, 0xc6) pipe(&(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$unix(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000140)=@abs={0x0, 0x0, 0x4e21}, 0x6e, &(0x7f0000000200)=[{&(0x7f00000001c0)="7fddaeb980a09d66ef4c9a5da08b3d5035aab81bff272f87dd579ca827", 0x1d}], 0x1, &(0x7f0000000540)=ANY=[@ANYBLOB="38000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r2, @ANYRES32=r0, @ANYRES32=r0, @ANYRES32=r3, @ANYRES32=r0, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r4, @ANYRES32=0x0, @ANYRES32=0xee01, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=r6, @ANYRESOCT, @ANYRES32=0xee00, @ANYBLOB="000000001c000000000101000000000000000000", @ANYBLOB="81f26e55f278612ac2a142a49c88aaca3672c16572de6d8167448d50d0858a83cc64b6e4fe25f516eeba4432023b99b37c34afe48682e7467d797e3c35797b4c862ab58e9e8247f274df3e1999e654f677c229997e85913f6890ed68a93059c0ed2259d91fa363b0ebe232c2048015fb09d17e9535fc07d515e3b3fc3b63e82acc397985d4b602f2290ad2a0433237f5f530fcaddf9c6eab93b78521cd1b41234abb65e986d10d7635b08fb64064a9ab997b758fbfb3540edace7435e5d9f2d1684351f57348e900166eda88343697e9a6e0c8255404a5aa068a", @ANYRES32=r0, @ANYRES32=r8, @ANYBLOB='\x00\x00\x00\x00'], 0x98, 0x4000001}, 0x40140) accept$unix(r0, 0x0, 0x0) r9 = socket$unix(0x1, 0x5, 0x0) connect$unix(r9, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 03:03:58 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 39) 03:03:58 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x11, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:03:58 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x73, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1478.677901] loop0: detected capacity change from 0 to 130560 03:03:58 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@abs={0x0, 0x0, 0x4e24}, 0x6e) listen(r0, 0x0) r1 = accept$unix(r0, &(0x7f0000000100)=@abs, &(0x7f0000000180)=0x6e) getsockopt$IP_SET_OP_VERSION(r1, 0x1, 0x53, &(0x7f00000001c0), &(0x7f0000000200)=0x8) accept$unix(r0, 0x0, 0x0) r2 = socket$unix(0x1, 0x2, 0x0) connect$unix(r2, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) [ 1478.743271] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. [ 1478.772035] loop0: detected capacity change from 0 to 130560 03:03:58 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x73, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x2000000000000000}, 0x1361e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = epoll_create(0x8000) r1 = socket$inet_udp(0x2, 0x2, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000040)) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r2, &(0x7f0000000180)=""/198, 0xc6) perf_event_open(&(0x7f0000000100)={0x5, 0x80, 0xac, 0x0, 0x7, 0x1, 0x0, 0xfba1, 0x4000, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x8, 0x1, @perf_bp={&(0x7f0000000000), 0x1}, 0x582, 0x4000000080000000, 0xffff8001, 0x0, 0x1, 0x0, 0x7, 0x0, 0xc1f, 0x0, 0x7}, 0x0, 0x2, r2, 0x8) epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r1, &(0x7f00000000c0)={0x20000300}) 03:03:58 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) socket$unix(0x1, 0x5, 0x0) dup2(r0, 0xffffffffffffffff) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r1, &(0x7f0000000180)=""/198, 0xc6) connect$unix(r1, &(0x7f0000000000)=@file={0x0, './file0\x00'}, 0x6e) 03:03:58 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x60, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:03:58 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f0000002f00)='./file0/../file0\x00', 0x0, 0x1f3000, 0x0) syz_mount_image$nfs4(&(0x7f0000000080), &(0x7f0000000180)='./file0\x00', 0x2, 0x9, &(0x7f0000000840)=[{&(0x7f00000001c0)="f292f346690891311998809b5e0cba31ad469bcebb7284d5fa967616ad523f31d861c8d8ae3e9328d40071b49c4d42d828fdd9af024bbd5803ca8ce21f5cc82c8bd298f6ffb7e2b7f225e8148a4cdc071f8abd534de57161cd962c702307c49e183600bca8ea2e8aa91b56f3b6ce1a75e27340c05cfe17e7b4ff4bd37d99c84cedafea762570b5437b6161397649dc08c81df21332f98e69ecdbdbde9a03303f673295bf40e267ed1cb900cfa2d2c63c9410a40edcee8b7a9ffba453581cef3d5f72cd4ce2cce0b62e480334057fe01eda5713bb173ecfd502b07b323bc6c70f7d5671a99873d1cdea1540247a9e1f8f2a51895c", 0xf4, 0x131bebfc}, {&(0x7f00000002c0)="625829a9c48743d3fce917427e98d960878c92218af599e646fe6f9db682b58eaac8dfd9b2c66bffdf96e17a01cdc6ad02e2ae45231fc909b98f1fd001b7bde19656088eb111ebadd9ffb73d0277fe95eb58215aa8b39203432c20df7f1ac9edfcb6f8615fe7fb25ac114590d6e3f78dd7eb4f62475aff3521c101b7a0d272ac4decf1ed5aae8d590209cd446dacdfb060238c6f9f8dd97bd5555b75d17057ec85b657b617961f3ea3af1150543304d417d6827d5cc20cc999336f9b04c36808ed2883b11421db4f49a497ab8ecde11ece8f4875f17d494bf635", 0xda, 0x10000}, {&(0x7f00000003c0)="77229d814d67a477a4001372c86da219b1cfe1f5e5e6dc406bd499e8c00e72d54d4a204f3169e09bbf6ca71af9770dff4fd9bd53bc9dae754c1c948531edbeeb894c45923e2f98aba410b45d66a25f7f33d69a70d6b4", 0x56, 0x3}, {&(0x7f0000000440)="cf3f847d8ac4f187ba1bbff4d40d77e11aa23e66c8c44b1f74522a9f5ee960f2877d4b67c4b145c31ddcacbb3d8cd4fb9a4252c61cd26bd12043885b3d2822296539b3281085ed280a2133b654ed144bd44ac5a1efa66c", 0x57, 0xd18}, {&(0x7f00000004c0)="32bc826e5670906dfb3e6f001e4c5e0b0f74ab04fd07810b39db82735cf8a2ec4dd63e2646f19772b58a6252d3dddeeb6068440d1239c30448f06b28", 0x3c, 0x4}, {&(0x7f0000000500)="9a61328dc75897c3ba5ea7b61a24186aaa1b2beb394280563f0443b130a037d8f1b149e202a0dc0f0da65f25551f17e32a38abc9d06584ee1888975859eada4b31a69e09eae5b1a9519c74a30c44d1a7a18b156840e014dee0d67b6ce3f9d128cc4a6c3ec0caf0e26a13cbb58121c9e15a6e31bc3ff912be087fe8da3a444b02ee0c9747098b94a837374ae87f199fd65d5e978bc28d79623ef31b7fc47a1c048c88d14b6701bd892804d5250b147fd647da8fa7b729f2356d12cfaba1dc", 0xbe, 0x4}, {&(0x7f00000005c0)="130b9827635f60645d8d65360159b4bc8edabe8aca0b49150471d393ff22b49250cab1656aead08e3cb01d99257c1258746d2a34c47f2bcadc4dc3f29a6c3bccd18d5d1708d8f55097ec194c74dd08e222cd6934124a2d6d72db2f00ca5ace9a4b92d58a44d85a87b21d949bfe7be316713be1d276af4c4dd9d12b040588f56e681112bbf9a765e8a15fccc97bf1943f7529c675ffee7bc862bcf34422d87c0cb88515f1529ee90ffdaba00ac230531a0035c57c53d4d928566f1301aaa09b9cdab97e6622795fe7399325c041c934f67ed7b13cbd6938a66ba3eb1cf09cc7246d328916", 0xe4, 0xffffffffffffff53}, {&(0x7f00000006c0)="86fc25f131354e5ba5649091099a396249c2761dc643e5f4ea4de043a23bfefbc7970eb369828855e6deb0c451167cc477906949174a5fc5a58c67ca8da6ffd042f71aac08da8793500a4265c1a3874e86348c2ac118490f5376907e3d69", 0x5e, 0x2}, {&(0x7f0000000740)="278c1514280d1a5b6fbd054b032192ce878170563ce11ddf2c074b660876cd053282e7c5a85ef143db8c95ed98a0d48db4b0549aadb51dde3e3dc98c3e5fd33a3a5126b2e36260fa2efc09b9edd739e4241cb5089fe0cc670f700d11bf8d0ec5193504ce8947d59d5254a432f3f710436bdb7829f93f3a994cad74700121c9d107fe7ad24ac285c5cb5e4bb419a728294eb160757d781244763158dda7394b125f92083eb7b06d7a3d0b3b1f50ed085c450003ddc72d71ec78ccf5a143d53525462bc02f2e99e331aed24505532bb7eba1cc70d5007d8622b0ae0887050acb880a66de8a20a86b5715774a3843b4a4d40cb0", 0xf2, 0x2}], 0x80, &(0x7f0000000940)={[], [{@uid_gt}, {@subj_type={'subj_type', 0x3d, 'ext2\x00'}}, {@subj_user={'subj_user', 0x3d, 'ext2\x00'}}]}) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x1006020, &(0x7f00000000c0)=ANY=[@ANYBLOB="000000000000d0270ffaaa5890223da2cf00090000000000"]) mkdir(&(0x7f0000000980)='./file0\x00', 0x0) [ 1478.995909] FAULT_INJECTION: forcing a failure. [ 1478.995909] name failslab, interval 1, probability 0, space 0, times 0 [ 1478.998541] CPU: 0 PID: 8910 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1479.000177] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1479.002178] Call Trace: [ 1479.002812] dump_stack+0x107/0x167 [ 1479.003694] should_fail.cold+0x5/0xa [ 1479.004613] ? create_object.isra.0+0x3a/0xa20 [ 1479.005727] should_failslab+0x5/0x20 [ 1479.006753] kmem_cache_alloc+0x5b/0x310 [ 1479.007685] ? mark_lock+0xf5/0x2df0 [ 1479.008688] create_object.isra.0+0x3a/0xa20 [ 1479.009689] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1479.011063] kmem_cache_alloc+0x159/0x310 [ 1479.012027] __kernfs_new_node+0xd4/0x860 [ 1479.013129] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1479.014335] ? kernfs_add_one+0x124/0x4d0 [ 1479.015442] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1479.015693] loop0: detected capacity change from 0 to 100128256 [ 1479.016533] ? mark_held_locks+0x9e/0xe0 [ 1479.016559] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1479.016581] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1479.016605] ? trace_hardirqs_on+0x5b/0x180 [ 1479.022445] nfs4: Unknown parameter 'uid>00000000000000000000' [ 1479.022561] kernfs_new_node+0x18d/0x250 [ 1479.024872] kernfs_create_link+0xcb/0x230 [ 1479.025875] sysfs_do_create_link_sd+0x90/0x140 [ 1479.027120] sysfs_create_link+0x5f/0xc0 [ 1479.028059] device_add+0x5e1/0x1c50 [ 1479.029050] ? devlink_add_symlinks+0x970/0x970 [ 1479.030148] device_create_groups_vargs+0x207/0x280 [ 1479.031479] device_create+0xdc/0x120 [ 1479.032367] ? device_create_groups_vargs+0x280/0x280 [ 1479.033751] ? init_timer_key+0x12a/0x240 [ 1479.034715] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1479.036003] mac80211_hwsim_new_radio+0x376/0x4290 [ 1479.037126] ? ____sys_sendmsg+0x70d/0x870 [ 1479.038263] ? ___sys_sendmsg+0xf3/0x170 [ 1479.039193] ? __sys_sendmsg+0xe5/0x1b0 [ 1479.040243] ? do_syscall_64+0x33/0x40 [ 1479.041132] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1479.042562] ? lock_acquire+0x197/0x470 [ 1479.043472] ? create_object.isra.0+0x3ad/0xa20 [ 1479.044717] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1479.045800] ? __kmalloc+0x16e/0x390 [ 1479.046794] hwsim_new_radio_nl+0x991/0x1080 [ 1479.047812] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1479.049217] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1479.050731] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1479.052473] genl_family_rcv_msg_doit+0x22d/0x330 [ 1479.053585] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1479.055342] ? cap_capable+0x1cd/0x230 [ 1479.056253] ? ns_capable+0xe2/0x110 [ 1479.057251] genl_rcv_msg+0x36a/0x5a0 [ 1479.058168] ? genl_get_cmd+0x480/0x480 [ 1479.059231] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1479.060417] ? lock_release+0x680/0x680 [ 1479.061468] ? netlink_deliver_tap+0xf4/0xcc0 [ 1479.062528] netlink_rcv_skb+0x14b/0x430 [ 1479.063612] ? genl_get_cmd+0x480/0x480 [ 1479.064526] ? netlink_ack+0xab0/0xab0 [ 1479.065568] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1479.066626] ? is_vmalloc_addr+0x7b/0xb0 [ 1479.067705] genl_rcv+0x24/0x40 [ 1479.068461] netlink_unicast+0x54e/0x800 [ 1479.069551] ? netlink_attachskb+0x870/0x870 [ 1479.070611] netlink_sendmsg+0x90f/0xe00 [ 1479.071709] ? netlink_unicast+0x800/0x800 [ 1479.072689] ? netlink_unicast+0x800/0x800 [ 1479.073830] __sock_sendmsg+0x154/0x190 [ 1479.074750] ____sys_sendmsg+0x70d/0x870 [ 1479.075833] ? sock_write_iter+0x3d0/0x3d0 [ 1479.076800] ? do_recvmmsg+0x6d0/0x6d0 [ 1479.077858] ? lock_downgrade+0x6d0/0x6d0 [ 1479.078810] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1479.080208] ___sys_sendmsg+0xf3/0x170 [ 1479.081106] ? sendmsg_copy_msghdr+0x160/0x160 [ 1479.082368] ? __fget_files+0x2cf/0x520 [ 1479.083275] ? lock_downgrade+0x6d0/0x6d0 [ 1479.084377] ? find_held_lock+0x2c/0x110 [ 1479.085330] ? __fget_files+0x2f8/0x520 [ 1479.086415] ? __fget_light+0xea/0x290 [ 1479.087317] __sys_sendmsg+0xe5/0x1b0 [ 1479.088332] ? __sys_sendmsg_sock+0x40/0x40 [ 1479.089326] ? rcu_read_lock_any_held+0x75/0xa0 [ 1479.090598] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1479.091793] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1479.093167] do_syscall_64+0x33/0x40 [ 1479.094040] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1479.095408] RIP: 0033:0x7fdcf09cab19 [ 1479.096267] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1479.101175] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1479.102938] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1479.104088] EXT4-fs (sda): re-mounted. Opts: ,errors=continue [ 1479.104831] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1479.104845] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1479.104856] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1479.104868] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 [ 1479.153895] loop0: detected capacity change from 0 to 100128256 [ 1479.155687] nfs4: Unknown parameter 'uid>00000000000000000000' [ 1479.177348] EXT4-fs (sda): re-mounted. Opts: ,errors=continue [ 1479.183709] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1479.258252] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1479.488163] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. 03:04:15 executing program 3: clone3(&(0x7f0000000380)={0x20300000, &(0x7f0000000140)=0xffffffffffffffff, &(0x7f0000000180), &(0x7f00000001c0), {0x3}, &(0x7f0000000200)=""/1, 0x1, &(0x7f0000000240)=""/241, &(0x7f0000000340)=[0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0], 0xa}, 0x58) close_range(0xffffffffffffffff, r0, 0x2) r1 = socket$unix(0x1, 0x5, 0x0) bind$unix(r1, &(0x7f0000000080)=@abs={0x1}, 0x6e) listen(r1, 0x0) ioctl$sock_SIOCBRDELBR(r1, 0x89a1, &(0x7f0000000100)='veth0_to_bond\x00') accept$unix(r1, 0x0, 0x0) r2 = socket$unix(0x1, 0x5, 0x0) connect$unix(r2, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) socket$inet_icmp_raw(0x2, 0x3, 0x1) 03:04:15 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x74, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1495.436552] FAULT_INJECTION: forcing a failure. [ 1495.436552] name failslab, interval 1, probability 0, space 0, times 0 [ 1495.438796] CPU: 0 PID: 8952 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1495.440079] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1495.441425] Call Trace: [ 1495.441938] dump_stack+0x107/0x167 [ 1495.442622] should_fail.cold+0x5/0xa [ 1495.443332] should_failslab+0x5/0x20 [ 1495.444049] __kmalloc_track_caller+0x79/0x370 [ 1495.444891] ? kstrdup_const+0x53/0x80 [ 1495.445618] kstrdup+0x36/0x70 [ 1495.446232] kstrdup_const+0x53/0x80 [ 1495.446930] __kernfs_new_node+0x9d/0x860 [ 1495.447644] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1495.448632] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1495.449518] ? lock_acquire+0x197/0x470 [ 1495.450267] ? find_held_lock+0x2c/0x110 [ 1495.451020] ? sysfs_do_create_link_sd+0x82/0x140 [ 1495.451910] kernfs_new_node+0x18d/0x250 [ 1495.452662] kernfs_create_link+0xcb/0x230 [ 1495.453444] sysfs_do_create_link_sd+0x90/0x140 [ 1495.454324] sysfs_create_link+0x5f/0xc0 [ 1495.455077] device_add+0x703/0x1c50 [ 1495.455772] ? devlink_add_symlinks+0x970/0x970 [ 1495.456523] device_create_groups_vargs+0x207/0x280 [ 1495.457452] device_create+0xdc/0x120 [ 1495.458176] ? device_create_groups_vargs+0x280/0x280 [ 1495.459124] ? init_timer_key+0x12a/0x240 [ 1495.459895] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1495.460791] mac80211_hwsim_new_radio+0x376/0x4290 [ 1495.461701] ? ____sys_sendmsg+0x70d/0x870 [ 1495.462499] ? ___sys_sendmsg+0xf3/0x170 [ 1495.463254] ? __sys_sendmsg+0xe5/0x1b0 [ 1495.463989] ? do_syscall_64+0x33/0x40 [ 1495.464713] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1495.465695] ? lock_acquire+0x197/0x470 [ 1495.466400] ? create_object.isra.0+0x3ad/0xa20 [ 1495.467270] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1495.468122] ? __kmalloc+0x16e/0x390 [ 1495.468812] hwsim_new_radio_nl+0x991/0x1080 [ 1495.469619] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1495.470582] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1495.471792] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1495.472975] genl_family_rcv_msg_doit+0x22d/0x330 [ 1495.473858] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1495.475070] ? cap_capable+0x1cd/0x230 [ 1495.475786] ? ns_capable+0xe2/0x110 [ 1495.476471] genl_rcv_msg+0x36a/0x5a0 [ 1495.477166] ? genl_get_cmd+0x480/0x480 [ 1495.477906] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1495.478853] ? lock_release+0x680/0x680 [ 1495.479581] ? netlink_deliver_tap+0xf4/0xcc0 [ 1495.480393] netlink_rcv_skb+0x14b/0x430 [ 1495.481138] ? genl_get_cmd+0x480/0x480 [ 1495.481867] ? netlink_ack+0xab0/0xab0 [ 1495.482593] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1495.483426] ? is_vmalloc_addr+0x7b/0xb0 [ 1495.484165] genl_rcv+0x24/0x40 [ 1495.484766] netlink_unicast+0x54e/0x800 [ 1495.485507] ? netlink_attachskb+0x870/0x870 [ 1495.486329] netlink_sendmsg+0x90f/0xe00 [ 1495.487080] ? netlink_unicast+0x800/0x800 [ 1495.487867] ? netlink_unicast+0x800/0x800 [ 1495.488641] __sock_sendmsg+0x154/0x190 [ 1495.489364] ____sys_sendmsg+0x70d/0x870 [ 1495.490122] ? sock_write_iter+0x3d0/0x3d0 [ 1495.490880] ? do_recvmmsg+0x6d0/0x6d0 [ 1495.491594] ? lock_downgrade+0x6d0/0x6d0 [ 1495.492362] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1495.493315] ___sys_sendmsg+0xf3/0x170 [ 1495.494039] ? sendmsg_copy_msghdr+0x160/0x160 [ 1495.494879] ? __fget_files+0x2cf/0x520 [ 1495.495595] ? lock_downgrade+0x6d0/0x6d0 [ 1495.496356] ? find_held_lock+0x2c/0x110 [ 1495.497106] ? __fget_files+0x2f8/0x520 [ 1495.497838] ? __fget_light+0xea/0x290 [ 1495.498514] __sys_sendmsg+0xe5/0x1b0 [ 1495.499218] ? __sys_sendmsg_sock+0x40/0x40 [ 1495.500001] ? rcu_read_lock_any_held+0x75/0xa0 [ 1495.500865] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1495.501824] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1495.502774] do_syscall_64+0x33/0x40 [ 1495.503451] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1495.504374] RIP: 0033:0x7fdcf09cab19 [ 1495.505052] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1495.508415] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1495.509780] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1495.511082] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1495.512357] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1495.513637] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1495.514941] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 03:04:15 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x11, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:04:15 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x12, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:04:15 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 40) 03:04:15 executing program 0: r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r1, &(0x7f0000001100)=""/4095, 0xae3, 0x6800) fspick(r1, 0x0, 0x1) r2 = syz_io_uring_setup(0x21, &(0x7f0000000100), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40)) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r4, &(0x7f0000000180)=""/198, 0xc6) mmap$perf(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x50, r4, 0x3) io_uring_register$IORING_UNREGISTER_PERSONALITY(r2, 0x12, 0x0, r3) dup2(r0, r2) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x2010, r1, 0x8000000) mkdir(&(0x7f0000000000)='./file1\x00', 0x10) syz_io_uring_submit(r5, 0x0, &(0x7f0000000100)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x4000, @fd, 0x0, 0x0, 0x0, 0x19, 0x0, {0x2}}, 0x8) 03:04:15 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x11, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:04:15 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x61, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1495.562556] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. 03:04:15 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 41) 03:04:15 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x1000000, 0x13, 0xffffffffffffffff, 0x0) r3 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x9, 0x7f, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0) syz_io_uring_submit(r6, r5, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x4, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) r8 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r8, &(0x7f0000000180)=""/198, 0xc6) syz_io_uring_submit(r2, r5, &(0x7f0000000100)=@IORING_OP_SPLICE={0x1e, 0x3, 0x0, @fd, 0xff, {0x0, r0}, 0x1, 0x0, 0x0, {0x0, r7, r8}}, 0x137c99df) 03:04:15 executing program 0: r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r1, &(0x7f0000001100)=""/4095, 0xae3, 0x6800) fspick(r1, 0x0, 0x1) r2 = syz_io_uring_setup(0x21, &(0x7f0000000100), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40)) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r4, &(0x7f0000000180)=""/198, 0xc6) mmap$perf(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x50, r4, 0x3) io_uring_register$IORING_UNREGISTER_PERSONALITY(r2, 0x12, 0x0, r3) dup2(r0, r2) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x2010, r1, 0x8000000) mkdir(&(0x7f0000000000)='./file1\x00', 0x10) syz_io_uring_submit(r5, 0x0, &(0x7f0000000100)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x4000, @fd, 0x0, 0x0, 0x0, 0x19, 0x0, {0x2}}, 0x8) [ 1495.816797] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 03:04:15 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x12, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:04:15 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x13, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:04:15 executing program 3: prctl$PR_SET_FPEXC(0xc, 0x80) prctl$PR_SET_FPEXC(0xc, 0x2) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) [ 1495.887490] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1495.947834] FAULT_INJECTION: forcing a failure. [ 1495.947834] name failslab, interval 1, probability 0, space 0, times 0 [ 1495.949456] CPU: 0 PID: 8971 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1495.950453] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1495.951646] Call Trace: [ 1495.951981] dump_stack+0x107/0x167 [ 1495.952510] should_fail.cold+0x5/0xa [ 1495.953064] ? create_object.isra.0+0x3a/0xa20 [ 1495.953724] should_failslab+0x5/0x20 [ 1495.954288] kmem_cache_alloc+0x5b/0x310 [ 1495.954878] create_object.isra.0+0x3a/0xa20 [ 1495.955509] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1495.956248] kmem_cache_alloc+0x159/0x310 [ 1495.956853] __kernfs_new_node+0xd4/0x860 [ 1495.957454] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1495.958226] ? kernfs_add_one+0x124/0x4d0 [ 1495.958831] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1495.959519] ? lock_acquire+0x197/0x470 [ 1495.960096] ? find_held_lock+0x2c/0x110 [ 1495.960687] ? sysfs_do_create_link_sd+0x82/0x140 [ 1495.961386] kernfs_new_node+0x18d/0x250 [ 1495.961992] kernfs_create_link+0xcb/0x230 [ 1495.962606] sysfs_do_create_link_sd+0x90/0x140 [ 1495.963286] sysfs_create_link+0x5f/0xc0 [ 1495.963871] device_add+0x5e1/0x1c50 [ 1495.964409] ? devlink_add_symlinks+0x970/0x970 [ 1495.965091] device_create_groups_vargs+0x207/0x280 [ 1495.965813] device_create+0xdc/0x120 [ 1495.966376] ? device_create_groups_vargs+0x280/0x280 [ 1495.967133] ? init_timer_key+0x12a/0x240 [ 1495.967741] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1495.968453] mac80211_hwsim_new_radio+0x376/0x4290 [ 1495.969157] ? ____sys_sendmsg+0x70d/0x870 [ 1495.969770] ? ___sys_sendmsg+0xf3/0x170 [ 1495.970369] ? __sys_sendmsg+0xe5/0x1b0 [ 1495.970943] ? do_syscall_64+0x33/0x40 [ 1495.971511] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1495.972280] ? lock_acquire+0x197/0x470 [ 1495.972850] ? create_object.isra.0+0x3ad/0xa20 [ 1495.973522] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1495.974205] ? __kmalloc+0x16e/0x390 [ 1495.974746] hwsim_new_radio_nl+0x991/0x1080 [ 1495.975383] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1495.976148] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1495.977102] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1495.978051] genl_family_rcv_msg_doit+0x22d/0x330 [ 1495.978757] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1495.979719] ? cap_capable+0x1cd/0x230 [ 1495.980286] ? ns_capable+0xe2/0x110 [ 1495.980823] genl_rcv_msg+0x36a/0x5a0 [ 1495.981380] ? genl_get_cmd+0x480/0x480 [ 1495.981964] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1495.982705] ? lock_release+0x680/0x680 [ 1495.983272] ? netlink_deliver_tap+0xf4/0xcc0 [ 1495.983920] netlink_rcv_skb+0x14b/0x430 [ 1495.984507] ? genl_get_cmd+0x480/0x480 [ 1495.985087] ? netlink_ack+0xab0/0xab0 [ 1495.985666] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1495.986354] ? is_vmalloc_addr+0x7b/0xb0 [ 1495.986943] genl_rcv+0x24/0x40 [ 1495.987421] netlink_unicast+0x54e/0x800 [ 1495.988005] ? netlink_attachskb+0x870/0x870 [ 1495.988640] netlink_sendmsg+0x90f/0xe00 [ 1495.989241] ? netlink_unicast+0x800/0x800 [ 1495.989857] ? netlink_unicast+0x800/0x800 [ 1495.990484] __sock_sendmsg+0x154/0x190 [ 1495.991058] ____sys_sendmsg+0x70d/0x870 [ 1495.991642] ? sock_write_iter+0x3d0/0x3d0 [ 1495.992249] ? do_recvmmsg+0x6d0/0x6d0 [ 1495.992808] ? lock_downgrade+0x6d0/0x6d0 [ 1495.993407] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1495.994169] ___sys_sendmsg+0xf3/0x170 [ 1495.994742] ? sendmsg_copy_msghdr+0x160/0x160 [ 1495.995410] ? __fget_files+0x2cf/0x520 [ 1495.995979] ? lock_downgrade+0x6d0/0x6d0 [ 1495.996573] ? find_held_lock+0x2c/0x110 [ 1495.997158] ? __fget_files+0x2f8/0x520 [ 1495.997740] ? __fget_light+0xea/0x290 [ 1495.998327] __sys_sendmsg+0xe5/0x1b0 [ 1495.998875] ? __sys_sendmsg_sock+0x40/0x40 [ 1495.999496] ? rcu_read_lock_any_held+0x75/0xa0 [ 1496.000182] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1496.000942] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1496.001681] do_syscall_64+0x33/0x40 [ 1496.002230] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1496.002980] RIP: 0033:0x7fdcf09cab19 [ 1496.003513] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1496.006197] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1496.007144] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1496.008186] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1496.009060] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1496.010097] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1496.011127] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 03:04:16 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x62, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:04:16 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r2, &(0x7f0000000180)=""/198, 0xc6) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r2, &(0x7f0000000100)={0x2010}) 03:04:16 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x75, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:04:16 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x12, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1496.129913] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1496.313222] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. [ 1496.416631] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. 03:04:32 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x13, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:04:32 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x76, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1512.352083] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. 03:04:32 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x14, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:04:32 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 42) 03:04:32 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) fsetxattr$trusted_overlay_redirect(r0, &(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x8, 0x1) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 03:04:32 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x63, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:04:32 executing program 0: r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r1, &(0x7f0000001100)=""/4095, 0xae3, 0x6800) fspick(r1, 0x0, 0x1) r2 = syz_io_uring_setup(0x21, &(0x7f0000000100), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40)) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r4, &(0x7f0000000180)=""/198, 0xc6) mmap$perf(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x50, r4, 0x3) io_uring_register$IORING_UNREGISTER_PERSONALITY(r2, 0x12, 0x0, r3) dup2(r0, r2) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x2010, r1, 0x8000000) mkdir(&(0x7f0000000000)='./file1\x00', 0x10) syz_io_uring_submit(r5, 0x0, &(0x7f0000000100)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x4000, @fd, 0x0, 0x0, 0x0, 0x19, 0x0, {0x2}}, 0x8) 03:04:32 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x13, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1512.409861] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. [ 1512.509218] FAULT_INJECTION: forcing a failure. [ 1512.509218] name failslab, interval 1, probability 0, space 0, times 0 [ 1512.511815] CPU: 0 PID: 9010 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1512.513360] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1512.515274] Call Trace: [ 1512.515873] dump_stack+0x107/0x167 [ 1512.516700] should_fail.cold+0x5/0xa [ 1512.517571] ? create_object.isra.0+0x3a/0xa20 [ 1512.518630] should_failslab+0x5/0x20 [ 1512.519502] kmem_cache_alloc+0x5b/0x310 [ 1512.520432] create_object.isra.0+0x3a/0xa20 [ 1512.521431] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1512.522600] __kmalloc_track_caller+0x177/0x370 [ 1512.523662] ? kstrdup_const+0x53/0x80 [ 1512.524551] kstrdup+0x36/0x70 [ 1512.525287] kstrdup_const+0x53/0x80 [ 1512.526137] __kernfs_new_node+0x9d/0x860 [ 1512.527083] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1512.528288] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1512.529371] ? lock_acquire+0x197/0x470 [ 1512.530304] ? find_held_lock+0x2c/0x110 [ 1512.531231] ? sysfs_do_create_link_sd+0x82/0x140 [ 1512.532322] kernfs_new_node+0x18d/0x250 [ 1512.533247] kernfs_create_link+0xcb/0x230 [ 1512.534214] sysfs_do_create_link_sd+0x90/0x140 [ 1512.535275] sysfs_create_link+0x5f/0xc0 [ 1512.536200] device_add+0x703/0x1c50 [ 1512.537043] ? devlink_add_symlinks+0x970/0x970 [ 1512.538122] device_create_groups_vargs+0x207/0x280 [ 1512.539265] device_create+0xdc/0x120 [ 1512.540126] ? device_create_groups_vargs+0x280/0x280 [ 1512.541307] ? init_timer_key+0x12a/0x240 [ 1512.542273] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1512.543407] mac80211_hwsim_new_radio+0x376/0x4290 [ 1512.544520] ? ____sys_sendmsg+0x70d/0x870 [ 1512.545493] ? ___sys_sendmsg+0xf3/0x170 [ 1512.546433] ? __sys_sendmsg+0xe5/0x1b0 [ 1512.547364] ? do_syscall_64+0x33/0x40 [ 1512.548247] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1512.549466] ? lock_acquire+0x197/0x470 [ 1512.550378] ? create_object.isra.0+0x3ad/0xa20 [ 1512.551454] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1512.552518] ? __kmalloc+0x16e/0x390 [ 1512.553395] hwsim_new_radio_nl+0x991/0x1080 [ 1512.554405] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1512.555622] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1512.557126] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1512.558625] genl_family_rcv_msg_doit+0x22d/0x330 [ 1512.559720] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1512.561241] ? cap_capable+0x1cd/0x230 [ 1512.562140] ? ns_capable+0xe2/0x110 [ 1512.562989] genl_rcv_msg+0x36a/0x5a0 [ 1512.563852] ? genl_get_cmd+0x480/0x480 [ 1512.564755] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1512.565943] ? lock_release+0x680/0x680 [ 1512.566863] ? netlink_deliver_tap+0xf4/0xcc0 [ 1512.567883] netlink_rcv_skb+0x14b/0x430 [ 1512.568801] ? genl_get_cmd+0x480/0x480 [ 1512.569696] ? netlink_ack+0xab0/0xab0 [ 1512.570593] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1512.571622] ? is_vmalloc_addr+0x7b/0xb0 [ 1512.572565] genl_rcv+0x24/0x40 [ 1512.573311] netlink_unicast+0x54e/0x800 [ 1512.574250] ? netlink_attachskb+0x870/0x870 [ 1512.575254] netlink_sendmsg+0x90f/0xe00 [ 1512.576205] ? netlink_unicast+0x800/0x800 [ 1512.577181] ? netlink_unicast+0x800/0x800 [ 1512.578165] __sock_sendmsg+0x154/0x190 [ 1512.579062] ____sys_sendmsg+0x70d/0x870 [ 1512.580007] ? sock_write_iter+0x3d0/0x3d0 [ 1512.580962] ? do_recvmmsg+0x6d0/0x6d0 [ 1512.581866] ? lock_downgrade+0x6d0/0x6d0 [ 1512.582812] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1512.584020] ___sys_sendmsg+0xf3/0x170 [ 1512.584899] ? sendmsg_copy_msghdr+0x160/0x160 [ 1512.585943] ? __fget_files+0x2cf/0x520 [ 1512.586849] ? lock_downgrade+0x6d0/0x6d0 [ 1512.587801] ? find_held_lock+0x2c/0x110 [ 1512.588738] ? __fget_files+0x2f8/0x520 [ 1512.589666] ? __fget_light+0xea/0x290 [ 1512.590565] __sys_sendmsg+0xe5/0x1b0 [ 1512.591436] ? __sys_sendmsg_sock+0x40/0x40 [ 1512.592414] ? rcu_read_lock_any_held+0x75/0xa0 [ 1512.593485] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1512.594680] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1512.595850] do_syscall_64+0x33/0x40 [ 1512.596694] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1512.597861] RIP: 0033:0x7fdcf09cab19 [ 1512.598712] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1512.602918] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1512.604640] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1512.606264] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1512.607885] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1512.609498] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1512.611129] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 03:04:32 executing program 0: r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r1, &(0x7f0000001100)=""/4095, 0xae3, 0x6800) fspick(r1, 0x0, 0x1) r2 = syz_io_uring_setup(0x21, &(0x7f0000000100), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40)) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r4, &(0x7f0000000180)=""/198, 0xc6) mmap$perf(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x50, r4, 0x3) io_uring_register$IORING_UNREGISTER_PERSONALITY(r2, 0x12, 0x0, r3) dup2(r0, r2) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x2010, r1, 0x8000000) mkdir(&(0x7f0000000000)='./file1\x00', 0x10) syz_io_uring_submit(r5, 0x0, &(0x7f0000000100)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x4000, @fd, 0x0, 0x0, 0x0, 0x19, 0x0, {0x2}}, 0x8) 03:04:32 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r1, &(0x7f0000000180)=""/198, 0xc6) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r2, &(0x7f0000000180)=""/198, 0xc6) ioctl$AUTOFS_DEV_IOCTL_VERSION(r1, 0xc0189371, &(0x7f0000000280)={{0x1, 0x1, 0x18, r2}, './file0\x00'}) accept$unix(r3, 0x0, 0x0) socket$unix(0x1, 0x5, 0x0) setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x1e, &(0x7f0000000140)=0x7fffffff, 0x4) r4 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0) connect$unix(r4, &(0x7f0000000000)=@abs={0x1, 0x0, 0x4e22}, 0x6e) 03:04:32 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x1a, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:04:32 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000100)='/sys/module/nfs', 0x800, 0x8) listen(r0, 0x0) sendmsg$nl_generic(r1, &(0x7f00000005c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000580)={&(0x7f0000000180)={0x3dc, 0x25, 0x300, 0x70bd25, 0x25dfdbfe, {0xf}, [@generic="161d052780bfe7bd96065fe0cf395f55d2ced2a67af9c9216e2526104acc78d6f69b21c4a082263293cd6002f1bdd85bc05a37fe358e68cad58f3fde6b4904ae01a1736fcce97daf7a13e90ca6b0e753183e2c2956ba0348cf7c662c99ab9355db7672ef3cac6a78995e18e0200e983318b8b1eb1dcdd9a5d849042b8c64b1bdfbafc55e0a16ee386499825990021059ab4c", @generic="6902ba850da6fd4cf7fec535b3dc5b1b0b3124b08d3b004d6f3a353b2682af895b2891971d9ebba8b88c764a2489654a462ae01a56f672ce380319e9fc2c7a92c18646c91b68340ee8ead56bb18821cb7c3ab78e15393cf4fec12f40c4fda303e6fd36322c50fce53f52517e4cee79dcb03a3d3d2dfeee0e5e91c142ba1fcf68158d9441c3bc218c7ff53784d9417793582e7cd7d73aa629c619af3235b2ce87f627939292476e60ca806f78a4eb69fc7cc6", @typed={0xc, 0x1d, 0x0, 0x0, @u64=0x40}, @typed={0x8, 0x5f, 0x0, 0x0, @pid=0xffffffffffffffff}, @nested={0x16d, 0x34, 0x0, 0x1, [@typed={0x100, 0x8, 0x0, 0x0, @binary="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"}, @generic="610d5937b3780194d2ad230bbd285792fa5d854a29152f479030d8a8bd0d5d3b0aeb96ac2f0db711dfb34dade817bec68da04f447bda1d366b1243c2ec6e5feff5d92872a2379f4dc59c28d3fb5a460ddfceca9a672234ceb1", @typed={0x8, 0x18, 0x0, 0x0, @ipv4=@remote}, @typed={0x8, 0x43, 0x0, 0x0, @u32=0x9}]}, @generic="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"]}, 0x3dc}, 0x1, 0x0, 0x0, 0x100}, 0x200440a5) accept$unix(r0, 0x0, 0x0) r2 = socket$unix(0x1, 0x5, 0x0) connect$unix(r2, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 03:04:32 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x77, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1512.847452] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1512.892006] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1513.011563] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 03:04:47 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x78, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:04:47 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x21, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:04:47 executing program 0: r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r1, &(0x7f0000001100)=""/4095, 0xae3, 0x6800) fspick(r1, 0x0, 0x1) r2 = syz_io_uring_setup(0x21, &(0x7f0000000100), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40)) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r4, &(0x7f0000000180)=""/198, 0xc6) mmap$perf(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x50, r4, 0x3) io_uring_register$IORING_UNREGISTER_PERSONALITY(r2, 0x12, 0x0, r3) dup2(r0, r2) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x2010, r1, 0x8000000) mkdir(&(0x7f0000000000)='./file1\x00', 0x10) 03:04:47 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x14, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:04:47 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) r1 = socket(0x2b, 0x5, 0xfffffe00) r2 = socket$packet(0x11, 0x2, 0x300) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) bind$packet(r2, &(0x7f0000000040)={0x11, 0x1, r4, 0x1, 0x8, 0x6, @random="190002400a00"}, 0x14) ioctl$sock_SIOCDELRT(r1, 0x890c, &(0x7f0000000140)={0x0, @l2={0x1f, 0x8, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x1, 0x2}, @vsock={0x28, 0x0, 0x67983aaca3dc2a90, @local}, @xdp={0x2c, 0x2, r4, 0xb}, 0x8, 0x0, 0x0, 0x0, 0x7ff, &(0x7f0000000100)='bond_slave_1\x00', 0x5, 0x8000000000000000, 0x100}) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r5 = socket$unix(0x1, 0x2, 0x0) connect$unix(r5, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 03:04:47 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 43) 03:04:47 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x64, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:04:47 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x14, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1527.363083] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. 03:04:47 executing program 0: r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r1, &(0x7f0000001100)=""/4095, 0xae3, 0x6800) fspick(r1, 0x0, 0x1) r2 = syz_io_uring_setup(0x21, &(0x7f0000000100), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40)) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r4, &(0x7f0000000180)=""/198, 0xc6) mmap$perf(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x50, r4, 0x3) io_uring_register$IORING_UNREGISTER_PERSONALITY(r2, 0x12, 0x0, r3) dup2(r0, r2) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x4, 0x2010, r1, 0x8000000) [ 1527.482044] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 03:04:47 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x23, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:04:47 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x79, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:04:47 executing program 0: r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r1, &(0x7f0000001100)=""/4095, 0xae3, 0x6800) fspick(r1, 0x0, 0x1) r2 = syz_io_uring_setup(0x21, &(0x7f0000000100), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40)) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r4, &(0x7f0000000180)=""/198, 0xc6) mmap$perf(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x50, r4, 0x3) io_uring_register$IORING_UNREGISTER_PERSONALITY(r2, 0x12, 0x0, r3) dup2(r0, r2) 03:04:47 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x24, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1527.706742] FAULT_INJECTION: forcing a failure. [ 1527.706742] name failslab, interval 1, probability 0, space 0, times 0 [ 1527.708250] CPU: 1 PID: 9052 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1527.709083] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1527.710076] Call Trace: [ 1527.710434] dump_stack+0x107/0x167 [ 1527.710880] should_fail.cold+0x5/0xa [ 1527.711340] ? create_object.isra.0+0x3a/0xa20 [ 1527.711887] should_failslab+0x5/0x20 [ 1527.712344] kmem_cache_alloc+0x5b/0x310 [ 1527.712845] create_object.isra.0+0x3a/0xa20 [ 1527.713381] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1527.713999] kmem_cache_alloc+0x159/0x310 [ 1527.714534] __kernfs_new_node+0xd4/0x860 [ 1527.715032] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1527.715664] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1527.716240] ? lock_acquire+0x197/0x470 [ 1527.716712] ? find_held_lock+0x2c/0x110 [ 1527.717201] ? sysfs_do_create_link_sd+0x82/0x140 [ 1527.717774] kernfs_new_node+0x18d/0x250 [ 1527.718278] kernfs_create_link+0xcb/0x230 [ 1527.718790] sysfs_do_create_link_sd+0x90/0x140 [ 1527.719350] sysfs_create_link+0x5f/0xc0 [ 1527.719837] device_add+0x703/0x1c50 [ 1527.720284] ? devlink_add_symlinks+0x970/0x970 [ 1527.720841] device_create_groups_vargs+0x207/0x280 [ 1527.721452] device_create+0xdc/0x120 [ 1527.721907] ? device_create_groups_vargs+0x280/0x280 [ 1527.722559] ? init_timer_key+0x12a/0x240 [ 1527.723057] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1527.723632] mac80211_hwsim_new_radio+0x376/0x4290 [ 1527.724215] ? ____sys_sendmsg+0x70d/0x870 [ 1527.724716] ? ___sys_sendmsg+0xf3/0x170 [ 1527.725199] ? __sys_sendmsg+0xe5/0x1b0 [ 1527.725681] ? do_syscall_64+0x33/0x40 [ 1527.726145] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1527.726799] ? lock_acquire+0x197/0x470 [ 1527.727270] ? create_object.isra.0+0x3ad/0xa20 [ 1527.727826] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1527.728378] ? __kmalloc+0x16e/0x390 [ 1527.728824] hwsim_new_radio_nl+0x991/0x1080 [ 1527.729347] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1527.729965] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1527.730766] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1527.731554] genl_family_rcv_msg_doit+0x22d/0x330 [ 1527.732124] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1527.732909] ? cap_capable+0x1cd/0x230 [ 1527.733378] ? ns_capable+0xe2/0x110 [ 1527.733819] genl_rcv_msg+0x36a/0x5a0 [ 1527.734300] ? genl_get_cmd+0x480/0x480 [ 1527.734771] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1527.735397] ? lock_release+0x680/0x680 [ 1527.735865] ? netlink_deliver_tap+0xf4/0xcc0 [ 1527.736395] netlink_rcv_skb+0x14b/0x430 [ 1527.736871] ? genl_get_cmd+0x480/0x480 [ 1527.737344] ? netlink_ack+0xab0/0xab0 [ 1527.737809] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1527.738365] ? is_vmalloc_addr+0x7b/0xb0 [ 1527.738846] genl_rcv+0x24/0x40 [ 1527.739244] netlink_unicast+0x54e/0x800 [ 1527.739723] ? netlink_attachskb+0x870/0x870 [ 1527.740259] netlink_sendmsg+0x90f/0xe00 [ 1527.740741] ? netlink_unicast+0x800/0x800 [ 1527.741241] ? netlink_unicast+0x800/0x800 [ 1527.741743] __sock_sendmsg+0x154/0x190 [ 1527.742214] ____sys_sendmsg+0x70d/0x870 [ 1527.742710] ? sock_write_iter+0x3d0/0x3d0 [ 1527.743203] ? do_recvmmsg+0x6d0/0x6d0 [ 1527.743657] ? lock_downgrade+0x6d0/0x6d0 [ 1527.744147] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1527.744762] ___sys_sendmsg+0xf3/0x170 [ 1527.745237] ? sendmsg_copy_msghdr+0x160/0x160 [ 1527.745774] ? __fget_files+0x2cf/0x520 [ 1527.746243] ? lock_downgrade+0x6d0/0x6d0 [ 1527.746746] ? find_held_lock+0x2c/0x110 [ 1527.747225] ? __fget_files+0x2f8/0x520 [ 1527.747692] ? __fget_light+0xea/0x290 [ 1527.748153] __sys_sendmsg+0xe5/0x1b0 [ 1527.748596] ? __sys_sendmsg_sock+0x40/0x40 [ 1527.749101] ? rcu_read_lock_any_held+0x75/0xa0 [ 1527.749661] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1527.750295] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1527.750909] do_syscall_64+0x33/0x40 [ 1527.751346] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1527.751950] RIP: 0033:0x7fdcf09cab19 [ 1527.752383] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1527.754556] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1527.755433] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1527.756254] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1527.757086] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1527.757915] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1527.758761] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 03:04:47 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x1a, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1527.918937] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1527.962635] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. [ 1528.068749] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. 03:05:05 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) r1 = accept$unix(r0, 0x0, 0x0) r2 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000100)=@abs={0x0, 0x0, 0x4e22}, 0x6e) connect$unix(r2, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 03:05:05 executing program 0: r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r1, &(0x7f0000001100)=""/4095, 0xae3, 0x6800) fspick(r1, 0x0, 0x1) r2 = syz_io_uring_setup(0x21, &(0x7f0000000100), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40)) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r4, &(0x7f0000000180)=""/198, 0xc6) mmap$perf(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x50, r4, 0x3) io_uring_register$IORING_UNREGISTER_PERSONALITY(r2, 0x12, 0x0, r3) dup2(r0, r2) 03:05:05 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x21, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:05:05 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x66, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:05:05 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 44) 03:05:05 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x1a, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:05:05 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x7a, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:05:05 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x26, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:05:05 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x6800) fspick(r0, 0x0, 0x1) r1 = syz_io_uring_setup(0x21, &(0x7f0000000100), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40)) r2 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r3, &(0x7f0000000180)=""/198, 0xc6) mmap$perf(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x50, r3, 0x3) io_uring_register$IORING_UNREGISTER_PERSONALITY(r1, 0x12, 0x0, r2) [ 1545.167273] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 03:05:05 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x23, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:05:05 executing program 3: ioctl$CDROMEJECT_SW(0xffffffffffffffff, 0x530f, 0x1) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) [ 1545.247449] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. 03:05:05 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x6800) fspick(r0, 0x0, 0x1) r1 = syz_io_uring_setup(0x21, &(0x7f0000000100), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40)) io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r2, &(0x7f0000000180)=""/198, 0xc6) mmap$perf(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x50, r2, 0x3) 03:05:05 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x6800) fspick(r0, 0x0, 0x1) r1 = syz_io_uring_setup(0x21, &(0x7f0000000100), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40)) io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r2, &(0x7f0000000180)=""/198, 0xc6) 03:05:05 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x6800) fspick(r0, 0x0, 0x1) r1 = syz_io_uring_setup(0x21, &(0x7f0000000100), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40)) io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0) getdents(0xffffffffffffffff, &(0x7f0000000180)=""/198, 0xc6) 03:05:05 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) listen(r1, 0x2) r2 = signalfd4(r0, &(0x7f0000000280)={[0x5]}, 0x8, 0x40800) getsockopt$sock_timeval(r2, 0x1, 0x43, &(0x7f00000002c0), &(0x7f0000000300)=0x10) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) socket$unix(0x1, 0x5, 0x0) connect$unix(0xffffffffffffffff, &(0x7f0000000000)=@file={0x0, './file1\x00'}, 0x6e) 03:05:05 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x7b, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:05:05 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x21, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1545.466524] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1545.553352] FAULT_INJECTION: forcing a failure. [ 1545.553352] name failslab, interval 1, probability 0, space 0, times 0 [ 1545.555814] CPU: 1 PID: 9103 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1545.557268] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1545.559051] Call Trace: [ 1545.559618] dump_stack+0x107/0x167 [ 1545.560396] should_fail.cold+0x5/0xa [ 1545.561207] ? create_object.isra.0+0x3a/0xa20 [ 1545.562181] should_failslab+0x5/0x20 [ 1545.563001] kmem_cache_alloc+0x5b/0x310 [ 1545.563879] create_object.isra.0+0x3a/0xa20 [ 1545.564812] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1545.565904] kmem_cache_alloc+0x159/0x310 [ 1545.566808] __kernfs_new_node+0xd4/0x860 [ 1545.567695] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1545.568819] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1545.569829] ? lock_acquire+0x197/0x470 [ 1545.570685] ? find_held_lock+0x2c/0x110 [ 1545.571556] ? sysfs_do_create_link_sd+0x82/0x140 [ 1545.572596] kernfs_new_node+0x18d/0x250 [ 1545.573468] kernfs_create_link+0xcb/0x230 [ 1545.574377] sysfs_do_create_link_sd+0x90/0x140 [ 1545.575380] sysfs_create_link+0x5f/0xc0 [ 1545.576251] device_add+0x703/0x1c50 [ 1545.577048] ? devlink_add_symlinks+0x970/0x970 [ 1545.578054] device_create_groups_vargs+0x207/0x280 [ 1545.579129] device_create+0xdc/0x120 [ 1545.579944] ? device_create_groups_vargs+0x280/0x280 [ 1545.581041] ? init_timer_key+0x12a/0x240 [ 1545.581932] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1545.582985] mac80211_hwsim_new_radio+0x376/0x4290 [ 1545.584016] ? ____sys_sendmsg+0x70d/0x870 [ 1545.584905] ? ___sys_sendmsg+0xf3/0x170 [ 1545.585753] ? __sys_sendmsg+0xe5/0x1b0 [ 1545.586605] ? do_syscall_64+0x33/0x40 [ 1545.587419] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1545.588550] ? lock_acquire+0x197/0x470 [ 1545.589395] ? create_object.isra.0+0x3ad/0xa20 [ 1545.590390] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1545.591393] ? __kmalloc+0x16e/0x390 [ 1545.592194] hwsim_new_radio_nl+0x991/0x1080 [ 1545.593133] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1545.594249] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1545.595661] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1545.597050] genl_family_rcv_msg_doit+0x22d/0x330 [ 1545.598078] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1545.599487] ? cap_capable+0x1cd/0x230 [ 1545.600329] ? ns_capable+0xe2/0x110 [ 1545.601131] genl_rcv_msg+0x36a/0x5a0 [ 1545.601946] ? genl_get_cmd+0x480/0x480 [ 1545.602801] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1545.603902] ? lock_release+0x680/0x680 [ 1545.604752] ? netlink_deliver_tap+0xf4/0xcc0 [ 1545.605709] netlink_rcv_skb+0x14b/0x430 [ 1545.606591] ? genl_get_cmd+0x480/0x480 [ 1545.607437] ? netlink_ack+0xab0/0xab0 [ 1545.608275] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1545.609248] ? is_vmalloc_addr+0x7b/0xb0 [ 1545.610110] genl_rcv+0x24/0x40 [ 1545.610817] netlink_unicast+0x54e/0x800 [ 1545.611682] ? netlink_attachskb+0x870/0x870 [ 1545.612625] netlink_sendmsg+0x90f/0xe00 [ 1545.613494] ? netlink_unicast+0x800/0x800 [ 1545.614412] ? netlink_unicast+0x800/0x800 [ 1545.615324] __sock_sendmsg+0x154/0x190 [ 1545.616172] ____sys_sendmsg+0x70d/0x870 [ 1545.617037] ? sock_write_iter+0x3d0/0x3d0 [ 1545.617932] ? do_recvmmsg+0x6d0/0x6d0 [ 1545.618768] ? lock_downgrade+0x6d0/0x6d0 [ 1545.619659] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1545.620779] ___sys_sendmsg+0xf3/0x170 [ 1545.621608] ? sendmsg_copy_msghdr+0x160/0x160 [ 1545.622597] ? __fget_files+0x2cf/0x520 [ 1545.623444] ? lock_downgrade+0x6d0/0x6d0 [ 1545.624327] ? find_held_lock+0x2c/0x110 [ 1545.625223] ? __fget_files+0x2f8/0x520 [ 1545.626080] ? __fget_light+0xea/0x290 [ 1545.626923] __sys_sendmsg+0xe5/0x1b0 [ 1545.627729] ? __sys_sendmsg_sock+0x40/0x40 [ 1545.628645] ? rcu_read_lock_any_held+0x75/0xa0 [ 1545.629650] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1545.630773] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1545.631870] do_syscall_64+0x33/0x40 [ 1545.632660] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1545.633748] RIP: 0033:0x7fdcf09cab19 [ 1545.634543] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1545.638454] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1545.640070] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1545.641589] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1545.643116] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1545.644628] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1545.646146] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 [ 1545.768611] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. [ 1545.810814] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. 03:05:22 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x6800) fspick(r0, 0x0, 0x1) r1 = syz_io_uring_setup(0x21, &(0x7f0000000100), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40)) io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0) getdents(0xffffffffffffffff, &(0x7f0000000180)=""/198, 0xc6) 03:05:22 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000400)=0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000840)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000800)={&(0x7f0000000440)={0x39c, 0x42, 0x200, 0x70bd2d, 0x25dfdbfe, {0x17}, [@nested={0x11b, 0x70, 0x0, 0x1, [@generic="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", @typed={0x8, 0x2e, 0x0, 0x0, @u32=0x24}, @typed={0x8, 0x7, 0x0, 0x0, @ipv4=@dev={0xac, 0x14, 0x14, 0x2c}}, @typed={0x8, 0x28, 0x0, 0x0, @ipv4=@rand_addr=0x64010102}]}, @generic="4551af011469ad53c038dc2995143368a02d4645109cccac8c13d7406013c466394076f7c2e54ed3025254a109b083135be02b8387a213a74c1d5bd3c543442c5fe5303144597764475d0199afe5d2fc7d129277ebf05bc0142b3723b48985a4320a44e7c7f396e65856599a95a7e5e1", @nested={0x86, 0x38, 0x0, 0x1, [@generic="f721d57d1e78ae63850c2dcd1ffb6995b61edc60be3609295827c17792cd05dceae927f376f21ab0b5ecf7fc482434a27d691eb18924122c28", @generic="178b97100ecd724e8089973713fe1fd8ffd1ab20afb95d48b7977db046e573efd28725f8998ad7b107a6c9e422f5411412368ee6d74d1bbcc7810a06663e77a0efc242c27737145270"]}, @typed={0x4, 0x57}, @nested={0x166, 0xd, 0x0, 0x1, [@typed={0x8, 0x44, 0x0, 0x0, @pid=r0}, @generic="5577a3952015bb0765165e257b849cad425faadb68d6afaaf7b936b9e4418ab3fda7c210838d244e3037a8d452b555c3052ce05c6f7dab81717270bdbdb2d365fcb7f2e6814af522783260a67cef68d7b95f8a32fd96ccbcc7e5eb0ba1ac7ac5b2939c2e2e1fb1158afa476980b03e494006d03faa0a6fd33c2eda6388baaa9affd354ff46e8ed3d96a64cccb8690a5fbaf9c69028c1e4c2aeaacbec1477d8271d135b26accf7478400f8a87685f65a6c61c21c45b6ae41db28abe72db4faa81cb6ee0029b111853da92e4ebd512b1166e34ef6c8d1d92f6db9581c152312551f480f410a453f29a", @typed={0xc, 0x58, 0x0, 0x0, @u64=0x447}, @typed={0xc, 0xf, 0x0, 0x0, @u64=0x7fffffff}, @generic="027e03a4a825cd437b52e66a7b9e2d7afc07b6617dc0d490cb5fc1a7fe35f08bc8675516d1bb694de4456a117580fb9ad3a1f98ce98355ebe18536d6f7fe29cb27e206c5e8d49f972b29b574015c1aeb5f5b73327f1af1a0810a"]}, @typed={0x8, 0x96, 0x0, 0x0, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}]}, 0x39c}, 0x1, 0x0, 0x0, 0x404c004}, 0x40) r1 = syz_genetlink_get_family_id$smc(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$SMC_PNETID_FLUSH(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)={0x48, r1, 0x2, 0x70bd29, 0x25dfdbff, {}, [@SMC_PNETID_ETHNAME={0x14, 0x2, 'bridge0\x00'}, @SMC_PNETID_IBPORT={0x5, 0x4, 0x1}, @SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz1\x00'}]}, 0x48}, 0x1, 0x0, 0x0, 0x4000050}, 0x1) r2 = socket$unix(0x1, 0x5, 0x0) bind$unix(r2, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r2, 0x0) r3 = signalfd(r2, &(0x7f00000001c0)={[0x8]}, 0x8) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r3, 0xc0189374, &(0x7f00000003c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r2, @ANYBLOB="6981228cea784d00"/18]) accept$unix(r2, 0x0, 0x0) r4 = socket$unix(0x1, 0x5, 0x0) getsockname$unix(r4, &(0x7f0000000100), &(0x7f0000000180)=0x6e) connect$unix(r4, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 03:05:22 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x23, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:05:22 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 45) 03:05:22 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x67, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:05:22 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x28, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:05:22 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x24, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:05:22 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x7c, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1562.769070] FAULT_INJECTION: forcing a failure. [ 1562.769070] name failslab, interval 1, probability 0, space 0, times 0 [ 1562.771653] CPU: 0 PID: 9137 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1562.773214] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1562.775116] Call Trace: [ 1562.775726] dump_stack+0x107/0x167 [ 1562.776555] should_fail.cold+0x5/0xa [ 1562.777422] ? create_object.isra.0+0x3a/0xa20 [ 1562.778461] should_failslab+0x5/0x20 [ 1562.779337] kmem_cache_alloc+0x5b/0x310 [ 1562.780267] create_object.isra.0+0x3a/0xa20 [ 1562.781268] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1562.782440] kmem_cache_alloc+0x159/0x310 [ 1562.783404] __kernfs_new_node+0xd4/0x860 [ 1562.784366] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1562.785441] ? find_held_lock+0x2c/0x110 [ 1562.786378] ? kernfs_add_one+0x36e/0x4d0 [ 1562.787358] ? lock_downgrade+0x6d0/0x6d0 [ 1562.788341] kernfs_new_node+0x18d/0x250 [ 1562.789293] kernfs_create_dir_ns+0x49/0x160 [ 1562.790322] internal_create_group+0x793/0xb30 [ 1562.791405] ? sysfs_remove_group+0x170/0x170 [ 1562.792460] ? kernfs_put+0x31/0x50 [ 1562.793312] dpm_sysfs_add+0x82/0x290 [ 1562.794203] device_add+0xa06/0x1c50 [ 1562.795089] ? devlink_add_symlinks+0x970/0x970 [ 1562.796192] device_create_groups_vargs+0x207/0x280 [ 1562.797356] device_create+0xdc/0x120 [ 1562.798248] ? device_create_groups_vargs+0x280/0x280 [ 1562.799459] ? init_timer_key+0x12a/0x240 [ 1562.800429] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1562.801561] mac80211_hwsim_new_radio+0x376/0x4290 [ 1562.802712] ? ____sys_sendmsg+0x70d/0x870 [ 1562.803694] ? ___sys_sendmsg+0xf3/0x170 [ 1562.804639] ? __sys_sendmsg+0xe5/0x1b0 [ 1562.805557] ? do_syscall_64+0x33/0x40 [ 1562.806461] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1562.807701] ? lock_acquire+0x197/0x470 [ 1562.808623] ? create_object.isra.0+0x3ad/0xa20 03:05:22 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x6800) fspick(r0, 0x0, 0x1) r1 = syz_io_uring_setup(0x21, &(0x7f0000000100), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40)) io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0) getdents(0xffffffffffffffff, &(0x7f0000000180)=""/198, 0xc6) [ 1562.809710] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1562.810979] ? __kmalloc+0x16e/0x390 [ 1562.811852] hwsim_new_radio_nl+0x991/0x1080 [ 1562.812881] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1562.814101] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1562.815644] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1562.817163] genl_family_rcv_msg_doit+0x22d/0x330 [ 1562.818287] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1562.819825] ? cap_capable+0x1cd/0x230 [ 1562.820742] ? ns_capable+0xe2/0x110 [ 1562.821610] genl_rcv_msg+0x36a/0x5a0 [ 1562.822496] ? genl_get_cmd+0x480/0x480 [ 1562.823427] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1562.824629] ? lock_release+0x680/0x680 [ 1562.825553] ? netlink_deliver_tap+0xf4/0xcc0 [ 1562.826596] netlink_rcv_skb+0x14b/0x430 [ 1562.827554] ? genl_get_cmd+0x480/0x480 [ 1562.828480] ? netlink_ack+0xab0/0xab0 [ 1562.829392] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1562.830453] ? is_vmalloc_addr+0x7b/0xb0 [ 1562.831406] genl_rcv+0x24/0x40 [ 1562.832171] netlink_unicast+0x54e/0x800 [ 1562.833117] ? netlink_attachskb+0x870/0x870 [ 1562.834148] netlink_sendmsg+0x90f/0xe00 [ 1562.835119] ? netlink_unicast+0x800/0x800 [ 1562.836114] ? netlink_unicast+0x800/0x800 [ 1562.837097] __sock_sendmsg+0x154/0x190 [ 1562.838023] ____sys_sendmsg+0x70d/0x870 [ 1562.838977] ? sock_write_iter+0x3d0/0x3d0 [ 1562.839957] ? do_recvmmsg+0x6d0/0x6d0 [ 1562.840872] ? lock_downgrade+0x6d0/0x6d0 [ 1562.841842] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1562.843081] ___sys_sendmsg+0xf3/0x170 [ 1562.843994] ? sendmsg_copy_msghdr+0x160/0x160 [ 1562.845067] ? __fget_files+0x2cf/0x520 [ 1562.846000] ? lock_downgrade+0x6d0/0x6d0 [ 1562.846972] ? find_held_lock+0x2c/0x110 [ 1562.847932] ? __fget_files+0x2f8/0x520 [ 1562.848869] ? __fget_light+0xea/0x290 [ 1562.849786] __sys_sendmsg+0xe5/0x1b0 [ 1562.850683] ? __sys_sendmsg_sock+0x40/0x40 [ 1562.851689] ? rcu_read_lock_any_held+0x75/0xa0 [ 1562.852790] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1562.854008] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1562.855220] do_syscall_64+0x33/0x40 [ 1562.856090] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1562.857280] RIP: 0033:0x7fdcf09cab19 [ 1562.858147] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1562.862436] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1562.864233] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1562.865896] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1562.867572] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1562.869234] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1562.870905] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 03:05:22 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x38, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:05:22 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x68, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:05:22 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x6800) fspick(r0, 0x0, 0x1) syz_io_uring_setup(0x21, &(0x7f0000000100), &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000180), &(0x7f0000002a40)) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r1, &(0x7f0000000180)=""/198, 0xc6) [ 1562.999669] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. 03:05:23 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 46) 03:05:23 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x6800) fspick(r0, 0x0, 0x1) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r1, &(0x7f0000000180)=""/198, 0xc6) 03:05:23 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x24, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:05:23 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x6800) fspick(r0, 0x0, 0x1) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r1, &(0x7f0000000180)=""/198, 0xc6) [ 1563.233302] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 03:05:23 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x26, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1563.420614] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1563.460597] FAULT_INJECTION: forcing a failure. [ 1563.460597] name failslab, interval 1, probability 0, space 0, times 0 [ 1563.461937] CPU: 1 PID: 9168 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1563.462730] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1563.463691] Call Trace: [ 1563.464002] dump_stack+0x107/0x167 [ 1563.464425] should_fail.cold+0x5/0xa [ 1563.464867] ? create_object.isra.0+0x3a/0xa20 [ 1563.465394] should_failslab+0x5/0x20 [ 1563.465834] kmem_cache_alloc+0x5b/0x310 [ 1563.466309] create_object.isra.0+0x3a/0xa20 [ 1563.466822] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1563.467413] kmem_cache_alloc+0x159/0x310 [ 1563.467896] __kernfs_new_node+0xd4/0x860 [ 1563.468380] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1563.468928] ? find_held_lock+0x2c/0x110 [ 1563.469398] ? kernfs_add_one+0x36e/0x4d0 [ 1563.469876] ? lock_downgrade+0x6d0/0x6d0 [ 1563.470360] kernfs_new_node+0x18d/0x250 [ 1563.470841] kernfs_create_dir_ns+0x49/0x160 [ 1563.471350] internal_create_group+0x793/0xb30 [ 1563.471883] ? sysfs_remove_group+0x170/0x170 [ 1563.472401] ? kernfs_put+0x31/0x50 [ 1563.472825] dpm_sysfs_add+0x82/0x290 [ 1563.473271] device_add+0xa06/0x1c50 [ 1563.473703] ? devlink_add_symlinks+0x970/0x970 [ 1563.474251] device_create_groups_vargs+0x207/0x280 [ 1563.474836] device_create+0xdc/0x120 [ 1563.475277] ? device_create_groups_vargs+0x280/0x280 [ 1563.475872] ? init_timer_key+0x12a/0x240 [ 1563.476355] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1563.476917] mac80211_hwsim_new_radio+0x376/0x4290 [ 1563.477483] ? ____sys_sendmsg+0x70d/0x870 [ 1563.477968] ? ___sys_sendmsg+0xf3/0x170 [ 1563.478432] ? __sys_sendmsg+0xe5/0x1b0 [ 1563.478908] ? do_syscall_64+0x33/0x40 [ 1563.479356] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1563.479962] ? lock_acquire+0x197/0x470 [ 1563.480416] ? create_object.isra.0+0x3ad/0xa20 [ 1563.480950] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1563.481481] ? __kmalloc+0x16e/0x390 [ 1563.481909] hwsim_new_radio_nl+0x991/0x1080 [ 1563.482423] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1563.483030] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1563.483787] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1563.484544] genl_family_rcv_msg_doit+0x22d/0x330 [ 1563.485100] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1563.485860] ? cap_capable+0x1cd/0x230 [ 1563.486318] ? ns_capable+0xe2/0x110 [ 1563.486752] genl_rcv_msg+0x36a/0x5a0 [ 1563.487194] ? genl_get_cmd+0x480/0x480 [ 1563.487651] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1563.488244] ? lock_release+0x680/0x680 [ 1563.488697] ? netlink_deliver_tap+0xf4/0xcc0 [ 1563.489226] netlink_rcv_skb+0x14b/0x430 [ 1563.489695] ? genl_get_cmd+0x480/0x480 [ 1563.490152] ? netlink_ack+0xab0/0xab0 [ 1563.490618] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1563.491138] ? is_vmalloc_addr+0x7b/0xb0 [ 1563.491606] genl_rcv+0x24/0x40 [ 1563.491983] netlink_unicast+0x54e/0x800 [ 1563.492448] ? netlink_attachskb+0x870/0x870 [ 1563.492957] netlink_sendmsg+0x90f/0xe00 [ 1563.493429] ? netlink_unicast+0x800/0x800 [ 1563.493925] ? netlink_unicast+0x800/0x800 [ 1563.494407] __sock_sendmsg+0x154/0x190 [ 1563.494875] ____sys_sendmsg+0x70d/0x870 [ 1563.495347] ? sock_write_iter+0x3d0/0x3d0 [ 1563.495835] ? do_recvmmsg+0x6d0/0x6d0 [ 1563.496279] ? lock_downgrade+0x6d0/0x6d0 [ 1563.496758] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1563.497366] ___sys_sendmsg+0xf3/0x170 [ 1563.497816] ? sendmsg_copy_msghdr+0x160/0x160 [ 1563.498349] ? __fget_files+0x2cf/0x520 [ 1563.498812] ? lock_downgrade+0x6d0/0x6d0 [ 1563.499282] ? find_held_lock+0x2c/0x110 [ 1563.499755] ? __fget_files+0x2f8/0x520 [ 1563.500214] ? __fget_light+0xea/0x290 [ 1563.500664] __sys_sendmsg+0xe5/0x1b0 [ 1563.501103] ? __sys_sendmsg_sock+0x40/0x40 [ 1563.501590] ? rcu_read_lock_any_held+0x75/0xa0 [ 1563.502137] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1563.502743] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1563.503329] do_syscall_64+0x33/0x40 [ 1563.503756] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1563.504341] RIP: 0033:0x7fdcf09cab19 [ 1563.504765] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1563.506896] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1563.507769] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1563.508590] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1563.509417] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1563.510242] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1563.511077] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 [ 1563.561923] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. 03:05:38 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 47) 03:05:38 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x26, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:05:38 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x7d, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:05:38 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x6a, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:05:38 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x3a, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:05:38 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f0000000100)=@file={0x1, './file0\x00'}, 0x6e) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 03:05:38 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') pread64(r0, &(0x7f0000001100)=""/4095, 0xae3, 0x6800) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r1, &(0x7f0000000180)=""/198, 0xc6) 03:05:38 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x28, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1578.423068] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 03:05:38 executing program 3: ioctl$BLKALIGNOFF(0xffffffffffffffff, 0x127a, &(0x7f0000000140)) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000100)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x8}}, './file0/file0\x00'}) fcntl$dupfd(r0, 0x406, r1) r2 = socket$unix(0x1, 0x5, 0x0) bind$unix(r2, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r2, 0x0) accept$unix(r2, 0x0, 0x0) r3 = socket$unix(0x1, 0x5, 0x0) connect$unix(r3, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 03:05:38 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x6b, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:05:38 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00') r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) [ 1578.560390] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. 03:05:38 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) 03:05:38 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x7e, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1578.642363] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1578.747093] FAULT_INJECTION: forcing a failure. [ 1578.747093] name failslab, interval 1, probability 0, space 0, times 0 [ 1578.749580] CPU: 1 PID: 9199 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1578.751124] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1578.752970] Call Trace: [ 1578.753579] dump_stack+0x107/0x167 [ 1578.754393] should_fail.cold+0x5/0xa [ 1578.755268] ? create_object.isra.0+0x3a/0xa20 [ 1578.756276] should_failslab+0x5/0x20 [ 1578.757116] kmem_cache_alloc+0x5b/0x310 [ 1578.758038] create_object.isra.0+0x3a/0xa20 [ 1578.759043] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1578.760172] kmem_cache_alloc+0x159/0x310 [ 1578.761098] ? kernfs_find_and_get_ns+0x21/0x70 [ 1578.762137] __kernfs_new_node+0xd4/0x860 [ 1578.763075] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1578.764139] ? kernfs_find_and_get_ns+0x55/0x70 [ 1578.765183] ? lock_downgrade+0x6d0/0x6d0 [ 1578.766100] ? kernfs_find_and_get_ns+0x21/0x70 [ 1578.767152] kernfs_new_node+0x18d/0x250 [ 1578.768061] __kernfs_create_file+0x51/0x350 [ 1578.769030] sysfs_add_file_mode_ns+0x221/0x560 [ 1578.770059] sysfs_merge_group+0x198/0x320 [ 1578.771028] ? sysfs_update_group+0x30/0x30 [ 1578.771977] ? kernfs_put+0x31/0x50 [ 1578.772807] dpm_sysfs_add+0x249/0x290 [ 1578.773681] device_add+0xa06/0x1c50 [ 1578.774527] ? devlink_add_symlinks+0x970/0x970 [ 1578.775582] device_create_groups_vargs+0x207/0x280 [ 1578.776707] device_create+0xdc/0x120 [ 1578.777573] ? device_create_groups_vargs+0x280/0x280 [ 1578.778714] ? init_timer_key+0x12a/0x240 [ 1578.779670] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1578.780763] mac80211_hwsim_new_radio+0x376/0x4290 [ 1578.781840] ? ____sys_sendmsg+0x70d/0x870 [ 1578.782808] ? ___sys_sendmsg+0xf3/0x170 [ 1578.783733] ? __sys_sendmsg+0xe5/0x1b0 [ 1578.784635] ? do_syscall_64+0x33/0x40 [ 1578.785490] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1578.786641] ? lock_acquire+0x197/0x470 [ 1578.787551] ? create_object.isra.0+0x3ad/0xa20 [ 1578.788586] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1578.789609] ? __kmalloc+0x16e/0x390 [ 1578.790434] hwsim_new_radio_nl+0x991/0x1080 [ 1578.791436] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1578.792573] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1578.793927] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1578.795280] genl_family_rcv_msg_doit+0x22d/0x330 [ 1578.796271] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1578.797618] ? cap_capable+0x1cd/0x230 [ 1578.798438] ? ns_capable+0xe2/0x110 [ 1578.799220] genl_rcv_msg+0x36a/0x5a0 [ 1578.800012] ? genl_get_cmd+0x480/0x480 [ 1578.800823] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1578.801887] ? lock_release+0x680/0x680 [ 1578.802715] ? netlink_deliver_tap+0xf4/0xcc0 [ 1578.803655] netlink_rcv_skb+0x14b/0x430 [ 1578.804478] ? genl_get_cmd+0x480/0x480 [ 1578.805297] ? netlink_ack+0xab0/0xab0 [ 1578.806104] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1578.807056] ? is_vmalloc_addr+0x7b/0xb0 [ 1578.807894] genl_rcv+0x24/0x40 [ 1578.808572] netlink_unicast+0x54e/0x800 [ 1578.809409] ? netlink_attachskb+0x870/0x870 [ 1578.810324] netlink_sendmsg+0x90f/0xe00 [ 1578.811180] ? netlink_unicast+0x800/0x800 [ 1578.812057] ? netlink_unicast+0x800/0x800 [ 1578.812936] __sock_sendmsg+0x154/0x190 [ 1578.813756] ____sys_sendmsg+0x70d/0x870 [ 1578.814591] ? sock_write_iter+0x3d0/0x3d0 [ 1578.815471] ? do_recvmmsg+0x6d0/0x6d0 [ 1578.816274] ? lock_downgrade+0x6d0/0x6d0 [ 1578.817127] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1578.818219] ___sys_sendmsg+0xf3/0x170 [ 1578.819035] ? sendmsg_copy_msghdr+0x160/0x160 [ 1578.819981] ? __fget_files+0x2cf/0x520 [ 1578.820796] ? lock_downgrade+0x6d0/0x6d0 [ 1578.821644] ? find_held_lock+0x2c/0x110 [ 1578.822494] ? __fget_files+0x2f8/0x520 [ 1578.823330] ? __fget_light+0xea/0x290 [ 1578.824150] __sys_sendmsg+0xe5/0x1b0 [ 1578.824945] ? __sys_sendmsg_sock+0x40/0x40 [ 1578.825837] ? rcu_read_lock_any_held+0x75/0xa0 [ 1578.826812] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1578.827897] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1578.828963] do_syscall_64+0x33/0x40 [ 1578.829733] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1578.830799] RIP: 0033:0x7fdcf09cab19 [ 1578.831566] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1578.835350] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1578.836915] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1578.838385] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1578.839864] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1578.841333] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1578.842805] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 [ 1579.049248] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. [ 1596.022204] FAULT_INJECTION: forcing a failure. [ 1596.022204] name failslab, interval 1, probability 0, space 0, times 0 [ 1596.024969] CPU: 1 PID: 9226 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1596.026695] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1596.028588] Call Trace: [ 1596.029142] dump_stack+0x107/0x167 [ 1596.029912] should_fail.cold+0x5/0xa [ 1596.030711] ? __kernfs_new_node+0xd4/0x860 [ 1596.031628] should_failslab+0x5/0x20 [ 1596.032425] kmem_cache_alloc+0x5b/0x310 [ 1596.033285] __kernfs_new_node+0xd4/0x860 [ 1596.034155] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1596.035167] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1596.036193] ? wait_for_completion_io+0x270/0x270 [ 1596.037209] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1596.038310] kernfs_new_node+0x18d/0x250 [ 1596.039187] __kernfs_create_file+0x51/0x350 [ 1596.040125] sysfs_add_file_mode_ns+0x221/0x560 [ 1596.041116] sysfs_merge_group+0x198/0x320 [ 1596.042011] ? sysfs_update_group+0x30/0x30 [ 1596.042936] ? kernfs_put+0x31/0x50 03:05:55 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x82, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:05:55 executing program 0: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) 03:05:55 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x6c, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:05:55 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x28, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:05:55 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r2, &(0x7f0000000180)=""/198, 0xc6) recvfrom$unix(r2, &(0x7f0000000100)=""/145, 0x91, 0x10020, &(0x7f00000001c0)=@abs={0x0, 0x0, 0x4e20}, 0x6e) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 03:05:55 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x3e, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:05:56 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 48) 03:05:56 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x38, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1596.043720] dpm_sysfs_add+0x249/0x290 [ 1596.044869] device_add+0xa06/0x1c50 [ 1596.045668] ? devlink_add_symlinks+0x970/0x970 [ 1596.046664] device_create_groups_vargs+0x207/0x280 [ 1596.047729] device_create+0xdc/0x120 [ 1596.048534] ? device_create_groups_vargs+0x280/0x280 [ 1596.049618] ? init_timer_key+0x12a/0x240 [ 1596.050491] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1596.051523] mac80211_hwsim_new_radio+0x376/0x4290 [ 1596.052557] ? ____sys_sendmsg+0x70d/0x870 [ 1596.053443] ? ___sys_sendmsg+0xf3/0x170 [ 1596.054293] ? __sys_sendmsg+0xe5/0x1b0 [ 1596.055138] ? do_syscall_64+0x33/0x40 [ 1596.055961] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1596.057078] ? lock_acquire+0x197/0x470 [ 1596.057912] ? create_object.isra.0+0x3ad/0xa20 [ 1596.058901] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1596.059891] ? __kmalloc+0x16e/0x390 [ 1596.060683] hwsim_new_radio_nl+0x991/0x1080 [ 1596.061613] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1596.062710] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1596.064098] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1596.065468] genl_family_rcv_msg_doit+0x22d/0x330 [ 1596.066482] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1596.067883] ? cap_capable+0x1cd/0x230 [ 1596.068714] ? ns_capable+0xe2/0x110 [ 1596.069500] genl_rcv_msg+0x36a/0x5a0 [ 1596.070308] ? genl_get_cmd+0x480/0x480 03:05:56 executing program 0: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) [ 1596.071158] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1596.072437] ? lock_release+0x680/0x680 [ 1596.073271] ? netlink_deliver_tap+0xf4/0xcc0 [ 1596.074224] netlink_rcv_skb+0x14b/0x430 [ 1596.075093] ? genl_get_cmd+0x480/0x480 [ 1596.075931] ? netlink_ack+0xab0/0xab0 [ 1596.076757] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1596.077718] ? is_vmalloc_addr+0x7b/0xb0 [ 1596.078572] genl_rcv+0x24/0x40 [ 1596.079268] netlink_unicast+0x54e/0x800 [ 1596.080125] ? netlink_attachskb+0x870/0x870 [ 1596.081060] netlink_sendmsg+0x90f/0xe00 [ 1596.081918] ? netlink_unicast+0x800/0x800 [ 1596.082814] ? netlink_unicast+0x800/0x800 [ 1596.083718] __sock_sendmsg+0x154/0x190 [ 1596.084552] ____sys_sendmsg+0x70d/0x870 [ 1596.085412] ? sock_write_iter+0x3d0/0x3d0 [ 1596.086303] ? do_recvmmsg+0x6d0/0x6d0 [ 1596.087142] ? lock_downgrade+0x6d0/0x6d0 [ 1596.088014] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1596.089131] ___sys_sendmsg+0xf3/0x170 [ 1596.089964] ? sendmsg_copy_msghdr+0x160/0x160 [ 1596.090927] ? __fget_files+0x2cf/0x520 [ 1596.091769] ? lock_downgrade+0x6d0/0x6d0 [ 1596.092645] ? find_held_lock+0x2c/0x110 [ 1596.093508] ? __fget_files+0x2f8/0x520 [ 1596.094352] ? __fget_light+0xea/0x290 [ 1596.095186] __sys_sendmsg+0xe5/0x1b0 [ 1596.095987] ? __sys_sendmsg_sock+0x40/0x40 [ 1596.096892] ? rcu_read_lock_any_held+0x75/0xa0 [ 1596.097900] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1596.099012] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1596.100096] do_syscall_64+0x33/0x40 [ 1596.100877] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1596.101969] RIP: 0033:0x7fdcf09cab19 [ 1596.102753] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1596.106625] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1596.108244] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1596.109744] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1596.111264] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1596.112770] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1596.114279] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 [ 1596.126082] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. 03:05:56 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 49) 03:05:56 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r1, &(0x7f0000000180)=""/198, 0xc6) bind$unix(r1, &(0x7f0000000100)=@abs={0x0, 0x0, 0x4e23}, 0x6e) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) getdents(r1, &(0x7f0000000280)=""/27, 0x1b) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) connect$unix(0xffffffffffffffff, &(0x7f00000002c0)=@abs={0x0, 0x0, 0x4e23}, 0x6e) r2 = socket$unix(0x1, 0x5, 0x0) connect$unix(r2, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 03:05:56 executing program 0: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) 03:05:56 executing program 0: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) 03:05:56 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) preadv(r1, &(0x7f0000001780)=[{&(0x7f0000000000)=""/7, 0x7}, {&(0x7f0000000280)=""/246, 0xf6}, {&(0x7f0000000380)=""/120, 0x78}, {&(0x7f0000000400)=""/52, 0x34}, {&(0x7f0000000440)=""/254, 0xfe}, {&(0x7f0000000540)=""/4096, 0x1000}, {&(0x7f0000001540)=""/153, 0x99}, {&(0x7f0000001600)=""/9, 0x9}, {&(0x7f0000001640)=""/207, 0xcf}, {&(0x7f0000001740)=""/17, 0x11}], 0xa, 0xbf, 0xbf1) getdents(r2, &(0x7f0000000180)=""/198, 0xc6) connect$unix(r2, &(0x7f0000000100)=@abs={0x3, 0x0, 0x4e32}, 0xfffffffffffffe3c) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_CONNECT(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="050000000000000000000200000008000300", @ANYRES32=r5, @ANYBLOB='\f\x00@'], 0x30}}, 0x0) sendmsg$NL80211_CMD_LEAVE_MESH(r2, &(0x7f0000001900)={&(0x7f0000001840)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f00000018c0)={&(0x7f0000001880)={0x20, r4, 0x1, 0x70bd28, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x80000001, 0x4d}}}}, ["", "", "", ""]}, 0x20}}, 0x4000000) 03:05:56 executing program 0: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) 03:05:56 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x41, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1596.492209] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1596.571343] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. [ 1596.775646] FAULT_INJECTION: forcing a failure. [ 1596.775646] name failslab, interval 1, probability 0, space 0, times 0 [ 1596.778399] CPU: 0 PID: 9242 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1596.779957] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1596.781840] Call Trace: [ 1596.782443] dump_stack+0x107/0x167 [ 1596.783287] should_fail.cold+0x5/0xa [ 1596.784159] ? __kernfs_new_node+0xd4/0x860 [ 1596.785143] should_failslab+0x5/0x20 [ 1596.786010] kmem_cache_alloc+0x5b/0x310 [ 1596.786941] __kernfs_new_node+0xd4/0x860 [ 1596.787899] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1596.788977] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1596.790074] ? wait_for_completion_io+0x270/0x270 [ 1596.791176] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1596.792373] kernfs_new_node+0x18d/0x250 [ 1596.793298] __kernfs_create_file+0x51/0x350 [ 1596.794302] sysfs_add_file_mode_ns+0x221/0x560 [ 1596.795373] sysfs_merge_group+0x198/0x320 [ 1596.796333] ? sysfs_update_group+0x30/0x30 [ 1596.797326] ? kernfs_put+0x31/0x50 [ 1596.798165] dpm_sysfs_add+0x249/0x290 [ 1596.799064] device_add+0xa06/0x1c50 [ 1596.799918] ? devlink_add_symlinks+0x970/0x970 [ 1596.800986] device_create_groups_vargs+0x207/0x280 [ 1596.802120] device_create+0xdc/0x120 [ 1596.803004] ? device_create_groups_vargs+0x280/0x280 [ 1596.804172] ? init_timer_key+0x12a/0x240 [ 1596.805113] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1596.806210] mac80211_hwsim_new_radio+0x376/0x4290 [ 1596.807327] ? ____sys_sendmsg+0x70d/0x870 [ 1596.808285] ? ___sys_sendmsg+0xf3/0x170 [ 1596.809200] ? __sys_sendmsg+0xe5/0x1b0 [ 1596.810099] ? do_syscall_64+0x33/0x40 [ 1596.810985] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1596.812191] ? lock_acquire+0x197/0x470 [ 1596.813094] ? create_object.isra.0+0x3ad/0xa20 [ 1596.814155] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1596.815223] ? __kmalloc+0x16e/0x390 [ 1596.816071] hwsim_new_radio_nl+0x991/0x1080 [ 1596.817068] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1596.818248] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1596.819746] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1596.821230] genl_family_rcv_msg_doit+0x22d/0x330 [ 1596.822332] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1596.823834] ? cap_capable+0x1cd/0x230 [ 1596.824727] ? ns_capable+0xe2/0x110 [ 1596.825571] genl_rcv_msg+0x36a/0x5a0 [ 1596.826441] ? genl_get_cmd+0x480/0x480 [ 1596.827356] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1596.828528] ? lock_release+0x680/0x680 [ 1596.829434] ? netlink_deliver_tap+0xf4/0xcc0 [ 1596.830449] netlink_rcv_skb+0x14b/0x430 [ 1596.831380] ? genl_get_cmd+0x480/0x480 [ 1596.832288] ? netlink_ack+0xab0/0xab0 [ 1596.833179] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1596.834216] ? is_vmalloc_addr+0x7b/0xb0 [ 1596.835146] genl_rcv+0x24/0x40 [ 1596.835897] netlink_unicast+0x54e/0x800 [ 1596.836819] ? netlink_attachskb+0x870/0x870 [ 1596.837822] netlink_sendmsg+0x90f/0xe00 [ 1596.838750] ? netlink_unicast+0x800/0x800 [ 1596.839731] ? netlink_unicast+0x800/0x800 [ 1596.840688] __sock_sendmsg+0x154/0x190 [ 1596.841592] ____sys_sendmsg+0x70d/0x870 [ 1596.842521] ? sock_write_iter+0x3d0/0x3d0 [ 1596.843485] ? do_recvmmsg+0x6d0/0x6d0 [ 1596.844377] ? lock_downgrade+0x6d0/0x6d0 [ 1596.845321] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1596.846510] ___sys_sendmsg+0xf3/0x170 [ 1596.847402] ? sendmsg_copy_msghdr+0x160/0x160 [ 1596.848438] ? __fget_files+0x2cf/0x520 [ 1596.849338] ? lock_downgrade+0x6d0/0x6d0 [ 1596.850279] ? find_held_lock+0x2c/0x110 [ 1596.851221] ? __fget_files+0x2f8/0x520 [ 1596.852126] ? __fget_light+0xea/0x290 [ 1596.853018] __sys_sendmsg+0xe5/0x1b0 [ 1596.853881] ? __sys_sendmsg_sock+0x40/0x40 [ 1596.854862] ? rcu_read_lock_any_held+0x75/0xa0 [ 1596.855942] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1596.857132] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1596.858304] do_syscall_64+0x33/0x40 [ 1596.859157] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1596.860317] RIP: 0033:0x7fdcf09cab19 [ 1596.861169] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1596.865338] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1596.867066] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1596.868685] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1596.870298] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1596.871920] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1596.873530] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 [ 1596.930994] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1597.257032] netlink: 'syz-executor.3': attribute type 64 has an invalid length. [ 1597.258705] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. 03:06:14 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000003c0)) socket$inet6_udplite(0xa, 0x2, 0x88) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) r1 = accept$unix(r0, 0x0, 0x0) r2 = socket$unix(0x1, 0x5, 0x0) connect$unix(r2, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) r3 = syz_open_procfs(0x0, &(0x7f0000000100)='net/llc/core\x00') connect$unix(r1, &(0x7f0000000400)=@file={0x0, './file0\x00'}, 0x6e) readv(r3, &(0x7f0000000380)=[{&(0x7f0000000140)=""/232, 0xe8}, {&(0x7f0000000240)=""/195, 0xc3}, {&(0x7f0000000340)=""/46, 0x20}], 0x1) 03:06:14 executing program 0: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) 03:06:14 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x3a, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:06:14 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x83, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:06:14 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x6f, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:06:14 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x38, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:06:14 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 50) 03:06:14 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x47, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1614.156717] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 03:06:14 executing program 0: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) 03:06:14 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x84, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1614.287455] perf: interrupt took too long (7717 > 7713), lowering kernel.perf_event_max_sample_rate to 25000 03:06:14 executing program 0: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) 03:06:14 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) r1 = accept$unix(r0, 0x0, 0x0) socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000100)=@abs={0x1, 0x0, 0x4e21}, 0x6e) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r2, &(0x7f0000000180)=""/198, 0xc6) connect$unix(r2, &(0x7f0000000000)=@file={0x1, './file1\x00'}, 0x6e) syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_TIMEOUT={0xb, 0x1, 0x0, 0x0, 0xa, &(0x7f0000000280), 0x1, 0x1, 0x1}, 0x8) [ 1614.372503] perf: interrupt took too long (9675 > 9646), lowering kernel.perf_event_max_sample_rate to 20000 03:06:14 executing program 0: perf_event_open(&(0x7f0000000480)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) 03:06:14 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x70, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1614.492414] perf: interrupt took too long (12120 > 12093), lowering kernel.perf_event_max_sample_rate to 16000 [ 1614.516836] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. 03:06:14 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x3e, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:06:14 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) 03:06:14 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) 03:06:14 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) 03:06:14 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) 03:06:14 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) [ 1614.678260] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. 03:06:14 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) 03:06:14 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x3a, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1614.781426] FAULT_INJECTION: forcing a failure. [ 1614.781426] name failslab, interval 1, probability 0, space 0, times 0 [ 1614.784026] CPU: 0 PID: 9283 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1614.785578] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1614.787468] Call Trace: [ 1614.788083] dump_stack+0x107/0x167 [ 1614.788916] should_fail.cold+0x5/0xa [ 1614.789785] ? create_object.isra.0+0x3a/0xa20 [ 1614.790834] should_failslab+0x5/0x20 [ 1614.791723] kmem_cache_alloc+0x5b/0x310 [ 1614.792657] create_object.isra.0+0x3a/0xa20 [ 1614.793650] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1614.794808] kmem_cache_alloc+0x159/0x310 [ 1614.795769] __kernfs_new_node+0xd4/0x860 [ 1614.796721] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1614.797809] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1614.798906] ? wait_for_completion_io+0x270/0x270 [ 1614.800015] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1614.801231] kernfs_new_node+0x18d/0x250 [ 1614.802167] __kernfs_create_file+0x51/0x350 [ 1614.803189] sysfs_add_file_mode_ns+0x221/0x560 [ 1614.804265] sysfs_merge_group+0x198/0x320 [ 1614.805232] ? sysfs_update_group+0x30/0x30 [ 1614.806222] ? kernfs_put+0x31/0x50 [ 1614.807060] dpm_sysfs_add+0x249/0x290 [ 1614.807955] device_add+0xa06/0x1c50 [ 1614.808815] ? devlink_add_symlinks+0x970/0x970 [ 1614.809889] device_create_groups_vargs+0x207/0x280 [ 1614.811034] device_create+0xdc/0x120 [ 1614.811915] ? device_create_groups_vargs+0x280/0x280 [ 1614.813092] ? init_timer_key+0x12a/0x240 [ 1614.814048] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1614.815173] mac80211_hwsim_new_radio+0x376/0x4290 [ 1614.816295] ? ____sys_sendmsg+0x70d/0x870 [ 1614.817254] ? ___sys_sendmsg+0xf3/0x170 [ 1614.818182] ? __sys_sendmsg+0xe5/0x1b0 [ 1614.819082] ? do_syscall_64+0x33/0x40 [ 1614.819978] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1614.821192] ? lock_acquire+0x197/0x470 [ 1614.822096] ? create_object.isra.0+0x3ad/0xa20 [ 1614.823170] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1614.824235] ? __kmalloc+0x16e/0x390 [ 1614.825090] hwsim_new_radio_nl+0x991/0x1080 [ 1614.826098] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1614.827299] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1614.828800] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1614.830292] genl_family_rcv_msg_doit+0x22d/0x330 [ 1614.831402] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1614.832898] ? cap_capable+0x1cd/0x230 [ 1614.833797] ? ns_capable+0xe2/0x110 [ 1614.834650] genl_rcv_msg+0x36a/0x5a0 [ 1614.835534] ? genl_get_cmd+0x480/0x480 [ 1614.836437] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1614.837616] ? lock_release+0x680/0x680 [ 1614.838522] ? netlink_deliver_tap+0xf4/0xcc0 [ 1614.839557] netlink_rcv_skb+0x14b/0x430 [ 1614.840485] ? genl_get_cmd+0x480/0x480 [ 1614.841388] ? netlink_ack+0xab0/0xab0 [ 1614.842283] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1614.843330] ? is_vmalloc_addr+0x7b/0xb0 [ 1614.844262] genl_rcv+0x24/0x40 [ 1614.845016] netlink_unicast+0x54e/0x800 [ 1614.845943] ? netlink_attachskb+0x870/0x870 [ 1614.846956] netlink_sendmsg+0x90f/0xe00 [ 1614.847905] ? netlink_unicast+0x800/0x800 [ 1614.848878] ? netlink_unicast+0x800/0x800 [ 1614.849839] __sock_sendmsg+0x154/0x190 [ 1614.850746] ____sys_sendmsg+0x70d/0x870 [ 1614.851684] ? sock_write_iter+0x3d0/0x3d0 [ 1614.852642] ? do_recvmmsg+0x6d0/0x6d0 [ 1614.853535] ? lock_downgrade+0x6d0/0x6d0 [ 1614.854482] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1614.855690] ___sys_sendmsg+0xf3/0x170 [ 1614.856580] ? sendmsg_copy_msghdr+0x160/0x160 [ 1614.857620] ? __fget_files+0x2cf/0x520 [ 1614.858520] ? lock_downgrade+0x6d0/0x6d0 [ 1614.859473] ? find_held_lock+0x2c/0x110 [ 1614.860408] ? __fget_files+0x2f8/0x520 [ 1614.861320] ? __fget_light+0xea/0x290 [ 1614.862225] __sys_sendmsg+0xe5/0x1b0 [ 1614.863091] ? __sys_sendmsg_sock+0x40/0x40 [ 1614.864084] ? rcu_read_lock_any_held+0x75/0xa0 [ 1614.865161] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1614.866365] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1614.867545] do_syscall_64+0x33/0x40 [ 1614.868394] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1614.869562] RIP: 0033:0x7fdcf09cab19 [ 1614.870409] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1614.874607] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1614.876364] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1614.877990] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1614.879609] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1614.881234] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1614.882864] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 [ 1614.995176] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 03:06:15 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 51) 03:06:15 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) 03:06:15 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x48, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:06:15 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x85, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:06:15 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) 03:06:15 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) [ 1615.221736] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. 03:06:15 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(0xffffffffffffffff, &(0x7f0000000180)=""/198, 0xc6) [ 1615.290255] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1615.408824] FAULT_INJECTION: forcing a failure. [ 1615.408824] name failslab, interval 1, probability 0, space 0, times 0 [ 1615.410164] CPU: 1 PID: 9326 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1615.410947] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1615.411902] Call Trace: [ 1615.412231] dump_stack+0x107/0x167 [ 1615.412647] should_fail.cold+0x5/0xa [ 1615.413090] ? __kernfs_new_node+0xd4/0x860 [ 1615.413589] should_failslab+0x5/0x20 [ 1615.414026] kmem_cache_alloc+0x5b/0x310 [ 1615.414497] __kernfs_new_node+0xd4/0x860 [ 1615.414974] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1615.415528] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1615.416081] ? wait_for_completion_io+0x270/0x270 [ 1615.416632] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1615.417237] kernfs_new_node+0x18d/0x250 [ 1615.417703] __kernfs_create_file+0x51/0x350 [ 1615.418208] sysfs_add_file_mode_ns+0x221/0x560 [ 1615.418746] sysfs_merge_group+0x198/0x320 [ 1615.419235] ? sysfs_update_group+0x30/0x30 [ 1615.419731] ? kernfs_put+0x31/0x50 [ 1615.420157] dpm_sysfs_add+0x249/0x290 [ 1615.420602] device_add+0xa06/0x1c50 [ 1615.421033] ? devlink_add_symlinks+0x970/0x970 [ 1615.421573] device_create_groups_vargs+0x207/0x280 [ 1615.422145] device_create+0xdc/0x120 [ 1615.422586] ? device_create_groups_vargs+0x280/0x280 [ 1615.423181] ? init_timer_key+0x12a/0x240 [ 1615.423661] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1615.424220] mac80211_hwsim_new_radio+0x376/0x4290 [ 1615.424782] ? ____sys_sendmsg+0x70d/0x870 [ 1615.425263] ? ___sys_sendmsg+0xf3/0x170 [ 1615.425735] ? __sys_sendmsg+0xe5/0x1b0 [ 1615.426190] ? do_syscall_64+0x33/0x40 [ 1615.426636] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1615.427258] ? lock_acquire+0x197/0x470 [ 1615.427712] ? create_object.isra.0+0x3ad/0xa20 [ 1615.428250] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1615.428786] ? __kmalloc+0x16e/0x390 [ 1615.429214] hwsim_new_radio_nl+0x991/0x1080 [ 1615.429723] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1615.430323] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1615.431079] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1615.431836] genl_family_rcv_msg_doit+0x22d/0x330 [ 1615.432394] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1615.433152] ? cap_capable+0x1cd/0x230 [ 1615.433610] ? ns_capable+0xe2/0x110 [ 1615.434041] genl_rcv_msg+0x36a/0x5a0 [ 1615.434478] ? genl_get_cmd+0x480/0x480 [ 1615.434936] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1615.435536] ? lock_release+0x680/0x680 [ 1615.435993] ? netlink_deliver_tap+0xf4/0xcc0 [ 1615.436508] netlink_rcv_skb+0x14b/0x430 [ 1615.436971] ? genl_get_cmd+0x480/0x480 [ 1615.437431] ? netlink_ack+0xab0/0xab0 [ 1615.437883] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1615.438406] ? is_vmalloc_addr+0x7b/0xb0 [ 1615.438876] genl_rcv+0x24/0x40 [ 1615.439265] netlink_unicast+0x54e/0x800 [ 1615.439733] ? netlink_attachskb+0x870/0x870 [ 1615.440242] netlink_sendmsg+0x90f/0xe00 [ 1615.440713] ? netlink_unicast+0x800/0x800 [ 1615.441207] ? netlink_unicast+0x800/0x800 [ 1615.441691] __sock_sendmsg+0x154/0x190 [ 1615.442153] ____sys_sendmsg+0x70d/0x870 [ 1615.442629] ? sock_write_iter+0x3d0/0x3d0 [ 1615.443115] ? do_recvmmsg+0x6d0/0x6d0 [ 1615.443568] ? lock_downgrade+0x6d0/0x6d0 [ 1615.444049] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1615.444653] ___sys_sendmsg+0xf3/0x170 [ 1615.445103] ? sendmsg_copy_msghdr+0x160/0x160 [ 1615.445628] ? __fget_files+0x2cf/0x520 [ 1615.446086] ? lock_downgrade+0x6d0/0x6d0 [ 1615.446562] ? find_held_lock+0x2c/0x110 [ 1615.447033] ? __fget_files+0x2f8/0x520 [ 1615.447500] ? __fget_light+0xea/0x290 [ 1615.447953] __sys_sendmsg+0xe5/0x1b0 [ 1615.448388] ? __sys_sendmsg_sock+0x40/0x40 [ 1615.448883] ? rcu_read_lock_any_held+0x75/0xa0 [ 1615.449421] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1615.450022] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1615.450613] do_syscall_64+0x33/0x40 [ 1615.451040] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1615.451639] RIP: 0033:0x7fdcf09cab19 [ 1615.452068] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1615.454171] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1615.455047] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1615.455877] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1615.456694] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1615.457512] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1615.458334] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 [ 1615.494274] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 03:06:15 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x71, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1632.519946] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. 03:06:32 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x72, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:06:32 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(0xffffffffffffffff, &(0x7f0000000180)=""/198, 0xc6) 03:06:32 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x41, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:06:32 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x3e, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:06:32 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x4c, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:06:32 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xf0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:06:32 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 52) 03:06:32 executing program 3: ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f00000476c0)={0x0, 0x0, "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", "a0cc50229371e4ca34ca2c229b84dfbf5fec2a52dc6cfdde79eeb091ccb5b028364c29884b704db5c302844ce543912c96e9629b09fd1615bfef8088f1de2ea06202cc2b752a62f8e4039cad6269b2a403a83168cff49380a0da7103769325071b8f19d60f9d3596b29e218a29a7e1877e464247b4e883e7593ec9a9d1453ca811aba72c4a20c474b3fa1dabccc2e9b2977232d825243d6b6c920f76423dee0bbf5519f549cdf6a15e27d186fa3830dff1a065c620714c255ccfab96ecc970fff6ed7bc073296628d0eaa3db7ff19b9ed225437abe3028494c52481519cd1ec56afcd1c194aedc10a427e5cfb940a79345415cc27211faeb7204367611cf8fdf12486fc7b59b0af2038ebc5d7bea9b4338ec331938b8b02db4e67500cb1b6ad204dd8c097d12a761b4a419d5ba27c8ee3476454f740683f34d74f255d703f8a715bec970242cb6523cdc0bdf72baa1b5379b34c9b682c746a6b34576ee551c67871e8d1609e1debe0de42124cc9162cfed58cdc7200e6ba8f7a0a17ac8ee59a9b90e39f219131f7c3148a84fce2ee565512160de6bd6088a40ba43bf6209a39d98ef3cec93969b78e05e364fcf0c2a80eedf5204d73740953b8094312f7b6e3b1f8ed66c6483dc93c0e067bbba40ee22d4cf76c69b95d574427bcf65511acb214c548c26b104b15395bce49866c2d6b481feffa935a4fa6087c5e36145f34834b50e40ff15807ce636ee551387c65237f64157932886fb7611260b2cc70f3ce9b54361261664c0d70208066e56d72e5fe5c52902aef92da7f00763854f938c50702d2bbbcec8e338ee89119d7b9d97594cb6411c58fb1938e5249d159edd0f418187bec73b9b4dfb11d2d6e0face147c54b1706a8206c057acbe75edd97cba981b16e019376ec42faa7cec86bd591af0921caa42ef3029df6bb1d19a2dfdce47671d4dd609cdcfec8ddd67a52915aea746ca580ce126173c535162ade3f514460f07b662a20dcdf2345d0abdd91002ec8262d58a54e86b35d1898a3801f6e8ffce7cfbc1e76009896f5f269c283bcc62937e2cb14bee701de5a43227d654ce95099bf449772c455987594bdd9a76d239d51ad5617062a6d8b6e28542dcf8c648257101cbbd8faecb60b4018b1d63ae0f0ef9bd20563eae0c294a1d203b759d985bb687beb08b0ad2cfd6d71cc6f726d292cdef9dcdc9b4553d24ff226d0a7da9a2bc7ef6b762ee1cc6a28118ff3920482db4a1f67febc801e286d3a1fc65a11859e0bbee7c2a6874fcc6933014a26aee0f6166551fbb6211a39cd1c38ab5002faf5b8dce6fa68265bc76914354cfb206e39ce70459d013759fd35356fb467c36c5d4e161eebfe5252074762e3e45c4019eddcfd7710db5c592d5d7d2ab32babcfbbb54ef9e74649c7e7ad95866e65c39212f5a6797efea4943b21f89a6cbd96552d06bc048e767507c1cf4023400d5bc745c9fcb80b7c280d91c8a7a5808b1f1c8ab8639e44df566b91d9d3f83ca1a9a189b389c609204f047301a53a5e985fb639a206f24089243c90ee383e312291e975b60bd62abeb9298b2381c0f0e2bdbe0d2cd041e49afea44933787e9bf4273ebfa4fa77db3d8ff43d2ce48283b23d68c8fdbb85b40c2ca09e8f42a792ac486de83e26ae8aad2587c5f4ce3c4a1f2db1b3a1d341d02f4509ab5394d60210f4ce6f078e5ca89de6889598c2f216410338ea163229fa7cc244875b34e240fc2d0e8363e6467ae1791e3966250abf9dee0187ff60745353d5f417e5c942bc6234dd9a6fe441fc754cf4e4f140655352ec3566e05643466db7826aa58489e54731f30aadd4ce65f23baa1dfc9d8f74846e4c42bbf42d94eaaf6dde3d9648b5bf534549e36db214f82c7f043559e366bcae817145c20fc6a1b73506dcc428e724b18798f4c6b5e942678e8fb35b9d8b1a733b98ba4d8e9a80573ebe38fd292e24801f6b6333e67c52265ccc9d6137faf0767e5ecc60c362b7e39b4445debacd64b31cf4ab032f7094dec15270930a016c31f3d654293f5f27da12f537c12daeb7385a90ad8ebfdd25832749ad7a657ddcbb20965e73048b8a6a50b0a728b6941ac3ee82f98e30d68a8aeab1c17b0b3c6281cb1a424bb8ecf22145877c777f215e8ed427ed415c2a746e1fc1342e74a2cf6d2a966756eeaa22d1046e09369d6083b11603d735f3448dc7b4b7a00538f1b8a38f3120bcb0ccb84442f170d081dbc49e5c19302304f8f143cccb5b585974617f1f0a98dd54f86ec0141c99cbc8592a4eb17717bf40fe7b45e2670f7720e67d89ee9e54f9452c5e5a294ddfe69baad6d1c9059572590ab28de8f765ee8da44d410ac7df0188b5c2cdc836a0959de994a20031d89279f3a1cc66ace9703d531d1aeccefb9d53a894d16faf8abed42c9345b7a9e23a43fe0841553676f8b2106c75457760ff735acbc9cc5ac22c1669a51b6ad580c64e320b8e977d9539ac78c1839cec3e8f423d033b297a04690da774c07a0940e0c6660289e73a45a8b18e5f103285fb2f218b7f8e1963560a2085a79ddc3214c40f8c90bb669d310b4cde63bc9b2c4601206006d24f0ffc8256351ec736e3276737a235d68db9167b801fb9c6164b89a48658dee56bb294ae14bba94f197efedad9da4563b5056d0f2f1b356fb5a1dd6b05beb5fdb097eb995c781870848c63136f4768087815db5f6b1009232484f9b31743aa206c268daea43d07828aee35812670e241d20d8083fc4a8826134603d8591baae6d3336112675214a4b3e195b176a6001361230b2849eeafdeee61f760c4c44546ff9e33a016e6907bd0b8bb476bd571289659bc0a1716e0136a373654390625a6c2ed5c5007012bee8837ef5dffe70bc48daa1d0e6a69e978a6de22703fee30258f2efb634768c6a9a0e014aafc470e96d7c6edcb880d40d8242aa5294f99e6e16c1dc5e79f67a2524f94ba76d7aafaf184008af7beb8b6e9d1793ee05439d37b5e0a3085acee9e9dedf39cd5df0ac6eeb69fd10940e428c3e580d5dd74fcab49c1be4bfa6fa2dc4b639cd7d0af93766ab5509d248b152ba7b1a54923e0279bbaf9e8f65d3b2fbe654c54a80ebc088766fbc78ee71315bc168d13cb8a898540f66e6bc948dd2699399d3b0544d6d4619d5dd2aa9208e4dbf34308dadaedd4f039613109a6c320c078d473e4407b87523e3e657cb15454279b33afba340d3e93495f36ef49e3bbb8e04542c9a047eac28c43bc6d89a3142c08bd73c5430694c87b741858e13b0dbf91228908667e482f955bf617bd83b3de0c2111ef97f5c800cae199f2f4252d18bbadb4f0e35b5b188e6ef157625060fb3f4e8e13fcb3ead6246b887988af337930e32259f54656c3cab5a3a2e203fc0ed123e922be615e88e0420c9a019ef871f4f5fa44d55a15b811e6f2b998d8d36f6777b9ae0840b665b57aa1d2f35999dc529ae91c80c615fe19740064867ce4f5d4b0c6093e678afde3198065a3a2cc54c5957bfe9554cee8f60bcb7af86402865eeb7a960b039cd21225496c070a2165608fb62c4a2245dd685f3c9064b6dc43e4fdde36fb8415b7ce54cc1420ee5be6b2796930e0b4ef806546efbaeb947bd1dc36492b22cbe2d195bfb4dec4ebb7c8dfea43354be916a8299e8f30a2cfeaec9e0319f9cd3ab38f2f239f962e94142fbec4dc695b6d76e0a724ad940a0b154082e2d40929e97101eb6bcb515e737c4f73672dec13d3cfbf63ce7896d3f288bc200f05a299e3767c42e9b116fa5ada95bfc148941f057fe550b73fd8220eefc0a62f9b23946f4107142facea59007b35bf0c222075a33ba7f9c6059991ac1083bdcbc9c960caa9915c13a49611750b82e3d84dabd8392e79a482fa89a687cb903a466b597391f018bab447c5eaab305df9fbb34b45ae7a078772c26de71c35c91715c8da0c61be00d7515599cb947531904995dce2f41b8ca385d3a337369a6263d644f3ca65f5d5eed1102898022da57f173b9e01f73d802f786a56d7b9c7ab1be8c52e1310e950196a9825f3c39053c111e76a65548cf1cd94a040fa82bbbf536e7f00669a00b03fde13e787b5c3f595d5bc844114bbfd45a7c954f4729f74fce73c70e2a89c3b237c2759d1e1a229dea9077c10e2131bd848f16e9aae38e6b6c1a0d089e7063ad6eaaa240d4f279b6e6b108e7eff87cf7615870f3ab9fbaa743d201ee460895003823f8e48c5254166d025bf0fc78e6456ffc6869a0d73ecb6ccfb0c0d26b21ecbb12cfc28af09c086348b30b3894a11ffbd7de09ebe0aa7c5a399bb8bfc043f722945b5c780f88853f02259a0225fd774e7c5ec06b08a49e25642d4347de20ea623eb7755f39b5007efc4da58995efbe1ba4c089caa988c90e9bd46919ec94fa568d47150f91f282ac2050f4058fe51af460b0cecc00785419f48e2fe7b0c5b4689a8c13f46797e38ccaf5fb5461a76072f98ff8bf397a03beef0df5033e641bd0a769e40ac4b7f6f402c786a0950c5c9b2acca29bcce403cf892d4a6d471323f67ef2002bedde7ab832afc4e00c7bd6f848eb43f129faa8e42644a67fff1633b3166d582b7096f11a21933f2b41ffd2e8c191380d17145507c72bfa28643c14e0816c0e174a323adff511a017d1c02c5fb894efb086fbfe021582faff4806e319c97c6e109e3b9b3e7d41f6eb793fe0577c2e751e804b6542dc9931449b3bbfb197dd75112437e1220021b0d62e7868190bd920f1183c5a66349387c58a209b0397026b3dcf882784424f2e51b9640b277d6bb9d96c2264df3ac11710e69d5b304efd6a151f1a7cee77c3bd71a07afd12a2cdff7d9b8dd447dc069c5bb2c0947175820f1b9a906b7677cf2d68dc405ca27514e4808575768246e3f9953596a2061d8908dca008f622462f82933c63ed6dfb8d9b2ce6e31461a9391864ec1078b736c166a031825803ac6b55f13fd471af4965b58223c06564e130bdc8eef336945e5fb0532fb5fee57e88391b5921c1a4f76a17f1a5b69f54ecfeaf117b7f2fd602f969e2293de1af0afd71f27c40673b8abd270dcb457f6d406c87ff817a78035060bac87397b8679dcd95a92be1abbc1a007e4d4fefa3b1d2c0f41cf71a347ae8cd63108d21a0a3193fcc1c66a91c72e1a1ee4be84ce36020fa0eef94b187a082d9e4c861f2626604d4c33d0d5eebd78e0f6873babe40e01bbb0a9c918add3cca182c38339b0cd095818f314a71db3932fe4db8a3639e074be1e91afdd697e9ea8b247573082197d33be9897a508b03b7eb560954f522ebb075173359f1cb87f90e8202c3c970de57a58e7a0b4c8271462f80a01b34404711a26f93565aa418182d70793919b4672c67d053d54b8e616000fa7c3733848812c9f6802f7d183f96f79504d01f6fd2"}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000007d440)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r0}, {}, {r3}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0}, {}, {}, {0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r5}, {}, {}, {0x0, 0x0}, {}, {}, {}, {r4}], 0x0, "46dacd8396fe92"}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000007d440)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r13}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r11}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r11}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r6}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r7, r13}, {}, {}, {0x0, r8}, {}, {}, {0x0}, {r12}], 0x0, "46dacd8396fe92"}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100)={0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000057b00)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r11}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r14}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r10}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r12}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r9}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r16}, {}, {r19}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r17}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r11}], 0x80, "5fabd34a60e47f"}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000100)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000007d440)={0x0, [{0x0, r15}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r23}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r21}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r21}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r23}, {}, {}, {}, {}, {}, {}, {r22}], 0x0, "46dacd8396fe92"}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f00000486c0)={0x6, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r18}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r20}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r24}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r1, r5}, {r9}, {0x0, r23}], 0x3, "5e916a4fa99b51"}) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r25 = socket$unix(0x1, 0x5, 0x0) bind$unix(r25, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r25, 0x0) accept$unix(r25, 0x0, 0x0) r26 = socket$unix(0x1, 0x5, 0x0) connect$unix(r26, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 03:06:32 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(0xffffffffffffffff, &(0x7f0000000180)=""/198, 0xc6) 03:06:32 executing program 3: r0 = inotify_init1(0x80000) close_range(r0, 0xffffffffffffffff, 0x2) r1 = socket$unix(0x1, 0x5, 0x0) bind$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r1, 0x0) r2 = accept$unix(r1, 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)) r3 = socket$unix(0x1, 0x5, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000440)=ANY=[@ANYBLOB="010000f8ff00000018000000199b4b55d69c03afac272d421365c98ac939776a9aa3f088d41a4c341d89b43725935e7a1d0dce1d7451b2de336da5dfedd55df2aa5e24610018754d9a09b721e0fe65eab9b5", @ANYRES32=r2, @ANYRES32, @ANYRES32=0xee00, @ANYBLOB='./file0\x00']) fstat(r1, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) setxattr$trusted_overlay_nlink(&(0x7f00000004c0)='./file0\x00', &(0x7f0000000500), &(0x7f0000000540)={'L+', 0x8}, 0x16, 0x0) sendmsg$unix(r4, &(0x7f0000000400)={&(0x7f0000000140)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f0000000300)=[{&(0x7f00000001c0)="7f10", 0x2}, {&(0x7f0000000200)="8298ace6d432412facaee14327779903ae4e207edfc417f0cf769b1712546f10f4d956cba9ca9add87ed50f00933416aa146b30dd06d611b83dd96e889bafe4cba8e37d56c705b7f107a258a1aa71c82e1be1266742d141ae918e2348d3a84aced3b6b9131f23ec5062f76ff0e1c399095506d873cbdb7e77630369420b6bddf9b9dc3ed2ecb6d0aaced376a9a75f78c22eb0e6e710eeede1a20be7d396c9433ece348d52e7dab649601fff79961d000125e013558d7a9ea8e3bc0f044b644de22fabb54e24ad4c01e3e", 0xca}], 0x2, &(0x7f00000003c0)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0xee01, r5}}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee00}}}], 0x40}, 0x800) connect$unix(r3, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 03:06:32 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r0, 0x0, 0x0) [ 1632.789226] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. 03:06:32 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x4f, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:06:32 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r0, 0x0, 0x0) 03:06:32 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) r1 = accept$unix(r0, 0x0, 0x0) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r2, &(0x7f0000000180)=""/198, 0xc6) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000002140)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000140)=""/145, 0x91}, {&(0x7f0000000200)=""/166, 0xa6}, {&(0x7f00000002c0)}, {&(0x7f0000000300)=""/134, 0x86}, {&(0x7f00000003c0)=""/217, 0xd9}, {&(0x7f00000004c0)=""/89, 0x59}, {&(0x7f0000000540)=""/5, 0x5}, {&(0x7f0000000580)=""/124, 0x7c}, {&(0x7f0000000600)=""/25, 0x19}], 0x9, &(0x7f0000000700)=[@rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x108}}, {{&(0x7f0000000840)=@abs, 0x6e, &(0x7f0000000a80)=[{&(0x7f00000008c0)=""/136, 0x88}, {&(0x7f0000000980)=""/26, 0x1a}, {&(0x7f00000009c0)=""/81, 0x51}, {&(0x7f0000000a40)=""/23, 0x17}], 0x4, &(0x7f0000000ac0)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x68}}, {{&(0x7f0000000b40)=@abs, 0x6e, &(0x7f0000001dc0)=[{&(0x7f0000000bc0)=""/92, 0x5c}, {&(0x7f0000000c40)=""/4096, 0x1000}, {&(0x7f0000001c40)=""/180, 0xb4}, {&(0x7f0000001d00)=""/79, 0x4f}, {&(0x7f0000001d80)=""/18, 0x12}], 0x5}}, {{&(0x7f0000001e40)=@abs, 0x6e, &(0x7f0000001fc0)=[{&(0x7f0000001ec0)=""/186, 0xba}, {&(0x7f0000001f80)=""/21, 0x15}], 0x2, &(0x7f0000002000)=[@cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0}}}], 0x138}}], 0x4, 0x0, &(0x7f0000002240)={0x77359400}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000004980)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000004940)={&(0x7f0000002280)={0x2688, 0x30, 0x10, 0x70bd2b, 0x25dfdbfe, {0x17}, [@typed={0x8, 0x8c, 0x0, 0x0, @fd=r2}, @nested={0x11de, 0x2f, 0x0, 0x1, [@generic="ce0307f0786516e88ec0c1c071f21cd225543e0118084192dbe7a312333458c2babae47adbf983a01f5279ca881d83c99bbb6a78bc61531b2e2a5ec8ed92d4d2ee5dcfd35eaee32cdd0b2f683ecb28cb0b46c259763a677ffde38640f0234e07b38202837bbb8cb3d30031fc78ff1416c47ca7dad0f0c4cd", @typed={0xa, 0x5a, 0x0, 0x0, @str='\xe4/)%!\x00'}, @generic="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", @typed={0x14, 0x71, 0x0, 0x0, @ipv6=@private0}, @generic="1468b95adc76799a30c2c26eaa4fc2a4dfd1b9e3b8587f58d7b081638e1f3b72bd96f643bf206438dd3a9f3beb60a9ca419ab8d01a17b8b08d1b1e7371ef2dbd2b67eebad01bcef8dff5ccacc2676fae31d80dedb64cd2d7ca267da406326e3fff92e2110b6663976223a7fec77312bf8cadb644883bb2fe3ae32503de2c9f", @typed={0x8, 0x25, 0x0, 0x0, @u32=0x5}, @generic="b732ab4b445e4b6ce1b7b1ea87b5e2ff2182e3708c549a5c045b5536a11b031930212937602d91bdfb5411d3e16fd8362cfe40282c9cbbff2b75149de60030b090c9c7cd64eb9adacd78fe6371a949396109561b68800014728937969ee125adbead4a2948e4ef2e1b30067b7d6a3c0fe061411d233d241728e739f070f8741177269999024c08003a077cc6e340e5afcfe01cd8fe2b7093aafde74139f7bc21328fea689816bde1b7f49b22121ee8b5a1e249417e37a2977ab6cb"]}, @generic, @typed={0x1004, 0x19, 0x0, 0x0, @binary="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"}, @nested={0x24e, 0x6e, 0x0, 0x1, [@generic="9e761320da3e05d9eececa0101e6920dce69d902f3f340", @generic="b7e16529fe19a00a0c33a711790e6788a3355d51b9656365690ab3b114bdebed587e32a7c9852826068ea55e810dbc84149e948a7fa22a59247ac74ee96c067b5705b18fdbca515091de3e597caca6243f1312c082bed7af13dd7430391be131d458418fcbac4d43c94c8667f366b2a90c111a947a00d171fbd917996e3bc9c69ea9023d0c0157b5d73cfea51715b1497cd1265d2dc05dc978ea184b7c490224934c5b28ea57e1e996e8d220a262b3e17847af9d9329036507ddcab0caf68cbe524d2e83b53ea604564d49245645b8", @generic="40e8b727f8e9eb9183a2fe4c4dba75ed21cc8e99fa431c906b62116ce3bc53dcbb120f65659aa45c6b282ccbc97a803070194d6a0c557f13b88783c1fa469773ed0dce3fa546d98b784d87b6d03459be99afdf758101e27e2c91c35d30e6", @typed={0x8, 0x92, 0x0, 0x0, @fd=r1}, @typed={0x4, 0x50}, @typed={0x8, 0x58, 0x0, 0x0, @uid=0xffffffffffffffff}, @typed={0x8, 0x44, 0x0, 0x0, @ipv4=@multicast2}, @generic="0f5042564f4058d40442b26fc30624e2d048ee0808bb2608dd0e050c8efa435848645d2439171101c1c64079f6540d5674468bc936886e461503483e0a48b7934c36cfb747ed8dd6ae0b68890c6203110f1584b7da54b55a37218b3b06c742679d0199c07f9ed2781df2d2bd3fe7a4e246f46daa294a3940bc164c4ea10a8855cbd60215f23a6647a3ad0e96dbedce142eb06f645845c31d9818948e4a717ad116f07f68ae992b307375e603ebd781ef0a11789806d2bf7e887e9a1ff1cf5539540347dbdb7fa01bc8d95169f4bfd50f30a4fb22b234e0dcca5617e4fb97f9662fec6ab9ccab6daac95e"]}, @nested={0x1ce, 0x76, 0x0, 0x1, [@generic="87d7f5ed4a2441355036cbd0f148940fb20bef21b47992d9d56b7d55cefd3386506ef4d7a4b96d50ea19", @typed={0xc, 0x8, 0x0, 0x0, @u64}, @generic="505a3d72e69d35672017f60462794965e2764f1e2970dea1f82218e31dfb113a143ea1711a3318741ea58a165629d52dcdf4a55c5501a47045a5a903f07657dad01e35078307bbb9cb4074b5ca73a134528c39604f733456e37eb52de3ff88223867460fc17754357eb2c2d972c95f238dcd630f204d9cbfa854cc2e256c05e77455c9ba9f5cb536c1d8c2397182f263432087cae7da66bd7605e29c411ff8100c7eda453425479b90223f0a61bc56914c04f721e05f7cc869807c56770f4cbe26324d20d147f9a168860e9b8814b49f562eb4e0580c4eace4d321abd138ae4e1dda586de2f201724f5d1714f72b7fe21f3b2ab41d66", @typed={0x14, 0x25, 0x0, 0x0, @ipv6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @typed={0x14, 0x1a, 0x0, 0x0, @ipv6=@mcast1}, @typed={0x8, 0x33, 0x0, 0x0, @u32=0x5}, @generic="325d53e63e56f011352057fb456694921f114fde0adbf9b1ea4f45fcb9a903cd3c0887599b965eaefed815112d11cb3deb52e2e84a55d4786a972ac8a31a4d6d75d18d5ed143cfcf1b247b6545943679b4c67fba5aae599e15e790045ca9ed8daec43e7e04662787f98601987cb6"]}, @nested={0x68, 0x92, 0x0, 0x1, [@typed={0x8, 0x82, 0x0, 0x0, @uid=r3}, @generic="8a1ed1ec882c5019c5a75f060dc510689651adf34b473d35d1550539d04f3be4ddd9b24107fed8b4d909454b3440352824162db735b8c55f9974fee8493922ebbbfd6b68860ba19c72b5ea0234999a0bcfaa8ca28af44caf000bafa0"]}]}, 0x2688}, 0x1, 0x0, 0x0, 0x200d1}, 0x0) r4 = socket$unix(0x1, 0x5, 0x0) connect$unix(r4, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) [ 1632.849929] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 03:06:32 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x47, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:06:32 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r0, 0x0, 0x0) [ 1632.960313] FAULT_INJECTION: forcing a failure. [ 1632.960313] name failslab, interval 1, probability 0, space 0, times 0 [ 1632.961729] CPU: 0 PID: 9356 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1632.962591] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1632.963675] Call Trace: [ 1632.964006] dump_stack+0x107/0x167 [ 1632.964456] should_fail.cold+0x5/0xa [ 1632.964935] ? create_object.isra.0+0x3a/0xa20 [ 1632.965501] should_failslab+0x5/0x20 [ 1632.965977] kmem_cache_alloc+0x5b/0x310 [ 1632.966480] create_object.isra.0+0x3a/0xa20 [ 1632.967023] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1632.967653] kmem_cache_alloc+0x159/0x310 [ 1632.968168] __kernfs_new_node+0xd4/0x860 [ 1632.968679] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1632.969274] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1632.969864] ? wait_for_completion_io+0x270/0x270 [ 1632.970451] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1632.971093] kernfs_new_node+0x18d/0x250 [ 1632.971598] __kernfs_create_file+0x51/0x350 [ 1632.972138] sysfs_add_file_mode_ns+0x221/0x560 [ 1632.972718] sysfs_merge_group+0x198/0x320 [ 1632.973236] ? sysfs_update_group+0x30/0x30 [ 1632.973767] ? kernfs_put+0x31/0x50 [ 1632.974218] dpm_sysfs_add+0x249/0x290 [ 1632.974693] device_add+0xa06/0x1c50 [ 1632.975168] ? devlink_add_symlinks+0x970/0x970 [ 1632.975754] device_create_groups_vargs+0x207/0x280 [ 1632.976372] device_create+0xdc/0x120 [ 1632.976839] ? device_create_groups_vargs+0x280/0x280 [ 1632.977467] ? init_timer_key+0x12a/0x240 [ 1632.977991] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1632.978580] mac80211_hwsim_new_radio+0x376/0x4290 [ 1632.979179] ? ____sys_sendmsg+0x70d/0x870 [ 1632.979707] ? ___sys_sendmsg+0xf3/0x170 [ 1632.980200] ? __sys_sendmsg+0xe5/0x1b0 [ 1632.980679] ? do_syscall_64+0x33/0x40 [ 1632.981158] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1632.981806] ? lock_acquire+0x197/0x470 [ 1632.982287] ? create_object.isra.0+0x3ad/0xa20 [ 1632.982858] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1632.983430] ? __kmalloc+0x16e/0x390 [ 1632.983890] hwsim_new_radio_nl+0x991/0x1080 [ 1632.984425] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1632.985063] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1632.985863] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1632.986655] genl_family_rcv_msg_doit+0x22d/0x330 [ 1632.987241] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1632.988049] ? cap_capable+0x1cd/0x230 [ 1632.988531] ? ns_capable+0xe2/0x110 [ 1632.988984] genl_rcv_msg+0x36a/0x5a0 [ 1632.989444] ? genl_get_cmd+0x480/0x480 [ 1632.989933] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1632.990555] ? lock_release+0x680/0x680 [ 1632.991043] ? netlink_deliver_tap+0xf4/0xcc0 [ 1632.991596] netlink_rcv_skb+0x14b/0x430 [ 1632.992091] ? genl_get_cmd+0x480/0x480 [ 1632.992574] ? netlink_ack+0xab0/0xab0 [ 1632.993053] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1632.993603] ? is_vmalloc_addr+0x7b/0xb0 [ 1632.994099] genl_rcv+0x24/0x40 [ 1632.994500] netlink_unicast+0x54e/0x800 [ 1632.994995] ? netlink_attachskb+0x870/0x870 [ 1632.995548] netlink_sendmsg+0x90f/0xe00 [ 1632.996042] ? netlink_unicast+0x800/0x800 [ 1632.996561] ? netlink_unicast+0x800/0x800 [ 1632.997094] __sock_sendmsg+0x154/0x190 [ 1632.997584] ____sys_sendmsg+0x70d/0x870 [ 1632.998100] ? sock_write_iter+0x3d0/0x3d0 [ 1632.998612] ? do_recvmmsg+0x6d0/0x6d0 [ 1632.999087] ? lock_downgrade+0x6d0/0x6d0 [ 1632.999608] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1633.000243] ___sys_sendmsg+0xf3/0x170 [ 1633.000715] ? sendmsg_copy_msghdr+0x160/0x160 [ 1633.001269] ? __fget_files+0x2cf/0x520 [ 1633.001749] ? lock_downgrade+0x6d0/0x6d0 [ 1633.002248] ? find_held_lock+0x2c/0x110 [ 1633.002740] ? __fget_files+0x2f8/0x520 [ 1633.003226] ? __fget_light+0xea/0x290 [ 1633.003709] __sys_sendmsg+0xe5/0x1b0 [ 1633.004170] ? __sys_sendmsg_sock+0x40/0x40 [ 1633.004689] ? rcu_read_lock_any_held+0x75/0xa0 [ 1633.005261] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1633.005896] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1633.006522] do_syscall_64+0x33/0x40 [ 1633.006974] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1633.007604] RIP: 0033:0x7fdcf09cab19 [ 1633.008055] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1633.010284] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1633.011207] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1633.012098] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1633.012961] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1633.013822] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1633.014684] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 [ 1633.172910] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. 03:06:49 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x41, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:06:49 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x73, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:06:49 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) bind$unix(r0, &(0x7f00000012c0)=@file={0x0, './file0\x00'}, 0x6e) r1 = socket$unix(0x1, 0x5, 0x0) r2 = syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x1c5, 0x2, &(0x7f00000011c0)=[{&(0x7f0000000180)="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", 0x1000, 0x3}, {&(0x7f0000001180)="1cb9dfcaae260e524c8a1e59627c113fefcc080503a2cdba7181bc3b09e9ba5a36020c362d55d4d1b8902bb45f8b68de54f0f696d1e555", 0x37, 0x4}], 0x382020, &(0x7f0000001200)=ANY=[@ANYBLOB='hni,eu\x00\x00\x00\x00', @ANYRESDEC, @ANYBLOB=',measure,dont_hash,\x00']) ioctl$BTRFS_IOC_GET_SUPPORTED_FEATURES(r2, 0x80489439, &(0x7f0000001240)) connect$unix(r1, &(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e) 03:06:49 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) 03:06:49 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x111, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:06:49 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 53) 03:06:49 executing program 5: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x48, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 03:06:49 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x52, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1649.663459] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. 03:06:49 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r0, &(0x7f0000000180)=""/198, 0xc6) 03:06:49 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) r1 = socket$unix(0x1, 0x5, 0x0) connect$unix(r1, &(0x7f0000000100)=@file={0x1, './file0\x00'}, 0x6e) 03:06:49 executing program 4: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x55, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) 03:06:49 executing program 0: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x68, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1649.861701] FAULT_INJECTION: forcing a failure. [ 1649.861701] name failslab, interval 1, probability 0, space 0, times 0 [ 1649.864304] CPU: 0 PID: 9395 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1649.865872] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1649.867771] Call Trace: [ 1649.868373] dump_stack+0x107/0x167 [ 1649.869204] should_fail.cold+0x5/0xa [ 1649.870072] ? create_object.isra.0+0x3a/0xa20 [ 1649.871110] should_failslab+0x5/0x20 [ 1649.871980] kmem_cache_alloc+0x5b/0x310 [ 1649.872911] create_object.isra.0+0x3a/0xa20 [ 1649.873915] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1649.875071] kmem_cache_alloc+0x159/0x310 [ 1649.876032] __kernfs_new_node+0xd4/0x860 [ 1649.876983] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1649.878062] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1649.879154] ? wait_for_completion_io+0x270/0x270 [ 1649.880263] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1649.881458] kernfs_new_node+0x18d/0x250 [ 1649.882385] __kernfs_create_file+0x51/0x350 [ 1649.883391] sysfs_add_file_mode_ns+0x221/0x560 [ 1649.884462] sysfs_merge_group+0x198/0x320 [ 1649.885423] ? sysfs_update_group+0x30/0x30 [ 1649.886408] ? kernfs_put+0x31/0x50 [ 1649.887241] dpm_sysfs_add+0x249/0x290 [ 1649.888130] device_add+0xa06/0x1c50 [ 1649.888982] ? devlink_add_symlinks+0x970/0x970 [ 1649.890053] device_create_groups_vargs+0x207/0x280 [ 1649.891193] device_create+0xdc/0x120 [ 1649.892072] ? device_create_groups_vargs+0x280/0x280 [ 1649.893239] ? init_timer_key+0x12a/0x240 [ 1649.894193] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1649.895294] mac80211_hwsim_new_radio+0x376/0x4290 [ 1649.896412] ? ____sys_sendmsg+0x70d/0x870 [ 1649.897370] ? ___sys_sendmsg+0xf3/0x170 [ 1649.898289] ? __sys_sendmsg+0xe5/0x1b0 [ 1649.899184] ? do_syscall_64+0x33/0x40 [ 1649.900079] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1649.901286] ? lock_acquire+0x197/0x470 [ 1649.902185] ? create_object.isra.0+0x3ad/0xa20 [ 1649.903245] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1649.904314] ? __kmalloc+0x16e/0x390 [ 1649.905172] hwsim_new_radio_nl+0x991/0x1080 [ 1649.906183] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1649.907367] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1649.908871] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1649.910362] genl_family_rcv_msg_doit+0x22d/0x330 [ 1649.911465] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1649.912973] ? cap_capable+0x1cd/0x230 [ 1649.913876] ? ns_capable+0xe2/0x110 [ 1649.914736] genl_rcv_msg+0x36a/0x5a0 [ 1649.915610] ? genl_get_cmd+0x480/0x480 [ 1649.916512] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1649.917686] ? lock_release+0x680/0x680 [ 1649.918587] ? netlink_deliver_tap+0xf4/0xcc0 [ 1649.919622] netlink_rcv_skb+0x14b/0x430 [ 1649.920540] ? genl_get_cmd+0x480/0x480 [ 1649.921444] ? netlink_ack+0xab0/0xab0 [ 1649.922343] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1649.923384] ? is_vmalloc_addr+0x7b/0xb0 [ 1649.924321] genl_rcv+0x24/0x40 [ 1649.925068] netlink_unicast+0x54e/0x800 [ 1649.925997] ? netlink_attachskb+0x870/0x870 [ 1649.927005] netlink_sendmsg+0x90f/0xe00 [ 1649.927942] ? netlink_unicast+0x800/0x800 [ 1649.928921] ? netlink_unicast+0x800/0x800 [ 1649.929889] __sock_sendmsg+0x154/0x190 [ 1649.930794] ____sys_sendmsg+0x70d/0x870 [ 1649.931726] ? sock_write_iter+0x3d0/0x3d0 [ 1649.932692] ? do_recvmmsg+0x6d0/0x6d0 [ 1649.933582] ? lock_downgrade+0x6d0/0x6d0 [ 1649.934529] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1649.935737] ___sys_sendmsg+0xf3/0x170 [ 1649.936624] ? sendmsg_copy_msghdr+0x160/0x160 [ 1649.937669] ? __fget_files+0x2cf/0x520 [ 1649.938574] ? lock_downgrade+0x6d0/0x6d0 [ 1649.939519] ? find_held_lock+0x2c/0x110 [ 1649.940464] ? __fget_files+0x2f8/0x520 [ 1649.941379] ? __fget_light+0xea/0x290 [ 1649.942277] __sys_sendmsg+0xe5/0x1b0 [ 1649.943151] ? __sys_sendmsg_sock+0x40/0x40 [ 1649.944141] ? rcu_read_lock_any_held+0x75/0xa0 [ 1649.945219] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1649.946414] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1649.947604] do_syscall_64+0x33/0x40 [ 1649.948448] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1649.949612] RIP: 0033:0x7fdcf09cab19 [ 1649.950464] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1649.954655] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1649.956398] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1649.958027] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1649.959674] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1649.961300] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1649.962926] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 03:06:49 executing program 3: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = socket$unix(0x1, 0x1, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) listen(r0, 0x0) accept$unix(r0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='./file0\x00', &(0x7f0000000280), 0x1004000, &(0x7f00000002c0)={'trans=unix,', {[{@cache_none}, {@cache_fscache}, {@access_any}], [{@smackfsroot}]}}) socket$unix(0x1, 0x5, 0x0) r1 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/ieee80211', 0x0, 0x0) getdents(r2, &(0x7f0000000180)=""/198, 0xc6) r3 = eventfd2(0x6, 0x1) dup3(r2, r3, 0x80000) ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r1, 0x4008941a, &(0x7f0000000000)=0x2) 03:06:50 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x74, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1650.092049] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. 03:06:50 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 54) 03:06:50 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x300, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB="480000001d00210c600042710000000004"], 0x48}}, 0x0) [ 1650.263661] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1650.311455] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1650.552270] FAULT_INJECTION: forcing a failure. [ 1650.552270] name failslab, interval 1, probability 0, space 0, times 0 [ 1650.553678] CPU: 1 PID: 9422 Comm: syz-executor.2 Not tainted 5.10.237 #1 [ 1650.554466] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1650.555425] Call Trace: [ 1650.555739] dump_stack+0x107/0x167 [ 1650.556157] should_fail.cold+0x5/0xa [ 1650.556601] ? create_object.isra.0+0x3a/0xa20 [ 1650.557126] should_failslab+0x5/0x20 [ 1650.557568] kmem_cache_alloc+0x5b/0x310 [ 1650.558045] create_object.isra.0+0x3a/0xa20 [ 1650.558543] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1650.559139] kmem_cache_alloc+0x159/0x310 [ 1650.559636] __kernfs_new_node+0xd4/0x860 [ 1650.560115] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1650.560661] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1650.561214] ? wait_for_completion_io+0x270/0x270 [ 1650.561770] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1650.562378] kernfs_new_node+0x18d/0x250 [ 1650.562844] __kernfs_create_file+0x51/0x350 [ 1650.563347] sysfs_add_file_mode_ns+0x221/0x560 [ 1650.563895] sysfs_merge_group+0x198/0x320 [ 1650.564381] ? sysfs_update_group+0x30/0x30 [ 1650.564885] ? kernfs_put+0x31/0x50 [ 1650.565307] dpm_sysfs_add+0x249/0x290 [ 1650.565750] device_add+0xa06/0x1c50 [ 1650.566183] ? devlink_add_symlinks+0x970/0x970 [ 1650.566724] device_create_groups_vargs+0x207/0x280 [ 1650.567297] device_create+0xdc/0x120 [ 1650.567746] ? device_create_groups_vargs+0x280/0x280 [ 1650.568335] ? init_timer_key+0x12a/0x240 [ 1650.568814] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1650.569374] mac80211_hwsim_new_radio+0x376/0x4290 [ 1650.569933] ? ____sys_sendmsg+0x70d/0x870 [ 1650.570422] ? ___sys_sendmsg+0xf3/0x170 [ 1650.570887] ? __sys_sendmsg+0xe5/0x1b0 [ 1650.571343] ? do_syscall_64+0x33/0x40 [ 1650.571798] ? entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1650.572408] ? lock_acquire+0x197/0x470 [ 1650.572863] ? create_object.isra.0+0x3ad/0xa20 [ 1650.573403] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1650.573937] ? __kmalloc+0x16e/0x390 [ 1650.574366] hwsim_new_radio_nl+0x991/0x1080 [ 1650.574875] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1650.575471] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1650.576233] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1650.576989] genl_family_rcv_msg_doit+0x22d/0x330 [ 1650.577542] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1650.578296] ? cap_capable+0x1cd/0x230 [ 1650.578747] ? ns_capable+0xe2/0x110 [ 1650.579184] genl_rcv_msg+0x36a/0x5a0 [ 1650.579629] ? genl_get_cmd+0x480/0x480 [ 1650.580085] ? mac80211_hwsim_new_radio+0x4290/0x4290 [ 1650.580683] ? lock_release+0x680/0x680 [ 1650.581140] ? netlink_deliver_tap+0xf4/0xcc0 [ 1650.581659] netlink_rcv_skb+0x14b/0x430 [ 1650.582130] ? genl_get_cmd+0x480/0x480 [ 1650.582585] ? netlink_ack+0xab0/0xab0 [ 1650.583037] ? netlink_deliver_tap+0x1c4/0xcc0 [ 1650.583566] ? is_vmalloc_addr+0x7b/0xb0 [ 1650.584033] genl_rcv+0x24/0x40 [ 1650.584410] netlink_unicast+0x54e/0x800 [ 1650.584876] ? netlink_attachskb+0x870/0x870 [ 1650.585380] netlink_sendmsg+0x90f/0xe00 [ 1650.585847] ? netlink_unicast+0x800/0x800 [ 1650.586334] ? netlink_unicast+0x800/0x800 [ 1650.586823] __sock_sendmsg+0x154/0x190 [ 1650.587275] ____sys_sendmsg+0x70d/0x870 [ 1650.587750] ? sock_write_iter+0x3d0/0x3d0 [ 1650.588230] ? do_recvmmsg+0x6d0/0x6d0 [ 1650.588678] ? lock_downgrade+0x6d0/0x6d0 [ 1650.589155] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1650.589758] ___sys_sendmsg+0xf3/0x170 [ 1650.590205] ? sendmsg_copy_msghdr+0x160/0x160 [ 1650.590726] ? __fget_files+0x2cf/0x520 [ 1650.591184] ? lock_downgrade+0x6d0/0x6d0 [ 1650.591660] ? find_held_lock+0x2c/0x110 [ 1650.592133] ? __fget_files+0x2f8/0x520 [ 1650.592591] ? __fget_light+0xea/0x290 [ 1650.593038] __sys_sendmsg+0xe5/0x1b0 [ 1650.593472] ? __sys_sendmsg_sock+0x40/0x40 [ 1650.593963] ? rcu_read_lock_any_held+0x75/0xa0 [ 1650.594505] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1650.595106] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1650.595707] do_syscall_64+0x33/0x40 [ 1650.596137] entry_SYSCALL_64_after_hwframe+0x67/0xd1 [ 1650.596722] RIP: 0033:0x7fdcf09cab19 [ 1650.597149] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1650.599262] RSP: 002b:00007fdcedf40188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1650.600145] RAX: ffffffffffffffda RBX: 00007fdcf0addf60 RCX: 00007fdcf09cab19 [ 1650.600959] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1650.601774] RBP: 00007fdcedf401d0 R08: 0000000000000000 R09: 0000000000000000 [ 1650.602591] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1650.603408] R13: 00007ffc73e1a9cf R14: 00007fdcedf40300 R15: 0000000000022000 [ 1650.658706] netlink: 52 bytes leftover after parsing attributes in process `syz-executor.7'. VM DIAGNOSIS: 03:11:53 Registers: info registers vcpu 0 RAX=ffffffff83e91390 RBX=0000000000000000 RCX=ffffffff83e78f2c RDX=0000000000000000 RSI=0000000000000000 RDI=ffffffff83e91998 RBP=0000000000000000 RSP=ffffffff84e07e38 R8 =0000000000000001 R9 =ffff88806ce3c12b R10=ffffed100d9c7825 R11=0000000000000001 R12=0000000000000000 R13=ffffffff85678748 R14=0000000000000000 R15=dffffc0000000000 RIP=ffffffff83e9139e RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f88221b2010 CR3=000000001cc54000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000dd060a EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000006000000030000000200000000 XMM02=61746f7420636578650a0a0100010101 XMM03=657a696d696e696d20636578650d006c XMM04=78651100736465657320636578650a00 XMM05=00737472617473657220726f74756365 XMM06=206365786509006e6567206365786508 XMM07=69646e616320636578650e007a7a7566 XMM08=6e696d20636578650d006c61746f7420 XMM09=6465657320636578650a00657a696d69 XMM10=7473657220726f747563657865110073 XMM11=09006e65672063657865080073747261 XMM12=20636578650e007a7a75662063657865 XMM13=20636578650b006574616469646e6163 XMM14=616d7320636578650a00656761697274 XMM15=000073746e696820636578650a006873 info registers vcpu 1 RAX=ffffffff83e91390 RBX=0000000000000001 RCX=ffffffff83e78f2c RDX=0000000000000000 RSI=0000000000000000 RDI=ffffffff83e91998 RBP=0000000000000001 RSP=ffff888008987e70 R8 =0000000000000001 R9 =ffff88806cf3c12b R10=ffffed100d9e7825 R11=0000000000000001 R12=0000000000000001 R13=ffffffff85678748 R14=0000000000000000 R15=dffffc0000000000 RIP=ffffffff83e9139e RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fffd2adb478 CR3=000000001cc54000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=004802fe016c6c6f502e726567616e61 XMM02=fc41512a02fc0301039aff1b004702fe XMM03=00000606060301acf26161fc7d87debd XMM04=676169727420636578650b0073747261 XMM05=78650e007a7a75662063657865090065 XMM06=78650d006574616469646e6163206365 XMM07=6578650a00657a696d696e696d206365 XMM08=726f74756365786511006873616d7320 XMM09=20636578650b00737472617473657220 XMM10=7a756620636578650900656761697274 XMM11=74616469646e616320636578650e007a XMM12=657a696d696e696d20636578650d0065 XMM13=78650a0073746e696820636578650a00 XMM14=7420636578650a007364656573206365 XMM15=00006e6567206365786508006c61746f