a549cf27ca288cf80c72959b818b2ce80f1774dd5c1d051d3e20933819ab6529bf0c0a0f90e201d2b58f71908c5c61fc3c2ea0fc412d7dae47a1042c5bbdb21023935dacc855aa7919596f9793c81ab8964a5c41abf469c71b9ea2ebb89efb4d85c4123d8f0ab3876289124de03bd562ee025541dc765f864b4c2e1a2727462c4b206976f2173b3af344933d66c2ac1de70eafb7b9bfcedea41f9ae31f6cd7b38cd796c338b330d80f987b9f83a8f896adbe979f08fc913f8672b2bc5e796010f7a090e0843cb037051d76cee130fb8f5f6fa828c1fa21a7c6b8883aaa9b34653c22d45310b3766fec9430fc51bd7f7872e2bd1ed0948e68e15a63081d7bee3b123a77d3ac605ed42d18fb7d84a45732ac09c5a79d04064f71c01a35cc2a8226ddfcd8167ec9ee29b8b740afd45b77c4c67576ae25505135dcf33685a91f11b88513d0ac4dc787b269528faca1c19cff13e12106cd80e8af00b1e584addb8453c7aab064dbe29bbd6fc5cd9640e7a0444d0ac856e2c510c62ade7dc5e3e94c4360bbf15fd08959253cd3ed0e116a1c9a71244cb2caff325b6fd71b17f57df9c12653ac915f197c5eeae946d022220ef0d04686d027c2925283efab69c4bfe01d4901f33c8ce2adfeff4f5551cb16b6181b6a58c21b13a0bb1254a80092fc3a098fd5a0efed565b96a6ecf60cc35d8a98be6bee82230fb9021ea256ad0b445bdbb5dd9922aabb08e5566ca729fa9243351f845eb3c6a0311acbdff5106b57cb76274bf5a90144a397c265ad0ceec051b77e126c7fa6ce490e5c3a5178947aee7ffcb0ec03b4ec6885d827eb3bebf80c3ccbbcbdef5eb6f4ad615c735dee57ec4149e209eb2e5a78f522964c6610dac3936a3b880c81e0ffdadd03fee641a610605057195938e397c6569b6f092144e5897101b7328c4e38a0c6400049ccc47b3f2dced1140875784bb5df6faee00f358f0c82955785c9e097fd8cd5fe6f1d7093b5e28415dada4af5dc953c8ba49922cf1f9f42cfb3ec68f94b2d697d791243023984e14ada564e93ffa6910ec23f1a21173f8d59aebc3500b540d016799b11176f542f263654e8c89b9a41d95604da089a4d7ca11f3cfb8f58082805a25ba23bd5af65e3f077d8363842aed74067e72ae6d073b7a322eb6a504ba058a723268eda53657c321d3d36a28c37a33514f26061b9cebc98425449df3b2f09b7da341f76438f6950bd8a22c65dd9f702458a994a0e89a6ef34a9e9b53dcb19919200a090425207d5700ab8911db2d242b86ad7d6c6063fa98a1974ba8d20182932fc6a9d42ad05fa1401a1f356eda20a68c38f214fd59f94f02479fd9a631d8a6462fd3abce7703a2186505dca2215e51061bd9e7e3866daeba174d3595a1f75f1dd828a10fe13580c12a4cc393c7be895acb5278537ab490cb2be6b1bbd868cbb004075c4d1ec732b1a20eafc11f238878be15df52456e9c8a66bb8470306983621240a8d8a0984cc3bfadeae5af41c5974bda52d7280f69132ea8ae04341d37a71770087bf600dffb99257465764b632bbe4f9c8d5898beb205cd8f93a42e791efa83dfbdc7877a128aab587642a9bfb1053a3d5f6560a81d75602bb6d454fcebcb1e440b78bea93cb6c4f6249bad9e24a7eb3fcc1f9d51f7f66f2e396474c30386787c2caba2c120ff19ba6c80c10366fc8275a310bbbefc263fd66b3dbf9f7a90c712a3a03f90de5470f490073f74ef8cc39c3c8695139fb64535bb164bbf670b214b7d7714a72b1f70f42637c645b7a4e8342438b6190add9e5cd82083f63d5da84f89a3f20c258679ddbca9d95c24b0cc30a1b56b654c317acbffa8010a81b41c4e10bff3133bd8201f5d2a8a0bb0540c34d5c3df6ecc58628482bd306605bad4286784cd7452431901cef0581ed9c89b68de16e1c43ff6fd2275cd0ffc7492b3829ef0cdd74b4bcf61ad29047c19a89f5ba9dfbb4733080b3de8c07863e36e60309b8e7cde2b70f99b192aead36f9a38157f75baed6fe1cb7f0baf1deff7024d11979f416135522f32986cb5b3f909a20567e62fd815bef2dcbaf7fe74555e60bb6c381c8461188c0d75eb6208391f41bfbd02a37a2f69a85db629206f8ee890f8bca9ed95bf28c81062df31d26ce46781bf781fb64e66c84305b8dae60c5179031473d9f6332a02fd26f8d7103f2f62959972e2f453c550201f85402f7bf86c9ab7a56773ca420e2cfd4e0917265b9bffc48e5ead2a791dc5b1548997d3d9051c260b44a089192bf65c31368b31582337a32c2588a04904d4da27cc1812e114d877a549a3764e96be31a95588aa9a7215d7fd8d484df6c03fa216bc768e6a4167fc421c8ef6d0e2e0dd2a960fafcdb14758aae78ffcc42f0dcf266291eaef92a41b8055a676855620e5471249ae36aeda7a205e037702e1b2d6c6d5d4ae8cd95fdcef603262c117792f64b7af798f9bb020ccd02a09d14432e1dad84dd357534d387bbbe030f46fccf963c745077a185d084a0be59c1e470184d7a24558d560943d624930b5582124c3d6bc31e28ec72c23c032d61c62f07e2ad68851b0f6420645c903b148d4c9e0275f0a2fbc4f84a9214cc8f72a0f87c943390d701257a71976d92589ccab7d440d779a314cbc1d3954dc245f7e27660426d03763d8e997acdb95285b0f2a26b17eb383e0d8ef21b69de30a85d4e10a866642b3e73cc6d892c5db10b9207e062d6a2c126cda9aaf173bdba0e8e7696575ae0d909bca83f618cc262f49c315d5ee0e27353c5a764870bb0d5495ad73b7dbfdf53386dc61c93dcb3807995f36749edbeb32ff7d4de8833f9836a33a6dff003997d89b0dd9c0373e9daafbab036c5d6dccae47d80b7cd2b2e3592bc1fc636b7c0743be57449baffc59bb4137bb50ef6e3a8bab5efaeac87a5d3a5effb834ec1cc24b0180434a3354305493fe987076599ceec160f2a5ff18f943332af122801947be99184d3841531ee2781ff22feaa8750b7a5489e95681869f63e084ee72fcd86d9692c5cf21ad3ec2577981149cfcfdf066933b7f312fbe898c105f4a3646bed30fe94589d96bf566d4d7d31df7d46f59ea32c8b6ad1124884b323e33c771e3c3e645dfa6c522707c39f2136fb1a6d498c1e3fdbb9934e1aecf82d7eab015ca3f582d7f4ec01604a0cad43421e985537dee215e77a13b488055802f7616a59861c159bea5d4c54c173d742d5edc3adfa77868bf1118d2261da7cfca112b83c05e89276abf88631899dfb1282d58b28e50e1f4f61f15d04a5d2244196e27b6440f3a28285ac7b7ea9f9d1017215450c461c4912bf36b00346a5e7532db524131dab218c44fee6ad4e984279ace2be3e09cb60330aa408b5ef47e966703a4c25aca644fb51e16c8dac754cc11a9b259b90a402559e1e2f1d004deca7a0f4f73854fa16cd541c4fa237fd260ea4f719550ee8f4f6deeab1624ec80d45fac5130e1df6c31e9d22d7646ae54e6af82313f0c1510a263090b9156dffa5168178691ee4871ab8baa972e6d4cbdf9a999696399bb18475f35dca3208a75bbdeca982c493aaaa4f9e14d7c4c01a0c3964cd032b7f53c5bf8d5d1b066350ea6e992fce9cb6b720c5ed7ed3f016fe0bd95b81f52c90cb90f7feb6a85b7ae374369042b5df6152d43ce23ea5de7d3ac68b8a84a12f9338c7800ab8a5fee8dda0b1f176afc296f7f9e515321f8ab301551d190491eef79b2cd85a6f2c1c3f0bb709b063a33279ee40aaee0969a36a02c29e75661ef5df6196f3a8d9873f329b70cf10dc68494ba9a936f9d46235673f3773af058dc5246a0a402d45abe4d56aac3936a68c943e9f6dc87bf31b9f8ad0c83044a44d64c5c33e62b4063b415aa9ed9c5227f19ac92a7d66194b63a63be597b75f504848244dbad2abcca55b7f95d1d33efd0184699945dc128a1d209f55258c9d6af0786236d636b970272048733ef075dbeb4069e3b1c02be08522ca02712069b49d1729d5f6fc7f80cdeedd0f2b8a855cde992213a285e3ff16f2672727b7542897edbe4368bcb6f5f32de4d63cbdedf4dd274ba9d4b1de570d6772c020769eb423a93a1d83ebf7a25580642ffdf730d14097d78912d7d1e0a0b6b93a1d3adf3b8c8840993da29b4b0d0f768f445981f0cb5fe881e41b9f23583139049de3e555e9af6595bb686caad8a9da4e926528d318ab7146f74e3f14f2fa7c18e3581bf4e495609fd2776c83a90be77337386b91c9f90b0abf90432093e7b6a76b083877c2823fcb801c85486963f4278c37ab57899c433a1b0feffb6edc59a5a476ca5753106d5e9024c7c4ec6ce9ad9b1f52b1780e6e2655745991d4910596de361489cbad917409e250e5f5f3217019f299d2d2819e448eb1a5f167a1babca9c4201c967a4aa78896e3ad321f99c2e51460d7ed2a97689306d08ebab348f110a08af0205d7a1169610ff95e70b75c2fbaa66d51da615ae37069cb936b7f7009597925fed1626881108e793b1b992e70ae7c951aeeda15d520e0402a8b4a3c1bcfdd221f5e97af02efd44522400edab58e59941880a65f7ad19b8c358baa306cab69bac210469e1e51be6b313205342193bcbe275e84a04ac080d627140da911ac9f8986a95ba1fd6769cb60c58327777be5a0c10e2be8027af1e87dd1a22b9a3b3d391cad074d7b49559bdf444705dfda1d56ec92afda260b18e364773cb2dedfc39f153ed1ad88097a94d22f3bf333315e052495d80fdb222db38b30d8b9287943e11af7cf59163a7d4a4de7378c8fe8c222a0ff1490849b2000cdd174be4f827f504f4f616e9f4d76f8af032786e1857c76318a402cd19542951c2873297c986f43857ab0575762f136ba707baafb8fb557bf20e405ed6410a46ca342c1e5c5d71482d83243d18b16d36e0e6186f908c4bb496a086b61e046e2ac94012f5054437d3e529d294b7274f10c99bba8279d7daa519a9a5875ef315f21ea6c226e01cf494668f7c243e50c8ee59da35203939c6ae96e2a3fbd9d8bc1fc99c9200a5cd1ce4f26a4e7516f24c99258203591c30f55e48ef3ff9bba5e48955c5d2b5efacf01eb4c318251938fc1ee4bea74eb49708d992048903ecc290d7c89d6a6fc6ca921876461582b616b9717805864f0d4d0cc7e5e32eb690535ec27a68ddb03593f15320d5ea4b54b600d6cb77f10dea134f75ebe76b7e3f9de4b8ab49906bdf60f4724", 0x1000}, {&(0x7f00000005c0)="0e227a38883d998d1c166b41c523be3f08fc5459d8742c256f1cab4bd209c76d9bd01142c4056627d6469cc43f1a41c549a21ad187b600712784f9e418c47b71cd71d9a45364f030e9f7", 0x4a}], 0x3, &(0x7f0000000680)=[@dstopts_2292={{0x58, 0x29, 0x4, {0x2f, 0x7, '\x00', [@calipso={0x7, 0x38, {0x2, 0xc, 0x7f, 0x80, [0x100000000, 0x6, 0x6, 0x200, 0x9, 0x40]}}]}}}, @rthdr_2292={{0x28, 0x29, 0x39, {0x1, 0x2, 0x1, 0x2, 0x0, [@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02']}}}, @hopopts_2292={{0x50, 0x29, 0x36, {0x84, 0x6, '\x00', [@jumbo={0xc2, 0x4, 0x7}, @ra={0x5, 0x2, 0x9}, @hao={0xc9, 0x10, @empty}, @enc_lim={0x4, 0x1, 0x2}, @hao={0xc9, 0x10, @ipv4={'\x00', '\xff\xff', @local}}, @enc_lim={0x4, 0x1, 0x5b}, @padn={0x1, 0x1, [0x0]}]}}}, @rthdr={{0x98, 0x29, 0x39, {0x11, 0x10, 0x0, 0x4, 0x0, [@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @dev={0xfe, 0x80, '\x00', 0x3c}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast2, @remote, @dev={0xfe, 0x80, '\x00', 0x34}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @local]}}}, @hoplimit={{0x14, 0x29, 0x34, 0x1fc00000}}], 0x180}}, {{&(0x7f0000000800)={0xa, 0x4e21, 0x8000, @private0, 0x1}, 0x1c, &(0x7f0000001a40)=[{&(0x7f0000001880)="c4b5aa5597ec14a189e113c09ac9d4ae3de1f7a3fa2a6e59f04d060f06f5cdc68d6dc9583a460f09f604e38bebf777d8360654b7f8829b60", 0x38}, {&(0x7f00000018c0)="78a8d510bc7cfea2a8fe18c36a644f58f9f695467bb6d3c6e69cff26d2ec7f0d75748f41043ac4d3f2e22e3ced1fd1912ddf08f30fe6b02a5ea4d06c0083a20281b8487ae7bdfe808e65005e573230614f604f54794ef98fbdf5bc6561347fe4836993239c1fbbaaf3b05c91d49b9ed2f7e5dc4188ef3db7b084f27b6e8546", 0x7f}, {&(0x7f0000001940)="36718e990b67", 0x6}, {&(0x7f0000001980)="78d9643a183f8e1d106e1d54a6602fdb6a7ec1aacbe96a0a3b516ca33ae03c84973e55fc3ad9d3ed86c1c5e795d62c76e46b7fe6dbaf736e48cdea04154d477159a98a4f9768c83c969349a257de4cf6ab8a586cdbf20b257e6eb4fad806eb1eec6da4ff6f81478e336654a983349aff6acd48ff0038e5c36ca3fda622ff03ca8c63cd54bf91ba6cdb77e352443f6c3d320530aef273ca7d4c46ec", 0x9b}], 0x4}}], 0x3, 0x4004844)
r3 = accept4$unix(r1, 0x0, &(0x7f0000001b40), 0x80000)
pwrite64(r3, &(0x7f0000001b80)="0392c48ee916789d22db24145488877a7f2e3771da4579bf3c848e6412c7306c9e961bce209bddff5317f3548ccd503a1aca", 0x32, 0x4)

00:31:36 executing program 4:
mknod$loop(&(0x7f0000000400)='./file0\x00', 0x6000, 0x0)
r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb95, 0x0, 0x0, 0xffffffffffffffff})
creat(&(0x7f0000000080)='\x00', 0xc6)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
syz_io_uring_setup(0x3167, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000000340)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = dup2(r3, r3)
syz_io_uring_submit(r1, r2, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r4, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
ioctl$RTC_EPOCH_READ(r4, 0x8008700d, &(0x7f0000000100))

00:31:36 executing program 1:
pwritev2(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000080)="6a56418577d79fdf6675550f8f56aeb2a74061b7d6828d5b64e081b27d22ae203ca2ed77e835de613d2778ccceeea3854649c792164a008ce4be87aca55b3a49661f0b43bfc76ebf673cd0de731224639511", 0x52}], 0x1, 0x0, 0x3296, 0x1b)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x8401, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f00000000c0)={'ipvlan1\x00'})
write$binfmt_elf64(r0, 0x0, 0x0)
syz_io_uring_setup(0x3167, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000000340)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = dup2(r3, r3)
syz_io_uring_submit(r1, r2, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f0000000280))
bind$bt_sco(r4, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
ioctl$TUNATTACHFILTER(r4, 0x401054d5, &(0x7f0000000140)={0x3, &(0x7f0000000100)=[{0x7, 0x6, 0x2, 0xfffffffb}, {0xfe00, 0x0, 0x40, 0xa7e}, {0x9, 0x3f, 0x9, 0x2}]})

00:31:36 executing program 4:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
r1 = syz_io_uring_setup(0x3167, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000000340)=<r3=>0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r5 = dup2(r4, r4)
syz_io_uring_submit(r2, r3, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
connect$802154_dgram(r0, &(0x7f0000000100)={0x24, @none={0x0, 0xffff}}, 0x14)
bind$bt_sco(r5, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r5, 0xc0189372, &(0x7f0000000140)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r6=>r1, @ANYBLOB='\x00'/15])
sendmsg$inet6(r6, &(0x7f0000000500)={&(0x7f0000000280)={0xa, 0x4e24, 0x2, @private0, 0x3}, 0x1c, &(0x7f00000002c0), 0x0, &(0x7f0000000380)=[@rthdrdstopts={{0x20, 0x29, 0x37, {0x87, 0x0, '\x00', [@ra={0x5, 0x2, 0x101}, @pad1]}}}, @dontfrag={{0x14, 0x29, 0x3e, 0x401}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0x9}}], 0x50}, 0x800)
bind$802154_dgram(r5, &(0x7f00000000c0)={0x24, @none={0x0, 0x3}}, 0x14)
fcntl$getflags(r0, 0x40a)
syz_io_uring_setup(0x7dc0, &(0x7f0000000400)={0x0, 0x74f0, 0x4, 0x2, 0x2ad}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f00000002c0), &(0x7f0000000480))
connect$802154_dgram(r0, &(0x7f0000004540)={0x24, @long}, 0x14)
sendmmsg$sock(r0, &(0x7f00000021c0)=[{{0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x40000}}], 0x324, 0x0)
r7 = openat$sr(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
connect$802154_dgram(r7, &(0x7f0000000080)={0x24, @long={0x3, 0xffff, {0xaaaaaaaaaaaa0202}}}, 0x14)

00:31:36 executing program 3:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r1 = syz_io_uring_setup(0x3167, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000000340)=<r3=>0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r5 = dup2(r4, r4)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000000900))
syz_io_uring_submit(r2, r3, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
r6 = syz_mount_image$nfs4(&(0x7f0000000980), &(0x7f0000000140)='./file0\x00', 0x81, 0x7, &(0x7f0000000740)=[{&(0x7f0000000380)="f71b77bf60ff635bd70188d883ce242d80213dfa1e2266cfc6c77573a66dfd7313dfff50c207a53be222b56da4158fb800aa12b97fc3f9d105c9f3a5998472d78ec0804089a16a2f7e1e9ce9a20020ffabc327cab650118f019a71d6ce196728ace5057e8f032d8d38fba4d259cfcd1e84c249737940abd4b029ae35686b95b4f39d4b00332543ef6f54f1618df37c946606675b61da98bde9f983d2fe78ac97d432fd0d6c31e8810bce6b7fc0579898f247d862a4792a77b79697c4fa1e1f85e625ce1a8394f9556e798a238daeb0e9a6917dd8733e8c42cc59753e29aad22931a87499ffdadf980e52867d3c95f59006", 0xf1, 0x1}, {&(0x7f0000000280)="2456ba1f043ff13a6d0cc980f0ee421728e465bab538c2ef5b87617dc4c1d0156a13f3c4fb7082d3640193894836e0329fa5595c59501f2c067ea66e0514f4c5f1fc83e31c78f5fb1805ed9131c8f236e473b1108e38373626fe071f4871424051d819ac", 0x64}, {&(0x7f0000000480)="49f1125cda09119c18e53b175f7298e734b34a4353c2069f7d0004433a0267d33dbcde3dd5b9b92367fdb88ba1e61267e3f22fc26e8603eb2c11d482f001849eef9f17f6dffb32c38c1fd291fffe2ecf53ee43bb173f3492feb3d4e13948eb2d57bbfc5f1c3785cbe724a35da914d03d84d38a3d41d194bd2fc8736eff6ae5411c45e829006dc924a16f1ddc8a64948151fd5ed0769f9e3bb4d41098b7d7139b7144144059faaf43e9dd7cd2df28c3029344b8ab345b24872502b915e2a40aee2fff75ec543fdbd33ef7359b51ca4b4beac8c2c82792daa3ec125928b9247b5fc3c8d8e68c11e1350f10e9e17dd131", 0xef, 0x1}, {&(0x7f0000000580)="023c6a11782a2f529ebd671faccd1a42d9b19c7bb57227d798da0d6b57e223a27e854286e3af2b3e72e9aa3c59862675777444938fbc43e415205201b5af429ead5ebceb708f1a616753f1845d5f418c23ec8d2c32d32eb4294f543fb1a6f8796d0892a587fa3ee503ad5e561bd0f313e307ebcd80f366fc915fa69866d10f45e5ba3353ba58514660d170a91679ac96c2f54a224407d406d240a3f6dda512faf09b231a1bb5b0bd", 0xa8, 0xfff}, {&(0x7f0000000640)="1dfb0b6ca98affb0753f", 0xa, 0x2}, {&(0x7f0000000680)="3e08fd02b905f7dd85273d0e19ade54714d4b2a3bb7321e2626d8cb7b9adb51afde9ca5fccfa3fe54ac5a75ad77a1958df8107e92f771468d1fd0d3c0be2cc013a4f01234f8a9ab1be3dc8dc91ce0dbdf1a3d46786b6b31b8228f0c2372d359eac0dfd89d7286a2223434c8a82c8fbdadf92a6", 0xfffffe9c, 0xdb}, {&(0x7f0000000700)="7822f85b91bd888ad548d2a6511bf4ec94b650bdedf423a7b61868879b62c7", 0x1f, 0x20}], 0x1248a1, &(0x7f0000000a80)=ANY=[@ANYBLOB="aaaaaaaaaa2caaaaaaaaaa2c2c002c26eb2c25002c002c7063723d30303030303030303030303030303030303035332c636f6e746538743d757365725f752c646f6e745f61707072616973652c6673757569643d38303036636432392d846437302d363262622d656466352d37656337333633342c7065726d69745f646972656374696f2c6d61736b3d5e4d41595f524541442c726f6f74636f6e746578743d73797374656d5f752c657569643c8dea0bac0314100217c3d552c354a282d6d3a0980d59d1a937eecc523ab7ed775ab326c78a1015a2a3b537548f16b8e0e1583405ef", @ANYRESDEC, @ANYBLOB=',\x00'])
fcntl$addseals(r6, 0x409, 0x0)
bind$bt_sco(r5, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r7 = openat(r5, &(0x7f0000000040)='./file0\x00', 0x9c6e2, 0x80)
utimensat(r7, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x2b03, &(0x7f00000009c0)={0x0, 0x5f9, 0x2, 0x0, 0x180, 0x0, r1}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000000100), &(0x7f0000000a40))

[  139.052740] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
00:31:36 executing program 6:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r0=>0x0, &(0x7f0000000040)=<r1=>0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r3=>0x0, &(0x7f0000000040)=<r4=>0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r6=>0x0, &(0x7f0000000040)=<r7=>0x0)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r8, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r9=>r8, {0x4}}, './file0\x00'})
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r9, 0x8933, 0x0)

00:31:36 executing program 2:
r0 = openat(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x0, 0x10a)
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000240), 0x301400, 0x0)
unlinkat(r1, &(0x7f0000000300)='./file0\x00', 0x200)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000000040)=<r3=>0x0)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r0, 0xc018937d, &(0x7f0000000340)=ANY=[@ANYBLOB="010097a1b3fb23827894c4585a3a66261a787688b2a9af3cc74c7ba9b65d8c3b9b50e1a6bc4a82383a940494ef9e6eab79516107baea485af6bcc8b4e3995bf85ce2af1284a866d8dd3c0a04c773cfaa7f77b9b4a4cfec2278af31ae3fbefdbbbde1688e1c55d29b", @ANYRES32=r4, @ANYBLOB="bd0c0000000000b32e2f66696c653000"])
unshare(0x62040080)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
r6 = syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180), &(0x7f0000000040))
io_uring_enter(r6, 0x76d3, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r6, 0x0, 0x3d3b, 0x6, &(0x7f0000000140)={[0x9]}, 0x8)
bind$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x4e24, 0x3, @dev={0xfe, 0x80, '\x00', 0x13}}, 0x1c)
setsockopt$inet6_tcp_TCP_MD5SIG(r5, 0x6, 0xe, &(0x7f0000000500)={@in6={{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0xf}}}}, 0x0, 0x0, 0x2a, 0x0, "4c774fc207b2764cc639d766f1a8bf75fa858b606ad21530ecaf8b152bc099032178945d2ed02d555131e75488a37329ea68553a3c06f898b0415d06e9edb87c74d7bb428a4657b3929ce7c15f973a5f"}, 0xd8)
connect$inet6(r5, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)

00:31:36 executing program 5:
signalfd(0xffffffffffffffff, &(0x7f00000000c0), 0x8)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r0=>0x0, &(0x7f0000000040)=<r1=>0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
creat(&(0x7f0000000340)='./file0\x00', 0x100)
syz_io_uring_submit(r0, r1, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
sendfile(0xffffffffffffffff, r2, &(0x7f0000000200)=0x4, 0x3)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r3=>0x0, &(0x7f0000000040)=<r4=>0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000000240), &(0x7f0000000300)=0xc)
clone3(&(0x7f0000000000)={0x1c0002100, 0x0, 0x0, &(0x7f0000000080), {}, 0x0, 0x0, &(0x7f0000000100)=""/150, &(0x7f00000001c0)=[0x0], 0x1}, 0x58)

00:31:36 executing program 0:
r0 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40011, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="0200000003000000040000006a000f", 0xf, 0x800}, {&(0x7f0000010500)="ffff3f00000000000000000000000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x802, 0x1000}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000012c00)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x2, 0x0)
sendmsg(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
copy_file_range(r2, 0x0, r1, 0x0, 0x10001, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
setresuid(0xffffffffffffffff, r4, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext2\x00', &(0x7f0000000140)='./file0\x00', 0xb397, 0x1, &(0x7f00000001c0)=[{&(0x7f0000000180), 0x0, 0x400}], 0x9820, &(0x7f0000000280)={[{@commit}, {@noquota}, {@nobarrier}, {@block_validity}, {@usrjquota_path={'usrjquota', 0x3d, './file0'}}, {@data_writeback}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x7}}], [{@context={'context', 0x3d, 'root'}}]})
sendfile(r1, r3, 0x0, 0x20d315)

00:31:36 executing program 6:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r0=>0x0, &(0x7f0000000040)=<r1=>0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r3=>0x0, &(0x7f0000000040)=<r4=>0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r6=>0x0, &(0x7f0000000040)=<r7=>0x0)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r8, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, <r9=>r8, {0x4}}, './file0\x00'})
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r9, 0x8933, 0x0)

00:31:37 executing program 1:
pwritev2(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000080)="6a56418577d79fdf6675550f8f56aeb2a74061b7d6828d5b64e081b27d22ae203ca2ed77e835de613d2778ccceeea3854649c792164a008ce4be87aca55b3a49661f0b43bfc76ebf673cd0de731224639511", 0x52}], 0x1, 0x0, 0x3296, 0x1b)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x8401, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f00000000c0)={'ipvlan1\x00'})
write$binfmt_elf64(r0, 0x0, 0x0)
syz_io_uring_setup(0x3167, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000000340)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = dup2(r3, r3)
syz_io_uring_submit(r1, r2, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f0000000280))
bind$bt_sco(r4, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
ioctl$TUNATTACHFILTER(r4, 0x401054d5, &(0x7f0000000140)={0x3, &(0x7f0000000100)=[{0x7, 0x6, 0x2, 0xfffffffb}, {0xfe00, 0x0, 0x40, 0xa7e}, {0x9, 0x3f, 0x9, 0x2}]})

00:31:37 executing program 5:
r0 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40011, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="0200000003000000040000006a000f", 0xf, 0x800}, {&(0x7f0000010500)="ffff3f00000000000000000000000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x802, 0x1000}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000012c00)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x2, 0x0)
sendmsg(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
copy_file_range(r2, 0x0, r1, 0x0, 0x10001, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
setresuid(0xffffffffffffffff, r4, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext2\x00', &(0x7f0000000140)='./file0\x00', 0xb397, 0x1, &(0x7f00000001c0)=[{&(0x7f0000000180), 0x0, 0x400}], 0x9820, &(0x7f0000000280)={[{@commit}, {@noquota}, {@nobarrier}, {@block_validity}, {@usrjquota_path={'usrjquota', 0x3d, './file0'}}, {@data_writeback}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x7}}], [{@context={'context', 0x3d, 'root'}}]})
sendfile(r1, r3, 0x0, 0x20d315)

00:31:37 executing program 6:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r0=>0x0, &(0x7f0000000040)=<r1=>0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r3=>0x0, &(0x7f0000000040)=<r4=>0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r6=>0x0, &(0x7f0000000040)=<r7=>0x0)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r8, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000000)={{0x1, 0x1, 0x18, r8, {0x4}}, './file0\x00'})

00:31:37 executing program 2:
r0 = openat(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x0, 0x10a)
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000240), 0x301400, 0x0)
unlinkat(r1, &(0x7f0000000300)='./file0\x00', 0x200)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000000040)=<r3=>0x0)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r0, 0xc018937d, &(0x7f0000000340)=ANY=[@ANYBLOB="010097a1b3fb23827894c4585a3a66261a787688b2a9af3cc74c7ba9b65d8c3b9b50e1a6bc4a82383a940494ef9e6eab79516107baea485af6bcc8b4e3995bf85ce2af1284a866d8dd3c0a04c773cfaa7f77b9b4a4cfec2278af31ae3fbefdbbbde1688e1c55d29b", @ANYRES32=r4, @ANYBLOB="bd0c0000000000b32e2f66696c653000"])
unshare(0x62040080)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
r6 = syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180), &(0x7f0000000040))
io_uring_enter(r6, 0x76d3, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r6, 0x0, 0x3d3b, 0x6, &(0x7f0000000140)={[0x9]}, 0x8)
bind$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x4e24, 0x3, @dev={0xfe, 0x80, '\x00', 0x13}}, 0x1c)
setsockopt$inet6_tcp_TCP_MD5SIG(r5, 0x6, 0xe, &(0x7f0000000500)={@in6={{0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0xf}}}}, 0x0, 0x0, 0x2a, 0x0, "4c774fc207b2764cc639d766f1a8bf75fa858b606ad21530ecaf8b152bc099032178945d2ed02d555131e75488a37329ea68553a3c06f898b0415d06e9edb87c74d7bb428a4657b3929ce7c15f973a5f"}, 0xd8)
connect$inet6(r5, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)

[  139.659720] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[  139.953652] syz-executor.0 (4125) used greatest stack depth: 24248 bytes left
[  139.994861] syz-executor.7 (4065) used greatest stack depth: 23792 bytes left
[  140.022342] syz-executor.7 (4045) used greatest stack depth: 23424 bytes left
[  152.954055] kmemleak: 1655 new suspected memory leaks (see /sys/kernel/debug/kmemleak)
[  159.865567] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak)
00:31:58 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
openat$incfs(0xffffffffffffffff, 0x0, 0x0, 0x0)
r1 = open(&(0x7f0000000040)='./file0\x00', 0x1830c1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x101802, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
copy_file_range(r3, 0x0, r2, 0x0, 0x200f5ef, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x12d842, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
copy_file_range(r5, 0x0, r4, 0x0, 0x200f5ef, 0x0)
setxattr$security_evm(&(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f00000004c0)={0x3, r1})
r6 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
ioctl$FICLONERANGE(r6, 0x4020940d, &(0x7f0000000100)={{}, 0x2, 0x6, 0x6})

00:31:58 executing program 0:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
openat$incfs(0xffffffffffffffff, 0x0, 0x0, 0x0)
r1 = open(&(0x7f0000000040)='./file0\x00', 0x1830c1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x101802, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
copy_file_range(r3, 0x0, r2, 0x0, 0x200f5ef, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x12d842, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
copy_file_range(r5, 0x0, r4, 0x0, 0x200f5ef, 0x0)
setxattr$security_evm(&(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f00000004c0)={0x3, r1})
r6 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
ioctl$FICLONERANGE(r6, 0x4020940d, &(0x7f0000000100)={{}, 0x2, 0x6, 0x6})

00:31:58 executing program 4:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14)
r1 = syz_io_uring_setup(0x3167, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000000340)=<r3=>0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r5 = dup2(r4, r4)
syz_io_uring_submit(r2, r3, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
connect$802154_dgram(r0, &(0x7f0000000100)={0x24, @none={0x0, 0xffff}}, 0x14)
bind$bt_sco(r5, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r5, 0xc0189372, &(0x7f0000000140)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=<r6=>r1, @ANYBLOB='\x00'/15])
sendmsg$inet6(r6, &(0x7f0000000500)={&(0x7f0000000280)={0xa, 0x4e24, 0x2, @private0, 0x3}, 0x1c, &(0x7f00000002c0), 0x0, &(0x7f0000000380)=[@rthdrdstopts={{0x20, 0x29, 0x37, {0x87, 0x0, '\x00', [@ra={0x5, 0x2, 0x101}, @pad1]}}}, @dontfrag={{0x14, 0x29, 0x3e, 0x401}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0x9}}], 0x50}, 0x800)
bind$802154_dgram(r5, &(0x7f00000000c0)={0x24, @none={0x0, 0x3}}, 0x14)
fcntl$getflags(r0, 0x40a)
syz_io_uring_setup(0x7dc0, &(0x7f0000000400)={0x0, 0x74f0, 0x4, 0x2, 0x2ad}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f00000002c0), &(0x7f0000000480))
connect$802154_dgram(r0, &(0x7f0000004540)={0x24, @long}, 0x14)
sendmmsg$sock(r0, &(0x7f00000021c0)=[{{0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x40000}}], 0x324, 0x0)
r7 = openat$sr(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
connect$802154_dgram(r7, &(0x7f0000000080)={0x24, @long={0x3, 0xffff, {0xaaaaaaaaaaaa0202}}}, 0x14)

00:31:58 executing program 2:
r0 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40011, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="0200000003000000040000006a000f", 0xf, 0x800}, {&(0x7f0000010500)="ffff3f00000000000000000000000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x802, 0x1000}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000012c00)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0)
lseek(r0, 0x2, 0x0)
sendmsg(0xffffffffffffffff, 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
copy_file_range(r2, 0x0, r1, 0x0, 0x10001, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
stat(&(0x7f0000001cc0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
setresuid(0xffffffffffffffff, r4, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext2\x00', &(0x7f0000000140)='./file0\x00', 0xb397, 0x1, &(0x7f00000001c0)=[{&(0x7f0000000180), 0x0, 0x400}], 0x9820, &(0x7f0000000280)={[{@commit}, {@noquota}, {@nobarrier}, {@block_validity}, {@usrjquota_path={'usrjquota', 0x3d, './file0'}}, {@data_writeback}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x7}}], [{@context={'context', 0x3d, 'root'}}]})
sendfile(r1, r3, 0x0, 0x20d315)

00:31:58 executing program 6:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r0=>0x0, &(0x7f0000000040)=<r1=>0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r3=>0x0, &(0x7f0000000040)=<r4=>0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r6=>0x0, &(0x7f0000000040)=<r7=>0x0)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r8, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)

00:31:58 executing program 1:
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
write$binfmt_elf64(0xffffffffffffffff, 0x0, 0xfdef)
bind$802154_dgram(0xffffffffffffffff, 0x0, 0x0)
bind$802154_dgram(r0, &(0x7f0000000000)={0x24, @short={0x2, 0x2, 0xffff}}, 0x14)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
connect$802154_dgram(r0, &(0x7f0000004540)={0x24, @short}, 0x14)
sendmmsg$sock(r0, &(0x7f00000021c0)=[{{0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x40000}}], 0x324, 0x0)

00:31:58 executing program 5:
r0 = open(&(0x7f0000000040)='./file0\x00', 0x81, 0x0)
sendmsg$NL80211_CMD_NEW_STATION(r0, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)={0x5c, 0x0, 0x400, 0x70bd28, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x4, 0x56}}}}, [@NL80211_ATTR_STA_SUPPORTED_RATES={0x8, 0x13, [{0x3}, {0x9}, {0xb, 0x1}, {0x48}]}, @NL80211_ATTR_STA_PLINK_ACTION={0x5, 0x19, 0x2}, @NL80211_ATTR_PEER_AID={0x6, 0xb5, 0x27e}, @NL80211_ATTR_STA_PLINK_STATE={0x5, 0x74, 0x2}, @NL80211_ATTR_STA_SUPPORTED_RATES={0x1c, 0x13, [{0x2}, {0x9, 0x1}, {0x4, 0x1}, {0x6, 0x1}, {0x18}, {0x12}, {0x3, 0x1}, {0xb}, {0x15, 0x1}, {0x5, 0x1}, {0x9, 0x1}, {0x6c}, {0x30, 0x1}, {0x30, 0x1}, {0x6c}, {0x48, 0x1}, {0xc}, {0xb}, {0x1, 0x1}, {0x6}, {0x18}, {0x6c, 0x1}, {0x24}, {0x9}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x8000}, 0x40854)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x1d, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002000028020000028401001b0000000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e35393638303238373300"/192, 0xc0, 0x400}, {&(0x7f0000010100)="0000000000000000000000003bf48e55190e4cca80d5ddff88e7b6a1010000000c00000000000000d7f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000000000000000000000000000000000000002600000000000000", 0x40, 0x540}, {&(0x7f0000010300)="0000000000000000000000000000000000000000010400"/32, 0x20, 0x640}, {&(0x7f0000010400)="030000000400000005000000d4000f000300040000000000000000000f00c7e0", 0x20, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000d7f4655fd7f4655fd7f4655f00"/2080, 0x820, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004000200000000000000050000001500"/64, 0x40, 0x1600}, {&(0x7f0000010f00)="20000000d0fadacdd0fadacd00000000d7f4655f00"/32, 0x20, 0x1680}, {&(0x7f0000011000)="c0410000002c0000d7f4655fd7f4655fd7f4655f0000000000000200160000000000000000000000160000001700000018000000190000001a0000001b0000001c0000001d0000001e0000001f00000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000d7f4655f000000000000000000000000000002ea00"/192, 0xc0, 0x2800}, {&(0x7f0000011100)="ed4100003c000000d7f4655fd7f4655fd7f4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c6531000000000000000000000000000000000000000000000000000000b7a4e9e000000000000000000000000000000000000000000000000020000000d0fadacdd0fadacdd0fadacdd7f4655fd0fadacd0000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x2a00}, {&(0x7f0000011200)="ed8100001a040000d7f4655fd7f4655fd7f4655f00000000000001000400000000000000010000002100000022000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000009f52167000000000000000000000000000000000000000000000000020000000d0fadacdd0fadacdd0fadacdd7f4655fd0fadacd0000000000000000", 0xa0, 0x2c00}, {&(0x7f0000011300)="ffa1000026000000d7f4655fd7f4655fd7f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3539363830323837332f66696c65302f66696c6530000000000000000000000000000000000000000000008d6390c800000000000000000000000000000000000000000000000020000000d0fadacdd0fadacdd0fadacdd7f4655fd0fadacd0000000000000000", 0xa0, 0x2e00}, {&(0x7f0000011400)="ed8100000a000000d7f4655fd7f4655fd7f4655f000000000000010000000000000000100100000073797a6b616c6c65727300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004d37571e00000000000000000000000000000000000000000000000020000000d0fadacdd0fadacdd0fadacdd7f4655fd0fadacd0000000000000000000002ea040700000000000000000000000000006461746106015401000000000600000000000000786174747231000006014c0100000000060000000000000078617474723200"/256, 0x100, 0x3000}, {&(0x7f0000011500)="0000000000000000000000000000000078617474723200007861747472310000ed81000028230000d7f4655fd7f4655fd7f4655f0000000000000200120000000000000001000000230000002400000025000000260000002700000028000000290000002a0000002b000000000000000000000000000000000000000000000000000000b964ab4600000000000000000000000000000000000000000000000020000000d0fadacdd0fadacdd0fadacdd7f4655fd0fadacd0000000000000000", 0xc0, 0x31e0}, {&(0x7f0000011600)="ed81000064000000d7f4655fd7f4655fd7f4655f000000000000010000000000000000100100000073797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616cc2ee83da00000000000000000000000000000000000000000000000020000000d0fadacdd0fadacdd0fadacdd7f4655fd0fadacd0000000000000000000002ea04073401000000002800000000000000646174610000000000000000", 0xc0, 0x3400}, {&(0x7f0000011700)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00lersyzkallersyzkallersyzkallersyzkallers', 0x40, 0x35c0}, {&(0x7f0000011800)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009403090166696c652e636f6c64000000", 0x80, 0x5400}, {&(0x7f0000011900)="0b0000000c0001022e000000020000000c0002022e2e000000000000e8030000", 0x20, 0x5800}, {&(0x7f0000011a00)="00000000000400"/32, 0x20, 0x5c00}, {&(0x7f0000011b00)="00000000000400"/32, 0x20, 0x6000}, {&(0x7f0000011c00)="00000000000400"/32, 0x20, 0x6400}, {&(0x7f0000011d00)="00000000000400"/32, 0x20, 0x6800}, {&(0x7f0000011e00)="00000000000400"/32, 0x20, 0x6c00}, {&(0x7f0000011f00)="00000000000400"/32, 0x20, 0x7000}, {&(0x7f0000012000)="00000000000400"/32, 0x20, 0x7400}, {&(0x7f0000012100)="00000000000400"/32, 0x20, 0x7800}, {&(0x7f0000012200)="00000000000400"/32, 0x20, 0x7c00}, {&(0x7f0000012300)="00000000000400"/32, 0x20, 0x8000}, {&(0x7f0000012400)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x8400}], 0x0, &(0x7f0000012900))

00:31:58 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_GET(r0, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)={0x90, 0x0, 0x8, 0x70bd29, 0x25dfdbff, {}, [@pci={{0x8}, {0x11}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x90}, 0x1, 0x0, 0x0, 0x42}, 0x81)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$IPVS_CMD_GET_DAEMON(r0, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x6c, 0x0, 0x100, 0x70bd27, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_SERVICE={0x1c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x2}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x6}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x8}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x5}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x80}, @IPVS_CMD_ATTR_SERVICE={0x14, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x10}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x8}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8}]}, 0x6c}, 0x1, 0x0, 0x0, 0x80}, 0x1)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
r3 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x420000, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r3, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)={0x64, r1, 0x100, 0x70bd26, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_DURATION={0x8, 0x57, 0x800000}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x7c}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x6}, @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xe}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x23}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x4}], @chandef_params=[@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x80000000}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x401}, @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x11}]]}, 0x64}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:31:58 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_GET(r0, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)={0x90, 0x0, 0x8, 0x70bd29, 0x25dfdbff, {}, [@pci={{0x8}, {0x11}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x90}, 0x1, 0x0, 0x0, 0x42}, 0x81)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$IPVS_CMD_GET_DAEMON(r0, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x6c, 0x0, 0x100, 0x70bd27, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_SERVICE={0x1c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x2}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x6}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x8}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x5}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x80}, @IPVS_CMD_ATTR_SERVICE={0x14, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x10}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x8}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8}]}, 0x6c}, 0x1, 0x0, 0x0, 0x80}, 0x1)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
r3 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x420000, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r3, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)={0x64, r1, 0x100, 0x70bd26, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_DURATION={0x8, 0x57, 0x800000}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x7c}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x6}, @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xe}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x23}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x4}], @chandef_params=[@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x80000000}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x401}, @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x11}]]}, 0x64}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  160.591607] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue
[  160.592070] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
00:31:58 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0)
openat$incfs(0xffffffffffffffff, 0x0, 0x0, 0x0)
r1 = open(&(0x7f0000000040)='./file0\x00', 0x1830c1, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x101802, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
copy_file_range(r3, 0x0, r2, 0x0, 0x200f5ef, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x12d842, 0x0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
copy_file_range(r5, 0x0, r4, 0x0, 0x200f5ef, 0x0)
setxattr$security_evm(&(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f00000004c0)={0x3, r1})
r6 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
ioctl$FICLONERANGE(r6, 0x4020940d, &(0x7f0000000100)={{}, 0x2, 0x6, 0x6})

00:31:58 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_GET(r0, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)={0x90, 0x0, 0x8, 0x70bd29, 0x25dfdbff, {}, [@pci={{0x8}, {0x11}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x90}, 0x1, 0x0, 0x0, 0x42}, 0x81)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$IPVS_CMD_GET_DAEMON(r0, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x6c, 0x0, 0x100, 0x70bd27, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_SERVICE={0x1c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x2}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x6}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x8}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x5}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x80}, @IPVS_CMD_ATTR_SERVICE={0x14, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x10}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x8}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8}]}, 0x6c}, 0x1, 0x0, 0x0, 0x80}, 0x1)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
r3 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x420000, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r3, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)={0x64, r1, 0x100, 0x70bd26, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_DURATION={0x8, 0x57, 0x800000}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x7c}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x6}, @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xe}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x23}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x4}], @chandef_params=[@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x80000000}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x401}, @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x11}]]}, 0x64}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:31:58 executing program 5:
r0 = open(&(0x7f0000000040)='./file0\x00', 0x81, 0x0)
sendmsg$NL80211_CMD_NEW_STATION(r0, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)={0x5c, 0x0, 0x400, 0x70bd28, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x4, 0x56}}}}, [@NL80211_ATTR_STA_SUPPORTED_RATES={0x8, 0x13, [{0x3}, {0x9}, {0xb, 0x1}, {0x48}]}, @NL80211_ATTR_STA_PLINK_ACTION={0x5, 0x19, 0x2}, @NL80211_ATTR_PEER_AID={0x6, 0xb5, 0x27e}, @NL80211_ATTR_STA_PLINK_STATE={0x5, 0x74, 0x2}, @NL80211_ATTR_STA_SUPPORTED_RATES={0x1c, 0x13, [{0x2}, {0x9, 0x1}, {0x4, 0x1}, {0x6, 0x1}, {0x18}, {0x12}, {0x3, 0x1}, {0xb}, {0x15, 0x1}, {0x5, 0x1}, {0x9, 0x1}, {0x6c}, {0x30, 0x1}, {0x30, 0x1}, {0x6c}, {0x48, 0x1}, {0xc}, {0xb}, {0x1, 0x1}, {0x6}, {0x18}, {0x6c, 0x1}, {0x24}, {0x9}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x8000}, 0x40854)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x1d, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002000028020000028401001b0000000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e35393638303238373300"/192, 0xc0, 0x400}, {&(0x7f0000010100)="0000000000000000000000003bf48e55190e4cca80d5ddff88e7b6a1010000000c00000000000000d7f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="00000000000000000000000000000000000000000000000000000000200020000100000000000000000000000000000000000000000000002600000000000000", 0x40, 0x540}, {&(0x7f0000010300)="0000000000000000000000000000000000000000010400"/32, 0x20, 0x640}, {&(0x7f0000010400)="030000000400000005000000d4000f000300040000000000000000000f00c7e0", 0x20, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0000000000000000d7f4655fd7f4655fd7f4655f00"/2080, 0x820, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f00000000000004000200000000000000050000001500"/64, 0x40, 0x1600}, {&(0x7f0000010f00)="20000000d0fadacdd0fadacd00000000d7f4655f00"/32, 0x20, 0x1680}, {&(0x7f0000011000)="c0410000002c0000d7f4655fd7f4655fd7f4655f0000000000000200160000000000000000000000160000001700000018000000190000001a0000001b0000001c0000001d0000001e0000001f00000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000d7f4655f000000000000000000000000000002ea00"/192, 0xc0, 0x2800}, {&(0x7f0000011100)="ed4100003c000000d7f4655fd7f4655fd7f4655f0000000000000200000000000000001003000000020000000d0000001000050166696c65300000000e0000002800050766696c6531000000000000000000000000000000000000000000000000000000b7a4e9e000000000000000000000000000000000000000000000000020000000d0fadacdd0fadacdd0fadacdd7f4655fd0fadacd0000000000000000000002ea04070000000000000000000000000000646174610000000000000000", 0xc0, 0x2a00}, {&(0x7f0000011200)="ed8100001a040000d7f4655fd7f4655fd7f4655f00000000000001000400000000000000010000002100000022000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000009f52167000000000000000000000000000000000000000000000000020000000d0fadacdd0fadacdd0fadacdd7f4655fd0fadacd0000000000000000", 0xa0, 0x2c00}, {&(0x7f0000011300)="ffa1000026000000d7f4655fd7f4655fd7f4655f00000000000001000000000000000000010000002f746d702f73797a2d696d61676567656e3539363830323837332f66696c65302f66696c6530000000000000000000000000000000000000000000008d6390c800000000000000000000000000000000000000000000000020000000d0fadacdd0fadacdd0fadacdd7f4655fd0fadacd0000000000000000", 0xa0, 0x2e00}, {&(0x7f0000011400)="ed8100000a000000d7f4655fd7f4655fd7f4655f000000000000010000000000000000100100000073797a6b616c6c65727300000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004d37571e00000000000000000000000000000000000000000000000020000000d0fadacdd0fadacdd0fadacdd7f4655fd0fadacd0000000000000000000002ea040700000000000000000000000000006461746106015401000000000600000000000000786174747231000006014c0100000000060000000000000078617474723200"/256, 0x100, 0x3000}, {&(0x7f0000011500)="0000000000000000000000000000000078617474723200007861747472310000ed81000028230000d7f4655fd7f4655fd7f4655f0000000000000200120000000000000001000000230000002400000025000000260000002700000028000000290000002a0000002b000000000000000000000000000000000000000000000000000000b964ab4600000000000000000000000000000000000000000000000020000000d0fadacdd0fadacdd0fadacdd7f4655fd0fadacd0000000000000000", 0xc0, 0x31e0}, {&(0x7f0000011600)="ed81000064000000d7f4655fd7f4655fd7f4655f000000000000010000000000000000100100000073797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616c6c657273797a6b616cc2ee83da00000000000000000000000000000000000000000000000020000000d0fadacdd0fadacdd0fadacdd7f4655fd0fadacd0000000000000000000002ea04073401000000002800000000000000646174610000000000000000", 0xc0, 0x3400}, {&(0x7f0000011700)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00lersyzkallersyzkallersyzkallersyzkallers', 0x40, 0x35c0}, {&(0x7f0000011800)="020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009403090166696c652e636f6c64000000", 0x80, 0x5400}, {&(0x7f0000011900)="0b0000000c0001022e000000020000000c0002022e2e000000000000e8030000", 0x20, 0x5800}, {&(0x7f0000011a00)="00000000000400"/32, 0x20, 0x5c00}, {&(0x7f0000011b00)="00000000000400"/32, 0x20, 0x6000}, {&(0x7f0000011c00)="00000000000400"/32, 0x20, 0x6400}, {&(0x7f0000011d00)="00000000000400"/32, 0x20, 0x6800}, {&(0x7f0000011e00)="00000000000400"/32, 0x20, 0x6c00}, {&(0x7f0000011f00)="00000000000400"/32, 0x20, 0x7000}, {&(0x7f0000012000)="00000000000400"/32, 0x20, 0x7400}, {&(0x7f0000012100)="00000000000400"/32, 0x20, 0x7800}, {&(0x7f0000012200)="00000000000400"/32, 0x20, 0x7c00}, {&(0x7f0000012300)="00000000000400"/32, 0x20, 0x8000}, {&(0x7f0000012400)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x8400}], 0x0, &(0x7f0000012900))

00:31:58 executing program 6:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r0=>0x0, &(0x7f0000000040)=<r1=>0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r3=>0x0, &(0x7f0000000040)=<r4=>0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180), &(0x7f0000000040))
socket$inet6_udp(0xa, 0x2, 0x0)

00:31:58 executing program 2:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x9, 'w\x00Jn;m\x00'})
ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
pread64(r0, &(0x7f0000000240)=""/196, 0xc4, 0x6)
io_uring_setup(0x0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x161})
pread64(r0, &(0x7f00000000c0)=""/154, 0x9a, 0x0)
r1 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r1, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
dup3(r1, r0, 0x0)

[  160.862816] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue
[  160.980468] syz-executor.2 uses obsolete (PF_INET,SOCK_PACKET)
[  161.211428] device veth0_vlan entered promiscuous mode
[  173.146215] kmemleak: 88 new suspected memory leaks (see /sys/kernel/debug/kmemleak)
00:32:17 executing program 2:
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x9, 'w\x00Jn;m\x00'})
ioctl$KDADDIO(0xffffffffffffffff, 0x4b34, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'})
pread64(r0, &(0x7f0000000240)=""/196, 0xc4, 0x6)
io_uring_setup(0x0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x161})
pread64(r0, &(0x7f00000000c0)=""/154, 0x9a, 0x0)
r1 = socket$inet(0x2, 0xa, 0x0)
ioctl$sock_inet_SIOCGIFNETMASK(r1, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}})
dup3(r1, r0, 0x0)

00:32:17 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_GET(r0, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)={0x90, 0x0, 0x8, 0x70bd29, 0x25dfdbff, {}, [@pci={{0x8}, {0x11}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x90}, 0x1, 0x0, 0x0, 0x42}, 0x81)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$IPVS_CMD_GET_DAEMON(r0, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x6c, 0x0, 0x100, 0x70bd27, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_SERVICE={0x1c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x2}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x6}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x8}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x5}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x80}, @IPVS_CMD_ATTR_SERVICE={0x14, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x10}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x8}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8}]}, 0x6c}, 0x1, 0x0, 0x0, 0x80}, 0x1)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
r3 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x420000, 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r3, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)={0x64, r1, 0x100, 0x70bd26, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_DURATION={0x8, 0x57, 0x800000}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x7c}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x6}, @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xe}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x23}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x4}], @chandef_params=[@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x80000000}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x401}, @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x11}]]}, 0x64}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  180.293470] tmpfs: Bad value for 'mpol'
00:32:17 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000004)
ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000))
syz_io_uring_setup(0x3167, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000000340)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = dup2(r3, r3)
syz_io_uring_submit(r1, r2, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r4, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
openat(r4, &(0x7f0000000080)='./file0/file0\x00', 0xa500, 0x6)
writev(r0, &(0x7f0000000280)=[{0x0}, {0x0}, {&(0x7f0000000200)="b7", 0x1}], 0x3)

00:32:17 executing program 5:
keyctl$setperm(0x5, 0x0, 0x804)
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0)
syncfs(r0)

00:32:17 executing program 6:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r0=>0x0, &(0x7f0000000040)=<r1=>0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r3=>0x0, &(0x7f0000000040)=<r4=>0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180), &(0x7f0000000040))

00:32:17 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_io_uring_setup(0x3167, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000000340)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = dup2(r3, r3)
syz_io_uring_submit(r1, r2, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r4, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
getsockopt$EBT_SO_GET_INIT_INFO(r4, 0x0, 0x82, &(0x7f0000000100)={'broute\x00', 0x0, 0x0, 0x0, [0x9, 0x3, 0xb35c, 0xffffffff, 0x5, 0x200]}, &(0x7f0000000180)=0x78)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000080)={0x2, &(0x7f00000000c0)=[{0x30, 0x0, 0x0, 0xfffff030}, {0x6}]}, 0x10)
r5 = socket$netlink(0x10, 0x3, 0x10)
getsockopt$sock_int(r5, 0x1, 0x28, &(0x7f0000000000), &(0x7f0000000040)=0x4)

00:32:17 executing program 7:
syz_mount_image$tmpfs(&(0x7f0000002400), &(0x7f0000002440)='./file0\x00', 0x5, 0x0, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="6d706f6c3d696e7465726c656176652266736d616769633d3078303030303030303030303032303030302c00c7ab1df67bf24c79b03f"])

00:32:17 executing program 0:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r2, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r2, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = dup2(r3, r3)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r4, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r5, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r5, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r5, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r5, 0x0, 0x3)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_PMK(r5, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000900)=ANY=[@ANYBLOB="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", @ANYRES16=0x0, @ANYBLOB="00012cbd7000fbdbdf257b00000008000300", @ANYRES32=r6, @ANYBLOB="0c00990004000000000000000a000600ffffffffffff00000a00060008021100000100000a00060008021100000100001400fe008116318664cdae6aec6b71baba6f6dfb1400020179671d343424bf4d15a10d504ec5aa880a00060008021100000100000a00060008021100000100001400fe00750000000015000000000000000000001400fe00cfc3d37cc10cecc9f1f05fd28e7ce85e"], 0xb4}}, 0x8000)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r4, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r2, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f00000001c0)={'wlan0\x00'})
sendmsg$NL80211_CMD_DEL_KEY(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="86f50000000000000000", @ANYRES16=r0, @ANYBLOB="010000000000000000000c00000004000b00"], 0x18}}, 0x0)

[  180.325178] tmpfs: Bad value for 'mpol'
00:32:17 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_GET(r0, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)={0x90, 0x0, 0x8, 0x70bd29, 0x25dfdbff, {}, [@pci={{0x8}, {0x11}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x90}, 0x1, 0x0, 0x0, 0x42}, 0x81)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$IPVS_CMD_GET_DAEMON(r0, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x6c, 0x0, 0x100, 0x70bd27, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_SERVICE={0x1c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x2}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x6}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x8}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x5}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x80}, @IPVS_CMD_ATTR_SERVICE={0x14, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x10}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x8}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8}]}, 0x6c}, 0x1, 0x0, 0x0, 0x80}, 0x1)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x420000, 0x0)
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:32:17 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_GET(r0, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)={0x90, 0x0, 0x8, 0x70bd29, 0x25dfdbff, {}, [@pci={{0x8}, {0x11}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x90}, 0x1, 0x0, 0x0, 0x42}, 0x81)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$IPVS_CMD_GET_DAEMON(r0, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x6c, 0x0, 0x100, 0x70bd27, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_SERVICE={0x1c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x2}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x6}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x8}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x5}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x80}, @IPVS_CMD_ATTR_SERVICE={0x14, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x10}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x8}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8}]}, 0x6c}, 0x1, 0x0, 0x0, 0x80}, 0x1)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:32:17 executing program 7:
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1801)
ioctl$TCSETSF(r0, 0x5404, &(0x7f0000000140)={0x40, 0x5c, 0x8001, 0x3, 0x8, "01c9a7cc790b552cce5c1b1c756aa2991383a3"})
umount2(&(0x7f0000000180)='./file0\x00', 0xd)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000dc0000000f000000010000000000000000000000002000000020000020000000d8f4655fd8f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f00000000c0)="030000000400000005", 0x9, 0x800}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd8f4655fd8f4655f000000000000040002", 0x1d, 0x1500}], 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="6ec7504263614368652c00"])
syz_io_uring_setup(0x3167, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000000340)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = dup2(r3, r3)
syz_io_uring_submit(r1, r2, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r4, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
openat(r4, &(0x7f00000001c0)='./file0\x00', 0xa02, 0x100)

00:32:17 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
copy_file_range(r0, 0x0, r1, 0x0, 0x200f5ef, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x12d842, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2000000, 0x20010, r0, 0x8dd9c000)
copy_file_range(r3, 0x0, r2, 0x0, 0x200f5ef, 0x0)

00:32:18 executing program 6:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r0=>0x0, &(0x7f0000000040)=<r1=>0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r3=>0x0, &(0x7f0000000040)=<r4=>0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)

00:32:18 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x1000004)
ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000))
syz_io_uring_setup(0x3167, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000000340)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = dup2(r3, r3)
syz_io_uring_submit(r1, r2, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r4, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
openat(r4, &(0x7f0000000080)='./file0/file0\x00', 0xa500, 0x6)
writev(r0, &(0x7f0000000280)=[{0x0}, {0x0}, {&(0x7f0000000200)="b7", 0x1}], 0x3)

00:32:18 executing program 4:
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
syz_io_uring_setup(0x3167, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000000340)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = dup2(r3, r3)
syz_io_uring_submit(r1, r2, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r4, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
getsockopt$EBT_SO_GET_INIT_INFO(r4, 0x0, 0x82, &(0x7f0000000100)={'broute\x00', 0x0, 0x0, 0x0, [0x9, 0x3, 0xb35c, 0xffffffff, 0x5, 0x200]}, &(0x7f0000000180)=0x78)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000080)={0x2, &(0x7f00000000c0)=[{0x30, 0x0, 0x0, 0xfffff030}, {0x6}]}, 0x10)
r5 = socket$netlink(0x10, 0x3, 0x10)
getsockopt$sock_int(r5, 0x1, 0x28, &(0x7f0000000000), &(0x7f0000000040)=0x4)

[  180.540977] EXT4-fs (loop7): Unrecognized mount option "nÇPBcaChe" or missing value
00:32:18 executing program 0:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r2, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r2, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = dup2(r3, r3)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r4, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r5, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r5, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r5, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r5, 0x0, 0x3)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_PMK(r5, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000900)=ANY=[@ANYBLOB="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", @ANYRES16=0x0, @ANYBLOB="00012cbd7000fbdbdf257b00000008000300", @ANYRES32=r6, @ANYBLOB="0c00990004000000000000000a000600ffffffffffff00000a00060008021100000100000a00060008021100000100001400fe008116318664cdae6aec6b71baba6f6dfb1400020179671d343424bf4d15a10d504ec5aa880a00060008021100000100000a00060008021100000100001400fe00750000000015000000000000000000001400fe00cfc3d37cc10cecc9f1f05fd28e7ce85e"], 0xb4}}, 0x8000)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r4, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r2, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f00000001c0)={'wlan0\x00'})
sendmsg$NL80211_CMD_DEL_KEY(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="86f50000000000000000", @ANYRES16=r0, @ANYBLOB="010000000000000000000c00000004000b00"], 0x18}}, 0x0)

[  180.639525] device veth0_vlan entered promiscuous mode
[  193.545189] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak)
00:32:37 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
copy_file_range(r0, 0x0, r1, 0x0, 0x200f5ef, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x12d842, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2000000, 0x20010, r0, 0x8dd9c000)
copy_file_range(r3, 0x0, r2, 0x0, 0x200f5ef, 0x0)

00:32:37 executing program 6:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r0=>0x0, &(0x7f0000000040)=<r1=>0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180), &(0x7f0000000040))
socket$inet6_udp(0xa, 0x2, 0x0)

00:32:37 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_GET(r0, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)={0x90, 0x0, 0x8, 0x70bd29, 0x25dfdbff, {}, [@pci={{0x8}, {0x11}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x90}, 0x1, 0x0, 0x0, 0x42}, 0x81)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$IPVS_CMD_GET_DAEMON(r0, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x6c, 0x0, 0x100, 0x70bd27, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_SERVICE={0x1c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x2}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x6}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x8}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x5}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x80}, @IPVS_CMD_ATTR_SERVICE={0x14, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x10}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x8}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8}]}, 0x6c}, 0x1, 0x0, 0x0, 0x80}, 0x1)
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:32:37 executing program 7:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r2, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r2, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = dup2(r3, r3)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r4, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r5, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r5, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r5, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r5, 0x0, 0x3)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_PMK(r5, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000900)=ANY=[@ANYBLOB="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", @ANYRES16=0x0, @ANYBLOB="00012cbd7000fbdbdf257b00000008000300", @ANYRES32=r6, @ANYBLOB="0c00990004000000000000000a000600ffffffffffff00000a00060008021100000100000a00060008021100000100001400fe008116318664cdae6aec6b71baba6f6dfb1400020179671d343424bf4d15a10d504ec5aa880a00060008021100000100000a00060008021100000100001400fe00750000000015000000000000000000001400fe00cfc3d37cc10cecc9f1f05fd28e7ce85e"], 0xb4}}, 0x8000)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r4, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r2, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f00000001c0)={'wlan0\x00'})
sendmsg$NL80211_CMD_DEL_KEY(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="86f50000000000000000", @ANYRES16=r0, @ANYBLOB="010000000000000000000c00000004000b00"], 0x18}}, 0x0)

00:32:37 executing program 1:
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r0=>0x0, &(0x7f0000000040)=<r1=>0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
ioctl$BTRFS_IOC_SUBVOL_SETFLAGS(r2, 0x4008941a, &(0x7f0000000000))
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000140), 0x40, 0x0)
r4 = signalfd4(r3, &(0x7f0000000080), 0x8, 0x800)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r5=>0x0, &(0x7f0000000040)=<r6=>0x0)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r7, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r7, &(0x7f0000000240)={0x20000000})
sendmsg$802154_dgram(r4, &(0x7f0000000540)={&(0x7f00000000c0)={0x24, @short={0x2, 0x2, 0xaaa1}}, 0x14, &(0x7f0000000100)={&(0x7f0000000440)="c3c0a61991326d8b134b70973ed7695692f64e9f182140ff5dc1f91f9c893c54668ad2f560c62e627c027fb748a5ff6e7be1ee228e0bf8b29501e8774c9bee09a61303cfd9a20948229aa0e6e5a9d8a12e6372bae016c8b449b3f539af9f9e036f82fa893804f7cab394305ba5a6481010ea46094fa2f9ea6a33ddd4c88535fa2f3c75b57a2a43aae340a166fd9ed5392b92134f9a19b08a77ac65bff92a9fd1e68e7d93d269cde60f9124a355d2fb7088b464c9dce7f6ad16466d123def2f697850f775ea64f2d374b8770497d6a28075212a8a099ba8a82dd50d2354dc590feaac256e0d3b32d2253a09", 0xeb}, 0x1, 0x0, 0x0, 0x4004000}, 0x2004c804)
getpeername(r3, &(0x7f0000000380)=@x25={0x9, @remote}, &(0x7f0000000400)=0x80)
sendmsg$TIPC_NL_BEARER_DISABLE(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000180)={&(0x7f00000005c0)=ANY=[@ANYBLOB="4f62a1724247ff01c1b697214556526ec1de562a4d5a9117a9823673a416625644d214fbe42e52d0b8b45d055f8b9a25836642ebf5413e10d954a0f69ed105dfd50876b87a60e8da3ebf9be45c6cf6cfc5fbe94a37bd4f47ae140cb95a580b61d73a86f0aed4ff73d5e98c276fdb803bd32560c6783c59399329ccdec34cc1d946828703", @ANYRES16=0x0, @ANYBLOB="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"], 0x134}, 0x1, 0x0, 0x0, 0x20004001}, 0x48000)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)

00:32:37 executing program 4:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r2, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r2, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = dup2(r3, r3)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r4, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r5, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r5, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r5, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r5, 0x0, 0x3)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_PMK(r5, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000900)=ANY=[@ANYBLOB="8539070923a757ca376e738afb7a62c7226be7e5124157a75b12d56b74def09ae49f1e3e26a1816b3934babd9eb5c8daa90ca12a115ab30918f2c8e9e284843d7f4720f6ab746dc170ca6ee2547ca1253a1f8af188193f101c137d1bbeef5a3fd82684ada1153fd3182462d9bb5bd8fb6aba0c8a2acbc30fc89d78b3ad707edeb452a164ce7bf325ce85b4945b944a9d4bcc19d5e2febc9bf346c6100fc45a19c2a8da948a1e8076e02aa1eecce6b9230de16c1a19ee2ffff7bc01c78fb711e56e98338efab57e3fd314fa30585ff275d33dcb9a39f1d24c5ca6eead1510f3fb96724153bbf45812b08eefb50e17731516a5396d186c01b4e6dee678bdcde79947a3fe8fe6f48c41bccc4a7e7ed1f9b40374e72d16012c1cb58b8ae179f2e7", @ANYRES16=0x0, @ANYBLOB="00012cbd7000fbdbdf257b00000008000300", @ANYRES32=r6, @ANYBLOB="0c00990004000000000000000a000600ffffffffffff00000a00060008021100000100000a00060008021100000100001400fe008116318664cdae6aec6b71baba6f6dfb1400020179671d343424bf4d15a10d504ec5aa880a00060008021100000100000a00060008021100000100001400fe00750000000015000000000000000000001400fe00cfc3d37cc10cecc9f1f05fd28e7ce85e"], 0xb4}}, 0x8000)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r4, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r2, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f00000001c0)={'wlan0\x00'})
sendmsg$NL80211_CMD_DEL_KEY(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="86f50000000000000000", @ANYRES16=r0, @ANYBLOB="010000000000000000000c00000004000b00"], 0x18}}, 0x0)

00:32:37 executing program 0:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r2, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r2, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = dup2(r3, r3)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r4, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r5, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r5, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r5, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r5, 0x0, 0x3)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_PMK(r5, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000900)=ANY=[@ANYBLOB="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", @ANYRES16=0x0, @ANYBLOB="00012cbd7000fbdbdf257b00000008000300", @ANYRES32=r6, @ANYBLOB="0c00990004000000000000000a000600ffffffffffff00000a00060008021100000100000a00060008021100000100001400fe008116318664cdae6aec6b71baba6f6dfb1400020179671d343424bf4d15a10d504ec5aa880a00060008021100000100000a00060008021100000100001400fe00750000000015000000000000000000001400fe00cfc3d37cc10cecc9f1f05fd28e7ce85e"], 0xb4}}, 0x8000)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r4, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r2, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f00000001c0)={'wlan0\x00'})
sendmsg$NL80211_CMD_DEL_KEY(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="86f50000000000000000", @ANYRES16=r0, @ANYBLOB="010000000000000000000c00000004000b00"], 0x18}}, 0x0)

00:32:37 executing program 2:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
r1 = creat(&(0x7f0000000080)='./file0\x00', 0x0)
copy_file_range(r0, 0x0, r1, 0x0, 0x200f5ef, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x12d842, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2000000, 0x20010, r0, 0x8dd9c000)
copy_file_range(r3, 0x0, r2, 0x0, 0x200f5ef, 0x0)

00:32:37 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_GET(r0, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)={0x90, 0x0, 0x8, 0x70bd29, 0x25dfdbff, {}, [@pci={{0x8}, {0x11}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x90}, 0x1, 0x0, 0x0, 0x42}, 0x81)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$IPVS_CMD_GET_DAEMON(r0, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x6c, 0x0, 0x100, 0x70bd27, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_SERVICE={0x1c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x2}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x6}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x8}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x5}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x80}, @IPVS_CMD_ATTR_SERVICE={0x14, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x10}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x8}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8}]}, 0x6c}, 0x1, 0x0, 0x0, 0x80}, 0x1)
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  200.073698] audit: type=1400 audit(1641429157.596:9): avc:  denied  { block_suspend } for  pid=4349 comm="syz-executor.1" capability=36  scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1
00:32:37 executing program 6:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r0=>0x0, &(0x7f0000000040)=<r1=>0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180), &(0x7f0000000040))

00:32:37 executing program 1:
ioctl$sock_SIOCSIFVLAN_DEL_VLAN_CMD(0xffffffffffffffff, 0x8983, &(0x7f0000000000)={0x1, 'geneve1\x00', {}, 0x2})
r0 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40010, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="0200000003000000040000006a000f", 0xf, 0x800}, {&(0x7f0000010500)="ffff3f00000000000000000000000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x802, 0x1000}, {&(0x7f0000011600)="ed41000000080000dff4655fe0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000012c00)=ANY=[])
openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x121000, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
syz_mount_image$msdos(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
getdents(r0, 0x0, 0x0)

00:32:37 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_GET(r0, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)={0x90, 0x0, 0x8, 0x70bd29, 0x25dfdbff, {}, [@pci={{0x8}, {0x11}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x90}, 0x1, 0x0, 0x0, 0x42}, 0x81)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$IPVS_CMD_GET_DAEMON(r0, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000480)={&(0x7f0000000400)={0x6c, 0x0, 0x100, 0x70bd27, 0x25dfdbfb, {}, [@IPVS_CMD_ATTR_SERVICE={0x1c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x2}, @IPVS_SVC_ATTR_PE_NAME={0x8}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x6}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x8}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x5}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x80}, @IPVS_CMD_ATTR_SERVICE={0x14, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x10}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x8}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8}]}, 0x6c}, 0x1, 0x0, 0x0, 0x80}, 0x1)
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:32:37 executing program 4:
syz_mount_image$ext4(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x1b, 0x0, 0x8, 0x0)
r0 = inotify_init1(0x0)
mount(&(0x7f0000000380)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='9p\x00', 0x200000, &(0x7f00000001c0)='%^{]\x00')
inotify_add_watch(r0, &(0x7f0000000040)='.\x00', 0x404)
syz_io_uring_setup(0x3167, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180), &(0x7f0000000340))
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = dup2(r1, r1)
bind$bt_sco(r2, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
inotify_rm_watch(r2, 0x0)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0)
symlink(&(0x7f0000000940)='./file1\x00', &(0x7f0000000980)='./file0/file0\x00')
r4 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$TIOCCBRK(r2, 0x5428)
setsockopt$inet6_IPV6_RTHDR(r4, 0x29, 0x39, &(0x7f0000000040)=ANY=[@ANYBLOB="3682040000000000fe800000000000005d8ed39b8a2d3e4e"], 0x18)
sendmmsg$inet6(r4, &(0x7f0000004000)=[{{&(0x7f00000016c0)={0xa, 0x4e24, 0x0, @private0}, 0x1c, 0x0}}], 0x1, 0x0)
syz_mount_image$vfat(0x0, &(0x7f0000000280)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180), &(0x7f0000000040))
io_uring_enter(r5, 0x76d3, 0x0, 0x0, 0x0, 0x0)
close_range(0xffffffffffffffff, r5, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', r3, &(0x7f0000000080)='./file0\x00', 0x2)

[  200.326840] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue
[  200.354697] 9pnet_virtio: no channels available for device /dev/sr0
00:32:37 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_genetlink_get_family_id$ieee802154(0x0, 0xffffffffffffffff)
r0 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000080), 0xffffffffffffffff)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_INTERFACE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x14, r0, 0xb01}, 0x14}}, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000840), r4)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000480), 0xffffffffffffffff)
r5 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r2)
sendmsg$NLBL_MGMT_C_REMOVEDEF(r3, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x38, r5, 0x400, 0x70bd28, 0x25dfdbfc, {}, [@NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @dev={0xfe, 0x80, '\x00', 0x13}}, @NLBL_MGMT_A_CV4DOI={0x8}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x3}]}, 0x38}, 0x1, 0x0, 0x0, 0x20}, 0x0)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000840), r2)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000840), r6)
sendmsg$NLBL_CIPSOV4_C_ADD(r7, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000880)={0x38, r8, 0xc1a5c1f044c0bcef, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x3}, @NLBL_CIPSOV4_A_TAGLST={0x14, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x7}, {0x5}]}]}, 0x38}}, 0x0)
sendmsg$NLBL_MGMT_C_ADD(r7, &(0x7f0000000400)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x30, r5, 0x400, 0x70bd2d, 0x25dfdbfc, {}, [@NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x7}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @empty}]}, 0x30}, 0x1, 0x0, 0x0, 0x4040010}, 0x20004001)
sendmsg$IEEE802154_ADD_IFACE(r2, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x180}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0xffffffffffffffe0, 0x0, 0x20, 0x70bd2d, 0x25dfdbfe, {}, [@IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_DEV_TYPE={0xffffffffffffffa6}]}, 0x24}, 0x1, 0x0, 0x0, 0xc0}, 0x4844)

00:32:37 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_GET(r0, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)={0x90, 0x0, 0x8, 0x70bd29, 0x25dfdbff, {}, [@pci={{0x8}, {0x11}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x90}, 0x1, 0x0, 0x0, 0x42}, 0x81)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:32:37 executing program 6:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r0=>0x0, &(0x7f0000000040)=<r1=>0x0)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r0, r1, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)

[  200.488907] 9pnet_virtio: no channels available for device /dev/sr0
00:32:50 executing program 6:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180), &(0x7f0000000040))
socket$inet6_udp(0xa, 0x2, 0x0)

00:32:50 executing program 0:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r2, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r2, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r4 = dup2(r3, r3)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r4, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r5, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r5, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r5, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r5, 0x0, 0x3)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'wlan1\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_PMK(r5, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000900)=ANY=[@ANYBLOB="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", @ANYRES16=0x0, @ANYBLOB="00012cbd7000fbdbdf257b00000008000300", @ANYRES32=r6, @ANYBLOB="0c00990004000000000000000a000600ffffffffffff00000a00060008021100000100000a00060008021100000100001400fe008116318664cdae6aec6b71baba6f6dfb1400020179671d343424bf4d15a10d504ec5aa880a00060008021100000100000a00060008021100000100001400fe00750000000015000000000000000000001400fe00cfc3d37cc10cecc9f1f05fd28e7ce85e"], 0xb4}}, 0x8000)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r4, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r2, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f00000001c0)={'wlan0\x00'})
sendmsg$NL80211_CMD_DEL_KEY(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="86f50000000000000000", @ANYRES16=r0, @ANYBLOB="010000000000000000000c00000004000b00"], 0x18}}, 0x0)

00:32:50 executing program 1:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000240)="35f7fce124414388197f7e2f25ad31b5a9d90b43b09152b3d0ed41e8af608c3719ee53d248f95feb44dcfbc12243006bd180cee752acf2d471991fce8dbab4ad7090612603b9f61459a14c9ebc043490498717e607f5493f395d8aced2473f323f07d7f70ae2ccc352b82e650e07847f61065ab9e47d24a6d1bc00129006434672cb865e4f52e467bee8cb5893ac95334e244f4ee76d94d6f79ef1d4f9c30e640bc3af8aaf98f4b997c04b229c0ed344a5f29491c5a0e70d5bcd4400463b95c544bc70ba3ecea5efb293affd4fdd36a713f26f83c88e771a85381cd5be2326c43a2f49f04d5ad821ed5cea088612f0e1c75e65ee6870c96d22351ee19e6e383dfd8e16696da06dec15f591d94f516874d10c0189e3a3529152c801ad6998612b3a95380e82a05d27e2a9c5243c87b2ccd4ad9257bfbfaf322ac86cb2ba74b7d9531330d325690cbf324a005ace176aaee95b49e5b08a5f1fa8f6aa0fa8fd01d13d2d77d526fb638aafa2a3cabc182fe3bf8ef6d438e96b2d1cfbb7a62cf6a63e0c824c5b965d447ca9aedccdd881546e522aedd5d55643ddc53f048ae11e97168164a796defb19a459e27a227a98ecbeeb5ab768b29ce04915d95c27bff7a265f4d3dc37c505b9630503b7cf06e62591d7a847e3516dafa1d53f466e18f02592b761ef8ca79dc4579cd75a5817c955a54c84d5984b9ecf84816308febabb0bdc09dea99c6075bc3874ea425caf8e26b7ee697499cf6890958874e712d5391f3379896ca843e31f8dd2a0a6812159fe3b77f912392234fb7f748331827c02da94832f1c999dfbd0b623825803de028ae51b346a89acf741f574d219864a0a00a0a6e53c6d26f313799f2725cfbdd9b3abab4971276679ae3477f08a522a485048d112603ecd98d5b00a17bddaea2d6177bfdb699e088931b515c87c69878d2ec5feb350f08fcb6a9d7f12dec18e16aee09d994baf8b283b5201e4b04d6ab9ca2cc5c251c24b7f5f3202443e6a2f4376046c4e8dc1b5eaab8a20051648d6492c985c5e07973635d46e8aa198d91bae2474b607afd7f93b74bbf68dab541c262e6069fc0e843140576745cd85a40d8dffb0ce9e706f3d48821706b8ea899745536a735e24b26875584328377136ef0ce13326e80c3536bbfda4c6ee7565a5481e396bc0ea5f94fa56e8db5e8cb8946de3a1f3e81e840a6669f3ec4163f771173f8874319ed82a1ae456ea05ab69d7b37ed1aca76f201179856542a0d48f681e04ed40e457f3c8c4a191dd3d15c7dadd1524f6646a1ffd7cca007876ca774fa106b58befae8f08144864ff16234b81f23c18204798017befeb1293292186bf90e8ec0e146e71aaefb2eaf5a5ae6d65999d89babb968aacb6ac7b2ebaeb6b61d5828387b8aa231ef9675539fcd3efc92ab77ec24933dced7a1399ad8e2b79f7b2c4a5d85e9d8ed313dfcd9d71af26ec09e419ba2165c021118a6d40a1f4449bb0f3f383abd53674f6ab871bbd88f16fbdd62b13bb42751f17172e826fa68926159e99941674b4d2fa12997c21478d2efaee6abd405936fd647fd74be35d46739f49ed809d857efac79fddde2e9e128597ce2ef2e8cb6e41bbaf6ccad11881a3f6e6f75b1950b20331075706e921f6e9665a7be7521d7927c34315150fbf91cab472995412fe071bce33ee82d179a979d98722eaf5795a874a09bc36199c6e558192e2fe5db5bff58e688a3ab9f9df5f723b93357f3cd5eb592329db80f8d9b5b6e26f9c1af964238166b693eb94d598c34d415ef157b2ad4fae7c1eb5665a7cf8efb632133ac3a8581792ab8c50ba90a693623e240d29b60e65e1b24ebe19dfb636aadb0ce4b03f81448cb17f0c248811b46042106c8b211f81cb8d32065e3b9c5532891a5279abf385a1cf1a48c1384a8955a044ed6eef46b60926277564b45c5a5767cbc58a7754cbc4a5d0886ad4734f188cf10cc3c77cdea696c8b73557d902428d169a34e399fed8a43c08088d842a0ddf674f866d01d6cd467c4ec63e07a0c53cd1b1b2747eab1f74a1c753feae5666827296096e84c11f30e5c8ebc0b962fb5488cea3746ba1f4c2e2837322d3523f8a6d7dc7387af4ab2a0e4961fe635f7b778d7304998cea0167f048d2b6cbdbd8d4063af7e1ed81df2d5e63e3779f78d8300c8060c6f6b4ae934201e84db81010fecb15b5b2936babbbcd120f4a7993a176ad96b81869f95b8760bb24b37d40f06572969066ecfd72469ceb6dfa0a943b19ec348a848975bac86121cf89f31a187cbdf740f3be8c3330fb944074fcf062b33dd3c081cf14547ad64e626d99751579cc8ce69b01c10c669a15231ac866d3c3622881ba7204fa641eba27f32e0416fdd08cb94bfac781474bc52f1d2b1dbe23541c2181809b52ee8d097dc02c725d059507af16f356f603d1e83af2489cd70308f190d00e629f4ecef84e838fe854e31ff60f5f24d86cc6da64266a08cbad59da2081f83fd1fa944c0433c858df46ce95079bc8dda1001026821287296430ead20e56c514dc04b1a607dcbdfec262cea96707aacfb2eac72fb05669e09b0e6db48a0a441b1ea565b5ac7181850cc821b38281123c93d4db7f3a71da95ecdc0b5fd7b912cda2905ddb718330474cf32c709ee2da330693702fbb9dc778a94d2cb6809f980a5137bf80b525e7075e2f87c16689cfe7b0c7a238f02e19a34351215d7ccc68e08e738c72be9d35cf28a9e430ed4aa03c3e922c6a7df5c348618d304f4938add19c979b900dfe79a780bd0310c20b683789c27a64f2bed91b84d929cb207e03e1b7fbc68b3bbdad426028c810cbb80dafb4f8680504502786d1756b7e53daa85dfc7ca8cee2f1aa9516aa15a8618d83cf0d1876e312433a681d1c1880477b1973fd15a2d77981c1dd8fe7a281db7cda87330cea7a92c7961ff916ea9d4ddc734cc375cd4ba3d22abc20267ceb7bc38438c648b3af16aad5e101845694b81c0dfd3dfac52352f03db56ec0e34656b8a794accfeec0bee923a9207dffadd165d88ee199d571170956d788a718416b323303b60d05d18fff9e7ba8d5dd1d7a7ff2c84237275e5ca3ab5994a8c4b7ede3b86552d50f77e0b9a8ca0b419619ba71d316f607f34d3906e8de61dd4b288f3df73904cc9230d181fa6a0a34fbd6d144db7d8b0398c8c65f574f30fda6b5b2bb80c5ee1d95dbaf56851415238af191852b12a91817222df77e2c9cce46f7379fd570de44c86efd001dc85339fe32cae20e1e21fca68060d36fadc623b11f2f5e6e6f6a00e68a126cc95db492ef9412ac8b3c2781dbe2c815567e73dd36e1acac004bb88a5031710edbf56a7a019c6d740356335b94b8e2df03b528d01a5d3080faaffd4e204736d919a1e55893f19c1ccc84985e76f69d7ce7e50bef2667b57b358b79a9c986c881eaf2e6f55ba24bb04d52a81bc2b1431185ab43ca89609e8cbb869d1eb761d037399736a0089b7100b15bf6afb081fb1101f4bd38b234fb95a4d9a96737afeb007f922b8d93cbc728474871c44c4855b989599a91f56260a02c8b442e3c89f6e0039aa1515a23821a9c0f387a905379e425aebdf953773b32c26aa4d6839518f040dfbacd1e8f30e47071077ad4d56c77a89e85574ac13e331998e19c60983e3aeff387efeed19e333f266a308c2248bfae29867da3bb4d205b3f359087e033f09c27f4de5b8abb550afcc8605832231ba3f1a08023622af043106eaa3fa7fb1d4820d1405062d849f4f7c49f269ac8f7b6a98988da6f6d77a3009082d809bd339be0fcf68c744328c7f90047f46d59f33e0a1862e1d766cfe9149b5ccad95c19f2862f9a5e417cab89f980624109520deca7581ae75e5319945e2be5706f6a1eba2271bce5839ad32486727fd94eb942d8073a43cefffdfb2bfe557695db48f334322f77ae70e153686ec36c8d982da13a9743650948073a7feee448f2710d22ae30f053120ee90f48b9729824bc9b01cfa2bd05f5aecc271e753d9aaaa65767e2b2d2812d1b0619b0a59b796527f796891ff12da5a08d1ef82e44000c3c79ced4c34d116f3441793205584db2b5d8b21c38f63ad6932990c6e94190ce553340e4f72b9fb2ee44380f650d142b9f7b6aca0f43836080c047b95ef8ab2a380692556b3b781dec1bf9b4cb816c65a01f14b20fbd32d73920437380835079657c34e9a98519ff4e4b69251c6f3014adb85fce1a574af78ec2775b8748a0aa77e36cafd200eb0b847a209d2cbca2db0eec5104c61198249affcf5f9e2f3c05a2d0a334bffd96e619af4b4dd3191728d9eccd9e78fcb8d74cfd9dd9058c7bcd5dcf663971384b017a48b896769d95caed820e166b68a2880ea48ee8f220a9480fbd1a94fa2f51d0bdd6146f903989e2ff5fe0c07c43c8e38dbb32a5f5d4d7035b07fa302a714b5127bb292d31a9d45386219e7d92bda088ab6703e3d7dbdce2cba51992d60614ca06789a02cd6415653bcddcdf6a4e7561f1215ed0f0026eac69d96a5e51ff3255feb3006d248f85ce72f8b5bbdbe9df336a0c7638e95b094c9891bb3ca7ed19bc938f2b403ce0db839c812026892aa87c293e8f7a94c7aed70fca01809f5ba7accfd8b66f1f266e3b726e9a15385bdb5b79fb1e202daf94ab9941873200bc9e0c67c3c7c85fe623a95e950eae4d22de6d4de9985fe82fe4f084f2df54ce125bfa54f886975968ce85206bbc0e928b1faa5493dc16c15b0e05350c3d3088284e2622e2c8145b71faf701529622ce3efe50ceb90112c406cf652af39313f0f4f239c5e023a16861627030fd419274907a9458623b17127a9b4561a8d0cf6de5d0af72bab0bc556fff987dcd75bb4fdbfbc2972d960f3f680ebbbda2af8eb2eb7c90670ad2046c6a6795a4ff62894f7ea4d2e21dac2eb1249cc24741cc7908ec581474e43f7b91370ebe244badf332e2c4ace624551581ccaf31b7dd65175229dd97c1614ef588a8f24e527a9411c323bb286c17921568cb50a64104c40551b178c87672afe9a29a1435caadf496f03394d72dab36474bb05f8925937eb73467212cb9b60fb5cf184491a9e4c0faab1809eabdcc540ddffa1245688d1a8f0f7e96a325743109d263361cf187110442214de925f241674397779cc7a587561f642417001906d52cdc2fa852f8920b0fa8cc3f3662b9292ee42fc0409637b2cabf91f5dd10f9b1b5a84488c86fbf3b38106ede5300a2a2dcffb80f5698616feaa0acb998ac9d2749c94a0e1b9d632cd27bce094c99afc7d9446dc39d9e308dfb9bd0cc8e0c4bddd7867822e3e5be5e36a975037b78c716576d19d9643ddd83fa47adcb24812623799732eafe93bdcf66c78aceb81f313ef8f6545c27bdd9e510f578b9db6c85b6a4ee99c39ef7c0a0ef30e4e3d4edab9944ace6adc686ea9b8409f0286659ec73272633fb0a45ba08e1dce34a6b4931a37c7ef0535bab64605553c4d9c2743b73344d3585b402a252eaebd9109f44955eb8670fcf5e79b912c0e02eb4acecbaa14d6741d631d653d478fed271019978ef0511cdb49b314d601e6aa32138bcf91291fc694f2bfca5c93eea6ae589b927ba0cc4ae799506a04864863691c11c14fe13d7f6b961edba2fade8f17a729abf622e192e7502aeb05320c5b493e9703a18293bb49dc0df31a41d7530282fc9245e5772ccd9cbb3b52b440758e7be2b341d86560697a6d9f82c5ff60945f8bb91668b8853f08dad226fbae258f1d88b249ea95f8bf85c8a472964b4c85bd7889b36da40b0e0046b70c88d4845", 0x1000, 0xc1}, {&(0x7f0000000100)="747a1d7e48b5d74cbc6e6e40d758ebd9705d0c31be74a4abb93eb94c6fcc43cef0bc2884107c31f05589a43e85f477897908f40363b350824f2d37f9cd9dda7d530faa4555b85c60e3340551acf06769b08e873c992b8b28104f470749a276985b2bf878275560ed8ccad80ca442d1dd458bb548d48d8f5abac3fa1e42e19f01a60ae269b16f5c83028458968b73be5ee843da94d200f2937970ec3e5dc1816d94bac0fcec04eaf6a39968fc58fbf534f891fb64ae6b0d39287ada069cfb95498aefed3bb2e6ace860ce111d3e665d300749e3cd0bafa2f196e2da2fd6976e8df0daf4ea89eba48a8753fde2162229978c1842c534815667", 0xf8, 0x8}], 0x8800, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='coredump_filter\x00')
r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000004d00), 0x48040, 0x0)
r3 = syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180), &(0x7f0000000040))
io_uring_enter(r3, 0x76d3, 0x0, 0x0, 0x0, 0x0)
r4 = syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180), &(0x7f0000000040))
io_uring_enter(r4, 0x76d3, 0x0, 0x0, 0x0, 0x0)
r5 = accept4(r1, &(0x7f0000004d40)=@tipc=@id, &(0x7f0000004dc0)=0x80, 0x0)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r1, 0xc0189378, &(0x7f0000004e00)={{0x1, 0x1, 0x18, <r6=>0xffffffffffffffff, {r1}}, './file0\x00'})
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r7=>0x0, &(0x7f0000000040)=<r8=>0x0)
r9 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r9, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}, 0x0, 0x0, 0x1}, 0x0)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r10=>0x0, &(0x7f0000000040)=<r11=>0x0)
r12 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r10, r11, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r12, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
r13 = syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180), &(0x7f0000000040))
io_uring_enter(r13, 0x76d3, 0x0, 0x0, 0x0, 0x0)
r14 = syz_open_procfs$userns(0x0, &(0x7f0000005340))
sendmsg$unix(0xffffffffffffffff, &(0x7f0000005440)={&(0x7f0000001240)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000002300)=[{&(0x7f00000012c0)="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", 0x1000}, {&(0x7f00000022c0)="1b311fa375d36854f113814dbf44070b129de7e2c92e10553b350480ed5f288a", 0x20}], 0x2, &(0x7f0000002340)=ANY=[@ANYBLOB="18000000000000000100000001000000", @ANYRES32, @ANYRES32=r2, @ANYBLOB="30000000000000000100000001000000", @ANYRES32=r3, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r1, @ANYRES32=r1, @ANYRES32=r4, @ANYRES32=r1, @ANYRES32=r5, @ANYBLOB="24000000000000000100000001000000", @ANYRES32=r6, @ANYRES32=r9, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r12, @ANYBLOB="0000000028000000000000000100000001000000ce70e70612e98ad1b153cfb74c06a7f8bcf5bb24835269dd9228918ba922ed828ededa6d5b2ebf3e2813550101b312497be14512c0ea2a889ef423d131024d2a540f9fc0d308fae8d7e28306ca26d121fc68f6506081d4fb680d4083fc5a057787335032940ba3a62df66a396d4d37a76af0b34964e1164de7cbb4331a48a7cd174615000000000000", @ANYRES32=r13, @ANYRES32=r0, @ANYRES32=r14, @ANYRES32=r1, @ANYRES32, @ANYRES32], 0x98, 0x882}, 0x44000)
writev(r1, &(0x7f0000000200)=[{&(0x7f0000000040)='0', 0x1}], 0x300)

00:32:50 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x84662, 0x0)
ftruncate(r0, 0x4)
r1 = syz_mount_image$tmpfs(&(0x7f0000000100), &(0x7f0000000140)='./file0\x00', 0x3, 0x7, &(0x7f00000006c0)=[{&(0x7f0000000280)="bea1b824455204e83986214bcc07e58a98b8d786afc44e60c2397714ccf0e9897df2a3b872154dd8ad609e82cdbc9ba937adcb2540f57b067331", 0x3a, 0x68e}, {&(0x7f0000000380)="3467dde5b4781ebd499c82666c9ea6fa00f3484e37eac27209b273d3811150c541868148ba7cd70b10492375a6625b2dd4c7405ccda9146d3a0571f9b744479691", 0x41, 0x8}, {&(0x7f0000000400)="5b1f50cec70920764d0ec7d2766752eac7a0cad039849e86c2175d10fdbe77f9bbc12b02d07cedd69406a75f243523e387fc9564f6bb90718c663cdb3fc7fab843c8d70579dfdc18b351e51a8c1e3af82bf7344c0ce9a90ff89f3790eb35aff6b0e1272065d71370eb031aca016e8e47c6ead2447beffab43d837b624d5af5f7defd1b2a4a532c8836f3112e2b111406c92fc6138704c0d1556c34e7", 0x9c, 0x50000000000}, {&(0x7f00000002c0)="2a12", 0x2, 0x101}, {&(0x7f00000004c0)="891c460e089dabb6325f847a772dd1fe5461aaed5f029511390263400771b6a269193603fdec754f646727643baa563d25a93bb7799cf6e09b3f6c", 0x3b, 0xa3fa}, {&(0x7f0000000500)="b6b0ab9d466599a1cc79156029eecbdb979698d31dbafceb4f3c9da45077e5eaeca64f30cd71023612d32fdb06c4a35d875d2dc8157757a5d8ed126d0ea06cea8689263b56fcdf12ddffe02d381728c226368f73df0a4b92409356742da3d55b7be8e485c359a44b6d59bc0a08e431367c6ad1af6663eaadf86280a475748389f6f31ef202461d03d8ca9a3744c1bdc974a0d4363d4457b384fd1959e75ff2df8d8fb6470d6886103bfdcd31060e31a1a5f14bad948ecb8753527a7bde83ba6c0f2bf264ef2356dade8e60f5f934256a0da7", 0xd2, 0x4}, {&(0x7f0000000600)="b6fbe49c698f1727da633eea9cc628bc83a94fa3cebcd5722413b2c7ea9db2bf232d0f32b9a91c5568f6e8181a017c4972d7cbade09ee3f8f6a526a4ba97b7bda3554dd5cad6d21dcbfd76b8d1321ba898d9200bbd168ce4ed99977e055cc5a81b86a2af87d5f423c8e4af10cff42eb1e83736e3b403c7185a50669723a5f48017055127", 0x84, 0x7fff}], 0x5040, &(0x7f0000000780)={[{@uid={'uid', 0x3d, 0xee00}}, {@huge_advise}, {@gid={'gid', 0x3d, 0xee01}}, {@huge_within_size}, {@nr_blocks={'nr_blocks', 0x3d, [0x30, 0x32, 0x6d, 0x67, 0x34, 0x33, 0x38, 0x25, 0x34, 0x65]}}, {@huge_always}], [{@fscontext={'fscontext', 0x3d, 'sysadm_u'}}, {@uid_gt={'uid>', 0xee00}}, {@obj_user={'obj_user', 0x3d, '\x00'}}]})
write$binfmt_elf64(r1, &(0x7f0000000840)={{0x7f, 0x45, 0x4c, 0x46, 0x7, 0x3f, 0x0, 0x63, 0xbe, 0x2, 0x3, 0x3, 0x3b7, 0x40, 0x175, 0x1ff, 0x200, 0x38, 0x2, 0x5, 0x100, 0x1}, [{0x5, 0x912, 0x8001, 0x8, 0x0, 0x3, 0x8}, {0x2, 0xfffffa73, 0xe0, 0x7, 0x7ff, 0x40, 0x10000, 0x1}], "40f2caf406f18b1f0aadfd9c9dcc40031f28df9a9b20f8c41d5a70d3cb6411ff4b7fa0f02dea0696a5170afa4fba21", ['\x00', '\x00']}, 0x2df)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0)
syz_io_uring_setup(0x3167, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=<r3=>0x0, &(0x7f0000000340)=<r4=>0x0)
r5 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r6 = dup2(r5, r5)
syz_io_uring_submit(r3, r4, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r6, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r6, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
ioctl$SG_SET_TIMEOUT(r6, 0x2201, &(0x7f0000000000)=0x100)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x0, &(0x7f0000001940), 0x0, 0x4)

00:32:50 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_GET(r0, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)={0x90, 0x0, 0x8, 0x70bd29, 0x25dfdbff, {}, [@pci={{0x8}, {0x11}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x90}, 0x1, 0x0, 0x0, 0x42}, 0x81)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:32:50 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/class/misc', 0x880, 0x4c)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_UPDATE_FT_IES(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x820000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, r3, 0x100, 0x70bd2c, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_MDID={0x6, 0xb1, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="05000000000000dffff42c00000008000300", @ANYRES32=r5], 0x30}}, 0x0)

00:32:50 executing program 7:
perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_genetlink_get_family_id$ieee802154(0x0, 0xffffffffffffffff)
r0 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000080), 0xffffffffffffffff)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_INTERFACE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x14, r0, 0xb01}, 0x14}}, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000840), r4)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000480), 0xffffffffffffffff)
r5 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r2)
sendmsg$NLBL_MGMT_C_REMOVEDEF(r3, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x38, r5, 0x400, 0x70bd28, 0x25dfdbfc, {}, [@NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @dev={0xfe, 0x80, '\x00', 0x13}}, @NLBL_MGMT_A_CV4DOI={0x8}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x3}]}, 0x38}, 0x1, 0x0, 0x0, 0x20}, 0x0)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000840), r2)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000840), r6)
sendmsg$NLBL_CIPSOV4_C_ADD(r7, &(0x7f0000000b40)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000880)={0x38, r8, 0xc1a5c1f044c0bcef, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0x3}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x3}, @NLBL_CIPSOV4_A_TAGLST={0x14, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x7}, {0x5}]}]}, 0x38}}, 0x0)
sendmsg$NLBL_MGMT_C_ADD(r7, &(0x7f0000000400)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x30, r5, 0x400, 0x70bd2d, 0x25dfdbfc, {}, [@NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x7}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @empty}]}, 0x30}, 0x1, 0x0, 0x0, 0x4040010}, 0x20004001)
sendmsg$IEEE802154_ADD_IFACE(r2, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x180}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0xffffffffffffffe0, 0x0, 0x20, 0x70bd2d, 0x25dfdbfe, {}, [@IEEE802154_ATTR_DEV_TYPE={0x5}, @IEEE802154_ATTR_DEV_TYPE={0xffffffffffffffa6}]}, 0x24}, 0x1, 0x0, 0x0, 0xc0}, 0x4844)

00:32:50 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_GET(r0, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)={0x90, 0x0, 0x8, 0x70bd29, 0x25dfdbff, {}, [@pci={{0x8}, {0x11}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x90}, 0x1, 0x0, 0x0, 0x42}, 0x81)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  213.235007] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.4'.
[  213.235196] ======================================================
[  213.235196] WARNING: the mand mount option is being deprecated and
[  213.235196]          will be removed in v5.15!
[  213.235196] ======================================================
[  213.283981] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.4'.
00:32:50 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_GET(r0, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)={0x90, 0x0, 0x8, 0x70bd29, 0x25dfdbff, {}, [@pci={{0x8}, {0x11}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x90}, 0x1, 0x0, 0x0, 0x42}, 0x81)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:32:50 executing program 6:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180), &(0x7f0000000040))

00:32:50 executing program 2:
r0 = syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000100)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x6}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x100, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000300)=ANY=[@ANYBLOB="01000000010000001800000077b307615bdce694af1f7496d238e64967177c2bde16a9eb2d6e3a5e3d07473ecb7b576cc19dae1995578cfe3cce797e384fcd89a81f34a7346cb1bcbcc0a2a792618b91fb83436434293b4694a56b17fd4e3bc45ae115c225dd28391d8b8154415456e9880021a15620563bca16712a559632a8ff018ce12d78127076b27d403e7fa9cb1d18c98ab06a6659f9b82f3d5a6bcd206b1954891258b953dd", @ANYRES32=<r4=>r3, @ANYBLOB='@\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r5 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='oom_score_adj\x00')
write$cgroup_pid(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r7=>0x0, &(0x7f0000000040)=<r8=>0x0)
r9 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r9, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f00000002c0)=[r9, r0, r0], 0x3)
write$tcp_mem(r6, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, r5, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f00000001c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x4}, 0x64)
ioctl$FS_IOC_RESVSP(r4, 0x40305828, &(0x7f0000000280)={0x0, 0x0, 0x9, 0x7})
ioctl$PERF_EVENT_IOC_DISABLE(0xffffffffffffffff, 0x2401, 0x0)

00:32:50 executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/class/misc', 0x880, 0x4c)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_UPDATE_FT_IES(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x820000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, r3, 0x100, 0x70bd2c, 0x25dfdbfd, {{}, {@void, @void}}, [@NL80211_ATTR_MDID={0x6, 0xb1, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000000)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="05000000000000dffff42c00000008000300", @ANYRES32=r5], 0x30}}, 0x0)

[  213.394439] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.4'.
00:32:50 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r4, 0x0, 0x3)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_PMK(r4, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000900)=ANY=[@ANYBLOB="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", @ANYRES16=0x0, @ANYBLOB="00012cbd7000fbdbdf257b00000008000300", @ANYRES32=r5, @ANYBLOB="0c00990004000000000000000a000600ffffffffffff00000a00060008021100000100000a00060008021100000100001400fe008116318664cdae6aec6b71baba6f6dfb1400020179671d343424bf4d15a10d504ec5aa880a00060008021100000100000a00060008021100000100001400fe00750000000015000000000000000000001400fe00cfc3d37cc10cecc9f1f05fd28e7ce85e"], 0xb4}}, 0x8000)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f00000001c0)={'wlan0\x00'})

00:32:50 executing program 5:
keyctl$set_reqkey_keyring(0xe, 0x0)
keyctl$set_reqkey_keyring(0xe, 0x2)
keyctl$set_reqkey_keyring(0xe, 0x0)
keyctl$set_reqkey_keyring(0xe, 0x0)
clone3(&(0x7f0000001200)={0x88118d00, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
request_key(&(0x7f0000000000)='user\x00', &(0x7f0000000080)={'syz', 0x3}, &(0x7f00000000c0)=':]R\xd9', 0xfffffffffffffffd)

00:32:50 executing program 7:
write$P9_RLOCK(0xffffffffffffffff, &(0x7f0000000000)={0x8, 0x35, 0x1, 0x1}, 0x8)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)={0x24, 0x17, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x5fb, 0x0, 0x0, @u32}, @typed={0x8, 0x5, 0x0, 0x0, @binary="7fdaf14f"}]}, 0x24}}, 0x0)

00:32:51 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_GET(r0, &(0x7f0000000380)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000340)={&(0x7f0000000280)={0x90, 0x0, 0x8, 0x70bd29, 0x25dfdbff, {}, [@pci={{0x8}, {0x11}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, @nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x90}, 0x1, 0x0, 0x0, 0x42}, 0x81)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  213.521736] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=23 sclass=netlink_route_socket pid=4497 comm=syz-executor.7
00:32:51 executing program 5:
keyctl$set_reqkey_keyring(0xe, 0x0)
keyctl$set_reqkey_keyring(0xe, 0x2)
keyctl$set_reqkey_keyring(0xe, 0x0)
keyctl$set_reqkey_keyring(0xe, 0x0)
clone3(&(0x7f0000001200)={0x88118d00, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
request_key(&(0x7f0000000000)='user\x00', &(0x7f0000000080)={'syz', 0x3}, &(0x7f00000000c0)=':]R\xd9', 0xfffffffffffffffd)

00:32:51 executing program 4:
syz_mount_image$ext4(&(0x7f0000000240)='ext2\x00', &(0x7f0000000040)='./file0\x00', 0x40000, 0x4, &(0x7f0000000180)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f00000000c0)="0200000003000000040000006a000f", 0xf, 0x800}, {&(0x7f0000010500)="ffff3f00000000000000000000000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffbfffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x802, 0x9}, {&(0x7f0000000000)="ed41000000080000dff4655fe0f465f900000000000000000000040004a1541e898834", 0x23, 0x2100}], 0x0, &(0x7f0000000000)=ANY=[])
chdir(&(0x7f0000000080)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x4e2, 0x0)
write$binfmt_elf64(r0, &(0x7f0000001280)=ANY=[], 0xfdef)
mount(&(0x7f0000000100)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./file0\x00', &(0x7f0000000200)='v7\x00', 0x48092, 0x0)
ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, &(0x7f0000000300)={0x0, 0x40000000000013, 0x0, 0x1, 0x6, [{0x10000, 0x0, 0xffffffffffff8001, '\x00', 0x310a}, {0x81, 0x800, 0x80000000, '\x00', 0x4}, {0x3, 0x81, 0xffffffff, '\x00', 0x81}, {0x62a, 0x5, 0x8, '\x00', 0x1400}, {0x63, 0x40, 0x40, '\x00', 0x102}, {0x5, 0xffffffff, 0x80, '\x00', 0x82}]})

00:32:51 executing program 6:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)

00:32:51 executing program 1:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000240)="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", 0x1000, 0xc1}, {&(0x7f0000000100)="747a1d7e48b5d74cbc6e6e40d758ebd9705d0c31be74a4abb93eb94c6fcc43cef0bc2884107c31f05589a43e85f477897908f40363b350824f2d37f9cd9dda7d530faa4555b85c60e3340551acf06769b08e873c992b8b28104f470749a276985b2bf878275560ed8ccad80ca442d1dd458bb548d48d8f5abac3fa1e42e19f01a60ae269b16f5c83028458968b73be5ee843da94d200f2937970ec3e5dc1816d94bac0fcec04eaf6a39968fc58fbf534f891fb64ae6b0d39287ada069cfb95498aefed3bb2e6ace860ce111d3e665d300749e3cd0bafa2f196e2da2fd6976e8df0daf4ea89eba48a8753fde2162229978c1842c534815667", 0xf8, 0x8}], 0x8800, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='coredump_filter\x00')
r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000004d00), 0x48040, 0x0)
r3 = syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180), &(0x7f0000000040))
io_uring_enter(r3, 0x76d3, 0x0, 0x0, 0x0, 0x0)
r4 = syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180), &(0x7f0000000040))
io_uring_enter(r4, 0x76d3, 0x0, 0x0, 0x0, 0x0)
r5 = accept4(r1, &(0x7f0000004d40)=@tipc=@id, &(0x7f0000004dc0)=0x80, 0x0)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r1, 0xc0189378, &(0x7f0000004e00)={{0x1, 0x1, 0x18, <r6=>0xffffffffffffffff, {r1}}, './file0\x00'})
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r7=>0x0, &(0x7f0000000040)=<r8=>0x0)
r9 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r9, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}, 0x0, 0x0, 0x1}, 0x0)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r10=>0x0, &(0x7f0000000040)=<r11=>0x0)
r12 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r10, r11, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r12, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
r13 = syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180), &(0x7f0000000040))
io_uring_enter(r13, 0x76d3, 0x0, 0x0, 0x0, 0x0)
r14 = syz_open_procfs$userns(0x0, &(0x7f0000005340))
sendmsg$unix(0xffffffffffffffff, &(0x7f0000005440)={&(0x7f0000001240)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000002300)=[{&(0x7f00000012c0)="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", 0x1000}, {&(0x7f00000022c0)="1b311fa375d36854f113814dbf44070b129de7e2c92e10553b350480ed5f288a", 0x20}], 0x2, &(0x7f0000002340)=ANY=[@ANYBLOB="18000000000000000100000001000000", @ANYRES32, @ANYRES32=r2, @ANYBLOB="30000000000000000100000001000000", @ANYRES32=r3, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r1, @ANYRES32=r1, @ANYRES32=r4, @ANYRES32=r1, @ANYRES32=r5, @ANYBLOB="24000000000000000100000001000000", @ANYRES32=r6, @ANYRES32=r9, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r12, @ANYBLOB="0000000028000000000000000100000001000000ce70e70612e98ad1b153cfb74c06a7f8bcf5bb24835269dd9228918ba922ed828ededa6d5b2ebf3e2813550101b312497be14512c0ea2a889ef423d131024d2a540f9fc0d308fae8d7e28306ca26d121fc68f6506081d4fb680d4083fc5a057787335032940ba3a62df66a396d4d37a76af0b34964e1164de7cbb4331a48a7cd174615000000000000", @ANYRES32=r13, @ANYRES32=r0, @ANYRES32=r14, @ANYRES32=r1, @ANYRES32, @ANYRES32], 0x98, 0x882}, 0x44000)
writev(r1, &(0x7f0000000200)=[{&(0x7f0000000040)='0', 0x1}], 0x300)

00:32:51 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  213.631589] EXT4-fs (loop4): VFS: Can't find ext4 filesystem
00:32:51 executing program 7:
r0 = syz_mount_image$vfat(0x0, 0x0, 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000240)="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", 0x1000, 0xc1}, {&(0x7f0000000100)="747a1d7e48b5d74cbc6e6e40d758ebd9705d0c31be74a4abb93eb94c6fcc43cef0bc2884107c31f05589a43e85f477897908f40363b350824f2d37f9cd9dda7d530faa4555b85c60e3340551acf06769b08e873c992b8b28104f470749a276985b2bf878275560ed8ccad80ca442d1dd458bb548d48d8f5abac3fa1e42e19f01a60ae269b16f5c83028458968b73be5ee843da94d200f2937970ec3e5dc1816d94bac0fcec04eaf6a39968fc58fbf534f891fb64ae6b0d39287ada069cfb95498aefed3bb2e6ace860ce111d3e665d300749e3cd0bafa2f196e2da2fd6976e8df0daf4ea89eba48a8753fde2162229978c1842c534815667", 0xf8, 0x8}], 0x8800, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='coredump_filter\x00')
r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000004d00), 0x48040, 0x0)
r3 = syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180), &(0x7f0000000040))
io_uring_enter(r3, 0x76d3, 0x0, 0x0, 0x0, 0x0)
r4 = syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180), &(0x7f0000000040))
io_uring_enter(r4, 0x76d3, 0x0, 0x0, 0x0, 0x0)
r5 = accept4(r1, &(0x7f0000004d40)=@tipc=@id, &(0x7f0000004dc0)=0x80, 0x0)
ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r1, 0xc0189378, &(0x7f0000004e00)={{0x1, 0x1, 0x18, <r6=>0xffffffffffffffff, {r1}}, './file0\x00'})
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r7=>0x0, &(0x7f0000000040)=<r8=>0x0)
r9 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r9, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}, 0x0, 0x0, 0x1}, 0x0)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r10=>0x0, &(0x7f0000000040)=<r11=>0x0)
r12 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r10, r11, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r12, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
r13 = syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180), &(0x7f0000000040))
io_uring_enter(r13, 0x76d3, 0x0, 0x0, 0x0, 0x0)
r14 = syz_open_procfs$userns(0x0, &(0x7f0000005340))
[  213.696810] EXT4-fs (loop4): VFS: Can't find ext4 filesystem
sendmsg$unix(0xffffffffffffffff, &(0x7f0000005440)={&(0x7f0000001240)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000002300)=[{&(0x7f00000012c0)="ddf837afa1cbf400a7d5cc1efcca579e750b2e92d748926e4a19f824e846883d2ee872e3df7a646067ef94b3367d1eb54c565c2c85a8fbad24b8706420e497d45ab4cbc5f89dfe22fdbc804c3d0118d52900ff254229f6d47f9876a021e52dd3f0197b612e123f18bab8cbc398661b493da3d1bfd761a495b2bdbbd96643028b0c6875fd0b115db2baf5d82b9f0e3da7efb52b6465a826f2dac2d0e5ce94f4c660e3869eb416909be9d254747243a7c8fc5fe1e814f8c74aea37f6ccbe85223db1f810f35e4b991d3e43faba9e1dd514c4a07c3897b4e308c83136b8f55cb1208c80bde6892c2e477bee0eaecaea0aec06adb117b183d3a84102576a6e700c95e9d96a7059634f04a005faa62cac65b8e87ba1963b9a277f47d13981e757a1e039ace66e42b84cfede12a6406a420e9ca66bb9c54eea73d8da846ddd680dcada24bb96338570826b0a30e92fd8c48f501314003b923b6cefde264091c86ef26d5ecd3e8419b9b36fdd749cd95371687c01281248ff088f922865fd207bf4c6ff7d43f57eb03eca552339f95504f26c12da5470bfa082aab9deb36e008000fbc972c8c2cfa637856c7e8f0aa4735eefaf8a5b01c97f541736a6cc3c06e3cfc7a94c55f56c5bd356b08dc5cbc9cdb1199bad9e376db5dfb92ed7ff3fe7be881478ae2c9cd4348ce9db9ac496e4230296d99a66875ae11e75b8366829c09576d26bba17cbef7d0fb3daf124cf62191162a377c4094107c8f03fde95f08492d136ed0be55db8b96431b49789966e023ebfc446ad6a39d2d67e0fc78684a98c2a149ec76617a4f21d3348d04fe999f142653dba0cc109f5dcef19abcf04a4bc05896d494ac3a106863b14c4ab453c5b200d68788c6016ccac27fd89d5998520dbae9664740cf2c36369f682bc18339e99aa1355d9707a27acecef0d939e19399cc6c6c7a61a685d9fa4a8755f00ac0198d625c971ee04f89d0c0504f4302b89a131dfc905bd2fdbbf6cd2ee718fd46cff18054d1e15cdcd0068086d489e320ccf3c2504239b427f13927423af2adff5fb2f032ed991027d5a7ec39e6aaa657918c9f7bc21053b7072ba5f8b8bdd9c043c3ecfca9c00dfe745599e12e8f08ee83c4e149b87b8688da1e52f82d94f8ea268e6fb8d871ef46d9c6cfae6cd428bcbb45e4b440493f365001df9fdd6354f9397171b4c787ec927c5c6744a27b95709fed74f17257d1a6c44e08f1ea676315121bd71e9ebe1ff3b2e0683e5fe2c2c94fd0046155ffba2ce19aa06102f1503c72e7855021e3a5add363b437bef9a81416874ceceec0df5eba918f71ff6c276dec9eddadbc7e2aca3c98e83ceb6f0c91af30534f308f508beab0de979a0cd849df21d3308db4ebc386a529537ec910ac833ff9648439dc60b98558b42679da32479e2177974e33cc52acc702892b0abe0f1c5a2ccf1a9383a03c7fc53a80f1ec369c85352beea858f87a9602cc791c16bcce68b25bf095bb23ef5e663deb1be3f02d7fcb2d2f56e4747d0bc2ec2c10e17b6e19427295c5281567806bf7cb2658d618df8b2cb5e7512dbb954622797cac56602d2321768fbd8dba0b8981a8ad3696ca14f13216685e25d83bf250f2a0802870ec95747a39a636de39d0d7b6c2f6a53c147f47f98cd794d28728c94d8a22ddccd3fbc19c32c78107f0b9264888bc4a6a62edb90f502d1dac2c3c6249b7e7c673636259f68e933dfdd532e13f34ce9275c7ec1531fc2b4e5a896be1226ed5f4c8882a714ce111fa161d4524f202fa473475470b9bec472f887621fe081d73feb40a9be94dc40db6ad241cf283eb143b6178e13baf6a2d54608cbf084d499bff54991590feec544fc5998d1bb9bfec184d134aa3a8cd75c1a47632f0210be8d7c27db1f4d157581d9bbf46c59a1b70a47ba0f6eb92cdaadff1a16716ae22b7e57584a19b707cfe8cc3b44e03fc39b060436cd6e33f650413179b2a189a8730fb8803dd7cb89f327c78d0599759dcc71e8839c50763c1136d067c96b4f0637e3c99f064b8872fecd97462548c2e36c3945f71ab83ae2ebf23f84c9334cbc92899cf5bd5359aa6246b26ae1693c55eda039d92021069ea3173962c3515b408749ea6e71debcf6eedc5fecb8c6d315ed1cd8a18ba0e16eab485be5dcc3ecd16198194216407daea96e8aefa759e2575fa02cc51b70a040800a6aeda1f7c0f259a549ea0a9709c2b44de32f826cbe08718bdc28516da7cb27309692918463c66431c01a1a7747009870b1a689cbcca634386f93a150028adb9f4d4ae4861c0481a8cfe9860018f166dd74fc6ebe8088a59446aaaa09033c9756912d670b71002f68ed905b8d778ea88e3617dd905347e775e7b43210cc39d03af784bbc85a83b582527caac6adc9bd68afd727461eb5949971c151d1aafd85da86eca94ce08ca9d33c172a312036bac692f71de4bd1f25fe2beb09dfbade8dbfca728ff194455874af023167c5a00211fbd76f3ebe8babdb0a3263f076896f3b04d2794d9f7643caea175ea4640ee7bbc76778404c7795073e481da636808084314db5ccf561d3c7d763eabad98a7460e7bd1cb5eb0cdb8101c8ac5db6cc779af67aed9492ac68be135ed0653bb9ebc8916be4e0a5936bd779148bd3350c7391f814c6694ca3e51f781852352d436645728f1a0dc4ce4838c05dfd40f6bac7ace540edf29319479bded704baf8c98194b029ff23a76fc1b439213a961a4febc3d59a46dfa111d5639dc2d3802642bbaaf6ebf01569118dfc3c61eb64f28876bd82c54891284933ecf1bcdb09d979e65215cbcce8107b93ad0909865d287177ec404599a68c312fdd7e69c2d468ad05544cd00b048f60b640f74b53a8a3d6d7d378c442bf45f66f747b107deb63755706812a1b3b310baf89c104cf98874f01263f919ac4fdde0131fdfc9c775198c632ee13b7f121e2020da1f784f1587ca1adc2ab0f77f57255c6f073a66853a4a8d686af40c1aa80c9405f9effb2d4e60147ae6d2ed0b1062c841a8f550881df7bfd809f6ea8c1ac4412e59388f376ad4dd0331386daff1d749123caf50702aa07aadc68adabfa04a424c42f45ab861ff9182642ae62e90ca181ce53998197b3bf9d695f651385d64944f73f12d60a01e208f5db710d19ebba5de6c36203555965ebb9f084c919cede7a979cc5df4671d0777f7dd73de940e4813d6596fdecd1ffae031dd6ecee74a61692b1798f0e39e8fdd90898668844e309bda2110171613e86aaa00b6074d98fe035cce227e9e84fdef22a76fbc8dadeeca0eb36f0cf4216931e5c7558e423dd2d1c06db5656de5891a57d044b377957b110d25f4a915b8e9c8432e9ce03a04e5ff853631df2c3e0ada900fcdf37ee4ab458bd4364c1bba2c9ae26ae7b48470e6acc37368c880263ad4b356b640a94731b75d04e617dea0d358d4fc871e6db9f765acf28abd37945fe24c9fd3f5862c2b8839494806572e88a830a2253f654e41a965a26cf8e0b44b7b230c9b1b76bf5c25d4a744019704754970fe836dc62237abae30359bd1c054b2ca6e217e26169bc529b56bea8c70581a17ea17eadaaf41da277fcb04dd794d5484afd78fec4d743d966319fd1c9e4dfe8ca1e02781641206ba9070489e81ec14cf33134aaa8c6819c11d6bca1cf3b65a9be1387775c88e8f526495e61462e56d9b803028913015b96dfdb43045c33a561b18293acedba4ffd637a0321692e0661c7f12ec47215c970763ec6924ac962d7c53c2eebe7770cb82756cbb4c2e2e25a48ebab594a780b6668af87254f3451c003278d470ca11513fac1a7de1f97d0e09dc7bee43ba18fe900377c507c50cbad658ba7c022a222578347696766b996f8b2dbd45a22d9feaaec63a8ae0908c45720d98a5dfb7ddb56e63debed67407a681ee9e75450f34645b0eb0503c5c7e1b3d952dc1c87862dec9746dddda2df2bc350e18a8b4e2cc3713cf993630c74fe35ad5d824e4709cf83ec3c3ca0b4d2d9ba5ad737ed327327e3cdac5c5deed3d7b1d0bd4b0289235d1d62f01c2d7147bae380fcfcc75bddc54d8c24352f61f43273b0a4f2762f2a930d0f6eea7ded590caefa170ad890f778f20e65ec6460efd9a76d28660854524b96529e27afe228bc8d4dc00509cad318f8ef18260eca56013ecfa0cfce3778951242bf05657ee1dacfc54f5e079fbeb1e7724453026cbc1c03c96bca5e339b9ae24c1d2a3f3029f9ccaa45c3960ad6fae09be70824092f67bca62d231c688da636e079ebaa12b754fac385e31ed117f3aba448bbd5fb9cceca3090d0c3f3c64d156d5bbf7f49c3ebabb018aa3fdf4009c28018ab4fc52d6236e6a3d8df6f69c31d970b889fa8c3272efe5f15ee440a6619f72c56ace8086ae9a391b39a10ad2e0be7266a79633aff7e94e8a0ac6c4675f8742199e332f2e83984ffa9a7bb79803d4a3c710cc4373d7c7028a2b64e7303f93eaf40b461cd41d6ccfc8f2119b06221f913efd483213ccdd8a1d20fced5ef5c6c0f3ff7ea47d27aa0d5386191b2c93e414d796c3c2030b942d229e3d0930e74ee85c4619823438b5259fb4cc2eebb15627566bc31731de4f5f8303d73fc0c102113af74099200be08d930aa0d178f2237669bcb07ec8aafa752876e9474f30fe5679f3bdf6478582150ccf0c0e62aed6d4b27da6dcc7d6c92ee740b6482af4e4deaab3bcf1571513658d9cce101978d09e97f12085c251511bbfefab96d13b08040ba92a86c1a480788bd106c1f604c57e31abeed627088d28be5038d57f2def6ec2a2f4044edd9d0710527339a320c3e51fe3cc35eb6391b0f8af8d47eeabc37dea07d81c26cebdaf376eac01df6f0367a50f4863b889cae04e9c29441942fcd5670dea85bd30d8a23a45c322bf3524d883cb13ea52a53779d9c933e57005563767ddb616f94e05d3548590d63a01ee2d803b1baa5d13da25d328b433ae1ca7b4edac6ac0a1a8b0c5b01848fbf935faf49c3929dc51f4e7f0de2fa7e250f7e3a5d746621082b5a507720bee6298736ceeacd1d1cb9333da780586bae72ce9c32c04e93968acf47d75d4da8a7ff65fc6b7729dc64c9e11c96f9eee4a3dce23374120e89426f18cb4235d766885fa3f4296cebcc49fc66ddcdeaa78e275fcb049512b9155abc2da118a24ed9cadb6c6039b66c73f32cf09ef27bb0e4683c5cb325eaa0c46926959cdcf3effa61989b82c8c07d4841a9f06a4aefe1baf42636ee1c8c2738fdf0242b2d619efa6fc24c7b5638cfd318a8d968f52ad010a3a7236873e66c6fa327dfaf532045580dbf954a92d48341129eec050800ec96cd115cdfcd238c647efc7c9d39327e4b3ca55bdadd6a235de7e8d7f32cdf6bcf5a7f1b006eee40aed97040c023b76f73ac476450ccb4cab18751c26d2c795af151f49e75bb924c66415f448597a2cc1b5a6a883112987c7f07b46ec43f089ac1a4b31086101bec326e6588eaf5c6a4fcfb32fe1a9910dd1675cc1fc01dc9a46cdb7b6e895bc9a7cb30c155882e9adb6875524d3850bced27e2d828bf908daeb35c7929ba4ae5f13c88647d27f6cb4892e6ffca669da5fda8208e3ba758dbeea86774481cc3835225b55cf1f8f307004eda54738dd2364b149b6e79f7b613652b5161a0436880670f180581a9d9fa5203aad5b462b972222fce5a60fabedd1819d6f77ccd28335205047f89c6f97feaacb4c40192591d17129f06992aa123f4128dd0d529304e48ccb8bbf56216d13b9dfb4ed16889aa9f7e5304c3b75dc04baecbad9dc7c64a", 0x1000}, {&(0x7f00000022c0)="1b311fa375d36854f113814dbf44070b129de7e2c92e10553b350480ed5f288a", 0x20}], 0x2, &(0x7f0000002340)=ANY=[@ANYBLOB="18000000000000000100000001000000", @ANYRES32, @ANYRES32=r2, @ANYBLOB="30000000000000000100000001000000", @ANYRES32=r3, @ANYRES32=r0, @ANYRES32=r1, @ANYRES32=r1, @ANYRES32=r1, @ANYRES32=r4, @ANYRES32=r1, @ANYRES32=r5, @ANYBLOB="24000000000000000100000001000000", @ANYRES32=r6, @ANYRES32=r9, @ANYRES32=r1, @ANYRES32=r0, @ANYRES32=r12, @ANYBLOB="0000000028000000000000000100000001000000ce70e70612e98ad1b153cfb74c06a7f8bcf5bb24835269dd9228918ba922ed828ededa6d5b2ebf3e2813550101b312497be14512c0ea2a889ef423d131024d2a540f9fc0d308fae8d7e28306ca26d121fc68f6506081d4fb680d4083fc5a057787335032940ba3a62df66a396d4d37a76af0b34964e1164de7cbb4331a48a7cd174615000000000000", @ANYRES32=r13, @ANYRES32=r0, @ANYRES32=r14, @ANYRES32=r1, @ANYRES32, @ANYRES32], 0x98, 0x882}, 0x44000)
writev(r1, &(0x7f0000000200)=[{&(0x7f0000000040)='0', 0x1}], 0x300)

[  216.456557] Bluetooth: hci2: command 0x0406 tx timeout
[  216.458012] Bluetooth: hci4: command 0x0406 tx timeout
[  216.461125] Bluetooth: hci1: command 0x0406 tx timeout
[  216.462504] Bluetooth: hci5: command 0x0406 tx timeout
[  216.464895] Bluetooth: hci3: command 0x0406 tx timeout
[  216.466153] Bluetooth: hci7: command 0x0406 tx timeout
[  216.469092] Bluetooth: hci0: command 0x0406 tx timeout
[  216.470323] Bluetooth: hci6: command 0x0406 tx timeout
[  225.264139] kmemleak: 7 new suspected memory leaks (see /sys/kernel/debug/kmemleak)
00:33:10 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 1)

00:33:10 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r4, 0x0, 0x3)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_PMK(r4, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000900)=ANY=[@ANYBLOB="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", @ANYRES16=0x0, @ANYBLOB="00012cbd7000fbdbdf257b00000008000300", @ANYRES32=r5, @ANYBLOB="0c00990004000000000000000a000600ffffffffffff00000a00060008021100000100000a00060008021100000100001400fe008116318664cdae6aec6b71baba6f6dfb1400020179671d343424bf4d15a10d504ec5aa880a00060008021100000100000a00060008021100000100001400fe00750000000015000000000000000000001400fe00cfc3d37cc10cecc9f1f05fd28e7ce85e"], 0xb4}}, 0x8000)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)
socket$nl_generic(0x10, 0x3, 0x10)

00:33:10 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(0xffffffffffffffff, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:33:10 executing program 5:
keyctl$set_reqkey_keyring(0xe, 0x0)
keyctl$set_reqkey_keyring(0xe, 0x2)
keyctl$set_reqkey_keyring(0xe, 0x0)
keyctl$set_reqkey_keyring(0xe, 0x0)
clone3(&(0x7f0000001200)={0x88118d00, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
request_key(&(0x7f0000000000)='user\x00', &(0x7f0000000080)={'syz', 0x3}, &(0x7f00000000c0)=':]R\xd9', 0xfffffffffffffffd)

00:33:10 executing program 2:
r0 = syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000100)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x6}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x100, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000300)=ANY=[@ANYBLOB="01000000010000001800000077b307615bdce694af1f7496d238e64967177c2bde16a9eb2d6e3a5e3d07473ecb7b576cc19dae1995578cfe3cce797e384fcd89a81f34a7346cb1bcbcc0a2a792618b91fb83436434293b4694a56b17fd4e3bc45ae115c225dd28391d8b8154415456e9880021a15620563bca16712a559632a8ff018ce12d78127076b27d403e7fa9cb1d18c98ab06a6659f9b82f3d5a6bcd206b1954891258b953dd", @ANYRES32=<r4=>r3, @ANYBLOB='@\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r5 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='oom_score_adj\x00')
write$cgroup_pid(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r7=>0x0, &(0x7f0000000040)=<r8=>0x0)
r9 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r9, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f00000002c0)=[r9, r0, r0], 0x3)
write$tcp_mem(r6, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, r5, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f00000001c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x4}, 0x64)
ioctl$FS_IOC_RESVSP(r4, 0x40305828, &(0x7f0000000280)={0x0, 0x0, 0x9, 0x7})
ioctl$PERF_EVENT_IOC_DISABLE(0xffffffffffffffff, 0x2401, 0x0)

00:33:10 executing program 6:
r0 = syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000100)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x6}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x100, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000300)=ANY=[@ANYBLOB="01000000010000001800000077b307615bdce694af1f7496d238e64967177c2bde16a9eb2d6e3a5e3d07473ecb7b576cc19dae1995578cfe3cce797e384fcd89a81f34a7346cb1bcbcc0a2a792618b91fb83436434293b4694a56b17fd4e3bc45ae115c225dd28391d8b8154415456e9880021a15620563bca16712a559632a8ff018ce12d78127076b27d403e7fa9cb1d18c98ab06a6659f9b82f3d5a6bcd206b1954891258b953dd", @ANYRES32=<r4=>r3, @ANYBLOB='@\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r5 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='oom_score_adj\x00')
write$cgroup_pid(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r7=>0x0, &(0x7f0000000040)=<r8=>0x0)
r9 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r9, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f00000002c0)=[r9, r0, r0], 0x3)
write$tcp_mem(r6, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, r5, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f00000001c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x4}, 0x64)
ioctl$FS_IOC_RESVSP(r4, 0x40305828, &(0x7f0000000280)={0x0, 0x0, 0x9, 0x7})
ioctl$PERF_EVENT_IOC_DISABLE(0xffffffffffffffff, 0x2401, 0x0)

00:33:10 executing program 1:
r0 = syz_io_uring_setup(0x4, &(0x7f0000000080), &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000100)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x6}, 0x0)
perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r3 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x100, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f0000000300)=ANY=[@ANYBLOB="01000000010000001800000077b307615bdce694af1f7496d238e64967177c2bde16a9eb2d6e3a5e3d07473ecb7b576cc19dae1995578cfe3cce797e384fcd89a81f34a7346cb1bcbcc0a2a792618b91fb83436434293b4694a56b17fd4e3bc45ae115c225dd28391d8b8154415456e9880021a15620563bca16712a559632a8ff018ce12d78127076b27d403e7fa9cb1d18c98ab06a6659f9b82f3d5a6bcd206b1954891258b953dd", @ANYRES32=<r4=>r3, @ANYBLOB='@\x00\x00\x00\x00\x00\x00\x00./file0\x00'])
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r5 = signalfd4(0xffffffffffffffff, &(0x7f0000000000), 0x8, 0x0)
io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0, 0x0)
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='oom_score_adj\x00')
write$cgroup_pid(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r7=>0x0, &(0x7f0000000040)=<r8=>0x0)
r9 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r7, r8, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r9, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f00000002c0)=[r9, r0, r0], 0x3)
write$tcp_mem(r6, 0x0, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x10, r5, 0x0)
syz_io_uring_submit(0x0, r2, &(0x7f00000001c0)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x4}, 0x64)
ioctl$FS_IOC_RESVSP(r4, 0x40305828, &(0x7f0000000280)={0x0, 0x0, 0x9, 0x7})
ioctl$PERF_EVENT_IOC_DISABLE(0xffffffffffffffff, 0x2401, 0x0)

00:33:10 executing program 4:
keyctl$set_reqkey_keyring(0xe, 0x0)
keyctl$set_reqkey_keyring(0xe, 0x2)
keyctl$set_reqkey_keyring(0xe, 0x0)
keyctl$set_reqkey_keyring(0xe, 0x0)
clone3(&(0x7f0000001200)={0x88118d00, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
request_key(&(0x7f0000000000)='user\x00', &(0x7f0000000080)={'syz', 0x3}, &(0x7f00000000c0)=':]R\xd9', 0xfffffffffffffffd)

[  232.852146] FAULT_INJECTION: forcing a failure.
[  232.852146] name failslab, interval 1, probability 0, space 0, times 1
[  232.854547] CPU: 0 PID: 4558 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  232.855915] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  232.858220] Call Trace:
[  232.858769]  dump_stack+0x107/0x163
[  232.859509]  should_fail.cold+0x5/0xa
[  232.860283]  ? getname_flags.part.0+0x50/0x4f0
[  232.861206]  should_failslab+0x5/0x10
[  232.862002]  kmem_cache_alloc+0x5b/0x350
[  232.862829]  getname_flags.part.0+0x50/0x4f0
[  232.863740]  getname+0x8e/0xd0
[  232.864403]  do_sys_openat2+0xf5/0x420
[  232.865190]  ? build_open_flags+0x680/0x680
[  232.866080]  ? __mutex_unlock_slowpath+0xe1/0x600
[  232.867068]  ? wait_for_completion+0x270/0x270
[  232.868006]  __x64_sys_openat+0x13f/0x1f0
[  232.868845]  ? __ia32_compat_sys_open+0x1c0/0x1c0
[  232.869820]  ? ksys_write+0x1a5/0x250
00:33:10 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(0xffffffffffffffff, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  232.870581]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  232.871724]  ? syscall_enter_from_user_mode+0x1d/0x50
[  232.872778]  do_syscall_64+0x33/0x40
[  232.873533]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  232.874583] RIP: 0033:0x7fda1182ea04
[  232.875340] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  232.879069] RSP: 002b:00007fda0edf10b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  232.880639] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1182ea04
[  232.882102] RDX: 0000000000000000 RSI: 00007fda118d4f82 RDI: 00000000ffffff9c
[  232.883543] RBP: 00007fda118d4f82 R08: 0000000000000000 R09: 0000000000000000
[  232.885006] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  232.886455] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
00:33:10 executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(0xffffffffffffffff, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:33:10 executing program 4:
keyctl$set_reqkey_keyring(0xe, 0x0)
keyctl$set_reqkey_keyring(0xe, 0x2)
keyctl$set_reqkey_keyring(0xe, 0x0)
keyctl$set_reqkey_keyring(0xe, 0x0)
clone3(&(0x7f0000001200)={0x88118d00, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
request_key(&(0x7f0000000000)='user\x00', &(0x7f0000000080)={'syz', 0x3}, &(0x7f00000000c0)=':]R\xd9', 0xfffffffffffffffd)

00:33:10 executing program 5:
keyctl$set_reqkey_keyring(0xe, 0x0)
keyctl$set_reqkey_keyring(0xe, 0x2)
keyctl$set_reqkey_keyring(0xe, 0x0)
keyctl$set_reqkey_keyring(0xe, 0x0)
clone3(&(0x7f0000001200)={0x88118d00, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
request_key(&(0x7f0000000000)='user\x00', &(0x7f0000000080)={'syz', 0x3}, &(0x7f00000000c0)=':]R\xd9', 0xfffffffffffffffd)

00:33:20 executing program 5:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r4, 0x0, 0x3)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_PMK(r4, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000900)=ANY=[@ANYBLOB="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", @ANYRES16=0x0, @ANYBLOB="00012cbd7000fbdbdf257b00000008000300", @ANYRES32=r5, @ANYBLOB="0c00990004000000000000000a000600ffffffffffff00000a00060008021100000100000a00060008021100000100001400fe008116318664cdae6aec6b71baba6f6dfb1400020179671d343424bf4d15a10d504ec5aa880a00060008021100000100000a00060008021100000100001400fe00750000000015000000000000000000001400fe00cfc3d37cc10cecc9f1f05fd28e7ce85e"], 0xb4}}, 0x8000)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f00000001c0)={'wlan0\x00'})

00:33:20 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101142, 0x0)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r3, 0xc0c89425, &(0x7f0000000140)={"384dea570de2ec602ad0c843c3837f02", 0x0, 0x0, {0x0, 0x3}, {0x5, 0x5}, 0x100000000, [0x6, 0xab, 0x1, 0x95, 0x0, 0xd67, 0x2, 0x7, 0x81, 0xfff, 0x7, 0x3, 0xe94, 0x8, 0x5]})
r4 = syz_io_uring_setup(0x4efe, &(0x7f0000000080)={0x0, 0x7dbe, 0x2, 0x1, 0x20c, 0x0, r0}, &(0x7f0000b8b000/0x4000)=nil, &(0x7f0000edc000/0x2000)=nil, &(0x7f0000000240), &(0x7f0000000300))
io_uring_register$IORING_REGISTER_FILES_UPDATE(r4, 0x6, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)=[0xffffffffffffffff]}, 0x1)
syz_io_uring_submit(r1, r2, &(0x7f0000000340)=@IORING_OP_POLL_ADD={0x6, 0x4, 0x0, @fd=r4, 0x0, 0x0, 0x0, {0x400}}, 0x6)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0)
copy_file_range(r5, 0x0, r0, 0x0, 0x200f5ef, 0x0)
syz_mount_image$iso9660(&(0x7f0000000400), &(0x7f0000000440)='./file1\x00', 0x1c6, 0x0, &(0x7f0000000480), 0xb0000, &(0x7f00000004c0)={[{@check_strict}, {}, {@overriderock}, {@map_acorn}, {@check_relaxed}, {@iocharset={'iocharset', 0x3d, 'maciceland'}}, {@session={'session', 0x3d, 0x2b}}, {@check_strict}, {@dmode={'dmode', 0x3d, 0x4}}, {@cruft}], [{@seclabel}, {@fsname={'fsname', 0x3d, '\x00'}}, {@dont_measure}]})

00:33:20 executing program 2:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r4, 0x0, 0x3)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_PMK(r4, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000900)=ANY=[@ANYBLOB="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", @ANYRES16=0x0, @ANYBLOB="00012cbd7000fbdbdf257b00000008000300", @ANYRES32=r5, @ANYBLOB="0c00990004000000000000000a000600ffffffffffff00000a00060008021100000100000a00060008021100000100001400fe008116318664cdae6aec6b71baba6f6dfb1400020179671d343424bf4d15a10d504ec5aa880a00060008021100000100000a00060008021100000100001400fe00750000000015000000000000000000001400fe00cfc3d37cc10cecc9f1f05fd28e7ce85e"], 0xb4}}, 0x8000)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f00000001c0)={'wlan0\x00'})

00:33:20 executing program 4:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r4, 0x0, 0x3)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_PMK(r4, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000900)=ANY=[@ANYBLOB="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", @ANYRES16=0x0, @ANYBLOB="00012cbd7000fbdbdf257b00000008000300", @ANYRES32=r5, @ANYBLOB="0c00990004000000000000000a000600ffffffffffff00000a00060008021100000100000a00060008021100000100001400fe008116318664cdae6aec6b71baba6f6dfb1400020179671d343424bf4d15a10d504ec5aa880a00060008021100000100000a00060008021100000100001400fe00750000000015000000000000000000001400fe00cfc3d37cc10cecc9f1f05fd28e7ce85e"], 0xb4}}, 0x8000)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)
socket$nl_generic(0x10, 0x3, 0x10)

00:33:20 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r4, 0x0, 0x3)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_PMK(r4, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000900)=ANY=[@ANYBLOB="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", @ANYRES16=0x0, @ANYBLOB="00012cbd7000fbdbdf257b00000008000300", @ANYRES32=r5, @ANYBLOB="0c00990004000000000000000a000600ffffffffffff00000a00060008021100000100000a00060008021100000100001400fe008116318664cdae6aec6b71baba6f6dfb1400020179671d343424bf4d15a10d504ec5aa880a00060008021100000100000a00060008021100000100001400fe00750000000015000000000000000000001400fe00cfc3d37cc10cecc9f1f05fd28e7ce85e"], 0xb4}}, 0x8000)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:33:20 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 2)

00:33:20 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:33:20 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r4, 0x0, 0x3)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_PMK(r4, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000900)=ANY=[@ANYBLOB="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", @ANYRES16=0x0, @ANYBLOB="00012cbd7000fbdbdf257b00000008000300", @ANYRES32=r5, @ANYBLOB="0c00990004000000000000000a000600ffffffffffff00000a00060008021100000100000a00060008021100000100001400fe008116318664cdae6aec6b71baba6f6dfb1400020179671d343424bf4d15a10d504ec5aa880a00060008021100000100000a00060008021100000100001400fe00750000000015000000000000000000001400fe00cfc3d37cc10cecc9f1f05fd28e7ce85e"], 0xb4}}, 0x8000)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)
socket$nl_generic(0x10, 0x3, 0x10)

[  243.170908] FAULT_INJECTION: forcing a failure.
[  243.170908] name failslab, interval 1, probability 0, space 0, times 0
[  243.173556] CPU: 1 PID: 4613 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  243.175170] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  243.177638] Call Trace:
[  243.178248]  dump_stack+0x107/0x163
[  243.179047]  should_fail.cold+0x5/0xa
[  243.179886]  ? create_object.isra.0+0x3a/0xa20
[  243.180888]  should_failslab+0x5/0x10
[  243.181733]  kmem_cache_alloc+0x5b/0x350
[  243.182630]  create_object.isra.0+0x3a/0xa20
[  243.183595]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[  243.184708]  kmem_cache_alloc+0x159/0x350
[  243.185622]  getname_flags.part.0+0x50/0x4f0
[  243.186601]  getname+0x8e/0xd0
[  243.187305]  do_sys_openat2+0xf5/0x420
[  243.188156]  ? build_open_flags+0x680/0x680
[  243.189098]  ? __mutex_unlock_slowpath+0xe1/0x600
[  243.190178]  ? wait_for_completion+0x270/0x270
[  243.191183]  __x64_sys_openat+0x13f/0x1f0
[  243.192086]  ? __ia32_compat_sys_open+0x1c0/0x1c0
[  243.193132]  ? ksys_write+0x1a5/0x250
[  243.193977]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  243.195117]  ? syscall_enter_from_user_mode+0x1d/0x50
[  243.196240]  do_syscall_64+0x33/0x40
[  243.197048]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  243.198171] RIP: 0033:0x7fda1182ea04
[  243.198976] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  243.202994] RSP: 002b:00007fda0edf10b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  243.204650] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1182ea04
[  243.206215] RDX: 0000000000000000 RSI: 00007fda118d4f82 RDI: 00000000ffffff9c
[  243.207765] RBP: 00007fda118d4f82 R08: 0000000000000000 R09: 0000000000000000
[  243.209312] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  243.210877] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
00:33:20 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r4, 0x0, 0x3)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:33:20 executing program 4:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r4, 0x0, 0x3)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_PMK(r4, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000900)=ANY=[@ANYBLOB="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", @ANYRES16=0x0, @ANYBLOB="00012cbd7000fbdbdf257b00000008000300", @ANYRES32=r5, @ANYBLOB="0c00990004000000000000000a000600ffffffffffff00000a00060008021100000100000a00060008021100000100001400fe008116318664cdae6aec6b71baba6f6dfb1400020179671d343424bf4d15a10d504ec5aa880a00060008021100000100000a00060008021100000100001400fe00750000000015000000000000000000001400fe00cfc3d37cc10cecc9f1f05fd28e7ce85e"], 0xb4}}, 0x8000)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)
socket$nl_generic(0x10, 0x3, 0x10)

00:33:20 executing program 2:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r4, 0x0, 0x3)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_PMK(r4, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000900)=ANY=[@ANYBLOB="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", @ANYRES16=0x0, @ANYBLOB="00012cbd7000fbdbdf257b00000008000300", @ANYRES32=r5, @ANYBLOB="0c00990004000000000000000a000600ffffffffffff00000a00060008021100000100000a00060008021100000100001400fe008116318664cdae6aec6b71baba6f6dfb1400020179671d343424bf4d15a10d504ec5aa880a00060008021100000100000a00060008021100000100001400fe00750000000015000000000000000000001400fe00cfc3d37cc10cecc9f1f05fd28e7ce85e"], 0xb4}}, 0x8000)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f00000001c0)={'wlan0\x00'})

00:33:20 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r4, 0x0, 0x3)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_PMK(r4, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000900)=ANY=[@ANYBLOB="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", @ANYRES16=0x0, @ANYBLOB="00012cbd7000fbdbdf257b00000008000300", @ANYRES32=r5, @ANYBLOB="0c00990004000000000000000a000600ffffffffffff00000a00060008021100000100000a00060008021100000100001400fe008116318664cdae6aec6b71baba6f6dfb1400020179671d343424bf4d15a10d504ec5aa880a00060008021100000100000a00060008021100000100001400fe00750000000015000000000000000000001400fe00cfc3d37cc10cecc9f1f05fd28e7ce85e"], 0xb4}}, 0x8000)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:33:20 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:33:20 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 3)

[  243.377918] FAULT_INJECTION: forcing a failure.
[  243.377918] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  243.380297] CPU: 0 PID: 4639 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  243.381648] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  243.383944] Call Trace:
[  243.384477]  dump_stack+0x107/0x163
[  243.385201]  should_fail.cold+0x5/0xa
[  243.385984]  strncpy_from_user+0x34/0x460
[  243.386823]  getname_flags.part.0+0x95/0x4f0
[  243.387696]  getname+0x8e/0xd0
[  243.388352]  do_sys_openat2+0xf5/0x420
[  243.389139]  ? __switch_to+0x572/0x1000
[  243.389951]  ? __switch_to_asm+0x42/0x70
[  243.390771]  ? build_open_flags+0x680/0x680
[  243.391652]  ? __schedule+0x850/0x1e80
[  243.392451]  __x64_sys_openat+0x13f/0x1f0
[  243.393294]  ? __ia32_compat_sys_open+0x1c0/0x1c0
[  243.394292]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  243.395361]  ? syscall_enter_from_user_mode+0x1d/0x50
[  243.396408]  do_syscall_64+0x33/0x40
[  243.397156]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  243.398221] RIP: 0033:0x7fda1182ea04
[  243.398970] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  243.402699] RSP: 002b:00007fda0edf10b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  243.404234] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1182ea04
[  243.405690] RDX: 0000000000000000 RSI: 00007fda118d4f82 RDI: 00000000ffffff9c
[  243.407139] RBP: 00007fda118d4f82 R08: 0000000000000000 R09: 0000000000000000
[  243.408582] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  243.410040] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
00:33:20 executing program 1:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x191}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000000000)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000540)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0)
clock_gettime(0x0, &(0x7f0000000400)={0x0, <r4=>0x0})
syz_io_uring_submit(r2, r3, &(0x7f0000000100)=@IORING_OP_SPLICE={0x1e, 0x2, 0x0, @fd=r0, 0x0, {}, 0x1, 0x0, 0x1, {0x0, 0x0, r1}}, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000006300)=@IORING_OP_CLOSE={0x13, 0x3}, 0x3)
syz_io_uring_submit(r2, r3, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)={0x0, r4+60000000}}, 0x0)
syz_io_uring_setup(0x23b2, &(0x7f00000001c0)={0x0, 0x6723, 0x10, 0x3, 0x34b, 0x0, r1}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000240))
io_uring_enter(r1, 0x76d3, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x535b, &(0x7f0000000280)={0x0, 0x248e, 0x1, 0x3, 0x1}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ff2000/0xe000)=nil, &(0x7f0000000340), &(0x7f0000000380)=<r5=>0x0)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000003c0), 0x90000, 0x0)
syz_io_uring_submit(r2, r5, &(0x7f0000000440)=@IORING_OP_FALLOCATE={0x11, 0x2, 0x0, @fd=r6, 0x1, 0x0, 0x8, 0x0, 0x1}, 0xffffffff)

00:33:20 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:33:20 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x44, 0x0, 0x0, 0x0)
mkdir(0x0, 0x0)
mount$bind(0x0, 0x0, 0x0, 0x0, 0x0)
lsetxattr$security_selinux(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), &(0x7f0000000200)='system_u:object_r:kvm_device_t:s0\x00', 0x22, 0x0)
write$P9_RREADDIR(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_open_dev$mouse(&(0x7f0000000080), 0x0, 0x0)
syz_genetlink_get_family_id$wireguard(&(0x7f0000000200), r0)
syz_mount_image$ext4(&(0x7f0000001840)='ext2\x00', &(0x7f0000001880)='./file0\x00', 0x3, 0x2, &(0x7f0000001d80)=[{0x0}, {0x0}], 0x0, &(0x7f0000001e40)=ANY=[@ANYBLOB="746573745f64756d6d795f656e6372797074696f6e2c695f76657273696f6e2c646566636f6e7465787439757365725f752c736d61636b66736465663d2df97d28272c6673636f6e746578743d73746166665f752c00"])
mount$bind(&(0x7f0000000000)='./file1\x00', &(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000080), 0x1166081, 0x0)
creat(&(0x7f0000001800)='./file0/file0\x00', 0x0)

00:33:21 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r4, 0x0, 0x3)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  243.538526] audit: type=1400 audit(1641429201.061:10): avc:  denied  { relabelto } for  pid=4649 comm="syz-executor.5" name="file0" dev="sda" ino=15999 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:kvm_device_t:s0 tclass=dir permissive=1
[  243.608959] audit: type=1400 audit(1641429201.132:11): avc:  denied  { mounton } for  pid=4649 comm="syz-executor.5" path="/syzkaller-testdir222469287/syzkaller.yABEst/16/file0" dev="sda" ino=15999 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:kvm_device_t:s0 tclass=dir permissive=1
[  243.616542] EXT4-fs (loop5): VFS: Can't find ext4 filesystem
[  243.643689] audit: type=1400 audit(1641429201.166:12): avc:  denied  { search } for  pid=4649 comm="syz-executor.5" name="file0" dev="sda" ino=15999 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:kvm_device_t:s0 tclass=dir permissive=1
[  243.648819] audit: type=1400 audit(1641429201.167:13): avc:  denied  { write } for  pid=4649 comm="syz-executor.5" name="file0" dev="sda" ino=15999 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:kvm_device_t:s0 tclass=dir permissive=1
[  243.676283] audit: type=1400 audit(1641429201.167:14): avc:  denied  { add_name } for  pid=4649 comm="syz-executor.5" name="file0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:kvm_device_t:s0 tclass=dir permissive=1
[  243.697981] audit: type=1400 audit(1641429201.168:15): avc:  denied  { create } for  pid=4649 comm="syz-executor.5" name="file0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:kvm_device_t:s0 tclass=file permissive=1
[  243.707943] audit: type=1400 audit(1641429201.175:16): avc:  denied  { write open } for  pid=4649 comm="syz-executor.5" path="/syzkaller-testdir222469287/syzkaller.yABEst/16/file0/file0" dev="sda" ino=15982 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:kvm_device_t:s0 tclass=file permissive=1
[  243.719546] audit: type=1400 audit(1641429201.188:17): avc:  denied  { relabelfrom } for  pid=4649 comm="syz-executor.5" name="file0" dev="sda" ino=15999 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:kvm_device_t:s0 tclass=dir permissive=1
[  243.730007] audit: type=1400 audit(1641429201.228:18): avc:  denied  { mounton } for  pid=4649 comm="syz-executor.5" path="/syzkaller-testdir222469287/syzkaller.yABEst/16/file0/file0" dev="sda" ino=15982 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:kvm_device_t:s0 tclass=file permissive=1
[  243.749203] audit: type=1400 audit(1641429201.259:19): avc:  denied  { getattr } for  pid=289 comm="syz-executor.5" path="/syzkaller-testdir222469287/syzkaller.yABEst/16/file0" dev="sda" ino=15999 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:kvm_device_t:s0 tclass=dir permissive=1
00:33:32 executing program 2:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r4, 0x0, 0x3)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_PMK(r4, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000900)=ANY=[@ANYBLOB="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", @ANYRES16=0x0, @ANYBLOB="00012cbd7000fbdbdf257b00000008000300", @ANYRES32=r5, @ANYBLOB="0c00990004000000000000000a000600ffffffffffff00000a00060008021100000100000a00060008021100000100001400fe008116318664cdae6aec6b71baba6f6dfb1400020179671d343424bf4d15a10d504ec5aa880a00060008021100000100000a00060008021100000100001400fe00750000000015000000000000000000001400fe00cfc3d37cc10cecc9f1f05fd28e7ce85e"], 0xb4}}, 0x8000)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f00000001c0)={'wlan0\x00'})

00:33:32 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r4, 0x0, 0x3)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:33:32 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:33:32 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r4, 0x0, 0x3)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  254.851266] FAULT_INJECTION: forcing a failure.
[  254.851266] name failslab, interval 1, probability 0, space 0, times 0
[  254.853707] CPU: 1 PID: 4679 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  254.855141] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  254.857531] Call Trace:
[  254.858102]  dump_stack+0x107/0x163
[  254.858877]  should_fail.cold+0x5/0xa
[  254.859682]  ? __alloc_file+0x21/0x310
[  254.860531]  should_failslab+0x5/0x10
[  254.861353]  kmem_cache_alloc+0x5b/0x350
[  254.862239]  __alloc_file+0x21/0x310
[  254.863038]  alloc_empty_file+0x6d/0x170
[  254.863901]  path_openat+0xde/0x26c0
[  254.864714]  ? path_lookupat+0x850/0x850
[  254.865577]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  254.866701]  ? lock_acquire+0x197/0x490
[  254.867571]  do_filp_open+0x17e/0x3c0
00:33:32 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 4)

00:33:32 executing program 4:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r4, 0x0, 0x3)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_PMK(r4, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000900)=ANY=[@ANYBLOB="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", @ANYRES16=0x0, @ANYBLOB="00012cbd7000fbdbdf257b00000008000300", @ANYRES32=r5, @ANYBLOB="0c00990004000000000000000a000600ffffffffffff00000a00060008021100000100000a00060008021100000100001400fe008116318664cdae6aec6b71baba6f6dfb1400020179671d343424bf4d15a10d504ec5aa880a00060008021100000100000a00060008021100000100001400fe00750000000015000000000000000000001400fe00cfc3d37cc10cecc9f1f05fd28e7ce85e"], 0xb4}}, 0x8000)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)
socket$nl_generic(0x10, 0x3, 0x10)

00:33:32 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:33:32 executing program 5:
syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x44, 0x0, 0x0, 0x0)
mkdir(0x0, 0x0)
mount$bind(0x0, 0x0, 0x0, 0x0, 0x0)
lsetxattr$security_selinux(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), &(0x7f0000000200)='system_u:object_r:kvm_device_t:s0\x00', 0x22, 0x0)
write$P9_RREADDIR(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_open_dev$mouse(&(0x7f0000000080), 0x0, 0x0)
syz_genetlink_get_family_id$wireguard(&(0x7f0000000200), r0)
syz_mount_image$ext4(&(0x7f0000001840)='ext2\x00', &(0x7f0000001880)='./file0\x00', 0x3, 0x2, &(0x7f0000001d80)=[{0x0}, {0x0}], 0x0, &(0x7f0000001e40)=ANY=[@ANYBLOB="746573745f64756d6d795f656e6372797074696f6e2c695f76657273696f6e2c646566636f6e7465787439757365725f752c736d61636b66736465663d2df97d28272c6673636f6e746578743d73746166665f752c00"])
mount$bind(&(0x7f0000000000)='./file1\x00', &(0x7f0000000040)='./file0/file0\x00', &(0x7f0000000080), 0x1166081, 0x0)
creat(&(0x7f0000001800)='./file0/file0\x00', 0x0)

[  254.868374]  ? may_open_dev+0xf0/0xf0
[  254.869496]  ? __alloc_fd+0x2a5/0x620
[  254.870347]  ? lock_downgrade+0x6d0/0x6d0
[  254.871241]  ? rwlock_bug.part.0+0x90/0x90
[  254.872155]  ? _raw_spin_unlock+0x1a/0x30
[  254.873040]  ? __alloc_fd+0x2a5/0x620
[  254.873869]  do_sys_openat2+0x16d/0x420
[  254.874734]  ? build_open_flags+0x680/0x680
[  254.875656]  ? __mutex_unlock_slowpath+0xe1/0x600
[  254.876691]  ? wait_for_completion+0x270/0x270
[  254.877679]  __x64_sys_openat+0x13f/0x1f0
[  254.878572]  ? __ia32_compat_sys_open+0x1c0/0x1c0
[  254.879607]  ? ksys_write+0x1a5/0x250
[  254.880432]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  254.881567]  ? syscall_enter_from_user_mode+0x1d/0x50
[  254.882697]  do_syscall_64+0x33/0x40
[  254.883501]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  254.884612] RIP: 0033:0x7fda1182ea04
[  254.885421] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  254.889543] RSP: 002b:00007fda0edf10b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  254.891274] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1182ea04
[  254.892880] RDX: 0000000000000000 RSI: 00007fda118d4f82 RDI: 00000000ffffff9c
[  254.894494] RBP: 00007fda118d4f82 R08: 0000000000000000 R09: 0000000000000000
[  254.896002] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  254.897444] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
00:33:32 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:33:32 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  255.008754] EXT4-fs (loop5): VFS: Can't find ext4 filesystem
00:33:32 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 5)

[  255.036452] FAULT_INJECTION: forcing a failure.
[  255.036452] name failslab, interval 1, probability 0, space 0, times 0
[  255.039066] CPU: 1 PID: 4698 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  255.040596] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  255.043189] Call Trace:
[  255.043793]  dump_stack+0x107/0x163
[  255.044619]  should_fail.cold+0x5/0xa
[  255.045488]  ? create_object.isra.0+0x3a/0xa20
[  255.046556]  should_failslab+0x5/0x10
[  255.047405]  kmem_cache_alloc+0x5b/0x350
[  255.048321]  create_object.isra.0+0x3a/0xa20
[  255.049304]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[  255.050445]  kmem_cache_alloc+0x159/0x350
[  255.051375]  __alloc_file+0x21/0x310
[  255.052207]  alloc_empty_file+0x6d/0x170
[  255.053122]  path_openat+0xde/0x26c0
[  255.053983]  ? path_lookupat+0x850/0x850
[  255.054899]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  255.056066]  ? lock_acquire+0x197/0x490
[  255.056972]  do_filp_open+0x17e/0x3c0
[  255.057816]  ? may_open_dev+0xf0/0xf0
[  255.058684]  ? __alloc_fd+0x2a5/0x620
[  255.059532]  ? lock_downgrade+0x6d0/0x6d0
[  255.060469]  ? rwlock_bug.part.0+0x90/0x90
[  255.061419]  ? _raw_spin_unlock+0x1a/0x30
[  255.062369]  ? __alloc_fd+0x2a5/0x620
[  255.063228]  do_sys_openat2+0x16d/0x420
[  255.064113]  ? build_open_flags+0x680/0x680
[  255.065069]  ? __mutex_unlock_slowpath+0xe1/0x600
[  255.066156]  ? wait_for_completion+0x270/0x270
[  255.067184]  __x64_sys_openat+0x13f/0x1f0
[  255.068107]  ? __ia32_compat_sys_open+0x1c0/0x1c0
[  255.069175]  ? ksys_write+0x1a5/0x250
[  255.070056]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  255.071257]  ? syscall_enter_from_user_mode+0x1d/0x50
[  255.072419]  do_syscall_64+0x33/0x40
[  255.073245]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  255.074423] RIP: 0033:0x7fda1182ea04
[  255.075241] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  255.079404] RSP: 002b:00007fda0edf10b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  255.081087] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1182ea04
00:33:32 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  255.082729] RDX: 0000000000000000 RSI: 00007fda118d4f82 RDI: 00000000ffffff9c
[  255.084460] RBP: 00007fda118d4f82 R08: 0000000000000000 R09: 0000000000000000
[  255.086086] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  255.087681] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
00:33:32 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r4, 0x0, 0x3)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  266.609941] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak)
[  273.229290] FAULT_INJECTION: forcing a failure.
[  273.229290] name failslab, interval 1, probability 0, space 0, times 0
[  273.231701] CPU: 1 PID: 4724 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  273.233089] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  273.235410] Call Trace:
[  273.235960]  dump_stack+0x107/0x163
[  273.236704]  should_fail.cold+0x5/0xa
[  273.237484]  ? security_file_alloc+0x34/0x170
[  273.238404]  should_failslab+0x5/0x10
[  273.239180]  kmem_cache_alloc+0x5b/0x350
[  273.240029]  security_file_alloc+0x34/0x170
[  273.240911]  __alloc_file+0xb6/0x310
[  273.241669]  alloc_empty_file+0x6d/0x170
[  273.242519]  path_openat+0xde/0x26c0
[  273.243282]  ? path_lookupat+0x850/0x850
[  273.244110]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  273.245178]  ? lock_acquire+0x197/0x490
[  273.245993]  do_filp_open+0x17e/0x3c0
[  273.246772]  ? may_open_dev+0xf0/0xf0
[  273.247235] 9pnet: p9_fd_create_tcp (4727): problem connecting socket to 127.0.0.1
[  273.247554]  ? __alloc_fd+0x2a5/0x620
[  273.247578]  ? lock_downgrade+0x6d0/0x6d0
[  273.250791]  ? rwlock_bug.part.0+0x90/0x90
[  273.251672]  ? _raw_spin_unlock+0x1a/0x30
[  273.252521]  ? __alloc_fd+0x2a5/0x620
[  273.253319]  do_sys_openat2+0x16d/0x420
[  273.254201]  ? build_open_flags+0x680/0x680
[  273.255084]  ? __mutex_unlock_slowpath+0xe1/0x600
[  273.256071]  ? wait_for_completion+0x270/0x270
[  273.257014]  __x64_sys_openat+0x13f/0x1f0
[  273.257857]  ? __ia32_compat_sys_open+0x1c0/0x1c0
[  273.258851]  ? ksys_write+0x1a5/0x250
[  273.259630]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  273.260697]  ? syscall_enter_from_user_mode+0x1d/0x50
[  273.261753]  do_syscall_64+0x33/0x40
[  273.262524]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  273.263208] 9pnet: p9_fd_create_tcp (4728): problem connecting socket to 127.0.0.1
[  273.263571] RIP: 0033:0x7fda1182ea04
[  273.263589] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  273.263597] RSP: 002b:00007fda0edf10b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  273.271179] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1182ea04
[  273.272632] RDX: 0000000000000000 RSI: 00007fda118d4f82 RDI: 00000000ffffff9c
[  273.274097] RBP: 00007fda118d4f82 R08: 0000000000000000 R09: 0000000000000000
[  273.275568] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  273.277012] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
00:33:50 executing program 5:
syz_mount_image$tmpfs(&(0x7f0000000080), &(0x7f0000000040)='./file0\x00', 0x1000, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB='mpol=default=relativd,\x00'])
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0xc1, 0x1)

00:33:50 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:33:50 executing program 1:
syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffffff, 0x0, 0x501803, 0x0)
clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r1 = syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000000040)=<r3=>0x0)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_SEND={0x1a, 0x1, 0x0, r4, 0x0, &(0x7f0000000100)="134eef9927296a3b839922f0fe89734e056e461f4803e3749409405594ec4da15fa107323ee1db1590285f7dd594381a5e53251d10ce749b341d7a05221304b590e86aef31cb889f58eaed6b69c61576a1ed72ddbd055ebc8193b7762476fdba7e8ff96bdbfe63b3ecc935abe3a4470dd9420cafe8e9fd88caa5afb9f0752b2ece460414e61dc57f6790bd4b86f6de3b1ac5cb80dd8be59d80ffa53828544bad92f81859f6521d9d66c1909a9f3faf", 0xaf, 0x40}, 0x8000)
mount$9p_tcp(&(0x7f0000000000), &(0x7f0000000080)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f00000001c0)={'trans=tcp,', {}, 0x2c, {[{@privport}]}})
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r0, 0xc018937e, &(0x7f0000000300)={{0x1, 0x1, 0x18, r1, @out_args}, './file1\x00'})

00:33:50 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 6)

00:33:50 executing program 4:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r4, 0x0, 0x3)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_PMK(r4, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000900)=ANY=[@ANYBLOB="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", @ANYRES16=0x0, @ANYBLOB="00012cbd7000fbdbdf257b00000008000300", @ANYRES32=r5, @ANYBLOB="0c00990004000000000000000a000600ffffffffffff00000a00060008021100000100000a00060008021100000100001400fe008116318664cdae6aec6b71baba6f6dfb1400020179671d343424bf4d15a10d504ec5aa880a00060008021100000100000a00060008021100000100001400fe00750000000015000000000000000000001400fe00cfc3d37cc10cecc9f1f05fd28e7ce85e"], 0xb4}}, 0x8000)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:33:50 executing program 2:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r4, 0x0, 0x3)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_PMK(r4, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000900)=ANY=[@ANYBLOB="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", @ANYRES16=0x0, @ANYBLOB="00012cbd7000fbdbdf257b00000008000300", @ANYRES32=r5, @ANYBLOB="0c00990004000000000000000a000600ffffffffffff00000a00060008021100000100000a00060008021100000100001400fe008116318664cdae6aec6b71baba6f6dfb1400020179671d343424bf4d15a10d504ec5aa880a00060008021100000100000a00060008021100000100001400fe00750000000015000000000000000000001400fe00cfc3d37cc10cecc9f1f05fd28e7ce85e"], 0xb4}}, 0x8000)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)
socket$nl_generic(0x10, 0x3, 0x10)

00:33:50 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:33:50 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r4, 0x0, 0x3)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:33:50 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:33:50 executing program 1:
timer_create(0x3, 0x0, &(0x7f0000000100)=<r0=>0x0)
timer_create(0x3, &(0x7f0000000000)={0x0, 0x1c, 0x1, @tid=0xffffffffffffffff}, &(0x7f0000000040)=<r1=>0x0)
timer_settime(r0, 0x0, &(0x7f00000000c0)={{0x0, 0x989680}}, 0x0)
timer_settime(r1, 0x0, &(0x7f0000000080)={{0x77359400}, {0x0, 0x989680}}, 0x0)
clock_gettime(0x1, &(0x7f00000001c0)={0x0, <r2=>0x0})
timer_settime(0x0, 0x0, &(0x7f0000000200)={{}, {0x0, r2+60000000}}, 0x0)
clone3(&(0x7f00000005c0)={0x40182300, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

00:33:50 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:33:50 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:33:50 executing program 4:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r4, 0x0, 0x3)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:33:51 executing program 2:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r4, 0x0, 0x3)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_PMK(r4, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000900)=ANY=[@ANYBLOB="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", @ANYRES16=0x0, @ANYBLOB="00012cbd7000fbdbdf257b00000008000300", @ANYRES32=r5, @ANYBLOB="0c00990004000000000000000a000600ffffffffffff00000a00060008021100000100000a00060008021100000100001400fe008116318664cdae6aec6b71baba6f6dfb1400020179671d343424bf4d15a10d504ec5aa880a00060008021100000100000a00060008021100000100001400fe00750000000015000000000000000000001400fe00cfc3d37cc10cecc9f1f05fd28e7ce85e"], 0xb4}}, 0x8000)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  285.217043] FAULT_INJECTION: forcing a failure.
[  285.217043] name failslab, interval 1, probability 0, space 0, times 0
[  285.219668] CPU: 1 PID: 4759 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  285.221171] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  285.223703] Call Trace:
[  285.224243]  dump_stack+0x107/0x163
[  285.224982]  should_fail.cold+0x5/0xa
[  285.225767]  ? create_object.isra.0+0x3a/0xa20
[  285.226711]  should_failslab+0x5/0x10
[  285.227480]  kmem_cache_alloc+0x5b/0x350
[  285.228301]  ? percpu_ref_put_many.constprop.0+0x4e/0x100
[  285.229428]  create_object.isra.0+0x3a/0xa20
[  285.230320]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[  285.231381]  kmem_cache_alloc+0x159/0x350
[  285.232230]  security_file_alloc+0x34/0x170
[  285.233106]  __alloc_file+0xb6/0x310
[  285.233858]  alloc_empty_file+0x6d/0x170
00:34:02 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(0xffffffffffffffff, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:34:02 executing program 1:
timer_create(0x3, 0x0, &(0x7f0000000100)=<r0=>0x0)
timer_create(0x3, &(0x7f0000000000)={0x0, 0x1c, 0x1, @tid=0xffffffffffffffff}, &(0x7f0000000040)=<r1=>0x0)
timer_settime(r0, 0x0, &(0x7f00000000c0)={{0x0, 0x989680}}, 0x0)
timer_settime(r1, 0x0, &(0x7f0000000080)={{0x77359400}, {0x0, 0x989680}}, 0x0)
clock_gettime(0x1, &(0x7f00000001c0)={0x0, <r2=>0x0})
timer_settime(0x0, 0x0, &(0x7f0000000200)={{}, {0x0, r2+60000000}}, 0x0)
clone3(&(0x7f00000005c0)={0x40182300, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

00:34:02 executing program 2:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r4, 0x0, 0x3)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:34:02 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 7)

00:34:02 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:34:02 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
[  285.234713]  path_openat+0xde/0x26c0
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r4, 0x0, 0x3)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_PMK(r4, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000900)=ANY=[@ANYBLOB="8539070923a757ca376e738afb7a62c7226be7e5124157a75b12d56b74def09ae49f1e3e26a1816b3934babd9eb5c8daa90ca12a115ab30918f2c8e9e284843d7f4720f6ab746dc170ca6ee2547ca1253a1f8af188193f101c137d1bbeef5a3fd82684ada1153fd3182462d9bb5bd8fb6aba0c8a2acbc30fc89d78b3ad707edeb452a164ce7bf325ce85b4945b944a9d4bcc19d5e2febc9bf346c6100fc45a19c2a8da948a1e8076e02aa1eecce6b9230de16c1a19ee2ffff7bc01c78fb711e56e98338efab57e3fd314fa30585ff275d33dcb9a39f1d24c5ca6eead1510f3fb96724153bbf45812b08eefb50e17731516a5396d186c01b4e6dee678bdcde79947a3fe8fe6f48c41bccc4a7e7ed1f9b40374e72d16012c1cb58b8ae179f2e7", @ANYRES16=0x0, @ANYBLOB="00012cbd7000fbdbdf257b00000008000300", @ANYRES32=r5, @ANYBLOB="0c00990004000000000000000a000600ffffffffffff00000a00060008021100000100000a00060008021100000100001400fe008116318664cdae6aec6b71baba6f6dfb1400020179671d343424bf4d15a10d504ec5aa880a00060008021100000100000a00060008021100000100001400fe00750000000015000000000000000000001400fe00cfc3d37cc10cecc9f1f05fd28e7ce85e"], 0xb4}}, 0x8000)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)
socket$nl_generic(0x10, 0x3, 0x10)

00:34:02 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x80)
syz_io_uring_setup(0x3167, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000000340)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
creat(&(0x7f0000000380)='./file0/file0\x00', 0x100)
r4 = dup2(r3, r3)
syz_io_uring_submit(r1, r2, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r4, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r5=>0x0, &(0x7f0000000040)=<r6=>0x0)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r7, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="7472616e733d66642c723627abcf8a", @ANYRESHEX=r4, @ANYBLOB=',wfdno=', @ANYRESHEX=r7, @ANYBLOB=',access=client,defcontext=staff_u,permit_directio,obj_role=@-@,\\]-({%,,\x00'])
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r8=>0x0, &(0x7f0000000040)=<r9=>0x0)
r10 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r10, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
setsockopt$inet6_udp_int(r10, 0x11, 0x67, &(0x7f00000003c0)=0x2, 0x4)
ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)={0x8})
write$binfmt_elf64(r0, &(0x7f00000001c0)=ANY=[], 0xfdef)

00:34:02 executing program 4:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r4, 0x0, 0x3)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  285.236102]  ? path_lookupat+0x850/0x850
[  285.237215]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  285.238564]  ? lock_acquire+0x197/0x490
[  285.239597]  do_filp_open+0x17e/0x3c0
[  285.240560]  ? may_open_dev+0xf0/0xf0
[  285.241536]  ? __alloc_fd+0x2a5/0x620
[  285.242512]  ? lock_downgrade+0x6d0/0x6d0
[  285.243574]  ? rwlock_bug.part.0+0x90/0x90
[  285.244655]  ? _raw_spin_unlock+0x1a/0x30
[  285.245709]  ? __alloc_fd+0x2a5/0x620
[  285.246712]  do_sys_openat2+0x16d/0x420
[  285.247645]  ? build_open_flags+0x680/0x680
[  285.248514]  ? __mutex_unlock_slowpath+0xe1/0x600
[  285.249490]  ? wait_for_completion+0x270/0x270
[  285.250415]  __x64_sys_openat+0x13f/0x1f0
[  285.251257]  ? __ia32_compat_sys_open+0x1c0/0x1c0
[  285.252217]  ? ksys_write+0x1a5/0x250
[  285.253066]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  285.254253]  ? syscall_enter_from_user_mode+0x1d/0x50
[  285.255436]  do_syscall_64+0x33/0x40
[  285.256274]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  285.257436] RIP: 0033:0x7fda1182ea04
[  285.258275] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  285.262617] RSP: 002b:00007fda0edf10b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  285.264328] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1182ea04
[  285.265929] RDX: 0000000000000000 RSI: 00007fda118d4f82 RDI: 00000000ffffff9c
[  285.267542] RBP: 00007fda118d4f82 R08: 0000000000000000 R09: 0000000000000000
[  285.269142] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  285.270767] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
00:34:02 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(0xffffffffffffffff, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:34:02 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  285.314364] 9pnet: Insufficient options for proto=fd
00:34:02 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r4, 0x0, 0x3)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  285.375586] 9pnet: Insufficient options for proto=fd
00:34:02 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(0xffffffffffffffff, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:34:02 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:34:02 executing program 5:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x80)
syz_io_uring_setup(0x3167, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000000340)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
creat(&(0x7f0000000380)='./file0/file0\x00', 0x100)
r4 = dup2(r3, r3)
syz_io_uring_submit(r1, r2, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r4, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r5=>0x0, &(0x7f0000000040)=<r6=>0x0)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r7, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="7472616e733d66642c723627abcf8a", @ANYRESHEX=r4, @ANYBLOB=',wfdno=', @ANYRESHEX=r7, @ANYBLOB=',access=client,defcontext=staff_u,permit_directio,obj_role=@-@,\\]-({%,,\x00'])
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r8=>0x0, &(0x7f0000000040)=<r9=>0x0)
r10 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r10, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
setsockopt$inet6_udp_int(r10, 0x11, 0x67, &(0x7f00000003c0)=0x2, 0x4)
ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)={0x8})
write$binfmt_elf64(r0, &(0x7f00000001c0)=ANY=[], 0xfdef)

00:34:02 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, 0x0, 0x0)

00:34:03 executing program 4:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:34:03 executing program 2:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r4, 0x0, 0x3)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  285.499673] 9pnet: Insufficient options for proto=fd
00:34:03 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, 0x0, 0x0)

00:34:03 executing program 1:
timer_create(0x3, 0x0, &(0x7f0000000100)=<r0=>0x0)
timer_create(0x3, &(0x7f0000000000)={0x0, 0x1c, 0x1, @tid=0xffffffffffffffff}, &(0x7f0000000040)=<r1=>0x0)
timer_settime(r0, 0x0, &(0x7f00000000c0)={{0x0, 0x989680}}, 0x0)
timer_settime(r1, 0x0, &(0x7f0000000080)={{0x77359400}, {0x0, 0x989680}}, 0x0)
clock_gettime(0x1, &(0x7f00000001c0)={0x0, <r2=>0x0})
timer_settime(0x0, 0x0, &(0x7f0000000200)={{}, {0x0, r2+60000000}}, 0x0)
clone3(&(0x7f00000005c0)={0x40182300, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  296.606368] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak)
00:34:21 executing program 5:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r4, 0x0, 0x3)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:34:21 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:34:21 executing program 4:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:34:21 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 8)

00:34:21 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  304.328380] FAULT_INJECTION: forcing a failure.
[  304.328380] name failslab, interval 1, probability 0, space 0, times 0
[  304.330996] CPU: 1 PID: 4832 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  304.332364] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  304.334647] Call Trace:
[  304.335194]  dump_stack+0x107/0x163
[  304.335932]  should_fail.cold+0x5/0xa
[  304.336705]  ? proc_self_get_link+0x1e1/0x260
[  304.337619]  should_failslab+0x5/0x10
[  304.338404]  kmem_cache_alloc_trace+0x55/0x360
[  304.339372]  proc_self_get_link+0x1e1/0x260
[  304.340260]  ? proc_ns_dir_lookup+0x2b0/0x2b0
[  304.341185]  step_into+0x13ea/0x1bb0
[  304.341959]  ? path_init+0x17d0/0x17d0
[  304.342770]  ? unlazy_child+0x4a0/0x4a0
[  304.343607]  walk_component+0x171/0x6a0
[  304.344426]  ? trace_hardirqs_on+0x5b/0x180
[  304.345315]  ? handle_dots.part.0+0x1540/0x1540
[  304.346284]  ? security_inode_permission+0xcb/0x100
[  304.347352]  link_path_walk.part.0+0x695/0xbe0
[  304.348309]  ? walk_component+0x6a0/0x6a0
[  304.349164]  ? percpu_counter_add_batch+0x8b/0x130
[  304.350183]  path_openat+0x255/0x26c0
[  304.350986]  ? path_lookupat+0x850/0x850
[  304.351822]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  304.352893]  ? lock_acquire+0x197/0x490
[  304.353717]  do_filp_open+0x17e/0x3c0
[  304.354498]  ? may_open_dev+0xf0/0xf0
[  304.355302]  ? rwlock_bug.part.0+0x90/0x90
[  304.356188]  ? _raw_spin_unlock+0x1a/0x30
[  304.357033]  ? __alloc_fd+0x2a5/0x620
[  304.357829]  do_sys_openat2+0x16d/0x420
[  304.358649]  ? build_open_flags+0x680/0x680
[  304.359540]  ? __mutex_unlock_slowpath+0xe1/0x600
[  304.360527]  ? wait_for_completion+0x270/0x270
[  304.361471]  __x64_sys_openat+0x13f/0x1f0
[  304.362315]  ? __ia32_compat_sys_open+0x1c0/0x1c0
[  304.363303]  ? ksys_write+0x1a5/0x250
[  304.364080]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
00:34:21 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, 0x0, 0x0)

00:34:21 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r4, 0x0, 0x3)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:34:21 executing program 2:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  304.365148]  ? syscall_enter_from_user_mode+0x1d/0x50
[  304.366382]  do_syscall_64+0x33/0x40
[  304.367154]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  304.368181] RIP: 0033:0x7fda1182ea04
[  304.368937] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  304.372652] RSP: 002b:00007fda0edf10b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  304.374214] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1182ea04
[  304.375681] RDX: 0000000000000000 RSI: 00007fda118d4f82 RDI: 00000000ffffff9c
[  304.377153] RBP: 00007fda118d4f82 R08: 0000000000000000 R09: 0000000000000000
[  304.378615] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  304.380095] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
00:34:21 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:34:22 executing program 4:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:34:22 executing program 2:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:34:22 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:34:22 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:34:22 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 9)

00:34:22 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  304.606041] FAULT_INJECTION: forcing a failure.
[  304.606041] name failslab, interval 1, probability 0, space 0, times 0
[  304.610090] CPU: 0 PID: 4854 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  304.611512] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  304.613846] Call Trace:
[  304.614393]  dump_stack+0x107/0x163
[  304.615150]  should_fail.cold+0x5/0xa
[  304.615932]  ? find_held_lock+0x2c/0x110
[  304.616759]  ? create_object.isra.0+0x3a/0xa20
[  304.617687]  should_failslab+0x5/0x10
[  304.618462]  kmem_cache_alloc+0x5b/0x350
[  304.619309]  ? __task_pid_nr_ns+0x16a/0x490
[  304.620194]  create_object.isra.0+0x3a/0xa20
[  304.621085]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[  304.622100]  kmem_cache_alloc_trace+0x151/0x360
[  304.623063]  proc_self_get_link+0x1e1/0x260
[  304.623931]  ? proc_ns_dir_lookup+0x2b0/0x2b0
[  304.624846]  step_into+0x13ea/0x1bb0
[  304.625618]  ? path_init+0x17d0/0x17d0
[  304.626419]  ? unlazy_child+0x4a0/0x4a0
[  304.627257]  walk_component+0x171/0x6a0
[  304.628072]  ? trace_hardirqs_on+0x5b/0x180
[  304.628950]  ? handle_dots.part.0+0x1540/0x1540
[  304.629904]  ? security_inode_permission+0xcb/0x100
[  304.630935]  link_path_walk.part.0+0x695/0xbe0
[  304.631879]  ? walk_component+0x6a0/0x6a0
[  304.632722]  ? percpu_counter_add_batch+0x8b/0x130
[  304.633732]  path_openat+0x255/0x26c0
[  304.634517]  ? path_lookupat+0x850/0x850
[  304.635362]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  304.636427]  ? lock_acquire+0x197/0x490
[  304.637246]  do_filp_open+0x17e/0x3c0
[  304.638020]  ? may_open_dev+0xf0/0xf0
[  304.638825]  ? rwlock_bug.part.0+0x90/0x90
[  304.639695]  ? _raw_spin_unlock+0x1a/0x30
[  304.640536]  ? __alloc_fd+0x2a5/0x620
[  304.641318]  do_sys_openat2+0x16d/0x420
[  304.642136]  ? build_open_flags+0x680/0x680
[  304.643026]  ? __mutex_unlock_slowpath+0xe1/0x600
[  304.644006]  ? wait_for_completion+0x270/0x270
[  304.644940]  __x64_sys_openat+0x13f/0x1f0
[  304.645783]  ? __ia32_compat_sys_open+0x1c0/0x1c0
[  304.646767]  ? ksys_write+0x1a5/0x250
[  304.647545]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  304.648620]  ? syscall_enter_from_user_mode+0x1d/0x50
[  304.649669]  do_syscall_64+0x33/0x40
[  304.650425]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  304.651478] RIP: 0033:0x7fda1182ea04
[  304.652230] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  304.655992] RSP: 002b:00007fda0edf10b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  304.657539] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1182ea04
[  304.659001] RDX: 0000000000000000 RSI: 00007fda118d4f82 RDI: 00000000ffffff9c
[  304.660454] RBP: 00007fda118d4f82 R08: 0000000000000000 R09: 0000000000000000
[  304.661910] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  304.663377] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
00:34:22 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:34:33 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r4, 0x0, 0x3)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_PMK(r4, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000900)=ANY=[@ANYBLOB="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", @ANYRES16=0x0, @ANYBLOB="00012cbd7000fbdbdf257b00000008000300", @ANYRES32=r5, @ANYBLOB="0c00990004000000000000000a000600ffffffffffff00000a00060008021100000100000a00060008021100000100001400fe008116318664cdae6aec6b71baba6f6dfb1400020179671d343424bf4d15a10d504ec5aa880a00060008021100000100000a00060008021100000100001400fe00750000000015000000000000000000001400fe00cfc3d37cc10cecc9f1f05fd28e7ce85e"], 0xb4}}, 0x8000)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:34:33 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 10)

[  315.991304] FAULT_INJECTION: forcing a failure.
[  315.991304] name failslab, interval 1, probability 0, space 0, times 0
[  315.993983] CPU: 1 PID: 4868 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  315.995464] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  315.997915] Call Trace:
[  315.998491]  dump_stack+0x107/0x163
[  315.999292]  should_fail.cold+0x5/0xa
[  316.000123]  ? __d_alloc+0x2a/0x990
[  316.000912]  should_failslab+0x5/0x10
[  316.001733]  kmem_cache_alloc+0x5b/0x350
[  316.002612]  __d_alloc+0x2a/0x990
[  316.003398]  d_alloc_parallel+0x111/0x1aa0
[  316.004333]  ? __d_lookup_rcu+0x6b0/0x6b0
[  316.005226]  ? find_held_lock+0x2c/0x110
[  316.006103]  ? lockdep_init_map_type+0x2c3/0x770
[  316.007135]  ? lockdep_init_map_type+0x2c3/0x770
[  316.008174]  __lookup_slow+0x193/0x490
[  316.009013]  ? lookup_open.isra.0+0x1230/0x1230
[  316.010041]  ? selinux_inode_permission+0x3fc/0x630
[  316.011136]  ? selinux_path_notify+0x480/0x480
[  316.012128]  walk_component+0x41a/0x6a0
[  316.012988]  ? handle_dots.part.0+0x1540/0x1540
[  316.013997]  ? security_inode_permission+0xcb/0x100
[  316.015080]  ? proc_coredump_filter_read+0x230/0x230
[  316.016183]  link_path_walk.part.0+0x695/0xbe0
[  316.017181]  ? walk_component+0x6a0/0x6a0
[  316.018075]  ? percpu_counter_add_batch+0x8b/0x130
[  316.019161]  path_openat+0x255/0x26c0
[  316.019993]  ? path_lookupat+0x850/0x850
[  316.020867]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  316.021999]  ? lock_acquire+0x197/0x490
[  316.022865]  do_filp_open+0x17e/0x3c0
[  316.023695]  ? may_open_dev+0xf0/0xf0
[  316.024531]  ? simple_attr_release+0x40/0x40
[  316.025493]  ? _raw_spin_unlock+0x1a/0x30
[  316.026382]  ? __alloc_fd+0x2a5/0x620
[  316.027225]  do_sys_openat2+0x16d/0x420
[  316.028085]  ? build_open_flags+0x680/0x680
[  316.029012]  ? __mutex_unlock_slowpath+0xe1/0x600
[  316.030056]  ? wait_for_completion+0x270/0x270
[  316.031070]  __x64_sys_openat+0x13f/0x1f0
[  316.031965]  ? __ia32_compat_sys_open+0x1c0/0x1c0
[  316.033004]  ? ksys_write+0x1a5/0x250
[  316.033833]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  316.034974]  ? syscall_enter_from_user_mode+0x1d/0x50
[  316.036099]  do_syscall_64+0x33/0x40
[  316.036912]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  316.038030] RIP: 0033:0x7fda1182ea04
[  316.038840] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  316.042841] RSP: 002b:00007fda0edf10b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  316.044490] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1182ea04
[  316.046034] RDX: 0000000000000000 RSI: 00007fda118d4f82 RDI: 00000000ffffff9c
[  316.047603] RBP: 00007fda118d4f82 R08: 0000000000000000 R09: 0000000000000000
[  316.049148] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  316.050690] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
00:34:33 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:34:33 executing program 5:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:34:33 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0)
ftruncate(r0, 0x80)
syz_io_uring_setup(0x3167, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000000340)=<r2=>0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
creat(&(0x7f0000000380)='./file0/file0\x00', 0x100)
r4 = dup2(r3, r3)
syz_io_uring_submit(r1, r2, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r4, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r4, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r5=>0x0, &(0x7f0000000040)=<r6=>0x0)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r7, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="7472616e733d66642c723627abcf8a", @ANYRESHEX=r4, @ANYBLOB=',wfdno=', @ANYRESHEX=r7, @ANYBLOB=',access=client,defcontext=staff_u,permit_directio,obj_role=@-@,\\]-({%,,\x00'])
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r8=>0x0, &(0x7f0000000040)=<r9=>0x0)
r10 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r10, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
setsockopt$inet6_udp_int(r10, 0x11, 0x67, &(0x7f00000003c0)=0x2, 0x4)
ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)={0x8})
write$binfmt_elf64(r0, &(0x7f00000001c0)=ANY=[], 0xfdef)

00:34:33 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={0x0}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:34:33 executing program 4:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:34:33 executing program 2:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  316.082711] Zero length message leads to an empty skb
00:34:33 executing program 4:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  316.130150] 9pnet: Insufficient options for proto=fd
00:34:33 executing program 5:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r4, 0x0, 0x3)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_PMK(r4, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000900)=ANY=[@ANYBLOB="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", @ANYRES16=0x0, @ANYBLOB="00012cbd7000fbdbdf257b00000008000300", @ANYRES32=r5, @ANYBLOB="0c00990004000000000000000a000600ffffffffffff00000a00060008021100000100000a00060008021100000100001400fe008116318664cdae6aec6b71baba6f6dfb1400020179671d343424bf4d15a10d504ec5aa880a00060008021100000100000a00060008021100000100001400fe00750000000015000000000000000000001400fe00cfc3d37cc10cecc9f1f05fd28e7ce85e"], 0xb4}}, 0x8000)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)
socket$nl_generic(0x10, 0x3, 0x10)

00:34:33 executing program 2:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:34:33 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 11)

00:34:33 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={0x0}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  316.232247] FAULT_INJECTION: forcing a failure.
[  316.232247] name failslab, interval 1, probability 0, space 0, times 0
[  316.234645] CPU: 0 PID: 4895 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  316.236057] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  316.238382] Call Trace:
[  316.238945]  dump_stack+0x107/0x163
[  316.239705]  should_fail.cold+0x5/0xa
[  316.240490]  ? __d_alloc+0x2a/0x990
[  316.241237]  should_failslab+0x5/0x10
[  316.242033]  kmem_cache_alloc+0x5b/0x350
[  316.242852]  __d_alloc+0x2a/0x990
[  316.243576]  d_alloc_parallel+0x111/0x1aa0
[  316.244465]  ? __d_lookup_rcu+0x6b0/0x6b0
00:34:33 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r2, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:34:33 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  316.245309]  ? find_held_lock+0x2c/0x110
[  316.246354]  ? lockdep_init_map_type+0x2c3/0x770
[  316.247327]  ? lockdep_init_map_type+0x2c3/0x770
[  316.248295]  __lookup_slow+0x193/0x490
[  316.249095]  ? lookup_open.isra.0+0x1230/0x1230
[  316.250060]  ? selinux_inode_permission+0x3fc/0x630
[  316.251092]  ? selinux_path_notify+0x480/0x480
[  316.252044]  walk_component+0x41a/0x6a0
[  316.252861]  ? handle_dots.part.0+0x1540/0x1540
[  316.253811]  ? security_inode_permission+0xcb/0x100
[  316.254820]  ? proc_coredump_filter_read+0x230/0x230
[  316.255890]  link_path_walk.part.0+0x695/0xbe0
[  316.256826]  ? walk_component+0x6a0/0x6a0
[  316.257665]  ? percpu_counter_add_batch+0x8b/0x130
[  316.258678]  path_openat+0x255/0x26c0
[  316.259481]  ? path_lookupat+0x850/0x850
[  316.260298]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  316.261369]  ? lock_acquire+0x197/0x490
[  316.262188]  do_filp_open+0x17e/0x3c0
[  316.262961]  ? may_open_dev+0xf0/0xf0
[  316.263744]  ? simple_attr_release+0x40/0x40
[  316.264653]  ? _raw_spin_unlock+0x1a/0x30
[  316.265496]  ? __alloc_fd+0x2a5/0x620
[  316.266273]  do_sys_openat2+0x16d/0x420
[  316.267118]  ? build_open_flags+0x680/0x680
[  316.267979]  ? __mutex_unlock_slowpath+0xe1/0x600
[  316.268963]  ? wait_for_completion+0x270/0x270
[  316.269897]  __x64_sys_openat+0x13f/0x1f0
[  316.270740]  ? __ia32_compat_sys_open+0x1c0/0x1c0
[  316.271725]  ? ksys_write+0x1a5/0x250
[  316.272508]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  316.273573]  ? syscall_enter_from_user_mode+0x1d/0x50
[  316.274618]  do_syscall_64+0x33/0x40
[  316.275380]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  316.276419] RIP: 0033:0x7fda1182ea04
[  316.277178] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  316.280925] RSP: 002b:00007fda0edf10b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  316.282464] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1182ea04
[  316.283918] RDX: 0000000000000000 RSI: 00007fda118d4f82 RDI: 00000000ffffff9c
[  316.285365] RBP: 00007fda118d4f82 R08: 0000000000000000 R09: 0000000000000000
[  316.286810] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  316.288265] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
00:34:33 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={0x0}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:34:33 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:34:33 executing program 4:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:34:33 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:34:33 executing program 4:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  327.872179] FAULT_INJECTION: forcing a failure.
[  327.872179] name failslab, interval 1, probability 0, space 0, times 0
[  327.874630] CPU: 1 PID: 4922 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  327.876020] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  327.878306] Call Trace:
[  327.878842]  dump_stack+0x107/0x163
[  327.879585]  should_fail.cold+0x5/0xa
[  327.880351]  ? proc_alloc_inode+0x18/0x200
[  327.881200]  should_failslab+0x5/0x10
[  327.881961]  kmem_cache_alloc+0x5b/0x350
[  327.882777]  ? proc_free_inode+0x20/0x20
[  327.883615]  proc_alloc_inode+0x18/0x200
[  327.884425]  ? proc_free_inode+0x20/0x20
[  327.885237]  alloc_inode+0x63/0x230
[  327.886176]  new_inode+0x23/0x240
00:34:45 executing program 4:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:34:45 executing program 2:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:34:45 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:34:45 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r2, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:34:45 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 12)

00:34:45 executing program 1:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r4, 0x0, 0x3)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_PMK(r4, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000900)=ANY=[@ANYBLOB="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", @ANYRES16=0x0, @ANYBLOB="00012cbd7000fbdbdf257b00000008000300", @ANYRES32=r5, @ANYBLOB="0c00990004000000000000000a000600ffffffffffff00000a00060008021100000100000a00060008021100000100001400fe008116318664cdae6aec6b71baba6f6dfb1400020179671d343424bf4d15a10d504ec5aa880a00060008021100000100000a00060008021100000100001400fe00750000000015000000000000000000001400fe00cfc3d37cc10cecc9f1f05fd28e7ce85e"], 0xb4}}, 0x8000)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  327.887093]  proc_pid_make_inode+0x26/0x3c0
[  327.888187]  proc_pident_instantiate+0x81/0x310
[  327.889134]  proc_pident_lookup+0x1e7/0x270
[  327.890015]  __lookup_slow+0x252/0x490
[  327.890805]  ? lookup_open.isra.0+0x1230/0x1230
00:34:45 executing program 5:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3cd04d6b66732e66617400020801090470000000f801", 0x17}, {0x0, 0x0, 0x1000a04}], 0x0, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
open(&(0x7f0000000040)='./file0\x00', 0x1a18c1, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000500)='ramfs\x00', 0x200400, 0x0)
mknod$loop(&(0x7f0000000000)='./file0/file1\x00', 0x2000, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
acct(&(0x7f0000000040)='./file0\x00')
syz_io_uring_setup(0x3167, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000000340)=<r2=>0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
close_range(r3, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_TEE={0x21, 0x1, 0x0, @fd, 0x0, 0x0, 0x0, 0x8, 0x1, {0x0, 0x0, r3}}, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000140)=@IORING_OP_ASYNC_CANCEL={0xe, 0x4, 0x0, 0x0, 0x0, 0x12345}, 0x4)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r5 = dup2(r4, r4)
syz_io_uring_submit(r1, r2, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r5, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
openat(r5, &(0x7f00000000c0)='./file0/file1\x00', 0x40, 0x52)
acct(0x0)

[  327.891802]  ? selinux_inode_permission+0x3fc/0x630
[  327.892978]  ? selinux_path_notify+0x480/0x480
[  327.893929]  walk_component+0x41a/0x6a0
[  327.894736]  ? handle_dots.part.0+0x1540/0x1540
[  327.895700]  ? security_inode_permission+0xcb/0x100
[  327.896719]  ? proc_coredump_filter_read+0x230/0x230
00:34:45 executing program 6:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0)
ftruncate(r4, 0x1000003)
ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000))
write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef)
lseek(r4, 0x0, 0x3)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000500)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_PMK(r4, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000900)=ANY=[@ANYBLOB="8539070923a757ca376e738afb7a62c7226be7e5124157a75b12d56b74def09ae49f1e3e26a1816b3934babd9eb5c8daa90ca12a115ab30918f2c8e9e284843d7f4720f6ab746dc170ca6ee2547ca1253a1f8af188193f101c137d1bbeef5a3fd82684ada1153fd3182462d9bb5bd8fb6aba0c8a2acbc30fc89d78b3ad707edeb452a164ce7bf325ce85b4945b944a9d4bcc19d5e2febc9bf346c6100fc45a19c2a8da948a1e8076e02aa1eecce6b9230de16c1a19ee2ffff7bc01c78fb711e56e98338efab57e3fd314fa30585ff275d33dcb9a39f1d24c5ca6eead1510f3fb96724153bbf45812b08eefb50e17731516a5396d186c01b4e6dee678bdcde79947a3fe8fe6f48c41bccc4a7e7ed1f9b40374e72d16012c1cb58b8ae179f2e7", @ANYRES16=0x0, @ANYBLOB="00012cbd7000fbdbdf257b00000008000300", @ANYRES32=r5, @ANYBLOB="0c00990004000000000000000a000600ffffffffffff00000a00060008021100000100000a00060008021100000100001400fe008116318664cdae6aec6b71baba6f6dfb1400020179671d343424bf4d15a10d504ec5aa880a00060008021100000100000a00060008021100000100001400fe00750000000015000000000000000000001400fe00cfc3d37cc10cecc9f1f05fd28e7ce85e"], 0xb4}}, 0x8000)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  327.897746]  link_path_walk.part.0+0x695/0xbe0
[  327.898767]  ? walk_component+0x6a0/0x6a0
[  327.899660]  ? percpu_counter_add_batch+0x8b/0x130
[  327.900671]  path_openat+0x255/0x26c0
[  327.901458]  ? path_lookupat+0x850/0x850
[  327.902287]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  327.903353]  ? lock_acquire+0x197/0x490
[  327.904175]  do_filp_open+0x17e/0x3c0
[  327.904945]  ? may_open_dev+0xf0/0xf0
[  327.905748]  ? simple_attr_release+0x40/0x40
[  327.906644]  ? _raw_spin_unlock+0x1a/0x30
[  327.907505]  ? __alloc_fd+0x2a5/0x620
[  327.908286]  do_sys_openat2+0x16d/0x420
[  327.909107]  ? build_open_flags+0x680/0x680
[  327.909991]  ? __mutex_unlock_slowpath+0xe1/0x600
[  327.910982]  ? wait_for_completion+0x270/0x270
[  327.911952]  __x64_sys_openat+0x13f/0x1f0
[  327.912810]  ? __ia32_compat_sys_open+0x1c0/0x1c0
[  327.913806]  ? ksys_write+0x1a5/0x250
[  327.914604]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  327.915707]  ? syscall_enter_from_user_mode+0x1d/0x50
[  327.916773]  do_syscall_64+0x33/0x40
[  327.917544]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  327.918606] RIP: 0033:0x7fda1182ea04
[  327.919413] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  327.923142] RSP: 002b:00007fda0edf10b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  327.924651] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1182ea04
[  327.926068] RDX: 0000000000000000 RSI: 00007fda118d4f82 RDI: 00000000ffffff9c
[  327.927515] RBP: 00007fda118d4f82 R08: 0000000000000000 R09: 0000000000000000
[  327.928947] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  327.930400] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
00:34:45 executing program 2:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:34:45 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:34:45 executing program 4:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:34:45 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r2, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:34:45 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 13)

00:34:45 executing program 4:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:34:45 executing program 2:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  328.068163] FAULT_INJECTION: forcing a failure.
[  328.068163] name failslab, interval 1, probability 0, space 0, times 0
[  328.069341] CPU: 0 PID: 4947 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  328.070080] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  328.071296] Call Trace:
[  328.071575]  dump_stack+0x107/0x163
[  328.071948]  should_fail.cold+0x5/0xa
[  328.072332]  ? proc_alloc_inode+0x18/0x200
[  328.072754]  should_failslab+0x5/0x10
[  328.073132]  kmem_cache_alloc+0x5b/0x350
[  328.073541]  ? proc_free_inode+0x20/0x20
[  328.073980]  proc_alloc_inode+0x18/0x200
[  328.074399]  ? proc_free_inode+0x20/0x20
[  328.074803]  alloc_inode+0x63/0x230
[  328.075184]  new_inode+0x23/0x240
[  328.075560]  proc_pid_make_inode+0x26/0x3c0
[  328.076013]  proc_pident_instantiate+0x81/0x310
[  328.076518]  proc_pident_lookup+0x1e7/0x270
[  328.076986]  __lookup_slow+0x252/0x490
[  328.077400]  ? lookup_open.isra.0+0x1230/0x1230
[  328.077913]  ? selinux_inode_permission+0x3fc/0x630
[  328.078445]  ? selinux_path_notify+0x480/0x480
[  328.078944]  walk_component+0x41a/0x6a0
[  328.079387]  ? handle_dots.part.0+0x1540/0x1540
[  328.079895]  ? security_inode_permission+0xcb/0x100
[  328.080421]  ? proc_coredump_filter_read+0x230/0x230
[  328.080986]  link_path_walk.part.0+0x695/0xbe0
[  328.081474]  ? walk_component+0x6a0/0x6a0
[  328.081905]  ? percpu_counter_add_batch+0x8b/0x130
[  328.082432]  path_openat+0x255/0x26c0
[  328.082852]  ? path_lookupat+0x850/0x850
[  328.083295]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  328.083857]  ? lock_acquire+0x197/0x490
[  328.084283]  do_filp_open+0x17e/0x3c0
[  328.084687]  ? may_open_dev+0xf0/0xf0
[  328.085106]  ? simple_attr_release+0x40/0x40
[  328.085588]  ? _raw_spin_unlock+0x1a/0x30
[  328.086032]  ? __alloc_fd+0x2a5/0x620
[  328.086449]  do_sys_openat2+0x16d/0x420
[  328.086897]  ? build_open_flags+0x680/0x680
[  328.087364]  ? __mutex_unlock_slowpath+0xe1/0x600
[  328.087911]  ? wait_for_completion+0x270/0x270
[  328.088408]  __x64_sys_openat+0x13f/0x1f0
[  328.088872]  ? __ia32_compat_sys_open+0x1c0/0x1c0
[  328.089376]  ? ksys_write+0x1a5/0x250
[  328.089815]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  328.090397]  ? syscall_enter_from_user_mode+0x1d/0x50
[  328.090982]  do_syscall_64+0x33/0x40
[  328.091420]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  328.092005] RIP: 0033:0x7fda1182ea04
[  328.092425] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  328.094511] RSP: 002b:00007fda0edf10b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  328.095389] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1182ea04
[  328.096200] RDX: 0000000000000000 RSI: 00007fda118d4f82 RDI: 00000000ffffff9c
[  328.097013] RBP: 00007fda118d4f82 R08: 0000000000000000 R09: 0000000000000000
[  328.097828] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  328.098637] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
00:34:45 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x0, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:34:45 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:34:45 executing program 4:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r2, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  340.150961] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak)
00:35:04 executing program 4:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r2, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:35:04 executing program 6:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3cd04d6b66732e66617400020801090470000000f801", 0x17}, {0x0, 0x0, 0x1000a04}], 0x0, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
open(&(0x7f0000000040)='./file0\x00', 0x1a18c1, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000500)='ramfs\x00', 0x200400, 0x0)
mknod$loop(&(0x7f0000000000)='./file0/file1\x00', 0x2000, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
acct(&(0x7f0000000040)='./file0\x00')
syz_io_uring_setup(0x3167, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000000340)=<r2=>0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
close_range(r3, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_TEE={0x21, 0x1, 0x0, @fd, 0x0, 0x0, 0x0, 0x8, 0x1, {0x0, 0x0, r3}}, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000140)=@IORING_OP_ASYNC_CANCEL={0xe, 0x4, 0x0, 0x0, 0x0, 0x12345}, 0x4)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r5 = dup2(r4, r4)
syz_io_uring_submit(r1, r2, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r5, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
openat(r5, &(0x7f00000000c0)='./file0/file1\x00', 0x40, 0x52)
acct(0x0)

00:35:04 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x0, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:35:04 executing program 2:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:35:04 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = dup2(r1, r1)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r2, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:35:04 executing program 1:
getegid()
getegid()
getegid()
fork()
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(0xffffffffffffffff, 0x0, 0x81)
sendmsg$IEEE802154_SET_MACPARAMS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000300)={0x0}, 0x1, 0x0, 0x0, 0x8061}, 0x4)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_DEL_SEC_KEY(r0, 0x0, 0x1)
sendmsg$NL802154_CMD_SET_LBT_MODE(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)={0x1c, 0x0, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8}]}, 0x1c}}, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl802154(&(0x7f00000002c0), 0xffffffffffffffff)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000000)={'wpan3\x00', <r4=>0x0})
sendmsg$NL802154_CMD_SET_LBT_MODE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)={0x1c, r2, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r4}]}, 0x1c}}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000040)={'wpan4\x00', <r5=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x58, 0x0, 0x4, 0x70bd27, 0x25dfdbfc, {}, [@NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r4}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r5}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x58}, 0x1, 0x0, 0x0, 0x800}, 0x4000801)
sendmsg$NL802154_CMD_SET_MAX_FRAME_RETRIES(r0, 0x0, 0x44080)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000680)={'wpan0\x00'})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r6, &(0x7f0000000840)={&(0x7f0000000640)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000800)={&(0x7f0000000200)={0x7c, 0x0, 0x200, 0x70bd2a, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_DEV={0xffffffd3, 0x6, 0x100000001}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000003}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r5}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x7c}, 0x1, 0x0, 0x0, 0xc0}, 0x4000)

00:35:04 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 14)

00:35:04 executing program 5:
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3cd04d6b66732e66617400020801090470000000f801", 0x17}, {0x0, 0x0, 0x1000a04}], 0x0, &(0x7f0000000180)=ANY=[])
chdir(&(0x7f0000000040)='./file0\x00')
open(&(0x7f0000000040)='./file0\x00', 0x1a18c1, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000500)='ramfs\x00', 0x200400, 0x0)
mknod$loop(&(0x7f0000000000)='./file0/file1\x00', 0x2000, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006})
acct(&(0x7f0000000040)='./file0\x00')
syz_io_uring_setup(0x3167, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000000340)=<r2=>0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
close_range(r3, 0xffffffffffffffff, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_TEE={0x21, 0x1, 0x0, @fd, 0x0, 0x0, 0x0, 0x8, 0x1, {0x0, 0x0, r3}}, 0x0)
syz_io_uring_submit(r1, 0x0, &(0x7f0000000140)=@IORING_OP_ASYNC_CANCEL={0xe, 0x4, 0x0, 0x0, 0x0, 0x12345}, 0x4)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r5 = dup2(r4, r4)
syz_io_uring_submit(r1, r2, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r5, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
openat(r5, &(0x7f00000000c0)='./file0/file1\x00', 0x40, 0x52)
acct(0x0)

[  346.831821] FAULT_INJECTION: forcing a failure.
[  346.831821] name failslab, interval 1, probability 0, space 0, times 0
[  346.834235] CPU: 1 PID: 4979 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  346.835635] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  346.837899] Call Trace:
[  346.838431]  dump_stack+0x107/0x163
[  346.839159]  should_fail.cold+0x5/0xa
[  346.839931]  ? security_inode_alloc+0x34/0x160
[  346.840842]  should_failslab+0x5/0x10
[  346.841602]  kmem_cache_alloc+0x5b/0x350
[  346.842421]  security_inode_alloc+0x34/0x160
[  346.843303]  inode_init_always+0x507/0xc10
[  346.844183]  alloc_inode+0x84/0x230
[  346.844915]  new_inode+0x23/0x240
[  346.845626]  proc_pid_make_inode+0x26/0x3c0
[  346.846509]  proc_pident_instantiate+0x81/0x310
[  346.847452]  proc_pident_lookup+0x1e7/0x270
[  346.848344]  __lookup_slow+0x252/0x490
[  346.849142]  ? lookup_open.isra.0+0x1230/0x1230
[  346.850105]  ? selinux_inode_permission+0x3fc/0x630
[  346.851115]  ? selinux_path_notify+0x480/0x480
[  346.852066]  walk_component+0x41a/0x6a0
[  346.852871]  ? handle_dots.part.0+0x1540/0x1540
[  346.853821]  ? security_inode_permission+0xcb/0x100
[  346.854836]  ? proc_coredump_filter_read+0x230/0x230
[  346.855880]  link_path_walk.part.0+0x695/0xbe0
[  346.856815]  ? walk_component+0x6a0/0x6a0
[  346.857655]  ? percpu_counter_add_batch+0x8b/0x130
[  346.858669]  path_openat+0x255/0x26c0
[  346.859469]  ? path_lookupat+0x850/0x850
[  346.860298]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  346.861360]  ? lock_acquire+0x197/0x490
[  346.862184]  do_filp_open+0x17e/0x3c0
[  346.862954]  ? may_open_dev+0xf0/0xf0
[  346.863745]  ? simple_attr_release+0x40/0x40
[  346.864650]  ? _raw_spin_unlock+0x1a/0x30
[  346.865484]  ? __alloc_fd+0x2a5/0x620
[  346.866264]  do_sys_openat2+0x16d/0x420
[  346.867071]  ? build_open_flags+0x680/0x680
[  346.867961]  ? __mutex_unlock_slowpath+0xe1/0x600
[  346.868942]  ? wait_for_completion+0x270/0x270
[  346.869877]  __x64_sys_openat+0x13f/0x1f0
[  346.870724]  ? __ia32_compat_sys_open+0x1c0/0x1c0
[  346.871726]  ? ksys_write+0x1a5/0x250
[  346.872504]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  346.873566]  ? syscall_enter_from_user_mode+0x1d/0x50
[  346.874619]  do_syscall_64+0x33/0x40
[  346.875379]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  346.876428] RIP: 0033:0x7fda1182ea04
[  346.877186] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  346.880957] RSP: 002b:00007fda0edf10b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  346.882502] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1182ea04
[  346.883964] RDX: 0000000000000000 RSI: 00007fda118d4f82 RDI: 00000000ffffff9c
[  346.885445] RBP: 00007fda118d4f82 R08: 0000000000000000 R09: 0000000000000000
[  346.886903] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  346.888343] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
00:35:04 executing program 4:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r2, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:35:04 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x0, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:35:04 executing program 2:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:35:16 executing program 1:
io_setup(0x5, &(0x7f0000000000)=<r0=>0x0)
io_submit(r0, 0x1, &(0x7f0000000300)=[&(0x7f00000002c0)={0x0, 0x0, 0x0, 0x3, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2}])

00:35:16 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:35:16 executing program 5:
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/nf_conntrack_irc', 0x1, 0x8)
getsockopt$bt_BT_POWER(r0, 0x112, 0x4, 0x0, &(0x7f0000000080))

00:35:16 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:35:16 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 15)

00:35:16 executing program 2:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:35:16 executing program 4:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:35:16 executing program 6:
syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x3167, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=<r0=>0x0, &(0x7f0000000340)=<r1=>0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
syz_io_uring_submit(r0, r1, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f00000001c0)=@sco}, 0x0)
bind$bt_sco(r3, &(0x7f0000000240)={0x1f, @fixed}, 0x8)
statx(r3, &(0x7f0000000380)='./file0\x00', 0x2000, 0x40, &(0x7f00000003c0))
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)

[  358.733282] FAULT_INJECTION: forcing a failure.
[  358.733282] name failslab, interval 1, probability 0, space 0, times 0
[  358.735933] CPU: 0 PID: 5031 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  358.737294] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  358.739559] Call Trace:
[  358.740102]  dump_stack+0x107/0x163
[  358.740835]  should_fail.cold+0x5/0xa
[  358.741602]  ? security_inode_alloc+0x34/0x160
[  358.742514]  should_failslab+0x5/0x10
[  358.743271]  kmem_cache_alloc+0x5b/0x350
[  358.744108]  security_inode_alloc+0x34/0x160
[  358.744993]  inode_init_always+0x507/0xc10
[  358.745841]  alloc_inode+0x84/0x230
[  358.746560]  new_inode+0x23/0x240
[  358.747264]  proc_pid_make_inode+0x26/0x3c0
[  358.748130]  proc_pident_instantiate+0x81/0x310
[  358.749048]  proc_pident_lookup+0x1e7/0x270
[  358.749915]  __lookup_slow+0x252/0x490
[  358.750702]  ? lookup_open.isra.0+0x1230/0x1230
[  358.751660]  ? selinux_inode_permission+0x3fc/0x630
[  358.752652]  ? selinux_path_notify+0x480/0x480
[  358.753556]  walk_component+0x41a/0x6a0
[  358.754340]  ? handle_dots.part.0+0x1540/0x1540
[  358.755259]  ? security_inode_permission+0xcb/0x100
[  358.756252]  ? proc_coredump_filter_read+0x230/0x230
[  358.757258]  link_path_walk.part.0+0x695/0xbe0
[  358.758169]  ? walk_component+0x6a0/0x6a0
[  358.758977]  ? percpu_counter_add_batch+0x8b/0x130
[  358.759955]  path_openat+0x255/0x26c0
[  358.760720]  ? path_lookupat+0x850/0x850
[  358.761517]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  358.762549]  ? lock_acquire+0x197/0x490
[  358.763355]  do_filp_open+0x17e/0x3c0
[  358.764123]  ? may_open_dev+0xf0/0xf0
[  358.764881]  ? simple_attr_release+0x40/0x40
[  358.765753]  ? _raw_spin_unlock+0x1a/0x30
[  358.766568]  ? __alloc_fd+0x2a5/0x620
[  358.767324]  do_sys_openat2+0x16d/0x420
[  358.768139]  ? build_open_flags+0x680/0x680
[  358.768994]  ? __mutex_unlock_slowpath+0xe1/0x600
[  358.769973]  ? wait_for_completion+0x270/0x270
[  358.770917]  __x64_sys_openat+0x13f/0x1f0
[  358.771778]  ? __ia32_compat_sys_open+0x1c0/0x1c0
[  358.772746]  ? ksys_write+0x1a5/0x250
[  358.773503]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  358.774556]  ? syscall_enter_from_user_mode+0x1d/0x50
[  358.775628]  do_syscall_64+0x33/0x40
[  358.776392]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  358.777448] RIP: 0033:0x7fda1182ea04
[  358.778195] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  358.781981] RSP: 002b:00007fda0edf10b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
00:35:16 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  358.783528] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1182ea04
[  358.785142] RDX: 0000000000000000 RSI: 00007fda118d4f82 RDI: 00000000ffffff9c
[  358.786587] RBP: 00007fda118d4f82 R08: 0000000000000000 R09: 0000000000000000
[  358.788050] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  358.789496] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
00:35:16 executing program 6:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000200), 0x10018c6, &(0x7f0000000240)=ANY=[@ANYRES16])
close(r0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000140)='./file0\x00', 0x0, 0xc8a, &(0x7f0000000200), 0x0, &(0x7f0000000240)=ANY=[])
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0)
execveat(r0, &(0x7f00000000c0)='\x00', &(0x7f00000002c0)=[&(0x7f0000000180)='^)$*#\x00', &(0x7f00000001c0)='iso9660\x00', &(0x7f0000000200)='iso9660\x00', &(0x7f0000000280)='^$k}\x00'], &(0x7f0000000400)=[&(0x7f0000000300)='iso9660\x00', &(0x7f0000000340)=',*\x00', &(0x7f0000000380)=',{!\x00', &(0x7f00000003c0)='\xdc\x00'], 0x0)
sendfile(r1, r0, 0x0, 0x7ffffff9)

00:35:16 executing program 2:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r2, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:35:16 executing program 4:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = dup2(r1, r1)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r2, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:35:16 executing program 0:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:35:16 executing program 5:
r0 = syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=<r1=>0x0, &(0x7f0000002a40)=<r2=>0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000002600))
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r3=>0x0, &(0x7f0000000040)=<r4=>0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
syz_io_uring_submit(r3, r2, &(0x7f0000000000)=@IORING_OP_POLL_REMOVE={0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x5)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r6=>0x0, &(0x7f0000000040)=<r7=>0x0)
r8 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r8, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r9=>0x0, &(0x7f0000000040)=<r10=>0x0)
r11 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r9, r10, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r11, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
syz_io_uring_submit(r1, r4, &(0x7f0000000100)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, r11}, 0x0)
io_uring_enter(r0, 0x76d3, 0x0, 0x0, 0x0, 0x0)

00:35:16 executing program 1:
r0 = syz_io_uring_setup(0x3619, &(0x7f0000000080), &(0x7f0000ffd000/0x2000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000000)=<r2=>0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x9, 0x1, 0x0, 0x1f, 0x108e00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x599, 0x5}, 0x0, 0x100080000000000, 0xffffffff}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x1081, &(0x7f0000000280), &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000800000/0x800000)=nil, &(0x7f0000000180)=<r3=>0x0, &(0x7f0000000040)=<r4=>0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000580)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x80, &(0x7f00000001c0)=@in6={0xa, 0x0, 0x0, @dev}}, 0x0)
setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x41, &(0x7f0000000240)=0x4505, 0x4)
syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x7}, 0x0)
io_uring_enter(r0, 0x76d3, 0x0, 0x0, 0x0, 0x0)

00:35:16 executing program 4:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:35:16 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 16)

00:35:16 executing program 4:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  358.993004] FAULT_INJECTION: forcing a failure.
[  358.993004] name failslab, interval 1, probability 0, space 0, times 0
[  358.995456] CPU: 1 PID: 5075 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  358.996892] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  358.999252] Call Trace:
[  358.999830]  dump_stack+0x107/0x163
[  359.000594]  should_fail.cold+0x5/0xa
[  359.001387]  ? __d_alloc+0x2a/0x990
[  359.002141]  should_failslab+0x5/0x10
[  359.002923]  kmem_cache_alloc+0x5b/0x350
[  359.003772]  __d_alloc+0x2a/0x990
[  359.004490]  d_alloc_parallel+0x111/0x1aa0
[  359.005357]  ? __d_lookup+0x3bf/0x710
[  359.006138]  ? lock_downgrade+0x6d0/0x6d0
[  359.006983]  ? find_held_lock+0x2c/0x110
[  359.007830]  ? __d_lookup_rcu+0x6b0/0x6b0
[  359.008678]  ? __d_lookup+0x3e8/0x710
[  359.009464]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  359.010545]  lookup_open.isra.0+0x922/0x1230
[  359.011454]  ? hashlen_string+0xf0/0xf0
[  359.012322]  path_openat+0x961/0x26c0
[  359.013113]  ? path_lookupat+0x850/0x850
[  359.013944]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  359.015018]  ? lock_acquire+0x197/0x490
[  359.015858]  do_filp_open+0x17e/0x3c0
[  359.016631]  ? may_open_dev+0xf0/0xf0
[  359.017418]  ? simple_attr_release+0x40/0x40
[  359.018325]  ? _raw_spin_unlock+0x1a/0x30
[  359.019169]  ? __alloc_fd+0x2a5/0x620
[  359.019978]  do_sys_openat2+0x16d/0x420
[  359.020792]  ? build_open_flags+0x680/0x680
[  359.021669]  ? __mutex_unlock_slowpath+0xe1/0x600
[  359.022653]  ? wait_for_completion+0x270/0x270
[  359.023594]  __x64_sys_openat+0x13f/0x1f0
[  359.024449]  ? __ia32_compat_sys_open+0x1c0/0x1c0
[  359.025436]  ? ksys_write+0x1a5/0x250
[  359.026223]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  359.027294]  ? syscall_enter_from_user_mode+0x1d/0x50
[  359.028370]  do_syscall_64+0x33/0x40
[  359.029130]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  359.030177] RIP: 0033:0x7fda1182ea04
[  359.030940] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  359.034760] RSP: 002b:00007fda0edf10b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  359.036339] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1182ea04
[  359.037801] RDX: 0000000000000000 RSI: 00007fda118d4f82 RDI: 00000000ffffff9c
[  359.039266] RBP: 00007fda118d4f82 R08: 0000000000000000 R09: 0000000000000000
[  359.040733] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  359.042192] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
00:35:16 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xbe}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:35:16 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:35:16 executing program 5:
utimensat(0xffffffffffffffff, 0x0, 0x0, 0x0)
write$P9_RXATTRCREATE(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$iso9660(&(0x7f000000a040), &(0x7f000000a080)='./file2\x00', 0x0, 0x1, &(0x7f000000a180)=[{&(0x7f000000a0c0)="d6", 0x1, 0x100000000}], 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='gid=', @ANYRESHEX=0x0, @ANYBLOB="2c7b6273ff63746f723d307830303030303030303030303030304f8e2c6d6f64653d3078303030303030303030303030303030302c00dd01b2f84791e88e75dfc3c2787684c4280f0554cf1a801f1e97a6b6f675b1a9c506bc2313b14e8a20a76a4b5a9461e26bfc4a5c3a3c21445c66c4edf17746734b9f560c5fbc7de7e829cb3a01076812ebe0dc32b871d7716cd1b100f1f2836a42762bf25606bef87dcef0680332c5a78a9b2c6169012ff852729205cdfd19e20a2bbb2130832053daf162cc8f69b28ace708e1fadb6ca60737ffca15bd3016e9c7ed2be938d565b3e67426994bb6fd471dac3ed3969bad571c44013e4aba13a6f7e"])

00:35:16 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:35:16 executing program 2:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r2, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:35:16 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(0xffffffffffffffff, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:35:16 executing program 5:
r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
shmat(0x0, &(0x7f0000ff8000/0x2000)=nil, 0x4000)
madvise(&(0x7f0000ff8000/0x3000)=nil, 0x3000, 0x9)
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY(r0, 0x400c6615, &(0x7f0000000000)={0x0, @adiantum, 0x0, @desc4})

[  359.138935] kauditd_printk_skb: 6 callbacks suppressed
[  359.138951] audit: type=1400 audit(1641429316.662:26): avc:  denied  { write } for  pid=5101 comm="syz-executor.5" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1
[  369.958297] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak)
00:35:33 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 17)

[  376.446724] FAULT_INJECTION: forcing a failure.
[  376.446724] name failslab, interval 1, probability 0, space 0, times 0
[  376.449153] CPU: 0 PID: 5118 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  376.450399] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  376.452505] Call Trace:
[  376.452999]  dump_stack+0x107/0x163
[  376.453676]  should_fail.cold+0x5/0xa
[  376.454383]  ? create_object.isra.0+0x3a/0xa20
[  376.455222]  should_failslab+0x5/0x10
[  376.455937]  kmem_cache_alloc+0x5b/0x350
[  376.456704]  create_object.isra.0+0x3a/0xa20
[  376.457517]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[  376.458471]  kmem_cache_alloc+0x159/0x350
[  376.459248]  __d_alloc+0x2a/0x990
[  376.459921]  d_alloc_parallel+0x111/0x1aa0
[  376.460710]  ? __d_lookup+0x3bf/0x710
[  376.461420]  ? lock_downgrade+0x6d0/0x6d0
[  376.462192]  ? find_held_lock+0x2c/0x110
[  376.462954]  ? __d_lookup_rcu+0x6b0/0x6b0
[  376.463726]  ? __d_lookup+0x3e8/0x710
[  376.464450]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  376.465434]  lookup_open.isra.0+0x922/0x1230
[  376.466261]  ? hashlen_string+0xf0/0xf0
[  376.467038]  path_openat+0x961/0x26c0
[  376.467757]  ? path_lookupat+0x850/0x850
[  376.468526]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  376.469504]  ? lock_acquire+0x197/0x490
[  376.470261]  do_filp_open+0x17e/0x3c0
[  376.470974]  ? may_open_dev+0xf0/0xf0
[  376.471703]  ? simple_attr_release+0x40/0x40
[  376.472557]  ? _raw_spin_unlock+0x1a/0x30
[  376.473332]  ? __alloc_fd+0x2a5/0x620
[  376.474057]  do_sys_openat2+0x16d/0x420
[  376.474808]  ? build_open_flags+0x680/0x680
[  376.475614]  ? __mutex_unlock_slowpath+0xe1/0x600
[  376.476528]  ? wait_for_completion+0x270/0x270
[  376.477392]  __x64_sys_openat+0x13f/0x1f0
[  376.478169]  ? __ia32_compat_sys_open+0x1c0/0x1c0
[  376.479071]  ? ksys_write+0x1a5/0x250
[  376.479790]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  376.480795]  ? syscall_enter_from_user_mode+0x1d/0x50
[  376.481762]  do_syscall_64+0x33/0x40
[  376.482468]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  376.483429] RIP: 0033:0x7fda1182ea04
[  376.484138] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  376.487632] RSP: 002b:00007fda0edf10b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  376.489077] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1182ea04
[  376.490431] RDX: 0000000000000000 RSI: 00007fda118d4f82 RDI: 00000000ffffff9c
[  376.491778] RBP: 00007fda118d4f82 R08: 0000000000000000 R09: 0000000000000000
[  376.493153] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  376.494504] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
00:35:33 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:35:33 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(0xffffffffffffffff, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:35:33 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:35:33 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(0xffffffffffffffff, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:35:33 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000d5f4655fd6f4655f0100ffff53ef010001000000d5f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="0200000003000000040000006a000f000300040000000000000000000f00bc0f", 0x20, 0x800}, {&(0x7f0000011600)="ed41000000080000d5f4655fd5f4655fd5f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000040)={[{@dioread_nolock}]})
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000340)={{{@in=@multicast1, @in6=@ipv4={""/10, ""/2, @remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r0=>0x0}}, {{@in6=@mcast1}, 0x0, @in=@empty}}, &(0x7f0000000440)=0xe8)
syz_mount_image$tmpfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x1ed, 0x3, &(0x7f00000002c0)=[{&(0x7f0000000140)="14adfe845bd69345406e07f416f46a0559d9a87db8a85af74f72b2650bfb1ccf80d9c59463a350cc21bb67e4b2945f225d", 0x31, 0x7}, {&(0x7f0000000180)="d87c0d5df81f55a02cafe4187aeb80c72e92938ad3fe6aeef1672e3c7e66a9a5ae92679729531aa869a65e817640f652d7ae3989aa4af4df3c00bb93b6ae1e50dff567e94ceafab772928d1c2093ce5f83853851fc4f920182da8bc6fd733bcb4b6ec7c8d11e4a9fd66d26d43a61e990", 0x70, 0xffff}, {&(0x7f0000000280)="ac3344dc5b42c085f4a1256b749f1f3170047eda9be6a864bdf88bfb5a29e1fa3d553b69", 0x24, 0x3}], 0x1000000, &(0x7f0000000480)={[{@uid={'uid', 0x3d, r0}}, {@huge_within_size}, {@mpol={'mpol', 0x3d, {'bind', '=static', @val={0x3a, [0x39, 0x3a, 0x2d, 0x36, 0x30]}}}}, {@uid={'uid', 0x3d, 0xee00}}, {@mpol={'mpol', 0x3d, {'local', '', @void}}}, {@uid={'uid', 0x3d, 0xffffffffffffffff}}, {@size={'size', 0x3d, [0x25, 0x6b, 0x33]}}, {@huge_always}], [{@subj_user={'subj_user', 0x3d, '#]}'}}, {@rootcontext={'rootcontext', 0x3d, 'unconfined_u'}}, {@dont_hash}]})

00:35:33 executing program 2:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
sendmsg$NL80211_CMD_GET_WOWLAN(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r1, 0x20, 0x70bd29, 0x25dfdbfb, {{}, {@val={0x8, 0x1, 0x55}, @void, @void}}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
r2 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r2, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:35:34 executing program 6:
r0 = syz_mount_image$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f00000000c0)={{0x1, 0x1, 0x18, <r1=>r0, {0x2}}, './file0\x00'})
r2 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000100)='blkio.bfq.io_serviced\x00', 0x0, 0x0)
statx(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x4000, 0x4, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000280)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {<r4=>0xee01, 0xffffffffffffffff}}, './file0\x00'})
recvmsg$unix(0xffffffffffffffff, &(0x7f00000013c0)={0x0, 0x0, &(0x7f0000001340)=[{&(0x7f00000002c0)=""/93, 0x5d}, {&(0x7f0000000340)=""/4096, 0x1000}], 0x2, &(0x7f0000001380)=[@cred={{0x1c, 0x1, 0x2, {0x0, <r5=>0x0}}}], 0x20}, 0x10102)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080), 0x2000, &(0x7f0000001400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',afid=0x0000000000000008,version=9p2000.L,mmap,subj_user=trans=tcp,,dont_measure,dont_hash,uid>', @ANYRESDEC=r3, @ANYBLOB=',audit,uid>', @ANYRESDEC=r4, @ANYBLOB=',fowner>', @ANYRESDEC=r5, @ANYBLOB="2c6d61736b3d5e4d41595f57524954452c61707072616973655f747970653d696d182275c2368c2a1d9f617f8f", @ANYRESDEC=0xee01, @ANYBLOB=',\x00'])
openat$dir(0xffffffffffffff9c, &(0x7f0000001600)='./file0\x00', 0x0, 0x0)
r6 = getegid()
setresgid(r6, r6, 0x0)
syz_mount_image$tmpfs(&(0x7f0000001540), &(0x7f0000001580)='./file0\x00', 0xffff, 0x3, &(0x7f0000001740)=[{&(0x7f0000001640)="95aa1878b4df869652b7590d9fdbbc2f23d632696a7392806502d117ad470924e1d6f5bb8c7187d98b0c608fc0b3ab0be284366cd6b240ab23455969539798d985a52a77e6bb", 0x46, 0x80000001}, {&(0x7f00000016c0)="477275723d40e561e1cf12fb3bee315f4f84ba6d777387312db81de297268d8be9b3a5d40f06953fa3645a834a58e75f13ec11bd99711d337dd4c13347cff58220e46cbf2d8360094f07458e99fbe01d6a2024e4ec55d6b4f973cf6b609b21692c60b92cd2be3b2dcec942", 0x6b, 0x4}, {&(0x7f00000015c0)="135763f0", 0x4, 0x5a241d50}], 0x1323020, &(0x7f00000017c0)={[{@uid={'uid', 0x3d, r4}}, {@huge_advise}, {@size={'size', 0x3d, [0x33, 0x25, 0x39, 0x78, 0x33]}}, {@mode={'mode', 0x3d, 0x8}}, {@huge_never}, {@gid={'gid', 0x3d, r6}}, {@huge_within_size}, {@huge_never}, {@nr_inodes={'nr_inodes', 0x3d, [0x6d]}}, {@huge_within_size}], [{@hash}, {@func={'func', 0x3d, 'KEXEC_KERNEL_CHECK'}}, {@subj_type={'subj_type', 0x3d, 'port'}}, {@hash}, {@smackfsfloor={'smackfsfloor', 0x3d, 'version=9p2000.L'}}]})
mount$9p_tcp(&(0x7f0000001b00), &(0x7f0000001b40)='./file0\x00', &(0x7f0000001b80), 0x0, &(0x7f0000001bc0)={'trans=tcp,', {'port', 0x3d, 0x4e22}, 0x2c, {[{@version_L}]}})

00:35:34 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  376.542551] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  376.548775] 9pnet: p9_fd_create_tcp (5127): problem connecting socket to 127.0.0.1
00:35:34 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  376.609636] EXT4-fs (loop1): mounted filesystem without journal. Opts: dioread_nolock,,errors=continue
[  388.222124] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak)
00:35:52 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 18)

00:35:52 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(0xffffffffffffffff, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:35:52 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:35:52 executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000d5f4655fd6f4655f0100ffff53ef010001000000d5f4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="0200000003000000040000006a000f000300040000000000000000000f00bc0f", 0x20, 0x800}, {&(0x7f0000011600)="ed41000000080000d5f4655fd5f4655fd5f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000040)={[{@dioread_nolock}]})
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000340)={{{@in=@multicast1, @in6=@ipv4={""/10, ""/2, @remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r0=>0x0}}, {{@in6=@mcast1}, 0x0, @in=@empty}}, &(0x7f0000000440)=0xe8)
syz_mount_image$tmpfs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x1ed, 0x3, &(0x7f00000002c0)=[{&(0x7f0000000140)="14adfe845bd69345406e07f416f46a0559d9a87db8a85af74f72b2650bfb1ccf80d9c59463a350cc21bb67e4b2945f225d", 0x31, 0x7}, {&(0x7f0000000180)="d87c0d5df81f55a02cafe4187aeb80c72e92938ad3fe6aeef1672e3c7e66a9a5ae92679729531aa869a65e817640f652d7ae3989aa4af4df3c00bb93b6ae1e50dff567e94ceafab772928d1c2093ce5f83853851fc4f920182da8bc6fd733bcb4b6ec7c8d11e4a9fd66d26d43a61e990", 0x70, 0xffff}, {&(0x7f0000000280)="ac3344dc5b42c085f4a1256b749f1f3170047eda9be6a864bdf88bfb5a29e1fa3d553b69", 0x24, 0x3}], 0x1000000, &(0x7f0000000480)={[{@uid={'uid', 0x3d, r0}}, {@huge_within_size}, {@mpol={'mpol', 0x3d, {'bind', '=static', @val={0x3a, [0x39, 0x3a, 0x2d, 0x36, 0x30]}}}}, {@uid={'uid', 0x3d, 0xee00}}, {@mpol={'mpol', 0x3d, {'local', '', @void}}}, {@uid={'uid', 0x3d, 0xffffffffffffffff}}, {@size={'size', 0x3d, [0x25, 0x6b, 0x33]}}, {@huge_always}], [{@subj_user={'subj_user', 0x3d, '#]}'}}, {@rootcontext={'rootcontext', 0x3d, 'unconfined_u'}}, {@dont_hash}]})

00:35:52 executing program 2:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000480)={0x20, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_TAIL={0x4, 0xe}]]}, 0x20}}, 0x0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = dup2(r2, r2)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r3, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r1, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:35:52 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(0xffffffffffffffff, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:35:52 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:35:52 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  394.898861] FAULT_INJECTION: forcing a failure.
[  394.898861] name failslab, interval 1, probability 0, space 0, times 0
[  394.901284] CPU: 1 PID: 5161 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  394.902646] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  394.904937] Call Trace:
[  394.905472]  dump_stack+0x107/0x163
[  394.906208]  should_fail.cold+0x5/0xa
[  394.906978]  ? proc_alloc_inode+0x18/0x200
[  394.907831]  should_failslab+0x5/0x10
[  394.908602]  kmem_cache_alloc+0x5b/0x350
[  394.909425]  ? find_held_lock+0x2c/0x110
[  394.910245]  ? proc_free_inode+0x20/0x20
[  394.911062]  proc_alloc_inode+0x18/0x200
[  394.911879]  ? proc_free_inode+0x20/0x20
[  394.912715]  alloc_inode+0x63/0x230
[  394.913445]  new_inode+0x23/0x240
[  394.914147]  proc_pid_make_inode+0x26/0x3c0
[  394.915022]  proc_ns_instantiate+0x55/0x100
[  394.915363] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  394.915895]  proc_ns_dir_lookup+0x20c/0x2b0
[  394.919032]  lookup_open.isra.0+0x75f/0x1230
[  394.919931]  ? hashlen_string+0xf0/0xf0
[  394.920766]  path_openat+0x961/0x26c0
[  394.921545]  ? path_lookupat+0x850/0x850
[  394.922355]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  394.923417]  ? lock_acquire+0x197/0x490
[  394.924246]  do_filp_open+0x17e/0x3c0
[  394.925013]  ? may_open_dev+0xf0/0xf0
[  394.925791]  ? simple_attr_release+0x40/0x40
[  394.926686]  ? _raw_spin_unlock+0x1a/0x30
[  394.927515]  ? __alloc_fd+0x2a5/0x620
[  394.928307]  do_sys_openat2+0x16d/0x420
[  394.929110]  ? build_open_flags+0x680/0x680
[  394.929984]  ? __mutex_unlock_slowpath+0xe1/0x600
[  394.930956]  ? wait_for_completion+0x270/0x270
[  394.931882]  __x64_sys_openat+0x13f/0x1f0
[  394.932740]  ? __ia32_compat_sys_open+0x1c0/0x1c0
[  394.933708]  ? ksys_write+0x1a5/0x250
[  394.934480]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  394.935534]  ? syscall_enter_from_user_mode+0x1d/0x50
[  394.936588]  do_syscall_64+0x33/0x40
[  394.937343]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  394.938374] RIP: 0033:0x7fda1182ea04
[  394.939130] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  394.942862] RSP: 002b:00007fda0edf10b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  394.944412] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1182ea04
[  394.945848] RDX: 0000000000000000 RSI: 00007fda118d4f82 RDI: 00000000ffffff9c
[  394.947292] RBP: 00007fda118d4f82 R08: 0000000000000000 R09: 0000000000000000
[  394.948748] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  394.950189] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
00:35:52 executing program 2:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r2 = dup2(r1, r1)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r2, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, r0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:35:52 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(0xffffffffffffffff, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  395.007508] EXT4-fs (loop1): mounted filesystem without journal. Opts: dioread_nolock,,errors=continue
00:35:52 executing program 5:
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:35:52 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:35:52 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  406.229063] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak)
00:36:10 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 19)

00:36:10 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  413.007391] FAULT_INJECTION: forcing a failure.
[  413.007391] name failslab, interval 1, probability 0, space 0, times 0
[  413.009703] CPU: 0 PID: 5190 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  413.010997] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  413.013192] Call Trace:
[  413.013696]  dump_stack+0x107/0x163
[  413.014406]  should_fail.cold+0x5/0xa
[  413.015146]  ? create_object.isra.0+0x3a/0xa20
[  413.016012]  should_failslab+0x5/0x10
[  413.016778]  kmem_cache_alloc+0x5b/0x350
[  413.017558]  create_object.isra.0+0x3a/0xa20
[  413.018426]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[  413.019413]  kmem_cache_alloc+0x159/0x350
[  413.020213]  ? proc_free_inode+0x20/0x20
[  413.021042]  proc_alloc_inode+0x18/0x200
[  413.021823]  ? proc_free_inode+0x20/0x20
[  413.022615]  alloc_inode+0x63/0x230
[  413.023331]  new_inode+0x23/0x240
[  413.024025]  proc_pid_make_inode+0x26/0x3c0
[  413.024895]  proc_ns_instantiate+0x55/0x100
[  413.025721]  proc_ns_dir_lookup+0x20c/0x2b0
[  413.026555]  lookup_open.isra.0+0x75f/0x1230
[  413.027415]  ? hashlen_string+0xf0/0xf0
[  413.028222]  path_openat+0x961/0x26c0
[  413.028983]  ? path_lookupat+0x850/0x850
[  413.029778]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  413.030797]  ? lock_acquire+0x197/0x490
[  413.031588]  do_filp_open+0x17e/0x3c0
[  413.032318]  ? may_open_dev+0xf0/0xf0
[  413.033103]  ? simple_attr_release+0x40/0x40
[  413.033970]  ? _raw_spin_unlock+0x1a/0x30
[  413.034784]  ? __alloc_fd+0x2a5/0x620
[  413.035547]  do_sys_openat2+0x16d/0x420
[  413.036325]  ? build_open_flags+0x680/0x680
[  413.037176]  ? __mutex_unlock_slowpath+0xe1/0x600
[  413.038113]  ? wait_for_completion+0x270/0x270
[  413.039016]  __x64_sys_openat+0x13f/0x1f0
[  413.039829]  ? __ia32_compat_sys_open+0x1c0/0x1c0
[  413.040787]  ? ksys_write+0x1a5/0x250
[  413.041536]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  413.042552]  ? syscall_enter_from_user_mode+0x1d/0x50
[  413.043556]  do_syscall_64+0x33/0x40
[  413.044279]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  413.045283] RIP: 0033:0x7fda1182ea04
[  413.046019] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  413.049717] RSP: 002b:00007fda0edf10b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  413.051233] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1182ea04
[  413.052638] RDX: 0000000000000000 RSI: 00007fda118d4f82 RDI: 00000000ffffff9c
[  413.054054] RBP: 00007fda118d4f82 R08: 0000000000000000 R09: 0000000000000000
[  413.055458] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  413.056888] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
00:36:10 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:36:10 executing program 5:
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:36:10 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:36:10 executing program 2:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:36:10 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:36:10 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:36:10 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:36:10 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:36:10 executing program 2:
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:36:10 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x2c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:36:10 executing program 5:
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:36:10 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:36:10 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:36:10 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:36:23 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 20)

00:36:23 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:36:23 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:36:23 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:36:23 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:36:23 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:36:23 executing program 5:
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r0, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:36:23 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  425.798932] FAULT_INJECTION: forcing a failure.
[  425.798932] name failslab, interval 1, probability 0, space 0, times 0
[  425.801528] CPU: 1 PID: 5231 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  425.803030] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  425.805548] Call Trace:
[  425.806129]  dump_stack+0x107/0x163
[  425.806925]  should_fail.cold+0x5/0xa
[  425.807759]  ? security_inode_alloc+0x34/0x160
[  425.808766]  should_failslab+0x5/0x10
[  425.809597]  kmem_cache_alloc+0x5b/0x350
[  425.810487]  security_inode_alloc+0x34/0x160
[  425.811448]  inode_init_always+0x507/0xc10
[  425.812375]  alloc_inode+0x84/0x230
[  425.813189]  new_inode+0x23/0x240
[  425.813952]  proc_pid_make_inode+0x26/0x3c0
[  425.814906]  proc_ns_instantiate+0x55/0x100
[  425.815853]  proc_ns_dir_lookup+0x20c/0x2b0
[  425.816811]  lookup_open.isra.0+0x75f/0x1230
00:36:23 executing program 5:
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r0, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  425.817853]  ? hashlen_string+0xf0/0xf0
[  425.818980]  path_openat+0x961/0x26c0
[  425.819827]  ? path_lookupat+0x850/0x850
[  425.820730]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  425.821867]  ? lock_acquire+0x197/0x490
[  425.822743]  do_filp_open+0x17e/0x3c0
[  425.823567]  ? may_open_dev+0xf0/0xf0
[  425.824412]  ? simple_attr_release+0x40/0x40
[  425.825376]  ? _raw_spin_unlock+0x1a/0x30
[  425.826263]  ? __alloc_fd+0x2a5/0x620
[  425.827093]  do_sys_openat2+0x16d/0x420
[  425.827948]  ? build_open_flags+0x680/0x680
[  425.828884]  ? __mutex_unlock_slowpath+0xe1/0x600
[  425.829925]  ? wait_for_completion+0x270/0x270
[  425.830914]  __x64_sys_openat+0x13f/0x1f0
[  425.831806]  ? __ia32_compat_sys_open+0x1c0/0x1c0
[  425.832863]  ? ksys_write+0x1a5/0x250
[  425.833688]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  425.834811]  ? syscall_enter_from_user_mode+0x1d/0x50
[  425.835918]  do_syscall_64+0x33/0x40
[  425.836726]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  425.837828] RIP: 0033:0x7fda1182ea04
[  425.838634] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  425.842596] RSP: 002b:00007fda0edf10b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  425.844224] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1182ea04
[  425.845744] RDX: 0000000000000000 RSI: 00007fda118d4f82 RDI: 00000000ffffff9c
[  425.847252] RBP: 00007fda118d4f82 R08: 0000000000000000 R09: 0000000000000000
[  425.848773] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  425.850279] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
00:36:23 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:36:23 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0)

00:36:23 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:36:23 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:36:23 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 21)

00:36:23 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(0xffffffffffffffff, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:36:23 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:36:23 executing program 5:
r0 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r0, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  425.971121] FAULT_INJECTION: forcing a failure.
[  425.971121] name failslab, interval 1, probability 0, space 0, times 0
[  425.973280] CPU: 0 PID: 5250 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  425.974359] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  425.976541] Call Trace:
[  425.976985]  dump_stack+0x107/0x163
[  425.977689]  should_fail.cold+0x5/0xa
[  425.978305]  ? create_object.isra.0+0x3a/0xa20
[  425.979182]  should_failslab+0x5/0x10
[  425.979791]  kmem_cache_alloc+0x5b/0x350
[  425.980581]  create_object.isra.0+0x3a/0xa20
[  425.981284]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[  425.982254]  kmem_cache_alloc+0x159/0x350
[  425.982917]  security_inode_alloc+0x34/0x160
[  425.983689]  inode_init_always+0x507/0xc10
[  425.984362]  alloc_inode+0x84/0x230
[  425.984955]  new_inode+0x23/0x240
[  425.985521]  proc_pid_make_inode+0x26/0x3c0
[  425.986225]  proc_ns_instantiate+0x55/0x100
[  425.986934]  proc_ns_dir_lookup+0x20c/0x2b0
[  425.987643]  lookup_open.isra.0+0x75f/0x1230
[  425.988363]  ? hashlen_string+0xf0/0xf0
[  425.989054]  path_openat+0x961/0x26c0
[  425.989672]  ? path_lookupat+0x850/0x850
[  425.990333]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  425.991160]  ? lock_acquire+0x197/0x490
[  425.991791]  do_filp_open+0x17e/0x3c0
[  425.992375]  ? may_open_dev+0xf0/0xf0
[  425.993000]  ? simple_attr_release+0x40/0x40
[  425.993689]  ? _raw_spin_unlock+0x1a/0x30
[  425.994333]  ? __alloc_fd+0x2a5/0x620
[  425.994938]  do_sys_openat2+0x16d/0x420
[  425.995553]  ? build_open_flags+0x680/0x680
[  425.996212]  ? __mutex_unlock_slowpath+0xe1/0x600
[  425.996966]  ? wait_for_completion+0x270/0x270
[  425.997668]  __x64_sys_openat+0x13f/0x1f0
[  425.998306]  ? __ia32_compat_sys_open+0x1c0/0x1c0
[  425.999036]  ? ksys_write+0x1a5/0x250
[  425.999627]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  426.000421]  ? syscall_enter_from_user_mode+0x1d/0x50
[  426.001233]  do_syscall_64+0x33/0x40
[  426.001803]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  426.002593] RIP: 0033:0x7fda1182ea04
[  426.003168] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  426.006006] RSP: 002b:00007fda0edf10b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  426.007174] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1182ea04
[  426.008269] RDX: 0000000000000000 RSI: 00007fda118d4f82 RDI: 00000000ffffff9c
[  426.009381] RBP: 00007fda118d4f82 R08: 0000000000000000 R09: 0000000000000000
[  426.010476] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  426.011566] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
00:36:34 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 22)

00:36:34 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:36:34 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(0xffffffffffffffff, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:36:34 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, 0x0, 0x10000800)

00:36:34 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:36:34 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(0xffffffffffffffff, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:36:34 executing program 3:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:36:34 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  436.966229] FAULT_INJECTION: forcing a failure.
[  436.966229] name failslab, interval 1, probability 0, space 0, times 0
[  436.968177] CPU: 1 PID: 5275 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  436.969239] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  436.971080] Call Trace:
[  436.971523]  dump_stack+0x107/0x163
[  436.972115]  should_fail.cold+0x5/0xa
[  436.972739]  ? alloc_inode+0x169/0x230
[  436.973388]  should_failslab+0x5/0x10
[  436.974011]  kmem_cache_alloc+0x5b/0x350
[  436.974668]  alloc_inode+0x169/0x230
[  436.975272]  new_inode_pseudo+0x14/0xe0
[  436.975912]  __ns_get_path+0x120/0x780
[  436.976530]  ns_get_path+0x3d/0xa0
[  436.977132]  proc_ns_get_link+0x10a/0x210
[  436.977784]  ? proc_ns_readlink+0x280/0x280
[  436.978467]  ? proc_ns_readlink+0x280/0x280
[  436.979147]  step_into+0x15fc/0x1bb0
[  436.979744]  ? path_init+0x17d0/0x17d0
[  436.980356]  ? _down_write_nest_lock+0x150/0x150
[  436.981119]  path_openat+0x491/0x26c0
[  436.981727]  ? path_lookupat+0x850/0x850
[  436.982377]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  436.983199]  ? lock_acquire+0x197/0x490
[  436.983851]  do_filp_open+0x17e/0x3c0
[  436.984447]  ? may_open_dev+0xf0/0xf0
[  436.985081]  ? _raw_spin_unlock+0x1a/0x30
[  436.985727]  ? __alloc_fd+0x2a5/0x620
[  436.986336]  do_sys_openat2+0x16d/0x420
[  436.986982]  ? build_open_flags+0x680/0x680
[  436.987659]  ? __mutex_unlock_slowpath+0xe1/0x600
[  436.988420]  ? wait_for_completion+0x270/0x270
[  436.989167]  __x64_sys_openat+0x13f/0x1f0
[  436.989820]  ? __ia32_compat_sys_open+0x1c0/0x1c0
[  436.990570]  ? ksys_write+0x1a5/0x250
[  436.991197]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  436.992021]  ? syscall_enter_from_user_mode+0x1d/0x50
[  436.992836]  do_syscall_64+0x33/0x40
[  436.993461]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  436.994261] RIP: 0033:0x7fda1182ea04
[  436.994846] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  436.997855] RSP: 002b:00007fda0edf10b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  436.999054] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1182ea04
[  437.000183] RDX: 0000000000000000 RSI: 00007fda118d4f82 RDI: 00000000ffffff9c
[  437.001314] RBP: 00007fda118d4f82 R08: 0000000000000000 R09: 0000000000000000
[  437.002440] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  437.003558] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
00:36:34 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(0xffffffffffffffff, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:36:34 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:36:34 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:36:34 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(0xffffffffffffffff, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:36:34 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, 0x0, 0x10000800)

00:36:34 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:36:34 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0) (fail_nth: 1)

00:36:34 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  437.163168] FAULT_INJECTION: forcing a failure.
[  437.163168] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  437.165189] CPU: 1 PID: 5296 Comm: syz-executor.3 Not tainted 5.10.90 #1
[  437.166280] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  437.168148] Call Trace:
[  437.168590]  dump_stack+0x107/0x163
[  437.169210]  should_fail.cold+0x5/0xa
[  437.169838]  _copy_from_user+0x2e/0x1b0
[  437.170483]  __copy_msghdr_from_user+0x91/0x4b0
[  437.171214]  ? __ia32_sys_shutdown+0x70/0x70
[  437.171912]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  437.172783]  ? __lock_acquire+0x1653/0x5b00
[  437.173472]  ? __lock_acquire+0xbb1/0x5b00
[  437.174174]  sendmsg_copy_msghdr+0xa1/0x160
[  437.174856]  ? __ia32_sys_recvmmsg+0x260/0x260
[  437.175603]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  437.176429]  ? lock_downgrade+0x6d0/0x6d0
[  437.177108]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  437.177939]  ___sys_sendmsg+0xc6/0x170
[  437.178551]  ? sendmsg_copy_msghdr+0x160/0x160
[  437.179276]  ? __fget_files+0x2db/0x500
[  437.179903]  ? lock_downgrade+0x6d0/0x6d0
[  437.180569]  ? __fget_files+0x304/0x500
[  437.181225]  ? __fget_light+0xea/0x280
[  437.181841]  __sys_sendmsg+0xe5/0x1b0
[  437.182472]  ? __sys_sendmsg_sock+0xb0/0xb0
[  437.183152]  ? rcu_read_lock_any_held+0x69/0x90
[  437.183916]  ? fput_many+0x2f/0x1a0
[  437.184500]  ? ksys_write+0x1a5/0x250
[  437.185115]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  437.185952]  ? syscall_enter_from_user_mode+0x1d/0x50
[  437.186764]  ? trace_hardirqs_on+0x5b/0x180
[  437.187445]  do_syscall_64+0x33/0x40
[  437.188033]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  437.188843] RIP: 0033:0x7f182e90db19
[  437.189454] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  437.192365] RSP: 002b:00007f182be83188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  437.193576] RAX: ffffffffffffffda RBX: 00007f182ea20f60 RCX: 00007f182e90db19
[  437.194705] RDX: 0000000000000000 RSI: 0000000020000f00 RDI: 0000000000000003
[  437.195830] RBP: 00007f182be831d0 R08: 0000000000000000 R09: 0000000000000000
[  437.196973] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  437.198100] R13: 00007fff50c54eff R14: 00007f182be83300 R15: 0000000000022000
00:36:46 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0) (fail_nth: 2)

00:36:46 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(0xffffffffffffffff, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:36:46 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:36:46 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, 0x0, 0x10000800)

00:36:46 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:36:46 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:36:46 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 23)

00:36:46 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, 0x0, 0x10000800)

[  448.537044] FAULT_INJECTION: forcing a failure.
[  448.537044] name failslab, interval 1, probability 0, space 0, times 0
[  448.539675] CPU: 0 PID: 5315 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  448.541345] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  448.544103] Call Trace:
[  448.544645]  dump_stack+0x107/0x163
[  448.545552]  should_fail.cold+0x5/0xa
[  448.546479]  ? create_object.isra.0+0x3a/0xa20
[  448.547593]  should_failslab+0x5/0x10
[  448.548395]  kmem_cache_alloc+0x5b/0x350
[  448.549295]  create_object.isra.0+0x3a/0xa20
[  448.550225]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[  448.551298]  kmem_cache_alloc+0x159/0x350
[  448.552186]  alloc_inode+0x169/0x230
[  448.552979]  new_inode_pseudo+0x14/0xe0
[  448.553834]  __ns_get_path+0x120/0x780
[  448.554673]  ns_get_path+0x3d/0xa0
[  448.555518]  proc_ns_get_link+0x10a/0x210
[  448.556346]  ? proc_ns_readlink+0x280/0x280
[  448.557419]  ? proc_ns_readlink+0x280/0x280
[  448.558277]  step_into+0x15fc/0x1bb0
[  448.559190]  ? path_init+0x17d0/0x17d0
[  448.559962]  ? _down_write_nest_lock+0x150/0x150
[  448.561141]  path_openat+0x491/0x26c0
[  448.561918]  ? path_lookupat+0x850/0x850
[  448.562904]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  448.563947]  ? lock_acquire+0x197/0x490
[  448.564921]  do_filp_open+0x17e/0x3c0
[  448.565705]  ? may_open_dev+0xf0/0xf0
[  448.566653]  ? _raw_spin_unlock+0x1a/0x30
[  448.567474]  ? __alloc_fd+0x2a5/0x620
[  448.568402]  do_sys_openat2+0x16d/0x420
[  448.569217]  ? build_open_flags+0x680/0x680
[  448.570262]  ? __mutex_unlock_slowpath+0xe1/0x600
[  448.571228]  ? wait_for_completion+0x270/0x270
[  448.572342]  __x64_sys_openat+0x13f/0x1f0
[  448.573181]  ? __ia32_compat_sys_open+0x1c0/0x1c0
[  448.574349]  ? ksys_write+0x1a5/0x250
[  448.575112]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  448.576394]  ? syscall_enter_from_user_mode+0x1d/0x50
[  448.577463]  do_syscall_64+0x33/0x40
[  448.578372]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  448.579392] RIP: 0033:0x7fda1182ea04
[  448.580299] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  448.583979] RSP: 002b:00007fda0edf10b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  448.585850] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1182ea04
[  448.587583] RDX: 0000000000000000 RSI: 00007fda118d4f82 RDI: 00000000ffffff9c
[  448.589322] RBP: 00007fda118d4f82 R08: 0000000000000000 R09: 0000000000000000
[  448.591057] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  448.592788] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
[  448.593824] FAULT_INJECTION: forcing a failure.
[  448.593824] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  448.597307] CPU: 1 PID: 5309 Comm: syz-executor.3 Not tainted 5.10.90 #1
[  448.598946] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  448.601704] Call Trace:
[  448.602332]  dump_stack+0x107/0x163
[  448.603135]  should_fail.cold+0x5/0xa
[  448.603973]  _copy_from_user+0x2e/0x1b0
[  448.604780]  iovec_from_user+0x139/0x3f0
[  448.605684]  __import_iovec+0x67/0x590
[  448.606469]  ? __ia32_sys_shutdown+0x70/0x70
[  448.607534]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  448.608607]  import_iovec+0x83/0xb0
[  448.609505]  sendmsg_copy_msghdr+0x12d/0x160
[  448.610395]  ? __ia32_sys_recvmmsg+0x260/0x260
[  448.611507]  ? lock_downgrade+0x6d0/0x6d0
[  448.612352]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  448.613637]  ___sys_sendmsg+0xc6/0x170
[  448.614426]  ? sendmsg_copy_msghdr+0x160/0x160
[  448.615540]  ? __fget_files+0x2db/0x500
[  448.616346]  ? lock_downgrade+0x6d0/0x6d0
[  448.617386]  ? __fget_files+0x304/0x500
[  448.618210]  ? __fget_light+0xea/0x280
[  448.619160]  __sys_sendmsg+0xe5/0x1b0
[  448.619934]  ? __sys_sendmsg_sock+0xb0/0xb0
[  448.620975]  ? rcu_read_lock_any_held+0x69/0x90
[  448.621929]  ? fput_many+0x2f/0x1a0
[  448.622819]  ? ksys_write+0x1a5/0x250
[  448.623603]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  448.624870]  ? syscall_enter_from_user_mode+0x1d/0x50
[  448.625936]  ? trace_hardirqs_on+0x5b/0x180
[  448.626988]  do_syscall_64+0x33/0x40
[  448.627748]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  448.628995] RIP: 0033:0x7f182e90db19
[  448.629766] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  448.633583] RSP: 002b:00007f182be83188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  448.635093] RAX: ffffffffffffffda RBX: 00007f182ea20f60 RCX: 00007f182e90db19
[  448.636524] RDX: 0000000000000000 RSI: 0000000020000f00 RDI: 0000000000000003
[  448.637950] RBP: 00007f182be831d0 R08: 0000000000000000 R09: 0000000000000000
[  448.639407] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  448.640863] R13: 00007fff50c54eff R14: 00007f182be83300 R15: 0000000000022000
00:36:46 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:36:46 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:36:46 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:36:46 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:36:46 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, 0x0, 0x10000800)

00:36:46 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:36:46 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0) (fail_nth: 3)

[  448.778276] FAULT_INJECTION: forcing a failure.
[  448.778276] name failslab, interval 1, probability 0, space 0, times 0
[  448.781340] CPU: 0 PID: 5333 Comm: syz-executor.3 Not tainted 5.10.90 #1
[  448.783064] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  448.785990] Call Trace:
[  448.786683]  dump_stack+0x107/0x163
[  448.787563]  should_fail.cold+0x5/0xa
[  448.788660]  ? __alloc_skb+0x6d/0x620
[  448.789609]  should_failslab+0x5/0x10
[  448.790703]  kmem_cache_alloc_node+0x55/0x370
[  448.791779]  __alloc_skb+0x6d/0x620
[  448.792837]  netlink_sendmsg+0x98a/0xdf0
[  448.793829]  ? netlink_unicast+0x7e0/0x7e0
[  448.795056]  ? netlink_unicast+0x7e0/0x7e0
[  448.796054]  sock_sendmsg+0x150/0x190
[  448.797154]  ____sys_sendmsg+0x709/0x870
[  448.798125]  ? kernel_sendmsg+0x50/0x50
[  448.799252]  ? __ia32_sys_recvmmsg+0x260/0x260
[  448.800335]  ? lock_downgrade+0x6d0/0x6d0
[  448.801542]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  448.802776]  ___sys_sendmsg+0xf3/0x170
[  448.803881]  ? sendmsg_copy_msghdr+0x160/0x160
[  448.804970]  ? lock_downgrade+0x6d0/0x6d0
[  448.806101]  ? __fget_files+0x304/0x500
[  448.807104]  ? __fget_light+0xea/0x280
[  448.808096]  __sys_sendmsg+0xe5/0x1b0
[  448.809064]  ? __sys_sendmsg_sock+0xb0/0xb0
[  448.810156]  ? rcu_read_lock_any_held+0x69/0x90
[  448.811349]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  448.812663]  ? syscall_enter_from_user_mode+0x1d/0x50
[  448.813972]  ? trace_hardirqs_on+0x5b/0x180
[  448.815057]  do_syscall_64+0x33/0x40
[  448.815999]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  448.817307] RIP: 0033:0x7f182e90db19
[  448.818262] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  448.822900] RSP: 002b:00007f182be83188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  448.824809] RAX: ffffffffffffffda RBX: 00007f182ea20f60 RCX: 00007f182e90db19
[  448.826625] RDX: 0000000000000000 RSI: 0000000020000f00 RDI: 0000000000000003
[  448.828415] RBP: 00007f182be831d0 R08: 0000000000000000 R09: 0000000000000000
[  448.830222] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  448.831988] R13: 00007fff50c54eff R14: 00007f182be83300 R15: 0000000000022000
[  460.260374] FAULT_INJECTION: forcing a failure.
[  460.260374] name failslab, interval 1, probability 0, space 0, times 0
[  460.263152] CPU: 1 PID: 5344 Comm: syz-executor.3 Not tainted 5.10.90 #1
[  460.264566] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  460.266964] Call Trace:
[  460.267518]  dump_stack+0x107/0x163
[  460.268266]  should_fail.cold+0x5/0xa
[  460.269054]  ? create_object.isra.0+0x3a/0xa20
[  460.270005]  should_failslab+0x5/0x10
[  460.270794]  kmem_cache_alloc+0x5b/0x350
[  460.271646]  create_object.isra.0+0x3a/0xa20
[  460.272558]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[  460.273648]  kmem_cache_alloc_node+0x169/0x370
[  460.274598]  __alloc_skb+0x6d/0x620
[  460.275343]  netlink_sendmsg+0x98a/0xdf0
[  460.276213]  ? netlink_unicast+0x7e0/0x7e0
[  460.277098]  ? netlink_unicast+0x7e0/0x7e0
[  460.277983]  sock_sendmsg+0x150/0x190
00:36:57 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0) (fail_nth: 4)

00:36:57 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:36:57 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, 0x0, 0x10000800)

00:36:57 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 24)

00:36:57 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:36:57 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:36:57 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:36:57 executing program 6:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(0xffffffffffffffff, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, r0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  460.278767]  ____sys_sendmsg+0x709/0x870
[  460.279897]  ? kernel_sendmsg+0x50/0x50
[  460.280703]  ? __ia32_sys_recvmmsg+0x260/0x260
[  460.281677]  ? lock_downgrade+0x6d0/0x6d0
[  460.282533]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  460.283625]  ___sys_sendmsg+0xf3/0x170
[  460.284429]  ? sendmsg_copy_msghdr+0x160/0x160
[  460.284870] FAULT_INJECTION: forcing a failure.
[  460.284870] name failslab, interval 1, probability 0, space 0, times 0
[  460.285378]  ? lock_downgrade+0x6d0/0x6d0
[  460.288485]  ? __fget_files+0x304/0x500
[  460.289301]  ? __fget_light+0xea/0x280
[  460.290097]  __sys_sendmsg+0xe5/0x1b0
[  460.290865]  ? __sys_sendmsg_sock+0xb0/0xb0
[  460.291745]  ? rcu_read_lock_any_held+0x69/0x90
[  460.292708]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  460.293790]  ? syscall_enter_from_user_mode+0x1d/0x50
[  460.294828]  ? trace_hardirqs_on+0x5b/0x180
[  460.295706]  do_syscall_64+0x33/0x40
[  460.296454]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  460.297501] RIP: 0033:0x7f182e90db19
[  460.298266] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  460.302057] RSP: 002b:00007f182be83188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  460.303614] RAX: ffffffffffffffda RBX: 00007f182ea20f60 RCX: 00007f182e90db19
[  460.305050] RDX: 0000000000000000 RSI: 0000000020000f00 RDI: 0000000000000003
[  460.306525] RBP: 00007f182be831d0 R08: 0000000000000000 R09: 0000000000000000
[  460.307982] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  460.309441] R13: 00007fff50c54eff R14: 00007f182be83300 R15: 0000000000022000
[  460.310926] CPU: 0 PID: 5353 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  460.312249] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  460.314444] Call Trace:
[  460.314958]  dump_stack+0x107/0x163
[  460.315738]  should_fail.cold+0x5/0xa
[  460.316517]  ? security_inode_alloc+0x34/0x160
[  460.317483]  should_failslab+0x5/0x10
[  460.318266]  kmem_cache_alloc+0x5b/0x350
[  460.319110]  security_inode_alloc+0x34/0x160
[  460.319976]  inode_init_always+0x507/0xc10
[  460.320846]  alloc_inode+0x84/0x230
[  460.321598]  new_inode_pseudo+0x14/0xe0
[  460.322401]  __ns_get_path+0x120/0x780
[  460.323176]  ns_get_path+0x3d/0xa0
[  460.323876]  proc_ns_get_link+0x10a/0x210
[  460.324827]  ? proc_ns_readlink+0x280/0x280
[  460.325748]  ? proc_ns_readlink+0x280/0x280
[  460.326664]  step_into+0x15fc/0x1bb0
[  460.327441]  ? path_init+0x17d0/0x17d0
[  460.328228]  ? _down_write_nest_lock+0x150/0x150
[  460.329226]  path_openat+0x491/0x26c0
[  460.330043]  ? path_lookupat+0x850/0x850
[  460.330893]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  460.331924]  ? lock_acquire+0x197/0x490
[  460.332810]  do_filp_open+0x17e/0x3c0
[  460.333652]  ? may_open_dev+0xf0/0xf0
[  460.334398]  ? _raw_spin_unlock+0x1a/0x30
[  460.335200]  ? __alloc_fd+0x2a5/0x620
[  460.335963]  do_sys_openat2+0x16d/0x420
[  460.336749]  ? build_open_flags+0x680/0x680
[  460.337625]  ? __mutex_unlock_slowpath+0xe1/0x600
[  460.338609]  ? wait_for_completion+0x270/0x270
[  460.339550]  __x64_sys_openat+0x13f/0x1f0
[  460.340532]  ? __ia32_compat_sys_open+0x1c0/0x1c0
[  460.341795]  ? ksys_write+0x1a5/0x250
[  460.342781]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  460.344098]  ? syscall_enter_from_user_mode+0x1d/0x50
[  460.345375]  do_syscall_64+0x33/0x40
[  460.346134]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  460.347128] RIP: 0033:0x7fda1182ea04
[  460.347877] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  460.351455] RSP: 002b:00007fda0edf10b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  460.352930] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1182ea04
[  460.354368] RDX: 0000000000000000 RSI: 00007fda118d4f82 RDI: 00000000ffffff9c
[  460.355741] RBP: 00007fda118d4f82 R08: 0000000000000000 R09: 0000000000000000
[  460.357107] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  460.358486] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
00:36:57 executing program 6:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(0xffffffffffffffff, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, r0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:36:57 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:36:57 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:36:57 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:36:57 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:36:57 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:37:11 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:37:11 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 25)

00:37:11 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:37:11 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0) (fail_nth: 5)

00:37:11 executing program 6:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(0xffffffffffffffff, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, r0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  473.749506] FAULT_INJECTION: forcing a failure.
[  473.749506] name failslab, interval 1, probability 0, space 0, times 0
[  473.751051] CPU: 0 PID: 5380 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  473.751944] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  473.753562] Call Trace:
[  473.753931]  dump_stack+0x107/0x163
[  473.754421]  should_fail.cold+0x5/0xa
[  473.754929]  ? create_object.isra.0+0x3a/0xa20
[  473.755559]  should_failslab+0x5/0x10
[  473.756090]  kmem_cache_alloc+0x5b/0x350
[  473.756658]  ? find_held_lock+0x2c/0x110
[  473.757226]  create_object.isra.0+0x3a/0xa20
[  473.757840]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[  473.758519]  kmem_cache_alloc+0x159/0x350
[  473.759071]  security_inode_alloc+0x34/0x160
[  473.759656]  inode_init_always+0x507/0xc10
[  473.760219]  alloc_inode+0x84/0x230
[  473.760704]  new_inode_pseudo+0x14/0xe0
00:37:11 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  473.761235]  __ns_get_path+0x120/0x780
[  473.761862]  ns_get_path+0x3d/0xa0
00:37:11 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  473.762376]  proc_ns_get_link+0x10a/0x210
[  473.762987]  ? proc_ns_readlink+0x280/0x280
[  473.763573]  ? proc_ns_readlink+0x280/0x280
[  473.764148]  step_into+0x15fc/0x1bb0
[  473.764651]  ? path_init+0x17d0/0x17d0
[  473.765160]  ? _down_write_nest_lock+0x150/0x150
[  473.765824]  path_openat+0x491/0x26c0
[  473.766337]  ? path_lookupat+0x850/0x850
[  473.766882]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  473.767579]  do_filp_open+0x17e/0x3c0
[  473.768103]  ? may_open_dev+0xf0/0xf0
[  473.768627]  ? _raw_spin_unlock+0x1a/0x30
[  473.769176]  ? __alloc_fd+0x2a5/0x620
[  473.769700]  do_sys_openat2+0x16d/0x420
[  473.770234]  ? build_open_flags+0x680/0x680
[  473.770804]  ? __mutex_unlock_slowpath+0xe1/0x600
[  473.771453]  ? wait_for_completion+0x270/0x270
[  473.772057]  __x64_sys_openat+0x13f/0x1f0
[  473.772617]  ? __ia32_compat_sys_open+0x1c0/0x1c0
[  473.773260]  ? ksys_write+0x1a5/0x250
[  473.773794]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  473.774491]  ? syscall_enter_from_user_mode+0x1d/0x50
[  473.775188]  do_syscall_64+0x33/0x40
[  473.775685]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  473.776366] RIP: 0033:0x7fda1182ea04
[  473.776863] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  473.779322] RSP: 002b:00007fda0edf10b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  473.780341] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1182ea04
[  473.781291] RDX: 0000000000000000 RSI: 00007fda118d4f82 RDI: 00000000ffffff9c
[  473.782262] RBP: 00007fda118d4f82 R08: 0000000000000000 R09: 0000000000000000
[  473.783229] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  473.784209] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
00:37:11 executing program 1:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(0xffffffffffffffff, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  473.804277] FAULT_INJECTION: forcing a failure.
[  473.804277] name failslab, interval 1, probability 0, space 0, times 0
[  473.805932] CPU: 0 PID: 5382 Comm: syz-executor.3 Not tainted 5.10.90 #1
[  473.806877] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  473.808434] Call Trace:
[  473.808817]  dump_stack+0x107/0x163
[  473.809334]  should_fail.cold+0x5/0xa
[  473.809908]  should_failslab+0x5/0x10
[  473.810432]  __kmalloc_node_track_caller+0x74/0x3f0
[  473.811117]  ? netlink_sendmsg+0x98a/0xdf0
[  473.811688]  __alloc_skb+0xb1/0x620
[  473.812192]  netlink_sendmsg+0x98a/0xdf0
[  473.812744]  ? netlink_unicast+0x7e0/0x7e0
[  473.813325]  ? netlink_unicast+0x7e0/0x7e0
[  473.813904]  sock_sendmsg+0x150/0x190
[  473.814426]  ____sys_sendmsg+0x709/0x870
[  473.814976]  ? kernel_sendmsg+0x50/0x50
[  473.815516]  ? __ia32_sys_recvmmsg+0x260/0x260
[  473.816145]  ? lock_downgrade+0x6d0/0x6d0
[  473.816710]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  473.817426]  ___sys_sendmsg+0xf3/0x170
[  473.817970]  ? sendmsg_copy_msghdr+0x160/0x160
[  473.818589]  ? lock_downgrade+0x6d0/0x6d0
[  473.819157]  ? __fget_files+0x304/0x500
[  473.819705]  ? __fget_light+0xea/0x280
[  473.820231]  __sys_sendmsg+0xe5/0x1b0
[  473.820747]  ? __sys_sendmsg_sock+0xb0/0xb0
[  473.821325]  ? rcu_read_lock_any_held+0x69/0x90
[  473.821988]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  473.822709]  ? syscall_enter_from_user_mode+0x1d/0x50
[  473.823405]  ? trace_hardirqs_on+0x5b/0x180
[  473.823990]  do_syscall_64+0x33/0x40
[  473.824495]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  473.825188] RIP: 0033:0x7f182e90db19
[  473.825705] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  473.828172] RSP: 002b:00007f182be83188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  473.829208] RAX: ffffffffffffffda RBX: 00007f182ea20f60 RCX: 00007f182e90db19
[  473.830190] RDX: 0000000000000000 RSI: 0000000020000f00 RDI: 0000000000000003
[  473.831155] RBP: 00007f182be831d0 R08: 0000000000000000 R09: 0000000000000000
[  473.832140] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  473.833117] R13: 00007fff50c54eff R14: 00007f182be83300 R15: 0000000000022000
00:37:11 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:37:11 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:37:11 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 26)

00:37:11 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:37:11 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, 0x0, 0x10000800)

[  473.922676] FAULT_INJECTION: forcing a failure.
[  473.922676] name failslab, interval 1, probability 0, space 0, times 0
[  473.924451] CPU: 0 PID: 5394 Comm: syz-executor.7 Not tainted 5.10.90 #1
00:37:11 executing program 1:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(0xffffffffffffffff, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:37:11 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:37:11 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  473.925371] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  473.927082] Call Trace:
[  473.927480]  dump_stack+0x107/0x163
[  473.927999]  should_fail.cold+0x5/0xa
[  473.928505]  ? __d_alloc+0x2a/0x990
[  473.929028]  should_failslab+0x5/0x10
[  473.929541]  kmem_cache_alloc+0x5b/0x350
[  473.930121]  __d_alloc+0x2a/0x990
[  473.930579]  __ns_get_path+0x300/0x780
[  473.931138]  ns_get_path+0x3d/0xa0
[  473.931624]  proc_ns_get_link+0x10a/0x210
[  473.932222]  ? proc_ns_readlink+0x280/0x280
[  473.932839]  ? proc_ns_readlink+0x280/0x280
[  473.933473]  step_into+0x15fc/0x1bb0
[  473.933970]  ? path_init+0x17d0/0x17d0
[  473.934494]  ? _down_write_nest_lock+0x150/0x150
[  473.935136]  path_openat+0x491/0x26c0
[  473.935667]  ? path_lookupat+0x850/0x850
[  473.936212]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  473.936906]  ? lock_acquire+0x197/0x490
[  473.937446]  do_filp_open+0x17e/0x3c0
[  473.938004]  ? may_open_dev+0xf0/0xf0
[  473.938524]  ? _raw_spin_unlock+0x1a/0x30
[  473.939072]  ? __alloc_fd+0x2a5/0x620
[  473.939606]  do_sys_openat2+0x16d/0x420
[  473.940139]  ? build_open_flags+0x680/0x680
[  473.940713]  ? __mutex_unlock_slowpath+0xe1/0x600
[  473.941359]  ? wait_for_completion+0x270/0x270
[  473.941981]  __x64_sys_openat+0x13f/0x1f0
[  473.942530]  ? __ia32_compat_sys_open+0x1c0/0x1c0
[  473.943175]  ? ksys_write+0x1a5/0x250
[  473.943687]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  473.944381]  ? syscall_enter_from_user_mode+0x1d/0x50
[  473.945065]  do_syscall_64+0x33/0x40
[  473.945585]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  473.946266] RIP: 0033:0x7fda1182ea04
[  473.946794] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  473.948872] RSP: 002b:00007fda0edf10b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  473.949677] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1182ea04
[  473.950415] RDX: 0000000000000000 RSI: 00007fda118d4f82 RDI: 00000000ffffff9c
[  473.951159] RBP: 00007fda118d4f82 R08: 0000000000000000 R09: 0000000000000000
[  473.951913] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  473.952659] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
00:37:11 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0) (fail_nth: 6)

00:37:11 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  474.046361] FAULT_INJECTION: forcing a failure.
[  474.046361] name failslab, interval 1, probability 0, space 0, times 0
[  474.047635] CPU: 0 PID: 5410 Comm: syz-executor.3 Not tainted 5.10.90 #1
[  474.048533] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  474.050028] Call Trace:
[  474.050379]  dump_stack+0x107/0x163
[  474.050858]  should_fail.cold+0x5/0xa
[  474.051359]  ? create_object.isra.0+0x3a/0xa20
[  474.051963]  should_failslab+0x5/0x10
[  474.052468]  kmem_cache_alloc+0x5b/0x350
[  474.053002]  create_object.isra.0+0x3a/0xa20
[  474.053592]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[  474.054255]  __kmalloc_node_track_caller+0x1a6/0x3f0
[  474.054921]  ? netlink_sendmsg+0x98a/0xdf0
[  474.055481]  __alloc_skb+0xb1/0x620
[  474.055962]  netlink_sendmsg+0x98a/0xdf0
[  474.056383]  ? netlink_unicast+0x7e0/0x7e0
[  474.056947]  ? netlink_unicast+0x7e0/0x7e0
[  474.057490]  sock_sendmsg+0x150/0x190
[  474.057893]  ____sys_sendmsg+0x709/0x870
[  474.058300]  ? kernel_sendmsg+0x50/0x50
[  474.058702]  ? __ia32_sys_recvmmsg+0x260/0x260
[  474.059164]  ? lock_downgrade+0x6d0/0x6d0
[  474.059596]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  474.060123]  ___sys_sendmsg+0xf3/0x170
[  474.060516]  ? sendmsg_copy_msghdr+0x160/0x160
[  474.060978]  ? lock_downgrade+0x6d0/0x6d0
[  474.061407]  ? __fget_files+0x304/0x500
[  474.061826]  ? __fget_light+0xea/0x280
[  474.062219]  __sys_sendmsg+0xe5/0x1b0
[  474.062604]  ? __sys_sendmsg_sock+0xb0/0xb0
[  474.063032]  ? rcu_read_lock_any_held+0x69/0x90
[  474.063510]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  474.064038]  ? syscall_enter_from_user_mode+0x1d/0x50
[  474.064575]  ? trace_hardirqs_on+0x5b/0x180
[  474.065041]  do_syscall_64+0x33/0x40
[  474.065449]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  474.066006] RIP: 0033:0x7f182e90db19
[  474.066403] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  474.068408] RSP: 002b:00007f182be83188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  474.069207] RAX: ffffffffffffffda RBX: 00007f182ea20f60 RCX: 00007f182e90db19
[  474.069987] RDX: 0000000000000000 RSI: 0000000020000f00 RDI: 0000000000000003
[  474.070737] RBP: 00007f182be831d0 R08: 0000000000000000 R09: 0000000000000000
[  474.071480] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  474.072256] R13: 00007fff50c54eff R14: 00007f182be83300 R15: 0000000000022000
00:37:24 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0) (fail_nth: 7)

00:37:24 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 27)

00:37:24 executing program 1:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(0xffffffffffffffff, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:37:24 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:37:24 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:37:24 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:37:24 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, 0x0, 0x10000800)

00:37:24 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  487.050426] FAULT_INJECTION: forcing a failure.
[  487.050426] name failslab, interval 1, probability 0, space 0, times 0
[  487.052759] CPU: 0 PID: 5426 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  487.054167] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  487.056512] Call Trace:
[  487.057064]  dump_stack+0x107/0x163
[  487.057832]  should_fail.cold+0x5/0xa
[  487.058622]  ? create_object.isra.0+0x3a/0xa20
[  487.059561]  should_failslab+0x5/0x10
[  487.060337]  kmem_cache_alloc+0x5b/0x350
[  487.061180]  create_object.isra.0+0x3a/0xa20
[  487.062107]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[  487.063147]  kmem_cache_alloc+0x159/0x350
[  487.063998]  __d_alloc+0x2a/0x990
[  487.064714]  __ns_get_path+0x300/0x780
[  487.065513]  ns_get_path+0x3d/0xa0
[  487.066268]  proc_ns_get_link+0x10a/0x210
[  487.067121]  ? proc_ns_readlink+0x280/0x280
[  487.068011]  ? proc_ns_readlink+0x280/0x280
[  487.068889]  step_into+0x15fc/0x1bb0
[  487.069659]  ? path_init+0x17d0/0x17d0
[  487.070475]  ? _down_write_nest_lock+0x150/0x150
[  487.071459]  path_openat+0x491/0x26c0
[  487.072251]  ? path_lookupat+0x850/0x850
[  487.073081]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  487.074160]  ? lock_acquire+0x197/0x490
[  487.074981]  do_filp_open+0x17e/0x3c0
[  487.075753]  ? may_open_dev+0xf0/0xf0
[  487.076561]  ? _raw_spin_unlock+0x1a/0x30
[  487.077405]  ? __alloc_fd+0x2a5/0x620
[  487.078198]  do_sys_openat2+0x16d/0x420
[  487.079013]  ? build_open_flags+0x680/0x680
[  487.079890]  ? __mutex_unlock_slowpath+0xe1/0x600
[  487.080881]  ? wait_for_completion+0x270/0x270
[  487.081837]  __x64_sys_openat+0x13f/0x1f0
[  487.082684]  ? __ia32_compat_sys_open+0x1c0/0x1c0
[  487.083665]  ? ksys_write+0x1a5/0x250
[  487.084449]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  487.085516]  ? syscall_enter_from_user_mode+0x1d/0x50
[  487.086577]  do_syscall_64+0x33/0x40
[  487.087343]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  487.088391] RIP: 0033:0x7fda1182ea04
[  487.089154] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  487.092948] RSP: 002b:00007fda0edf10b0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  487.094542] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1182ea04
[  487.095997] RDX: 0000000000000000 RSI: 00007fda118d4f82 RDI: 00000000ffffff9c
[  487.097480] RBP: 00007fda118d4f82 R08: 0000000000000000 R09: 0000000000000000
[  487.098966] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  487.100435] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
[  487.102718] FAULT_INJECTION: forcing a failure.
[  487.102718] name failslab, interval 1, probability 0, space 0, times 0
[  487.104699] CPU: 1 PID: 5425 Comm: syz-executor.3 Not tainted 5.10.90 #1
[  487.105831] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  487.107722] Call Trace:
[  487.108160]  dump_stack+0x107/0x163
[  487.108755]  should_fail.cold+0x5/0xa
[  487.109376]  ? __skb_ext_alloc+0x19/0x80
[  487.110047]  should_failslab+0x5/0x10
[  487.110659]  kmem_cache_alloc+0x5b/0x350
[  487.111329]  __skb_ext_alloc+0x19/0x80
[  487.111971]  skb_ext_add+0x504/0x670
[  487.112546]  ? __kmalloc_node_track_caller+0x302/0x3f0
[  487.113427]  __alloc_skb+0x3c1/0x620
[  487.114020]  netlink_sendmsg+0x98a/0xdf0
[  487.114690]  ? netlink_unicast+0x7e0/0x7e0
[  487.115410]  ? netlink_unicast+0x7e0/0x7e0
[  487.116106]  sock_sendmsg+0x150/0x190
[  487.116748]  ____sys_sendmsg+0x709/0x870
[  487.117428]  ? kernel_sendmsg+0x50/0x50
[  487.118105]  ? __ia32_sys_recvmmsg+0x260/0x260
[  487.118885]  ? lock_downgrade+0x6d0/0x6d0
[  487.119588]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  487.120439]  ___sys_sendmsg+0xf3/0x170
[  487.121074]  ? sendmsg_copy_msghdr+0x160/0x160
[  487.121832]  ? lock_downgrade+0x6d0/0x6d0
[  487.122518]  ? __fget_files+0x304/0x500
[  487.123168]  ? __fget_light+0xea/0x280
[  487.123822]  __sys_sendmsg+0xe5/0x1b0
[  487.124437]  ? __sys_sendmsg_sock+0xb0/0xb0
[  487.125152]  ? rcu_read_lock_any_held+0x69/0x90
[  487.125945]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  487.126795]  ? syscall_enter_from_user_mode+0x1d/0x50
[  487.127627]  ? trace_hardirqs_on+0x5b/0x180
[  487.128280]  do_syscall_64+0x33/0x40
[  487.128875]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  487.129708] RIP: 0033:0x7f182e90db19
00:37:24 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:37:24 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, 0x0, 0x10000800)

00:37:24 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:37:24 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  487.130313] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  487.133390] RSP: 002b:00007f182be83188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  487.134648] RAX: ffffffffffffffda RBX: 00007f182ea20f60 RCX: 00007f182e90db19
[  487.135800] RDX: 0000000000000000 RSI: 0000000020000f00 RDI: 0000000000000003
[  487.136956] RBP: 00007f182be831d0 R08: 0000000000000000 R09: 0000000000000000
[  487.138135] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  487.139291] R13: 00007fff50c54eff R14: 00007f182be83300 R15: 0000000000022000
[  498.194205] FAULT_INJECTION: forcing a failure.
[  498.194205] name failslab, interval 1, probability 0, space 0, times 0
[  498.196698] CPU: 0 PID: 5450 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  498.198279] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  498.200540] Call Trace:
[  498.201066]  dump_stack+0x107/0x163
[  498.201796]  should_fail.cold+0x5/0xa
00:37:35 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, 0x0, 0x10000800)

00:37:35 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 28)

00:37:35 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0) (fail_nth: 8)

[  498.202559]  ? create_new_namespaces+0x30/0xb20
[  498.203673]  should_failslab+0x5/0x10
[  498.204487]  kmem_cache_alloc+0x5b/0x350
[  498.205353]  create_new_namespaces+0x30/0xb20
[  498.206334]  __do_sys_setns+0x206/0x16d0
[  498.207193]  ? __x64_sys_openat+0x13f/0x1f0
[  498.208106]  ? switch_task_namespaces+0xd0/0xd0
[  498.209089]  ? ksys_write+0x1a5/0x250
[  498.209917]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  498.211032]  ? syscall_enter_from_user_mode+0x1d/0x50
[  498.212121]  do_syscall_64+0x33/0x40
[  498.212915]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  498.214046] RIP: 0033:0x7fda1187d107
00:37:35 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:37:35 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, 0x0, 0x10000800)

00:37:35 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:37:35 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x0, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:37:35 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  498.214839] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 34 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  498.218963] RSP: 002b:00007fda0edf1128 EFLAGS: 00000246 ORIG_RAX: 0000000000000134
[  498.220567] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1187d107
[  498.222092] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000000000ef
[  498.223604] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000
[  498.225110] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  498.226627] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
[  498.233410] FAULT_INJECTION: forcing a failure.
[  498.233410] name failslab, interval 1, probability 0, space 0, times 0
[  498.236030] CPU: 0 PID: 5458 Comm: syz-executor.3 Not tainted 5.10.90 #1
[  498.237470] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  498.239887] Call Trace:
[  498.240451]  dump_stack+0x107/0x163
[  498.241225]  should_fail.cold+0x5/0xa
[  498.242046]  ? create_object.isra.0+0x3a/0xa20
[  498.243010]  should_failslab+0x5/0x10
00:37:35 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, 0x0, 0x10000800)

[  498.243852]  kmem_cache_alloc+0x5b/0x350
[  498.244795]  create_object.isra.0+0x3a/0xa20
[  498.245885]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[  498.246938]  kmem_cache_alloc+0x159/0x350
[  498.247799]  __skb_ext_alloc+0x19/0x80
[  498.248599]  skb_ext_add+0x504/0x670
[  498.249365]  ? __kmalloc_node_track_caller+0x302/0x3f0
[  498.250666]  __alloc_skb+0x3c1/0x620
[  498.251441]  netlink_sendmsg+0x98a/0xdf0
[  498.252439]  ? netlink_unicast+0x7e0/0x7e0
[  498.253337]  ? netlink_unicast+0x7e0/0x7e0
[  498.254379]  sock_sendmsg+0x150/0x190
[  498.255160]  ____sys_sendmsg+0x709/0x870
[  498.256161]  ? kernel_sendmsg+0x50/0x50
00:37:35 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x0, 0x0, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  498.256969]  ? __ia32_sys_recvmmsg+0x260/0x260
[  498.257967]  ? lock_downgrade+0x6d0/0x6d0
[  498.258804]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  498.259857]  ___sys_sendmsg+0xf3/0x170
[  498.260635]  ? sendmsg_copy_msghdr+0x160/0x160
[  498.261754]  ? lock_downgrade+0x6d0/0x6d0
[  498.262619]  ? __fget_files+0x304/0x500
[  498.263601]  ? __fget_light+0xea/0x280
[  498.264387]  __sys_sendmsg+0xe5/0x1b0
[  498.265313]  ? __sys_sendmsg_sock+0xb0/0xb0
[  498.266205]  ? rcu_read_lock_any_held+0x69/0x90
[  498.267348]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  498.268397]  ? syscall_enter_from_user_mode+0x1d/0x50
[  498.269646]  ? trace_hardirqs_on+0x5b/0x180
[  498.270530]  do_syscall_64+0x33/0x40
[  498.271437]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  498.272468] RIP: 0033:0x7f182e90db19
[  498.273373] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  498.277076] RSP: 002b:00007f182be83188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  498.278931] RAX: ffffffffffffffda RBX: 00007f182ea20f60 RCX: 00007f182e90db19
[  498.280363] RDX: 0000000000000000 RSI: 0000000020000f00 RDI: 0000000000000003
[  498.282126] RBP: 00007f182be831d0 R08: 0000000000000000 R09: 0000000000000000
[  498.283700] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  498.285221] R13: 00007fff50c54eff R14: 00007f182be83300 R15: 0000000000022000
00:37:35 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:37:35 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0) (fail_nth: 9)

00:37:35 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 29)

00:37:35 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:37:35 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x20, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:37:35 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:37:35 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:37:35 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:37:35 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  498.404857] FAULT_INJECTION: forcing a failure.
[  498.404857] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  498.406216] CPU: 1 PID: 5482 Comm: syz-executor.3 Not tainted 5.10.90 #1
[  498.406958] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  498.408181] Call Trace:
[  498.408482]  dump_stack+0x107/0x163
[  498.408872]  should_fail.cold+0x5/0xa
[  498.409286]  _copy_from_iter_full+0x1ff/0x940
[  498.409791]  ? __check_object_size+0x319/0x440
[  498.410320]  netlink_sendmsg+0x86b/0xdf0
[  498.410763]  ? netlink_unicast+0x7e0/0x7e0
[  498.411227]  ? netlink_unicast+0x7e0/0x7e0
[  498.411692]  sock_sendmsg+0x150/0x190
[  498.412105]  ____sys_sendmsg+0x709/0x870
[  498.412559]  ? kernel_sendmsg+0x50/0x50
[  498.412987]  ? __ia32_sys_recvmmsg+0x260/0x260
[  498.413503]  ? lock_downgrade+0x6d0/0x6d0
[  498.413960]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  498.414552]  ___sys_sendmsg+0xf3/0x170
[  498.414982]  ? sendmsg_copy_msghdr+0x160/0x160
[  498.415497]  ? lock_downgrade+0x6d0/0x6d0
[  498.415963]  ? __fget_files+0x304/0x500
[  498.416418]  ? __fget_light+0xea/0x280
[  498.416855]  __sys_sendmsg+0xe5/0x1b0
[  498.417285]  ? __sys_sendmsg_sock+0xb0/0xb0
[  498.417764]  ? rcu_read_lock_any_held+0x69/0x90
[  498.418328]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  498.418924]  ? syscall_enter_from_user_mode+0x1d/0x50
[  498.419497]  ? trace_hardirqs_on+0x5b/0x180
[  498.419981]  do_syscall_64+0x33/0x40
[  498.420394]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  498.420960] RIP: 0033:0x7f182e90db19
[  498.421385] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  498.423451] RSP: 002b:00007f182be83188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  498.424302] RAX: ffffffffffffffda RBX: 00007f182ea20f60 RCX: 00007f182e90db19
[  498.425116] RDX: 0000000000000000 RSI: 0000000020000f00 RDI: 0000000000000003
[  498.425932] RBP: 00007f182be831d0 R08: 0000000000000000 R09: 0000000000000000
[  498.426734] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  498.427518] R13: 00007fff50c54eff R14: 00007f182be83300 R15: 0000000000022000
00:37:35 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  498.450502] FAULT_INJECTION: forcing a failure.
[  498.450502] name failslab, interval 1, probability 0, space 0, times 0
[  498.454644] CPU: 0 PID: 5487 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  498.456095] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  498.458501] Call Trace:
[  498.459064]  dump_stack+0x107/0x163
[  498.459838]  should_fail.cold+0x5/0xa
[  498.460649]  ? create_object.isra.0+0x3a/0xa20
[  498.461622]  should_failslab+0x5/0x10
[  498.462457]  kmem_cache_alloc+0x5b/0x350
[  498.463321]  create_object.isra.0+0x3a/0xa20
[  498.464256]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[  498.465330]  kmem_cache_alloc+0x159/0x350
[  498.466231]  create_new_namespaces+0x30/0xb20
[  498.467186]  __do_sys_setns+0x206/0x16d0
[  498.468046]  ? __x64_sys_openat+0x13f/0x1f0
[  498.468990]  ? switch_task_namespaces+0xd0/0xd0
[  498.469994]  ? ksys_write+0x1a5/0x250
[  498.470849]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  498.471963]  ? syscall_enter_from_user_mode+0x1d/0x50
[  498.473111]  do_syscall_64+0x33/0x40
[  498.473921]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  498.475058] RIP: 0033:0x7fda1187d107
[  498.475852] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 34 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  498.479902] RSP: 002b:00007fda0edf1128 EFLAGS: 00000246 ORIG_RAX: 0000000000000134
[  498.481511] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1187d107
[  498.483047] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000000000ef
[  498.484555] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000
[  498.486104] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  498.487614] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
00:37:36 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x0, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:37:36 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x10000800)

00:37:48 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 30)

00:37:48 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:37:48 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x0, 0x0, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:37:48 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:37:48 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  511.158281] FAULT_INJECTION: forcing a failure.
[  511.158281] name failslab, interval 1, probability 0, space 0, times 0
[  511.160748] CPU: 1 PID: 5512 Comm: syz-executor.7 Not tainted 5.10.90 #1
00:37:48 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:37:48 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0) (fail_nth: 10)

00:37:48 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

[  511.162150] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  511.164620] Call Trace:
[  511.165167]  dump_stack+0x107/0x163
[  511.165921]  should_fail.cold+0x5/0xa
[  511.166723]  ? sock_alloc_inode+0x18/0x1c0
[  511.167583]  should_failslab+0x5/0x10
[  511.168366]  kmem_cache_alloc+0x5b/0x350
[  511.169126] FAULT_INJECTION: forcing a failure.
[  511.169126] name failslab, interval 1, probability 0, space 0, times 0
[  511.169179]  ? selinux_ipv6_output+0x180/0x180
[  511.169199]  ? sock_free_inode+0x20/0x20
[  511.173179]  sock_alloc_inode+0x18/0x1c0
[  511.174003]  ? sock_free_inode+0x20/0x20
[  511.174829]  alloc_inode+0x63/0x230
[  511.175562]  new_inode_pseudo+0x14/0xe0
[  511.176373]  sock_alloc+0x3c/0x260
[  511.177102]  __sock_create+0xb9/0x760
[  511.177885]  ? fput_many+0x2f/0x1a0
[  511.178642]  __sys_socket+0xef/0x200
[  511.179390]  ? __x64_sys_openat+0x13f/0x1f0
[  511.180260]  ? move_addr_to_kernel+0x70/0x70
[  511.181141]  ? ksys_write+0x1a5/0x250
[  511.181917]  __x64_sys_socket+0x6f/0xb0
[  511.182742]  ? syscall_enter_from_user_mode+0x1d/0x50
[  511.183786]  do_syscall_64+0x33/0x40
[  511.184546]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  511.185592] RIP: 0033:0x7fda1187bb19
[  511.186352] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  511.190102] RSP: 002b:00007fda0edf1128 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  511.191630] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1187bb19
[  511.193058] RDX: 0000000000000001 RSI: 0000000000000003 RDI: 000000000000001f
[  511.194493] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000
[  511.195923] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  511.197358] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
[  511.198822] CPU: 0 PID: 5514 Comm: syz-executor.3 Not tainted 5.10.90 #1
[  511.198953] socket: no more sockets
[  511.200428] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  511.200433] Call Trace:
[  511.200454]  dump_stack+0x107/0x163
[  511.200474]  should_fail.cold+0x5/0xa
[  511.206205]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0xd7/0x280
[  511.207688]  should_failslab+0x5/0x10
[  511.208449]  __kmalloc+0x72/0x3e0
[  511.209156]  genl_family_rcv_msg_attrs_parse.constprop.0+0xd7/0x280
[  511.210465]  genl_family_rcv_msg_doit+0xda/0x330
[  511.211436]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[  511.212782]  ? cap_capable+0x1eb/0x250
[  511.213580]  ? security_capable+0x95/0xc0
[  511.214439]  ? ns_capable+0xd9/0x100
[  511.215204]  genl_rcv_msg+0x33c/0x5a0
[  511.215985]  ? genl_get_cmd+0x480/0x480
[  511.216800]  ? nl80211_tdls_cancel_channel_switch+0x520/0x520
[  511.217996]  ? lock_release+0x6b0/0x6b0
[  511.218811]  ? netlink_deliver_tap+0xf4/0xbb0
[  511.219716]  netlink_rcv_skb+0x14b/0x430
[  511.220531]  ? genl_get_cmd+0x480/0x480
[  511.221330]  ? netlink_ack+0xab0/0xab0
[  511.222131]  ? is_vmalloc_addr+0x7b/0xb0
[  511.222950]  genl_rcv+0x24/0x40
[  511.223611]  netlink_unicast+0x53a/0x7e0
[  511.224431]  ? netlink_attachskb+0x810/0x810
[  511.225324]  netlink_sendmsg+0x901/0xdf0
[  511.226162]  ? netlink_unicast+0x7e0/0x7e0
[  511.227023]  ? netlink_unicast+0x7e0/0x7e0
[  511.227873]  sock_sendmsg+0x150/0x190
[  511.228639]  ____sys_sendmsg+0x709/0x870
[  511.229461]  ? kernel_sendmsg+0x50/0x50
[  511.230263]  ? __ia32_sys_recvmmsg+0x260/0x260
[  511.231181]  ? lock_downgrade+0x6d0/0x6d0
[  511.232015]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  511.233069]  ___sys_sendmsg+0xf3/0x170
[  511.233854]  ? sendmsg_copy_msghdr+0x160/0x160
[  511.234783]  ? lock_downgrade+0x6d0/0x6d0
[  511.235628]  ? __fget_files+0x304/0x500
[  511.236432]  ? __fget_light+0xea/0x280
[  511.237220]  __sys_sendmsg+0xe5/0x1b0
[  511.237986]  ? __sys_sendmsg_sock+0xb0/0xb0
[  511.238869]  ? rcu_read_lock_any_held+0x69/0x90
[  511.239817]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  511.240872]  ? syscall_enter_from_user_mode+0x1d/0x50
[  511.241908]  ? trace_hardirqs_on+0x5b/0x180
[  511.242780]  do_syscall_64+0x33/0x40
[  511.243525]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  511.244549] RIP: 0033:0x7f182e90db19
[  511.245290] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  511.248978] RSP: 002b:00007f182be83188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  511.250523] RAX: ffffffffffffffda RBX: 00007f182ea20f60 RCX: 00007f182e90db19
[  511.251953] RDX: 0000000000000000 RSI: 0000000020000f00 RDI: 0000000000000003
[  511.253380] RBP: 00007f182be831d0 R08: 0000000000000000 R09: 0000000000000000
[  511.254824] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  511.256254] R13: 00007fff50c54eff R14: 00007f182be83300 R15: 0000000000022000
[  524.011672] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak)
00:38:08 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0) (fail_nth: 11)

00:38:08 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:38:08 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 31)

00:38:08 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:38:08 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:38:08 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  530.643946] FAULT_INJECTION: forcing a failure.
[  530.643946] name failslab, interval 1, probability 0, space 0, times 0
[  530.646223] CPU: 0 PID: 5532 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  530.647529] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  530.649695] Call Trace:
[  530.650201]  dump_stack+0x107/0x163
[  530.650910]  should_fail.cold+0x5/0xa
[  530.651644]  ? create_object.isra.0+0x3a/0xa20
[  530.652519]  should_failslab+0x5/0x10
[  530.653250]  kmem_cache_alloc+0x5b/0x350
[  530.654039]  create_object.isra.0+0x3a/0xa20
[  530.654591] FAULT_INJECTION: forcing a failure.
[  530.654591] name failslab, interval 1, probability 0, space 0, times 0
[  530.654912]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[  530.654934]  kmem_cache_alloc+0x159/0x350
[  530.658973]  ? selinux_ipv6_output+0x180/0x180
[  530.659859]  ? sock_free_inode+0x20/0x20
[  530.660646]  sock_alloc_inode+0x18/0x1c0
[  530.661424]  ? sock_free_inode+0x20/0x20
[  530.662203]  alloc_inode+0x63/0x230
[  530.662923]  new_inode_pseudo+0x14/0xe0
[  530.663695]  sock_alloc+0x3c/0x260
[  530.664380]  __sock_create+0xb9/0x760
[  530.665118]  ? fput_many+0x2f/0x1a0
[  530.665822]  __sys_socket+0xef/0x200
[  530.666549]  ? move_addr_to_kernel+0x70/0x70
[  530.667408]  __x64_sys_socket+0x6f/0xb0
[  530.668178]  ? syscall_enter_from_user_mode+0x1d/0x50
[  530.669184]  do_syscall_64+0x33/0x40
[  530.669909]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  530.670926] RIP: 0033:0x7fda1187bb19
[  530.671653] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  530.675252] RSP: 002b:00007fda0edf1128 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  530.676733] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1187bb19
[  530.678122] RDX: 0000000000000001 RSI: 0000000000000003 RDI: 000000000000001f
[  530.679556] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000
[  530.680945] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  530.682335] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
[  530.683770] CPU: 1 PID: 5528 Comm: syz-executor.3 Not tainted 5.10.90 #1
[  530.685162] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  530.687478] Call Trace:
[  530.688017]  dump_stack+0x107/0x163
[  530.688322] FAULT_INJECTION: forcing a failure.
[  530.688322] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  530.688754]  should_fail.cold+0x5/0xa
[  530.688775]  ? create_object.isra.0+0x3a/0xa20
[  530.688797]  should_failslab+0x5/0x10
[  530.693475]  kmem_cache_alloc+0x5b/0x350
[  530.694296]  ? mark_lock+0xf5/0x2df0
[  530.695061]  create_object.isra.0+0x3a/0xa20
[  530.695953]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[  530.696981]  __kmalloc+0x16e/0x3e0
[  530.697711]  genl_family_rcv_msg_attrs_parse.constprop.0+0xd7/0x280
[  530.699018]  genl_family_rcv_msg_doit+0xda/0x330
[  530.699978]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280
[  530.701310]  ? cap_capable+0x1eb/0x250
[  530.702097]  ? security_capable+0x95/0xc0
[  530.702948]  ? ns_capable+0xd9/0x100
[  530.703703]  genl_rcv_msg+0x33c/0x5a0
[  530.704478]  ? genl_get_cmd+0x480/0x480
[  530.705284]  ? nl80211_tdls_cancel_channel_switch+0x520/0x520
[  530.706485]  ? lock_release+0x6b0/0x6b0
[  530.707286]  ? netlink_deliver_tap+0xf4/0xbb0
[  530.708194]  netlink_rcv_skb+0x14b/0x430
[  530.709012]  ? genl_get_cmd+0x480/0x480
[  530.709815]  ? netlink_ack+0xab0/0xab0
[  530.710623]  ? is_vmalloc_addr+0x7b/0xb0
[  530.711445]  genl_rcv+0x24/0x40
[  530.712107]  netlink_unicast+0x53a/0x7e0
[  530.712931]  ? netlink_attachskb+0x810/0x810
[  530.713828]  netlink_sendmsg+0x901/0xdf0
[  530.714670]  ? netlink_unicast+0x7e0/0x7e0
[  530.715532]  ? netlink_unicast+0x7e0/0x7e0
[  530.716386]  sock_sendmsg+0x150/0x190
[  530.717156]  ____sys_sendmsg+0x709/0x870
[  530.717978]  ? kernel_sendmsg+0x50/0x50
[  530.718783]  ? __ia32_sys_recvmmsg+0x260/0x260
[  530.719706]  ? lock_downgrade+0x6d0/0x6d0
[  530.720548]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  530.721607]  ___sys_sendmsg+0xf3/0x170
[  530.722398]  ? sendmsg_copy_msghdr+0x160/0x160
[  530.723324]  ? lock_downgrade+0x6d0/0x6d0
[  530.724173]  ? __fget_files+0x304/0x500
[  530.724981]  ? __fget_light+0xea/0x280
[  530.725770]  __sys_sendmsg+0xe5/0x1b0
[  530.726559]  ? __sys_sendmsg_sock+0xb0/0xb0
[  530.727425]  ? rcu_read_lock_any_held+0x69/0x90
[  530.728377]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  530.729435]  ? syscall_enter_from_user_mode+0x1d/0x50
[  530.730479]  ? trace_hardirqs_on+0x5b/0x180
[  530.731348]  do_syscall_64+0x33/0x40
[  530.732096]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  530.733129] RIP: 0033:0x7f182e90db19
[  530.733881] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  530.737593] RSP: 002b:00007f182be83188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  530.739144] RAX: ffffffffffffffda RBX: 00007f182ea20f60 RCX: 00007f182e90db19
[  530.740585] RDX: 0000000000000000 RSI: 0000000020000f00 RDI: 0000000000000003
[  530.742024] RBP: 00007f182be831d0 R08: 0000000000000000 R09: 0000000000000000
[  530.743469] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  530.744927] R13: 00007fff50c54eff R14: 00007f182be83300 R15: 0000000000022000
[  530.746421] CPU: 0 PID: 5537 Comm: syz-executor.4 Not tainted 5.10.90 #1
[  530.747806] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  530.750113] Call Trace:
[  530.750664]  dump_stack+0x107/0x163
[  530.751400]  should_fail.cold+0x5/0xa
[  530.752169]  _copy_from_user+0x2e/0x1b0
[  530.752972]  __copy_msghdr_from_user+0x91/0x4b0
[  530.753913]  ? __ia32_sys_shutdown+0x70/0x70
[  530.754812]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  530.755870]  ? __lock_acquire+0x1653/0x5b00
[  530.756745]  ? __lock_acquire+0xbb1/0x5b00
[  530.757606]  sendmsg_copy_msghdr+0xa1/0x160
[  530.758491]  ? __ia32_sys_recvmmsg+0x260/0x260
[  530.759413]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  530.760468]  ? lock_downgrade+0x6d0/0x6d0
[  530.761305]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  530.762364]  ___sys_sendmsg+0xc6/0x170
[  530.763160]  ? sendmsg_copy_msghdr+0x160/0x160
[  530.764102]  ? __fget_files+0x2db/0x500
[  530.764916]  ? lock_downgrade+0x6d0/0x6d0
[  530.765769]  ? __fget_files+0x304/0x500
[  530.766600]  ? __fget_light+0xea/0x280
[  530.767398]  __sys_sendmsg+0xe5/0x1b0
[  530.768158]  ? __sys_sendmsg_sock+0xb0/0xb0
[  530.769034]  ? rcu_read_lock_any_held+0x69/0x90
[  530.769978]  ? fput_many+0x2f/0x1a0
[  530.770726]  ? ksys_write+0x1a5/0x250
[  530.771498]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  530.772553]  ? syscall_enter_from_user_mode+0x1d/0x50
[  530.773595]  ? trace_hardirqs_on+0x5b/0x180
[  530.774473]  do_syscall_64+0x33/0x40
[  530.775224]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  530.776255] RIP: 0033:0x7fd0f2219b19
[  530.777005] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  530.780734] RSP: 002b:00007fd0ef78f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  530.782270] RAX: ffffffffffffffda RBX: 00007fd0f232cf60 RCX: 00007fd0f2219b19
[  530.783716] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000004
[  530.785153] RBP: 00007fd0ef78f1d0 R08: 0000000000000000 R09: 0000000000000000
[  530.786597] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  530.788035] R13: 00007ffc16319daf R14: 00007fd0ef78f300 R15: 0000000000022000
00:38:08 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:38:08 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) (fail_nth: 1)

00:38:08 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:38:08 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:38:08 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:38:08 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:38:08 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:38:08 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x10000800)

00:38:08 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:38:08 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(0xffffffffffffffff, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:38:08 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0) (fail_nth: 12)

00:38:08 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:38:08 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 32)

00:38:08 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:38:08 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:38:08 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  531.037601] FAULT_INJECTION: forcing a failure.
[  531.037601] name failslab, interval 1, probability 0, space 0, times 0
[  531.039932] CPU: 0 PID: 5559 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  531.041320] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  531.043659] Call Trace:
[  531.044203]  dump_stack+0x107/0x163
[  531.044941]  should_fail.cold+0x5/0xa
[  531.045726]  ? security_inode_alloc+0x34/0x160
[  531.046691]  should_failslab+0x5/0x10
[  531.047458]  kmem_cache_alloc+0x5b/0x350
[  531.048277]  ? memcg_slab_post_alloc_hook+0x183/0x3f0
[  531.049313]  security_inode_alloc+0x34/0x160
[  531.050193]  inode_init_always+0x507/0xc10
[  531.051052]  ? __init_waitqueue_head+0x6b/0xd0
[  531.051991]  alloc_inode+0x84/0x230
[  531.052713]  new_inode_pseudo+0x14/0xe0
[  531.053535]  sock_alloc+0x3c/0x260
[  531.054252]  __sock_create+0xb9/0x760
[  531.055051]  ? fput_many+0x2f/0x1a0
[  531.055783]  __sys_socket+0xef/0x200
[  531.056562]  ? move_addr_to_kernel+0x70/0x70
[  531.057450]  __x64_sys_socket+0x6f/0xb0
[  531.058263]  ? syscall_enter_from_user_mode+0x1d/0x50
[  531.059308]  do_syscall_64+0x33/0x40
[  531.060059]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  531.061090] RIP: 0033:0x7fda1187bb19
[  531.061841] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  531.065528] RSP: 002b:00007fda0edf1128 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  531.067075] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1187bb19
[  531.068513] RDX: 0000000000000001 RSI: 0000000000000003 RDI: 000000000000001f
[  531.069917] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000
[  531.071329] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  531.072755] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
[  531.074397] socket: no more sockets
[  531.091456] FAULT_INJECTION: forcing a failure.
[  531.091456] name failslab, interval 1, probability 0, space 0, times 0
[  531.093804] CPU: 1 PID: 5566 Comm: syz-executor.3 Not tainted 5.10.90 #1
[  531.095198] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  531.097470] Call Trace:
[  531.098009]  dump_stack+0x107/0x163
[  531.098753]  should_fail.cold+0x5/0xa
[  531.099500]  ? __alloc_skb+0x6d/0x620
[  531.100277]  ? __alloc_skb+0x6d/0x620
[  531.101075]  should_failslab+0x5/0x10
[  531.101872]  kmem_cache_alloc_node+0x55/0x370
[  531.102823]  __alloc_skb+0x6d/0x620
[  531.103574]  ? genl_rcv_msg+0x33c/0x5a0
[  531.104397]  netlink_ack+0x1ed/0xab0
[  531.105178]  ? nl80211_tdls_cancel_channel_switch+0x520/0x520
[  531.106367]  ? netlink_sendmsg+0xdf0/0xdf0
[  531.107252]  ? lock_release+0x6b0/0x6b0
[  531.108070]  ? netlink_deliver_tap+0xf4/0xbb0
[  531.109005]  netlink_rcv_skb+0x348/0x430
[  531.109843]  ? genl_get_cmd+0x480/0x480
[  531.110686]  ? netlink_ack+0xab0/0xab0
[  531.111493]  ? is_vmalloc_addr+0x7b/0xb0
[  531.112324]  genl_rcv+0x24/0x40
[  531.113001]  netlink_unicast+0x53a/0x7e0
[  531.113840]  ? netlink_attachskb+0x810/0x810
[  531.114765]  netlink_sendmsg+0x901/0xdf0
[  531.115607]  ? netlink_unicast+0x7e0/0x7e0
[  531.116503]  ? netlink_unicast+0x7e0/0x7e0
[  531.117371]  sock_sendmsg+0x150/0x190
[  531.118149]  ____sys_sendmsg+0x709/0x870
[  531.118998]  ? kernel_sendmsg+0x50/0x50
[  531.119803]  ? __ia32_sys_recvmmsg+0x260/0x260
[  531.120735]  ? lock_downgrade+0x6d0/0x6d0
[  531.121582]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  531.122673]  ___sys_sendmsg+0xf3/0x170
[  531.123469]  ? sendmsg_copy_msghdr+0x160/0x160
[  531.124407]  ? lock_downgrade+0x6d0/0x6d0
[  531.125277]  ? __fget_files+0x304/0x500
[  531.126098]  ? __fget_light+0xea/0x280
[  531.126907]  __sys_sendmsg+0xe5/0x1b0
[  531.127682]  ? __sys_sendmsg_sock+0xb0/0xb0
[  531.128561]  ? rcu_read_lock_any_held+0x69/0x90
[  531.129524]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  531.130599]  ? syscall_enter_from_user_mode+0x1d/0x50
[  531.131648]  ? trace_hardirqs_on+0x5b/0x180
[  531.132528]  do_syscall_64+0x33/0x40
[  531.133286]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  531.134336] RIP: 0033:0x7f182e90db19
[  531.135122] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  531.138894] RSP: 002b:00007f182be83188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  531.140459] RAX: ffffffffffffffda RBX: 00007f182ea20f60 RCX: 00007f182e90db19
[  531.141939] RDX: 0000000000000000 RSI: 0000000020000f00 RDI: 0000000000000003
[  531.143407] RBP: 00007f182be831d0 R08: 0000000000000000 R09: 0000000000000000
[  531.144867] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  531.146329] R13: 00007fff50c54eff R14: 00007f182be83300 R15: 0000000000022000
00:38:19 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0) (fail_nth: 13)

00:38:19 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 33)

00:38:19 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) (fail_nth: 2)

00:38:19 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  542.103107] FAULT_INJECTION: forcing a failure.
[  542.103107] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  542.104769] CPU: 0 PID: 5583 Comm: syz-executor.4 Not tainted 5.10.90 #1
[  542.105713] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  542.107293] Call Trace:
[  542.107677]  dump_stack+0x107/0x163
[  542.108207]  should_fail.cold+0x5/0xa
00:38:19 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:38:19 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:38:19 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) (fail_nth: 1)

00:38:19 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(0xffffffffffffffff, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  542.108758]  _copy_from_user+0x2e/0x1b0
[  542.109435]  iovec_from_user+0x139/0x3f0
[  542.110034]  __import_iovec+0x67/0x590
[  542.110611]  ? __ia32_sys_shutdown+0x70/0x70
[  542.111250]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  542.112020]  import_iovec+0x83/0xb0
[  542.112553]  sendmsg_copy_msghdr+0x12d/0x160
[  542.113192]  ? __ia32_sys_recvmmsg+0x260/0x260
[  542.113877]  ? lock_downgrade+0x6d0/0x6d0
[  542.114528]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  542.115058] FAULT_INJECTION: forcing a failure.
[  542.115058] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  542.115312]  ___sys_sendmsg+0xc6/0x170
[  542.118297]  ? sendmsg_copy_msghdr+0x160/0x160
[  542.119014]  ? __fget_files+0x2db/0x500
[  542.119632]  ? lock_downgrade+0x6d0/0x6d0
[  542.120247]  ? __fget_files+0x304/0x500
[  542.120833]  ? __fget_light+0xea/0x280
[  542.121404]  __sys_sendmsg+0xe5/0x1b0
[  542.121963]  ? __sys_sendmsg_sock+0xb0/0xb0
[  542.122599]  ? rcu_read_lock_any_held+0x69/0x90
[  542.123287]  ? fput_many+0x2f/0x1a0
[  542.123819]  ? ksys_write+0x1a5/0x250
[  542.124378]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  542.125147]  ? syscall_enter_from_user_mode+0x1d/0x50
[  542.125901]  ? trace_hardirqs_on+0x5b/0x180
[  542.126532]  do_syscall_64+0x33/0x40
[  542.127093]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  542.127844] RIP: 0033:0x7fd0f2219b19
[  542.128389] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  542.131105] RSP: 002b:00007fd0ef78f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  542.132220] RAX: ffffffffffffffda RBX: 00007fd0f232cf60 RCX: 00007fd0f2219b19
[  542.133266] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000004
[  542.134319] RBP: 00007fd0ef78f1d0 R08: 0000000000000000 R09: 0000000000000000
[  542.135371] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  542.136413] R13: 00007ffc16319daf R14: 00007fd0ef78f300 R15: 0000000000022000
[  542.137476] CPU: 1 PID: 5586 Comm: syz-executor.0 Not tainted 5.10.90 #1
[  542.138940] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  542.141326] Call Trace:
[  542.141949]  dump_stack+0x107/0x163
[  542.142731]  should_fail.cold+0x5/0xa
[  542.143534]  _copy_from_user+0x2e/0x1b0
[  542.144089] FAULT_INJECTION: forcing a failure.
[  542.144089] name failslab, interval 1, probability 0, space 0, times 0
[  542.144370]  __copy_msghdr_from_user+0x91/0x4b0
[  542.144386]  ? __ia32_sys_shutdown+0x70/0x70
[  542.147887]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  542.148986]  ? __lock_acquire+0x1653/0x5b00
[  542.149896]  ? __lock_acquire+0xbb1/0x5b00
[  542.150816]  sendmsg_copy_msghdr+0xa1/0x160
[  542.151719]  ? __ia32_sys_recvmmsg+0x260/0x260
[  542.152679]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  542.153778]  ? lock_downgrade+0x6d0/0x6d0
[  542.154666]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  542.155769]  ___sys_sendmsg+0xc6/0x170
[  542.156586]  ? sendmsg_copy_msghdr+0x160/0x160
[  542.157547]  ? __fget_files+0x2db/0x500
[  542.158378]  ? lock_downgrade+0x6d0/0x6d0
[  542.159269]  ? __fget_files+0x304/0x500
[  542.160109]  ? __fget_light+0xea/0x280
[  542.160929]  __sys_sendmsg+0xe5/0x1b0
[  542.161723]  ? __sys_sendmsg_sock+0xb0/0xb0
[  542.162639]  ? rcu_read_lock_any_held+0x69/0x90
[  542.163619]  ? fput_many+0x2f/0x1a0
[  542.164380]  ? ksys_write+0x1a5/0x250
[  542.165186]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  542.166286]  ? syscall_enter_from_user_mode+0x1d/0x50
[  542.167368]  ? trace_hardirqs_on+0x5b/0x180
[  542.168269]  do_syscall_64+0x33/0x40
[  542.169045]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  542.170116] RIP: 0033:0x7ffbba52fb19
[  542.170899] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  542.174753] RSP: 002b:00007ffbb7aa5188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  542.176335] RAX: ffffffffffffffda RBX: 00007ffbba642f60 RCX: 00007ffbba52fb19
[  542.177822] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000004
[  542.179312] RBP: 00007ffbb7aa51d0 R08: 0000000000000000 R09: 0000000000000000
[  542.180796] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  542.182281] R13: 00007ffcdc85c30f R14: 00007ffbb7aa5300 R15: 0000000000022000
[  542.183792] CPU: 0 PID: 5577 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  542.184785] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  542.186444] Call Trace:
[  542.186832]  dump_stack+0x107/0x163
[  542.187363]  should_fail.cold+0x5/0xa
[  542.187934]  ? create_object.isra.0+0x3a/0xa20
[  542.188607]  should_failslab+0x5/0x10
[  542.189160]  kmem_cache_alloc+0x5b/0x350
[  542.189756]  create_object.isra.0+0x3a/0xa20
[  542.190401]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[  542.191157]  kmem_cache_alloc+0x159/0x350
[  542.191758]  ? memcg_slab_post_alloc_hook+0x183/0x3f0
[  542.192513]  security_inode_alloc+0x34/0x160
[  542.193161]  inode_init_always+0x507/0xc10
[  542.193771]  ? __init_waitqueue_head+0x6b/0xd0
[  542.194443]  alloc_inode+0x84/0x230
[  542.194976]  new_inode_pseudo+0x14/0xe0
[  542.195556]  sock_alloc+0x3c/0x260
[  542.196073]  __sock_create+0xb9/0x760
[  542.196627]  ? fput_many+0x2f/0x1a0
[  542.197164]  __sys_socket+0xef/0x200
[  542.197703]  ? __x64_sys_openat+0x13f/0x1f0
[  542.198332]  ? move_addr_to_kernel+0x70/0x70
[  542.198974]  ? ksys_write+0x1a5/0x250
[  542.199534]  __x64_sys_socket+0x6f/0xb0
[  542.200109]  ? syscall_enter_from_user_mode+0x1d/0x50
[  542.200858]  do_syscall_64+0x33/0x40
[  542.201399]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  542.202148] RIP: 0033:0x7fda1187bb19
[  542.202700] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  542.205393] RSP: 002b:00007fda0edf1128 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  542.206503] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1187bb19
[  542.207559] RDX: 0000000000000001 RSI: 0000000000000003 RDI: 000000000000001f
[  542.208601] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000
[  542.209641] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  542.210697] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
00:38:19 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0)

00:38:19 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(0xffffffffffffffff, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:38:19 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:38:19 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(0xffffffffffffffff, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:38:19 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:38:19 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) (fail_nth: 2)

00:38:19 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0)

[  542.348149] FAULT_INJECTION: forcing a failure.
[  542.348149] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  542.349867] CPU: 0 PID: 5606 Comm: syz-executor.0 Not tainted 5.10.90 #1
[  542.350808] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  542.352372] Call Trace:
[  542.352736]  dump_stack+0x107/0x163
[  542.353239]  should_fail.cold+0x5/0xa
[  542.353767]  _copy_from_user+0x2e/0x1b0
[  542.354319]  iovec_from_user+0x139/0x3f0
[  542.354886]  __import_iovec+0x67/0x590
[  542.355426]  ? __ia32_sys_shutdown+0x70/0x70
[  542.356032]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  542.356736]  import_iovec+0x83/0xb0
[  542.357236]  sendmsg_copy_msghdr+0x12d/0x160
[  542.357857]  ? __ia32_sys_recvmmsg+0x260/0x260
[  542.358502]  ? lock_downgrade+0x6d0/0x6d0
[  542.359099]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  542.359839]  ___sys_sendmsg+0xc6/0x170
[  542.360385]  ? sendmsg_copy_msghdr+0x160/0x160
[  542.361027]  ? __fget_files+0x2db/0x500
[  542.361588]  ? lock_downgrade+0x6d0/0x6d0
[  542.362182]  ? __fget_files+0x304/0x500
[  542.362744]  ? __fget_light+0xea/0x280
[  542.363295]  __sys_sendmsg+0xe5/0x1b0
[  542.363821]  ? __sys_sendmsg_sock+0xb0/0xb0
[  542.364409]  ? rcu_read_lock_any_held+0x69/0x90
[  542.365048]  ? fput_many+0x2f/0x1a0
[  542.365545]  ? ksys_write+0x1a5/0x250
[  542.366068]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  542.366807]  ? syscall_enter_from_user_mode+0x1d/0x50
[  542.367516]  ? trace_hardirqs_on+0x5b/0x180
[  542.368111]  do_syscall_64+0x33/0x40
[  542.368624]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  542.369333] RIP: 0033:0x7ffbba52fb19
[  542.369855] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  542.372395] RSP: 002b:00007ffbb7aa5188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  542.373448] RAX: ffffffffffffffda RBX: 00007ffbba642f60 RCX: 00007ffbba52fb19
[  542.374428] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000004
[  542.375424] RBP: 00007ffbb7aa51d0 R08: 0000000000000000 R09: 0000000000000000
[  542.376418] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  542.377410] R13: 00007ffcdc85c30f R14: 00007ffbb7aa5300 R15: 0000000000022000
00:38:31 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) (fail_nth: 3)

00:38:31 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, 0x0, 0x0)

00:38:31 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 34)

00:38:31 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x2, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0)

00:38:31 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(0xffffffffffffffff, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:38:31 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) (fail_nth: 3)

00:38:31 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x0, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:38:31 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x0, 0x70bd26, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  553.921702] FAULT_INJECTION: forcing a failure.
[  553.921702] name failslab, interval 1, probability 0, space 0, times 0
[  553.923336] FAULT_INJECTION: forcing a failure.
[  553.923336] name failslab, interval 1, probability 0, space 0, times 0
[  553.924402] CPU: 0 PID: 5619 Comm: syz-executor.0 Not tainted 5.10.90 #1
[  553.928385] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  553.930856] Call Trace:
[  553.931454]  dump_stack+0x107/0x163
[  553.932299]  should_fail.cold+0x5/0xa
[  553.933176]  ? sco_sock_sendmsg+0x170/0x640
[  553.934167]  should_failslab+0x5/0x10
[  553.935060]  __kmalloc+0x72/0x3e0
[  553.935859]  ? _copy_from_user+0xfb/0x1b0
[  553.936815]  sco_sock_sendmsg+0x170/0x640
[  553.937768]  ? sco_sock_listen+0x320/0x320
[  553.938745]  ? __import_iovec+0x458/0x590
[  553.939612]  ? sco_sock_listen+0x320/0x320
[  553.940459]  sock_sendmsg+0x150/0x190
[  553.941236]  ____sys_sendmsg+0x709/0x870
[  553.942053]  ? kernel_sendmsg+0x50/0x50
[  553.942865]  ? __ia32_sys_recvmmsg+0x260/0x260
[  553.943782]  ? lock_downgrade+0x6d0/0x6d0
[  553.944610]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  553.945660]  ___sys_sendmsg+0xf3/0x170
[  553.946438]  ? sendmsg_copy_msghdr+0x160/0x160
[  553.947370]  ? lock_downgrade+0x6d0/0x6d0
[  553.948220]  ? __fget_files+0x304/0x500
[  553.949029]  ? __fget_light+0xea/0x280
[  553.949822]  __sys_sendmsg+0xe5/0x1b0
[  553.950588]  ? __sys_sendmsg_sock+0xb0/0xb0
[  553.951472]  ? rcu_read_lock_any_held+0x69/0x90
[  553.952427]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  553.953489]  ? syscall_enter_from_user_mode+0x1d/0x50
[  553.954544]  ? trace_hardirqs_on+0x5b/0x180
[  553.955431]  do_syscall_64+0x33/0x40
[  553.956196]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  553.957239] RIP: 0033:0x7ffbba52fb19
[  553.957996] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  553.961755] RSP: 002b:00007ffbb7aa5188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  553.963351] RAX: ffffffffffffffda RBX: 00007ffbba642f60 RCX: 00007ffbba52fb19
[  553.964833] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000004
[  553.966287] RBP: 00007ffbb7aa51d0 R08: 0000000000000000 R09: 0000000000000000
[  553.967761] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  553.969272] R13: 00007ffcdc85c30f R14: 00007ffbb7aa5300 R15: 0000000000022000
[  553.970811] CPU: 1 PID: 5626 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  553.972249] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  553.974630] Call Trace:
[  553.975207]  dump_stack+0x107/0x163
[  553.975978]  should_fail.cold+0x5/0xa
[  553.976778]  ? sk_prot_alloc+0x119/0x2c0
[  553.977637]  should_failslab+0x5/0x10
[  553.978436]  __kmalloc+0x72/0x3e0
[  553.979175]  ? lock_release+0x6b0/0x6b0
[  553.980018]  sk_prot_alloc+0x119/0x2c0
[  553.980841]  sk_alloc+0x30/0x340
[  553.981560]  hci_sock_create+0xac/0x1c0
[  553.982414]  bt_sock_create+0x159/0x2b0
[  553.983277]  __sock_create+0x355/0x760
[  553.984106]  ? fput_many+0x2f/0x1a0
[  553.984883]  __sys_socket+0xef/0x200
[  553.985666]  ? __x64_sys_openat+0x13f/0x1f0
[  553.986586]  ? move_addr_to_kernel+0x70/0x70
[  553.987545]  ? ksys_write+0x1a5/0x250
[  553.988376]  __x64_sys_socket+0x6f/0xb0
[  553.989225]  ? syscall_enter_from_user_mode+0x1d/0x50
[  553.990321]  do_syscall_64+0x33/0x40
[  553.991148]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  553.992249] RIP: 0033:0x7fda1187bb19
[  553.993053] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  553.997032] RSP: 002b:00007fda0edf1128 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  553.998700] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1187bb19
[  554.000253] RDX: 0000000000000001 RSI: 0000000000000003 RDI: 000000000000001f
[  554.001810] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000
[  554.003388] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  554.004939] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
00:38:31 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, 0x0, 0x0)

[  554.021766] FAULT_INJECTION: forcing a failure.
[  554.021766] name failslab, interval 1, probability 0, space 0, times 0
[  554.024562] CPU: 1 PID: 5629 Comm: syz-executor.4 Not tainted 5.10.90 #1
[  554.026119] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  554.028747] Call Trace:
[  554.029347]  dump_stack+0x107/0x163
[  554.030179]  should_fail.cold+0x5/0xa
[  554.031061]  ? sco_sock_sendmsg+0x170/0x640
[  554.032051]  should_failslab+0x5/0x10
[  554.032920]  __kmalloc+0x72/0x3e0
[  554.033715]  ? _copy_from_user+0xfb/0x1b0
[  554.034668]  sco_sock_sendmsg+0x170/0x640
[  554.035629]  ? sco_sock_listen+0x320/0x320
[  554.036603]  ? __import_iovec+0x458/0x590
[  554.037568]  ? sco_sock_listen+0x320/0x320
[  554.038547]  sock_sendmsg+0x150/0x190
[  554.039450]  ____sys_sendmsg+0x709/0x870
[  554.040398]  ? kernel_sendmsg+0x50/0x50
00:38:31 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x0, 0x0, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  554.041320]  ? __ia32_sys_recvmmsg+0x260/0x260
[  554.042533]  ? lock_downgrade+0x6d0/0x6d0
[  554.043520]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  554.044748]  ___sys_sendmsg+0xf3/0x170
[  554.045658]  ? sendmsg_copy_msghdr+0x160/0x160
[  554.046734]  ? lock_downgrade+0x6d0/0x6d0
[  554.047750]  ? __fget_files+0x304/0x500
[  554.048698]  ? __fget_light+0xea/0x280
[  554.049627]  __sys_sendmsg+0xe5/0x1b0
[  554.050525]  ? __sys_sendmsg_sock+0xb0/0xb0
[  554.051547]  ? rcu_read_lock_any_held+0x69/0x90
[  554.052659]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  554.053786]  ? syscall_enter_from_user_mode+0x1d/0x50
[  554.054832]  ? trace_hardirqs_on+0x5b/0x180
[  554.055706]  do_syscall_64+0x33/0x40
[  554.056455]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  554.057486] RIP: 0033:0x7fd0f2219b19
[  554.058238] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  554.062010] RSP: 002b:00007fd0ef78f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  554.063577] RAX: ffffffffffffffda RBX: 00007fd0f232cf60 RCX: 00007fd0f2219b19
[  554.065042] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000004
[  554.066514] RBP: 00007fd0ef78f1d0 R08: 0000000000000000 R09: 0000000000000000
[  554.067992] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  554.069467] R13: 00007ffc16319daf R14: 00007fd0ef78f300 R15: 0000000000022000
00:38:31 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x0, 0x0, 0x25dfdbfd, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:38:31 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x3, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0)

00:38:31 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) (fail_nth: 4)

00:38:31 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, 0x0, 0x0)

00:38:31 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(0xffffffffffffffff, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:38:31 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) (fail_nth: 4)

00:38:31 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  554.204869] FAULT_INJECTION: forcing a failure.
[  554.204869] name failslab, interval 1, probability 0, space 0, times 0
[  554.207204] CPU: 1 PID: 5640 Comm: syz-executor.4 Not tainted 5.10.90 #1
[  554.208570] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  554.210876] Call Trace:
[  554.211416]  dump_stack+0x107/0x163
[  554.212157]  should_fail.cold+0x5/0xa
[  554.212926]  ? create_object.isra.0+0x3a/0xa20
[  554.213855]  should_failslab+0x5/0x10
[  554.214626]  kmem_cache_alloc+0x5b/0x350
[  554.215464]  create_object.isra.0+0x3a/0xa20
[  554.216357]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[  554.217384]  __kmalloc+0x16e/0x3e0
[  554.218100]  ? _copy_from_user+0xfb/0x1b0
[  554.218950]  sco_sock_sendmsg+0x170/0x640
[  554.219790]  ? sco_sock_listen+0x320/0x320
[  554.220643]  ? __import_iovec+0x458/0x590
[  554.221486]  ? sco_sock_listen+0x320/0x320
[  554.222356]  sock_sendmsg+0x150/0x190
[  554.223159]  ____sys_sendmsg+0x709/0x870
[  554.223994]  ? kernel_sendmsg+0x50/0x50
[  554.224807]  ? __ia32_sys_recvmmsg+0x260/0x260
[  554.225742]  ? lock_downgrade+0x6d0/0x6d0
[  554.226578]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  554.227653]  ___sys_sendmsg+0xf3/0x170
[  554.228438]  ? sendmsg_copy_msghdr+0x160/0x160
[  554.229364]  ? lock_downgrade+0x6d0/0x6d0
[  554.230217]  ? __fget_files+0x304/0x500
[  554.231039]  ? __fget_light+0xea/0x280
[  554.231835]  __sys_sendmsg+0xe5/0x1b0
[  554.232604]  ? __sys_sendmsg_sock+0xb0/0xb0
[  554.233482]  ? rcu_read_lock_any_held+0x69/0x90
[  554.234438]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  554.235525]  ? syscall_enter_from_user_mode+0x1d/0x50
[  554.236569]  ? trace_hardirqs_on+0x5b/0x180
[  554.237446]  do_syscall_64+0x33/0x40
[  554.238205]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  554.239258] RIP: 0033:0x7fd0f2219b19
[  554.240015] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  554.243774] RSP: 002b:00007fd0ef78f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  554.245313] RAX: ffffffffffffffda RBX: 00007fd0f232cf60 RCX: 00007fd0f2219b19
[  554.246785] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000004
[  554.248236] RBP: 00007fd0ef78f1d0 R08: 0000000000000000 R09: 0000000000000000
[  554.249693] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  554.251148] R13: 00007ffc16319daf R14: 00007fd0ef78f300 R15: 0000000000022000
[  554.284828] FAULT_INJECTION: forcing a failure.
[  554.284828] name failslab, interval 1, probability 0, space 0, times 0
[  554.287196] CPU: 1 PID: 5649 Comm: syz-executor.0 Not tainted 5.10.90 #1
[  554.288575] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  554.290903] Call Trace:
[  554.291444]  dump_stack+0x107/0x163
[  554.292193]  should_fail.cold+0x5/0xa
[  554.292973]  ? create_object.isra.0+0x3a/0xa20
[  554.293909]  should_failslab+0x5/0x10
[  554.294692]  kmem_cache_alloc+0x5b/0x350
[  554.295529]  create_object.isra.0+0x3a/0xa20
[  554.296424]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[  554.297456]  __kmalloc+0x16e/0x3e0
[  554.298179]  ? _copy_from_user+0xfb/0x1b0
[  554.299043]  sco_sock_sendmsg+0x170/0x640
[  554.299894]  ? sco_sock_listen+0x320/0x320
[  554.300762]  ? __import_iovec+0x458/0x590
[  554.301610]  ? sco_sock_listen+0x320/0x320
[  554.302480]  sock_sendmsg+0x150/0x190
[  554.303284]  ____sys_sendmsg+0x709/0x870
[  554.304117]  ? kernel_sendmsg+0x50/0x50
[  554.304933]  ? __ia32_sys_recvmmsg+0x260/0x260
[  554.305878]  ? lock_downgrade+0x6d0/0x6d0
[  554.306733]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  554.307812]  ___sys_sendmsg+0xf3/0x170
[  554.308605]  ? sendmsg_copy_msghdr+0x160/0x160
[  554.309541]  ? lock_downgrade+0x6d0/0x6d0
[  554.310398]  ? __fget_files+0x304/0x500
[  554.311222]  ? __fget_light+0xea/0x280
[  554.312020]  __sys_sendmsg+0xe5/0x1b0
[  554.312803]  ? __sys_sendmsg_sock+0xb0/0xb0
[  554.313683]  ? rcu_read_lock_any_held+0x69/0x90
[  554.314647]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  554.315748]  ? syscall_enter_from_user_mode+0x1d/0x50
[  554.316796]  ? trace_hardirqs_on+0x5b/0x180
[  554.317694]  do_syscall_64+0x33/0x40
[  554.318450]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  554.319507] RIP: 0033:0x7ffbba52fb19
[  554.320263] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  554.324028] RSP: 002b:00007ffbb7aa5188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  554.325585] RAX: ffffffffffffffda RBX: 00007ffbba642f60 RCX: 00007ffbba52fb19
[  554.327050] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000004
[  554.328508] RBP: 00007ffbb7aa51d0 R08: 0000000000000000 R09: 0000000000000000
[  554.329965] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  554.331442] R13: 00007ffcdc85c30f R14: 00007ffbb7aa5300 R15: 0000000000022000
00:38:42 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) (fail_nth: 5)

00:38:42 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0xd8, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0xbc, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x94, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x2d, 0x2, [{0x0, 0x7}, {0x4, 0x3}, {0x5, 0x1}, {0x7, 0x1}, {0x6, 0x2}, {0x7, 0xa}, {0x6, 0x1}, {0x2, 0x1}, {0x4, 0x5}, {0x0, 0x3}, {0x1, 0x8}, {0x3, 0x3}, {0x5, 0x3}, {0x3, 0x7}, {0x5, 0xa}, {0x2, 0x8}, {0x6, 0x1}, {0x3, 0x3}, {0x0, 0x6}, {0x3, 0x6}, {0x5, 0x5}, {0x0, 0x8}, {0x5, 0x3}, {0x4, 0x8}, {0x4, 0x4}, {0x3, 0xa}, {0x5, 0x4}, {0x7, 0x3}, {0x2, 0xa}, {0x1, 0x9}, {0x3, 0x2}, {0x6, 0x6}, {0x7, 0x1}, {0x7, 0x4}, {0x5}, {0x7, 0x1}, {0x1, 0xa}, {0x7, 0x7}, {0x4, 0x6}, {0x4, 0x5}, {0x5, 0x8}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x8000, 0x20, 0x1, 0x3c7, 0x40, 0x3, 0x1, 0x401]}}, @NL80211_TXRATE_HT={0x4a, 0x2, [{0x7, 0x6}, {0x1, 0x1}, {0x2, 0x3}, {0x3}, {0x7, 0x7}, {0x0, 0x2}, {0x0, 0xa}, {0x4, 0xa}, {0x4}, {0x3, 0x1}, {0x1, 0x8}, {0x3, 0x6}, {0x4, 0x3}, {0x1, 0x4}, {0x1, 0x1}, {0x1, 0xa}, {0x1, 0x2}, {0x5, 0xa}, {0x5, 0x8}, {0x0, 0xa}, {0x6, 0x4}, {0x3, 0x1}, {0x2, 0xa}, {0x1, 0x1}, {0x6, 0x1}, {0x5, 0x9}, {0x7, 0x2}, {0x3, 0x9}, {0x5, 0x9}, {}, {0x2, 0x4}, {0x5, 0x9}, {0x5, 0x6}, {0x1, 0x6}, {0x1, 0x2}, {0x7}, {0x7, 0x4}, {0x2, 0x6}, {0x0, 0x3}, {0x5, 0x2}, {0x4, 0x6}, {0x7, 0xa}, {0x0, 0x7}, {0x1, 0x6}, {0x6, 0xa}, {0x5, 0x3}, {0x6, 0x2}, {0x6, 0x9}, {0x4, 0x1}, {0x5, 0x4}, {0x6, 0x4}, {0x1, 0x7}, {0x3, 0x8}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x5}, {0x0, 0x6}, {0x5, 0x6}, {0x5, 0xa}, {0x3, 0x5}, {0x1, 0x6}, {0x2}, {}, {0x4, 0x8}, {0x6, 0x8}, {0x6, 0x3}, {0x4, 0x7}, {0x0, 0x3}, {0x1, 0x9}, {0x0, 0x8}]}]}, @NL80211_BAND_60GHZ={0xc, 0x2, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x5, 0x6, 0x9, 0x8295, 0x2, 0x8000, 0x81, 0x100]}}]}]}]}, 0xd8}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

[  564.856888] FAULT_INJECTION: forcing a failure.
[  564.856888] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  564.859561] CPU: 1 PID: 5659 Comm: syz-executor.4 Not tainted 5.10.90 #1
[  564.861015] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  564.863505] Call Trace:
[  564.864076]  dump_stack+0x107/0x163
[  564.864887]  should_fail.cold+0x5/0xa
[  564.865715]  _copy_from_iter_full+0x1ff/0x940
[  564.866695]  ? __check_object_size+0x319/0x440
[  564.867699]  sco_sock_sendmsg+0x1cd/0x640
[  564.868613]  ? sco_sock_listen+0x320/0x320
[  564.869517]  ? __import_iovec+0x458/0x590
[  564.870436]  ? sco_sock_listen+0x320/0x320
[  564.871402]  sock_sendmsg+0x150/0x190
[  564.872231]  ____sys_sendmsg+0x709/0x870
[  564.873129]  ? kernel_sendmsg+0x50/0x50
[  564.873999]  ? __ia32_sys_recvmmsg+0x260/0x260
[  564.874998]  ? lock_downgrade+0x6d0/0x6d0
[  564.875890]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
00:38:42 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) (fail_nth: 5)

00:38:42 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:38:42 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 35)

00:38:42 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:38:42 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, 0x0, 0x0)

00:38:42 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x4, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0)

[  564.877024]  ___sys_sendmsg+0xf3/0x170
[  564.877967]  ? sendmsg_copy_msghdr+0x160/0x160
[  564.878991]  ? lock_downgrade+0x6d0/0x6d0
[  564.879883]  ? __fget_files+0x304/0x500
[  564.880754]  ? __fget_light+0xea/0x280
[  564.881589]  __sys_sendmsg+0xe5/0x1b0
[  564.882396]  ? __sys_sendmsg_sock+0xb0/0xb0
[  564.883317]  ? rcu_read_lock_any_held+0x69/0x90
[  564.884322]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  564.885443]  ? syscall_enter_from_user_mode+0x1d/0x50
[  564.886541]  ? trace_hardirqs_on+0x5b/0x180
[  564.887476]  do_syscall_64+0x33/0x40
[  564.888265]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  564.889350] RIP: 0033:0x7fd0f2219b19
[  564.890138] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  564.894054] RSP: 002b:00007fd0ef78f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  564.895687] RAX: ffffffffffffffda RBX: 00007fd0f232cf60 RCX: 00007fd0f2219b19
[  564.897200] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000004
[  564.898702] RBP: 00007fd0ef78f1d0 R08: 0000000000000000 R09: 0000000000000000
[  564.900229] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  564.901735] R13: 00007ffc16319daf R14: 00007fd0ef78f300 R15: 0000000000022000
[  564.904288] FAULT_INJECTION: forcing a failure.
[  564.904288] name failslab, interval 1, probability 0, space 0, times 0
[  564.906682] CPU: 1 PID: 5662 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  564.908123] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  564.910512] Call Trace:
[  564.911076]  dump_stack+0x107/0x163
[  564.911849]  should_fail.cold+0x5/0xa
[  564.912647]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
00:38:42 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:38:42 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x5, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0)

[  564.913768]  ? create_object.isra.0+0x3a/0xa20
[  564.914853]  should_failslab+0x5/0x10
[  564.915693]  kmem_cache_alloc+0x5b/0x350
[  564.916566]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  564.917691]  create_object.isra.0+0x3a/0xa20
[  564.918618]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[  564.919698]  __kmalloc+0x16e/0x3e0
[  564.920444]  sk_prot_alloc+0x119/0x2c0
[  564.921264]  sk_alloc+0x30/0x340
[  564.921970]  hci_sock_create+0xac/0x1c0
[  564.922818]  bt_sock_create+0x159/0x2b0
[  564.923657]  __sock_create+0x355/0x760
[  564.924476]  ? fput_many+0x2f/0x1a0
[  564.925246]  __sys_socket+0xef/0x200
[  564.926002]  ? __x64_sys_openat+0x13f/0x1f0
[  564.926907]  ? move_addr_to_kernel+0x70/0x70
[  564.927832]  ? ksys_write+0x1a5/0x250
[  564.928642]  __x64_sys_socket+0x6f/0xb0
[  564.929451]  ? syscall_enter_from_user_mode+0x1d/0x50
[  564.930511]  do_syscall_64+0x33/0x40
[  564.931279]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  564.932331] RIP: 0033:0x7fda1187bb19
[  564.933094] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  564.936864] RSP: 002b:00007fda0edf1128 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  564.938415] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1187bb19
[  564.939891] RDX: 0000000000000001 RSI: 0000000000000003 RDI: 000000000000001f
[  564.941367] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000
[  564.942841] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  564.944316] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
00:38:42 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  564.960971] FAULT_INJECTION: forcing a failure.
[  564.960971] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  564.962407] CPU: 0 PID: 5678 Comm: syz-executor.0 Not tainted 5.10.90 #1
[  564.963236] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  564.964573] Call Trace:
[  564.964889]  dump_stack+0x107/0x163
[  564.965320]  should_fail.cold+0x5/0xa
[  564.965782]  _copy_from_iter_full+0x1ff/0x940
[  564.966312]  ? __check_object_size+0x319/0x440
[  564.966849]  sco_sock_sendmsg+0x1cd/0x640
[  564.967350]  ? sco_sock_listen+0x320/0x320
[  564.967857]  ? __import_iovec+0x458/0x590
[  564.968346]  ? sco_sock_listen+0x320/0x320
[  564.968850]  sock_sendmsg+0x150/0x190
[  564.969303]  ____sys_sendmsg+0x709/0x870
[  564.969785]  ? kernel_sendmsg+0x50/0x50
[  564.970258]  ? __ia32_sys_recvmmsg+0x260/0x260
[  564.970810]  ? lock_downgrade+0x6d0/0x6d0
[  564.971322]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  564.971948]  ___sys_sendmsg+0xf3/0x170
[  564.972417]  ? sendmsg_copy_msghdr+0x160/0x160
[  564.972976]  ? lock_downgrade+0x6d0/0x6d0
[  564.973475]  ? __fget_files+0x304/0x500
[  564.973954]  ? __fget_light+0xea/0x280
[  564.974423]  __sys_sendmsg+0xe5/0x1b0
[  564.974884]  ? __sys_sendmsg_sock+0xb0/0xb0
[  564.975421]  ? rcu_read_lock_any_held+0x69/0x90
[  564.975979]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  564.976614]  ? syscall_enter_from_user_mode+0x1d/0x50
[  564.977235]  ? trace_hardirqs_on+0x5b/0x180
[  564.977749]  do_syscall_64+0x33/0x40
[  564.978193]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  564.978806] RIP: 0033:0x7ffbba52fb19
[  564.979254] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  564.981431] RSP: 002b:00007ffbb7aa5188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  564.982327] RAX: ffffffffffffffda RBX: 00007ffbba642f60 RCX: 00007ffbba52fb19
[  564.983174] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000004
[  564.984020] RBP: 00007ffbb7aa51d0 R08: 0000000000000000 R09: 0000000000000000
[  564.984866] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  564.985708] R13: 00007ffcdc85c30f R14: 00007ffbb7aa5300 R15: 0000000000022000
00:38:42 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, 0x0, 0x0)

00:38:42 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:38:42 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x40050}, 0x10000800)

00:38:42 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) (fail_nth: 6)

[  565.046593] FAULT_INJECTION: forcing a failure.
[  565.046593] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  565.048130] CPU: 0 PID: 5688 Comm: syz-executor.4 Not tainted 5.10.90 #1
[  565.048903] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  565.050208] Call Trace:
[  565.050520]  dump_stack+0x107/0x163
[  565.050948]  should_fail.cold+0x5/0xa
[  565.051387]  _copy_to_user+0x2e/0x180
[  565.051818]  simple_read_from_buffer+0xcc/0x160
[  565.052356]  proc_fail_nth_read+0x194/0x220
[  565.052852]  ? proc_sessionid_read+0x220/0x220
[  565.053378]  ? security_file_permission+0x24e/0x570
[  565.053945]  ? proc_sessionid_read+0x220/0x220
[  565.054464]  vfs_read+0x228/0x580
[  565.054859]  ksys_read+0x12d/0x250
[  565.055271]  ? __ia32_sys_pwrite64+0x230/0x230
[  565.055796]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  565.056396]  ? syscall_enter_from_user_mode+0x1d/0x50
[  565.056986]  do_syscall_64+0x33/0x40
[  565.057412]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  565.057994] RIP: 0033:0x7fd0f21cc69c
[  565.058416] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[  565.060538] RSP: 002b:00007fd0ef78f170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  565.061405] RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 00007fd0f21cc69c
[  565.062215] RDX: 000000000000000f RSI: 00007fd0ef78f1e0 RDI: 0000000000000003
[  565.063029] RBP: 00007fd0ef78f1d0 R08: 0000000000000000 R09: 0000000000000000
[  565.063840] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  565.064643] R13: 00007ffc16319daf R14: 00007fd0ef78f300 R15: 0000000000022000
00:38:55 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x6, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0)

00:38:55 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:38:55 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x10000800)

00:38:55 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 36)

00:38:55 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x10000800)

00:38:55 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={0x0}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:38:55 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) (fail_nth: 6)

00:38:55 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, 0x0, 0x0)

[  578.233292] FAULT_INJECTION: forcing a failure.
[  578.233292] name failslab, interval 1, probability 0, space 0, times 0
[  578.235685] CPU: 0 PID: 5708 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  578.237032] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  578.239350] Call Trace:
[  578.239897]  dump_stack+0x107/0x163
[  578.240637]  should_fail.cold+0x5/0xa
[  578.241416]  ? selinux_sk_alloc_security+0x8b/0x1b0
[  578.242442]  should_failslab+0x5/0x10
[  578.243225]  kmem_cache_alloc_trace+0x55/0x360
[  578.244162]  selinux_sk_alloc_security+0x8b/0x1b0
[  578.244322] FAULT_INJECTION: forcing a failure.
[  578.244322] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  578.245166]  security_sk_alloc+0x56/0xb0
[  578.245198]  sk_prot_alloc+0x133/0x2c0
[  578.249233]  sk_alloc+0x30/0x340
[  578.249926]  hci_sock_create+0xac/0x1c0
[  578.250749]  bt_sock_create+0x159/0x2b0
[  578.251579]  __sock_create+0x355/0x760
[  578.252367]  ? fput_many+0x2f/0x1a0
[  578.253108]  __sys_socket+0xef/0x200
[  578.253857]  ? __x64_sys_openat+0x13f/0x1f0
[  578.254730]  ? move_addr_to_kernel+0x70/0x70
[  578.255626]  ? ksys_write+0x1a5/0x250
[  578.256404]  __x64_sys_socket+0x6f/0xb0
[  578.257203]  ? syscall_enter_from_user_mode+0x1d/0x50
[  578.258248]  do_syscall_64+0x33/0x40
[  578.258998]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  578.260056] RIP: 0033:0x7fda1187bb19
[  578.260812] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  578.264563] RSP: 002b:00007fda0edf1128 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  578.266099] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1187bb19
[  578.267573] RDX: 0000000000000001 RSI: 0000000000000003 RDI: 000000000000001f
[  578.269029] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000
[  578.270491] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  578.271971] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
[  578.273464] CPU: 1 PID: 5709 Comm: syz-executor.0 Not tainted 5.10.90 #1
[  578.274871] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  578.277209] Call Trace:
[  578.277748]  dump_stack+0x107/0x163
[  578.278506]  should_fail.cold+0x5/0xa
[  578.279309]  _copy_to_user+0x2e/0x180
[  578.280087]  simple_read_from_buffer+0xcc/0x160
[  578.281032]  proc_fail_nth_read+0x194/0x220
[  578.281931]  ? proc_sessionid_read+0x220/0x220
[  578.282859]  ? security_file_permission+0x24e/0x570
[  578.283897]  ? proc_sessionid_read+0x220/0x220
[  578.284825]  vfs_read+0x228/0x580
[  578.285536]  ksys_read+0x12d/0x250
[  578.286256]  ? __ia32_sys_pwrite64+0x230/0x230
[  578.287205]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  578.288275]  ? syscall_enter_from_user_mode+0x1d/0x50
[  578.289346]  do_syscall_64+0x33/0x40
[  578.290100]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  578.291172] RIP: 0033:0x7ffbba4e269c
[  578.291937] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[  578.295725] RSP: 002b:00007ffbb7aa5170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  578.297272] RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 00007ffbba4e269c
[  578.298746] RDX: 000000000000000f RSI: 00007ffbb7aa51e0 RDI: 0000000000000003
[  578.300203] RBP: 00007ffbb7aa51d0 R08: 0000000000000000 R09: 0000000000000000
[  578.301660] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  578.303120] R13: 00007ffcdc85c30f R14: 00007ffbb7aa5300 R15: 0000000000022000
00:38:55 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:38:55 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:38:55 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x7, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0)

00:38:55 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={0x0}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:38:55 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:38:55 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:38:55 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:38:55 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x2, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:38:55 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:38:56 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 37)

00:38:56 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={0x0}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:38:56 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

[  578.545279] FAULT_INJECTION: forcing a failure.
[  578.545279] name failslab, interval 1, probability 0, space 0, times 0
[  578.547756] CPU: 0 PID: 5732 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  578.549146] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  578.551467] Call Trace:
[  578.552010]  dump_stack+0x107/0x163
[  578.552753]  should_fail.cold+0x5/0xa
[  578.553526]  ? create_object.isra.0+0x3a/0xa20
[  578.554454]  should_failslab+0x5/0x10
[  578.555234]  kmem_cache_alloc+0x5b/0x350
[  578.556058]  create_object.isra.0+0x3a/0xa20
[  578.556944]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[  578.557970]  kmem_cache_alloc_trace+0x151/0x360
[  578.558913]  selinux_sk_alloc_security+0x8b/0x1b0
[  578.559906]  security_sk_alloc+0x56/0xb0
[  578.560729]  sk_prot_alloc+0x133/0x2c0
[  578.561690]  sk_alloc+0x30/0x340
[  578.562377]  hci_sock_create+0xac/0x1c0
[  578.563207]  bt_sock_create+0x159/0x2b0
[  578.564012]  __sock_create+0x355/0x760
[  578.564802]  ? fput_many+0x2f/0x1a0
[  578.565543]  __sys_socket+0xef/0x200
[  578.566289]  ? __x64_sys_openat+0x13f/0x1f0
[  578.567180]  ? move_addr_to_kernel+0x70/0x70
[  578.568067]  ? ksys_write+0x1a5/0x250
[  578.568854]  __x64_sys_socket+0x6f/0xb0
[  578.569685]  ? syscall_enter_from_user_mode+0x1d/0x50
[  578.570721]  do_syscall_64+0x33/0x40
[  578.571484]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  578.572507] RIP: 0033:0x7fda1187bb19
[  578.573253] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  578.576968] RSP: 002b:00007fda0edf1128 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  578.578489] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1187bb19
[  578.579920] RDX: 0000000000000001 RSI: 0000000000000003 RDI: 000000000000001f
[  578.581340] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000
[  578.582760] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  578.584198] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
00:39:08 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 38)

00:39:08 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x9, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0)

00:39:08 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x2, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:39:08 executing program 2:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, 0x0, 0x0)

00:39:08 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:39:08 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x1000000, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:39:08 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) (fail_nth: 1)

00:39:08 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  591.298222] FAULT_INJECTION: forcing a failure.
[  591.298222] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  591.300760] CPU: 0 PID: 5758 Comm: syz-executor.5 Not tainted 5.10.90 #1
[  591.302161] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  591.303462] FAULT_INJECTION: forcing a failure.
[  591.303462] name failslab, interval 1, probability 0, space 0, times 0
[  591.304507] Call Trace:
[  591.304531]  dump_stack+0x107/0x163
[  591.304555]  should_fail.cold+0x5/0xa
[  591.308827]  _copy_from_user+0x2e/0x1b0
[  591.309661]  __copy_msghdr_from_user+0x91/0x4b0
[  591.310653]  ? __ia32_sys_shutdown+0x70/0x70
[  591.311820]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  591.313196]  ? __lock_acquire+0x1653/0x5b00
[  591.314331]  ? __lock_acquire+0xbb1/0x5b00
[  591.315494]  sendmsg_copy_msghdr+0xa1/0x160
[  591.316622]  ? __ia32_sys_recvmmsg+0x260/0x260
[  591.317708]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  591.318798]  ? lock_downgrade+0x6d0/0x6d0
[  591.319687]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  591.320779]  ___sys_sendmsg+0xc6/0x170
[  591.321582]  ? sendmsg_copy_msghdr+0x160/0x160
[  591.322522]  ? __fget_files+0x2db/0x500
[  591.323369]  ? lock_downgrade+0x6d0/0x6d0
[  591.324243]  ? __fget_files+0x304/0x500
[  591.325094]  ? __fget_light+0xea/0x280
[  591.325978]  __sys_sendmsg+0xe5/0x1b0
[  591.326767]  ? __sys_sendmsg_sock+0xb0/0xb0
[  591.327676]  ? rcu_read_lock_any_held+0x69/0x90
[  591.328640]  ? fput_many+0x2f/0x1a0
[  591.329398]  ? ksys_write+0x1a5/0x250
[  591.330227]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  591.331328]  ? syscall_enter_from_user_mode+0x1d/0x50
[  591.332430]  ? trace_hardirqs_on+0x5b/0x180
[  591.333319]  do_syscall_64+0x33/0x40
[  591.334084]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  591.335133] RIP: 0033:0x7f61602c9b19
[  591.335911] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  591.339775] RSP: 002b:00007f615d83f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  591.341385] RAX: ffffffffffffffda RBX: 00007f61603dcf60 RCX: 00007f61602c9b19
[  591.342840] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000004
[  591.344337] RBP: 00007f615d83f1d0 R08: 0000000000000000 R09: 0000000000000000
[  591.345814] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  591.347261] R13: 00007ffff9aa72bf R14: 00007f615d83f300 R15: 0000000000022000
[  591.348749] CPU: 1 PID: 5763 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  591.350137] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  591.352414] Call Trace:
[  591.352956]  dump_stack+0x107/0x163
[  591.353689]  should_fail.cold+0x5/0xa
[  591.354455]  ? __d_alloc+0x2a/0x990
[  591.355189]  should_failslab+0x5/0x10
[  591.355998]  kmem_cache_alloc+0x5b/0x350
[  591.356824]  ? find_held_lock+0x2c/0x110
[  591.357675]  __d_alloc+0x2a/0x990
[  591.358368]  ? __alloc_fd+0x2a5/0x620
[  591.359154]  d_alloc_pseudo+0x19/0x70
[  591.359946]  alloc_file_pseudo+0xce/0x250
[  591.360783]  ? alloc_file+0x590/0x590
[  591.361558]  ? _raw_spin_unlock+0x1a/0x30
[  591.362392]  ? __alloc_fd+0x2a5/0x620
[  591.363152]  sock_alloc_file+0x4f/0x190
[  591.363976]  __sys_socket+0x13d/0x200
[  591.364724]  ? __x64_sys_openat+0x13f/0x1f0
[  591.365595]  ? move_addr_to_kernel+0x70/0x70
[  591.366487]  ? ksys_write+0x1a5/0x250
[  591.367251]  __x64_sys_socket+0x6f/0xb0
[  591.368049]  ? syscall_enter_from_user_mode+0x1d/0x50
[  591.369100]  do_syscall_64+0x33/0x40
[  591.369839]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  591.370876] RIP: 0033:0x7fda1187bb19
[  591.371649] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  591.375360] RSP: 002b:00007fda0edf1128 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  591.376874] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1187bb19
[  591.378333] RDX: 0000000000000001 RSI: 0000000000000003 RDI: 000000000000001f
[  591.379808] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000
[  591.381232] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
00:39:08 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  591.382671] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
00:39:08 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) (fail_nth: 1)

00:39:08 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x2000000, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:39:08 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={0x0}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  591.458917] FAULT_INJECTION: forcing a failure.
[  591.458917] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  591.461375] CPU: 1 PID: 5772 Comm: syz-executor.2 Not tainted 5.10.90 #1
[  591.462700] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  591.464910] Call Trace:
[  591.465432]  dump_stack+0x107/0x163
[  591.466149]  should_fail.cold+0x5/0xa
[  591.466897]  _copy_from_user+0x2e/0x1b0
[  591.467680]  __copy_msghdr_from_user+0x91/0x4b0
[  591.468579]  ? __ia32_sys_shutdown+0x70/0x70
[  591.469429]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  591.470444]  ? __lock_acquire+0x1653/0x5b00
[  591.471276]  ? __lock_acquire+0xbb1/0x5b00
[  591.472113]  sendmsg_copy_msghdr+0xa1/0x160
[  591.472945]  ? __ia32_sys_recvmmsg+0x260/0x260
[  591.473822]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  591.474831]  ? lock_downgrade+0x6d0/0x6d0
[  591.475644]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  591.476660]  ___sys_sendmsg+0xc6/0x170
[  591.477416]  ? sendmsg_copy_msghdr+0x160/0x160
[  591.478323]  ? __fget_files+0x2db/0x500
[  591.479086]  ? lock_downgrade+0x6d0/0x6d0
[  591.479916]  ? __fget_files+0x304/0x500
[  591.480701]  ? __fget_light+0xea/0x280
[  591.481464]  __sys_sendmsg+0xe5/0x1b0
[  591.482202]  ? __sys_sendmsg_sock+0xb0/0xb0
[  591.483036]  ? rcu_read_lock_any_held+0x69/0x90
[  591.483952]  ? fput_many+0x2f/0x1a0
[  591.484661]  ? ksys_write+0x1a5/0x250
[  591.485409]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  591.486439]  ? syscall_enter_from_user_mode+0x1d/0x50
[  591.487450]  ? trace_hardirqs_on+0x5b/0x180
[  591.488267]  do_syscall_64+0x33/0x40
[  591.489012]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  591.490018] RIP: 0033:0x7fd9ad034b19
[  591.490735] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  591.494361] RSP: 002b:00007fd9aa5aa188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  591.495813] RAX: ffffffffffffffda RBX: 00007fd9ad147f60 RCX: 00007fd9ad034b19
[  591.497186] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000004
[  591.498564] RBP: 00007fd9aa5aa1d0 R08: 0000000000000000 R09: 0000000000000000
[  591.499942] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  591.501321] R13: 00007ffd7d6c94ef R14: 00007fd9aa5aa300 R15: 0000000000022000
00:39:09 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0xa, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0)

00:39:09 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x1000000, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:39:20 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) (fail_nth: 2)

00:39:20 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) (fail_nth: 2)

00:39:20 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x2000000, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:39:20 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:39:20 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={0x0}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:39:20 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 39)

00:39:20 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0xf, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0)

00:39:20 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0xffffff7f, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

[  602.856852] FAULT_INJECTION: forcing a failure.
[  602.856852] name failslab, interval 1, probability 0, space 0, times 0
[  602.859165] CPU: 0 PID: 5802 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  602.860543] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  602.862808] Call Trace:
[  602.863336]  dump_stack+0x107/0x163
[  602.864092]  should_fail.cold+0x5/0xa
[  602.864859]  ? create_object.isra.0+0x3a/0xa20
[  602.865772]  should_failslab+0x5/0x10
[  602.866535]  kmem_cache_alloc+0x5b/0x350
[  602.866966] FAULT_INJECTION: forcing a failure.
[  602.866966] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  602.867362]  create_object.isra.0+0x3a/0xa20
[  602.867377]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[  602.867406]  kmem_cache_alloc+0x159/0x350
[  602.872945]  __d_alloc+0x2a/0x990
[  602.873643]  ? __alloc_fd+0x2a5/0x620
[  602.874408]  d_alloc_pseudo+0x19/0x70
[  602.875174]  alloc_file_pseudo+0xce/0x250
[  602.876027]  ? alloc_file+0x590/0x590
[  602.876798]  ? _raw_spin_unlock+0x1a/0x30
[  602.877623]  ? __alloc_fd+0x2a5/0x620
[  602.878393]  sock_alloc_file+0x4f/0x190
[  602.879190]  __sys_socket+0x13d/0x200
[  602.879967]  ? move_addr_to_kernel+0x70/0x70
[  602.880858]  __x64_sys_socket+0x6f/0xb0
[  602.881657]  ? syscall_enter_from_user_mode+0x1d/0x50
[  602.882701]  do_syscall_64+0x33/0x40
[  602.883449]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  602.884499] RIP: 0033:0x7fda1187bb19
[  602.885244] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  602.888946] RSP: 002b:00007fda0edf1128 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  602.890476] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1187bb19
[  602.891914] RDX: 0000000000000001 RSI: 0000000000000003 RDI: 000000000000001f
[  602.893341] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000
[  602.894777] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  602.896222] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
[  602.897695] CPU: 1 PID: 5806 Comm: syz-executor.5 Not tainted 5.10.90 #1
[  602.899671] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  602.902829] Call Trace:
[  602.903608]  dump_stack+0x107/0x163
[  602.904716]  should_fail.cold+0x5/0xa
[  602.905813]  _copy_from_user+0x2e/0x1b0
[  602.906937]  iovec_from_user+0x139/0x3f0
[  602.908040]  __import_iovec+0x67/0x590
[  602.909042]  ? __ia32_sys_shutdown+0x70/0x70
[  602.910074]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  602.911320]  import_iovec+0x83/0xb0
[  602.912186]  sendmsg_copy_msghdr+0x12d/0x160
[  602.913232]  ? __ia32_sys_recvmmsg+0x260/0x260
[  602.914319]  ? lock_downgrade+0x6d0/0x6d0
[  602.915291]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  602.916551]  ___sys_sendmsg+0xc6/0x170
[  602.917474]  ? sendmsg_copy_msghdr+0x160/0x160
[  602.918545]  ? __fget_files+0x2db/0x500
[  602.919489]  ? lock_downgrade+0x6d0/0x6d0
[  602.920504]  ? __fget_files+0x304/0x500
[  602.921464]  ? __fget_light+0xea/0x280
[  602.922391]  __sys_sendmsg+0xe5/0x1b0
[  602.923273]  ? __sys_sendmsg_sock+0xb0/0xb0
[  602.924299]  ? rcu_read_lock_any_held+0x69/0x90
[  602.925402]  ? fput_many+0x2f/0x1a0
[  602.926257]  ? ksys_write+0x1a5/0x250
[  602.927172]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  602.928409]  ? syscall_enter_from_user_mode+0x1d/0x50
00:39:20 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={0x0}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  602.929627]  ? trace_hardirqs_on+0x5b/0x180
[  602.930826]  do_syscall_64+0x33/0x40
[  602.931717]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  602.932905] RIP: 0033:0x7f61602c9b19
00:39:20 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x2000039c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

[  602.933784] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  602.938190] RSP: 002b:00007f615d83f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  602.939978] RAX: ffffffffffffffda RBX: 00007f61603dcf60 RCX: 00007f61602c9b19
[  602.941620] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000004
[  602.943263] RBP: 00007f615d83f1d0 R08: 0000000000000000 R09: 0000000000000000
[  602.944915] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  602.946554] R13: 00007ffff9aa72bf R14: 00007f615d83f300 R15: 0000000000022000
[  602.957001] FAULT_INJECTION: forcing a failure.
[  602.957001] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  602.959838] CPU: 1 PID: 5804 Comm: syz-executor.2 Not tainted 5.10.90 #1
[  602.961392] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  602.963980] Call Trace:
[  602.964596]  dump_stack+0x107/0x163
[  602.965443]  should_fail.cold+0x5/0xa
[  602.966316]  _copy_from_user+0x2e/0x1b0
[  602.967211]  iovec_from_user+0x139/0x3f0
[  602.968142]  __import_iovec+0x67/0x590
[  602.969017]  ? __ia32_sys_shutdown+0x70/0x70
[  602.970012]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  602.971207]  import_iovec+0x83/0xb0
[  602.972056]  sendmsg_copy_msghdr+0x12d/0x160
[  602.973047]  ? __ia32_sys_recvmmsg+0x260/0x260
[  602.974089]  ? lock_downgrade+0x6d0/0x6d0
[  602.975030]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  602.976239]  ___sys_sendmsg+0xc6/0x170
[  602.977121]  ? sendmsg_copy_msghdr+0x160/0x160
[  602.978159]  ? __fget_files+0x2db/0x500
[  602.979060]  ? lock_downgrade+0x6d0/0x6d0
[  602.980035]  ? __fget_files+0x304/0x500
[  602.980956]  ? __fget_light+0xea/0x280
[  602.981842]  __sys_sendmsg+0xe5/0x1b0
[  602.982697]  ? __sys_sendmsg_sock+0xb0/0xb0
[  602.983672]  ? rcu_read_lock_any_held+0x69/0x90
[  602.984733]  ? fput_many+0x2f/0x1a0
[  602.985553]  ? ksys_write+0x1a5/0x250
[  602.986415]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  602.987601]  ? syscall_enter_from_user_mode+0x1d/0x50
[  602.988752]  ? trace_hardirqs_on+0x5b/0x180
[  602.989736]  do_syscall_64+0x33/0x40
[  602.990581]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  602.991747] RIP: 0033:0x7fd9ad034b19
[  602.992586] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  602.996789] RSP: 002b:00007fd9aa5aa188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  602.998610] RAX: ffffffffffffffda RBX: 00007fd9ad147f60 RCX: 00007fd9ad034b19
[  603.000620] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000004
[  603.002571] RBP: 00007fd9aa5aa1d0 R08: 0000000000000000 R09: 0000000000000000
[  603.004536] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  603.006487] R13: 00007ffd7d6c94ef R14: 00007fd9aa5aa300 R15: 0000000000022000
00:39:20 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, r1, 0x0, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  614.447601] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak)
00:39:39 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) (fail_nth: 3)

00:39:39 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) (fail_nth: 3)

00:39:39 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:39:39 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0xffffff7f, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:39:39 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x7ffff000, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:39:39 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x14, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0)

00:39:39 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 40)

00:39:39 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, r1, 0x0, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  621.813835] FAULT_INJECTION: forcing a failure.
[  621.813835] name failslab, interval 1, probability 0, space 0, times 0
[  621.816252] CPU: 0 PID: 5829 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  621.817619] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  621.819935] Call Trace:
[  621.820472]  dump_stack+0x107/0x163
[  621.821205]  should_fail.cold+0x5/0xa
[  621.821987]  ? create_object.isra.0+0x3a/0xa20
[  621.822907]  should_failslab+0x5/0x10
[  621.823682]  kmem_cache_alloc+0x5b/0x350
[  621.824538]  create_object.isra.0+0x3a/0xa20
[  621.825426]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[  621.826461]  kmem_cache_alloc+0x159/0x350
[  621.827305]  __d_alloc+0x2a/0x990
[  621.828042]  ? __alloc_fd+0x2a5/0x620
[  621.828813]  d_alloc_pseudo+0x19/0x70
[  621.829594]  alloc_file_pseudo+0xce/0x250
[  621.830429]  ? alloc_file+0x590/0x590
[  621.831154] FAULT_INJECTION: forcing a failure.
[  621.831154] name failslab, interval 1, probability 0, space 0, times 0
[  621.831193]  ? _raw_spin_unlock+0x1a/0x30
[  621.834289]  ? __alloc_fd+0x2a5/0x620
[  621.835075]  sock_alloc_file+0x4f/0x190
[  621.835907]  __sys_socket+0x13d/0x200
[  621.836674]  ? __x64_sys_openat+0x13f/0x1f0
[  621.837547]  ? move_addr_to_kernel+0x70/0x70
[  621.838447]  ? ksys_write+0x1a5/0x250
[  621.839239]  __x64_sys_socket+0x6f/0xb0
[  621.840100]  ? syscall_enter_from_user_mode+0x1d/0x50
[  621.841146]  do_syscall_64+0x33/0x40
[  621.841901]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  621.842941] RIP: 0033:0x7fda1187bb19
[  621.843699] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  621.847451] RSP: 002b:00007fda0edf1128 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  621.849020] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1187bb19
[  621.850467] RDX: 0000000000000001 RSI: 0000000000000003 RDI: 000000000000001f
[  621.851926] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000
[  621.853374] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  621.854820] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
[  621.856307] CPU: 1 PID: 5842 Comm: syz-executor.2 Not tainted 5.10.90 #1
[  621.857699] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  621.860024] Call Trace:
[  621.860558]  dump_stack+0x107/0x163
[  621.861297]  should_fail.cold+0x5/0xa
[  621.862074]  ? sco_sock_sendmsg+0x170/0x640
[  621.862948]  should_failslab+0x5/0x10
[  621.863714]  __kmalloc+0x72/0x3e0
[  621.864424]  ? _copy_from_user+0xfb/0x1b0
[  621.865264]  sco_sock_sendmsg+0x170/0x640
[  621.866104]  ? sco_sock_listen+0x320/0x320
[  621.866959]  ? __import_iovec+0x458/0x590
[  621.867809]  ? sco_sock_listen+0x320/0x320
[  621.868691]  sock_sendmsg+0x150/0x190
[  621.869465]  ____sys_sendmsg+0x709/0x870
[  621.870288]  ? kernel_sendmsg+0x50/0x50
[  621.871086]  ? __ia32_sys_recvmmsg+0x260/0x260
[  621.872021]  ? lock_downgrade+0x6d0/0x6d0
[  621.872860]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  621.873922]  ___sys_sendmsg+0xf3/0x170
[  621.874708]  ? sendmsg_copy_msghdr+0x160/0x160
[  621.875637]  ? lock_downgrade+0x6d0/0x6d0
[  621.876497]  ? __fget_files+0x304/0x500
[  621.877311]  ? __fget_light+0xea/0x280
[  621.878103]  __sys_sendmsg+0xe5/0x1b0
[  621.878869]  ? __sys_sendmsg_sock+0xb0/0xb0
[  621.879740]  ? rcu_read_lock_any_held+0x69/0x90
[  621.880716]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  621.881778]  ? syscall_enter_from_user_mode+0x1d/0x50
[  621.882821]  ? trace_hardirqs_on+0x5b/0x180
[  621.883697]  do_syscall_64+0x33/0x40
[  621.884461]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  621.885499] RIP: 0033:0x7fd9ad034b19
[  621.886248] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  621.889996] RSP: 002b:00007fd9aa5aa188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  621.891538] RAX: ffffffffffffffda RBX: 00007fd9ad147f60 RCX: 00007fd9ad034b19
[  621.892992] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000004
[  621.894439] RBP: 00007fd9aa5aa1d0 R08: 0000000000000000 R09: 0000000000000000
[  621.895894] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  621.897339] R13: 00007ffd7d6c94ef R14: 00007fd9aa5aa300 R15: 0000000000022000
00:39:39 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, r1, 0x0, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  621.900240] FAULT_INJECTION: forcing a failure.
[  621.900240] name failslab, interval 1, probability 0, space 0, times 0
[  621.902899] CPU: 1 PID: 5838 Comm: syz-executor.5 Not tainted 5.10.90 #1
[  621.904292] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  621.906602] Call Trace:
[  621.907139]  dump_stack+0x107/0x163
[  621.907903]  should_fail.cold+0x5/0xa
[  621.908685]  ? sco_sock_sendmsg+0x170/0x640
[  621.909566]  should_failslab+0x5/0x10
[  621.910339]  __kmalloc+0x72/0x3e0
[  621.911039]  ? _copy_from_user+0xfb/0x1b0
[  621.911906]  sco_sock_sendmsg+0x170/0x640
[  621.912768]  ? sco_sock_listen+0x320/0x320
[  621.913628]  ? __import_iovec+0x458/0x590
[  621.914477]  ? sco_sock_listen+0x320/0x320
[  621.915343]  sock_sendmsg+0x150/0x190
[  621.916130]  ____sys_sendmsg+0x709/0x870
[  621.916957]  ? kernel_sendmsg+0x50/0x50
[  621.917760]  ? __ia32_sys_recvmmsg+0x260/0x260
[  621.918690]  ? lock_downgrade+0x6d0/0x6d0
[  621.919533]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  621.920613]  ___sys_sendmsg+0xf3/0x170
[  621.921402]  ? sendmsg_copy_msghdr+0x160/0x160
[  621.922331]  ? lock_downgrade+0x6d0/0x6d0
[  621.923201]  ? __fget_files+0x304/0x500
[  621.924023]  ? __fget_light+0xea/0x280
[  621.924844]  __sys_sendmsg+0xe5/0x1b0
[  621.925614]  ? __sys_sendmsg_sock+0xb0/0xb0
[  621.926489]  ? rcu_read_lock_any_held+0x69/0x90
[  621.927448]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  621.928533]  ? syscall_enter_from_user_mode+0x1d/0x50
[  621.929579]  ? trace_hardirqs_on+0x5b/0x180
[  621.930472]  do_syscall_64+0x33/0x40
[  621.931229]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  621.932296] RIP: 0033:0x7f61602c9b19
[  621.933052] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  621.936800] RSP: 002b:00007f615d83f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  621.938376] RAX: ffffffffffffffda RBX: 00007f61603dcf60 RCX: 00007f61602c9b19
[  621.939838] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000004
[  621.941289] RBP: 00007f615d83f1d0 R08: 0000000000000000 R09: 0000000000000000
[  621.942746] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  621.944217] R13: 00007ffff9aa72bf R14: 00007f615d83f300 R15: 0000000000022000
00:39:39 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:39:39 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:39:39 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x37, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0)

00:39:39 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x2000039c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:39:39 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:39:39 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) (fail_nth: 4)

00:39:39 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r1=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, 0x0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  622.102197] FAULT_INJECTION: forcing a failure.
[  622.102197] name failslab, interval 1, probability 0, space 0, times 0
[  622.104584] CPU: 1 PID: 5862 Comm: syz-executor.5 Not tainted 5.10.90 #1
[  622.105960] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  622.108301] Call Trace:
[  622.108847]  dump_stack+0x107/0x163
[  622.109593]  should_fail.cold+0x5/0xa
[  622.110376]  ? create_object.isra.0+0x3a/0xa20
[  622.111313]  should_failslab+0x5/0x10
[  622.112094]  kmem_cache_alloc+0x5b/0x350
[  622.112924]  create_object.isra.0+0x3a/0xa20
[  622.113820]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[  622.114853]  __kmalloc+0x16e/0x3e0
[  622.115572]  ? _copy_from_user+0xfb/0x1b0
[  622.116436]  sco_sock_sendmsg+0x170/0x640
[  622.117284]  ? sco_sock_listen+0x320/0x320
[  622.118143]  ? __import_iovec+0x458/0x590
[  622.118989]  ? sco_sock_listen+0x320/0x320
[  622.119863]  sock_sendmsg+0x150/0x190
[  622.120641]  ____sys_sendmsg+0x709/0x870
[  622.121471]  ? kernel_sendmsg+0x50/0x50
[  622.122275]  ? __ia32_sys_recvmmsg+0x260/0x260
[  622.123209]  ? lock_downgrade+0x6d0/0x6d0
[  622.124068]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  622.125135]  ___sys_sendmsg+0xf3/0x170
[  622.125923]  ? sendmsg_copy_msghdr+0x160/0x160
[  622.126855]  ? lock_downgrade+0x6d0/0x6d0
[  622.127709]  ? __fget_files+0x304/0x500
[  622.128535]  ? __fget_light+0xea/0x280
[  622.129328]  __sys_sendmsg+0xe5/0x1b0
[  622.130104]  ? __sys_sendmsg_sock+0xb0/0xb0
[  622.130983]  ? rcu_read_lock_any_held+0x69/0x90
[  622.131960]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  622.133026]  ? syscall_enter_from_user_mode+0x1d/0x50
[  622.134072]  ? trace_hardirqs_on+0x5b/0x180
[  622.134948]  do_syscall_64+0x33/0x40
[  622.135705]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  622.136760] RIP: 0033:0x7f61602c9b19
[  622.137515] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  622.141258] RSP: 002b:00007f615d83f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  622.142805] RAX: ffffffffffffffda RBX: 00007f61603dcf60 RCX: 00007f61602c9b19
[  622.144273] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000004
[  622.145724] RBP: 00007f615d83f1d0 R08: 0000000000000000 R09: 0000000000000000
[  622.147176] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  622.148640] R13: 00007ffff9aa72bf R14: 00007f615d83f300 R15: 0000000000022000
00:39:51 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) (fail_nth: 5)

00:39:51 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  634.179531] FAULT_INJECTION: forcing a failure.
[  634.179531] name failslab, interval 1, probability 0, space 0, times 0
[  634.181902] CPU: 1 PID: 5877 Comm: syz-executor.2 Not tainted 5.10.90 #1
[  634.183279] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  634.185583] Call Trace:
[  634.186121]  dump_stack+0x107/0x163
[  634.186575] FAULT_INJECTION: forcing a failure.
[  634.186575] name failslab, interval 1, probability 0, space 0, times 0
[  634.186861]  should_fail.cold+0x5/0xa
[  634.189866]  ? create_object.isra.0+0x3a/0xa20
[  634.190797]  should_failslab+0x5/0x10
[  634.191566]  kmem_cache_alloc+0x5b/0x350
[  634.192403]  create_object.isra.0+0x3a/0xa20
[  634.193302]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[  634.194348]  __kmalloc+0x16e/0x3e0
[  634.195062]  ? _copy_from_user+0xfb/0x1b0
[  634.195922]  sco_sock_sendmsg+0x170/0x640
[  634.196790]  ? sco_sock_listen+0x320/0x320
[  634.197663]  ? __import_iovec+0x458/0x590
[  634.198504]  ? sco_sock_listen+0x320/0x320
[  634.199365]  sock_sendmsg+0x150/0x190
[  634.200154]  ____sys_sendmsg+0x709/0x870
[  634.200979]  ? kernel_sendmsg+0x50/0x50
[  634.201762]  ? __ia32_sys_recvmmsg+0x260/0x260
[  634.202683]  ? lock_downgrade+0x6d0/0x6d0
[  634.203525]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  634.204591]  ___sys_sendmsg+0xf3/0x170
[  634.205374]  ? sendmsg_copy_msghdr+0x160/0x160
[  634.206296]  ? lock_downgrade+0x6d0/0x6d0
[  634.207148]  ? __fget_files+0x304/0x500
[  634.207952]  ? __fget_light+0xea/0x280
[  634.208759]  __sys_sendmsg+0xe5/0x1b0
[  634.209529]  ? __sys_sendmsg_sock+0xb0/0xb0
[  634.210394]  ? rcu_read_lock_any_held+0x69/0x90
[  634.211342]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  634.212392]  ? syscall_enter_from_user_mode+0x1d/0x50
[  634.213434]  ? trace_hardirqs_on+0x5b/0x180
[  634.214297]  do_syscall_64+0x33/0x40
[  634.215047]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  634.216078] RIP: 0033:0x7fd9ad034b19
[  634.216823] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  634.220478] RSP: 002b:00007fd9aa5aa188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  634.221977] RAX: ffffffffffffffda RBX: 00007fd9ad147f60 RCX: 00007fd9ad034b19
[  634.223401] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000004
[  634.224828] RBP: 00007fd9aa5aa1d0 R08: 0000000000000000 R09: 0000000000000000
[  634.226244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  634.227664] R13: 00007ffd7d6c94ef R14: 00007fd9aa5aa300 R15: 0000000000022000
[  634.229114] CPU: 0 PID: 5879 Comm: syz-executor.7 Not tainted 5.10.90 #1
00:39:51 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x7ffff000, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:39:51 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 41)

00:39:51 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x2, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:39:51 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x3c, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0)

00:39:51 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) (fail_nth: 4)

00:39:51 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x0, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  634.230471] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  634.233060] Call Trace:
[  634.233593]  dump_stack+0x107/0x163
[  634.234325]  should_fail.cold+0x5/0xa
[  634.235088]  ? create_object.isra.0+0x3a/0xa20
[  634.236020]  should_failslab+0x5/0x10
[  634.236787]  kmem_cache_alloc+0x5b/0x350
[  634.237622]  create_object.isra.0+0x3a/0xa20
[  634.238504]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[  634.239534]  kmem_cache_alloc+0x159/0x350
[  634.240389]  __alloc_file+0x21/0x310
[  634.241138]  alloc_empty_file+0x6d/0x170
[  634.241953]  alloc_file+0x59/0x590
[  634.242676]  alloc_file_pseudo+0x16a/0x250
[  634.243524]  ? alloc_file+0x590/0x590
[  634.244301]  ? __alloc_fd+0x2a5/0x620
[  634.245074]  sock_alloc_file+0x4f/0x190
[  634.245875]  __sys_socket+0x13d/0x200
[  634.246637]  ? __x64_sys_openat+0x13f/0x1f0
[  634.247511]  ? move_addr_to_kernel+0x70/0x70
[  634.248410]  ? ksys_write+0x1a5/0x250
[  634.249185]  __x64_sys_socket+0x6f/0xb0
[  634.249982]  ? syscall_enter_from_user_mode+0x1d/0x50
[  634.251031]  do_syscall_64+0x33/0x40
[  634.251788]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  634.252847] RIP: 0033:0x7fda1187bb19
[  634.253610] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  634.257398] RSP: 002b:00007fda0edf1128 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  634.258386] FAULT_INJECTION: forcing a failure.
[  634.258386] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  634.258959] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1187bb19
[  634.258967] RDX: 0000000000000001 RSI: 0000000000000003 RDI: 000000000000001f
[  634.258983] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000
[  634.265677] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  634.267141] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
[  634.268642] CPU: 1 PID: 5874 Comm: syz-executor.5 Not tainted 5.10.90 #1
[  634.270048] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  634.272394] Call Trace:
[  634.272926]  dump_stack+0x107/0x163
[  634.273660]  should_fail.cold+0x5/0xa
[  634.274443]  _copy_from_iter_full+0x1ff/0x940
[  634.275349]  ? __check_object_size+0x319/0x440
[  634.276284]  sco_sock_sendmsg+0x1cd/0x640
[  634.277121]  ? sco_sock_listen+0x320/0x320
[  634.277972]  ? __import_iovec+0x458/0x590
[  634.278811]  ? sco_sock_listen+0x320/0x320
[  634.279666]  sock_sendmsg+0x150/0x190
[  634.280442]  ____sys_sendmsg+0x709/0x870
[  634.281270]  ? kernel_sendmsg+0x50/0x50
[  634.282079]  ? __ia32_sys_recvmmsg+0x260/0x260
[  634.283015]  ? lock_downgrade+0x6d0/0x6d0
[  634.283864]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  634.284955]  ___sys_sendmsg+0xf3/0x170
[  634.285751]  ? sendmsg_copy_msghdr+0x160/0x160
[  634.286686]  ? lock_downgrade+0x6d0/0x6d0
[  634.287541]  ? __fget_files+0x304/0x500
[  634.288366]  ? __fget_light+0xea/0x280
[  634.289162]  __sys_sendmsg+0xe5/0x1b0
[  634.289934]  ? __sys_sendmsg_sock+0xb0/0xb0
[  634.290814]  ? rcu_read_lock_any_held+0x69/0x90
[  634.291777]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  634.292850]  ? syscall_enter_from_user_mode+0x1d/0x50
[  634.293904]  ? trace_hardirqs_on+0x5b/0x180
[  634.294795]  do_syscall_64+0x33/0x40
[  634.295548]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  634.296608] RIP: 0033:0x7f61602c9b19
[  634.297369] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  634.301128] RSP: 002b:00007f615d83f188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  634.302682] RAX: ffffffffffffffda RBX: 00007f61603dcf60 RCX: 00007f61602c9b19
[  634.304130] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000004
[  634.305578] RBP: 00007f615d83f1d0 R08: 0000000000000000 R09: 0000000000000000
[  634.307035] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  634.308506] R13: 00007ffff9aa72bf R14: 00007f615d83f300 R15: 0000000000022000
00:39:51 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) (fail_nth: 5)

[  634.370984] FAULT_INJECTION: forcing a failure.
[  634.370984] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  634.373432] CPU: 1 PID: 5893 Comm: syz-executor.2 Not tainted 5.10.90 #1
[  634.374800] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  634.377097] Call Trace:
[  634.377633]  dump_stack+0x107/0x163
[  634.378370]  should_fail.cold+0x5/0xa
[  634.379143]  _copy_from_iter_full+0x1ff/0x940
[  634.380041]  ? __check_object_size+0x319/0x440
[  634.380969]  sco_sock_sendmsg+0x1cd/0x640
[  634.381811]  ? sco_sock_listen+0x320/0x320
[  634.382682]  ? __import_iovec+0x458/0x590
[  634.383531]  ? sco_sock_listen+0x320/0x320
[  634.384405]  sock_sendmsg+0x150/0x190
[  634.385187]  ____sys_sendmsg+0x709/0x870
[  634.386023]  ? kernel_sendmsg+0x50/0x50
[  634.386834]  ? __ia32_sys_recvmmsg+0x260/0x260
[  634.387773]  ? lock_downgrade+0x6d0/0x6d0
[  634.388623]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  634.389692]  ___sys_sendmsg+0xf3/0x170
[  634.390465]  ? sendmsg_copy_msghdr+0x160/0x160
[  634.391389]  ? lock_downgrade+0x6d0/0x6d0
[  634.392263]  ? __fget_files+0x304/0x500
[  634.393067]  ? __fget_light+0xea/0x280
[  634.393861]  __sys_sendmsg+0xe5/0x1b0
[  634.394632]  ? __sys_sendmsg_sock+0xb0/0xb0
[  634.395501]  ? rcu_read_lock_any_held+0x69/0x90
[  634.396469]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  634.397546]  ? syscall_enter_from_user_mode+0x1d/0x50
[  634.398593]  ? trace_hardirqs_on+0x5b/0x180
[  634.399474]  do_syscall_64+0x33/0x40
[  634.400255]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  634.401298] RIP: 0033:0x7fd9ad034b19
[  634.402055] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  634.405806] RSP: 002b:00007fd9aa5aa188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  634.407350] RAX: ffffffffffffffda RBX: 00007fd9ad147f60 RCX: 00007fd9ad034b19
[  634.408814] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000004
[  634.410263] RBP: 00007fd9aa5aa1d0 R08: 0000000000000000 R09: 0000000000000000
[  634.411711] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  634.413169] R13: 00007ffd7d6c94ef R14: 00007fd9aa5aa300 R15: 0000000000022000
00:39:51 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x5a, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0)

00:39:51 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:39:51 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x0, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:39:51 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) (fail_nth: 6)

00:39:51 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:39:51 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

[  634.477605] FAULT_INJECTION: forcing a failure.
[  634.477605] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  634.480092] CPU: 0 PID: 5903 Comm: syz-executor.5 Not tainted 5.10.90 #1
[  634.481468] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  634.483774] Call Trace:
[  634.484345]  dump_stack+0x107/0x163
[  634.485094]  should_fail.cold+0x5/0xa
[  634.485879]  _copy_to_user+0x2e/0x180
[  634.486658]  simple_read_from_buffer+0xcc/0x160
[  634.487607]  proc_fail_nth_read+0x194/0x220
[  634.488495]  ? proc_sessionid_read+0x220/0x220
[  634.489422]  ? security_file_permission+0x24e/0x570
[  634.490440]  ? proc_sessionid_read+0x220/0x220
[  634.491369]  vfs_read+0x228/0x580
[  634.492085]  ksys_read+0x12d/0x250
[  634.492806]  ? __ia32_sys_pwrite64+0x230/0x230
[  634.493737]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  634.494800]  ? syscall_enter_from_user_mode+0x1d/0x50
[  634.495848]  do_syscall_64+0x33/0x40
[  634.496621]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  634.497663] RIP: 0033:0x7f616027c69c
[  634.498421] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[  634.502145] RSP: 002b:00007f615d83f170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  634.503685] RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 00007f616027c69c
[  634.505133] RDX: 000000000000000f RSI: 00007f615d83f1e0 RDI: 0000000000000003
[  634.506580] RBP: 00007f615d83f1d0 R08: 0000000000000000 R09: 0000000000000000
[  634.508047] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  634.509497] R13: 00007ffff9aa72bf R14: 00007f615d83f300 R15: 0000000000022000
00:39:52 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x0, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:39:52 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x6e, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0)

00:39:52 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x2, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:39:52 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x2, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:39:52 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 42)

00:39:52 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x2c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:39:52 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:39:52 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  634.643939] FAULT_INJECTION: forcing a failure.
[  634.643939] name failslab, interval 1, probability 0, space 0, times 0
[  634.646403] CPU: 1 PID: 5922 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  634.647777] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  634.650087] Call Trace:
[  634.650627]  dump_stack+0x107/0x163
[  634.651364]  should_fail.cold+0x5/0xa
[  634.652150]  ? create_object.isra.0+0x3a/0xa20
[  634.653080]  should_failslab+0x5/0x10
[  634.653854]  kmem_cache_alloc+0x5b/0x350
[  634.654683]  create_object.isra.0+0x3a/0xa20
[  634.655576]  ? __kasan_kmalloc.constprop.0+0xc2/0xd0
[  634.656633]  kmem_cache_alloc+0x159/0x350
[  634.657479]  __alloc_file+0x21/0x310
[  634.658234]  alloc_empty_file+0x6d/0x170
[  634.659059]  alloc_file+0x59/0x590
[  634.659789]  alloc_file_pseudo+0x16a/0x250
[  634.660662]  ? alloc_file+0x590/0x590
[  634.661438]  ? __alloc_fd+0x2a5/0x620
[  634.662237]  sock_alloc_file+0x4f/0x190
[  634.663042]  __sys_socket+0x13d/0x200
[  634.663812]  ? move_addr_to_kernel+0x70/0x70
[  634.664721]  __x64_sys_socket+0x6f/0xb0
[  634.665522]  ? syscall_enter_from_user_mode+0x1d/0x50
[  634.666568]  do_syscall_64+0x33/0x40
[  634.667318]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  634.668369] RIP: 0033:0x7fda1187bb19
[  634.669122] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  634.672843] RSP: 002b:00007fda0edf1128 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  634.674377] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1187bb19
[  634.675817] RDX: 0000000000000001 RSI: 0000000000000003 RDI: 000000000000001f
[  634.677272] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000
[  634.678718] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  634.680169] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
00:39:52 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x1000000, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

[  646.155640] kmemleak: 2 new suspected memory leaks (see /sys/kernel/debug/kmemleak)
00:40:10 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:40:10 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 43)

00:40:10 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x2000000, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:40:10 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:40:10 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x78, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0)

00:40:10 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0) (fail_nth: 6)

00:40:10 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x2, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:40:10 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  653.325024] FAULT_INJECTION: forcing a failure.
[  653.325024] name failslab, interval 1, probability 0, space 0, times 0
[  653.327431] CPU: 0 PID: 5952 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  653.328853] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  653.331161] Call Trace:
[  653.331706]  dump_stack+0x107/0x163
[  653.332476]  should_fail.cold+0x5/0xa
[  653.333254]  ? security_file_alloc+0x34/0x170
[  653.334164]  should_failslab+0x5/0x10
[  653.334932]  kmem_cache_alloc+0x5b/0x350
[  653.335766]  security_file_alloc+0x34/0x170
[  653.336674]  __alloc_file+0xb6/0x310
[  653.337427]  alloc_empty_file+0x6d/0x170
[  653.338245]  alloc_file+0x59/0x590
[  653.338963]  alloc_file_pseudo+0x16a/0x250
[  653.339822]  ? alloc_file+0x590/0x590
[  653.340622]  ? __alloc_fd+0x2a5/0x620
[  653.341405]  sock_alloc_file+0x4f/0x190
[  653.342204]  __sys_socket+0x13d/0x200
[  653.342976]  ? move_addr_to_kernel+0x70/0x70
[  653.343869]  __x64_sys_socket+0x6f/0xb0
[  653.344707]  ? syscall_enter_from_user_mode+0x1d/0x50
[  653.345745]  do_syscall_64+0x33/0x40
[  653.346494]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  653.347533] RIP: 0033:0x7fda1187bb19
[  653.348284] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  653.352015] RSP: 002b:00007fda0edf1128 EFLAGS: 00000246 ORIG_RAX: 0000000000000029
[  653.353589] RAX: ffffffffffffffda RBX: 00007fda1198ef60 RCX: 00007fda1187bb19
[  653.355026] RDX: 0000000000000001 RSI: 0000000000000003 RDI: 000000000000001f
[  653.356500] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000
[  653.357938] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  653.359386] R13: 00007ffde9b6b96f R14: 00007fda0edf1300 R15: 0000000000022000
[  653.364969] FAULT_INJECTION: forcing a failure.
[  653.364969] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  653.367441] CPU: 0 PID: 5949 Comm: syz-executor.2 Not tainted 5.10.90 #1
[  653.368849] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  653.371138] Call Trace:
[  653.371670]  dump_stack+0x107/0x163
[  653.372443]  should_fail.cold+0x5/0xa
[  653.373224]  _copy_to_user+0x2e/0x180
[  653.373997]  simple_read_from_buffer+0xcc/0x160
[  653.374942]  proc_fail_nth_read+0x194/0x220
[  653.375818]  ? proc_sessionid_read+0x220/0x220
[  653.376775]  ? security_file_permission+0x24e/0x570
[  653.377799]  ? proc_sessionid_read+0x220/0x220
[  653.378725]  vfs_read+0x228/0x580
[  653.379432]  ksys_read+0x12d/0x250
[  653.380165]  ? __ia32_sys_pwrite64+0x230/0x230
[  653.381120]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  653.382195]  ? syscall_enter_from_user_mode+0x1d/0x50
[  653.383237]  do_syscall_64+0x33/0x40
[  653.383997]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  653.385083] RIP: 0033:0x7fd9acfe769c
[  653.385843] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[  653.389599] RSP: 002b:00007fd9aa5aa170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
00:40:10 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0xffffff7f, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

[  653.391296] RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 00007fd9acfe769c
[  653.392811] RDX: 000000000000000f RSI: 00007fd9aa5aa1e0 RDI: 0000000000000003
[  653.394244] RBP: 00007fd9aa5aa1d0 R08: 0000000000000000 R09: 0000000000000000
00:40:10 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

[  653.395680] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  653.397195] R13: 00007ffd7d6c94ef R14: 00007fd9aa5aa300 R15: 0000000000022000
00:40:10 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:40:10 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x9d, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0)

00:40:10 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x1c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:40:10 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x2, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:40:11 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x1000000, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:40:11 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x1c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:40:11 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) (fail_nth: 44)

00:40:11 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:40:11 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0xb4, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0)

00:40:11 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x1000000, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:40:11 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

[  653.633719] FAULT_INJECTION: forcing a failure.
[  653.633719] name failslab, interval 1, probability 0, space 0, times 0
[  653.636121] CPU: 1 PID: 5982 Comm: syz-executor.7 Not tainted 5.10.90 #1
[  653.637558] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  653.639910] Call Trace:
[  653.640505]  dump_stack+0x107/0x163
[  653.641292]  should_fail.cold+0x5/0xa
[  653.642101]  ? create_new_namespaces+0x30/0xb20
[  653.643064]  should_failslab+0x5/0x10
[  653.643854]  kmem_cache_alloc+0x5b/0x350
[  653.644722]  create_new_namespaces+0x30/0xb20
[  653.645655]  __do_sys_setns+0x206/0x16d0
[  653.646495]  ? __sys_socket+0x16d/0x200
[  653.647316]  ? __x64_sys_openat+0x13f/0x1f0
[  653.648195]  ? switch_task_namespaces+0xd0/0xd0
[  653.649180]  ? ksys_write+0x1a5/0x250
[  653.649975]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  653.651051]  ? syscall_enter_from_user_mode+0x1d/0x50
[  653.652125]  do_syscall_64+0x33/0x40
[  653.652930]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  653.653991] RIP: 0033:0x7fda1187d107
[  653.654760] Code: 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 34 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  653.658576] RSP: 002b:00007fda0edf1128 EFLAGS: 00000246 ORIG_RAX: 0000000000000134
[  653.660137] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00007fda1187d107
[  653.661642] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000004
[  653.663102] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000
[  653.664587] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fda0edf16bc
[  653.666051] R13: 000000000000000e R14: 00007fda0edf1300 R15: 0000000000022000
00:40:23 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:40:23 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x2, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:40:23 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:40:23 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)

00:40:23 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x2000000, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:40:23 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x1c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:40:23 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x2000000, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:40:23 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0xf0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0)

00:40:23 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x168, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0)

00:40:23 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0xffffff7f, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:40:23 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:40:23 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0xffffff7f, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:40:35 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:40:35 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:40:35 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x2000039c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:40:35 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x1000000, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:40:35 executing program 7:
syz_init_net_socket$bt_hci(0xffffffffffffffff, 0x3, 0x1)

00:40:35 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0x78}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:40:35 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:40:35 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x1e0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0)

00:40:35 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:40:35 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x2, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:40:35 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x2, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:40:47 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x1000000, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:40:47 executing program 7:
syz_init_net_socket$bt_hci(0xffffffffffffffff, 0x3, 0x1)

00:40:47 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}]}, 0x24}}, 0x0)

00:40:47 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x7ffff000, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:40:47 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x21c, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0)

00:40:47 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x2000000, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:40:47 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xb4}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x34}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:40:47 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x1000000, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:40:47 executing program 7:
syz_init_net_socket$bt_hci(0xffffffffffffffff, 0x3, 0x1)

00:40:47 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0xffffff7f, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:40:47 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x300, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0)

00:40:47 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:40:47 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x2c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}, @NL80211_ATTR_MCAST_RATE={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:40:47 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x2000000, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:40:47 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x2000000, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:41:06 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:41:06 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0xffffff7f, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:41:06 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x2, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:41:06 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x2, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:41:06 executing program 7:
syz_init_net_socket$bt_hci(0xffffffffffffffff, 0x3, 0x1)

00:41:06 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0xffffff7f, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:41:06 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x0)

00:41:06 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x500, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0)

00:41:06 executing program 7:
syz_init_net_socket$bt_hci(0x10, 0x3, 0x10)

00:41:06 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:41:06 executing program 6:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x1000000, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:41:06 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x600, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0)

00:41:06 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0)

00:41:06 executing program 7:
syz_init_net_socket$bt_hci(0xffffffffffffffff, 0x3, 0x10)

00:41:06 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x2000039c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:41:06 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:41:06 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{0x39, 0x2}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:41:06 executing program 1:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:41:06 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x7ffff000, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:41:06 executing program 7:
syz_init_net_socket$bt_hci(0xffffffffffffffff, 0x3, 0x10)

00:41:06 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{0x39, 0x2}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:41:06 executing program 7:
syz_init_net_socket$bt_hci(0xffffffffffffffff, 0x3, 0x10)

00:41:06 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

[  720.637763] kmemleak: 1 new suspected memory leaks (see /sys/kernel/debug/kmemleak)
00:41:25 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{0x39, 0x0, 0x2}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:41:25 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}]}, 0x24}}, 0x0) (fail_nth: 1)

[  728.061153] FAULT_INJECTION: forcing a failure.
[  728.061153] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  728.063552] CPU: 1 PID: 6185 Comm: syz-executor.6 Not tainted 5.10.90 #1
[  728.064923] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  728.067220] Call Trace:
[  728.067752]  dump_stack+0x107/0x163
[  728.068485]  should_fail.cold+0x5/0xa
[  728.069252]  _copy_from_user+0x2e/0x1b0
[  728.070060]  __copy_msghdr_from_user+0x91/0x4b0
[  728.070997]  ? __ia32_sys_shutdown+0x70/0x70
[  728.071874]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  728.072920]  ? __lock_acquire+0x1653/0x5b00
[  728.073795]  ? __lock_acquire+0xbb1/0x5b00
[  728.074652]  sendmsg_copy_msghdr+0xa1/0x160
[  728.075514]  ? __ia32_sys_recvmmsg+0x260/0x260
[  728.076428]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  728.077475]  ? lock_downgrade+0x6d0/0x6d0
[  728.078329]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  728.079381]  ___sys_sendmsg+0xc6/0x170
[  728.080160]  ? sendmsg_copy_msghdr+0x160/0x160
00:41:25 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:41:25 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0) (fail_nth: 1)

00:41:25 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:41:25 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x700, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0)

00:41:25 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x2, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:41:25 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x2, 0x10)

[  728.081078]  ? __fget_files+0x2db/0x500
[  728.082026]  ? lock_downgrade+0x6d0/0x6d0
[  728.082897]  ? __fget_files+0x304/0x500
[  728.083709]  ? __fget_light+0xea/0x280
[  728.084493]  __sys_sendmsg+0xe5/0x1b0
[  728.085251]  ? __sys_sendmsg_sock+0xb0/0xb0
[  728.086132]  ? rcu_read_lock_any_held+0x69/0x90
[  728.087067]  ? fput_many+0x2f/0x1a0
[  728.087795]  ? ksys_write+0x1a5/0x250
[  728.088561]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  728.089625]  ? syscall_enter_from_user_mode+0x1d/0x50
[  728.090661]  ? trace_hardirqs_on+0x5b/0x180
[  728.091529]  do_syscall_64+0x33/0x40
[  728.092273]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  728.093299] RIP: 0033:0x7f5deb4f6b19
[  728.094056] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  728.097752] RSP: 002b:00007f5de8a6c188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  728.099265] RAX: ffffffffffffffda RBX: 00007f5deb609f60 RCX: 00007f5deb4f6b19
[  728.100687] RDX: 0000000000000000 RSI: 0000000020000f00 RDI: 0000000000000003
[  728.102119] RBP: 00007f5de8a6c1d0 R08: 0000000000000000 R09: 0000000000000000
[  728.103551] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  728.104975] R13: 00007ffc04fd8c7f R14: 00007f5de8a6c300 R15: 0000000000022000
00:41:25 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{0x39, 0x0, 0x2}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:41:25 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x900, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0)

[  728.144899] FAULT_INJECTION: forcing a failure.
[  728.144899] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  728.147431] CPU: 0 PID: 6200 Comm: syz-executor.1 Not tainted 5.10.90 #1
[  728.148797] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  728.151102] Call Trace:
[  728.151632]  dump_stack+0x107/0x163
[  728.152364]  should_fail.cold+0x5/0xa
[  728.153134]  _copy_from_user+0x2e/0x1b0
[  728.153951]  __copy_msghdr_from_user+0x91/0x4b0
[  728.154888]  ? __ia32_sys_shutdown+0x70/0x70
[  728.155772]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  728.156819]  ? __lock_acquire+0x1653/0x5b00
[  728.157706]  ? __lock_acquire+0xbb1/0x5b00
[  728.158560]  sendmsg_copy_msghdr+0xa1/0x160
[  728.159421]  ? __ia32_sys_recvmmsg+0x260/0x260
[  728.160336]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  728.161382]  ? lock_downgrade+0x6d0/0x6d0
[  728.162222]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  728.163276]  ___sys_sendmsg+0xc6/0x170
[  728.164053]  ? sendmsg_copy_msghdr+0x160/0x160
[  728.164966]  ? __fget_files+0x2db/0x500
[  728.165820]  ? lock_downgrade+0x6d0/0x6d0
[  728.166669]  ? __fget_files+0x304/0x500
[  728.167485]  ? __fget_light+0xea/0x280
[  728.168272]  __sys_sendmsg+0xe5/0x1b0
[  728.169045]  ? __sys_sendmsg_sock+0xb0/0xb0
[  728.169931]  ? rcu_read_lock_any_held+0x69/0x90
[  728.170878]  ? fput_many+0x2f/0x1a0
[  728.171616]  ? ksys_write+0x1a5/0x250
[  728.172390]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  728.173445]  ? syscall_enter_from_user_mode+0x1d/0x50
[  728.174497]  ? trace_hardirqs_on+0x5b/0x180
[  728.175364]  do_syscall_64+0x33/0x40
[  728.176108]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  728.177133] RIP: 0033:0x7fc948bb7b19
[  728.177890] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  728.181591] RSP: 002b:00007fc94612d188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  728.183114] RAX: ffffffffffffffda RBX: 00007fc948ccaf60 RCX: 00007fc948bb7b19
[  728.184544] RDX: 0000000000000000 RSI: 0000000020000f00 RDI: 0000000000000003
[  728.185980] RBP: 00007fc94612d1d0 R08: 0000000000000000 R09: 0000000000000000
[  728.187413] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  728.188843] R13: 00007ffc0ba2604f R14: 00007fc94612d300 R15: 0000000000022000
00:41:25 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x1000000, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:41:25 executing program 4:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x2000039c}}, 0x0)

00:41:25 executing program 0:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x2000039c}}, 0x0)

00:41:25 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x2, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

00:41:25 executing program 7:
syz_init_net_socket$bt_hci(0x1f, 0x4, 0x10)

00:41:25 executing program 5:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x2000000, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

[  728.283985] ------------[ cut here ]------------
[  728.285006] WARNING: CPU: 1 PID: 6216 at mm/page_alloc.c:4935 __alloc_pages_nodemask+0x595/0x680
[  728.286776] Modules linked in:
[  728.287408] CPU: 1 PID: 6216 Comm: syz-executor.0 Not tainted 5.10.90 #1
[  728.288761] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  728.290936] RIP: 0010:__alloc_pages_nodemask+0x595/0x680
[  728.291970] Code: 0f 85 4c ff ff ff 48 c7 c2 c0 45 2d 84 be c1 00 00 00 48 c7 c7 20 46 2d 84 c6 05 8b 9d df 03 01 e8 55 f3 6a 02 e9 28 ff ff ff <0f> 0b e9 cb fd ff ff 4c 89 44 24 18 4c 89 44 24 10 89 74 24 0c 4c
[  728.295601] RSP: 0018:ffff888042c378e0 EFLAGS: 00010246
[  728.297514] RAX: 0000000000000000 RBX: 1ffff11008586f20 RCX: 0000000000000000
[  728.298859] RDX: 0000000000000000 RSI: dffffc0000000000 RDI: 0000000000040cc0
[  728.300216] RBP: 0000000000000000 R08: 0000000000000000 R09: ffff888042c37caf
[  728.301615] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000012
[  728.303000] R13: 0000000000000012 R14: 0000000000000000 R15: 00000000ffffffa1
[  728.304380] FS:  00007ffbb7aa5700(0000) GS:ffff88806cf00000(0000) knlGS:0000000000000000
[  728.305963] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  728.307069] CR2: 00000000200002c0 CR3: 000000000ea50000 CR4: 0000000000350ee0
[  728.308425] Call Trace:
[  728.308933]  ? __alloc_pages_slowpath.constprop.0+0x2210/0x2210
[  728.310110]  ? lock_downgrade+0x6d0/0x6d0
[  728.310929]  alloc_pages_current+0x187/0x280
[  728.311784]  kmalloc_order+0x35/0x160
[  728.312530]  kmalloc_order_trace+0x14/0xf0
[  728.313352]  sco_sock_sendmsg+0x170/0x640
[  728.314157]  ? sco_sock_listen+0x320/0x320
[  728.314988]  ? __import_iovec+0x458/0x590
[  728.315796]  ? sco_sock_listen+0x320/0x320
[  728.316617]  sock_sendmsg+0x150/0x190
[  728.317366]  ____sys_sendmsg+0x709/0x870
[  728.318147]  ? kernel_sendmsg+0x50/0x50
[  728.318921]  ? __ia32_sys_recvmmsg+0x260/0x260
[  728.319816]  ___sys_sendmsg+0xf3/0x170
[  728.320573]  ? sendmsg_copy_msghdr+0x160/0x160
[  728.321459]  ? lock_downgrade+0x6d0/0x6d0
[  728.322270]  ? lock_downgrade+0x6d0/0x6d0
[  728.323078]  ? find_held_lock+0x2c/0x110
[  728.323877]  ? __fget_files+0x304/0x500
[  728.324662]  ? __fget_light+0xea/0x280
[  728.325431]  __sys_sendmsg+0xe5/0x1b0
[  728.326159]  ? __sys_sendmsg_sock+0xb0/0xb0
[  728.327008]  ? io_schedule_timeout+0x140/0x140
[  728.327911]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  728.328930]  ? syscall_enter_from_user_mode+0x1d/0x50
[  728.329959]  ? trace_hardirqs_on+0x5b/0x180
[  728.330814]  do_syscall_64+0x33/0x40
[  728.331562]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  728.332574] RIP: 0033:0x7ffbba52fb19
[  728.333305] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  728.336824] RSP: 002b:00007ffbb7aa5188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  728.338299] RAX: ffffffffffffffda RBX: 00007ffbba642f60 RCX: 00007ffbba52fb19
[  728.339676] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000004
[  728.341048] RBP: 00007ffbba589f6d R08: 0000000000000000 R09: 0000000000000000
[  728.342449] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  728.343836] R13: 00007ffcdc85c30f R14: 00007ffbb7aa5300 R15: 0000000000022000
[  728.345240] irq event stamp: 1155
[  728.345938] hardirqs last  enabled at (1165): [<ffffffff8128fff9>] console_unlock+0x929/0xb30
[  728.347605] hardirqs last disabled at (1174): [<ffffffff8128ff05>] console_unlock+0x835/0xb30
[  728.349272] softirqs last  enabled at (632): [<ffffffff83e00f92>] asm_call_irq_on_stack+0x12/0x20
[  728.351015] softirqs last disabled at (569): [<ffffffff83e00f92>] asm_call_irq_on_stack+0x12/0x20
[  728.352720] ---[ end trace 2b8e1c66492b0aaa ]---
00:41:25 executing program 6:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}]}, 0x24}}, 0x0) (fail_nth: 2)

00:41:25 executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r0, &(0x7f0000000f00)={0x0, 0xa00, &(0x7f0000000ec0)={&(0x7f0000000000)={0x24, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8}]}, 0x24}}, 0x0)

00:41:25 executing program 2:
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r1 = dup2(r0, r0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)

[  728.407690] FAULT_INJECTION: forcing a failure.
[  728.407690] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  728.410114] CPU: 1 PID: 6233 Comm: syz-executor.6 Tainted: G        W         5.10.90 #1
[  728.411728] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  728.413979] Call Trace:
[  728.414499]  dump_stack+0x107/0x163
[  728.415225]  should_fail.cold+0x5/0xa
[  728.415989]  _copy_from_user+0x2e/0x1b0
[  728.416780]  iovec_from_user+0x139/0x3f0
[  728.417590]  __import_iovec+0x67/0x590
[  728.418350]  ? __ia32_sys_shutdown+0x70/0x70
[  728.419207]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  728.420237]  import_iovec+0x83/0xb0
[  728.420949]  sendmsg_copy_msghdr+0x12d/0x160
[  728.421826]  ? __ia32_sys_recvmmsg+0x260/0x260
[  728.422716]  ? lock_downgrade+0x6d0/0x6d0
[  728.423522]  ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0
[  728.424543]  ___sys_sendmsg+0xc6/0x170
[  728.425299]  ? sendmsg_copy_msghdr+0x160/0x160
[  728.426198]  ? __fget_files+0x2db/0x500
[  728.426971]  ? lock_downgrade+0x6d0/0x6d0
[  728.427790]  ? __fget_files+0x304/0x500
[  728.428571]  ? __fget_light+0xea/0x280
[  728.429334]  __sys_sendmsg+0xe5/0x1b0
[  728.430085]  ? __sys_sendmsg_sock+0xb0/0xb0
[  728.430931]  ? rcu_read_lock_any_held+0x69/0x90
[  728.431849]  ? fput_many+0x2f/0x1a0
[  728.432573]  ? ksys_write+0x1a5/0x250
[  728.433336]  ? lockdep_hardirqs_on_prepare+0x273/0x3e0
[  728.434395]  ? syscall_enter_from_user_mode+0x1d/0x50
[  728.435414]  ? trace_hardirqs_on+0x5b/0x180
[  728.436265]  do_syscall_64+0x33/0x40
[  728.436996]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[  728.438018] RIP: 0033:0x7f5deb4f6b19
[  728.438755] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  728.442400] RSP: 002b:00007f5de8a6c188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  728.443909] RAX: ffffffffffffffda RBX: 00007f5deb609f60 RCX: 00007f5deb4f6b19
[  728.445323] RDX: 0000000000000000 RSI: 0000000020000f00 RDI: 0000000000000003
[  728.446747] RBP: 00007f5de8a6c1d0 R08: 0000000000000000 R09: 0000000000000000
[  728.448153] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  728.449566] R13: 00007ffc04fd8c7f R14: 00007f5de8a6c300 R15: 0000000000022000

VM DIAGNOSIS:
00:41:26  Registers:
info registers vcpu 0
RAX=0000000000000000 RBX=ffff888045e97630 RCX=0000000000000001 RDX=0000000000000000
RSI=0000000000000000 RDI=ffff888045e97600 RBP=ffff88800d381940 RSP=ffff888045e97550
R8 =0000000000000001 R9 =ffff888045e975a8 R10=ffffed1008bd2ec0 R11=0000000000000001
R12=0000000000000000 R13=ffff888045e975d0 R14=ffff88800d381940 R15=ffff888045e975a8
RIP=ffffffff81ff4434 RFL=00000016 [----AP-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007fd9aa589718 CR3=000000000fb70000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff
YMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM04=0000000000000000 0000000000000000 0000000000000000 00000000000000ff
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff8227f4bc RDI=ffffffff876da100 RBP=ffffffff876da0c0 RSP=ffff888042c372a0
R8 =0000000000000001 R9 =0000000000000003 R10=000000000000000a R11=0000000000000001
R12=0000000000000020 R13=fffffbfff0edb46b R14=fffffbfff0edb422 R15=dffffc0000000000
RIP=ffffffff8227f510 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007ffbb7aa5700 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00000000200002c0 CR3=000000000ea50000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 00007ffbba6167c0 00007ffbba6167c8
YMM02=0000000000000000 0000000000000000 00007ffbba6167e0 00007ffbba6167c0
YMM03=0000000000000000 0000000000000000 00007ffbba6167c8 00007ffbba6167c0
YMM04=0000000000000000 0000000000000000 ffffffffffffffff ffffffff00000000
YMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM06=0000000000000000 0000000000000000 0000000000000000 000000524f525245
YMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM08=0000000000000000 0000000000000000 0000000000000000 00524f5252450040
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000