0)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 12:00:34 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0x0, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 12:00:34 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) [ 883.432902] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.0'. [ 883.439547] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.0'. 12:00:34 executing program 1: r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x8010, &(0x7f0000000140)=ANY=[]) setxattr$security_selinux(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340), &(0x7f0000000380)='system_u:object_r:autofs_device_t:s0\x00', 0x25, 0x1) chdir(&(0x7f0000000040)='./file0\x00') r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) ftruncate(r1, 0x3) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc142, 0x8) r3 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x10a) write(r3, &(0x7f0000000240)="01", 0x1) openat(r1, &(0x7f0000000140)='./file0\x00', 0x680900, 0x160) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) close(r3) write$P9_RREADLINK(r1, &(0x7f0000000140)=ANY=[], 0x10) fcntl$dupfd(r0, 0x0, r1) sendfile(r1, r2, 0x0, 0x20d315) openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0) r4 = openat$snapshot(0xffffffffffffff9c, 0x0, 0x40202, 0x0) fsetxattr$security_evm(r4, &(0x7f0000000180), &(0x7f00000001c0)=@md5={0x1, "14a8e82f6acb5c1fdec6fd2a1d7050a2"}, 0x11, 0x6) ioctl$FS_IOC_GETFLAGS(0xffffffffffffffff, 0x80086601, &(0x7f00000002c0)) 12:00:35 executing program 0: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/timer_list\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0xffff) r2 = socket$unix(0x1, 0x2, 0x0) bind$unix(r2, &(0x7f0000000280)=@file={0x1, './file0\x00'}, 0x6e) setsockopt$sock_int(r2, 0x1, 0x10, &(0x7f0000000000), 0x4) sendmsg$unix(0xffffffffffffffff, &(0x7f0000001280)={&(0x7f00000001c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e, 0x0}, 0x0) fallocate(r2, 0x0, 0x0, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) dup2(0xffffffffffffffff, r2) ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, 0xffffffffffffffff) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0) r3 = syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r3, 0x8000000) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) poll(&(0x7f0000000040)=[{r0, 0x18}, {r1, 0x84}, {0xffffffffffffffff, 0x8002}, {}, {r3, 0x10000}, {r0}, {0xffffffffffffffff, 0xe6}], 0x7, 0x7) ioctl$BTRFS_IOC_INO_PATHS(0xffffffffffffffff, 0xc0389423, &(0x7f0000000080)={0x0, 0x0, [0x4, 0x8, 0x400000000], 0x0}) syz_open_dev$ttys(0xc, 0x2, 0x1) 12:00:35 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) 12:00:35 executing program 3: socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 12:00:35 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0x0, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 12:00:35 executing program 5: fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140), 0x40001, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = dup2(r1, r0) syz_genetlink_get_family_id$batadv(0x0, r2) r3 = socket$packet(0x11, 0x3, 0x300) sendmsg$NL80211_CMD_STOP_NAN(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)=ANY=[@ANYBLOB="20000500", @ANYRES16=0x0, @ANYBLOB="04002abd7000fddbdf25740000000c0099000800000045000000"], 0x20}}, 0x4000080) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) setsockopt$packet_add_memb(r3, 0x107, 0x1, &(0x7f0000000080)={r5, 0x1, 0x6, @dev}, 0x10) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000000}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r6 = fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff) perf_event_open(&(0x7f0000000500)={0x6, 0x80, 0x4, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000000}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x22}, 0x0, 0x0, r6, 0x0) [ 883.579981] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue [ 883.593105] EXT4-fs (loop6): mounted filesystem without journal. Opts: delalloc,,errors=continue 12:00:35 executing program 4: r0 = syz_open_dev$vcsn(&(0x7f0000000a40), 0x0, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$WPAN_SECURITY(r0, 0x0, 0x1, &(0x7f0000000000)=0x1, 0x4) setsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x94, 0x0, 0x0, 0x0, 0x0, 0x0, 0x482, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, @perf_config_ext={0x2}, 0x10088, 0x0, 0xfffffffe, 0x0, 0x0, 0xfffffffc}, 0x0, 0x0, 0xffffffffffffffff, 0x0) move_pages(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) write$P9_RLERRORu(r0, 0x0, 0x1a) ioctl$sock_SIOCSIFVLAN_SET_VLAN_NAME_TYPE_CMD(r0, 0x8983, &(0x7f0000000380)={0x6, 'gre0\x00', {0x7fff}, 0x20}) munlock(&(0x7f0000ffc000/0x4000)=nil, 0x4000) syz_io_uring_setup(0x29af, &(0x7f0000000040)={0x0, 0xc9eb, 0x20, 0x400001, 0x3df, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000000c0), &(0x7f00000001c0)) perf_event_open(&(0x7f00000005c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x4, @perf_config_ext={0x85f}, 0x0, 0xfffffffffffffffe, 0x0, 0x4, 0x0, 0x2}, 0x0, 0x9, 0xffffffffffffffff, 0x0) fsetxattr$security_ima(r0, &(0x7f0000000140), &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x54, 0x1) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000180), 0x180, 0x0) r2 = socket$inet6_udp(0xa, 0x2, 0x0) r3 = dup2(0xffffffffffffffff, r2) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0xb) move_pages(0x0, 0xa, &(0x7f0000000200)=[&(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffe000/0x1000)=nil], &(0x7f0000000280)=[0xd52], &(0x7f0000000300)=[0x0, 0x0], 0x4) r4 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) madvise(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r4) 12:00:35 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x6e2, 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x8000, 0x2) openat(r1, &(0x7f00000001c0)='./file0\x00', 0x4001, 0x38) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r3 = creat(&(0x7f0000000180)='./file0\x00', 0x30) ioctl$AUTOFS_DEV_IOCTL_VERSION(r3, 0xc0189371, &(0x7f0000000100)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r3, @ANYBLOB="00001e00baeefbc6000000002e2f66696c653000"]) sendmsg$IPCTNL_MSG_CT_GET(r4, &(0x7f0000000580)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000540)={&(0x7f00000002c0)=ANY=[@ANYBLOB="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"], 0x23c}, 0x1, 0x0, 0x0, 0x20000800}, 0x4895) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000000)={0xffffffffffffffff, 0x80, 0x8}) write$binfmt_elf64(r3, &(0x7f0000000280)=ANY=[], 0xfdef) accept$inet6(r3, &(0x7f0000000240)={0xa, 0x0, 0x0, @remote}, &(0x7f0000000280)=0x1c) ioctl$BTRFS_IOC_QGROUP_ASSIGN(0xffffffffffffffff, 0x40189429, 0x0) pwrite64(0xffffffffffffffff, &(0x7f0000000080), 0x0, 0x2) syz_io_uring_complete(r2) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_config_ext, 0x40172, 0x0, 0x401, 0x0, 0x400, 0x7fff}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) [ 883.757247] device lo entered promiscuous mode 12:00:35 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, &(0x7f0000000080)={@local, 0x78, r1}) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000000)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, r1}) ioctl$sock_inet6_SIOCSIFDSTADDR(0xffffffffffffffff, 0x8918, &(0x7f0000005740)={@mcast2, 0x3e, r1}) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r2, &(0x7f0000000000)={0x80000002}) r3 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x0, 0x0) io_setup(0x3, &(0x7f00000001c0)=0x0) io_getevents(r4, 0x1, 0x1, &(0x7f0000000080)=[{}], 0x0) r5 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x100000e, 0x13, r5, 0x0) mmap$perf(&(0x7f0000ff7000/0x7000)=nil, 0x7000, 0x1000003, 0x2010, r5, 0x7) r6 = gettid() r7 = dup3(r3, r3, 0x0) perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0xff, 0x62, 0x0, 0x0, 0x0, 0xffffffffc69cc413, 0x48590, 0x8, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x200, 0x2, @perf_bp={&(0x7f0000000040), 0x2}, 0x44801, 0x4, 0x1, 0x0, 0x2aff, 0x9, 0xddfa, 0x0, 0x401, 0x0, 0x1}, r6, 0x6a4, r7, 0x1) io_submit(r4, 0x1, &(0x7f00000008c0)=[&(0x7f0000000180)={0x0, 0x0, 0x5, 0x0, 0x0, r3, 0x0}]) io_destroy(0x0) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000200)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r5, @ANYBLOB="02000000000000dd2e2f6367726f75702e63707500505f7deafe"]) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2, 0x12, r8, 0x8000000) [ 883.784673] device lo left promiscuous mode [ 883.803922] device lo entered promiscuous mode [ 883.810924] device lo left promiscuous mode 12:00:48 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, 0x0, 0x0) 12:00:48 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) 12:00:48 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0x0, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 12:00:48 executing program 0: perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDFONTOP_SET(r0, 0x4b72, &(0x7f0000000400)={0x0, 0x1, 0xc, 0x1e, 0x1da, &(0x7f0000000000)="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"}) write$binfmt_elf64(r0, &(0x7f0000001e00)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, [{0x60000000, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x3}]}, 0x78) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) r2 = dup(r1) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(r2, 0x8936, &(0x7f0000000080)={@local, 0x78, r4}) ioctl$sock_inet6_SIOCDIFADDR(r2, 0x8916, &(0x7f0000000000)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, r4}) ioctl$TIOCL_SETVESABLANK(r2, 0x541c, &(0x7f0000000440)) 12:00:48 executing program 6: rt_sigaction(0x12, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f0000000100)) epoll_pwait(0xffffffffffffffff, &(0x7f0000000040)=[{}, {}, {}], 0x3, 0x8, &(0x7f0000000180)={[0x1f]}, 0x8) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x4000004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ftruncate(0xffffffffffffffff, 0x1000003) write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000001c0)=ANY=[], 0xfdef) r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) fsetxattr$security_selinux(r0, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$RTC_WKALM_SET(r0, 0x4028700f, &(0x7f00000000c0)={0x1, 0x1, {0x24, 0x24, 0x1, 0x3, 0x2, 0xfe2d, 0x0, 0x1d, 0x1}}) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x2000, 0x0) copy_file_range(r2, 0x0, r1, 0x0, 0x10001, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) r4 = syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x5ad5, 0x2, 0x3}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100)) io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r4, 0x8000000) io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0) sendfile(0xffffffffffffffff, r4, 0x0, 0x3) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x20, &(0x7f0000000140)={@private1={0xfc, 0x1, '\x00', 0x6}, 0x1000000, 0x2, 0x3, 0xc, 0x5e9e}, 0x20) unshare(0x48020200) 12:00:48 executing program 5: ioctl$BTRFS_IOC_SCRUB_CANCEL(0xffffffffffffffff, 0x941c, 0x0) ioctl$RTC_UIE_ON(0xffffffffffffffff, 0x7003) r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f00000000c0), 0x101003, 0x0) r1 = dup3(r0, r0, 0x80000) pread64(r1, &(0x7f0000000280)=""/165, 0xa5, 0xfffffffffffffff7) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x2, 0x0, 0x0, 0xfffffffc, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f00000001c0)="201900d07642da921fd6ff11430c6c6b8c0ac5060048065e24ecf3bb8ce311427ac446646b66cda5c391a00fbccd665cde721d7307fdcb6b969016edfcfc7632c1f3819bab23a38c40d2318820e65ef0262cc5dd8b5bc96f21bc84022b67785d6741984f29f705f842bd5a0870925cdb5d80eb689f80ea6ff07d3876a48c6519dad01907103c1df3928cb15b27437eb6e994a4bed70de633978e40", 0x9b, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000180)=ANY=[]) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000340)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xee01}}, './file0\x00'}) ioctl$PERF_EVENT_IOC_DISABLE(r2, 0x2401, 0x7) pkey_mprotect(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) r4 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f00000003c0), 0xa000) r5 = pkey_alloc(0x0, 0x3) pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, r5) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f00000004c0)={0x0, 0x0, 0x0}, &(0x7f0000000500)=0xc) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000540)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {r3, r6}}, './file0\x00'}) pkey_mprotect(&(0x7f0000ff4000/0x2000)=nil, 0x2000, 0x0, r5) write$binfmt_elf64(r4, &(0x7f00000001c0)=ANY=[], 0xfdef) r7 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000400), 0x4001, 0x0) ioctl$PTP_CLOCK_GETCAPS(r7, 0x80503d01, &(0x7f0000000140)) 12:00:48 executing program 4: epoll_create1(0x0) syz_open_dev$usbmon(&(0x7f00000000c0), 0x0, 0x0) r0 = syz_open_dev$usbmon(&(0x7f00000000c0), 0x0, 0x0) fcntl$dupfd(r0, 0x0, r0) r1 = syz_io_uring_setup(0x4, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000100)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x6}, 0x0) io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0) 12:00:48 executing program 1: r0 = fork() ptrace$setopts(0x4206, r0, 0x0, 0x0) ptrace(0x8, r0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0xfc, 0x0, 0x5e, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0xe0e0b3104fd0398, 0x0, 0x0, 0x0, 0x0, 0x4}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000580)=ANY=[@ANYBLOB="3000000010000100060000000000000000001f00050000000000000013000080482c106cb57fec864b24e149f8326500"], 0x30}}, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000140)) setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0x4, &(0x7f0000000000), 0x4) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL802154_CMD_GET_INTERFACE(r2, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000001c0)={&(0x7f00000002c0)={0x5c, 0x0, 0x8, 0x70bd26, 0x25dfdbfb, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x200000002}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc}]}, 0x5c}, 0x1, 0x0, 0x0, 0x8000}, 0x80) bind$inet6(0xffffffffffffffff, &(0x7f0000000200)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000340)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) sendmsg$DEVLINK_CMD_SB_GET(r3, &(0x7f0000000440)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x3c, 0x0, 0x200, 0x70bd2a, 0x25dfdbfd, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x2}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8000}, 0x40000) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x0) connect$inet6(0xffffffffffffffff, 0x0, 0x0) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/warn_count', 0x4080, 0x1) write$cgroup_pid(r4, &(0x7f00000004c0)=0xffffffffffffffff, 0x12) ioctl$sock_inet_udp_SIOCOUTQ(r4, 0x5411, &(0x7f0000000100)) sendmsg$IPVS_CMD_GET_SERVICE(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000700)=ANY=[], 0x100}, 0x1, 0x0, 0x0, 0x4804}, 0x0) unshare(0x48020200) [ 896.829410] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.1'. 12:00:48 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) 12:00:48 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x0, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 12:00:48 executing program 4: perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xffffffff, 0x9}, 0x408}, 0x0, 0x4, 0xffffffffffffffff, 0x0) r0 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) fsmount(r0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0) 12:00:48 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, 0x0, 0x0) 12:00:48 executing program 0: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f00000001c0)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000500)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="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"], 0x194}, 0x1, 0x0, 0x0, 0x4000080}, 0x24008040) r1 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FAT_IOCTL_GET_ATTRIBUTES(r1, 0x80047210, &(0x7f0000000400)) r2 = syz_io_uring_setup(0x3a75, &(0x7f0000000080)={0x0, 0x0, 0x28}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000002, 0x50, r2, 0x8000000) r6 = syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) syz_io_uring_submit(r5, 0x0, &(0x7f0000000440)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x6000, @fd=r6, 0x10000, &(0x7f0000000380)=[{&(0x7f0000000300)=""/122, 0x7a}, {&(0x7f00000006c0)=""/4096, 0x1000}, {&(0x7f00000016c0)=""/253, 0xfd}, {&(0x7f00000017c0)=""/189, 0xbd}, {&(0x7f0000001880)=""/4096, 0x1000}], 0x5, 0x11, 0x1}, 0x100) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x8}, &(0x7f0000000280)='./file0\x00', 0x18}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) io_uring_enter(r2, 0x1941, 0xb233, 0x2, &(0x7f0000000040), 0x8) r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r2, 0x8000000) syz_io_uring_submit(r7, r4, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 897.301831] EXT4-fs error (device loop5): ext4_orphan_get:1417: comm syz-executor.5: bad orphan inode 301979167 [ 897.311923] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue 12:01:03 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x0, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 12:01:03 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, 0x0, 0x0) 12:01:03 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) ftruncate(r0, 0x1000003) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0xc02, 0x0) write$eventfd(r0, &(0x7f0000000140)=0xfff, 0x8) ioctl$TIOCGPTPEER(r1, 0x5441, 0x0) write$binfmt_elf64(r1, &(0x7f0000000a00)=ANY=[], 0x98a) readv(r1, &(0x7f0000000100)=[{&(0x7f0000001340)=""/4096, 0x1000}], 0x1) fcntl$setflags(0xffffffffffffffff, 0x2, 0x1) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/rcu_expedited', 0x22902, 0x0) openat$cgroup_procs(r0, &(0x7f00000001c0)='cgroup.procs\x00', 0x2, 0x0) r3 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000200), 0x602001, 0x0) dup2(r2, r3) write(r2, &(0x7f0000000100)='?', 0x1) mmap$perf(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000008, 0x10010, r2, 0x6) syz_emit_ethernet(0x103, &(0x7f00000002c0)={@random="67856f93ef03", @remote, @val={@val={0x9100, 0x3, 0x1, 0x2}, {0x8100, 0x3, 0x0, 0x3}}, {@x25={0x805, {0x1, 0x4, 0x9, "9731f296efc77c2db7ea22fcdb65f7e81d54a63549f315e4b2dd0af59dea0d41a8bf855c71d77d33975eb4f9bdf14359d79585f8ac114aaae3530532089a16c847e3087d3f0fdb31d53450494d1e6f443b4871f3dfa4ee4e7bccced59fcd2ab006ec43a57c6789e9ba0dd6b91e603a241d6e545655a80b6ef54d1e1d100764a7652da7cdc5ffed2a89c08932b91b918634e2eaf954fc9c53d63e7dbf8b94e47c3f13463de034dab5a0f1344a3bade9ff3bd67214ffbea25380f762b680bf186ff20f7c6f766b60b265d03adc9a37b8b034a36ff77f67457722853d69f8d1a2e5287c5085d321a25a7ca4"}}}}, &(0x7f0000000180)={0x0, 0x2, [0x7a7, 0xbe8, 0x0, 0x9a2]}) acct(&(0x7f0000000040)='./file0\x00') unshare(0x4a060400) 12:01:03 executing program 1: syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$bind(&(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='./file0/file0\x00', &(0x7f0000000140), 0x292004, 0x0) mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='devpts\x00', 0x0, &(0x7f00000000c0)='\x10') 12:01:03 executing program 4: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000040)={{{@in=@multicast1, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x85}, {}, 0x0, 0x0, 0x1}, {{@in=@multicast1, 0x0, 0x6c}, 0xa, @in6=@remote, 0x0, 0x4, 0x0, 0x88}}, 0xe8) connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) 12:01:03 executing program 0: r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) lseek(0xffffffffffffffff, 0x0, 0x0) fsetxattr$trusted_overlay_upper(0xffffffffffffffff, &(0x7f0000000080), &(0x7f00000000c0)=ANY=[@ANYBLOB="00fb1b0205e94aca1274fbf12f01ffaa739a000000000000000000"], 0x1b, 0x3) r1 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000140), 0x3) ioctl$INCFS_IOC_GET_FILLED_BLOCKS(r0, 0x80286722, &(0x7f0000000040)={&(0x7f0000000340)=""/147, 0x93, 0x7fff, 0x2}) r2 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0) io_submit(0x0, 0x2, &(0x7f0000000280)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x8, 0x0, r0, &(0x7f0000000400)="e76a438e1ae6293c6e32562bbecad8d1c0ef2714785de5bbd3c7c9d6745323983ea4b77b9616032cc89a11f6c8ddbf01c18661b7f3c4d46ce4de532ae7c75458f8b0c5c663d0a86cbeee50652875bfe6549e1216c51ed7c656eaf1744f14b86e5f741d0831f26c6abcca7750c917bfc74d66947bb21c9fbbc6791ed22be9512148469d0b46cb5f89b8905b0f220566d532b6b6768f0c816a", 0x98, 0xfff, 0x0, 0x0, r1}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x8, 0xffffffffffffffff, &(0x7f00000004c0)="e5e35ef10403226181146b4e39e8f99b5729865d0ed3b5900f753cc4c10e14e8467deb11e289eae6747833b848b661ea601472c6ec8bf553adb18a546729ef2cf31d490c2ed764da87b7a890a345bfad815a8511f7621f856032", 0x5a, 0x5, 0x0, 0x1}]) write(0xffffffffffffffff, &(0x7f0000000000)="cd656d69f282f46caedc9da09676f7d5fb29e8f4e5806ac5ea118e763750a91ce6ccb5e3206389", 0x27) fallocate(r2, 0x2, 0x2, 0x6985) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)={0x14, 0x42, 0xe21, 0x0, 0x0, {0x2}}, 0x14}, 0x1, 0x0, 0x0, 0x2000c041}, 0x0) write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000001c0)=ANY=[], 0xfdef) perf_event_open(&(0x7f0000000180)={0x0, 0x80, 0x2, 0x81, 0xfb, 0x2, 0x0, 0xffffffffffffffe0, 0x885a4, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0xffffffff, 0xc3649750f7bb34e1, @perf_config_ext={0x0, 0x8}, 0x12, 0x8000, 0x3, 0x8, 0x9, 0x3, 0x2, 0x0, 0x1000, 0x0, 0x7d}, 0x0, 0x10, 0xffffffffffffffff, 0x8) r4 = timerfd_create(0x0, 0x0) timerfd_settime(r4, 0x0, &(0x7f0000000240)={{0x77359400}, {0x0, 0x3938700}}, 0x0) open_tree(0xffffffffffffffff, 0x0, 0x100) timerfd_create(0x0, 0x0) unshare(0x48020200) 12:01:03 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x0, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 12:01:03 executing program 5: r0 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0xc, 0x10010, 0xffffffffffffffff, 0x8000000) r1 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x2, 0x11, 0xffffffffffffffff, 0x10000000) r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r0, r1, &(0x7f0000001440)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000001400)={&(0x7f0000000000)=@in6={0xa, 0x0, 0x0, @ipv4={""/10, ""/2, @multicast1}}, 0x80, &(0x7f0000001340)=[{&(0x7f0000000080)=""/4096, 0x1000}, {&(0x7f0000001080)=""/204, 0xcc}, {&(0x7f0000001180)=""/171, 0xab}, {&(0x7f0000001240)=""/55, 0x37}, {&(0x7f0000001280)=""/165, 0xa5}], 0x5, &(0x7f00000013c0)=""/4, 0x4}, 0x0, 0x2000, 0x1, {0x3, r2}}, 0x2) r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000001480), 0xc000) r4 = dup2(r3, 0xffffffffffffffff) sendmsg$NFT_MSG_GETTABLE(r4, &(0x7f0000001580)={&(0x7f00000014c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000001540)={&(0x7f0000001500)={0x40, 0x1, 0xa, 0x201, 0x0, 0x0, {0xa, 0x0, 0xdeb}, [@NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x2}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x5}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}]}, 0x40}}, 0x8001) sendmsg$TCPDIAG_GETSOCK(r4, &(0x7f00000016c0)={&(0x7f00000015c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000001680)={&(0x7f0000001600)={0x4c, 0x12, 0x400, 0x70bd29, 0x25dfdbfd, {0x26, 0x1, 0xde, 0x0, {0x4e20, 0x4e23, [0x7, 0x2, 0x6, 0x1], [0xfffffffb, 0x2eda, 0x4], 0x0, [0x0, 0x6]}, 0x2, 0x6}}, 0x4c}, 0x1, 0x0, 0x0, 0x4040881}, 0x4000000) syz_io_uring_submit(r0, r1, &(0x7f0000001700)=@IORING_OP_NOP={0x0, 0x4}, 0xfff) r5 = syz_io_uring_setup(0x18d6, &(0x7f0000001740)={0x0, 0x9174, 0x8, 0x0, 0x2be}, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f00000017c0)=0x0, &(0x7f0000001800)) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r4, 0x9, 0x0, 0x0) syz_io_uring_submit(r6, r1, &(0x7f0000001840)=@IORING_OP_SYNC_FILE_RANGE={0x8, 0x0, 0x0, @fd=r3, 0x400, 0x0, 0xfffffffe, 0x3, 0x0, {0x0, r7}}, 0x800) r8 = creat(&(0x7f0000001880)='./file0\x00', 0x4) syz_io_uring_setup(0x37ca, &(0x7f00000018c0)={0x0, 0x7a65, 0x4, 0x2, 0x38f, 0x0, r4}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000001940), &(0x7f0000001980)=0x0) r10 = io_uring_register$IORING_REGISTER_PERSONALITY(r8, 0x9, 0x0, 0x0) syz_io_uring_submit(r0, r9, &(0x7f00000019c0)=@IORING_OP_FSYNC={0x3, 0x2, 0x0, @fd=r5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r10}}, 0x8) r11 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x2000001, 0x10, r5, 0x10000000) syz_io_uring_submit(0x0, r11, 0xffffffffffffffff, 0x1) r12 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000001a80)='/sys/module/acpi', 0x214201, 0x100) perf_event_open(&(0x7f0000001a00)={0x1, 0x80, 0x1, 0x0, 0x20, 0x5, 0x0, 0x6, 0x1000, 0xf, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x3, 0x2, @perf_config_ext={0x7fd, 0x7fffffff}, 0x100a2, 0x0, 0x4, 0x3, 0x8000, 0x67, 0x7, 0x0, 0x8001, 0x0, 0x6}, 0x0, 0x3, r12, 0x4) [ 911.825666] devpts: called with bogus options [ 911.855788] devpts: called with bogus options 12:01:03 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x0, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 12:01:03 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x0, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 12:01:03 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) 12:01:03 executing program 4: r0 = openat(0xffffffffffffffff, &(0x7f00000000c0)='/proc/self/exe\x00', 0x0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x9) connect$netlink(r1, &(0x7f0000000080)=@kern={0x10, 0x0, 0x0, 0x2000}, 0xc) ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000140)=0x0) r3 = syz_open_procfs(r2, 0x0) getdents64(r3, &(0x7f00000001c0)=""/66, 0x18) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r3, 0x81f8943c, &(0x7f0000000240)) r4 = openat$incfs(r0, &(0x7f0000000100)='.log\x00', 0x331100, 0x4) write(r4, 0x0, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, 0x0) socket$inet_icmp_raw(0x2, 0x3, 0x1) r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0) getdents64(r5, 0x0, 0x0) openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x298e6752ad325d72, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, 0x0) r6 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, &(0x7f0000000000)={0xaa, 0x2}, 0x10) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x1, 0x0, 0x0, 0x0, 0x3b10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001}, 0x0, 0xffffffffffffffff, r6, 0x0) sendfile(r1, r0, 0x0, 0x4000007ffffffc) 12:01:03 executing program 1: lookup_dcookie(0x2, &(0x7f0000000000)=""/35, 0x23) syz_emit_ethernet(0x6e, &(0x7f0000000300)={@local, @local, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x60, 0x0, 0x0, 0x0, 0x1, 0x0, @remote={0xac, 0x1c}, @local}, @parameter_prob={0x5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x11, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, @broadcast, @broadcast, {[@timestamp_addr={0x44, 0x14, 0x0, 0x1, 0x0, [{@loopback}, {@private}]}, @timestamp_prespec={0x44, 0x1c, 0x0, 0x3, 0x0, [{@loopback}, {@multicast1}, {@multicast2}]}]}}}}}}}, 0x0) 12:01:03 executing program 5: syz_emit_ethernet(0x46, &(0x7f0000000400)={@local, @broadcast, @void, {@ipv4={0x800, @udp={{0x8, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x33, 0x0, @private=0xa010102, @loopback, {[@ssrr={0x89, 0x7, 0xac, [@private=0xa010102]}, @ssrr={0x89, 0x3}]}}, {0x0, 0x0, 0x18, 0x0, @wg=@data}}}}}, 0x0) [ 912.039493] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=35144 sclass=netlink_audit_socket pid=9326 comm=syz-executor.4 [ 912.064915] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=34247 sclass=netlink_audit_socket pid=9326 comm=syz-executor.4 12:01:03 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x0, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) [ 912.082427] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=53893 sclass=netlink_audit_socket pid=9326 comm=syz-executor.4 12:01:03 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) 12:01:03 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 912.106361] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=53481 sclass=netlink_audit_socket pid=9326 comm=syz-executor.4 12:01:03 executing program 5: r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$selinux_attr(0xffffffffffffffff, &(0x7f00000000c0)='system_u:object_r:hald_keymap_exec_t:s0\x00', 0x28) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$LOOP_SET_STATUS(r1, 0x4c02, &(0x7f0000000140)={0x0, {}, 0x0, {}, 0x0, 0x1, 0x0, 0x0, "4fa2f8201eed6e500c32342a227989f18a88ab65bad4c23a441d66f462f1df77bc777d160562da8c50431b2a204f36c6ed27b00215909d75417aa68c9029c5fd", "176764fe8c2ff71a1633d53dafbecd823af97cf5831be9a6fed5449e9f77dd92"}) getsockopt$inet6_opts(r1, 0x29, 0x3b, &(0x7f00000000c0), &(0x7f0000000180)) r2 = syz_open_procfs(0x0, 0x0) openat$cgroup_netprio_ifpriomap(r1, &(0x7f00000002c0), 0x2, 0x0) mmap$IORING_OFF_SQES(&(0x7f0000ff9000/0x3000)=nil, 0x3000, 0x1000000, 0x50, r2, 0x10000000) r3 = signalfd4(r2, &(0x7f0000000380)={[0x1]}, 0x8, 0x800) r4 = open_tree(r3, &(0x7f0000000340)='./file0\x00', 0x80801) r5 = socket$inet6(0xa, 0x80000, 0x9) r6 = eventfd(0x7) ioctl$sock_SIOCGPGRP(r1, 0x8904, &(0x7f00000003c0)=0x0) getresuid(&(0x7f0000000400), &(0x7f00000006c0)=0x0, &(0x7f0000000700)) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r2, 0xc018937b, &(0x7f0000000740)={{0x1, 0x1, 0x18, r4, {0x0, 0xffffffffffffffff}}, './file0\x00'}) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000001a80)=[{{&(0x7f0000000200)=@abs={0x0, 0x0, 0x4e21}, 0x6e, &(0x7f0000000280)=[{&(0x7f00000005c0)="c3619e99652137df84c57c55d1af630f1d558e65386492f5e0cff212bc865c2d7223d5fce5116b12b7a2b7347d66e067298227d132a9c96cba3c56dede9454af169dd0503d0d7434511cb322fa99d39520055cdb4641ae5e09678496ec17c291fcb6421e6f05f52f3c6c935f3d1a85b45c195e6a121715d7bbd5780a7435bffc6d9a3127750d495cd3a7aacfca11cf95b20679523cd37ad7acb1c70860d6e74e86ccdbc8ae8a107e0a59457f4b7cf7f9115e5a5738da79091dc5cdd6e21782c792a67bd15c7682627f6a980ba3373fb121777292ec07de1e7468ea492d8200c0d54361d676710faa7343059163db0edc", 0xf0}], 0x1, &(0x7f0000000780)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x2c, 0x1, 0x1, [r3, 0xffffffffffffffff, r2, 0xffffffffffffffff, 0xffffffffffffffff, r0, r1]}}, @rights={{0x1c, 0x1, 0x1, [r5, r0, r6]}}, @cred={{0x1c, 0x1, 0x2, {r7, r8, r9}}}], 0x88, 0x1}}, {{&(0x7f0000000840)=@abs={0x1, 0x0, 0x4e20}, 0x6e, &(0x7f0000000a00)=[{&(0x7f00000008c0)="150c457635d2b94d0b585976fe66e368beed96de3ee0690cefc34f37d77bad11a4ea9adb0755972f5332e7e00c3f1f323b39bb91417173b8db81eb9e70d7e0e458", 0x41}, {&(0x7f0000000940)="d4fdfff8da0066bfefe09df030e6603ee2de9c27ffc85bc662df5f43e2cabbbc6459164ba3b6d7227dbeeb41481e3180e79ca15ea00cafb6b140692e7a3f424f1e1fed7e6b3fe9cd642989b563131ac2d8d2746d76e9ac774052db0f2e10a64e7c8a7618fdf47a745c7bec8941eeeef28cce48b623b0cda0", 0x78}, {&(0x7f00000009c0)="9e83f17ce9b6f15a90417d8d4184e1707c5dbc025eb84aee0bd58b9338690cd48dffbeddd0d565045420356effad6a5ce1b7b9be918aeb1e", 0x38}], 0x3, 0x0, 0x0, 0x4000044}}, {{0x0, 0x0, &(0x7f0000001a40)=[{&(0x7f0000000a40)="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", 0x1000}], 0x1, 0x0, 0x0, 0x1}}], 0x3, 0x4008040) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="64656c616c6c6f632c001d3faee579ccd7241d9804a591491c16e592bcb9bb335f8c0b12611c27da8dfc43cd720d6e80a7ca7dd46ba6256705353d673e8f96d1f8c8cfd8eb353d2188a91f6c1b7036ea798172062554f964dd5a2eb96a018000000000000015a88e8a72985b3c8276e1e1765995f802f3f2481081848a6ad9de3b8b3471dba02f811ee008f85ebb0db73347dc0000004fa136b903d48e3d7cb70d7298093ae9d6a4c80f1e5adf574a90b2462e0379c6de07e3926d043ad49b745833cc52781327406af5dc97951fa7d59905dcbeaa48"]) [ 912.175567] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=35656 sclass=netlink_audit_socket pid=9326 comm=syz-executor.4 [ 912.190758] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=9326 comm=syz-executor.4 [ 912.204076] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=33608 sclass=netlink_audit_socket pid=9326 comm=syz-executor.4 [ 912.216446] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=35140 sclass=netlink_audit_socket pid=9326 comm=syz-executor.4 [ 912.261142] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=9326 comm=syz-executor.4 [ 912.263723] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=21 sclass=netlink_audit_socket pid=9326 comm=syz-executor.4 [ 912.636287] EXT4-fs (loop5): mounted filesystem without journal. Opts: delalloc,,errors=continue 12:01:17 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x10, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_mmap}]}}) 12:01:17 executing program 5: syz_io_uring_setup(0x8, &(0x7f0000000180), &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffb000/0x5000)=nil, 0x0, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$F2FS_IOC_PRECACHE_EXTENTS(r1, 0xf50f, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="24000000100001710000000000000096000000000005000000ff7f0000000000000400"], 0x24}}, 0x0) pipe2(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80800) getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f00000002c0)={{{@in=@local, @in6=@private1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6}, 0x0, @in6=@mcast2}}, &(0x7f00000003c0)=0xe8) r4 = gettid() sendmsg$nl_generic(r2, &(0x7f0000000600)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x90a7f34c360ea783}, 0xc, &(0x7f00000005c0)={&(0x7f0000000400)={0x1b8, 0x32, 0x10, 0x70bd2c, 0x25dfdbfc, {0x14}, [@typed={0xc, 0x85, 0x0, 0x0, @u64=0x8}, @typed={0x9, 0x54, 0x0, 0x0, @str='vfat\x00'}, @typed={0x4, 0x30}, @nested={0xf0, 0x8b, 0x0, 0x1, [@generic="d56ae37b21efd9ba754a8f27a1d84f71cea02b23352f28676a70", @generic="b24a7cf381e88a51cfe0cfc756cc602a5fdef5c67f0ddec5bfddbad7437e50dd5e566e8755be85b8142aeca78ada56b9fadb206801e426ea3b05018c1275ad519a20de0d3af9b54aa6a5b82152eb5163c25fb6d5ca3af61897d84790a63c6d73eddcd89166467c2d6ff63dc38ed60641aded0f1272df2305a5da1fa9a9b22195c324fe35dc44b70f22370c2e6c3418171c4c806dd88dcc0548666879ea975810c79569d29ad5bffe0c3ab5f8a3b4fcc70a45fe6384de1ea338847053d1e653711bb7", @typed={0x8, 0x7d, 0x0, 0x0, @uid=r3}, @generic, @typed={0x6, 0x96, 0x0, 0x0, @str=',\x00'}]}, @nested={0x96, 0x15, 0x0, 0x1, [@typed={0x8, 0x38, 0x0, 0x0, @pid=r4}, @generic="e519ab90a040c7ee4a8ab65d1a1f299a71aaac68ed9427bf187149be", @generic="bdc276a0ff2356930f5b6ef00ca2dcb4951bbbfc4428ff3d93db0b1fe88ccd40e2dfa99533", @typed={0x8, 0x6e, 0x0, 0x0, @u32=0x4}, @generic="16165b526acc58fc990f3eae316bbf26a7d60e1621a4b213eb9f2a99d9d74ce7ec35eacdd794c92fab99c9ac2a6aa5a49308a6023eecbf095e42f93d5cbad81203"]}]}, 0x1b8}, 0x1, 0x0, 0x0, 0x20000004}, 0x4000089) r5 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{0x0}, {&(0x7f0000010300)="53595a4b414c4c45522020080000e680325132510000e680325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c45302020202020201000ace670325132510000e670325103000000000041660069006c00650031000f00100000ffffffffffffffffffff0000ffffffff46494c45312020202020202000ace670325132510000e670325107", 0x9b, 0x600}], 0x0, &(0x7f0000000080)=ANY=[]) io_setup(0x5, &(0x7f0000000000)) r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0) openat(r5, &(0x7f00000000c0)='./file2\x00', 0x8040, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4150, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xdd}, 0x0, 0x0, 0xffffffffffffffff, 0x0) setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000640)={0x1, 0x8000}, 0x4) pselect6(0x40, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0) 12:01:17 executing program 0: ioctl$BTRFS_IOC_SNAP_DESTROY(0xffffffffffffffff, 0x5000940f, &(0x7f0000000300)={{}, "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"}) r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fcntl$dupfd(r0, 0x0, 0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)={0x24, 0x18, 0xc21, 0x0, 0x0, {0x2}, [@typed={0x8, 0x500, 0x0, 0x0, @u32=0x4}, @typed={0x8, 0x5, 0x0, 0x0, @uid=0xee01}]}, 0x24}}, 0x0) ioctl$SNDRV_TIMER_IOCTL_GPARAMS(r1, 0x40485404, &(0x7f0000000000)={{0xffffffffffffffff, 0x1, 0x2, 0x0, 0x20}, 0x7fff, 0x1}) 12:01:17 executing program 6: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/resume', 0x18040, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/resume', 0x22902, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$BTRFS_IOC_INO_PATHS(r1, 0xc0389423, &(0x7f00000000c0)={0x0, 0x40, [0x9, 0x8, 0x2, 0x2], &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) copy_file_range(r0, 0x0, r1, &(0x7f0000000040)=0x7fff, 0xa1, 0x0) 12:01:17 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) 12:01:17 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0x0, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 12:01:17 executing program 4: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') mount$cgroup(0x0, 0x0, &(0x7f0000000100), 0x180010, 0x0) perf_event_open(&(0x7f00000004c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x0, 0xffffffefffffffff, 0xffffffffffffffff, 0x0) rename(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000240)='./file2\x00') chroot(&(0x7f0000000280)='./file2\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x0, r0) r2 = openat(0xffffffffffffffff, &(0x7f0000001a00)='./file1\x00', 0x42, 0x4) io_setup(0x5, &(0x7f0000000040)=0x0) chroot(&(0x7f0000000440)='./file2\x00') io_submit(r3, 0x1, &(0x7f00000008c0)=[&(0x7f0000000200)={0x0, 0x0, 0x5, 0x0, 0x0, r2, 0x0}]) unlink(&(0x7f0000000340)='./file2\x00') ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000400)=0x0) r5 = dup2(r1, r1) perf_event_open(&(0x7f0000000380)={0x4, 0x80, 0xbb, 0x7f, 0x92, 0xff, 0x0, 0x12c, 0x10000, 0x2, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x7fffffff, 0x0, @perf_bp={&(0x7f0000000300), 0xc}, 0x10, 0x7, 0x7c693558, 0x5, 0x5, 0x100000, 0x62, 0x0, 0x2, 0x0, 0x2c38}, r4, 0xa, r5, 0x2) sendfile(r0, r1, 0x0, 0x100000001) r6 = syz_io_uring_complete(0x0) write$P9_RREADLINK(r6, &(0x7f0000000480)={0x10, 0x17, 0x1, {0x7, './file1'}}, 0x10) 12:01:17 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 1) [ 926.246385] FAULT_INJECTION: forcing a failure. [ 926.246385] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 926.248847] CPU: 1 PID: 9380 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 926.250258] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 926.251948] Call Trace: [ 926.252494] dump_stack+0x107/0x167 [ 926.253242] should_fail.cold+0x5/0xa [ 926.254047] _copy_from_user+0x2e/0x1b0 [ 926.254880] __copy_msghdr_from_user+0x91/0x4b0 [ 926.255833] ? __ia32_sys_shutdown+0x80/0x80 [ 926.256727] ? perf_trace_lock+0xac/0x490 [ 926.257598] ? __lock_acquire+0xbb1/0x5b00 [ 926.258496] sendmsg_copy_msghdr+0xa1/0x160 [ 926.259370] ? do_recvmmsg+0x6d0/0x6d0 [ 926.260170] ? perf_trace_lock+0xac/0x490 [ 926.261007] ? SOFTIRQ_verbose+0x10/0x10 [ 926.261845] ? __lockdep_reset_lock+0x180/0x180 [ 926.262818] ? perf_trace_lock+0xac/0x490 [ 926.263658] ? SOFTIRQ_verbose+0x10/0x10 [ 926.264496] ___sys_sendmsg+0xc6/0x170 [ 926.265294] ? sendmsg_copy_msghdr+0x160/0x160 [ 926.266242] ? __fget_files+0x26d/0x4c0 [ 926.267060] ? lock_downgrade+0x6d0/0x6d0 [ 926.267908] ? find_held_lock+0x2c/0x110 [ 926.268741] ? __fget_files+0x296/0x4c0 [ 926.269560] ? __fget_light+0xea/0x290 [ 926.270367] __sys_sendmsg+0xe5/0x1b0 [ 926.271136] ? __sys_sendmsg_sock+0x40/0x40 [ 926.272005] ? rcu_read_lock_any_held+0x75/0xa0 [ 926.272961] ? fput_many+0x2f/0x1a0 [ 926.273702] ? ksys_write+0x1a9/0x260 [ 926.274498] ? __ia32_sys_read+0xb0/0xb0 [ 926.275327] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 926.276387] ? syscall_enter_from_user_mode+0x1d/0x50 [ 926.277428] ? trace_hardirqs_on+0x5b/0x180 [ 926.278317] do_syscall_64+0x33/0x40 [ 926.279077] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 926.280115] RIP: 0033:0x7f59b4343b19 [ 926.280874] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 926.284610] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 926.286176] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 926.287615] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 926.289060] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 926.290517] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 926.291980] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 [ 926.322906] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. 12:01:17 executing program 0: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$tty1(0xc, 0x4, 0x1) r0 = syz_open_procfs(0x0, &(0x7f00000002c0)='fdinfo/4\x00') r1 = creat(&(0x7f0000000000)='./file0\x00', 0x100) perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x5, 0xfd, 0x81, 0x4, 0x0, 0x0, 0x40000, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x40, 0x0, @perf_bp={&(0x7f00000004c0), 0x9}, 0x0, 0x80, 0x5, 0x0, 0x7, 0x2, 0xd87, 0x0, 0x2, 0x0, 0xfffc}, 0x0, 0xf, r1, 0x0) unshare(0x48020200) sendmsg$NFNL_MSG_CTHELPER_NEW(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=ANY=[@ANYRESDEC=r0], 0x50}, 0x1, 0x0, 0x0, 0x10}, 0x20040000) unshare(0x28050200) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$VT_RESIZE(r2, 0x5609, &(0x7f0000000100)={0x9, 0xd, 0x7}) getsockopt$inet6_mreq(r0, 0x29, 0x14, &(0x7f0000000040)={@empty}, &(0x7f0000000080)=0x14) r3 = fork() r4 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r5 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_udp_encap(r5, 0x11, 0xb, &(0x7f0000000600)=0x5, 0x4) unshare(0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r5, 0x29, 0x22, &(0x7f00000003c0)={{{@in6=@private1, @in6=@private1}}, {{@in6=@local}, 0x0, @in=@local}}, &(0x7f0000000300)=0xe8) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240), 0x20401, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x100000e, 0x13, r4, 0x0) perf_event_open(&(0x7f00000001c0)={0x2, 0x80, 0x2, 0x81, 0x9, 0x80, 0x0, 0x8, 0x30008, 0x7, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x30a, 0x0, @perf_config_ext={0x400, 0x40}, 0x8020, 0x2b00000000000000, 0x6, 0x9, 0x2, 0x2, 0x161, 0x0, 0x5, 0x0, 0x100000000}, r3, 0x9, r4, 0x1) [ 926.383783] FAT-fs (loop5): Unrecognized mount option "€" or missing value 12:01:17 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) 12:01:17 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0x0, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 12:01:17 executing program 6: r0 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[]) r1 = syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r1, 0x8000000) io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0) stat(&(0x7f0000000180)='./file0\x00', &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0}) mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140), 0x200000, &(0x7f00000002c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',noextend,msize=0x0000000000000085,uname=tmpfs\x00,smackfstransmute=tmpfs\x00,subj_role=,rootcontext=system_u,uid=', @ANYRESDEC=r2, @ANYBLOB="2c7375626a5f726f6c653d7d2c66736e616d653d2c646566636f6e746578743d726f6f742c7375626a5f747970653d2a40157b5e3a7d6b5e2f2a402c6673757569643d36346163303330312d320031382d390535362d3234327391a424804d395838332c61756469742c00"]) mknodat$loop(r0, &(0x7f0000000100)='./file0\x00', 0x2000, 0x1) chown(&(0x7f0000000040)='./file0\x00', 0xee00, 0xffffffffffffffff) stat(&(0x7f00000001c0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r3, 0x0) openat(r0, &(0x7f0000000280)='./file0\x00', 0x40, 0x0) 12:01:17 executing program 4: r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_POWER_SAVE(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x50, r0, 0x4, 0x70bd2c, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x5, 0x7f}}}}, [@NL80211_ATTR_PS_STATE={0x8, 0x5d, 0x1}, @NL80211_ATTR_PS_STATE={0x8}, @NL80211_ATTR_PS_STATE={0x8}, @NL80211_ATTR_PS_STATE={0x8, 0x5d, 0x1}, @NL80211_ATTR_PS_STATE={0x8, 0x5d, 0x1}, @NL80211_ATTR_PS_STATE={0x8}]}, 0x50}, 0x1, 0x0, 0x0, 0x40}, 0x20000010) sendmsg$NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x3c, r0, 0x400, 0x70bd2b, 0x25dfdbfb, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x10000, 0x58}}}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0xa}, @NL80211_ATTR_4ADDR={0x5}, @NL80211_ATTR_SOCKET_OWNER={0x4}]}, 0x3c}, 0x1, 0x0, 0x0, 0x84}, 0x4080091) sendmsg$AUDIT_TRIM(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x10, 0x3f6, 0x1, 0x70bd2b, 0x25dfdbfd, "", ["", "", "", ""]}, 0x10}, 0x1, 0x0, 0x0, 0x40800}, 0x20000000) sendmsg$NLBL_MGMT_C_VERSION(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x2c, 0x0, 0x400, 0x70bd2b, 0x25dfdbff, {}, [@NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x3}, @NLBL_MGMT_A_CLPDOI={0x8}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @empty}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40004014}, 0x20008014) sendmsg$DEVLINK_CMD_PORT_UNSPLIT(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000005c0)={&(0x7f00000004c0)={0xd4, 0x0, 0x8, 0x70bd2a, 0x25dfdbfe, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x3}}}, {{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x1}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x2}}}, {{@pci={{0x8}, {0x11}}, {0x8, 0x3, 0x1}}}]}, 0xd4}, 0x1, 0x0, 0x0, 0x80}, 0x0) r1 = accept(0xffffffffffffffff, &(0x7f0000000640)=@isdn, &(0x7f00000006c0)=0x80) sendmsg$DEVLINK_CMD_RATE_GET(r1, &(0x7f00000007c0)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000780)={&(0x7f0000000740)={0x1c, 0x0, 0x200, 0x70bd28, 0x25dfdbff, {}, [@DEVLINK_ATTR_PORT_INDEX={0x8, 0x3, 0x2}]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x801) r2 = openat$incfs(0xffffffffffffffff, &(0x7f0000000800)='.log\x00', 0x4c0100, 0x0) sendmsg$NL80211_CMD_TESTMODE(r2, &(0x7f0000001d40)={&(0x7f0000000840)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000001d00)={&(0x7f0000000880)={0x1454, r0, 0x215, 0x70bd2c, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x1, 0x37}}}}, [@NL80211_ATTR_TESTDATA={0xaf, 0x45, "45c5c42d1dec79c9e795c17905004b6cd1722d87215f14dae7d42ea5717bc9e1509b188b52851d31762e6dba285498a63630de9186acc5d2db280e40d978ee19a04942b83a2845d9d17fa84584a9ce405e54683a9dc4a61023225204e4d35ac9c04720f9711bf728b3dcacac3918288f2c0b2e80efc91860f8cbda550da09201bc964e50c1e8989f718218bd603e34d41c86d2f2d6ea18dc99f9db3cd08ef58fc8786afffe52c07cc14872"}, @NL80211_ATTR_TESTDATA={0x2a, 0x45, "c8f7068b6a246a227a95f1d70b93947a049a27f2e5714b214d62135901842244914a34cab70f"}, @NL80211_ATTR_TESTDATA={0x4}, @NL80211_ATTR_TESTDATA={0xd5, 0x45, "be435bdbe325bb70cc33b7a6b931a12051aa1d2e19d6a9d445aad14fb241275eb5e5fb18cbab1af61216131278ca4a78822a5626aafae9b824d75d237161f53b5a197bceff2a17ac7f2532c601313a60172e240a1d67eed441f494701c65be1e8ca056a5aa9a3c264be14076bcca35b459a89aac15bf33f1214cf184749788c18f899a996236c271b930af52999f9327b6ccb3ad0ce3f297bd4246cbe463079f6c74ffbe2efe9fe975524a1b5123d281d2277f553efb6947fed3a90133abf3faca51895b8671c86f888b7275924f67e7d0"}, @NL80211_ATTR_TESTDATA={0x91, 0x45, "a1538388491d2b4fbd034edd545bf2ace196f1c382009f0310425d8877532f2e640d813050c73bce736780ff16c5b38f1751a51d1ac5caa8deb8f7afd66d1ba79f692cd43d824a44560922fc76f455e8a79f7c86c9b82af095d54036240c26cfe7d729c954085a147566aca7d019e3860c969065d49043b8a51d3cec4fcbfc7c8840fb69b4d6c966cfe3239790"}, @NL80211_ATTR_TESTDATA={0x8e, 0x45, "3e8b3fedf6ffb3a84a862e74bbf4d399a6ecbc818e62d145216494ab80acf722975d55e6c510e3ee9e7480366567e234fa90a234b81e793ce9e5233a51acc012daec02144299251839d199560de0c3ed4163bb9b658abbfa6d5926bda4aecca8a2e96087132e988ff79a7fa8c4cc545ce63b36da706058ecf7ea45105639db6bab1875285ad0accd673d"}, @NL80211_ATTR_TESTDATA={0x1004, 0x45, "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"}, @NL80211_ATTR_TESTDATA={0x98, 0x45, "af7c252b0561063a5eb5fab57654144d3c97d64d54e3b0b6b7ddd13cb87b84b0a8ebd9db7c86e1cac03ab43d09273351903ed9647032f1967e276dee135ae14ebc492fa63709e2704fd4db75141a7eea1283807a38af865b21df3be1bf01abdfe88bae6e79e861159ca46682a8339f6edee8b31af6d83074f304df5df0bb2267d57b76667b4fd8042d17a977a3aece2729851ed8"}, @NL80211_ATTR_TESTDATA={0xba, 0x45, "cba1fd11a8f9371bdfbb81c55954a52f809a75a7f52457a8612ad130c624e0a29c96d41162aaa24b2a000463b50f7268456d40156cdb84066b2a84051cae32df0a897c886b0a0af75e38aef28a6aeefdc4b11b66592f6f22eff85f73e1b8cc692673d3b37b93b5e5cb364ac0bbfd88132333aadc80750e2e05cc2f7541dc22e49cae4a5a7db24ed31ca798cfbf41cc884a9b93b0d8a6893ff38d01503e99c396aa887c54a3da86416353fd6f23d1bcaab7bb059a22a9"}]}, 0x1454}, 0x1, 0x0, 0x0, 0x20000010}, 0x801) sendmsg$TIPC_NL_BEARER_ADD(r2, &(0x7f0000001f00)={&(0x7f0000001d80)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000001ec0)={&(0x7f0000001dc0)={0xd4, 0x0, 0x200, 0x70bd26, 0x25dfdbfd, {}, [@TIPC_NLA_PUBL={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xfffffeff}]}, @TIPC_NLA_BEARER={0x7c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0x1ff}, @TIPC_NLA_BEARER_DOMAIN={0x8, 0x3, 0xfffffffa}, @TIPC_NLA_BEARER_PROP={0x4c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1d}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x15}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffff800}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfffffc00}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xacc}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x136}]}, @TIPC_NLA_BEARER_PROP={0x1c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0xd}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x67d2}]}]}, @TIPC_NLA_NET={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0xd}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x6}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x5}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x9}]}, @TIPC_NLA_MON={0xc, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x3}]}]}, 0xd4}, 0x1, 0x0, 0x0, 0x804}, 0x24040015) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r2, 0xc018937e, &(0x7f0000001f40)={{0x1, 0x1, 0x18, r2, @out_args}, './file0\x00'}) sendmsg$SEG6_CMD_GET_TUNSRC(r3, &(0x7f0000002040)={&(0x7f0000001f80)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000002000)={&(0x7f0000001fc0)={0x3c, 0x0, 0x200, 0x70bd29, 0x25dfdbfb, {}, [@SEG6_ATTR_HMACKEYID={0x8}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x5}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x2}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x7}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x76b}]}, 0x3c}, 0x1, 0x0, 0x0, 0x24000050}, 0x4040080) perf_event_open(&(0x7f0000002080)={0x0, 0x80, 0x0, 0x9, 0x4, 0xe2, 0x0, 0xf5fa, 0x190, 0xc, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x3, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8b, 0x4, @perf_config_ext={0x0, 0x1ff}, 0x40000, 0x28, 0x0, 0x6, 0x4, 0x400, 0xb68e, 0x0, 0x5, 0x0, 0xfffffffffffffff7}, 0xffffffffffffffff, 0x0, r3, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r2, 0xc0189379, &(0x7f0000002100)={{0x1, 0x1, 0x18, r2}, './file0\x00'}) sendmsg$ETHTOOL_MSG_LINKMODES_GET(r4, &(0x7f0000002280)={&(0x7f0000002140)={0x10, 0x0, 0x0, 0x1080}, 0xc, &(0x7f0000002240)={&(0x7f0000002180)={0xa8, 0x0, 0x8, 0x70bd2c, 0x25dfdbfe, {}, [@HEADER={0x5c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'hsr0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vxcan1\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0x4}, @HEADER={0x28, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'dummy0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}]}, 0xa8}, 0x1, 0x0, 0x0, 0x8}, 0x10) r5 = syz_mount_image$vfat(&(0x7f00000022c0), &(0x7f0000002300)='./file0\x00', 0x6b17, 0x6, &(0x7f00000035c0)=[{&(0x7f0000002340)="26c1ac7fdc030355f46ae97f5ea3dc4041188fae8464409b6ed49f9bc54e324cf3618270e037d5f6a4eb1f396644aa2c7b0b9ab7ecdbb777488edf0d9f6fe64ecd3dab6afb9808c1678b913269e353db2ed0e40c66d06b0813", 0x59, 0x1f}, {&(0x7f00000023c0)="2ac5dc89734491f978553923ed0b5c6291aa9f7aa8d574c75fe600fa91a7b292db4f3ab8198ec1621a91ff8516daf0ea858b6122ca930dd5d3351b91d2d5f21b62f818e4e46e1acf176f0871fabb387dd0138f047ae5f9cdc82b908b3dbb63f2bfbf4c568b69162ecce03a92978ead62b9acfee28ef93521dd794d1d87924ebfd8c91742d9927a8dc5aca8ea3ca260cddbbfa047ae7ac491f1b4eb6529259503b99677", 0xa3, 0x8}, {&(0x7f0000002480), 0x0, 0x5}, {&(0x7f00000024c0)="52c0bd89b7039899b31e88ae6ff1b0af4e30265be8df92755bfaf4801dc6f611805bf67e48000d951232672b6d89f05410307e0ea865954eeddb7c94304ea0ea550318d2beecffa43289122e1c64d5a83606b10303a683860d24b54f00623caf862e15de92ca2820c6a111abd85a800c5b43877226f93325f22e917cdd2f3b2e619fa7a29a3662ffabe444f288d46dd6ea8c9eeb44ae145e3158a6ed923460fd33ca9c654df7b1c464c588f35900b8edfec4bd15968ce5baf49d3eeb0ca7c76f30dad9a5c846e85ad5265cde56150730b43575505d4f204ad643b25bd052e28b5c14dd4b47338d9425772b183e6de301c2ed967ca71439a172c152f4d24d05af436952692d23498f1b4ff18648817a6b25c6a7b2e6577450458fd94bd18226dcfa08402915771d07a5579200a1e6b3c14d9fdab83ccd4dec560d72b66b84edaa78ccf5b791ddd2d0b6ab9bd5bbf2fb1fc758066dc628d57f03d565527035f3842d9b464c72d8461f4c5b56014262e4ad8fbe040c827de962870b4b3d27e4f537f936fafebab5d840c56115e0491adba629faa7680a26c794698f38202059b9793cbaf7a6fe746045abd3a5e198365f26d9bc3ee0f7477006fd87b2944fbb92628d796d93895eecccbaee2ee69d9f8317a9e8f367662a607a5a5b3c37ce419a9392d700085d332255656716874decb4dba440f84c66164bfc9c9772e751bc3df791c7687b7574dc6431fdfe0e57c40dc4fc9af4bc805bef2ac9aee78033aa3a26690754a1e80834ee9e62176b99905af0f43de1d3a3a23dc9b0909334616ec17362954d547ccebe01d8bc36984b6e3e8322ff63d6a013bd7031731cf7d7c5204ee085e1be715fc1899d8b84d54421e442b454f72f2c044ea11940dc73c739746509863c4c0c8f13fc94ef36b9c6173905687745a3635004c51c41f6452fe90530aa41cc65550acaf91d7bbe5584f602f07fedbefa4d81fb6e696022a643d4e5e654ef9ad0ab1f6836a80e338befd0c7eda614ec938cbd83defa4c6b0c15d9cde4b6508b8e9dc82a0c5e9e4dc50c3b17841f30c245b7729154ae0b55a9bcaeeae8a641a6464317daafc1258acbe809a93cbc4fdcff075b2ed0016fe80bb51f333d9ed53fbc0268b6c551268d3d953bdbef5cde58b2f008520a3250bee8bd7c1cb704d188290630376241dba9d2a144708461f811f469b66f31c32bb008e5501e82ec746990f9eaa2d9c022f96579523146148737c815e6b0071977d755576bfede4af47d0ca7490bf3f9ab417e5a7bfac104e33e791a597c6a0906a5a23eb4c2b1d25e2ed6813620ba71b717b2372a09cc89b1af928e2b89cdcf82ce2f8a787a308bc63a30d293a147cac0626508288275a458fc1d4d9582ef42f44c5a70e408c124a113a64864fd49400f2db427f07ff7de5db995b4655c949b96bf6d1ec5b5543f17d6c0ba17b73d2753edede01cd4c4a5e4229e8db31dd83774b9da867a6c36b529e2665df427e9bf305586ab3836dd26923da5e763e210208d5e5b7f2fce6dc65de7b5e5135eb87248d80cd47257c1f8fd1dee3f512cd3fab3c2fa8edf3c024bc9738768451aa12fc23907ccf2151a1ce131e9ece9156c88a7a32d10b4789a4e692920d04ad44e6930e271e6b25bf21c2cc820afe413bc848ce0a2ed1bef5c575138bb48d95b55263f9ff0107c38e4b13534cfea3fa7512d8eafef775878ea526b6f21f14fb42659545712506ebb2e8482f667342034ba88a6332a9e7c8d8bfce1a509ad619116de78ad1371a9ea7039694577f74c2a1a8b36555c9e2c212938aac30ea07f5f7a105aeb436421b63542fd112342b586209e49fa31c2c60229b440b4cdbef6eac6e66a00a9ab4e67124ba1bc6e23e1d222362a3c6b5f791dec2db120db6e126f41af6d526a9797b4ee9d88a29e2877670dc3c8f294babe5afd029e4461061a01eef8857eaa03381bf85128c87be397161c1118ceee260030b4f05b9e3352a3af669215e53869eca3d579a61b19292355069e2718a0ed026960c3a555ce50e64754972e5f81e75ea050556945a171b80b1f80d64784412ffe24591bc62eb98c18687427f42841a89e8d7289338507a157cd9d31a9af7d4e4d0623018e9db140142e66ca258ea6993e926f3b5bc0632acb9a1d831aebc7345abccf6840c7ae18079bd1a2e88d87a7f9abdae83d5139294c2ffcde8975bcde5141fb7d2de4b7e3fd50e000ae0259443ba782b05d026240e52cba33c4708db3108bb45e4805d3212a133163df635cdf70fc4ae647d540cba60bd76edb71304cebf30573495cb6dfb58e61b0b5d2b08f8300e1243cd11524f23963b25f0525706fd121338e256f0a81d64c669e7a275ddd56472d01859735b4d0f4f170646838596932615c012d88dbc84f7734ec1345c3615de19495207db941075a29ee602360ec19c8f0aee78c593ae2bade1477574a1a068a05b318cef8a00f175405ddba43ecf69baa04cfdcf0c0fe80a28f61d9416a32eb213d82c4fc99ba466c12a995f695e3a8f6a39abe80f1dabc742b67ff180cf103372a065669352a819260e500914b174a092fa1ee50a68354f1d9e4770cd5c4f2e46205ec9e85f7142b4d7fe7d0388928b90b63f456c3a467463619772449f5f9d54052fd3bb64986c07d8f7d09a9a70df5e754a045b765c3b24092e6812df117978c123c0053d85be17798b3b9374096f2fbc7ffead9a3645b0b538c82bb73dea1b106422cb70189d2fdf344490b0767086f980676633e475c07fb1c26f7f2d4ff847895959e90420befab6d42c600a1439aaf226cb2c686052d277c1cb114e243d445fea86a52b0a90415a70c3a76a4be5756c7358bb5f450bef1808fbd9312b5d32725e38fe816208f92ca3a050f88ba7224c91994c71ac854714ae54bfe294a675ca6de01c82241b55a66247227b832f0b71ebede5c1eaad309848d03d54bcf10d1f8bceed72d046f28327d30d6529095a21a1a054f1ca2d1e6be794073e4e91c362f8f7447bf520e6a7433f3b136c0845859990d58321448258929e391e45e2e10a1cf4295ef396e1ee3287daa1ffc4e700f8ce054875e3bbcd45b3ce79e98553bad2ba40c68d4e9bf6318371abbe475d331555e1be1ec2edd644094f24e3c493a3e124ed219b88c53e7102c6a3c31b5632e24f64f4614bb7f2f6e24eb3d7358bea25bd065268b2a9d964e3ee5a207b3dec6d5f5d1f02bd061f2fd5368772a558c0a98297d2659b8f64beac21eef13e25b02ee33061c0333d4562c98e6a31ddbf0dd0b20eef1082977d136ff13efd832f3b5e0c1bba636b80ca5802bfc2c6b4bbfb0bfcdf5b123878e4d71849f7f4f9fedc1b9ba6e79bd65486a9caf1cf890125a9fb3d54cbc2f4c66dc535ce9698883dbb6216930bbebba0e838025f7e960c6dac18fc38fea93f948b7d4402e9b13ff1d6147529787c91de62bb8ec6f8f81023a0e9583f580d4de228d0ce464a1a9fb499271d00c539fee61e3ad0e30f0fc36720ee79fe5dc5f7cabe60de7a1e73691e980f5781185594b73d514014302c943f26481fc5231bdad6f3866aebadd383b57a97cff34c031dfb61f52c11c87540ef50b7ed67ea3ee1e15abfe05ba71e7c25c036ed670d92e55d51c42dd971d738c77f0a17e75110cafa1171c2c3a293ecdfd5d90d1a7f31e2fa694834ae157c31d309c20337264ab4c5f18e0f7cfbb83c213f43b75c2456f15081e0a0496545276c5d050a1d08f094f2f826fab38d66bb4dc73337bef1410a0974c28528633d1e42abab7e98b7171452032f6a7de2ada18e598a0ece239be9d7ed6bba98bfeace4f7d94f1f7f9bf6f14f635b8f3f0024241c5513e5a09851bb9c9bce7fc94dbee02bd806b8905e610a6295d75e44f17454900c1c40d1f9248405d5ca9fcc00164632b9c28b674af3782f9c52bf203f5139527e45d684b16c7a81ca744e4c523373e9834e886808aaf042cf566c7d00fc273f4a6a9ab86bd1cb83553ff053f7bb22016f5140f02966823ce548ad1ac8d3d7ba9be7f0c489cd8bde0f3c0769ad82fd70582df5f8321dbbc6f4d268ece90aa2e40592f2249d350c3f5d6c486ef91010ccab1eb99b1cfe6660f2e028f3a936ae79b30356bed3c3dea55b1a564f56b15b92e794216cf73d8872cd4c3b425e65c59a0a7b738fc2297eeba05df3d3497599c8a466959d05c04deaef5a5a28da9e99a6b193be993d003e5cec137787d0137ec3d02a5fa1d0e5b898f0f8b7e951d199964c4236747b196f8ee2bbcf48a5b84e161fcfab2b65f36c3bd915f83ae00033a7790b59123068daa3e789c24fa2428c47e8023a56588f8f078daed9eff64e7c065a535adb07f70bd4efdd875c79376f3627e9507617e77db1913de1d78988a5a2f7e762c64a74da5751e78cafe30cc63b3c983a2182363cc345bef6e4a1e9d9a6ec5761b62a11d4db18b5eff041f8ffae63dc109612bc4ab83d6226ba56bc6d133b818e92ca71d382a2d077466736ae9e1a317867cb8365f6c18854808e23aeb822b93b158a27e41cf5182d93067c9562bb3dedd73a0e8997cb982dae570c898e041a29db0d1ac96bf5f3f1ae7b516369f653644da38c30c1cb984b4ef285eff1f64c1974b2707c05c0437feabb36fb544e36cda8e6c139a2848a99f922bd9ee6b60cb1e4e9027243f783a1f6e6c5f80cf7998bf40822b73dff77c8c373c65ee15bcda3d3a8132c2ad50d7727aed67a550c13e4b93d1259a0ab4e2279d0cdc77b5267bb499a9bed537b300ae2edd0ba5e64834fadbac2a376aa1008cc011c5f4580121ceb8efcb80638930a491815d25cf474bf6a601a54a4328533efec68384a19fd947c68de3fa0f82db61e7678bedc647c71b8f84cadb9cb4fea401a3ff049860bf6023556617532c9f102028b9407e618b16e3346edd8ef5e05179da9619bf4ad628a0c474de703140627bf67d834acbdb545d9747bbb4b1de79ae429cb166d4c11371181328cdc21e7a1004e17d78618b911b23ae34951fc85dd4f80d006cfc1c690d264acda00775ee36fbb86424d4caab7a536ed619e51ab7c94806ba9a0b533c9f5477ea45176ff99d6f28a2f0bbb6e73b860ab1c238df6c9f9476cc69843885fd2aca03c5b7b97c8311ee3e74afd92213d07d7c768746beae22178346abe95801594658bff6d5fab0e8e634748bb69747b1d0445b512830098941b2db04f50c7616bef4482b9e1ac275b9e5f346974ac63e590d0ddd90540a71b1ab5c4c742bb2dd3a4fea158ffcd4de07b2de1c12d7839711aa63329ae93ecdb31805f47cedb800821068ede4e460f9d58c4780544744657ff8b492acf5de32c7b13b63b5080b6adf71d8bc3644fd192c8e548e6b3ddba7777f41431a175c5ae073a91c12d44389657d8617f8f8c5ae5e38c44bd99009f5cfb77722d26b5eff84a8a5c7627b7d26ea2e2558fff27cef8ea61fc0403d65625094a3c9dc4f11ec6e4817b252f21e434666c5fa277b2fff59cbafc66eb6e210b4f25c7f574b985cf059af3fce27c24af4bce4a0a6b52afda2e6fcef6b29ea3cdd16403c830d3726c6fbf14eb8e1288a748da532c3931d613ea284094088ed9bb0c9b93a432b17aeed6f1c7efb30f4751380c01e8bcf31162797f381375fc7ed1494e0fa92400eaac25fc40feacbb75f178523a3e73c6a8bf3826f51eb22ff6d4ac538bc1ce3bae47e871c20d81ac5386f7f7b9ff4845d5a209df8f27f449cc6367c26c76047e8ec1dc4ff13fe8e8331cecaabd0634a40159b6ed53422f608a266e47376796", 0x1000, 0x7f}, {&(0x7f00000034c0)="48ed43ff8c7954e51dc82cf64812bb012c4d2aee003d2ae450990f57ad0e3c155888b2e56c243ec440369d6a993536e15bc77eb768e580c733d0fb6b7cc3f6bed3cde54f9c25d8e3750c1252e69db387b31111e920f68600d21b84ce2501bfa7e6227123db026106c6fc9c7b7a835f467334c46b674af6337943d9836bc8f4da3a79f768162a6c64d05ed621ee5a11f1161f18a1806dd29e148997e43dce938a90e35c49bc6f", 0xa6, 0x26920000000000}, {&(0x7f0000003580)="2d65bd3e0b5bc4ece97646e6139ae6192e0d6d6ef5964da71cdb36b9e592e357d5d1be3ff060f057cda7d1e3211c7061091b6c44515f09", 0x37, 0x7ff838a5}], 0x0, &(0x7f0000003680)={[{@shortname_winnt}, {@utf8}, {@utf8no}, {@shortname_winnt}, {@shortname_winnt}], [{@uid_lt={'uid<', 0xffffffffffffffff}}, {@fowner_lt={'fowner<', 0xffffffffffffffff}}, {@smackfsfloor={'smackfsfloor', 0x3d, 'x%+(.,-*'}}, {@pcr={'pcr', 0x3d, 0x3}}, {@smackfsfloor={'smackfsfloor', 0x3d, 'netdevsim'}}, {@smackfsroot={'smackfsroot', 0x3d, 'nl80211\x00'}}]}) openat(r5, &(0x7f0000003780)='./file0\x00', 0x20003, 0x17) sendmsg$IEEE802154_LIST_IFACE(0xffffffffffffffff, &(0x7f00000038c0)={&(0x7f00000037c0)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000003880)={&(0x7f0000003800)={0x6c, 0x0, 0x300, 0x70bd2c, 0x25dfdbfb, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}, @IEEE802154_ATTR_DEV_INDEX={0x8}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x6c}, 0x1, 0x0, 0x0, 0x4000}, 0x4850) sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(r2, &(0x7f0000003a40)={&(0x7f0000003900)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000003a00)={&(0x7f0000003940)={0xa4, 0x2, 0x7, 0x201, 0x0, 0x0, {0xa, 0x0, 0x2}, [@NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x9}, @NFACCT_FILTER={0x1c, 0x7, 0x0, 0x1, [@NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x1}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x1000}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x4}]}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x9f5}, @NFACCT_FILTER={0x44, 0x7, 0x0, 0x1, [@NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x400}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x1}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0x6}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0xfffffffa}, @NFACCT_FILTER_MASK={0x8}, @NFACCT_FILTER_VALUE={0x8}, @NFACCT_FILTER_VALUE={0x8, 0x2, 0x1, 0x0, 0xe1}, @NFACCT_FILTER_MASK={0x8, 0x1, 0x1, 0x0, 0x3}]}, @NFACCT_BYTES={0xc, 0x3, 0x1, 0x0, 0x10001}, @NFACCT_QUOTA={0xc, 0x6, 0x1, 0x0, 0x4}]}, 0xa4}, 0x1, 0x0, 0x0, 0x8840}, 0x811) [ 926.490277] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. [ 926.503898] FAT-fs (loop5): Unrecognized mount option "€" or missing value [ 940.496366] FAULT_INJECTION: forcing a failure. [ 940.496366] name fail_usercopy, interval 1, probability 0, space 0, times 0 12:01:31 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 2) 12:01:31 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0x0, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 12:01:31 executing program 0: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$tty1(0xc, 0x4, 0x1) r0 = syz_open_procfs(0x0, &(0x7f00000002c0)='fdinfo/4\x00') r1 = creat(&(0x7f0000000000)='./file0\x00', 0x100) perf_event_open(&(0x7f0000000340)={0x0, 0x80, 0x5, 0xfd, 0x81, 0x4, 0x0, 0x0, 0x40000, 0x4, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x40, 0x0, @perf_bp={&(0x7f00000004c0), 0x9}, 0x0, 0x80, 0x5, 0x0, 0x7, 0x2, 0xd87, 0x0, 0x2, 0x0, 0xfffc}, 0x0, 0xf, r1, 0x0) unshare(0x48020200) sendmsg$NFNL_MSG_CTHELPER_NEW(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=ANY=[@ANYRESDEC=r0], 0x50}, 0x1, 0x0, 0x0, 0x10}, 0x20040000) unshare(0x28050200) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) ioctl$VT_RESIZE(r2, 0x5609, &(0x7f0000000100)={0x9, 0xd, 0x7}) getsockopt$inet6_mreq(r0, 0x29, 0x14, &(0x7f0000000040)={@empty}, &(0x7f0000000080)=0x14) r3 = fork() r4 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r5 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_udp_encap(r5, 0x11, 0xb, &(0x7f0000000600)=0x5, 0x4) unshare(0x20000) getsockopt$inet6_IPV6_IPSEC_POLICY(r5, 0x29, 0x22, &(0x7f00000003c0)={{{@in6=@private1, @in6=@private1}}, {{@in6=@local}, 0x0, @in=@local}}, &(0x7f0000000300)=0xe8) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000240), 0x20401, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x100000e, 0x13, r4, 0x0) perf_event_open(&(0x7f00000001c0)={0x2, 0x80, 0x2, 0x81, 0x9, 0x80, 0x0, 0x8, 0x30008, 0x7, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x30a, 0x0, @perf_config_ext={0x400, 0x40}, 0x8020, 0x2b00000000000000, 0x6, 0x9, 0x2, 0x2, 0x161, 0x0, 0x5, 0x0, 0x100000000}, r3, 0x9, r4, 0x1) 12:01:31 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) fcntl$dupfd(r0, 0x8b105c1b9faffd49, r0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 12:01:31 executing program 1: openat(0xffffffffffffffff, 0x0, 0x0, 0x0) fsmount(0xffffffffffffffff, 0x0, 0x0) lseek(0xffffffffffffffff, 0x0, 0x4) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4303, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7}, 0x0, 0x0, 0x400, 0x7}, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) preadv(0xffffffffffffffff, &(0x7f00000002c0)=[{&(0x7f0000000300)=""/20, 0x52}, {&(0x7f0000000100)=""/79, 0x4f}, {&(0x7f0000000340)=""/132, 0x7b}, {&(0x7f0000000280)=""/6, 0x6}], 0x4, 0x8000, 0x2) setsockopt$inet6_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000400)={@in6={{0xa, 0x4e21, 0x5, @loopback, 0x7}}, 0x0, 0x0, 0x44, 0x0, "a1544bb8e7e4b211b30b573c1d87157b8725cbd2345f4aea9f7cc869e180aa0ef49e99034036de99f47b274917efa243ddc1f04e6d96435252b1f5825f6f905ce349e20b9307c0bc2fa1dc14c786c9f0"}, 0xd8) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendfile(r1, r0, 0x0, 0x9bbb) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) r3 = dup(r2) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(r3, 0x8936, &(0x7f0000000080)={@local, 0x78, r5}) ioctl$sock_inet6_SIOCDIFADDR(r3, 0x8916, &(0x7f0000000000)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, r5}) openat(r3, &(0x7f0000000040)='./file0\x00', 0x800000, 0x21) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000500)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x0, 0xee00}}, './file0\x00'}) getsockopt(0xffffffffffffffff, 0x4, 0x7, &(0x7f0000000240)=""/62, 0xffffffffffffffff) 12:01:31 executing program 4: getsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x0, &(0x7f0000000200)=""/116, &(0x7f0000000280)=0x74) r0 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) setsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000040)={0x0, @loopback, @loopback}, 0xc) getsockopt$IP6T_SO_GET_REVISION_TARGET(r0, 0x29, 0x45, &(0x7f00000004c0)={'IDLETIMER\x00'}, &(0x7f0000000500)=0x1e) preadv(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0) r2 = fcntl$dupfd(r0, 0x0, r1) sendmsg$nl_generic(r2, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000000c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="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"], 0x118}, 0x1, 0x0, 0x0, 0x900}, 0x4000040) lseek(r1, 0x800, 0x0) r3 = openat(r0, &(0x7f0000000180)='/proc/self/exe\x00', 0x0, 0x0) openat(r1, &(0x7f0000000000)='./file1\x00', 0x209800, 0x4) sendfile(r1, r3, 0x0, 0x100000001) 12:01:31 executing program 6: r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000240)=ANY=[@ANYRESHEX=r0], 0x4a0043) setsockopt$inet_udp_int(r0, 0x11, 0x65, &(0x7f0000000100)=0x7, 0x4) clone3(&(0x7f0000000000)={0x143001e00, 0x0, 0x0, 0x0, {0x2f}, 0x0, 0x0, 0x0, 0x0, 0x0, {r0}}, 0x58) pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0xa0743, 0x88) 12:01:31 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) [ 940.498104] CPU: 1 PID: 9427 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 940.499107] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 940.500108] Call Trace: [ 940.500444] dump_stack+0x107/0x167 [ 940.500894] should_fail.cold+0x5/0xa [ 940.501367] _copy_from_user+0x2e/0x1b0 [ 940.501849] iovec_from_user+0x141/0x400 [ 940.501868] __import_iovec+0x67/0x590 [ 940.501884] ? __ia32_sys_shutdown+0x80/0x80 [ 940.501908] ? perf_trace_lock+0xac/0x490 [ 940.504225] import_iovec+0x83/0xb0 [ 940.504673] sendmsg_copy_msghdr+0x131/0x160 [ 940.505191] ? do_recvmmsg+0x6d0/0x6d0 [ 940.505674] ? perf_trace_lock+0xac/0x490 [ 940.506184] ? __lockdep_reset_lock+0x180/0x180 [ 940.506758] ? perf_trace_lock+0xac/0x490 [ 940.507269] ? SOFTIRQ_verbose+0x10/0x10 [ 940.507546] debugfs: Directory '€˜§°ÇÛ ”uòQÇC !' with parent 'ieee80211' already present! [ 940.507776] ___sys_sendmsg+0xc6/0x170 [ 940.509894] ? sendmsg_copy_msghdr+0x160/0x160 [ 940.510474] ? __fget_files+0x26d/0x4c0 [ 940.510960] ? lock_downgrade+0x6d0/0x6d0 [ 940.511455] ? find_held_lock+0x2c/0x110 [ 940.511959] ? __fget_files+0x296/0x4c0 [ 940.512451] ? __fget_light+0xea/0x290 [ 940.512932] __sys_sendmsg+0xe5/0x1b0 [ 940.513395] ? __sys_sendmsg_sock+0x40/0x40 [ 940.513920] ? rcu_read_lock_any_held+0x75/0xa0 [ 940.514502] ? fput_many+0x2f/0x1a0 [ 940.514943] ? ksys_write+0x1a9/0x260 [ 940.515411] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 940.516046] ? syscall_enter_from_user_mode+0x1d/0x50 [ 940.516649] ? trace_hardirqs_on+0x5b/0x180 [ 940.517177] do_syscall_64+0x33/0x40 [ 940.517629] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 940.518250] RIP: 0033:0x7f59b4343b19 [ 940.518700] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 940.520902] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 940.521822] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 940.522691] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 940.523544] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 940.524405] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 940.525270] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 12:01:32 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={0x0}}, 0x0) 12:01:32 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 3) 12:01:32 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x0, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) [ 940.661652] FAULT_INJECTION: forcing a failure. [ 940.661652] name failslab, interval 1, probability 0, space 0, times 1 [ 940.663019] CPU: 1 PID: 9445 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 940.663817] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 940.664780] Call Trace: [ 940.665087] dump_stack+0x107/0x167 [ 940.665515] should_fail.cold+0x5/0xa [ 940.665962] ? __alloc_skb+0x6d/0x5b0 [ 940.666424] should_failslab+0x5/0x20 [ 940.666871] kmem_cache_alloc_node+0x55/0x330 [ 940.667395] __alloc_skb+0x6d/0x5b0 [ 940.667825] netlink_sendmsg+0x998/0xdf0 [ 940.668282] ? netlink_unicast+0x7f0/0x7f0 [ 940.668778] ? netlink_unicast+0x7f0/0x7f0 [ 940.669255] __sock_sendmsg+0x154/0x190 [ 940.669734] ____sys_sendmsg+0x70d/0x870 [ 940.670209] ? sock_write_iter+0x3d0/0x3d0 [ 940.670696] ? do_recvmmsg+0x6d0/0x6d0 [ 940.671151] ? perf_trace_lock+0xac/0x490 [ 940.671629] ? __lockdep_reset_lock+0x180/0x180 [ 940.672171] ? perf_trace_lock+0xac/0x490 [ 940.672629] ? SOFTIRQ_verbose+0x10/0x10 [ 940.673100] ___sys_sendmsg+0xf3/0x170 [ 940.673529] ? sendmsg_copy_msghdr+0x160/0x160 [ 940.674054] ? lock_downgrade+0x6d0/0x6d0 [ 940.674530] ? find_held_lock+0x2c/0x110 [ 940.675015] ? __fget_files+0x296/0x4c0 [ 940.675464] ? __fget_light+0xea/0x290 [ 940.675919] __sys_sendmsg+0xe5/0x1b0 [ 940.676347] ? __sys_sendmsg_sock+0x40/0x40 [ 940.676840] ? rcu_read_lock_any_held+0x75/0xa0 [ 940.677368] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 940.677985] ? syscall_enter_from_user_mode+0x1d/0x50 [ 940.678567] ? trace_hardirqs_on+0x5b/0x180 [ 940.679070] do_syscall_64+0x33/0x40 [ 940.679482] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 940.680092] RIP: 0033:0x7f59b4343b19 [ 940.680522] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 940.682670] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 940.683553] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 940.684368] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 940.685198] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 940.686018] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 940.686865] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 12:01:32 executing program 6: syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="01434430303101004c494e55582020202020202020202020202020202020202020202020202020204344524f4d2020202020202020202020202020202020202020202020202020200000000000000000b8000000000000b80000000000000000000000000000000000000000000000000000000000000000010000010100000100080800180000000000001813000000000000000000001500000000220017", 0x9f, 0x8000}, {&(0x7f0000000440)="ff4344303031", 0x6, 0x8800}, {&(0x7f0000000480)="88001700000000000017000800000001000001010053500701be", 0x1a, 0xb800}], 0x0, &(0x7f0000011700)) r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_udp_encap(r0, 0x11, 0xb, &(0x7f0000000600)=0x5, 0x4) sendmmsg$inet6(r0, &(0x7f0000001f00)=[{{&(0x7f0000000040)={0xa, 0x4e24, 0x101, @mcast2, 0x9}, 0x1c, &(0x7f00000000c0)=[{&(0x7f0000000080)="7db8a0b3397d8f9c828b5fe37854b15e94fb64741e2005a294282ac05d01daa432f60011c9d74f4fd2ce36f2f088724b0003e9706624ba4064afd4", 0x3b}, {&(0x7f0000000140)="021bb67d7e698668bb327052255d9b1e0c837851097aeae70e0d6417f277c02016b8bfdf2b2aec6217f543c78a3d78df496a2330dbbbd51d060fde2eaa81376d37bc70768757e0cf6c2420bbe4693a82e830138757032963130d3aa000403bb16f85846f82bbf3f2450e14204888a3dc41", 0x71}, {&(0x7f0000000280)="fc7e73fb062fecb102c34af07d6ec7f6c2ca1901487ab56d053bf0f0cc72c13dd4e2fadc76b8f1412bd38e0891ed61c13c3d65710c5e6050c6c1ee7f59202627f59eb3db7b51a60f7765b52a8fbce7ddc09951464c6de7", 0x57}, {&(0x7f0000000300)="e1a95a07c680dd275cf41c93f4a3cf61ad97f5e9130a3176ca6e34c32b25b697f5106a44f9f1f0d70fe653c0372476d3a5af076c2a162d05c22df2019edd203e31173986ebfed8b75dafdfe966b626a0d8d072df4351d51908baeaca6eea83de68934bfcf69d0d864d7015e6351559e746d82b98d846c99bc266f164bae68fa9911b4d2172f58290fddaabd84dde3de0780221", 0x93}], 0x4}}, {{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000003c0)="ffdff87a3767f4bc6c9b4aea9ea2c311e78412772259c46a1daa2e0b4a7e28f9c6cf1406dada55bd86cabf6f7ddede2221869f4d8fca570df4dd1f4f05a2cd3a0b63ae7d727134db4e62c8", 0x4b}, {&(0x7f00000004c0)="1ebaf07cd2d63edab51a133dfb40a1515f42cae4aa06f252c44864de046596b3d1855d025d92c62c7162e8b7032e9cb2aff0bfa632c314a39ed6e0dbd210ff740bdd8553eed61ed736a1a22f050614d326ae9bae4c3f7f55758c5a3e9db8c1f1060d0ed939e577eef84753b63e8cb21135ed4b6174c6999ef58a2f06dba8c5f43a0d5d7ff299aae0e043387df2f7aed65e9dbfe7b46c07496fb9232c9cc2b730c07da756148f19631b9436039ef05e08f9b80c1b2b723cd9ff8486996532024b7aa15964f6ebf1f7880a752c7a75148b04da062a4b9cb59a380ed440", 0xdc}], 0x2}}, {{&(0x7f00000005c0)={0xa, 0x4e22, 0x10001, @remote, 0x9}, 0x1c, &(0x7f0000000900)=[{&(0x7f0000000600)="4c403e086577522e06e1474503afbead23a360d3d24b6341ce64c8049c1a5fe1b6f676a895f7be154d6571b695adc93d4241b62cd5c630b0b419ff126f62ceb61d3dd5a9f4d811968f26a9b0e75d96a2ab30c3419d0e4e64e6173ce6a4b4980d568fc2c956faa4c8afa10041bdc3a4347f0449421b5d511338527af6bfbb795897524e1a371bb30e065181400443274735eb7342110d1f90636ed088a4a930a0f14a87316fe3cebebcb15df70c2b3fadf976264e43c9c7795db37e463335cd4b7b541a220276a8bcb8", 0xc9}, {&(0x7f0000000700)="d2511315aa7164c9eb3b4c0a06656bc84e7ac95a8bd3076bc988fc62fc1ac13c3fa583fc7264a7ad86a4a68a868e93c38a8d69192d95adececc2d7c438582395217f652ecb6d536790c70ae57a06c040c03a16b26a8f3fabbe71ee2753b5e8db7bbe74234bd3a0a5b3e076e60e133485bd7087", 0x73}, {&(0x7f0000000780)}, {&(0x7f00000007c0)="53a50fd3d69f9f60fe2d26c4121bf4f8f97bdfd19b89572e59cfcb7efa928ce9ebea6d1ed6930ebce28e4d276acdbd09f84c030a7985ab48b016687ce4e34da7b21022989554d88986e8ebbb800a5249d4ce63ffc5f7b30319e7c51d15c6465310812a6ee8c2bf5fc381664194798c3784b6f46c575faa368b80b53954b5c30604bbce876c8db82baa24c692cf0b59afb488dda9033a17396bef08", 0x9b}, {&(0x7f0000000880)="3f71b12f861864e55e61f95ba99dc351fa62785e5bffbc0176a846eff2b59691446f3ed467072de4a852a4f184ae63994cdd4bcbd17d44744f075e5964b25207b99a93128587d36bb72bb2329ebddfbbba20d2fcf20159df33773159ad3220147aaf7a00131516b832454482cfab74c14bbd62b0525a1b19", 0x78}], 0x5}}, {{&(0x7f0000000980)={0xa, 0x4e21, 0x40, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x20}, 0x1c, &(0x7f0000000ac0)=[{&(0x7f00000009c0)="e7da30291bc345449e1362b4c70d99697c301a5812ed59a93210b914d863c53b98a8c43a573d06289029ff2b5a6a5e89a876de1199bb93f6e1576454a2746741aace6673f7d0d8f6035dd087dc4c66966c991d6ddbbfffba8396d1215718f42101624c74a402bb19e1e9437462c38e2f2a443f5b61b225f3121c894c904292f5e9ec8908929a4cf425f4c1de31361b0c5db30da1e8f3e869dce5d40e37b7321a867317dd20ef6cd9c8869bc3850783a91fb746a01a7303d5161bf2f4e69e19eaf29cb931f40dbd72c44a84421d35f90dc2", 0xd1}], 0x1, &(0x7f0000000b00)=[@rthdr_2292={{0x48, 0x29, 0x39, {0x0, 0x6, 0x0, 0x6, 0x0, [@empty, @loopback, @local]}}}, @tclass={{0x14, 0x29, 0x43, 0x6}}, @hopopts_2292={{0x108, 0x29, 0x36, {0x4, 0x1d, '\x00', [@generic={0x6, 0xe7, "b96aab487631a2888159a1c81d9f7182ae898cd6c674806eb9c256ee9e3f0f18e443c6422bad1bad9e02ed8bdf31e822b5a9ac0cb9e7379bda3808c2687e0118448522f9a73a3cf913ffa438e064398e896e41503f0f933ed4b98b480245f843c3c166c8d3e057df1b18e1ce83433ce49ed13d84317ab18976d9ebd25d8fbd3c2334321743c6c25426de47584227cf3bba58709acebab07bb7a84b4c89f9dbe16db22c459426a2736c07ea99229d2d3d1f9febd9ca053e9ea73f9fc201e6823ce42135504b63b187e336f1b2902312dd4e568da4236cb67dd051feb38d9eaa81c4bfadfca17835"}]}}}, @rthdr={{0x38, 0x29, 0x39, {0x2f, 0x4, 0x2, 0x1, 0x0, [@ipv4={'\x00', '\xff\xff', @multicast2}, @local]}}}, @dstopts_2292={{0x30, 0x29, 0x4, {0x2b, 0x2, '\x00', [@hao={0xc9, 0x10, @private2={0xfc, 0x2, '\x00', 0x1}}]}}}, @hopopts={{0x1208, 0x29, 0x36, {0x62, 0x23e, '\x00', [@generic={0xfd, 0x3e, "68aa5fd3b976da4ded3a87484c71302d5ff340423ec23266d047320daedd5ce400660fbd0c4152b5bb5c1f8ae1e40433c5f06e2129fb55daa005913fd3d3"}, @generic={0x0, 0xf8, "e07a1904e2a70c4789965626752ed66d49d4103670f3bcdced6ff457e516e7f6b549323a14431063b84e6522608d82a2506aca05efe113d51db1921ead130e36fc5a4a1d1c431c62efdf3e3d3a0891fbbc0f0c8a75c5582258b0d3f0c143f1be264000f4b343c5bdff642527969813da92dccb23915264b61725fad7a31ee6b6619f6a5959904dda92d076859ddf32bc8593691cda2759b157be48772c749026d792289d2e4cd71d0bd5999968c4015d0fc4e5666ed20cbdc30e01e267ebdd74e6ab12ad6a7960b82e219bc2abc894ccc639716cc636b4155e4bfdc87e4945c9df6b0ba990f591bd1336bd920ffb36a6b7bf02ef1ce5641d"}, @pad1, @hao={0xc9, 0x10, @mcast1}, @hao={0xc9, 0x10, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, @generic={0x1f, 0x1000, "fe67993d6ff381e61c606eda1c69a1dbf21be7d6fec15025a4ffa218a1649ffd1f9290823afc7cc1117bfdd3881c07c8be9b636a6f3dd0464d63a61fd36eed22a274d013d5661e8814a5b3a0a5060de9e9dad727ee59f8099506f6811174f2bda2489c1aebc710d383f92399583eda5ed62eb9ba137bd47934f1d17e6b7172d996321948b6a6e38a29bb0083a2ca3205d52ff19a54b5fcc586ee775e3350f679cfc47fd1c7602f325a59f0f7cfe9b428b2e5f3fbd718fef61e9b11658e868b5893f2b6fc1060f7180b39f2e049bf4c41c982d472b0d28e24977802693aa17207517d65bc379141289dd011dbfb8ce861dbd4d78dba88d6d35b03b811741d69635839a5b533d063de8d0193eb4d4797c579d9b48678f73ccd574c8dcdcd5dacdf9e2481b81e30cfff0201e4a37eb022ab3f71474cde5a865ea516aec3c4f63d30c313760470007da31965bf946562ece5021c8dd5f67c726612abfbd916d3dc7b32bdeb0e98e215d5f704fa4e67275ce973ec7ad62e2ed7738cd15f46f9e5c07cae41f9beaaf48fa996e584f02b7e80a8d5f17c3764f9c3457908fa3ebdab5b2dc1e53c7c0f1a0e1e1d37c1671f7742b49f0fc573850b25ed32be7f178d67fc8eba8eb1168d297db50d4496e908ad6d42ba335c1056a1add1aadcaf787d28f208c65cebf14dd72b3f7c56c07995ae3298dfe3a503ea84685e337269aa44bf8d46719fba3efb8d9594966a049b785ffade4a044c5220ad301c0daf9d569615db648bb34a214caeac512ca349564c17a375bf0a302a4814c28c1238be76b279e7c863ff743768c4bea42843858dd12b9601e240c2f26d93312ef99c08a8597166eb4c9c5afdc977638ec780851843b8afcf961a94e9d0e807bad59a1c9cb206247b7b036eb5d3abefe9ef89a5e86200ae7f1811ab68fc7a3add0d3c04585f18a0221da604519d8282d8ea2da99f44cb944507990c2bd50823a32514b9d2dc1234e4fd3b29b03a96dfa8e75657d85668c5d3bc7449c49261a3b1a6dfc2015b7b860474d37b13b6392bd68dab5f5242af2ec838b7f73fa64a9db12df3b5f3ca8c27015c5eb56d631ab7c2b8236a3993f8e73f2b659a9157fa83b32fa8cf922104b78ed000005cb318c53c550090e616e256a5e66025faf3dbd344c92e0c84f7be1ef4f325c668bc893c5f5c2314b9029bdbc29d3a8c2fc03f971aa7e154faab3b8eef3b88f6f5c2d072bf2f8c8755eff037dfc40123d2f50545badb554d5276ef974ef317d2b21a9fe709bcb93d9b4cd5b264edc34f4c0f5a0a95ff9e4d69df9f3171928f161b69791d5442cdd169bb4cfea33faa7bfbce10e99483e607c0732146c702f2a7a50debde1aa71f6220fa39fba8d0781258df120a6b7a469c50be17e57414b633f3b9210b39962bcfed7fdb235cf5f00adf0d797fa5df87e91cfd9eddf0ad7433075ab468bae9ef5bd46a0d41c71121d23a788807e981383bf7a09087a2cedc7b27bbd4af90f8c591d83f8f4671c12d1157fe61ea701805780e0f08eb1c02d25172d11f1a4f9a89a8a2332956fdd89928b0ec25e870d2c6ce59798fe14c61577888bc55d32e84ab7ccd59a619d8f387db16a2f3ec7f6ecce31d6acb55c2920e237081a156725e24ab9a6a1964575824421bc7dc2cfa427a2ff014339e156361fab811cefe33d8852c1f9476a114b2558283af9ba716f14a752adb21374b409aa84473319fb11508ff4a7823f0dce196db778e15a6b3b5c4bc15271fb577ab3f2de504cffbf9f51f2ffe516c96fe86c01e2f6df4fe18769a832f0620fe4002fa42a8628f5169d289272ee791e3e489ba9f09107d588ecea2c237e79ff13e033bd20dd05731ef3fd91091606663431617a10e885e85566fbac7ec53c693ba453c40c7902938771b7857babd3ed124d4f912f8bc6ed048424f7c732e5b2ab35c8d068bcba3e8a0943cff615160cf0db1fbe9cf823f0903d6543e9ed11135ead9f4e48e2f6830427ffeb3f900c0713b23b808174b54e51fa06aa9a258890e577c1e8cfea4043c881e5634328bf0f53b4fef90baf7a8e8a6142c7fd85a2365dc9ca94a4553215ad7a378a0651b1201fb4d636d9d4ab8ec7a06625b75391071e4f4b349f617751f626cf25f08ead983a23afb8c3d3f0e64fa9842880e9e83de298d9cdc88a98b4941e648043e7b05c43eeb7ef511b94b24d550da499a4f2e58e5d7315fadf4ee98ffae31c3bc70e347c2b61594b21fdbc3ac35dc2acea946db78f9490b5a3094981b813fa847c8772288ab501b4d410fce17fe049455599b2e7e9808016cac2529ba389d24e7806f223cd52ec87f14d38d69d9cf34a0f2d8039eea2d23a4a432d001c8682d7e2d1783f617ea4be2ef19d84948f70cc302ecdd730e752bda3666a380a8490dddccaf87e6f1a5cf78238d740f4fecafadc16d3d5793c8774d0fcbd76c5290f9d97e74fb596377bfed3940a0c8a486960a3070d5930971d4ee3fa02a4a9fb2fdc68e9e67c90837cf10d2437061dc9ce3743c88efe60435b49d0b3e413d80c4611d843f97907e101f8b2351a23a8c5b72df60b25104d994c3684258fd39dd4f24c1bd400b3a7cb3a9edc29aa24dc36a46ebdc265af302e4fa98821ad4b8cb65da7b3b3f4461391879794f2eac0fb6056faf67c7b82482edf87edd9379a1a026327ce73c7fb838381111ea05b3f85cfad50b8772ae2677a83c99d645c2cd42e9619507561c1ab68b3bab02298840bb90558044c0d2c83357b2dc0b2790f3c2a0b2ca01d310b26c206de74907afe6d025bc3c38f763e374f7309a1c0b2e084c4f4e010e917bee537c98fa8d18ceadc1902fcaeab35ed54d4706ef55698320c7588097cba2acf94c1288204225bfcbb54955564f9cf6e4e8943673140ecc8eb811ce6f6432c43fd695efab46f4e45669ff9cbc41ea1b3439c95573ad7d2946b32cc18df161ad9f6846320d202fd3049c39c55dd12f25ffeec5a9c063e1fc0f40237330c55fc895ee8e223aa7e7156dfb547379ff1968d2fd15a0230498709357ba44eab42c06a4a377feb2ca0268ca7beac082aa402257e998e505ff8304612920b746efce35653b0c5b5b749af1f8a96cb80adbe2ce1663c1e66c3f9a450a8064d71df867497d184fa5f4ecda3f8ff756f50b653051a9ba6d8c1a0d73c1e784f40d3dac5b3339123d77446da97507d880ef40da112f651c76203c2c5d1a9716ee0f5ce26daa75c0982af5082db3cc18d31b8283a815ba6e77ecbf86e6a56814c2262106d683e789b80d5a01891d1b7b68be90dca18a57074ee2ff761d6136e763d81b303d437eacf9b68eb44e45cdcd4937f2fdc7f5b7103c3471ad4b7972b69aff54fb39f82e37bdd67c04d443d9ab2397afb9b446cdcaa22b2e78e92495325d72f8b896aae6e21da1c474a7d2fdeec999a49d0630df3866df410ac73b461a9fab7ec3b57a9e0b9386a8a0a1d0c8cc6f0b936c49c2374936a4dd764953bd5d84e8f34a2043082fdd3a359beca9fb0fef133fe5b08bcb6b11cd8288667be0b52ad3dd48e5e88ae1cc7f771fc16b1ee1590094af5a81abe14fd74e8a3077b7f13a16f696f72be5f158212266b49ed6276b6f531db535ddcc7375361d9921756cca9e1d56945b82dbdc5f36c635cc758ed1fe5e1969baf8dfba532a662f926a6bc96acd225890ddd3a0486f1845ca22c7162ec3cf8e1291c6b2e80cf8386e0d254de00294aac041c9995c77966d172fbc0bf04ff1f11de1c26d31eb8ad062fcea7a92fbe27df31c62ba4e71225d3f8e95ce1ab3e3d4cbe3b038914e419eed8529b0578b054ba599256a730070decbd880dffd7dade8b56964b454e98a9db111eb3fa0d0f235dfb0c56c704cc48cb74e12d1fde70db2f2411dd0003fce0b7f01b553d9c76beb552e436ac39784f030f7ca76ac7e1d6a3dd223c7d27ffa2423943e99a0ef63e5bfbcb73daa4be87c282024aa45f1d8650d8fa7d8c461bdabbe1e3afe8968ba66324e2c726761105c2818cc62d5034da73d15f067f66ca9881d516a9c0eaab94ca2cd3556ffc1d4db366beb5a0a44de52bead53f3dd75cd32dce111d67311307903d22af0a7f13aac0486e041d064aba9642fb8b658e35d3bd62cf1e22df62674d9a799d0c73275a8ecde64a90b6f9d6cd4fb6a44bac58e839327f16eea4af0265377dd66c7469d876bbbcf61a25453fb02b5d559dc204cea5182728034f9b6a616ed263b3058bdce765c3582ef59843902aa53f19ae835e921e9ac84c9b67eb799d55fbf9475e6a1086eca4ff877cd9ccb8d9523abce5ec0374b9776f56f3498094865a9707221cbecef04492c0c39251c09f25c1a21953b3985a40c9e8f111c6d3d6de10e5f4e67a6ce0d4d3e6e1846319e5ff9f4efc78c3cde43a03f1de935321fe16fde162d14a6ffab6a31be053bf8841c0ca489f14b9327a50151a03c0a37b005751644296b08034c802a90c66656d0469f26c58a5b2271517e5e26f9062b3f0b18ec1f192ab164fdf040465fe16cb861ecfa2d61071257a8ce762ec82e49a89bb3b3d30a59a65a3d2031b9d802b81929c673c07e0b949108b06336ff133ccc4e32d0728e64190d8e62cf25ebd487d95a5826bb2920ca61d7c77ed1d777556465a263bd467577b7b8c637ac8a499a490df00ed613d427321e21dafec27335f0f808231cac2a99b72a94f3a258e9016efcb993fb0fd2dcd82ea4191f4218d6e17663a8dfad4d8a4b56a2f4ab42045d8b0d6e20dd6bce685c21e715a95a6d757408229079e0f8830754ef1e5d88260755e7b3eed93a50a9e4984b5a94a3c5f7b0c2c7588c06196bb7d2eaf329064a9adf88cad7d4efe88a4202d5e8e5f6f8b48342ae013721b374eed32682abce361c1ca7028496a7367b1b000c9bfa9302afa20f60adce099873feb2b213558086db9d9b79288105e63ab731b0316232dcd5e20ad1b7ad6c839275d2d9150fe06443f582a6152eae64900befbb59f59ac47b21aa228a9c6416ff2e0ae2371c3eab73c0a81f67f241d99c6825a21028d3ddc178b0d437ab5d7f8ff693c1762ef9c4280b4ad4287006fdac0b385f8ea9496fd628a92d1251c9862e115b1dfe9e5844c32ad3114cdec8cf3636d020587262dbd9bc4aa2e3077e743d33ab1a5ee34625fb0a98b3f0ef3918431a7d495f52f6916e6cff58260fa4273fad2ec45893babfceea0cdde9eec8409e10c4707a0546738708c09729253c96b797904043012b2897137c379ec8c45e92b78e13446ce00156fd8b8619b2ab4e35268631cba1358c87ccaeb3ea9e1a9cc018ff0353505fb836e012b2bd52ec0eea87385b41f7c989ad1c82319742098ef4e3f430ff0e150ca44e0d6fc62e585fc98efb3002b9d7067ddc0da54feca3776ea7fd8110ff4a88530e745cf2714be734da88575be92b8bf6eb3e2495b5b7f21098a6f7f876423590773d1b47b7d41f0a3a6e0784797ed0483180d0e93c7293e806d9daefd516aea928cc36ce92533f86eefc07cde2bcfd25e6ad5978f7dba5a75c55861820567b15f412bbd09c19d2d06eaf71ecb73cf8006b26935336e180006e5247e49aac91a1444db4bc963b528cf5b2b91bbc09a3fe9476e17494f4a4f2d97fa5ea9e6fa19d9f360db07ec14866e7a6ac71cd92e7573eb1795f54025433cd71e1c66e662d3c49930640f1b885549203f22d599afa97bfaae986ac3b7651ec5c214037f07e0df0ca8369b8f67d7dc80a77dcce4531284b5192066d65d47bca9b972a96bb86a98c3dbb7458841775215a11d691862525ef"}, @generic={0x3f, 0x8b, "baba8ec6006e01bdf6d201394967e371bc06d8da852b131d5249f51b642afaf6c7fd1e3ef9f1f3530b6c4e5372c1f3e911f62d80896f524834280f6bf0a8ac910d2fa0c07e75d6bbe404d5766b9b3b1dcbb411e57e8660c83b2bd69ac6de08cd3d1b35261320a99839e41cbc10925b8b50e63cdf6fbc75569992856571885c150b2c7d98e36049365ae8f2"}]}}}, @hopopts={{0x20, 0x29, 0x36, {0x87, 0x0, '\x00', [@pad1, @ra]}}}], 0x13f8}}], 0x4, 0x8000) 12:01:32 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 4) 12:01:32 executing program 1: perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) add_key$keyring(0x0, &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc) r0 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) r1 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000180)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffc) fchmod(0xffffffffffffffff, 0x0) keyctl$KEYCTL_MOVE(0x1e, r1, 0xfffffffffffffffc, r0, 0x0) add_key(&(0x7f00000001c0)='.request_key_auth\x00', 0x0, 0x0, 0x0, r0) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000100)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x2}}, './file0\x00'}) fstatfs(r2, &(0x7f0000000140)) ioctl$PIO_UNIMAP(0xffffffffffffffff, 0x4b67, &(0x7f00000000c0)={0x7, &(0x7f0000000080)=[{0x7}, {0x495, 0x6}, {0x8, 0xb6}, {0x3}, {}, {0x7, 0x7}, {0x400}]}) unshare(0x48020200) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) [ 940.748517] FAULT_INJECTION: forcing a failure. [ 940.748517] name failslab, interval 1, probability 0, space 0, times 0 [ 940.749749] CPU: 1 PID: 9450 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 940.750556] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 940.751497] Call Trace: [ 940.751812] dump_stack+0x107/0x167 [ 940.752235] should_fail.cold+0x5/0xa [ 940.752670] ? create_object.isra.0+0x3a/0xa20 [ 940.753189] should_failslab+0x5/0x20 [ 940.753623] kmem_cache_alloc+0x5b/0x310 [ 940.754097] create_object.isra.0+0x3a/0xa20 [ 940.754612] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 940.755153] kmem_cache_alloc_node+0x169/0x330 [ 940.755679] __alloc_skb+0x6d/0x5b0 [ 940.756106] netlink_sendmsg+0x998/0xdf0 [ 940.756540] ? netlink_unicast+0x7f0/0x7f0 [ 940.757036] ? netlink_unicast+0x7f0/0x7f0 [ 940.757483] __sock_sendmsg+0x154/0x190 [ 940.757940] ____sys_sendmsg+0x70d/0x870 [ 940.758387] ? sock_write_iter+0x3d0/0x3d0 [ 940.758878] ? do_recvmmsg+0x6d0/0x6d0 [ 940.759301] ? perf_trace_lock+0xac/0x490 [ 940.759788] ? __lockdep_reset_lock+0x180/0x180 [ 940.760297] ? perf_trace_lock+0xac/0x490 [ 940.760775] ? SOFTIRQ_verbose+0x10/0x10 [ 940.761223] ___sys_sendmsg+0xf3/0x170 [ 940.761685] ? sendmsg_copy_msghdr+0x160/0x160 [ 940.762169] ? lock_downgrade+0x6d0/0x6d0 [ 940.762656] ? find_held_lock+0x2c/0x110 [ 940.763099] ? __fget_files+0x296/0x4c0 [ 940.763563] ? __fget_light+0xea/0x290 [ 940.763988] __sys_sendmsg+0xe5/0x1b0 [ 940.764417] ? __sys_sendmsg_sock+0x40/0x40 [ 940.764888] ? rcu_read_lock_any_held+0x75/0xa0 [ 940.765437] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 940.765994] ? syscall_enter_from_user_mode+0x1d/0x50 [ 940.766591] ? trace_hardirqs_on+0x5b/0x180 [ 940.767057] do_syscall_64+0x33/0x40 [ 940.767475] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 940.768028] RIP: 0033:0x7f59b4343b19 [ 940.768451] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 940.770402] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 940.771284] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 940.772037] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 940.772873] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 940.773697] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 940.774464] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 12:01:32 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x0, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 12:01:32 executing program 5: r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffc0000}]}) syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r1 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000040)={0x0, 0x1, 0x3, 0x80000001}) r2 = accept$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @empty}, &(0x7f0000000140)=0x1c) fsetxattr$security_capability(r2, &(0x7f00000001c0), &(0x7f0000000200)=@v1={0x1000000, [{0xdb93, 0x7}]}, 0xc, 0x3) mkdirat(r1, &(0x7f00000000c0)='./file0\x00', 0x0) 12:01:32 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) openat(r0, &(0x7f0000000340)='./file0\x00', 0x10040, 0x151) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r1, &(0x7f00000004c0)={0x9000000a}) sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0x0) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0) syz_mount_image$nfs4(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0xf}, 0x240, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rmdir(&(0x7f0000000000)='./file0\x00') r2 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f0000000140)={0xa, 0x4e22, 0x8, @dev={0xfe, 0x80, '\x00', 0x17}, 0x3}, 0x1c) r3 = socket$nl_generic(0x10, 0x3, 0x10) ppoll(&(0x7f0000000240)=[{r2}, {r3, 0x82}, {r0, 0x8109}, {0xffffffffffffffff, 0x4}, {r0, 0x10090}], 0x5, &(0x7f00000002c0), &(0x7f0000000440)={[0xb9]}, 0x8) clone3(&(0x7f0000000080)={0x1040900, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) futimesat(r0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000300)={{0x77359400}}) ioctl$TIOCVHANGUP(r1, 0x5437, 0x0) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000040)={0x10}) [ 940.816509] EXT4-fs warning (device sda): verify_group_input:170: Bad blocks count 0 12:01:32 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x0, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) [ 940.832944] ISOFS: unable to read i-node block 46 [ 940.834433] isofs_fill_super: get root inode failed [ 941.010456] ISOFS: unable to read i-node block 46 [ 941.011084] isofs_fill_super: get root inode failed [ 941.025263] audit: type=1326 audit(1698926492.533:229): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=9462 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65f63a8b19 code=0x7ffc0000 [ 941.029996] audit: type=1326 audit(1698926492.533:230): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=9462 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65f63a8b19 code=0x7ffc0000 [ 941.035534] audit: type=1326 audit(1698926492.543:231): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=9462 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f65f63a8b19 code=0x7ffc0000 [ 941.046466] audit: type=1326 audit(1698926492.557:232): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=9462 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65f63a8b19 code=0x7ffc0000 [ 941.051313] audit: type=1326 audit(1698926492.557:233): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=9462 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7f65f63a7c27 code=0x7ffc0000 [ 941.064100] audit: type=1326 audit(1698926492.557:234): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=9462 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65f63a8b19 code=0x7ffc0000 [ 941.074147] audit: type=1326 audit(1698926492.558:235): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=9462 comm="syz-executor.5" exe="/syz-executor.5" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f65f63a8b19 code=0x7ffc0000 12:01:32 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 5) 12:01:32 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000040)='sysfs\x00', 0x0, 0x0) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f00000004c0)='/proc/timer_list\x00', 0x0, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) r2 = dup(r1) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(r2, 0x8936, &(0x7f0000000080)={@local, 0x78, r4}) ioctl$sock_inet6_SIOCDIFADDR(r2, 0x8916, &(0x7f0000000000)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, r4}) openat$incfs(r2, &(0x7f0000000080)='.log\x00', 0x82, 0xcd) sendmsg$nl_xfrm(r0, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000140)=@getspdinfo={0x14, 0x25, 0x10, 0x70bd27, 0x25dfdbff, 0x7fff, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x4008844}, 0x0) ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f00000001c0)={'wlan1\x00', &(0x7f0000000000)=ANY=[@ANYBLOB="0000000000000000008a698fb3653fa003000800"]}) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r0, 0xc0189372, 0x0) socket$netlink(0x10, 0x3, 0xe) 12:01:32 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x0, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 12:01:32 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x0, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 12:01:32 executing program 6: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x29, 0x3, &(0x7f00000001c0)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}, {&(0x7f0000000dc0)="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", 0xad4, 0x393}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = syz_mount_image$ext4(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)) r1 = openat(r0, 0x0, 0x111000, 0x0) mknodat$loop(0xffffffffffffffff, &(0x7f0000000300)='./file0\x00', 0x0, 0x0) mknodat$loop(r0, &(0x7f0000000d80)='./file0\x00', 0xc000, 0x1) chmod(&(0x7f0000000d00)='./file1\x00', 0x80) setxattr$trusted_overlay_nlink(&(0x7f0000000000)='./file1\x00', &(0x7f0000000240), &(0x7f0000000280)={'U-', 0xdb5}, 0x16, 0x0) ioctl$TIOCGPGRP(r1, 0x540f, &(0x7f0000000340)=0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x0, @perf_bp={&(0x7f00000002c0), 0x3}, 0x0, 0x0, 0x0, 0x0, 0x33, 0x1}, r2, 0xf, 0xffffffffffffffff, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) 12:01:32 executing program 5: r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r1 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r1, &(0x7f0000000240)=ANY=[@ANYRESHEX=r1], 0x4a0043) setsockopt$inet_udp_int(r1, 0x11, 0x65, &(0x7f0000000100)=0x7, 0x4) r2 = syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r2, 0x8000000) io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r2, @ANYBLOB="0000000000c454e4706f1127980e0cffa4c0d294afd62615b59db2098edad8fd476e0a6c60408ce57eca02ffa04c932ae24d3de4336537d8a48722bde1c4b4b95fb469a9d5eec36ed386ee355baa30771f48daca525c94a07e06ede9a557a59d56193d121ad6c2339e75c42c9d47e388cad8b3e8b749ce6f6653fec9e23024cdf0fd447ff588964ea84948b5ae2447b5255afd8b97d460aa456172c65e09d836b900bc2c34fc2c0f771a3a2092ff2e1bff0a9d2bd05fe52a78"]) connect$bt_sco(r0, &(0x7f0000000040), 0x8) shutdown(r0, 0x0) shutdown(0xffffffffffffffff, 0x1) [ 941.305240] FAULT_INJECTION: forcing a failure. [ 941.305240] name failslab, interval 1, probability 0, space 0, times 0 [ 941.306539] CPU: 1 PID: 9483 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 941.307288] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 941.308175] Call Trace: [ 941.308475] dump_stack+0x107/0x167 [ 941.308869] should_fail.cold+0x5/0xa [ 941.309293] should_failslab+0x5/0x20 [ 941.309709] __kmalloc_node_track_caller+0x74/0x3b0 [ 941.310250] ? netlink_sendmsg+0x998/0xdf0 [ 941.310720] __alloc_skb+0xb1/0x5b0 [ 941.311124] netlink_sendmsg+0x998/0xdf0 [ 941.311578] ? netlink_unicast+0x7f0/0x7f0 [ 941.312033] ? netlink_unicast+0x7f0/0x7f0 [ 941.312495] __sock_sendmsg+0x154/0x190 [ 941.312924] ____sys_sendmsg+0x70d/0x870 [ 941.313372] ? sock_write_iter+0x3d0/0x3d0 [ 941.313830] ? do_recvmmsg+0x6d0/0x6d0 [ 941.314258] ? perf_trace_lock+0xac/0x490 [ 941.314724] ? __lockdep_reset_lock+0x180/0x180 [ 941.315259] ? perf_trace_lock+0xac/0x490 [ 941.315740] ? SOFTIRQ_verbose+0x10/0x10 [ 941.316211] ___sys_sendmsg+0xf3/0x170 [ 941.316629] ? sendmsg_copy_msghdr+0x160/0x160 [ 941.317149] ? lock_downgrade+0x6d0/0x6d0 [ 941.317631] ? find_held_lock+0x2c/0x110 [ 941.318106] ? __fget_files+0x296/0x4c0 [ 941.318552] ? __fget_light+0xea/0x290 [ 941.318997] __sys_sendmsg+0xe5/0x1b0 [ 941.319434] ? __sys_sendmsg_sock+0x40/0x40 [ 941.319932] ? rcu_read_lock_any_held+0x75/0xa0 [ 941.320443] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 941.321035] ? syscall_enter_from_user_mode+0x1d/0x50 [ 941.321577] ? trace_hardirqs_on+0x5b/0x180 [ 941.322075] do_syscall_64+0x33/0x40 [ 941.322493] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 941.323097] RIP: 0033:0x7f59b4343b19 [ 941.323506] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 941.325630] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 941.326460] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 941.327268] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 941.328098] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 941.328931] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 941.329759] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 12:01:32 executing program 0: ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, 0x0) io_setup(0x0, &(0x7f0000000080)) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/timers\x00', 0x0, 0x0) fsetxattr$security_capability(0xffffffffffffffff, &(0x7f0000000240), &(0x7f0000000280), 0xc, 0x0) r1 = fork() ptrace$setopts(0x4206, r1, 0x0, 0x0) ptrace(0x8, r1) r2 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x100000e, 0x13, r2, 0x0) r3 = perf_event_open(&(0x7f00000002c0)={0x5, 0x80, 0x9, 0xff, 0x20, 0xd6, 0x0, 0x3, 0x10206, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x3, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x4, @perf_config_ext={0x4, 0x80}, 0x4012, 0x9083, 0x3ff, 0x0, 0x0, 0x101, 0x7, 0x0, 0x7, 0x0, 0x4}, r1, 0x2, r2, 0x2) sendmsg$BATADV_CMD_SET_HARDIF(r0, &(0x7f0000005a00)={&(0x7f00000011c0), 0xc, 0x0}, 0x84c00) sendmsg$BATADV_CMD_GET_VLAN(0xffffffffffffffff, 0x0, 0x40040) sendmsg$IPCTNL_MSG_EXP_GET_STATS_CPU(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x14, 0x3, 0x2, 0x201, 0x0, 0x0, {0x2, 0x0, 0x8}, ["", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x4000840) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x7}, 0x0, 0x0, 0x0, 0x6, 0xffffffffffffffff, 0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0x1000000000000, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000340)={0x4, 0x80, 0x7f, 0x4, 0x40, 0x7f, 0x0, 0x7fffffff, 0x8, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x3, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x2, 0x1, @perf_config_ext={0x0, 0x7}, 0x2a04, 0x0, 0x5de1, 0x7, 0x7ff, 0x2cc, 0x101, 0x0, 0x80}, 0xffffffffffffffff, 0xa, r2, 0x1) ioctl$BTRFS_IOC_SNAP_CREATE(r4, 0x50009401, &(0x7f0000001e00)={{r3}, "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"}) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='rpc_pipefs\x00', 0x0, 0x0) 12:01:32 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x0, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 12:01:32 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 941.418063] Bluetooth: hci7: command 0x0406 tx timeout 12:01:32 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 6) [ 941.504846] FAULT_INJECTION: forcing a failure. [ 941.504846] name failslab, interval 1, probability 0, space 0, times 0 [ 941.506147] CPU: 1 PID: 9504 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 941.506898] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 941.507795] Call Trace: [ 941.508092] dump_stack+0x107/0x167 [ 941.508499] should_fail.cold+0x5/0xa [ 941.508925] ? create_object.isra.0+0x3a/0xa20 [ 941.509427] should_failslab+0x5/0x20 [ 941.509844] kmem_cache_alloc+0x5b/0x310 [ 941.510289] create_object.isra.0+0x3a/0xa20 [ 941.510787] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 941.511342] __kmalloc_node_track_caller+0x1a6/0x3b0 [ 941.511891] ? netlink_sendmsg+0x998/0xdf0 [ 941.512352] __alloc_skb+0xb1/0x5b0 [ 941.512750] netlink_sendmsg+0x998/0xdf0 [ 941.513190] ? netlink_unicast+0x7f0/0x7f0 [ 941.513695] ? netlink_unicast+0x7f0/0x7f0 [ 941.514152] __sock_sendmsg+0x154/0x190 [ 941.514614] ____sys_sendmsg+0x70d/0x870 [ 941.515047] ? sock_write_iter+0x3d0/0x3d0 [ 941.515516] ? do_recvmmsg+0x6d0/0x6d0 [ 941.515951] ? perf_trace_lock+0xac/0x490 [ 941.516433] ? __lockdep_reset_lock+0x180/0x180 [ 941.516958] ? perf_trace_lock+0xac/0x490 [ 941.517423] ? SOFTIRQ_verbose+0x10/0x10 [ 941.517897] ___sys_sendmsg+0xf3/0x170 [ 941.518353] ? sendmsg_copy_msghdr+0x160/0x160 [ 941.518889] ? lock_downgrade+0x6d0/0x6d0 [ 941.519364] ? find_held_lock+0x2c/0x110 [ 941.519837] ? __fget_files+0x296/0x4c0 [ 941.520304] ? __fget_light+0xea/0x290 [ 941.520758] __sys_sendmsg+0xe5/0x1b0 [ 941.521207] ? __sys_sendmsg_sock+0x40/0x40 [ 941.521710] ? rcu_read_lock_any_held+0x75/0xa0 [ 941.522253] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 941.522865] ? syscall_enter_from_user_mode+0x1d/0x50 [ 941.523448] ? trace_hardirqs_on+0x5b/0x180 [ 941.523941] do_syscall_64+0x33/0x40 [ 941.524370] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 941.524948] RIP: 0033:0x7f59b4343b19 [ 941.525370] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 941.527475] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 941.528348] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 941.529163] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 941.529971] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 941.530793] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 941.531617] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 12:01:49 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 7) 12:01:49 executing program 1: syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(0xffffffffffffffff, 0x0, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, &(0x7f0000000140)) syz_genetlink_get_family_id$fou(0x0, 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f00000001c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xffffffffffffffff}}, './file0\x00'}) ioctl$FS_IOC_FIEMAP(0xffffffffffffffff, 0xc020660b, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0xff7}]}) r1 = openat2(r0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000080)={0x40180, 0x198, 0x6}, 0x18) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) r4 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000100)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_CQM(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000780)={0x34, r3, 0xc0b, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_CQM={0x18, 0x5e, 0x0, 0x1, [@NL80211_ATTR_CQM_RSSI_HYST={0x8}, @NL80211_ATTR_CQM_RSSI_THOLD={0xc, 0x1, [0x0, 0x0]}]}]}, 0x34}}, 0x0) sendmsg$NL80211_CMD_SET_COALESCE(r1, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x28, 0x0, 0x300, 0x70bd25, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r5}, @val={0xc, 0x99, {0x9, 0x47}}}}}, 0x28}, 0x1, 0x0, 0x0, 0x80c0}, 0x8885) 12:01:49 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 1) 12:01:49 executing program 6: ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x2, "77004a6efdff0000000008002600", 0x0, 0x401}) r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) mq_open(&(0x7f0000000000)='-@\x00\xb7!\xf9Z\xbb,;\x7f\xc0\xa9J\xb3\v\xfb\x84\xaa\xb5\x9a\xa4O\xa8\xb5\xd2\x13/z\v\xae\xfc\xfek*D\xeb{\t\xba>\xe8\xe2\xba\x00\x00\x00\x00\x00\x00\xd0zd\xccD\xf4a\xd8/\x90x\xb5\xd8\x04\x19u\xf9D\xb7Eq\xc1\xcee\xd9\b0\xec\v\xe3\x96\x1f\x80\xe4Nk\xa6\xe1\b\x97,\x8b/\x96\x9b\xdb&\xd1\xe3J\xd5\xaf\xe3\xfc\xde\xbe\xa0\x8b\xeb\xea%\x10eW\xf6\xa0J\xe51\xa4\xfesm\x96\x89\x0f\xea\xa6\xc02\xd4\xb8y\x83L\xc4\x93U\x15\x9b\f\x9b\xc3Z\xff\\\x9d\x83\xe6\xc7fc\xa9n\x8e\aV\xe8\xf9\xf9\xe4\xfb+~\xabu\xf9K\x1d9[\xcd\x9b;=6Q\x80', 0x3, 0x0, 0x0) pread64(0xffffffffffffffff, &(0x7f0000000200)=""/230, 0xe6, 0x2) r1 = socket$inet(0x2, 0xa, 0x0) ioctl$TUNSETQUEUE(0xffffffffffffffff, 0x400454d9, &(0x7f0000000300)={'wg2\x00'}) r2 = socket$netlink(0x10, 0x3, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000c80)=ANY=[@ANYBLOB="e40000001800210c0000000000000000020000000800000000000000a74f99718a0a7b145ca98ffc80a467401b544c66e4b794cb41804c386a48288d5397cc5032fc74899051a559b944eafd2c6f9a7d8c17ce35def21476f7d2af177c17428408e5f54464e2467dcde4f93aeb6a9b6d601fe38d9423621af4e1e8fcbd741b3491a21bec1b1365159b9b34e2e66b91ce09f972d1d18e869b698c611b28c8c8101c871baf70e70879ea77cf12f69d3f7a5e79c724ba46100430df196a87bbce97970d640d3c4e1f1a5ad85e7a7546535c1209ca6615614d4be8fd4a480d09c2f6a58f04cf"], 0xe4}}, 0x0) ioctl$VT_GETMODE(0xffffffffffffffff, 0x5601, &(0x7f0000000100)) r4 = dup3(0xffffffffffffffff, r0, 0x80000) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$AUTOFS_DEV_IOCTL_VERSION(r3, 0xc0189371, &(0x7f0000000140)=ANY=[@ANYBLOB="01000000010000071800fc66386022435a574027598ef5452f7524ae613649bd0637a245eeca07420ed6c1ccb28318741d", @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00']) r6 = accept4$inet6(r4, &(0x7f00000003c0)={0xa, 0x0, 0x0, @local}, &(0x7f0000000400)=0x1c, 0x800) r7 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) ioctl$DVD_READ_STRUCT(r7, 0x5310, &(0x7f0000000440)=@manufact={0x4, 0x0, 0x800, "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"}) poll(&(0x7f0000000440)=[{0xffffffffffffffff, 0x1}, {0xffffffffffffffff, 0x400}, {0xffffffffffffffff, 0xa0}, {0xffffffffffffffff, 0x14}, {r2, 0x5}, {r4, 0x106}, {r5}, {r6, 0x1415}, {0xffffffffffffffff, 0x4000}, {r7, 0x2}], 0xa, 0x4) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x840}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) dup3(r1, r0, 0x0) 12:01:49 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000005c0), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, &(0x7f0000000400)=0x5) recvmsg(0xffffffffffffffff, 0x0, 0x2) pread64(0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffff8) creat(&(0x7f0000000000)='./file0\x00', 0x2) mknodat$loop(0xffffffffffffffff, &(0x7f0000000240)='./mnt\x00', 0x0, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_LINK_TIMEOUT={0xf, 0x4, 0x0, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x989680}, 0x1, 0x0, 0x1}, 0x0) mount$9p_unix(&(0x7f0000000300)='./file0\x00', &(0x7f00000000c0)='./mnt\x00', 0x0, 0x115549713482a633, &(0x7f0000000100)=ANY=[@ANYBLOB="7472616e733d756e69782c726f56746378743d73797374656d5f752c736d618768edb9763a2b000000000000000514646b66730100000000000000000000005b99943dee9d12eccd2a5a", @ANYRESDEC, @ANYRES32=r0, @ANYRESDEC, @ANYRES16=r1]) socket$inet_udp(0x2, 0x2, 0x0) r3 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCL_SETSEL(r3, 0x541c, &(0x7f0000000240)={0x2, {0x4}}) ioctl$FITRIM(r3, 0xc0185879, &(0x7f0000000040)={0x0, 0x100, 0x1000}) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/fib_trie\x00') 12:01:49 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0x0, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 12:01:49 executing program 0: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000005c0), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f00000003c0)=ANY=[@ANYRES32]) recvmsg(0xffffffffffffffff, &(0x7f0000000040)={&(0x7f0000000880)=@rc={0x1f, @none}, 0x80, &(0x7f0000000140)=[{&(0x7f0000000940)=""/149, 0x95}], 0x1}, 0x2) syz_open_procfs(0x0, 0x0) pread64(0xffffffffffffffff, &(0x7f0000000340)=""/70, 0x46, 0xfffffffffffffff8) syz_mount_image$tmpfs(&(0x7f0000000080), &(0x7f00000000c0)='./mnt\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000004c0)={[{@mpol={'mpol', 0x3d, {'prefer', '', @val={0x3a, [0x39, 0x30, 0x0, 0x39, 0x0, 0x38, 0x37, 0x34, 0x38]}}}}]}) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/fib_trie\x00') creat(&(0x7f0000000100)='./mnt\x00', 0x28) preadv(r0, &(0x7f0000000580)=[{&(0x7f0000001380)=""/213, 0xd5}, {&(0x7f0000000600)=""/209, 0xd1}, {&(0x7f00000001c0)=""/89, 0x59}], 0x3, 0x5545, 0x0) openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) [ 957.615191] FAULT_INJECTION: forcing a failure. [ 957.615191] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 957.616231] FAULT_INJECTION: forcing a failure. [ 957.616231] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 957.617864] CPU: 0 PID: 9522 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 957.621379] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 957.623380] Call Trace: [ 957.624020] dump_stack+0x107/0x167 [ 957.624900] should_fail.cold+0x5/0xa [ 957.625666] _copy_from_iter_full+0x201/0xa60 [ 957.626589] ? __virt_addr_valid+0x128/0x350 [ 957.627462] ? __check_object_size+0x319/0x440 [ 957.628363] netlink_sendmsg+0x879/0xdf0 [ 957.629176] ? netlink_unicast+0x7f0/0x7f0 [ 957.630025] ? netlink_unicast+0x7f0/0x7f0 [ 957.630871] __sock_sendmsg+0x154/0x190 [ 957.631660] ____sys_sendmsg+0x70d/0x870 [ 957.632471] ? sock_write_iter+0x3d0/0x3d0 [ 957.633306] ? do_recvmmsg+0x6d0/0x6d0 [ 957.634085] ? perf_trace_lock+0xac/0x490 [ 957.634939] ? __lockdep_reset_lock+0x180/0x180 [ 957.635880] ___sys_sendmsg+0xf3/0x170 [ 957.636664] ? sendmsg_copy_msghdr+0x160/0x160 [ 957.637579] ? lock_downgrade+0x6d0/0x6d0 [ 957.638404] ? find_held_lock+0x2c/0x110 [ 957.639242] ? __fget_files+0x296/0x4c0 [ 957.640048] ? __fget_light+0xea/0x290 [ 957.640836] __sys_sendmsg+0xe5/0x1b0 [ 957.641596] ? __sys_sendmsg_sock+0x40/0x40 [ 957.642459] ? rcu_read_lock_any_held+0x75/0xa0 [ 957.643418] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 957.644462] ? syscall_enter_from_user_mode+0x1d/0x50 [ 957.645490] ? trace_hardirqs_on+0x5b/0x180 [ 957.646362] do_syscall_64+0x33/0x40 [ 957.647134] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 957.648159] RIP: 0033:0x7f59b4343b19 [ 957.648898] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 957.652550] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 957.654055] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 957.655492] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 957.656904] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 957.658317] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 957.659740] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 [ 957.661192] CPU: 1 PID: 9526 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 957.662470] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 957.664028] Call Trace: [ 957.664537] dump_stack+0x107/0x167 [ 957.665248] should_fail.cold+0x5/0xa [ 957.665991] _copy_from_user+0x2e/0x1b0 [ 957.666760] __copy_msghdr_from_user+0x91/0x4b0 [ 957.667643] ? __ia32_sys_shutdown+0x80/0x80 [ 957.668494] ? perf_trace_lock+0xac/0x490 12:01:49 executing program 4: r0 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x85, 0x0, 0x0, 0x0, 0x0, 0x2, 0x24482, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x101342, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) write$binfmt_elf64(r1, &(0x7f0000000180)={{0x7f, 0x45, 0x4c, 0x46, 0x8, 0xff, 0x3, 0x7, 0x8d, 0x3, 0x3, 0x3, 0x2f0, 0x40, 0x346, 0x9, 0x3, 0x38, 0x2, 0x4, 0x6, 0x1}, [{0x5, 0x401, 0x4, 0x3800000000, 0x3, 0xffffffffffffff94, 0x400, 0x7fff}], "604b710f89d52a68a47093cb5571f052fcb722cc3b7dc9495e25b372d1e3830c552b95246a987869288e9811949e652226b4d9b6544d27e561b54c5fc3848cf18ef632fb12", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0x6bd) sendfile(r1, r2, 0x0, 0x100000001) [ 957.669300] ? __lock_acquire+0xbb1/0x5b00 [ 957.670234] sendmsg_copy_msghdr+0xa1/0x160 [ 957.671077] ? do_recvmmsg+0x6d0/0x6d0 [ 957.671819] ? perf_trace_lock+0xac/0x490 [ 957.672607] ? SOFTIRQ_verbose+0x10/0x10 [ 957.673367] ? __lockdep_reset_lock+0x180/0x180 [ 957.674229] ? perf_trace_lock+0xac/0x490 [ 957.675011] ? SOFTIRQ_verbose+0x10/0x10 [ 957.675772] ___sys_sendmsg+0xc6/0x170 [ 957.676498] ? sendmsg_copy_msghdr+0x160/0x160 [ 957.677344] ? __fget_files+0x26d/0x4c0 [ 957.678078] ? lock_downgrade+0x6d0/0x6d0 [ 957.678875] ? find_held_lock+0x2c/0x110 [ 957.679637] ? __fget_files+0x296/0x4c0 [ 957.680383] ? __fget_light+0xea/0x290 [ 957.681115] __sys_sendmsg+0xe5/0x1b0 [ 957.681824] ? __sys_sendmsg_sock+0x40/0x40 [ 957.682629] ? rcu_read_lock_any_held+0x75/0xa0 [ 957.683496] ? fput_many+0x2f/0x1a0 [ 957.684171] ? ksys_write+0x1a9/0x260 [ 957.684877] ? __ia32_sys_read+0xb0/0xb0 [ 957.685632] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 957.686607] ? syscall_enter_from_user_mode+0x1d/0x50 [ 957.687557] ? trace_hardirqs_on+0x5b/0x180 [ 957.688364] do_syscall_64+0x33/0x40 [ 957.689056] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 957.690007] RIP: 0033:0x7fb858d1fb19 [ 957.690718] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 957.694295] RSP: 002b:00007fb856295188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 957.695782] RAX: ffffffffffffffda RBX: 00007fb858e32f60 RCX: 00007fb858d1fb19 [ 957.697163] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 957.698553] RBP: 00007fb8562951d0 R08: 0000000000000000 R09: 0000000000000000 [ 957.699941] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 957.701327] R13: 00007ffde2c0b16f R14: 00007fb856295300 R15: 0000000000022000 [ 957.719294] audit: type=1400 audit(1698926509.228:236): avc: denied { tracepoint } for pid=9533 comm="syz-executor.4" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=perf_event permissive=1 [ 957.732776] netlink: 200 bytes leftover after parsing attributes in process `syz-executor.6'. 12:01:49 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0x0, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) [ 957.817717] tmpfs: Bad value for 'mpol' [ 957.917403] tmpfs: Bad value for 'mpol' 12:01:49 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 8) [ 958.016680] FAULT_INJECTION: forcing a failure. [ 958.016680] name failslab, interval 1, probability 0, space 0, times 0 [ 958.019390] CPU: 1 PID: 9546 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 958.020799] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 958.022478] Call Trace: [ 958.023036] dump_stack+0x107/0x167 [ 958.023793] should_fail.cold+0x5/0xa [ 958.024580] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xdb/0x280 [ 958.025918] should_failslab+0x5/0x20 [ 958.026721] __kmalloc+0x72/0x390 [ 958.027447] genl_family_rcv_msg_attrs_parse.constprop.0+0xdb/0x280 [ 958.028783] genl_family_rcv_msg_doit+0xda/0x330 [ 958.029824] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 958.031185] ? cap_capable+0x1d6/0x240 [ 958.031988] ? security_capable+0x95/0xc0 [ 958.032855] ? ns_capable+0xe2/0x110 [ 958.033627] genl_rcv_msg+0x33c/0x5a0 [ 958.034411] ? genl_get_cmd+0x480/0x480 [ 958.035245] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 958.036331] ? lock_release+0x680/0x680 [ 958.037172] ? __lockdep_reset_lock+0x180/0x180 [ 958.038193] netlink_rcv_skb+0x14b/0x430 [ 958.039047] ? genl_get_cmd+0x480/0x480 [ 958.039865] ? netlink_ack+0xab0/0xab0 [ 958.040684] ? netlink_deliver_tap+0x1c4/0xcd0 [ 958.041620] ? is_vmalloc_addr+0x7b/0xb0 [ 958.042460] genl_rcv+0x24/0x40 [ 958.043161] netlink_unicast+0x549/0x7f0 [ 958.044005] ? netlink_attachskb+0x870/0x870 [ 958.044906] ? __virt_addr_valid+0x128/0x350 [ 958.045819] netlink_sendmsg+0x90f/0xdf0 [ 958.046682] ? netlink_unicast+0x7f0/0x7f0 [ 958.047555] ? netlink_unicast+0x7f0/0x7f0 [ 958.048420] __sock_sendmsg+0x154/0x190 [ 958.049232] ____sys_sendmsg+0x70d/0x870 [ 958.050061] ? sock_write_iter+0x3d0/0x3d0 [ 958.050982] ? do_recvmmsg+0x6d0/0x6d0 [ 958.051847] ? perf_trace_lock+0xac/0x490 [ 958.052696] ? __lockdep_reset_lock+0x180/0x180 [ 958.053682] ? perf_trace_lock+0xac/0x490 [ 958.054596] ? SOFTIRQ_verbose+0x10/0x10 [ 958.055440] ___sys_sendmsg+0xf3/0x170 [ 958.056231] ? sendmsg_copy_msghdr+0x160/0x160 [ 958.057172] ? lock_downgrade+0x6d0/0x6d0 [ 958.058013] ? find_held_lock+0x2c/0x110 [ 958.058899] ? __fget_files+0x296/0x4c0 [ 958.059801] ? __fget_light+0xea/0x290 [ 958.060597] __sys_sendmsg+0xe5/0x1b0 [ 958.061393] ? __sys_sendmsg_sock+0x40/0x40 [ 958.062285] ? rcu_read_lock_any_held+0x75/0xa0 [ 958.063322] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 958.064381] ? syscall_enter_from_user_mode+0x1d/0x50 [ 958.065416] ? trace_hardirqs_on+0x5b/0x180 [ 958.066295] do_syscall_64+0x33/0x40 [ 958.067074] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 958.068112] RIP: 0033:0x7f59b4343b19 [ 958.068864] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 958.072568] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 958.074105] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 958.075556] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 958.077008] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 958.078443] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 958.079890] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 12:02:03 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0x0, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 12:02:03 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext, 0x800, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0xb7ae}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) pwrite64(0xffffffffffffffff, &(0x7f0000000300)="af", 0x1, 0x0) pwrite64(r0, &(0x7f0000000340)="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", 0x120, 0xfffffffffffffffb) openat(r1, &(0x7f00000001c0)='./file1/file0\x00', 0x4000, 0x4) ioctl$AUTOFS_DEV_IOCTL_READY(r0, 0xc0189376, &(0x7f0000000180)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x7fffffff}}, './file0\x00'}) sendmsg$nl_generic(r0, &(0x7f0000000500)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x14, 0x25, 0x400, 0x70bd29, 0x25dfdbfe, {0x9}}, 0x14}, 0x1, 0x0, 0x0, 0x48040}, 0x800) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000080)={0x0, 0xfdfdffff, 0x102, 0x0, '\x00', [{}, {0x800, 0x0, 0x400000000000000}], ['\x00']}) open$dir(&(0x7f0000000200)='./file1/file0\x00', 0x101040, 0x2) timerfd_create(0x8, 0x0) unshare(0x48020200) getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000000540)={{{@in, @in6=@private2}}, {{@in6=@local}, 0x0, @in=@local}}, &(0x7f0000000240)=0xe8) 12:02:03 executing program 4: r0 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r0, 0x40089413, &(0x7f0000000200)=0x81) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) timer_delete(0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x100000000, 0xffffffff}, 0x0, 0x5, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xf, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) timer_settime(0x0, 0x0, &(0x7f0000000480)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={0x14, 0x16, 0xd01}, 0x14}}, 0x0) r2 = signalfd(0xffffffffffffffff, &(0x7f0000000240), 0x8) dup2(r2, 0xffffffffffffffff) read(r1, &(0x7f0000000080)=""/65, 0x41) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r2, 0xc018937b, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r2, {0xee01}}, './file0\x00'}) r4 = openat$incfs(r3, &(0x7f0000000140)='.pending_reads\x00', 0x8800, 0x326) r5 = creat(&(0x7f0000000000)='./file0\x00', 0x0) pwrite64(r5, &(0x7f00000000c0), 0x17, 0x0) fallocate(r5, 0x3, 0x0, 0x18000) preadv(r5, &(0x7f0000000400)=[{&(0x7f00000004c0)=""/191, 0xbf}, {&(0x7f0000000580)=""/241, 0xf1}, {&(0x7f0000000680)=""/4096, 0x1000}, {&(0x7f0000001680)=""/199, 0xc7}, {&(0x7f0000001780)=""/171, 0xab}, {&(0x7f0000001900)=""/206, 0xce}], 0x6, 0x8, 0xffffff14) pread64(r4, &(0x7f0000000180)=""/3, 0x3, 0x401) timer_gettime(0x0, &(0x7f0000000100)) 12:02:03 executing program 6: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x8, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) io_uring_enter(0xffffffffffffffff, 0x5946, 0xaa06, 0x0, 0x0, 0x0) r3 = syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r3, 0x8000000) io_uring_enter(r3, 0x58ab, 0x0, 0x2, 0x0, 0x0) io_uring_enter(r3, 0x6b80, 0xffffff9f, 0x1, &(0x7f0000000140)={[0x1]}, 0x8) r4 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r4, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0) socket$inet_udp(0x2, 0x2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r5, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) r6 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, 0xffffffffffffffff, 0x8000000) syz_io_uring_submit(r6, 0x0, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_OPENAT={0x12, 0x4, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000280)='./file0\x00', 0x4, 0x80000, 0x23456}, 0x8) write$tun(0xffffffffffffffff, &(0x7f0000000400)=ANY=[@ANYBLOB="0000bc8fc4c5db55ec77862f47fd4811e1de24134c21595c260aaf97377d5bff6966be8993990d2b15540699179c60dcad43f32d8a0a788d059e050091f13c9478a7502b554787026a24222c9a7b6fb610ce787914eb595f66"], 0x59) 12:02:03 executing program 0: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x58, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x2800018, &(0x7f0000000240)=ANY=[]) mknodat(r0, &(0x7f0000000280)='./file0/file0\x00', 0x1, 0x100) ioctl$SCSI_IOCTL_SEND_COMMAND(0xffffffffffffffff, 0x40086602, 0xfffffffffffffffd) chdir(&(0x7f0000000040)='./file0\x00') r1 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) fsetxattr$security_selinux(r1, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$PERF_EVENT_IOC_REFRESH(0xffffffffffffffff, 0x2402, 0x4) openat(0xffffffffffffffff, &(0x7f0000000100)='./file1\x00', 0x60000, 0x80) creat(&(0x7f00000001c0)='./file2\x00', 0x10) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) setxattr$incfs_metadata(&(0x7f0000000340)='./file0\x00', &(0x7f0000000380), &(0x7f00000003c0)="8aa2d51e0a1edfa91a68404d8f95b5116a966ef1f8dc7a520ecc83c862e4d66f2687cd8650d547f9cb2489", 0x2b, 0x0) ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r1, 0x8982, &(0x7f0000000240)={0x0, '\x00', {0x4}, 0x1}) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000300)='./file0/file0/file0\x00', 0x0, 0x8) sendfile(r2, r3, 0x0, 0x100000001) [ 972.399928] FAULT_INJECTION: forcing a failure. [ 972.399928] name failslab, interval 1, probability 0, space 0, times 0 [ 972.399953] CPU: 0 PID: 9564 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 972.399964] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 972.399971] Call Trace: [ 972.400002] dump_stack+0x107/0x167 [ 972.400028] should_fail.cold+0x5/0xa [ 972.400050] ? create_object.isra.0+0x3a/0xa20 [ 972.400072] should_failslab+0x5/0x20 [ 972.400090] kmem_cache_alloc+0x5b/0x310 [ 972.400117] create_object.isra.0+0x3a/0xa20 [ 972.400136] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 972.400161] __kmalloc+0x16e/0x390 [ 972.400193] genl_family_rcv_msg_attrs_parse.constprop.0+0xdb/0x280 [ 972.400221] genl_family_rcv_msg_doit+0xda/0x330 [ 972.400246] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 972.414983] ? cap_capable+0x1d6/0x240 [ 972.415775] ? security_capable+0x95/0xc0 [ 972.416622] ? ns_capable+0xe2/0x110 [ 972.417380] genl_rcv_msg+0x33c/0x5a0 [ 972.418158] ? genl_get_cmd+0x480/0x480 [ 972.418977] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 972.420015] ? lock_release+0x680/0x680 [ 972.420825] ? __lockdep_reset_lock+0x180/0x180 [ 972.421771] netlink_rcv_skb+0x14b/0x430 [ 972.422595] ? genl_get_cmd+0x480/0x480 [ 972.423416] ? netlink_ack+0xab0/0xab0 [ 972.424213] ? netlink_deliver_tap+0x1c4/0xcd0 [ 972.425130] ? is_vmalloc_addr+0x7b/0xb0 [ 972.425949] genl_rcv+0x24/0x40 [ 972.426608] netlink_unicast+0x549/0x7f0 [ 972.427462] ? netlink_attachskb+0x870/0x870 [ 972.428352] ? __virt_addr_valid+0x128/0x350 [ 972.429268] netlink_sendmsg+0x90f/0xdf0 [ 972.430102] ? netlink_unicast+0x7f0/0x7f0 [ 972.430995] ? netlink_unicast+0x7f0/0x7f0 [ 972.431872] __sock_sendmsg+0x154/0x190 [ 972.432697] ____sys_sendmsg+0x70d/0x870 [ 972.433535] ? sock_write_iter+0x3d0/0x3d0 [ 972.434397] ? do_recvmmsg+0x6d0/0x6d0 [ 972.435214] ? perf_trace_lock+0xac/0x490 [ 972.436055] ? __lockdep_reset_lock+0x180/0x180 [ 972.436983] ? perf_trace_lock+0xac/0x490 [ 972.437814] ? SOFTIRQ_verbose+0x10/0x10 [ 972.438643] ___sys_sendmsg+0xf3/0x170 [ 972.439439] ? sendmsg_copy_msghdr+0x160/0x160 [ 972.440367] ? lock_downgrade+0x6d0/0x6d0 [ 972.441227] ? find_held_lock+0x2c/0x110 [ 972.442059] ? __fget_files+0x296/0x4c0 [ 972.442888] ? __fget_light+0xea/0x290 [ 972.443682] __sys_sendmsg+0xe5/0x1b0 [ 972.444447] ? __sys_sendmsg_sock+0x40/0x40 [ 972.445324] ? rcu_read_lock_any_held+0x75/0xa0 [ 972.446279] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 972.447336] ? syscall_enter_from_user_mode+0x1d/0x50 [ 972.448367] ? trace_hardirqs_on+0x5b/0x180 [ 972.449239] do_syscall_64+0x33/0x40 [ 972.449988] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 972.451021] RIP: 0033:0x7f59b4343b19 [ 972.451765] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 972.455466] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 972.457146] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 972.458571] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 972.460024] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 972.461447] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 972.462888] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 12:02:03 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 9) 12:02:03 executing program 5: r0 = syz_mount_image$ext4(&(0x7f0000000e40)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x3fffd, 0x6, &(0x7f0000000f00)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x9}, {&(0x7f0000000e80)="4b5caf983e56beead0fd01bc240694b10df4511d7648a83913abcec026093f37e7593ded2cc6c85b7adf0556e6f9c59895f901dc1dfbb20d21864b2edc4e63248e384afb1a1ba683b44ffbe6c3f526c6f2ba0bb78aad37a2d82b571c201455", 0x5f, 0x2}, {&(0x7f0000000000)="afb81a650d0f01d6013274d31bbe01358a79b30c1752fbaec5fcb4515a97f7d7485737028d132623caf10bc5cfbbdaa42d35912a428a7d03", 0x38, 0x724}], 0x8011, &(0x7f0000001580)=ANY=[@ANYRESHEX=0x0]) setxattr$security_selinux(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340), &(0x7f0000000380)='system_u:object_r:tetex_data_t:s0\x00', 0x22, 0x1) chdir(&(0x7f0000000040)='./file0\x00') r1 = fcntl$dupfd(r0, 0x406, r0) openat(r0, &(0x7f0000000280)='./file2\x00', 0xc4200, 0xc0) r2 = openat(r1, &(0x7f00000001c0)='./file1\x00', 0x402200, 0x8) r3 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(0xffffffffffffffff, &(0x7f00000011c0)=ANY=[@ANYRESDEC=r2, @ANYRESDEC=r2, @ANYBLOB="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", @ANYRESHEX, @ANYRESHEX, @ANYRES32], 0x4a8043) setsockopt$inet_udp_int(r3, 0x11, 0x65, &(0x7f0000000100)=0x7, 0x4) ioctl$CDROMREADCOOKED(r3, 0x5315, &(0x7f00000003c0)) r4 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x185042, 0x0) rename(&(0x7f0000000140)='./file2\x00', &(0x7f0000000180)='./file1\x00') ptrace$setopts(0x4206, 0x0, 0x0, 0x0) ptrace(0x8, 0x0) fcntl$setown(0xffffffffffffffff, 0x8, 0x0) ftruncate(r4, 0x3) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc142, 0x8) openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) r5 = openat$cgroup_type(r1, &(0x7f00000002c0), 0x2, 0x0) ioctl$EXT4_IOC_PRECACHE_EXTENTS(r5, 0x6612) 12:02:03 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 2) [ 972.490339] EXT4-fs (loop5): Unrecognized mount option "0x0000000000000000" or missing value [ 972.507364] FAULT_INJECTION: forcing a failure. [ 972.507364] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 972.508819] CPU: 1 PID: 9577 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 972.509579] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 972.510440] Call Trace: [ 972.510459] dump_stack+0x107/0x167 [ 972.510484] should_fail.cold+0x5/0xa [ 972.511991] _copy_from_user+0x2e/0x1b0 [ 972.512419] iovec_from_user+0x141/0x400 [ 972.512854] __import_iovec+0x67/0x590 [ 972.513264] ? __ia32_sys_shutdown+0x80/0x80 [ 972.513726] ? perf_trace_lock+0xac/0x490 [ 972.514168] import_iovec+0x83/0xb0 [ 972.514555] sendmsg_copy_msghdr+0x131/0x160 [ 972.515052] ? do_recvmmsg+0x6d0/0x6d0 [ 972.515459] ? perf_trace_lock+0xac/0x490 [ 972.515894] ? __lockdep_reset_lock+0x180/0x180 [ 972.516379] ? perf_trace_lock+0xac/0x490 [ 972.516818] ? SOFTIRQ_verbose+0x10/0x10 [ 972.517249] ___sys_sendmsg+0xc6/0x170 [ 972.517660] ? sendmsg_copy_msghdr+0x160/0x160 [ 972.518159] ? __fget_files+0x26d/0x4c0 [ 972.518579] ? lock_downgrade+0x6d0/0x6d0 [ 972.519043] ? find_held_lock+0x2c/0x110 [ 972.519482] ? __fget_files+0x296/0x4c0 [ 972.519918] ? __fget_light+0xea/0x290 [ 972.520347] __sys_sendmsg+0xe5/0x1b0 [ 972.520758] ? __sys_sendmsg_sock+0x40/0x40 [ 972.521224] ? rcu_read_lock_any_held+0x75/0xa0 [ 972.521729] ? fput_many+0x2f/0x1a0 [ 972.522133] ? ksys_write+0x1a9/0x260 [ 972.522547] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 972.523135] ? syscall_enter_from_user_mode+0x1d/0x50 [ 972.523680] ? trace_hardirqs_on+0x5b/0x180 [ 972.524147] do_syscall_64+0x33/0x40 [ 972.524552] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 972.525110] RIP: 0033:0x7fb858d1fb19 [ 972.525516] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 972.527472] RSP: 002b:00007fb856295188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 972.528280] RAX: ffffffffffffffda RBX: 00007fb858e32f60 RCX: 00007fb858d1fb19 [ 972.529051] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 972.529815] RBP: 00007fb8562951d0 R08: 0000000000000000 R09: 0000000000000000 [ 972.530571] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 972.531332] R13: 00007ffde2c0b16f R14: 00007fb856295300 R15: 0000000000022000 [ 972.575805] EXT4-fs (loop5): Unrecognized mount option "0x0000000000000000" or missing value 12:02:03 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x0, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 12:02:04 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 10) [ 972.644953] FAULT_INJECTION: forcing a failure. [ 972.644953] name fail_page_alloc, interval 1, probability 0, space 0, times 1 [ 972.646249] CPU: 1 PID: 9587 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 972.646930] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 972.647749] Call Trace: [ 972.648021] dump_stack+0x107/0x167 [ 972.648390] should_fail.cold+0x5/0xa [ 972.648782] __alloc_pages_nodemask+0x182/0x600 [ 972.649251] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 972.649853] ? __is_insn_slot_addr+0x14c/0x290 [ 972.650314] ? lock_chain_count+0x20/0x20 [ 972.650734] ? __kernel_text_address+0x9/0x40 [ 972.651226] ? __lockdep_reset_lock+0x180/0x180 [ 972.651734] alloc_pages_current+0x187/0x280 [ 972.652182] kmalloc_order+0x35/0x160 [ 972.652565] kmalloc_order_trace+0x14/0xa0 [ 972.652990] wiphy_new_nm+0x6f3/0x1e00 [ 972.653388] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 972.653850] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 972.654372] ? __local_bh_enable_ip+0x9d/0x100 [ 972.654856] ? trace_hardirqs_on+0x5b/0x180 [ 972.655302] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 972.655803] ? ____sys_sendmsg+0x70d/0x870 [ 972.656248] ? ___sys_sendmsg+0xf3/0x170 [ 972.656669] ? __sys_sendmsg+0xe5/0x1b0 [ 972.657080] ? do_syscall_64+0x33/0x40 [ 972.657486] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 972.658038] ? __lockdep_reset_lock+0x180/0x180 [ 972.658519] ? lock_acquire+0x197/0x470 [ 972.658944] ? create_object.isra.0+0x3ad/0xa20 [ 972.659428] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 972.659917] ? __kmalloc+0x16e/0x390 [ 972.660302] hwsim_new_radio_nl+0x991/0x1080 [ 972.660767] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 972.661315] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 972.661983] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 972.662647] genl_family_rcv_msg_doit+0x22d/0x330 [ 972.663156] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 972.663836] ? cap_capable+0x1d6/0x240 [ 972.664251] ? ns_capable+0xe2/0x110 [ 972.664632] genl_rcv_msg+0x33c/0x5a0 [ 972.665039] ? genl_get_cmd+0x480/0x480 [ 972.665454] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 972.665993] ? lock_release+0x680/0x680 [ 972.666408] ? __lockdep_reset_lock+0x180/0x180 [ 972.666909] netlink_rcv_skb+0x14b/0x430 [ 972.667328] ? genl_get_cmd+0x480/0x480 [ 972.667742] ? netlink_ack+0xab0/0xab0 [ 972.668156] ? netlink_deliver_tap+0x1c4/0xcd0 [ 972.668639] ? is_vmalloc_addr+0x7b/0xb0 [ 972.669071] genl_rcv+0x24/0x40 [ 972.669412] netlink_unicast+0x549/0x7f0 [ 972.669835] ? netlink_attachskb+0x870/0x870 [ 972.670286] ? __virt_addr_valid+0x128/0x350 [ 972.670760] netlink_sendmsg+0x90f/0xdf0 [ 972.671193] ? netlink_unicast+0x7f0/0x7f0 [ 972.671640] ? netlink_unicast+0x7f0/0x7f0 [ 972.672078] __sock_sendmsg+0x154/0x190 [ 972.672487] ____sys_sendmsg+0x70d/0x870 [ 972.672909] ? sock_write_iter+0x3d0/0x3d0 [ 972.673343] ? do_recvmmsg+0x6d0/0x6d0 [ 972.673741] ? perf_trace_lock+0xac/0x490 [ 972.674175] ? __lockdep_reset_lock+0x180/0x180 [ 972.674647] ? perf_trace_lock+0xac/0x490 [ 972.675098] ? SOFTIRQ_verbose+0x10/0x10 [ 972.675526] ___sys_sendmsg+0xf3/0x170 [ 972.675928] ? sendmsg_copy_msghdr+0x160/0x160 [ 972.676404] ? lock_downgrade+0x6d0/0x6d0 [ 972.676827] ? find_held_lock+0x2c/0x110 [ 972.677267] ? __fget_files+0x296/0x4c0 [ 972.677684] ? __fget_light+0xea/0x290 [ 972.678102] __sys_sendmsg+0xe5/0x1b0 [ 972.678495] ? __sys_sendmsg_sock+0x40/0x40 [ 972.678951] ? rcu_read_lock_any_held+0x75/0xa0 [ 972.679442] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 972.679981] ? syscall_enter_from_user_mode+0x1d/0x50 [ 972.680509] ? trace_hardirqs_on+0x5b/0x180 [ 972.680965] do_syscall_64+0x33/0x40 [ 972.681347] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 972.681871] RIP: 0033:0x7f59b4343b19 [ 972.682256] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 972.684162] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 972.684939] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 972.685667] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 972.686408] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 972.687139] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 972.687871] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 [ 972.732646] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.6'. 12:02:04 executing program 6: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000400)=ANY=[@ANYBLOB="34000000100001000800000000000000000000001e222401bcaa77f94d6bc8434bc1f2d1be7c5915000080b22e49f8326500000ad022cea3b5906ed71efbac71604114ae634a1d3f5bfe5417d1d8957d8615f615adfb0d7099eb57e53242332fdb1ddff6c996d594f336c093897a4c7c7d052c951ff3b19a2ae8df2f67e31826229e473cd65ec6ce8a2a52fb696593a7f84547862c1f60f5dee0f3bf38688d315ee6"], 0x34}}, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, 0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0) r1 = syz_io_uring_setup(0x3167, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f00000002c0), &(0x7f0000000340)) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, &(0x7f0000000080)={@local, 0x78, r3}) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000000)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, r3}) syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r5 = dup2(r4, r4) io_uring_setup(0x3, 0x0) io_uring_enter(r1, 0x76d3, 0x80, 0x1, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xffffffffffffffda, 0x6}, 0x4202, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsmount(r5, 0x0, 0x0) r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) openat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x200040, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r6, 0x0) [ 972.774506] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.6'. 12:02:17 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 3) 12:02:17 executing program 0: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_usb_connect$cdc_ecm(0x0, 0x4d, 0x0, 0x0) timer_delete(0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) timer_settime(0x0, 0x0, &(0x7f0000000480)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={0x14, 0x16, 0xd01, 0x0, 0x0, {0xd}}, 0x14}}, 0x0) timer_settime(0x0, 0x1, &(0x7f00000000c0)={{0x77359400}, {0x0, 0x989680}}, &(0x7f0000000100)) timer_gettime(0x0, &(0x7f0000000080)) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 986.125749] FAULT_INJECTION: forcing a failure. [ 986.125749] name failslab, interval 1, probability 0, space 0, times 0 [ 986.128264] CPU: 1 PID: 9600 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 986.129699] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 986.131433] Call Trace: [ 986.131982] dump_stack+0x107/0x167 [ 986.132739] should_fail.cold+0x5/0xa [ 986.133528] ? __alloc_skb+0x6d/0x5b0 [ 986.134319] should_failslab+0x5/0x20 [ 986.135112] kmem_cache_alloc_node+0x55/0x330 [ 986.136057] __alloc_skb+0x6d/0x5b0 [ 986.136834] netlink_sendmsg+0x998/0xdf0 [ 986.137698] ? netlink_unicast+0x7f0/0x7f0 [ 986.138598] ? netlink_unicast+0x7f0/0x7f0 [ 986.139498] __sock_sendmsg+0x154/0x190 [ 986.140334] ____sys_sendmsg+0x70d/0x870 [ 986.141198] ? sock_write_iter+0x3d0/0x3d0 [ 986.142083] ? do_recvmmsg+0x6d0/0x6d0 [ 986.142918] ? perf_trace_lock+0xac/0x490 [ 986.143792] ? __lockdep_reset_lock+0x180/0x180 [ 986.144760] ? perf_trace_lock+0xac/0x490 [ 986.145624] ? SOFTIRQ_verbose+0x10/0x10 [ 986.146478] ___sys_sendmsg+0xf3/0x170 12:02:17 executing program 1: r0 = perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x9, 0x9, 0x8, 0x9, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_config_ext={0x1, 0x7}, 0x8000, 0x7, 0xa70, 0x7, 0x800, 0xdf4, 0x6, 0x0, 0x350, 0x0, 0x1c000}, 0x0, 0x7, 0xffffffffffffffff, 0x9) ioctl$BTRFS_IOC_TREE_SEARCH(r0, 0xd0009411, &(0x7f0000000080)={{0x0, 0x9, 0xfffffffffffffffe, 0xcf98, 0xfff, 0x5, 0x3e, 0x3, 0x7f, 0x4, 0x4, 0x0, 0x2, 0x3, 0x100}}) r1 = gettid() r2 = perf_event_open(&(0x7f00000010c0)={0x3, 0x80, 0xdf, 0x2, 0x4, 0x0, 0x0, 0xfffffffffffffffd, 0x1080, 0xc, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x4a04, 0x2, @perf_bp={&(0x7f0000001080), 0x5}, 0x1011, 0xd9a, 0x0, 0x8, 0x8, 0x0, 0x2, 0x0, 0x80000000, 0x0, 0x1}, r1, 0x9, r0, 0x0) r3 = dup3(r2, r0, 0x0) rt_tgsigqueueinfo(r1, r1, 0x23, &(0x7f0000001140)={0x36, 0x8, 0x7}) ioctl$BTRFS_IOC_QUOTA_RESCAN_WAIT(r0, 0x942e, 0x0) timer_create(0x4, &(0x7f00000011c0)={0x0, 0x2, 0x2, @tid=0xffffffffffffffff}, &(0x7f0000001200)=0x0) timer_create(0x6, &(0x7f0000001240)={0x0, 0x1b, 0x1}, &(0x7f0000001280)=0x0) clock_gettime(0x0, &(0x7f00000012c0)={0x0, 0x0}) timer_settime(r5, 0x1, &(0x7f0000001300)={{r6, r7+10000000}, {0x77359400}}, &(0x7f0000001340)) timer_gettime(r4, &(0x7f0000001380)) r8 = mmap$IORING_OFF_SQES(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x5, 0x4010, r3, 0x10000000) r9 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, r8, &(0x7f0000001400)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x6, &(0x7f00000013c0)={0x0, 0x989680}, 0x1, 0x1, 0x1, {0x0, r9}}, 0xad) ptrace$PTRACE_SECCOMP_GET_METADATA(0x420d, r1, 0x10, &(0x7f0000001440)={0x3}) timer_delete(r4) ioctl$TIOCL_SETVESABLANK(0xffffffffffffffff, 0x541c, &(0x7f0000001480)) timer_create(0x0, &(0x7f0000001580)={0x0, 0x1d, 0x4, @thr={&(0x7f00000014c0)="2a921abce4880eedfee60aac0e992c97c8fe7a51447b5e23b04e7077946c995eb13891f60a2c5b79a61dbe5f6b4bbf0e27ae29a99b70992ef4f6e418f3d533304943b43ef5ec29498a055fce61ec531e075a6428358c8d7a1a299aeae63943bfb631", &(0x7f0000001540)="86e3790e0dda4ce348ec9283016d"}}, &(0x7f00000015c0)=0x0) timer_settime(r10, 0x1, &(0x7f0000001600)={{0x0, 0x989680}, {0x77359400}}, &(0x7f0000001640)) 12:02:17 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x0, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 12:02:17 executing program 5: sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, 0x0, 0x0) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0) sendmsg$NL80211_CMD_NEW_STATION(r0, 0x0, 0x24000000) bind$bt_l2cap(0xffffffffffffffff, 0x0, 0x0) inotify_init1(0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) io_submit(0x0, 0x0, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) openat(0xffffffffffffffff, &(0x7f00000001c0)='./file0\x00', 0x21c800, 0x1) sendmsg$NL80211_CMD_STOP_AP(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, 0x0, 0x2, 0x0, 0x0, {{}, {@val={0x8}, @void}}, ["", "", "", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x84}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, 0x0) sendmsg$NL80211_CMD_ADD_TX_TS(r1, &(0x7f00000004c0)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)={0x48, 0x0, 0x0, 0x70bd25, 0x25dfdbfb, {{}, {@void, @val={0xc, 0x99, {0x4, 0x34}}}}, [@NL80211_ATTR_USER_PRIO={0x5, 0xd3, 0x2}, @NL80211_ATTR_USER_PRIO={0x5, 0xd3, 0x5}, @NL80211_ATTR_TSID={0x5, 0xd2, 0x7}, @NL80211_ATTR_USER_PRIO={0x5, 0xd3, 0x7}, @NL80211_ATTR_TSID={0x5, 0xd2, 0xf}]}, 0x48}, 0x1, 0x0, 0x0, 0x40010}, 0x800) io_setup(0x3, &(0x7f0000000000)=0x0) connect$bt_l2cap(0xffffffffffffffff, &(0x7f0000000100)={0x1f, 0x0, @any, 0x1ff, 0x3}, 0xe) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) io_submit(r2, 0x2, &(0x7f0000000380)=[&(0x7f0000001080)={0x0, 0x0, 0x0, 0x0, 0x0, r3, 0x0, 0x3000000}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}]) 12:02:17 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x8, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001240)='/proc/sysvipc/sem\x00', 0x0, 0x0) r2 = syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r2, 0x8000000) fsetxattr$security_capability(r0, &(0x7f0000000000), &(0x7f0000000140)=@v1={0x1000000, [{0x5, 0x1}]}, 0xc, 0x2) io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0) r3 = syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r3, 0x8000000) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) close_range(r2, r3, 0xe5c54874a429341) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQES(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x12, r1, 0x10000000) 12:02:17 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 11) 12:02:17 executing program 6: syz_mount_image$ext4(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)=ANY=[]) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfffffffffffffffc}, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0x2, 0x0) setpriority(0x0, 0x0, 0x200) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/resume', 0x22902, 0x0) write$bt_hci(r1, &(0x7f0000000040)=ANY=[], 0xfdef) write$cgroup_pid(r0, &(0x7f00000000c0), 0x12) close(r0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/bus/input/devices\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x6d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1e3, 0x6a}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', 0x0, 0x0, 0x0, &(0x7f0000000440), 0x0, &(0x7f0000000240)=ANY=[]) inotify_add_watch(r2, &(0x7f0000000200)='./file0\x00', 0x4000204) migrate_pages(0x0, 0x2, 0x0, &(0x7f0000000040)=0x1) [ 986.147533] ? sendmsg_copy_msghdr+0x160/0x160 [ 986.148620] ? lock_downgrade+0x6d0/0x6d0 [ 986.148927] FAULT_INJECTION: forcing a failure. [ 986.148927] name failslab, interval 1, probability 0, space 0, times 0 [ 986.149489] ? find_held_lock+0x2c/0x110 [ 986.149521] ? __fget_files+0x296/0x4c0 [ 986.152454] ? __fget_light+0xea/0x290 [ 986.153268] __sys_sendmsg+0xe5/0x1b0 [ 986.154056] ? __sys_sendmsg_sock+0x40/0x40 [ 986.154954] ? rcu_read_lock_any_held+0x75/0xa0 [ 986.155941] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 986.157017] ? syscall_enter_from_user_mode+0x1d/0x50 [ 986.158071] ? trace_hardirqs_on+0x5b/0x180 [ 986.158979] do_syscall_64+0x33/0x40 [ 986.159745] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 986.160798] RIP: 0033:0x7fb858d1fb19 [ 986.161565] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 986.165338] RSP: 002b:00007fb856295188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 986.166913] RAX: ffffffffffffffda RBX: 00007fb858e32f60 RCX: 00007fb858d1fb19 [ 986.168391] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 986.169871] RBP: 00007fb8562951d0 R08: 0000000000000000 R09: 0000000000000000 [ 986.171327] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 986.172782] R13: 00007ffde2c0b16f R14: 00007fb856295300 R15: 0000000000022000 [ 986.174259] CPU: 0 PID: 9609 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 986.175091] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 986.176044] Call Trace: [ 986.176380] dump_stack+0x107/0x167 [ 986.176823] should_fail.cold+0x5/0xa [ 986.177281] ? create_object.isra.0+0x3a/0xa20 [ 986.177833] should_failslab+0x5/0x20 [ 986.178291] kmem_cache_alloc+0x5b/0x310 [ 986.178787] create_object.isra.0+0x3a/0xa20 [ 986.179329] ? kasan_unpoison_shadow+0x33/0x50 [ 986.179881] kmalloc_order+0xfe/0x160 [ 986.180346] kmalloc_order_trace+0x14/0xa0 [ 986.180853] wiphy_new_nm+0x6f3/0x1e00 [ 986.181327] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 986.181858] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 986.182486] ? __local_bh_enable_ip+0x9d/0x100 [ 986.183028] ? trace_hardirqs_on+0x5b/0x180 [ 986.183544] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 986.184126] ? ____sys_sendmsg+0x70d/0x870 [ 986.184631] ? ___sys_sendmsg+0xf3/0x170 [ 986.185113] ? __sys_sendmsg+0xe5/0x1b0 [ 986.185588] ? do_syscall_64+0x33/0x40 [ 986.186050] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 986.186685] ? __lockdep_reset_lock+0x180/0x180 [ 986.187226] ? lock_acquire+0x197/0x470 [ 986.187680] ? create_object.isra.0+0x3ad/0xa20 [ 986.188240] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 986.188775] ? __kmalloc+0x16e/0x390 [ 986.189219] hwsim_new_radio_nl+0x991/0x1080 [ 986.189730] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 986.190339] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 986.191100] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 986.191852] genl_family_rcv_msg_doit+0x22d/0x330 [ 986.192410] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 986.193175] ? cap_capable+0x1d6/0x240 [ 986.193642] ? ns_capable+0xe2/0x110 [ 986.194080] genl_rcv_msg+0x33c/0x5a0 [ 986.194530] ? genl_get_cmd+0x480/0x480 [ 986.195020] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 986.195636] ? lock_release+0x680/0x680 [ 986.196115] ? __lockdep_reset_lock+0x180/0x180 [ 986.196670] netlink_rcv_skb+0x14b/0x430 [ 986.197159] ? genl_get_cmd+0x480/0x480 [ 986.197636] ? netlink_ack+0xab0/0xab0 [ 986.198128] ? netlink_deliver_tap+0x1c4/0xcd0 [ 986.198674] ? is_vmalloc_addr+0x7b/0xb0 [ 986.199174] genl_rcv+0x24/0x40 [ 986.199569] netlink_unicast+0x549/0x7f0 [ 986.200068] ? netlink_attachskb+0x870/0x870 [ 986.200593] ? __virt_addr_valid+0x128/0x350 [ 986.201131] netlink_sendmsg+0x90f/0xdf0 [ 986.201620] ? netlink_unicast+0x7f0/0x7f0 [ 986.202140] ? netlink_unicast+0x7f0/0x7f0 [ 986.202647] __sock_sendmsg+0x154/0x190 [ 986.203130] ____sys_sendmsg+0x70d/0x870 [ 986.203618] ? sock_write_iter+0x3d0/0x3d0 [ 986.204126] ? do_recvmmsg+0x6d0/0x6d0 [ 986.204590] ? perf_trace_lock+0xac/0x490 [ 986.205088] ? __lockdep_reset_lock+0x180/0x180 [ 986.205637] ? perf_trace_lock+0xac/0x490 [ 986.206134] ? SOFTIRQ_verbose+0x10/0x10 [ 986.206636] ___sys_sendmsg+0xf3/0x170 [ 986.207105] ? sendmsg_copy_msghdr+0x160/0x160 [ 986.207654] ? lock_downgrade+0x6d0/0x6d0 [ 986.208147] ? find_held_lock+0x2c/0x110 [ 986.208636] ? __fget_files+0x296/0x4c0 [ 986.209118] ? __fget_light+0xea/0x290 [ 986.209585] __sys_sendmsg+0xe5/0x1b0 [ 986.210034] ? __sys_sendmsg_sock+0x40/0x40 [ 986.210540] ? rcu_read_lock_any_held+0x75/0xa0 [ 986.211124] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 986.211739] ? syscall_enter_from_user_mode+0x1d/0x50 [ 986.212348] ? trace_hardirqs_on+0x5b/0x180 [ 986.212870] do_syscall_64+0x33/0x40 [ 986.213311] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 986.213916] RIP: 0033:0x7f59b4343b19 [ 986.214363] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 986.216530] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 986.217437] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 986.218283] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 986.219136] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 986.219981] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 986.220823] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 [ 986.260591] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 986.261737] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 986.262533] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 986.263325] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 40 00 [ 986.264221] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 14 prio class 0 [ 986.266926] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 986.267562] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 986.268725] Buffer I/O error on dev sr0, logical block 0, async page read [ 986.269955] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 986.270718] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 986.271940] Buffer I/O error on dev sr0, logical block 1, async page read [ 986.273659] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 986.274376] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 986.275547] Buffer I/O error on dev sr0, logical block 2, async page read [ 986.276751] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 986.277424] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 986.278621] Buffer I/O error on dev sr0, logical block 3, async page read [ 986.279866] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 986.280553] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 986.281738] Buffer I/O error on dev sr0, logical block 4, async page read [ 986.282905] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 986.283577] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 986.284771] Buffer I/O error on dev sr0, logical block 5, async page read [ 986.285949] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 986.286611] blk_update_request: I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 986.287796] Buffer I/O error on dev sr0, logical block 6, async page read [ 986.289408] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 986.290079] blk_update_request: I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 986.291232] Buffer I/O error on dev sr0, logical block 7, async page read 12:02:17 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x0, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 12:02:17 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 12) [ 986.324913] FAULT_INJECTION: forcing a failure. [ 986.324913] name failslab, interval 1, probability 0, space 0, times 0 [ 986.326258] CPU: 0 PID: 9619 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 986.327051] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 986.327995] Call Trace: [ 986.328296] dump_stack+0x107/0x167 [ 986.328716] should_fail.cold+0x5/0xa [ 986.329149] should_failslab+0x5/0x20 [ 986.329586] __kmalloc_track_caller+0x79/0x370 [ 986.330100] ? kvasprintf_const+0x60/0x1a0 [ 986.330589] kvasprintf+0xb5/0x150 [ 986.330999] ? bust_spinlocks+0xe0/0xe0 [ 986.331455] ? lock_release+0x680/0x680 [ 986.331895] ? find_held_lock+0x2c/0x110 [ 986.332367] kvasprintf_const+0x60/0x1a0 [ 986.332820] kobject_set_name_vargs+0x56/0x150 [ 986.333343] dev_set_name+0xbb/0xf0 [ 986.333752] ? device_initialize+0x620/0x620 [ 986.334240] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 986.334817] ? kmalloc_order+0xfe/0x160 [ 986.335268] wiphy_new_nm+0x805/0x1e00 [ 986.335715] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 986.336241] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 986.336831] ? __local_bh_enable_ip+0x9d/0x100 [ 986.337343] ? trace_hardirqs_on+0x5b/0x180 [ 986.337831] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 986.338388] ? ____sys_sendmsg+0x70d/0x870 [ 986.338861] ? ___sys_sendmsg+0xf3/0x170 [ 986.339332] ? __sys_sendmsg+0xe5/0x1b0 [ 986.339781] ? do_syscall_64+0x33/0x40 [ 986.340237] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 986.340834] ? __lockdep_reset_lock+0x180/0x180 [ 986.341357] ? lock_acquire+0x197/0x470 [ 986.341805] ? create_object.isra.0+0x3ad/0xa20 [ 986.342334] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 986.342857] ? __kmalloc+0x16e/0x390 [ 986.343287] hwsim_new_radio_nl+0x991/0x1080 [ 986.343778] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 986.344370] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 986.345101] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 986.345828] genl_family_rcv_msg_doit+0x22d/0x330 [ 986.346368] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 986.347226] ? cap_capable+0x1d6/0x240 [ 986.347669] ? ns_capable+0xe2/0x110 [ 986.348090] genl_rcv_msg+0x33c/0x5a0 [ 986.348517] ? genl_get_cmd+0x480/0x480 [ 986.348961] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 986.349612] ? lock_release+0x680/0x680 [ 986.350080] ? __lockdep_reset_lock+0x180/0x180 [ 986.350613] netlink_rcv_skb+0x14b/0x430 [ 986.351078] ? genl_get_cmd+0x480/0x480 [ 986.351524] ? netlink_ack+0xab0/0xab0 [ 986.351971] ? netlink_deliver_tap+0x1c4/0xcd0 [ 986.352486] ? is_vmalloc_addr+0x7b/0xb0 [ 986.352943] genl_rcv+0x24/0x40 [ 986.353312] netlink_unicast+0x549/0x7f0 [ 986.353757] ? netlink_attachskb+0x870/0x870 [ 986.354248] ? __virt_addr_valid+0x128/0x350 [ 986.354745] netlink_sendmsg+0x90f/0xdf0 [ 986.355214] ? netlink_unicast+0x7f0/0x7f0 [ 986.355691] ? netlink_unicast+0x7f0/0x7f0 [ 986.356165] __sock_sendmsg+0x154/0x190 [ 986.356608] ____sys_sendmsg+0x70d/0x870 [ 986.357063] ? sock_write_iter+0x3d0/0x3d0 [ 986.357517] ? do_recvmmsg+0x6d0/0x6d0 [ 986.357957] ? perf_trace_lock+0xac/0x490 [ 986.358421] ? __lockdep_reset_lock+0x180/0x180 [ 986.358945] ? perf_trace_lock+0xac/0x490 [ 986.359391] ? SOFTIRQ_verbose+0x10/0x10 [ 986.359842] ___sys_sendmsg+0xf3/0x170 [ 986.360275] ? sendmsg_copy_msghdr+0x160/0x160 [ 986.360784] ? lock_downgrade+0x6d0/0x6d0 [ 986.361250] ? find_held_lock+0x2c/0x110 [ 986.361706] ? __fget_files+0x296/0x4c0 [ 986.362155] ? __fget_light+0xea/0x290 [ 986.362594] __sys_sendmsg+0xe5/0x1b0 [ 986.363023] ? __sys_sendmsg_sock+0x40/0x40 [ 986.363503] ? rcu_read_lock_any_held+0x75/0xa0 [ 986.364030] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 986.364608] ? syscall_enter_from_user_mode+0x1d/0x50 [ 986.365174] ? trace_hardirqs_on+0x5b/0x180 [ 986.365653] do_syscall_64+0x33/0x40 [ 986.366068] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 986.366639] RIP: 0033:0x7f59b4343b19 [ 986.367063] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 986.369109] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 986.369950] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 986.370720] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 986.371524] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 986.372316] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 986.373101] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 12:02:17 executing program 1: ioctl$sock_TIOCINQ(0xffffffffffffffff, 0x541b, 0x0) recvmsg(0xffffffffffffffff, &(0x7f0000001540)={0x0, 0x0, 0x0}, 0x0) socketpair(0x10, 0x6, 0x7, &(0x7f00000017c0)) 12:02:17 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 13) [ 986.400552] FAULT_INJECTION: forcing a failure. [ 986.400552] name failslab, interval 1, probability 0, space 0, times 0 [ 986.401852] CPU: 0 PID: 9625 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 986.402611] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 986.403506] Call Trace: [ 986.403788] dump_stack+0x107/0x167 [ 986.404176] should_fail.cold+0x5/0xa [ 986.404581] ? create_object.isra.0+0x3a/0xa20 [ 986.405076] should_failslab+0x5/0x20 [ 986.405486] kmem_cache_alloc+0x5b/0x310 [ 986.405929] ? vsnprintf+0x4ba/0x1600 [ 986.406341] create_object.isra.0+0x3a/0xa20 [ 986.406814] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 986.407364] __kmalloc_track_caller+0x177/0x370 [ 986.407871] ? kvasprintf_const+0x60/0x1a0 [ 986.408332] kvasprintf+0xb5/0x150 [ 986.408733] ? bust_spinlocks+0xe0/0xe0 [ 986.409185] ? lock_release+0x680/0x680 [ 986.409620] ? find_held_lock+0x2c/0x110 [ 986.410082] kvasprintf_const+0x60/0x1a0 [ 986.410523] kobject_set_name_vargs+0x56/0x150 [ 986.411040] dev_set_name+0xbb/0xf0 [ 986.411447] ? device_initialize+0x620/0x620 [ 986.411935] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 986.412522] ? kmalloc_order+0xfe/0x160 [ 986.412970] wiphy_new_nm+0x805/0x1e00 [ 986.413407] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 986.413919] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 986.414495] ? __local_bh_enable_ip+0x9d/0x100 [ 986.415001] ? trace_hardirqs_on+0x5b/0x180 [ 986.415484] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 986.416033] ? ____sys_sendmsg+0x70d/0x870 [ 986.416498] ? ___sys_sendmsg+0xf3/0x170 [ 986.416946] ? __sys_sendmsg+0xe5/0x1b0 [ 986.417398] ? do_syscall_64+0x33/0x40 [ 986.417841] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 986.418438] ? __lockdep_reset_lock+0x180/0x180 [ 986.418967] ? lock_acquire+0x197/0x470 [ 986.419407] ? create_object.isra.0+0x3ad/0xa20 [ 986.419923] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 986.420440] ? __kmalloc+0x16e/0x390 [ 986.420852] hwsim_new_radio_nl+0x991/0x1080 [ 986.421340] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 986.421928] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 986.422651] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 986.423403] genl_family_rcv_msg_doit+0x22d/0x330 [ 986.423955] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 986.424703] ? cap_capable+0x1d6/0x240 [ 986.425149] ? ns_capable+0xe2/0x110 [ 986.425575] genl_rcv_msg+0x33c/0x5a0 [ 986.426000] ? genl_get_cmd+0x480/0x480 [ 986.426440] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 986.427025] ? lock_release+0x680/0x680 [ 986.427467] ? __lockdep_reset_lock+0x180/0x180 [ 986.427967] netlink_rcv_skb+0x14b/0x430 [ 986.428424] ? genl_get_cmd+0x480/0x480 [ 986.428845] ? netlink_ack+0xab0/0xab0 [ 986.429287] ? netlink_deliver_tap+0x1c4/0xcd0 [ 986.429782] ? is_vmalloc_addr+0x7b/0xb0 [ 986.430247] genl_rcv+0x24/0x40 [ 986.430607] netlink_unicast+0x549/0x7f0 [ 986.431089] ? netlink_attachskb+0x870/0x870 [ 986.431576] ? __virt_addr_valid+0x128/0x350 [ 986.432051] netlink_sendmsg+0x90f/0xdf0 [ 986.432510] ? netlink_unicast+0x7f0/0x7f0 [ 986.432990] ? netlink_unicast+0x7f0/0x7f0 [ 986.433469] __sock_sendmsg+0x154/0x190 [ 986.433916] ____sys_sendmsg+0x70d/0x870 [ 986.434364] ? sock_write_iter+0x3d0/0x3d0 [ 986.434843] ? do_recvmmsg+0x6d0/0x6d0 [ 986.435282] ? perf_trace_lock+0xac/0x490 [ 986.435747] ? __lockdep_reset_lock+0x180/0x180 [ 986.436262] ? perf_trace_lock+0xac/0x490 [ 986.436708] ? SOFTIRQ_verbose+0x10/0x10 [ 986.437169] ___sys_sendmsg+0xf3/0x170 [ 986.437609] ? sendmsg_copy_msghdr+0x160/0x160 [ 986.438127] ? lock_downgrade+0x6d0/0x6d0 [ 986.438594] ? find_held_lock+0x2c/0x110 [ 986.439038] ? __fget_files+0x296/0x4c0 [ 986.439490] ? __fget_light+0xea/0x290 [ 986.439931] __sys_sendmsg+0xe5/0x1b0 [ 986.440365] ? __sys_sendmsg_sock+0x40/0x40 [ 986.440856] ? rcu_read_lock_any_held+0x75/0xa0 [ 986.441396] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 986.441986] ? syscall_enter_from_user_mode+0x1d/0x50 [ 986.442567] ? trace_hardirqs_on+0x5b/0x180 [ 986.443057] do_syscall_64+0x33/0x40 [ 986.443493] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 986.444066] RIP: 0033:0x7f59b4343b19 [ 986.444484] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 986.446501] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 986.447497] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 986.448337] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 986.449131] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 986.449915] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 986.450718] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 12:02:17 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 12:02:17 executing program 5: syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x5, &(0x7f0000000200)=[{&(0x7f0000010000)="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"/1408, 0x580, 0x8000}, {&(0x7f0000010600)="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"/1408, 0x580, 0x8800}, {&(0x7f0000010c00)="ff43443030310100"/32, 0x20, 0x9000}, {&(0x7f0000010d00)="01001c0000000100000005001d000000010046494c4530000000000000000000", 0x20, 0xa000}, {&(0x7f0000011100)="88001c0000000000001c00080000000008007809140b2a3a0802", 0x1a, 0xe000}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="6e6f6a6f6c6965742c0032967284c15864d88355068f4088876a2dfb7f98561eb1f1bf0d7ab949c8f7bdbfa82b31a0bd8967c20ea9d8dd16da01e4b2dd231b1b749c2cfcacc941076f0bda86b08f27e92c074918dd6fd6e4529f7404fb445aa800b01e308d2b979d2cec0298eff861d49d6d48a5ca5502ba4e3ba4b7a595e88bcd27277b4f4f41fb63bb617a965839aadbde49baa4ad7e0f993c20741141fc84d08bb6d97e5657e04cb96b780ea276a89c9de73abda1ddbd73ec30c1a931b0b527d72f9953531e8b80bec7671efcab8578d329b9a4bfba2c6ad10ce85f48918d924126b2cebea1f0bbe44c"]) 12:02:18 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 4) 12:02:18 executing program 1: ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x0, 0x4000, 0xfffffffe, 0x0, 0x4, "77004a6efdff00", 0x100}) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x14}}, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000080)={'geneve0\x00'}) r1 = socket$inet(0x2, 0xa, 0x0) dup3(r1, r0, 0x0) [ 986.596582] FAULT_INJECTION: forcing a failure. [ 986.596582] name failslab, interval 1, probability 0, space 0, times 0 [ 986.599125] CPU: 1 PID: 9642 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 986.600523] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 986.602219] Call Trace: [ 986.602765] dump_stack+0x107/0x167 [ 986.603531] should_fail.cold+0x5/0xa [ 986.604313] ? create_object.isra.0+0x3a/0xa20 [ 986.605248] should_failslab+0x5/0x20 [ 986.606019] kmem_cache_alloc+0x5b/0x310 [ 986.606853] create_object.isra.0+0x3a/0xa20 [ 986.607760] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 986.608782] kmem_cache_alloc_node+0x169/0x330 [ 986.609721] __alloc_skb+0x6d/0x5b0 [ 986.610461] netlink_sendmsg+0x998/0xdf0 [ 986.611302] ? netlink_unicast+0x7f0/0x7f0 [ 986.612170] ? netlink_unicast+0x7f0/0x7f0 [ 986.613026] __sock_sendmsg+0x154/0x190 [ 986.613830] ____sys_sendmsg+0x70d/0x870 [ 986.614656] ? sock_write_iter+0x3d0/0x3d0 [ 986.615517] ? do_recvmmsg+0x6d0/0x6d0 [ 986.616327] ? perf_trace_lock+0xac/0x490 [ 986.617179] ? __lockdep_reset_lock+0x180/0x180 [ 986.618125] ? perf_trace_lock+0xac/0x490 [ 986.618989] ? SOFTIRQ_verbose+0x10/0x10 [ 986.619823] ___sys_sendmsg+0xf3/0x170 [ 986.620617] ? sendmsg_copy_msghdr+0x160/0x160 [ 986.621576] ? lock_downgrade+0x6d0/0x6d0 [ 986.622419] ? find_held_lock+0x2c/0x110 [ 986.623268] ? __fget_files+0x296/0x4c0 [ 986.624085] ? __fget_light+0xea/0x290 [ 986.624887] __sys_sendmsg+0xe5/0x1b0 [ 986.625658] ? __sys_sendmsg_sock+0x40/0x40 [ 986.626525] ? rcu_read_lock_any_held+0x75/0xa0 [ 986.627492] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 986.628545] ? syscall_enter_from_user_mode+0x1d/0x50 [ 986.629584] ? trace_hardirqs_on+0x5b/0x180 [ 986.630457] do_syscall_64+0x33/0x40 [ 986.631221] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 986.632256] RIP: 0033:0x7fb858d1fb19 [ 986.633019] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 986.636714] RSP: 002b:00007fb856295188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 986.638239] RAX: ffffffffffffffda RBX: 00007fb858e32f60 RCX: 00007fb858d1fb19 [ 986.639673] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 986.641097] RBP: 00007fb8562951d0 R08: 0000000000000000 R09: 0000000000000000 [ 986.642524] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 986.643971] R13: 00007ffde2c0b16f R14: 00007fb856295300 R15: 0000000000022000 12:02:33 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 14) [ 1001.981238] FAULT_INJECTION: forcing a failure. [ 1001.981238] name failslab, interval 1, probability 0, space 0, times 0 [ 1001.982502] CPU: 0 PID: 9658 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1001.983277] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1001.984177] Call Trace: [ 1001.984464] dump_stack+0x107/0x167 [ 1001.984868] should_fail.cold+0x5/0xa [ 1001.985291] should_failslab+0x5/0x20 [ 1001.985711] __kmalloc_node_track_caller+0x74/0x3b0 [ 1001.986266] ? netlink_sendmsg+0x998/0xdf0 [ 1001.986750] __alloc_skb+0xb1/0x5b0 [ 1001.987156] netlink_sendmsg+0x998/0xdf0 [ 1001.987599] ? netlink_unicast+0x7f0/0x7f0 [ 1001.988060] ? netlink_unicast+0x7f0/0x7f0 [ 1001.988518] __sock_sendmsg+0x154/0x190 [ 1001.988951] ____sys_sendmsg+0x70d/0x870 [ 1001.989394] ? sock_write_iter+0x3d0/0x3d0 [ 1001.989865] ? do_recvmmsg+0x6d0/0x6d0 [ 1001.990292] ? perf_trace_lock+0xac/0x490 [ 1001.990750] ? __lockdep_reset_lock+0x180/0x180 [ 1001.991273] ? perf_trace_lock+0xac/0x490 [ 1001.991723] ? SOFTIRQ_verbose+0x10/0x10 [ 1001.992168] ___sys_sendmsg+0xf3/0x170 [ 1001.992601] ? sendmsg_copy_msghdr+0x160/0x160 [ 1001.993113] ? lock_downgrade+0x6d0/0x6d0 [ 1001.993577] ? find_held_lock+0x2c/0x110 [ 1001.994031] ? __fget_files+0x296/0x4c0 [ 1001.994477] ? __fget_light+0xea/0x290 [ 1001.994919] __sys_sendmsg+0xe5/0x1b0 [ 1001.995353] ? __sys_sendmsg_sock+0x40/0x40 [ 1001.995821] ? rcu_read_lock_any_held+0x75/0xa0 [ 1001.996344] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1001.996931] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1001.997505] ? trace_hardirqs_on+0x5b/0x180 [ 1001.997984] do_syscall_64+0x33/0x40 [ 1001.998399] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1001.998962] RIP: 0033:0x7fb858d1fb19 [ 1001.999402] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1002.001421] RSP: 002b:00007fb856295188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1002.002267] RAX: ffffffffffffffda RBX: 00007fb858e32f60 RCX: 00007fb858d1fb19 [ 1002.003054] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1002.003849] RBP: 00007fb8562951d0 R08: 0000000000000000 R09: 0000000000000000 [ 1002.004633] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1002.005416] R13: 00007ffde2c0b16f R14: 00007fb856295300 R15: 0000000000022000 [ 1002.010759] FAULT_INJECTION: forcing a failure. [ 1002.010759] name failslab, interval 1, probability 0, space 0, times 0 [ 1002.013239] CPU: 1 PID: 9660 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 1002.014637] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1002.016319] Call Trace: [ 1002.016853] dump_stack+0x107/0x167 [ 1002.017604] should_fail.cold+0x5/0xa [ 1002.018356] ? rfkill_alloc+0xa6/0x2c0 [ 1002.019162] should_failslab+0x5/0x20 [ 1002.019927] __kmalloc+0x72/0x390 [ 1002.020640] rfkill_alloc+0xa6/0x2c0 [ 1002.021401] wiphy_new_nm+0x12a3/0x1e00 [ 1002.022225] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1002.023176] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1002.024246] ? __local_bh_enable_ip+0x9d/0x100 [ 1002.025176] ? trace_hardirqs_on+0x5b/0x180 [ 1002.026063] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1002.027055] ? ____sys_sendmsg+0x70d/0x870 [ 1002.027948] ? ___sys_sendmsg+0xf3/0x170 [ 1002.028773] ? __sys_sendmsg+0xe5/0x1b0 [ 1002.029589] ? do_syscall_64+0x33/0x40 [ 1002.030382] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1002.031474] ? __lockdep_reset_lock+0x180/0x180 [ 1002.032422] ? lock_acquire+0x197/0x470 [ 1002.033227] ? create_object.isra.0+0x3ad/0xa20 [ 1002.034192] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1002.035151] ? __kmalloc+0x16e/0x390 [ 1002.035920] hwsim_new_radio_nl+0x991/0x1080 [ 1002.036814] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1002.037886] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1002.039231] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1002.040553] genl_family_rcv_msg_doit+0x22d/0x330 [ 1002.041529] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1002.042854] ? cap_capable+0x1d6/0x240 [ 1002.043661] ? ns_capable+0xe2/0x110 [ 1002.044411] genl_rcv_msg+0x33c/0x5a0 [ 1002.045188] ? genl_get_cmd+0x480/0x480 [ 1002.045983] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1002.047027] ? lock_release+0x680/0x680 [ 1002.047844] ? __lockdep_reset_lock+0x180/0x180 [ 1002.048780] netlink_rcv_skb+0x14b/0x430 [ 1002.049594] ? genl_get_cmd+0x480/0x480 [ 1002.050416] ? netlink_ack+0xab0/0xab0 [ 1002.051226] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1002.052145] ? is_vmalloc_addr+0x7b/0xb0 [ 1002.052960] genl_rcv+0x24/0x40 [ 1002.053617] netlink_unicast+0x549/0x7f0 [ 1002.054453] ? netlink_attachskb+0x870/0x870 [ 1002.055329] ? __virt_addr_valid+0x128/0x350 [ 1002.056230] netlink_sendmsg+0x90f/0xdf0 [ 1002.057068] ? netlink_unicast+0x7f0/0x7f0 [ 1002.057939] ? netlink_unicast+0x7f0/0x7f0 [ 1002.058787] __sock_sendmsg+0x154/0x190 [ 1002.059610] ____sys_sendmsg+0x70d/0x870 [ 1002.060440] ? sock_write_iter+0x3d0/0x3d0 [ 1002.061284] ? do_recvmmsg+0x6d0/0x6d0 [ 1002.062088] ? perf_trace_lock+0xac/0x490 [ 1002.062935] ? __lockdep_reset_lock+0x180/0x180 [ 1002.063916] ? perf_trace_lock+0xac/0x490 [ 1002.064753] ? SOFTIRQ_verbose+0x10/0x10 [ 1002.065586] ___sys_sendmsg+0xf3/0x170 [ 1002.066374] ? sendmsg_copy_msghdr+0x160/0x160 [ 1002.067334] ? lock_downgrade+0x6d0/0x6d0 [ 1002.068199] ? find_held_lock+0x2c/0x110 [ 1002.069047] ? __fget_files+0x296/0x4c0 [ 1002.069892] ? __fget_light+0xea/0x290 [ 1002.070695] __sys_sendmsg+0xe5/0x1b0 [ 1002.071469] ? __sys_sendmsg_sock+0x40/0x40 [ 1002.072338] ? rcu_read_lock_any_held+0x75/0xa0 [ 1002.073321] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1002.074389] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1002.075418] ? trace_hardirqs_on+0x5b/0x180 [ 1002.076297] do_syscall_64+0x33/0x40 [ 1002.077049] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1002.078080] RIP: 0033:0x7f59b4343b19 [ 1002.078815] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1002.082549] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1002.084100] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 1002.085549] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1002.086970] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1002.088413] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1002.089852] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 12:02:33 executing program 6: r0 = perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000237}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = io_uring_setup(0x2229, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x100000}) fcntl$getownex(r0, 0x10, &(0x7f0000000080)={0x0, 0x0}) perf_event_open(&(0x7f0000000000)={0x4, 0x80, 0x0, 0x5, 0x40, 0x8, 0x0, 0x401, 0x40201, 0x4, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x7f, 0x4, @perf_config_ext={0x800, 0x28}, 0x8, 0x3, 0x6d04, 0x5, 0x0, 0xffffffff, 0x9, 0x0, 0xffff, 0x0, 0x400}, r2, 0x6, 0xffffffffffffffff, 0x3) dup3(r1, r0, 0x0) 12:02:33 executing program 0: msgsnd(0xffffffffffffffff, &(0x7f0000000000)={0x1, "aadeab3229e5326cfe50770fa06772148f9c4e93324bd41adff34c808c42a0c721000edc07aac41ad0171612d4a5a6a82a37c7eec211b86954671249cd304ac5a2466896e13f49f3649f9ebb40e02578396da8fe89e247ef351809aef21b3db6a505fad099ec1f7e85617843b34691c97150044e17a26bb4594204be415abe5db9bcbb561b6ca8bfe998b42222c4f769c4efcdbe917122485c28bcf286b7ebb55521532a1a812387a302dee83e3bc96f157d30ea6a7be3"}, 0xbf, 0x0) msgrcv(0xffffffffffffffff, &(0x7f00000000c0)={0x0, ""/92}, 0x64, 0x2, 0x800) msgrcv(0xffffffffffffffff, &(0x7f0000000140)={0x0, ""/90}, 0x62, 0x1, 0x1000) r0 = msgget(0x0, 0x210) msgsnd(r0, &(0x7f00000001c0)={0x1, "2a11def478a5c87e720a4e84fb5e2c93179da6f75ab8ce3a1806ce4bba9d38ecc72ddec8137d9d47a36bc069b99935c6389552bbb40a543a33dfeda669f156e139f46d2e669048791cfb4c3ca8995be8a98297a0c96789f5eefb4941d9410d7bab61ba2f1f5e9fb0ab40c790117973390a812fd704159ca88afd4f2fda"}, 0x85, 0x800) r1 = msgget$private(0x0, 0x18) msgrcv(r1, &(0x7f0000000280)={0x0, ""/161}, 0xa9, 0x3, 0x2800) r2 = msgget(0x2, 0x100) msgrcv(r2, &(0x7f0000000340)={0x0, ""/204}, 0xd4, 0x0, 0xa2f74bb6b87de34) msgctl$IPC_INFO(0x0, 0x3, &(0x7f0000000440)=""/159) msgsnd(r2, &(0x7f0000000500)={0x2, "257b042952304b6bc8b17648282873e90c242e447ed8f60e86a19014685efbaa3d6d27798d8869de69f3876b3a22d465469e1696ad5aed46fdea1ec32f99499cada8f0a1778e5246e25c51d6d815e0c31b20b5136e150030cb234fea0d58d0721a094b0b8a4c11d7547e98f0c196cd51aa9c2978f45277061ad367c90dc8b701058f63bc5668de5c0eddad8e4aff51eb3038826857337a8216122bf4f2d52cb3bb5ea3f5d7055e24a10b9dfcb6a781d28dc67a117b6b9e10d300f4af00300c14b5e2240f3415b4b8ec1aa9"}, 0xd3, 0x0) msgctl$IPC_RMID(0x0, 0x0) msgsnd(r0, &(0x7f0000000600)={0x3, "dc6c2a3f760fa94158f58b0c73276d1a0bd28bcd106ec7a2d67a9c42a1b55bd944e79661475ec06211c0ae177352fdbdab32f0dfa8519e95e33399cfcb2b52d24a5ff7b3945527f8f01c73b0a7657802f482ffa4f7c7c6a323d3f672ca82ce2078174bbe1394578054b84e890aa2a4b25f7a561bb7220cfe6cad684bdb59fd20df41083c437f02587077ee5033c8573e0b83f9444ec93be8327311958a14405bf82024d720e58ea4c0cac282dc03d007d3da1d5a8f54a58aeda5c00ce746f457f0a13c028df9b31868cde0ff460f5f93a8050ce72ee698180e3a048cff219eceda0323aad75347926ba1bd168a25fb0fff24fd5141"}, 0xfd, 0x800) r3 = msgget(0x1, 0x80) msgctl$IPC_STAT(r2, 0x2, &(0x7f0000000700)=""/243) msgrcv(r3, &(0x7f0000000800)={0x0, ""/4096}, 0x1008, 0x0, 0x800) r4 = msgget(0x3, 0x10) msgrcv(r4, &(0x7f0000001840)={0x0, ""/155}, 0xa3, 0x0, 0x3000) msgsnd(0x0, &(0x7f0000001900)={0x0, "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"}, 0x1008, 0x800) msgget$private(0x0, 0x48) 12:02:33 executing program 1: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x13, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000100)={0xffffffffffffffff}) fcntl$setstatus(r0, 0x4, 0x42000) r1 = perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x100000e, 0x13, r1, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r1, 0x40082404, &(0x7f0000000000)=0x6) 12:02:33 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 5) 12:02:33 executing program 5: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan1\x00', 0x0}) r3 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r3, &(0x7f0000000240)=ANY=[@ANYRESHEX=r3], 0x4a0043) r4 = dup(0xffffffffffffffff) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(r4, 0x8936, &(0x7f0000000080)={@local, 0x78, r6}) ioctl$sock_inet6_SIOCDIFADDR(r4, 0x8916, &(0x7f0000000000)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, r6}) r7 = syz_io_uring_setup(0x4ee5, &(0x7f0000000080)={0x0, 0x0, 0x4}, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r7, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r7, 0x8000000) io_uring_enter(r7, 0x58ab, 0x0, 0x0, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r4, 0xc0189374, &(0x7f0000000180)={{0x1, 0x1, 0x18, r7, {0x3}}, './cgroup/cgroup.procs\x00'}) setsockopt$inet_udp_int(r3, 0x11, 0x65, &(0x7f0000000100)=0x7, 0x4) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r3, 0x89f0, &(0x7f0000000040)={'ip_vti0\x00', &(0x7f00000000c0)={'erspan0\x00', 0x0, 0x20, 0x40, 0x5, 0xffffd651, {{0x27, 0x4, 0x2, 0x37, 0x9c, 0x65, 0x0, 0x70, 0x29, 0x0, @local, @local, {[@lsrr={0x83, 0x1f, 0xde, [@multicast2, @dev={0xac, 0x14, 0x14, 0xb}, @local, @private=0xa010100, @local, @empty, @dev={0xac, 0x14, 0x14, 0x18}]}, @timestamp_prespec={0x44, 0x34, 0x27, 0x3, 0x6, [{@dev={0xac, 0x14, 0x14, 0x37}, 0x7}, {@loopback, 0xfffffff9}, {@local, 0x5}, {@loopback, 0x3}, {@multicast2, 0x6}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x1}]}, @generic={0x82, 0x7, "46903c2db0"}, @timestamp={0x44, 0x2c, 0x77, 0x0, 0x6, [0xfffffffa, 0x3, 0x9, 0x40, 0x2, 0x9, 0x1, 0x7fff, 0xfff, 0x9]}]}}}}}) r8 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_SET_INTERFACE(r8, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0300fa5a462198000000000000000339", @ANYRES32=r2, @ANYBLOB="04001780"], 0x20}}, 0x0) socket$nl_generic(0x10, 0x3, 0x10) 12:02:33 executing program 4: r0 = socket$nl_route(0x10, 0x3, 0x0) getsockopt$IP_VS_SO_GET_DAEMON(r0, 0x0, 0x487, &(0x7f0000000180), &(0x7f00000001c0)=0x30) r1 = creat(0x0, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x248e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000100)) r2 = perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x94, 0x0, 0x55, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x10001, 0x0, 0x0, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = epoll_create(0x3) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r6, r7, &(0x7f0000000200)=@IORING_OP_WRITE={0x17, 0x0, 0x2004, @fd=r0, 0x4, &(0x7f0000000300)="1815862433c026430955a1ecec1011aa69540ed9fabdf8eec084351cba8cda4314a2b5b2f6ca5a4171d3465053ebd9fbd334332df12b1d269120d1704cac384971d33e90ccf5849ea02f6c79b869a69d69ad8a826fa943e46f5d2c94e8f159102e09c3ecabe2917e7260b7583b857398ebfa07d8a3a917d54011d653e77043bef4e49254dcf53ff0", 0x88, 0xc}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) r8 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r5, 0x8000000) syz_io_uring_submit(r8, r7, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r9 = mmap$IORING_OFF_SQES(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x1000005, 0x10, 0xffffffffffffffff, 0x10000000) syz_io_uring_submit(r8, r9, &(0x7f00000000c0)=@IORING_OP_ASYNC_CANCEL={0xe, 0x4, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x6) read(r4, &(0x7f0000000080)=""/63, 0x3f) dup2(r3, r2) socket$netlink(0x10, 0x3, 0x0) unshare(0x48020200) 12:02:33 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 1) [ 1002.129797] FAULT_INJECTION: forcing a failure. [ 1002.129797] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1002.131208] CPU: 0 PID: 9671 Comm: syz-executor.3 Not tainted 5.10.199 #1 [ 1002.131960] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1002.132870] Call Trace: [ 1002.133163] dump_stack+0x107/0x167 [ 1002.133568] should_fail.cold+0x5/0xa [ 1002.133981] _copy_from_user+0x2e/0x1b0 [ 1002.134430] __copy_msghdr_from_user+0x91/0x4b0 [ 1002.134929] ? __ia32_sys_shutdown+0x80/0x80 [ 1002.135412] ? perf_trace_lock+0xac/0x490 [ 1002.135865] ? __lock_acquire+0xbb1/0x5b00 [ 1002.136343] sendmsg_copy_msghdr+0xa1/0x160 [ 1002.136808] ? do_recvmmsg+0x6d0/0x6d0 [ 1002.137225] ? perf_trace_lock+0xac/0x490 [ 1002.137670] ? SOFTIRQ_verbose+0x10/0x10 [ 1002.138110] ? __lockdep_reset_lock+0x180/0x180 [ 1002.138602] ? perf_trace_lock+0xac/0x490 [ 1002.138945] FAULT_INJECTION: forcing a failure. [ 1002.138945] name failslab, interval 1, probability 0, space 0, times 0 [ 1002.139057] ? SOFTIRQ_verbose+0x10/0x10 [ 1002.139072] ___sys_sendmsg+0xc6/0x170 [ 1002.139084] ? sendmsg_copy_msghdr+0x160/0x160 [ 1002.139098] ? __fget_files+0x26d/0x4c0 [ 1002.139114] ? lock_downgrade+0x6d0/0x6d0 [ 1002.139132] ? find_held_lock+0x2c/0x110 [ 1002.144076] ? __fget_files+0x296/0x4c0 [ 1002.144532] ? __fget_light+0xea/0x290 [ 1002.144972] __sys_sendmsg+0xe5/0x1b0 [ 1002.145397] ? __sys_sendmsg_sock+0x40/0x40 [ 1002.145877] ? rcu_read_lock_any_held+0x75/0xa0 [ 1002.146406] ? fput_many+0x2f/0x1a0 [ 1002.146818] ? ksys_write+0x1a9/0x260 [ 1002.147250] ? __ia32_sys_read+0xb0/0xb0 [ 1002.147686] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1002.148248] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1002.148813] ? trace_hardirqs_on+0x5b/0x180 [ 1002.149279] do_syscall_64+0x33/0x40 [ 1002.149698] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1002.150251] RIP: 0033:0x7fed842aab19 [ 1002.150650] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1002.152629] RSP: 002b:00007fed81820188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1002.153456] RAX: ffffffffffffffda RBX: 00007fed843bdf60 RCX: 00007fed842aab19 [ 1002.154226] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1002.155001] RBP: 00007fed818201d0 R08: 0000000000000000 R09: 0000000000000000 [ 1002.155774] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1002.156529] R13: 00007ffe3d75192f R14: 00007fed81820300 R15: 0000000000022000 [ 1002.157327] CPU: 1 PID: 9673 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1002.158717] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1002.160416] Call Trace: [ 1002.160950] dump_stack+0x107/0x167 [ 1002.161697] should_fail.cold+0x5/0xa [ 1002.162470] ? create_object.isra.0+0x3a/0xa20 [ 1002.163393] should_failslab+0x5/0x20 [ 1002.164166] kmem_cache_alloc+0x5b/0x310 [ 1002.164997] create_object.isra.0+0x3a/0xa20 [ 1002.165886] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1002.166223] udc-core: couldn't find an available UDC or it's busy [ 1002.166924] __kmalloc_node_track_caller+0x1a6/0x3b0 [ 1002.167630] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 12:02:33 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 6) 12:02:33 executing program 0: r0 = getpgid(0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0xc}, 0x0, 0x80000000000003, 0x7fff}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_usb_connect$cdc_ecm(0x0, 0x4d, &(0x7f0000000280)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x2, 0x6, 0x0, 0x0, {{0x5}, {0x5}, {0xd}}, {[], {{0x9, 0x5, 0x82, 0x2, 0x0, 0x1, 0xcf}}, {{0x9, 0x5, 0x3, 0x2, 0x40, 0xff, 0x1f, 0xff}}}}}]}}]}}, &(0x7f0000000500)={0xa, &(0x7f0000000300)={0xa, 0x6, 0x200, 0x9, 0xff, 0xff, 0xfb, 0x1f}, 0x5, &(0x7f0000000340)={0x5, 0xf, 0x5}, 0x4, [{0x4, &(0x7f0000000380)=@lang_id={0x4, 0x3, 0x41c}}, {0x4, &(0x7f00000003c0)=@lang_id={0x4, 0x3, 0x414}}, {0x0, 0x0}, {0x74, &(0x7f0000000480)=@string={0x74, 0x3, "24e30ed4257387fc21aacb4752929935ada5111952a364b5b09cfbb8c28cd7a0c9f76f8e3dc65694a28bb2af6ae9a613d03d5e67295abc463417c213b6827a171a2513e1fed386e6f5f99060ccde9f1f6236c32db0cd8875456bc01d0d82c9b74305d2f6cc4ec073f4c268a0e37e50a9b1a4"}}]}) [ 1002.168606] ? netlink_sendmsg+0x998/0xdf0 [ 1002.170272] __alloc_skb+0xb1/0x5b0 [ 1002.171014] netlink_sendmsg+0x998/0xdf0 [ 1002.171859] ? netlink_unicast+0x7f0/0x7f0 [ 1002.172735] ? netlink_unicast+0x7f0/0x7f0 [ 1002.173597] __sock_sendmsg+0x154/0x190 [ 1002.174407] ____sys_sendmsg+0x70d/0x870 [ 1002.175244] ? sock_write_iter+0x3d0/0x3d0 [ 1002.176101] ? do_recvmmsg+0x6d0/0x6d0 [ 1002.176886] ? perf_trace_lock+0xac/0x490 [ 1002.177735] ? __lockdep_reset_lock+0x180/0x180 [ 1002.178673] ? perf_trace_lock+0xac/0x490 [ 1002.179541] ? SOFTIRQ_verbose+0x10/0x10 [ 1002.180367] ___sys_sendmsg+0xf3/0x170 [ 1002.181163] ? sendmsg_copy_msghdr+0x160/0x160 [ 1002.182093] ? lock_downgrade+0x6d0/0x6d0 [ 1002.182930] ? find_held_lock+0x2c/0x110 [ 1002.183778] ? __fget_files+0x296/0x4c0 [ 1002.184598] ? __fget_light+0xea/0x290 [ 1002.185390] __sys_sendmsg+0xe5/0x1b0 [ 1002.186157] ? __sys_sendmsg_sock+0x40/0x40 [ 1002.187034] ? rcu_read_lock_any_held+0x75/0xa0 [ 1002.188010] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1002.189065] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1002.190105] ? trace_hardirqs_on+0x5b/0x180 [ 1002.190985] do_syscall_64+0x33/0x40 [ 1002.191759] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1002.192790] RIP: 0033:0x7fb858d1fb19 [ 1002.193548] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1002.197259] RSP: 002b:00007fb856295188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1002.198800] RAX: ffffffffffffffda RBX: 00007fb858e32f60 RCX: 00007fb858d1fb19 [ 1002.200261] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1002.201701] RBP: 00007fb8562951d0 R08: 0000000000000000 R09: 0000000000000000 [ 1002.203150] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1002.204590] R13: 00007ffde2c0b16f R14: 00007fb856295300 R15: 0000000000022000 [ 1002.228576] FAULT_INJECTION: forcing a failure. [ 1002.228576] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1002.229907] CPU: 0 PID: 9680 Comm: syz-executor.3 Not tainted 5.10.199 #1 [ 1002.230665] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1002.231583] Call Trace: [ 1002.231886] dump_stack+0x107/0x167 [ 1002.232294] should_fail.cold+0x5/0xa [ 1002.232715] _copy_from_user+0x2e/0x1b0 [ 1002.233161] iovec_from_user+0x141/0x400 [ 1002.233625] __import_iovec+0x67/0x590 [ 1002.234060] ? __ia32_sys_shutdown+0x80/0x80 [ 1002.234535] ? perf_trace_lock+0xac/0x490 [ 1002.234995] import_iovec+0x83/0xb0 [ 1002.235410] sendmsg_copy_msghdr+0x131/0x160 [ 1002.235900] ? do_recvmmsg+0x6d0/0x6d0 [ 1002.236334] ? perf_trace_lock+0xac/0x490 [ 1002.236777] ? __lockdep_reset_lock+0x180/0x180 [ 1002.237284] ? perf_trace_lock+0xac/0x490 [ 1002.237750] ? SOFTIRQ_verbose+0x10/0x10 [ 1002.238185] ___sys_sendmsg+0xc6/0x170 [ 1002.238199] ? sendmsg_copy_msghdr+0x160/0x160 [ 1002.238211] ? __fget_files+0x26d/0x4c0 [ 1002.238232] ? lock_downgrade+0x6d0/0x6d0 [ 1002.240397] ? find_held_lock+0x2c/0x110 [ 1002.240837] ? __fget_files+0x296/0x4c0 [ 1002.241288] ? __fget_light+0xea/0x290 [ 1002.241724] __sys_sendmsg+0xe5/0x1b0 [ 1002.242136] ? __sys_sendmsg_sock+0x40/0x40 [ 1002.242620] ? rcu_read_lock_any_held+0x75/0xa0 [ 1002.243157] ? fput_many+0x2f/0x1a0 [ 1002.243560] ? ksys_write+0x1a9/0x260 [ 1002.243993] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1002.244576] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1002.245140] ? trace_hardirqs_on+0x5b/0x180 [ 1002.245613] do_syscall_64+0x33/0x40 [ 1002.246025] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1002.246587] RIP: 0033:0x7fed842aab19 [ 1002.246995] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1002.248970] RSP: 002b:00007fed81820188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1002.249806] RAX: ffffffffffffffda RBX: 00007fed843bdf60 RCX: 00007fed842aab19 [ 1002.250589] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1002.251393] RBP: 00007fed818201d0 R08: 0000000000000000 R09: 0000000000000000 [ 1002.252189] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1002.252972] R13: 00007ffe3d75192f R14: 00007fed81820300 R15: 0000000000022000 12:02:33 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 2) 12:02:33 executing program 5: r0 = syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000140)=[{&(0x7f0000010000)="601c6d6b646f736698fa1b00080801000240004000f801", 0x17}, {0x0, 0x0, 0x800}], 0x0, &(0x7f0000000080)={[{@fat=@usefree}]}) renameat2(r0, &(0x7f0000000000)='./file0\x00', r0, &(0x7f0000000040)='./file0\x00', 0x1) quotactl(0x7, &(0x7f00000000c0)='./file0/file0\x00', 0x0, &(0x7f00000001c0)="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") 12:02:33 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 15) [ 1002.290586] FAT-fs (loop5): Directory bread(block 3) failed [ 1002.308196] FAT-fs (loop5): Directory bread(block 3) failed 12:02:33 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 3) [ 1002.340156] FAULT_INJECTION: forcing a failure. [ 1002.340156] name failslab, interval 1, probability 0, space 0, times 0 [ 1002.342486] CPU: 1 PID: 9689 Comm: syz-executor.3 Not tainted 5.10.199 #1 [ 1002.343893] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1002.345565] Call Trace: [ 1002.346118] dump_stack+0x107/0x167 [ 1002.346877] should_fail.cold+0x5/0xa [ 1002.347677] ? __alloc_skb+0x6d/0x5b0 [ 1002.348463] should_failslab+0x5/0x20 [ 1002.349256] kmem_cache_alloc_node+0x55/0x330 [ 1002.350186] __alloc_skb+0x6d/0x5b0 [ 1002.350942] netlink_sendmsg+0x998/0xdf0 [ 1002.351820] ? netlink_unicast+0x7f0/0x7f0 [ 1002.352716] ? netlink_unicast+0x7f0/0x7f0 [ 1002.353582] __sock_sendmsg+0x154/0x190 [ 1002.354391] ____sys_sendmsg+0x70d/0x870 [ 1002.355255] ? sock_write_iter+0x3d0/0x3d0 [ 1002.356121] ? do_recvmmsg+0x6d0/0x6d0 [ 1002.356931] ? perf_trace_lock+0xac/0x490 [ 1002.357788] ? __lockdep_reset_lock+0x180/0x180 [ 1002.358734] ? perf_trace_lock+0xac/0x490 [ 1002.359589] ? SOFTIRQ_verbose+0x10/0x10 [ 1002.360431] ___sys_sendmsg+0xf3/0x170 [ 1002.361233] ? sendmsg_copy_msghdr+0x160/0x160 [ 1002.362170] ? lock_downgrade+0x6d0/0x6d0 [ 1002.363020] ? find_held_lock+0x2c/0x110 [ 1002.363876] ? __fget_files+0x296/0x4c0 [ 1002.364697] ? __fget_light+0xea/0x290 [ 1002.365498] __sys_sendmsg+0xe5/0x1b0 [ 1002.366279] ? __sys_sendmsg_sock+0x40/0x40 [ 1002.367191] ? rcu_read_lock_any_held+0x75/0xa0 [ 1002.368160] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1002.369251] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1002.370295] ? trace_hardirqs_on+0x5b/0x180 [ 1002.371192] do_syscall_64+0x33/0x40 [ 1002.371950] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1002.372998] RIP: 0033:0x7fed842aab19 [ 1002.373758] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1002.377470] RSP: 002b:00007fed81820188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1002.379009] RAX: ffffffffffffffda RBX: 00007fed843bdf60 RCX: 00007fed842aab19 [ 1002.380466] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1002.381916] RBP: 00007fed818201d0 R08: 0000000000000000 R09: 0000000000000000 [ 1002.383396] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1002.384836] R13: 00007ffe3d75192f R14: 00007fed81820300 R15: 0000000000022000 [ 1002.406069] FAULT_INJECTION: forcing a failure. [ 1002.406069] name failslab, interval 1, probability 0, space 0, times 0 [ 1002.408369] CPU: 1 PID: 9692 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 1002.409782] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1002.411474] Call Trace: [ 1002.412012] dump_stack+0x107/0x167 [ 1002.412751] should_fail.cold+0x5/0xa [ 1002.413532] ? create_object.isra.0+0x3a/0xa20 [ 1002.414460] should_failslab+0x5/0x20 [ 1002.415236] kmem_cache_alloc+0x5b/0x310 [ 1002.416072] create_object.isra.0+0x3a/0xa20 [ 1002.416973] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1002.418026] __kmalloc+0x16e/0x390 [ 1002.418750] rfkill_alloc+0xa6/0x2c0 [ 1002.419537] wiphy_new_nm+0x12a3/0x1e00 [ 1002.420357] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1002.421304] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1002.422372] ? __local_bh_enable_ip+0x9d/0x100 [ 1002.423296] ? trace_hardirqs_on+0x5b/0x180 [ 1002.424183] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1002.425179] ? ____sys_sendmsg+0x70d/0x870 [ 1002.426041] ? ___sys_sendmsg+0xf3/0x170 [ 1002.426853] ? __sys_sendmsg+0xe5/0x1b0 [ 1002.427669] ? do_syscall_64+0x33/0x40 [ 1002.428453] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1002.429528] ? __lockdep_reset_lock+0x180/0x180 [ 1002.430471] ? lock_acquire+0x197/0x470 [ 1002.431285] ? create_object.isra.0+0x3ad/0xa20 [ 1002.432237] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1002.433188] ? __kmalloc+0x16e/0x390 [ 1002.433951] hwsim_new_radio_nl+0x991/0x1080 [ 1002.434846] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1002.435929] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1002.437260] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1002.438583] genl_family_rcv_msg_doit+0x22d/0x330 [ 1002.439572] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1002.440912] ? cap_capable+0x1d6/0x240 [ 1002.441719] ? ns_capable+0xe2/0x110 [ 1002.442490] genl_rcv_msg+0x33c/0x5a0 [ 1002.443283] ? genl_get_cmd+0x480/0x480 [ 1002.444088] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1002.445145] ? lock_release+0x680/0x680 [ 1002.445946] ? __lockdep_reset_lock+0x180/0x180 [ 1002.446887] netlink_rcv_skb+0x14b/0x430 [ 1002.447722] ? genl_get_cmd+0x480/0x480 [ 1002.448546] ? netlink_ack+0xab0/0xab0 [ 1002.449353] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1002.450282] ? is_vmalloc_addr+0x7b/0xb0 [ 1002.451124] genl_rcv+0x24/0x40 [ 1002.451789] netlink_unicast+0x549/0x7f0 [ 1002.452619] ? netlink_attachskb+0x870/0x870 [ 1002.453511] ? __virt_addr_valid+0x128/0x350 [ 1002.454423] netlink_sendmsg+0x90f/0xdf0 [ 1002.455285] ? netlink_unicast+0x7f0/0x7f0 [ 1002.456153] ? netlink_unicast+0x7f0/0x7f0 [ 1002.457016] __sock_sendmsg+0x154/0x190 [ 1002.457827] ____sys_sendmsg+0x70d/0x870 [ 1002.458658] ? sock_write_iter+0x3d0/0x3d0 [ 1002.459532] ? do_recvmmsg+0x6d0/0x6d0 [ 1002.460326] ? perf_trace_lock+0xac/0x490 [ 1002.461178] ? __lockdep_reset_lock+0x180/0x180 [ 1002.462123] ? perf_trace_lock+0xac/0x490 [ 1002.462962] ? SOFTIRQ_verbose+0x10/0x10 [ 1002.463801] ___sys_sendmsg+0xf3/0x170 [ 1002.464602] ? sendmsg_copy_msghdr+0x160/0x160 [ 1002.465528] ? lock_downgrade+0x6d0/0x6d0 [ 1002.466374] ? find_held_lock+0x2c/0x110 [ 1002.467242] ? __fget_files+0x296/0x4c0 [ 1002.468073] ? __fget_light+0xea/0x290 [ 1002.468878] __sys_sendmsg+0xe5/0x1b0 [ 1002.469656] ? __sys_sendmsg_sock+0x40/0x40 [ 1002.470522] ? rcu_read_lock_any_held+0x75/0xa0 [ 1002.471506] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1002.472572] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1002.473627] ? trace_hardirqs_on+0x5b/0x180 [ 1002.474506] do_syscall_64+0x33/0x40 [ 1002.475274] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1002.476306] RIP: 0033:0x7f59b4343b19 [ 1002.477058] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1002.480767] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1002.482297] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 1002.483741] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1002.485169] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1002.486599] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1002.488044] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 12:02:33 executing program 1: r0 = syz_open_dev$vcsn(&(0x7f0000000a40), 0x0, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x94, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10088}, 0x0, 0x0, 0xffffffffffffffff, 0x0) move_pages(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) munlock(&(0x7f0000ffc000/0x4000)=nil, 0x4000) syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f00000000c0), &(0x7f0000000100)) fsetxattr$security_ima(r0, &(0x7f0000000140), &(0x7f00000002c0)=ANY=[@ANYBLOB="e6023600410008004b33fec0cefcedcc64456dc3026fc7270300a28ce2d10d69c19cc92a89e0e8006ce92d1ea02d49bcf41c21e99e30bd00ab"], 0x54, 0x1) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000180), 0x180, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) madvise(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xd) write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000a80)={'syz1', "e255fe1b7d6caafa4c312a2c39266f03e7fa9ce01ccbfdfcdca73a5b7b7e8bc7fd68f8a96778134e89798de8e3dd18230d936b673b7390fb7a2e4ba90fd3a74c7d5fa90fabb0d59a8b8493ceffbddc89565b3b8c32cdeb7e78e57581d01183c9c415e941fec6a415c7ae764414ba52b47734e3d8aa919e9af348fbc69a8cb0f4a7a505caf090b0a835894894ce39d0ffcfc5f787966c264ba435d17bc67f8f8a18fe6c2e348373d52fb26631191a4091b958ea95df7b750fef7d2825974b622209a5599282a1029c94603a7b0d85050ce92e5fa12766c6bc46f9fca4a44550082efa060adb23acbf738c2a1f245c4d59f8e3e4fbd472fd15e0843a3767370d67c7abee42506fa7dd09b267660981113dd647e4c7bf5684e3a6fd8bdf458bc824c552ceba3bac18849b0ad6a03d96f999d0e5abd39533ee2ad9387d24953ee102a04bd6a3195b05c3918ee4f8b297cec8596411b51ab088307d52d26225838a1f6de4e4f7f1098d84b5469cad6176dbe0481d7be33570051e9bf0e9a032582d90066d7be1c266a5f347956e1696bee416b99ae34f9069679b0f220e4855ee272e6a65215fc5fa6936ff1f470e5d5d4fcc8db4436e8d284874d9e71565f3c61a027633e4097b1ba61d6d41a3cb02ba56701a1db83073662a2b55feef72b836f4da3424852cf815c3f550c77a75fb70ec9cc7dfad1c32796e27058cfc08060b9d1a1b03aea76715cbaeea928c1fef0afd97d6ea13e41145ba78cb7aef48ae701a545275b96441cff92f2a075dd6ce13264f5db23814403cccfee1ac32868b9b116ca2ffd968a954da112366b5304e71dc4f4e7dba3444f3607da0eb62cc529883b11d587f8e21c4abd461a77f0c899586721a0ac401c2ef06692cefa1172bed3ed84840c7e25b48bf8f9729d8cc7d4b7c3a2371d5b75552612022933e7dea3d0b617562aa8eff6503f21fa3f10e0532777e8aa6f2542cb078e11b74a1181fe12613e276f64135313d0f23502b2a1f457a91365a0c8f9a1ab5996669073e58b2aefd1520e8a8c1230e60b49d92bdac8835c3a02cab1c991e61682a224241f48bfb059b330de2a0a64e9dda6cbd1623479c567305988e22dc25bb2c13b7236a512c063d307d968514e14fd906f5fdcdb47c0383b117e0cb078c3f2927ac011c1f1b544963bd1338ecfc408b0ccc57e3d8f50a4f86faaedaa66abb955e9e1d685bd8a3fa3dc00aa3ebd1693007516b4d63d55af8021f3fe4a6a851d2ec87c49851b94cc4e8c400aedb74a1740290dfad25860ebdf4145c16497398c7144e6e0a5f4d1c86fa14ee135b16f3af068bf015b80665c68618c53e87968045f20516929051e5636f9de35eb9352e28b721038ffbc16f315e592cb23b50d9000cf05e834cd580ffb23bcef6400dfd2fd47f9efc3cc96898f96f781228be1e82c3e6e8abd3b7a029c28b7116025460877230a09e445788badfa19b0ae81a2884f0d1b0dc3d49128a580f14a9c9fa93fccfdfbaddc1c24723f661f0fcb03f374dc878ae33c28eb12708de0ff68ffcdd06a49ca87208bce234f780f08ca61301cd8715d26280f3100dfe2d61c4a655544d227d8d2765f3af8e0e21d24f5e649ce31f4f00db68b828d0b266600fddd6d3592fc355d8bea016fefdfd053d7bda564da7881c7bbf91290d975dbeb1f15a96fe7d459cdfe7af9c9a402e59e273d8b6de11d2dd89996a23bd46143a89e95cf728c4fe8eab19026cef277160d36423611ecacf4df0cdd40aaff841b57471cae702d9d86ea9ff87f9f2d56a912157602f906e5169dc089d3ecb43876fde151adec174d2ec1a235142461b16b8218fe470d5298b5082c5573afeb021d6cd48f83d78b01af0f656cf7f6c96e8aa2e5f6360fc040e376c8cbfd8670b9e22140a10f4d4df85243769862eddd325772e57f727ff49e591336d0e571542da2096db43ee6d8a9d3819ffd76716a68c4f3eea6181680545e8df536c31e00ca4a6e631ad3da3d91d1db4586c3bdae79232689c1d00fa0631df75f313e97abc1035f139bb65621afe6cf570cae0af074637641bacf0f59d9aaef8b88ba9da5a4bd145b3dc09be2f7c20415ff36226dc85f9e1323b2ee4af8897df6565c754b4281f3c47059763aea97d7277dc92ffc45557fee80991fc5047e3cef71b0ef307c37dec384a0f361b5f6722e26d64c5e308c5f674965fd0c78a647c6c08b5b1e4ff747256bd0c27f72c1a4b4334899858ddd3121d21f949680e9e3dccd6cf32a865deeb3b5c92347ca30a7336f458d1d784b14ad32993b7bbc731f8ee09b0f069453b7a82b87f9a2fea84d58bf6c837b7dde408b103c8de3e3b7a75631162bf26bb3618387d5e5147bf23aaa19a902741fda0572568fb051b8750e042099444b8f789c2657924a496aea3e831d648e1faad9ddb053b89ed77ed61ece880d8dedc690bdeba70f912732bc113eb6719b8fb2c9b2fa950c0280d2f5889f987c3158d3d95d6b705955ea70460567f7c64c452b9659a169d533eeccb243d04a0ea2a5c820649597e080e42ed27ca7d94b54f2160a6f0c5ee292109f9e8008c062aaada1d92ae536cbe24cf55367d7ed8f7dc2244d3d895b7dbd6f7441de8204ee481da0d5245dc0424d222d7b89dc5c5c8a49c3986354b6bed0086e67f131175bf9c584662c665b1eb078aa7e2544a3050cc062266cb5ef28da8257f6c492dc5f579588eab2d01ef7b79f92f31d045e27ef9a7d0e9957c987a635f7e2caf6979029cc66311ab67193ddb8b40beb96671e768693025e0b98c796d8928e111f689ec8abb1b43781ff3a8138bb00760c44f977e6b2ca7f53f3cd8ff585b0a15801d47265ca212ccdde6f399452be4b0f53562aba7bfa531f4b7ff9b90877a546969f620d587ab9e567bff6d3d58c09407e450f17194e722f54a74a6a8f0e5df56276e109af3a559cdcead589e2a3a47f3ef2c072fd3fec5ea82506dac66359ce2452dab0541811ade2d1b8a8074b795c4b34da9d6320c3a4f6e01741a05a5b0b9d4b8cf681926bf805ba10860ed086280753aa2a41d3dd75dc581b292ee234e5cffe234cc7b94bd896a1a84d540cbb07eb65e4d562ba0c84efa38e488976dfda71415265e85bc25f20eccf6066af262a4c14bd92077aee5d4fad1f9a3bc38adc3176151ada5aaa8993927a9580dfe6c08bec0a368a024f57ce7d1e74e05266a72270fbd39a245e0739d8e20be7b05acb010448923fdf93835d8ec0f21960b26ba8a7a1ba230810aab185c9649336fab2ab24bf1cd7362b0dadf68775a9f45a915dfc32d5b7c72a292ef5ce7d16a03d14770df6a3d35224faa8df7ba88f6b334cfb704b944c4aab6ca7fe0f8720dbcb518460a7f646adc97b7316b0756a4b1bb36aedda92bdd7b65b9587c436141d023446e23da300e09ecaea97caa0248ee9568ab1f15c037cc90431be95108c86ba22653dc05799f532a74654111c9f228ecfe6338385aa8717ccd72cd5bbb403433c370b8b160e5bb0790df0f53dd857d03d7635da320833e1396c0015ba0851182de13e368731371089b27e24d29c4572b31fd38183114cd25e4f761cb1780d66b4cf020b78e2337c178ed00ed9fea2b6f25b2ac0bed34a8615273b3774fe0507298a2f2e44bc8113b972585e5bf2a456634163d060c11ec81a482f2f32762ff0af9ad5e2f590371b1de6beeb543dc7f83ee8f963b0d4f0200369e273de56ca7a96a3162ac79eaf69e6eca1a717fec61261e0e67e0060f093213b79fa9601739b9a086a04e3e13ff70af2dfe25334720274ab27fbecdd667d7ba5b021bd53c90e18494b24fe9bffcb612938996b73d644de853fee147fab932578fefc1868087ec9f4c0c0f6a66e2c1ebcee7e76161f1ed077c4020ca87a43c6332e86f40e5e7fe79120602c15d5a9bd91872934ac4d36e81c048afe308d0fa73b6acb78df575d6e2904a8e44d2dc1c1f1ddbe962857e7d7f61177f3d4a482ad045e40758914dcf30708ccc829b197d5b236c5734878d1389f9f39f8af671aa75bfcedef3bd974d25f4baa5a730066869766a41f94dcc7131086a98d19fe3e44f6d8bac30488830943318b938078837d822ad49d4f1936233e44c04dcfbf4a1b6ca6063a5ef978cd86a00355368c0e3117c2ffa48a5c04f9963b3fbcbb0b592600c14d09037186797291cbcf3f0261264b2158b1188705f99894ef7149475c736f38bfca374f27c94f3d3634b23927164c3974666383cbd9a7cf638ede6cc9c19671149293284355c2a56712ed47352e6e0ddeab82e7a50a99928c73a8eee9db7c2697a5cb567fac15dc6c24f3732455fb5c875aab5e174391ac9a537b54fa98fec78972a97b841ee38137764f952d90ae098c18cd69524338e14ad4fc0afb03d5d7f0ddc460a6b276c6267b3fbff0cd1580cf8a34ae8c94a5d0cecba7555ea60ca4182c2cfb8196252c0f9bc09615cd2505b2a975bb8ade2403e05eee168daab8c9afd2924632b0426c898cdee378cc63cb01f8eea56cca315710c463fea6466046f565c48afbafcf8930cff3c6194fe4ec158ac0fbb07f72d642a0cf5f05cb08cf0fbf7b932da91fb35c7e10a32e49150640be8059a118bfbd3d9725555a528036cf75d9ff1dc443acb344bec567cc9188d44904a59cee7dce9244796ac2dade9fbb2264810ffe55ce8118637450031405921b8c003504ec03f0dbd096a8ad54f764ef632a280c0462a340c1a763a7776d4d9f81b84bfbe2f58defe0835b60bf24fd9a774d40f373991d50aaa5c88c9b0f0c9d1b0b48b2c6f1c467084f572c27d0f99ed1820cb5995ec50be969175073cb3a307404d387b79d1fd44043431a2b657b3bce42ae81e6f0cc0a0085fc4fe17e4ce84b638ec25f7c6538e3e99ac4b951aa3dd25387bc05dbb183d4da753dbd14569a428b9e1c3679064ace221b10189fbf2a1343f4f3a0fe79d31942dc97f5ed5c4ec8b1b66bfde0012c2d6ace9aff2b409fa8091737b8c3126423339672158feb59d1eee8a40f73696e4007fb689dee91d7ca9b2f0f70498dc156da910e0c3740d3b97a7a9883353fda5fcfe7bf4bc3cfd95ab3d984321248b314f7ace4d6d95dc8632f03cfcb67f171ad9b690a188c0fd0b7d50e1ea15a087b3715b1c96e8dd080822c57ea85f01cb64f947134b322b4d7f39ab76e9f2316c7ea2ca55278bf3ba4fce8c5ae5223b23060d3f206280d3de3abf823b708ef135f697de3e113b78e38952095d77331c5c8150b89d217e24c0148e215f59875f7a4e8d4b6b04588dbdeec5ee83d9cd4a758d9238071e1c5307385d411b3483604d6e0d3ff4015cb4924d59e2228f7814d57f996fd856195bfee94fb6208c8876cd00f96273265f1243f4504d3589ec9877662c979f6b91ae5afd4dd8ea83d30435d346957d054a36952d37b1a91e5c2fa4d206ca599dd0bf6cc76d7239a5bdfa3408d8e190cb59c8250230bcc99316fb97e086f5a3d1b964f37b780f3477c8ebca04715580a92fcd5147644b38bed339e81e5f9f0906929a04501921aada90708702a9fa7954a554e30e8289f93728ffef75e82c9fa49ed9eaecf14e4da11056473e7d47b7973759ccf9bf7e406bc96cef3e2c4de93161151f585e61409708092706ded9814d1248f671c91a4dce76cecfff44000ee914f27ad60f904818c51e080c1f084043d1c05a488596bd950580a552a23ee1aa58107177784201929c39b5dedf5d6df03ae8e0b5213cdc1853db050b9aa6ae084002ef682ccc0d934405d5c50d807271b1fa5383b72f9b511438"}, 0x1004) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0xb) r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2) 12:02:33 executing program 5: ioctl$BTRFS_IOC_SCRUB_CANCEL(0xffffffffffffffff, 0x941c, 0x0) ioctl$RTC_UIE_ON(0xffffffffffffffff, 0x7003) openat$ptp0(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x2, 0x0, 0x0, 0xfffffffc, 0xfffd}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f00000001c0)="201900d07642da921fd6ff11430c6c6b8c0ac5060048065e24ecf3bb8ce311427ac446646b66cda5c391a00fbccd665cde721d7307fdcb6b969016edfcfc7632c1f3819bab23a38c40d2318820e65ef0262cc5dd8b5bc96f21bc84022b67785d6741984f29f705f842bd5a0870925cdb5d80eb689f80ea6ff07d3876a48c6519dad01907103c1df3928cb15b27437eb6e994a4bed70de633978e40", 0x9b, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000180)=ANY=[]) pkey_mprotect(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) r0 = syz_open_dev$hiddev(&(0x7f0000000140), 0x95a, 0x18200) lseek(r0, 0x7, 0x3) 12:02:34 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 7) [ 1002.515189] FAULT_INJECTION: forcing a failure. [ 1002.515189] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1002.517690] CPU: 1 PID: 9700 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1002.519083] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1002.520770] Call Trace: [ 1002.521316] dump_stack+0x107/0x167 [ 1002.522055] should_fail.cold+0x5/0xa [ 1002.522828] _copy_from_iter_full+0x201/0xa60 [ 1002.523755] ? __virt_addr_valid+0x128/0x350 [ 1002.524679] ? __check_object_size+0x319/0x440 [ 1002.525609] netlink_sendmsg+0x879/0xdf0 [ 1002.526443] ? netlink_unicast+0x7f0/0x7f0 [ 1002.527352] ? netlink_unicast+0x7f0/0x7f0 [ 1002.528229] __sock_sendmsg+0x154/0x190 [ 1002.529056] ____sys_sendmsg+0x70d/0x870 [ 1002.529902] ? sock_write_iter+0x3d0/0x3d0 [ 1002.530778] ? do_recvmmsg+0x6d0/0x6d0 [ 1002.531593] ? perf_trace_lock+0xac/0x490 [ 1002.532462] ? __lockdep_reset_lock+0x180/0x180 [ 1002.533414] ? perf_trace_lock+0xac/0x490 [ 1002.534250] ? SOFTIRQ_verbose+0x10/0x10 [ 1002.535088] ___sys_sendmsg+0xf3/0x170 [ 1002.535885] EXT4-fs error (device loop5): ext4_orphan_get:1417: comm syz-executor.5: bad orphan inode 301979167 [ 1002.535903] ? sendmsg_copy_msghdr+0x160/0x160 [ 1002.535933] ? lock_downgrade+0x6d0/0x6d0 [ 1002.537893] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue [ 1002.537977] ? find_held_lock+0x2c/0x110 [ 1002.538009] ? __fget_files+0x296/0x4c0 [ 1002.541674] ? __fget_light+0xea/0x290 [ 1002.542468] __sys_sendmsg+0xe5/0x1b0 [ 1002.543291] ? __sys_sendmsg_sock+0x40/0x40 [ 1002.544148] ? rcu_read_lock_any_held+0x75/0xa0 [ 1002.545125] do_syscall_64+0x33/0x40 [ 1002.545869] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1002.546901] RIP: 0033:0x7fb858d1fb19 [ 1002.547662] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1002.551366] RSP: 002b:00007fb856295188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1002.552918] RAX: ffffffffffffffda RBX: 00007fb858e32f60 RCX: 00007fb858d1fb19 [ 1002.554353] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1002.555797] RBP: 00007fb8562951d0 R08: 0000000000000000 R09: 0000000000000000 [ 1002.557216] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1002.558643] R13: 00007ffde2c0b16f R14: 00007fb856295300 R15: 0000000000022000 12:02:34 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 4) 12:02:34 executing program 6: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$selinux_attr(0xffffffffffffffff, &(0x7f00000000c0)='system_u:object_r:hald_keymap_exec_t:s0\x00', 0x28) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001580)=ANY=[@ANYBLOB], 0x14}}, 0x0) openat(r0, &(0x7f0000000500)='./file0\x00', 0x2, 0x8) io_setup(0x3, &(0x7f0000000180)=0x0) r3 = syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r3, 0x8000000) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) io_submit(r2, 0x2, &(0x7f00000004c0)=[&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x6, 0x8, r3, &(0x7f00000002c0)="486a17bf0e4cb13ac034cd74b15a16b6450e4efff3ba4405ebc00fddd03b3b87588bfa775a80856241b909b714f1132aeaff7926c133a115289852450581a64de1e273f20ed2a11f7d12395a9079892ff69cd1ba1dd5ee9e47fe1f99d44fb06329b407ac3041cf7eeffe7cd585039151d920d220a0694d21d8affd03d5070fa31772b5384a3279bb47128efc805246f9ce862daf6f3022a666708f67a83ecd3196b29f2629ba881c877fca4445d1d5de36716839df9b05e0d3f63276", 0xbc, 0x1, 0x0, 0x6, r0}, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x2, 0x7b6, r1, &(0x7f00000003c0)="b80ebcc62eeba1d5f4f503a6f7d9ec775240289753d4553e971d1ebc8f20f067d0622ba074313e5bf588d792434467209cbe3c6ec11684d0eedd82a03f78308b5fe0", 0x42, 0x1, 0x0, 0x3, r0}]) ioctl$LOOP_SET_STATUS(0xffffffffffffffff, 0x4c02, 0x0) signalfd4(0xffffffffffffffff, &(0x7f0000000380), 0x8, 0x800) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000140)={[{@delalloc}]}) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200), 0x3) 12:02:34 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000240)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470000000f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f00000000c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x9, 0x0, 0x0, 0x5e, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000040)}, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendfile(r0, r2, 0x0, 0x80000001) 12:02:34 executing program 1: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000240)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470000000f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f00000000c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) write$binfmt_aout(r0, &(0x7f0000000b00)=ANY=[], 0x742) syz_open_dev$vcsn(0x0, 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x0, 0x98) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000ac0), 0x4}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_elf64(r1, &(0x7f0000000b00)={{0x7f, 0x45, 0x4c, 0x46, 0x1, 0x0, 0x4, 0x6, 0xc6, 0x2, 0x6, 0x401, 0x306, 0x40, 0x1bc, 0x3, 0x9, 0x38, 0x2, 0x6, 0xff, 0xb0}, [{0x2, 0x2, 0x7, 0x1fb22978, 0x2, 0x6dd, 0xffffffffffffffbc, 0x3}, {0x6, 0x80, 0x7, 0x512, 0xb8c, 0x7, 0x7}], "45b21178eb04a89603d5211600d82fa13944359dbc795247a2a1675062fc0d76f09ed544d93b7902b6ec80f9f19f5651424c33a7a975c7071b2eb5c3c47bf942f0b9fdb305f1537a014a4f3f0edf5277a9cff29af4ada7ae98e622982c117febb2e57805a48ce5ff585095f6a7a3927a526028625227671cbc18639bb6ad3c41b77cc4191b1c6b898d4911baf9a769be95efa258174670387060061c2d26717ebabfffecef0f71bee4c5843477f2cdf7166be2a584f4c7dea72d603f595151446ce97407f51836f59ee9bb8e", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0xb7c) chmod(&(0x7f0000000000)='./file0\x00', 0x4) sendfile(r0, r1, 0x0, 0x80000001) [ 1002.690848] udc-core: couldn't find an available UDC or it's busy [ 1002.692656] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 [ 1002.739617] FAULT_INJECTION: forcing a failure. [ 1002.739617] name failslab, interval 1, probability 0, space 0, times 0 [ 1002.741929] CPU: 1 PID: 9714 Comm: syz-executor.3 Not tainted 5.10.199 #1 [ 1002.743311] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1002.744981] Call Trace: [ 1002.745518] dump_stack+0x107/0x167 [ 1002.746254] should_fail.cold+0x5/0xa [ 1002.747010] ? create_object.isra.0+0x3a/0xa20 [ 1002.747948] should_failslab+0x5/0x20 [ 1002.748721] kmem_cache_alloc+0x5b/0x310 [ 1002.749546] create_object.isra.0+0x3a/0xa20 [ 1002.750427] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1002.751471] kmem_cache_alloc_node+0x169/0x330 [ 1002.752405] __alloc_skb+0x6d/0x5b0 [ 1002.753144] netlink_sendmsg+0x998/0xdf0 [ 1002.753976] ? netlink_unicast+0x7f0/0x7f0 [ 1002.754844] ? netlink_unicast+0x7f0/0x7f0 [ 1002.755699] __sock_sendmsg+0x154/0x190 [ 1002.756508] ____sys_sendmsg+0x70d/0x870 [ 1002.757320] ? sock_write_iter+0x3d0/0x3d0 [ 1002.758167] ? do_recvmmsg+0x6d0/0x6d0 [ 1002.758957] ? perf_trace_lock+0xac/0x490 [ 1002.759801] ? __lockdep_reset_lock+0x180/0x180 [ 1002.760735] ? perf_trace_lock+0xac/0x490 [ 1002.760919] EXT4-fs (loop6): mounted filesystem without journal. Opts: delalloc,,errors=continue [ 1002.761562] ? SOFTIRQ_verbose+0x10/0x10 [ 1002.761588] ___sys_sendmsg+0xf3/0x170 [ 1002.761610] ? sendmsg_copy_msghdr+0x160/0x160 [ 1002.761638] ? lock_downgrade+0x6d0/0x6d0 [ 1002.765943] ? find_held_lock+0x2c/0x110 [ 1002.766762] ? __fget_files+0x296/0x4c0 [ 1002.767583] ? __fget_light+0xea/0x290 [ 1002.768373] __sys_sendmsg+0xe5/0x1b0 [ 1002.769144] ? __sys_sendmsg_sock+0x40/0x40 [ 1002.770015] ? rcu_read_lock_any_held+0x75/0xa0 [ 1002.770965] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1002.772024] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1002.773055] ? trace_hardirqs_on+0x5b/0x180 [ 1002.773925] do_syscall_64+0x33/0x40 [ 1002.774676] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1002.775714] RIP: 0033:0x7fed842aab19 [ 1002.776466] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1002.780123] RSP: 002b:00007fed81820188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1002.781652] RAX: ffffffffffffffda RBX: 00007fed843bdf60 RCX: 00007fed842aab19 [ 1002.783072] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1002.784511] RBP: 00007fed818201d0 R08: 0000000000000000 R09: 0000000000000000 [ 1002.785959] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1002.787370] R13: 00007ffe3d75192f R14: 00007fed81820300 R15: 0000000000022000 12:02:34 executing program 4: r0 = openat2(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)={0x2, 0x4, 0x9}, 0x18) truncate(&(0x7f0000000100)='./file0\x00', 0x5) r1 = openat(r0, &(0x7f0000000080)='./file0\x00', 0x0, 0x22) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r3, &(0x7f0000000240)=ANY=[@ANYRESHEX=r3], 0x4a0043) setsockopt$inet_udp_int(r3, 0x11, 0x65, &(0x7f0000000100)=0x7, 0x4) openat(r3, &(0x7f0000000140)='./file0\x00', 0x143000, 0x12) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @local, 0x5}, 0x1c) sendfile(r2, r1, 0x0, 0x9bbb) 12:02:34 executing program 0: alarm(0x10000) alarm(0x6f80798a) alarm(0x7) 12:02:34 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 8) 12:02:34 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000200)={@in6={{0xa, 0x4e24, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}, 0x0, 0x0, 0x4b, 0x0, "a1434d16d913534f654ed1777e0a7fa37760b9e3107318c497350ee047a9f8490f847220e51cb7466d3400322e1767bc90d79831007ef1d09975e05300cb5d5e673b91f6279a08cc5b4cd61c9a449cc7"}, 0xd8) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) connect$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x4e23, 0x800, @mcast1}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000002ec0), 0x4) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e21, 0x0, @dev={0xfe, 0x80, '\x00', 0x16}, 0xff}, 0xfffffffffffffd8a) setsockopt$inet6_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000340)={@in6={{0xa, 0x0, 0x0, @loopback}}, 0x0, 0x0, 0x0, 0x0, "15bb6949bc674ed64133723aa6453b9d292123bebbcd37c5097fd53da62c01e266166394afb8d0aca105da30931d140a11973acb9dcc0d8da3a4f6f42444a1948f422c8d8d2d8bba069588783e32b713"}, 0xd8) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000440), 0x2}, 0x0, 0x9, 0x5, 0x4, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x18) recvfrom$inet6(r0, &(0x7f0000001e00)=""/4096, 0x1000, 0xcd08, 0x0, 0x0) syz_io_uring_setup(0x7399, 0x0, &(0x7f0000ff6000/0xa000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x4000001) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) write$binfmt_elf64(r1, &(0x7f0000000700)=ANY=[@ANYBLOB="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"/1961], 0x7a9) ioctl$BTRFS_IOC_QUOTA_RESCAN_WAIT(r0, 0x942e, 0x0) setsockopt$inet6_udp_encap(0xffffffffffffffff, 0x11, 0xb, &(0x7f0000000600)=0x5, 0x4) recvfrom$inet6(0xffffffffffffffff, &(0x7f0000000140)=""/75, 0x4b, 0x60, &(0x7f0000000300)={0xa, 0x4e20, 0xfffffffa, @private1, 0x59e}, 0x1c) 12:02:34 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ftruncate(r0, 0x1000003) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0xc02, 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) r3 = open_tree(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x80000) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r0, 0xc0189372, &(0x7f00000001c0)={{0x1, 0x1, 0x18, r3, {0x7}}, './file0\x00'}) setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x5, &(0x7f0000000080)=0x1088, 0x4) sendmmsg$inet6(r2, &(0x7f0000004540)=[{{&(0x7f0000000000)={0x2, 0x4e23, 0x0, @private0}, 0x1c, 0x0}}], 0x1, 0x0) ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000140)={0x2, 0x7, 0x4, 0x52f, 0x8001}) write$binfmt_elf64(r1, &(0x7f0000000a00)=ANY=[], 0x98a) ioctl$F2FS_IOC_DEFRAGMENT(r0, 0xc010f508, &(0x7f0000000180)={0x3, 0x5}) setsockopt$packet_fanout(r4, 0x107, 0x12, &(0x7f0000000200)={0x0, 0x6}, 0x4) readv(r1, &(0x7f0000000100)=[{&(0x7f0000001340)=""/4096, 0x1000}], 0x1) r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0xc02, 0x0) readv(r5, &(0x7f0000000100)=[{&(0x7f0000001340)=""/4096, 0x1000}], 0x1) acct(&(0x7f0000000040)='./file0\x00') unshare(0x48020200) syz_open_dev$sg(&(0x7f0000000080), 0x400, 0x0) 12:02:34 executing program 0: r0 = memfd_create(&(0x7f0000000000)='\x00', 0x0) pwritev2(r0, &(0x7f0000000040)=[{&(0x7f0000000080)='d', 0x1}], 0x1, 0x88000, 0x2, 0x0) r1 = socket$netlink(0x10, 0x3, 0x4) r2 = syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) ioctl$F2FS_IOC_GET_FEATURES(r1, 0x8004f50c, &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r2, 0x8000000) io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0) mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x4, 0x810, r2, 0x8e928000) copy_file_range(r0, 0x0, r0, &(0x7f0000000100)=0x1d600, 0x10000, 0x0) fstatfs(r1, &(0x7f0000000180)) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x2010, r0, 0x545b8000) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x1000008, 0x110, r2, 0x0) [ 1002.955960] FAULT_INJECTION: forcing a failure. [ 1002.955960] name failslab, interval 1, probability 0, space 0, times 0 [ 1002.958412] CPU: 1 PID: 9728 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1002.959820] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1002.961504] Call Trace: [ 1002.962038] dump_stack+0x107/0x167 [ 1002.962764] should_fail.cold+0x5/0xa [ 1002.963540] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xdb/0x280 [ 1002.964850] should_failslab+0x5/0x20 [ 1002.965593] __kmalloc+0x72/0x390 [ 1002.966298] genl_family_rcv_msg_attrs_parse.constprop.0+0xdb/0x280 [ 1002.967578] genl_family_rcv_msg_doit+0xda/0x330 [ 1002.968523] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1002.969824] ? cap_capable+0x1d6/0x240 [ 1002.970605] ? security_capable+0x95/0xc0 [ 1002.971471] ? ns_capable+0xe2/0x110 [ 1002.972211] genl_rcv_msg+0x33c/0x5a0 [ 1002.972988] ? genl_get_cmd+0x480/0x480 [ 1002.973791] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1002.974789] ? lock_release+0x680/0x680 [ 1002.975598] ? __lockdep_reset_lock+0x180/0x180 [ 1002.976541] netlink_rcv_skb+0x14b/0x430 [ 1002.977397] ? genl_get_cmd+0x480/0x480 [ 1002.978196] ? netlink_ack+0xab0/0xab0 [ 1002.978993] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1002.979897] ? is_vmalloc_addr+0x7b/0xb0 [ 1002.980708] genl_rcv+0x24/0x40 [ 1002.981358] netlink_unicast+0x549/0x7f0 [ 1002.982173] ? netlink_attachskb+0x870/0x870 [ 1002.983047] ? __virt_addr_valid+0x128/0x350 [ 1002.983957] netlink_sendmsg+0x90f/0xdf0 [ 1002.984778] ? netlink_unicast+0x7f0/0x7f0 [ 1002.985630] ? netlink_unicast+0x7f0/0x7f0 12:02:34 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 5) [ 1002.986475] __sock_sendmsg+0x154/0x190 [ 1002.987465] ____sys_sendmsg+0x70d/0x870 [ 1002.988292] ? sock_write_iter+0x3d0/0x3d0 [ 1002.989150] ? do_recvmmsg+0x6d0/0x6d0 [ 1002.989934] ? perf_trace_lock+0xac/0x490 [ 1002.990774] ? __lockdep_reset_lock+0x180/0x180 [ 1002.991718] ? perf_trace_lock+0xac/0x490 [ 1002.992557] ? SOFTIRQ_verbose+0x10/0x10 [ 1002.993376] ___sys_sendmsg+0xf3/0x170 [ 1002.994163] ? sendmsg_copy_msghdr+0x160/0x160 [ 1002.995076] ? lock_downgrade+0x6d0/0x6d0 [ 1002.995929] ? find_held_lock+0x2c/0x110 [ 1002.996753] ? __fget_files+0x296/0x4c0 [ 1002.997563] ? __fget_light+0xea/0x290 [ 1002.998354] __sys_sendmsg+0xe5/0x1b0 [ 1002.999138] ? __sys_sendmsg_sock+0x40/0x40 [ 1003.000001] ? rcu_read_lock_any_held+0x75/0xa0 [ 1003.000952] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1003.002009] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1003.003037] ? trace_hardirqs_on+0x5b/0x180 [ 1003.003916] do_syscall_64+0x33/0x40 [ 1003.004669] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1003.005692] RIP: 0033:0x7fb858d1fb19 [ 1003.006453] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1003.008143] FAULT_INJECTION: forcing a failure. [ 1003.008143] name failslab, interval 1, probability 0, space 0, times 0 [ 1003.010141] RSP: 002b:00007fb856295188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1003.010165] RAX: ffffffffffffffda RBX: 00007fb858e32f60 RCX: 00007fb858d1fb19 [ 1003.010177] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1003.010188] RBP: 00007fb8562951d0 R08: 0000000000000000 R09: 0000000000000000 [ 1003.010199] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1003.010211] R13: 00007ffde2c0b16f R14: 00007fb856295300 R15: 0000000000022000 [ 1003.017041] CPU: 0 PID: 9740 Comm: syz-executor.3 Not tainted 5.10.199 #1 [ 1003.017773] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1003.018696] Call Trace: [ 1003.018988] dump_stack+0x107/0x167 [ 1003.019399] should_fail.cold+0x5/0xa [ 1003.019827] should_failslab+0x5/0x20 [ 1003.020254] __kmalloc_node_track_caller+0x74/0x3b0 [ 1003.020784] ? netlink_sendmsg+0x998/0xdf0 [ 1003.021265] __alloc_skb+0xb1/0x5b0 [ 1003.021664] netlink_sendmsg+0x998/0xdf0 [ 1003.022116] ? netlink_unicast+0x7f0/0x7f0 [ 1003.022583] ? netlink_unicast+0x7f0/0x7f0 [ 1003.023048] __sock_sendmsg+0x154/0x190 [ 1003.023498] ____sys_sendmsg+0x70d/0x870 [ 1003.023934] ? sock_write_iter+0x3d0/0x3d0 [ 1003.024389] ? do_recvmmsg+0x6d0/0x6d0 [ 1003.024808] ? perf_trace_lock+0xac/0x490 [ 1003.025275] ? __lockdep_reset_lock+0x180/0x180 [ 1003.025782] ? perf_trace_lock+0xac/0x490 [ 1003.026233] ? SOFTIRQ_verbose+0x10/0x10 [ 1003.026670] ___sys_sendmsg+0xf3/0x170 [ 1003.027132] ? sendmsg_copy_msghdr+0x160/0x160 [ 1003.027657] ? lock_downgrade+0x6d0/0x6d0 [ 1003.028123] ? find_held_lock+0x2c/0x110 [ 1003.028577] ? __fget_files+0x296/0x4c0 [ 1003.029023] ? __fget_light+0xea/0x290 [ 1003.029453] __sys_sendmsg+0xe5/0x1b0 [ 1003.029871] ? __sys_sendmsg_sock+0x40/0x40 [ 1003.030347] ? rcu_read_lock_any_held+0x75/0xa0 [ 1003.030865] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1003.031450] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1003.032015] ? trace_hardirqs_on+0x5b/0x180 [ 1003.032490] do_syscall_64+0x33/0x40 [ 1003.032894] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1003.033457] RIP: 0033:0x7fed842aab19 [ 1003.033858] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1003.035851] RSP: 002b:00007fed81820188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1003.036671] RAX: ffffffffffffffda RBX: 00007fed843bdf60 RCX: 00007fed842aab19 [ 1003.037446] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1003.038238] RBP: 00007fed818201d0 R08: 0000000000000000 R09: 0000000000000000 [ 1003.038998] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1003.039780] R13: 00007ffe3d75192f R14: 00007fed81820300 R15: 0000000000022000 [ 1003.146416] Process accounting resumed [ 1003.198402] Process accounting resumed 12:02:48 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 16) 12:02:48 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ftruncate(r0, 0x1000003) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0xc02, 0x0) write$binfmt_elf64(r1, &(0x7f0000000a00)=ANY=[], 0x98a) readv(r1, &(0x7f0000000100)=[{&(0x7f0000001340)=""/4096, 0x1000}], 0x1) r2 = getpgid(0x0) sched_setattr(0x0, &(0x7f00000001c0)={0x38}, 0x0) perf_event_open(0x0, r2, 0x8, 0xffffffffffffffff, 0xb) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) tkill(r2, 0x1a) openat(0xffffffffffffffff, &(0x7f0000001300)='./file1\x00', 0x200000, 0x183) r3 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) clone3(&(0x7f0000002340)={0x28000, &(0x7f0000000080), &(0x7f00000000c0), &(0x7f0000000140), {0x28}, &(0x7f0000000180)=""/252, 0xfc, &(0x7f00000002c0)=""/4096, &(0x7f00000012c0)=[r2, 0xffffffffffffffff], 0x2, {r3}}, 0x58) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0xc02, 0x0) mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x4, 0x12, r1, 0x729d2000) unshare(0x48020200) [ 1016.676232] pci 0000:00:02.0: vgaarb: changed VGA decodes: olddecodes=io+mem,decodes=io+mem:owns=io+mem [ 1016.679938] FAULT_INJECTION: forcing a failure. [ 1016.679938] name failslab, interval 1, probability 0, space 0, times 0 [ 1016.682452] CPU: 1 PID: 9760 Comm: syz-executor.3 Not tainted 5.10.199 #1 [ 1016.683835] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1016.685486] Call Trace: [ 1016.686021] dump_stack+0x107/0x167 [ 1016.686755] should_fail.cold+0x5/0xa [ 1016.687530] ? create_object.isra.0+0x3a/0xa20 [ 1016.688445] should_failslab+0x5/0x20 [ 1016.689209] kmem_cache_alloc+0x5b/0x310 [ 1016.690025] create_object.isra.0+0x3a/0xa20 12:02:48 executing program 4: ftruncate(0xffffffffffffffff, 0x0) r0 = open(&(0x7f0000000140)='./file1\x00', 0x100, 0x38) statx(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x100, 0x8, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) lstat(&(0x7f00000002c0)='./file1\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r3 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) ioctl$NS_GET_OWNER_UID(r3, 0xb704, 0x0) r4 = fcntl$dupfd(0xffffffffffffffff, 0x0, r3) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, &(0x7f0000000080)={@local, 0x78, r5}) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000000)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, r5}) getsockname$netlink(0xffffffffffffffff, &(0x7f0000000640), &(0x7f0000000680)=0xc) sendfile(r3, 0xffffffffffffffff, 0x0, 0x100000001) getsockopt$inet_IP_XFRM_POLICY(r4, 0x0, 0x11, &(0x7f0000000380)={{{@in, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@multicast1}, 0x0, @in6=@loopback}}, &(0x7f00000004c0)=0xe8) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x2, &(0x7f0000000500)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@dfltgid={'dfltgid', 0x3d, r1}}, {@posixacl}, {@loose}, {@version_u}, {@dfltgid={'dfltgid', 0x3d, r2}}, {@version_9p2000}], [{@fowner_eq={'fowner', 0x3d, r6}}, {@dont_hash}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}, {@measure}, {@smackfshat={'smackfshat', 0x3d, '\',\'A'}}, {@seclabel}, {@pcr={'pcr', 0x3d, 0x33}}, {@defcontext={'defcontext', 0x3d, 'user_u'}}, {@appraise}]}}) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x8, 0x10, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r7 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0xc, 0x0, 0x0, @u32=0xf0}]}, 0x1c}}, 0x0) 12:02:48 executing program 5: r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0) ioctl$F2FS_IOC_GARBAGE_COLLECT_RANGE(r0, 0x4018f50b, &(0x7f0000000040)={0x1, 0x8, 0x2}) write$vga_arbiter(r0, &(0x7f0000000000)=@other={'decodes', ' ', 'io+mem'}, 0xf) r1 = dup2(r0, r0) write$vga_arbiter(r1, &(0x7f0000000100)=@other={'decodes', ' ', 'mem'}, 0xc) pwritev2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rseq(&(0x7f0000000080), 0x20, 0x0, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff) 12:02:48 executing program 0: r0 = perf_event_open(&(0x7f0000001500)={0x1, 0x80, 0x0, 0x0, 0x20, 0x0, 0x0, 0xc36, 0x248e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f0000000080)={@remote}, 0x14) syz_io_uring_setup(0x1e95, &(0x7f00000000c0)={0x0, 0xf148, 0x4, 0x3, 0x266}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000280)=0x0) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) r4 = inotify_add_watch(0xffffffffffffffff, 0x0, 0x2000803) inotify_add_watch(0xffffffffffffffff, 0x0, 0x4000040) r5 = creat(&(0x7f0000000040)='./file0\x00', 0x0) inotify_rm_watch(0xffffffffffffffff, r4) ioctl$BTRFS_IOC_BALANCE_CTL(0xffffffffffffffff, 0x40049421, 0x3) dup3(r5, 0xffffffffffffffff, 0x0) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_TIMEOUT={0xb, 0x4, 0x0, 0x0, 0x8, &(0x7f00000001c0), 0x1, 0x1, 0x1}, 0x80000001) syz_io_uring_submit(r2, 0x0, &(0x7f0000001640)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x4004, @fd, 0x80000001, &(0x7f0000001580)=""/112, 0x70, 0x4, 0x1}, 0x8) r7 = openat$incfs(r0, &(0x7f0000000200)='.log\x00', 0x105200, 0xaa) inotify_rm_watch(r7, r4) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_LINK_TIMEOUT={0xf, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, {0x0, r6}}, 0x0) syz_io_uring_submit(0x0, r3, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x5, 0x0, r5, 0x0, &(0x7f0000001600)={&(0x7f00000002c0)=@in={0x2, 0x0, @multicast1}, 0x80, &(0x7f0000000000)=[{&(0x7f0000000340)=""/4096, 0x1000}, {&(0x7f0000001340)=""/218, 0xda}, {&(0x7f0000001440)=""/150, 0x96}], 0x3}, 0x0, 0x100, 0x0, {0x0, r6}}, 0x7) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140), 0x40001, 0x0) syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) 12:02:48 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 6) 12:02:48 executing program 6: ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000000)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, {0x4}}, './file0\x00'}) setsockopt$inet6_mreq(r0, 0x29, 0x15, &(0x7f0000000080)={@remote}, 0x14) lsetxattr$trusted_overlay_opaque(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), &(0x7f0000000140), 0x2, 0x1) [ 1016.690999] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1016.692111] __kmalloc_node_track_caller+0x1a6/0x3b0 [ 1016.693120] ? netlink_sendmsg+0x998/0xdf0 [ 1016.693150] __alloc_skb+0xb1/0x5b0 [ 1016.694393] netlink_sendmsg+0x998/0xdf0 [ 1016.694419] ? netlink_unicast+0x7f0/0x7f0 [ 1016.694452] ? netlink_unicast+0x7f0/0x7f0 [ 1016.695758] __sock_sendmsg+0x154/0x190 [ 1016.695779] ____sys_sendmsg+0x70d/0x870 sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000001900)=[{{0x0, 0x0, &(0x7f0000001640)=[{&(0x7f0000000180)="0a663dfb9a83037c9e356ee7cb5572e1236f7a41291d2a3ff31d6f3404997aa4357ceffc0e70f526603610db97a3482cb5e019c5470986dd0f100ebbf57a1526eabd326d05391ddb37f872f88dae9d5e7a0166", 0x53}, {&(0x7f0000000200)="8a7d2867640dfad4cb419159269b951f75865ae6dd4cc29d0613a28ca1fad7a01d0b82de70540542a052e0578daf316940ea39e1a8d561fc746db479b31ad9e13fab7a4e1f3e1b7142ad7616670db2803159d97af534ee405a3876309d764e757e6f66239df4a1352e56274227a6b5a48ae0a341cec7e3", 0x77}, {&(0x7f0000000280)="6fa8dec14a072dce544e8d52e7034409c9a31ab9d324d8a46c038fdc0a5fe7e91595d8b9e7b64932ebd6db725c6fabf0c40b03912833ae1a1ec5387b1ecf4c72f5e676a2a44898819a312bce9f677763d8e9863562696fa70e9a9d36413c009fd27735fdb9d59ee0c8362a05de3e9b21182d3359eede5c5a324ea82bdab1093517518e9599a6ae4f1992edfad01ff2e2c59b9e24db8339a002f855428f9a144372", 0xa1}, {&(0x7f0000000340)="7540155d2bb6", 0x6}, {&(0x7f0000000380)="f322f2c8d74ea4013fc2c384fd18a2ff146d4f399c2306983f2c87011cb91164717783190e883fe3472cd5d54cc19c7d628b41538c4945c92f2303451211a83c88bd24a6cff315fb07b3585e15dbfeb180237711355413d46583dc0fee73d3a07fb6267f9be37901d6", 0x69}, {&(0x7f0000000400)="e106d5e08dce2b2f07d8abecb028cd96109ff61670b5771e3ec37687591996c8cfd4f92efe5ea3e5f10460097ada6f959faf27bf92908620958a165fe2363ed11fe798610a09f2c309a0228e3c912d6415c7c6acc318b6dc857e1750b94953c9c687c4bdb6dcce3b07484ed893ab2348a14ce2a85c04149b544d28189c234d848879b94f4300155240ddc74205c32dbe712d5adb093f49c06119c7766a", 0x9d}, {&(0x7f00000004c0)="3b912f12b21fd8d3e29d95ad871cd2d392b90d1d153b580d6c0a2840b51b6380731446bf02d0f28480ad9eb76dc5543d3a59bb7149a41c9b7a28df643fb67dea235ed445439b60b147cacab618133537cf69e14151d304cf9fe5867d144fbdbeb8c3d4d014ec6b9f32b5bd5b408262f4bd202147223b454297158b2c1e0901478b458e3770a92ba8bcb412eb06c980ba65c375", 0x93}, {&(0x7f0000000580)="86e60c97b904935b7db0646693e48934ff2efe56d51d8db18a8d5e71cf9ba513d296dec2734666e0fe30f3f2d12693ad2e4cb43e66cd99ec3429a438e43368a7a1da3f99708186adc9e8811d6ab2f5cefafa12f7f1", 0x55}, {&(0x7f0000000600)="bd7faf561920c7a6d9fed8754031b2acd1c85ba86f97dca911c1f55fd39c", 0x1e}, {&(0x7f0000000640)="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", 0x1000}], 0xa, &(0x7f0000001700)=[@tclass={{0x14, 0x29, 0x43, 0x1}}, @dontfrag={{0x14, 0x29, 0x3e, 0x10000000}}, @tclass={{0x14}}, @hopopts={{0x58, 0x29, 0x36, {0x16, 0x7, '\x00', [@hao={0xc9, 0x10, @ipv4={'\x00', '\xff\xff', @remote}}, @generic={0x20, 0x24, "54edff982d59ae42ba32f89950ed3bfb2b5716c93b1b16216890f45e042d75ebac390346"}, @pad1]}}}, @rthdr={{0x88, 0x29, 0x39, {0x33, 0xe, 0x1, 0x7f, 0x0, [@empty, @private0, @loopback, @mcast2, @private0, @private2={0xfc, 0x2, '\x00', 0x1}, @dev={0xfe, 0x80, '\x00', 0x14}]}}}, @dstopts={{0xd8, 0x29, 0x37, {0x1d, 0x17, '\x00', [@generic={0x0, 0x20, "cbad0a58fad34e2eb25ef436dc8876a2367992ec1b8fae68252b8ce8ec1a5153"}, @generic={0x9, 0x77, "b16f854b0f7468ac9deb5f8b903ae12f80c3d525157dec0d0b174f48a249160b4f3712da207361b55733f08e594e7eec439dfcca050f4c6ecdf2dbeb09b01dd40ad826b402c00ddcca9dbbb8a5cfc001abc7135adf334166069bc4920a1ca3635f65743d928b3e74a320022a6beaffbf74beb2dbcddf74"}, @hao={0xc9, 0x10, @mcast1}, @enc_lim={0x4, 0x1, 0x81}, @pad1, @generic={0x9, 0x9, "f4358a290f2d2e6cd1"}]}}}], 0x200}}], 0x1, 0x4000001) lstat(&(0x7f00000022c0)='./file0\x00', &(0x7f0000002300)={0x0, 0x0, 0x0, 0x0, 0x0}) r2 = syz_mount_image$vfat(&(0x7f0000001940), &(0x7f0000001980)='./file0\x00', 0xb6, 0x3, &(0x7f0000001bc0)=[{&(0x7f00000019c0)="02d0d1f6cf53052effdfbb020e0d89dd2d4821aeec85f0e3b9804f66fbdd7a1cd565e0785134112f4d5626c2f85197d0cdb177e84adb3818562de7c78597401ed58113e4a031d14e4332d784999d47c386ebfc2b0cd30422464b44977c74ae816686860c7f492fbcff2cee22bc656ef2563c6dd68f295f65091c993febc471b9080c8e3254c6793a64d8cafb968e16accea63c7600a756c7d5e10f195bafb981ef8e7712a31cdf13bed0f0bd3fbda1bcbc45704fea62173005204c71ff244ee6644f4e63ae51528211d19948531e1fc45acd928b33abfe6160d28575e478cde6d40414", 0xe3}, {&(0x7f0000001ac0)="4c342fb32840f309", 0x8, 0x1}, {&(0x7f0000001b00)="62d1f4a533a4ff5aa98aa9a73fa4c25998ff4d89ee0078a01a9b3b7095ebbc8c2333a801a63ae38c6f0353a785d6dd1eb5aca77cc5189533f6ce716db0393fa4380260c53e6b2744b19959310f043f121a81117db04170cc2f91fd74616a9a25df6aeb399c13c0899416db0295e954e117fe898590ef2701ac0ad4f5ca77a9d7860373f759754ceea1f8de16ebf3008129e7474943bf440836beec268ba2", 0x9e, 0x7}], 0x2000, &(0x7f0000002380)={[{@shortname_winnt}, {@shortname_lower}, {@iocharset={'iocharset', 0x3d, 'cp864'}}, {@uni_xlate}, {@uni_xlateno}, {@shortname_win95}, {@shortname_mixed}], [{@uid_eq={'uid', 0x3d, r1}}, {@pcr={'pcr', 0x3d, 0x1}}, {@euid_lt}, {@smackfsfloor={'smackfsfloor', 0x3d, '\xff\xff'}}, {@subj_role={'subj_role', 0x3d, '\x00'}}, {@uid_lt={'uid<', 0xffffffffffffffff}}]}) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmmsg$inet6(r3, &(0x7f0000003cc0)=[{{&(0x7f0000002480)={0xa, 0x4e21, 0x14, @dev={0xfe, 0x80, '\x00', 0x3a}, 0x100}, 0x1c, &(0x7f0000002740)=[{&(0x7f00000024c0)="bd1cdbf765875d15ed517599e740351d1aa4499869ea7245c02b89a60f38eea8174a8aeee567e7c215a67fafa63f6c7fba6a8c39a12fc5e8ab77f235cc297e1fb3f86975ceda8c612473c70b9deedf7f3aa36fac16bd696398d6344cb0069f10b2ca72941c1ff8788e99554f149840778db880881a5e34b5cd3f3b54b47c4e96935cc18d2cfb55816939093d3313e98e65", 0x91}, {&(0x7f0000002580)="f94829f9890fb954c80d0721ce6e0baaec6c5f49db775b6203ca5370163b9971309fca3b86acfef859bf5e00adaaf9f3cfad05cf3e8184fdf5df3fae92fafa7426eabcd4aad2ba98e4a8", 0x4a}, {&(0x7f0000002600)="a46eb9c995c9d1d812f9ba32c08a0fc8fedbc3768272f4bc13e18bd765e347c6031356dad2e660503d5bcfbbaf992f696266890fa9b0c53665af702b39a9bd390228f24d893af5b38ac562976c0e66a3df01d7dd9b5730", 0x57}, {&(0x7f0000002680)="531c42401767c38befec3c3c0ec39bf22a9e2c4a3d211603090a93330de634ce225d9bb586cf6e356c56fcb3e14e176bcdbf1759a9438afa21478059c56247035ea007a42120a726094750fdadbd79d3933b7bae6d0549ab0739d2c475b76995b17eb54a2eefd815434668483f73830131dc74105725446b3074a1a3df0f6a0360a4b4b8982b5a6061d622c5d6106d3b1e59fd98d37c", 0x96}], 0x4, &(0x7f0000002780)=[@pktinfo={{0x24, 0x29, 0x32, {@private1={0xfc, 0x1, '\x00', 0x1}}}}, @hopopts={{0x18, 0x29, 0x36, {0x5e}}}, @dstopts_2292={{0xd0, 0x29, 0x4, {0x0, 0x17, '\x00', [@generic={0xb5, 0xb6, "1c6ee7d93ffacada60a384d11df33293dec493f4f09937961b4bc0ae22437c9c27cb3fc8661b8b1c1324b0a4cc72e25b53a38332b6423b94e0a698f8647cb423acc74fdf001e121b40619cc65e1192c590a10fb50743c33652da4fa7a7bd0759fc0d699168a9205e5bcdb56293b8d02a18069e57c842740dd8be7b05aec070f3cd78e0882e436f6ce1f7a99e0d865f8cace0c7380d39a925b0ae9fbdb99b61666ebf79e1c633e8e87e7433a05d3484d25e852c00b0cb"}]}}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0x10001}}, @dstopts_2292={{0x78, 0x29, 0x4, {0x4, 0xb, '\x00', [@calipso={0x7, 0x30, {0x1, 0xa, 0x2, 0x9, [0x8, 0x2, 0x800, 0x7, 0x5f]}}, @padn={0x1, 0x2, [0x0, 0x0]}, @pad1, @jumbo={0xc2, 0x4, 0xe6}, @calipso={0x7, 0x18, {0x2, 0x4, 0x5, 0x9, [0x4, 0x5]}}, @enc_lim={0x4, 0x1, 0xff}]}}}, @dontfrag={{0x14, 0x29, 0x3e, 0x1000}}, @hopopts={{0x140, 0x29, 0x36, {0x32, 0x24, '\x00', [@jumbo={0xc2, 0x4, 0x9}, @pad1, @generic={0x1, 0xd1, "d576969bf12a843bc65ed6ab09584f8dc987c90d6d18fb871a4e8e9ad859837345b3ff703dd152f4da26fccc3801aaa5d795d9e77be19b679400922195fe41d62669bf851d12422ee0860eccf9ef0c51f2d2520b532892bdf6ffd33b56e714146450f5a5557be05e3eae033413ecdf24ee23179bcc03751bfc4417da4dcb07f7bc776978ca0d14d3191db6a1d2cf56e303f207cbdb29b4921af882768fc99125c84c1db81f08a9327b797cc45a1f9d064bed77b52bccbeb7950ce9dffd6b48159975dc4502f479d57a47bbf1efdfbdb8ec"}, @ra={0x5, 0x2, 0x9}, @generic={0x75, 0x3b, "82d36db8ff7af4bf874fdbda048e3e0dab1cb164c14c7a8beeb1f7b2fadc039adcd347dcd5b6e5f70cb07ab9af6d3b47e03ed68822e6179f4197c9"}, @jumbo={0xc2, 0x4, 0x80000001}]}}}, @rthdr={{0x98, 0x29, 0x39, {0x8, 0x10, 0x0, 0x1, 0x0, [@private0, @private0, @private2={0xfc, 0x2, '\x00', 0x1}, @private0={0xfc, 0x0, '\x00', 0x1}, @empty, @local, @private1, @remote]}}}, @pktinfo={{0x24, 0x29, 0x32, {@dev={0xfe, 0x80, '\x00', 0xa}}}}], 0x3b8}}, {{&(0x7f0000002b40)={0xa, 0x4e22, 0xdcc, @empty}, 0x1c, &(0x7f0000003100)=[{&(0x7f0000002b80)="d20a32b7353275ea6c046687260e1cf9a522a46b289ff3b6fd7b3e8a021995c4fd414d4b189f5d70266268a5fd93f8ce3eed380567dd45bb889db706a97c08355526c92862bdf8bcef924d14428a4a90bef64af4b16b4699558827fbd239d25b5bbd2519ac6d244267d4bf30d48fb98e97716e99df90d7b1a1915a8e0933d8a5f5fc3c9894", 0x85}, {&(0x7f0000002c40)="daed43aca0b7fa34005e9e4d2cb9bd1199ca241205b2fda8570bd783761b2124ea6f922de5bf7aefc26eedf74c93a894c5c5cc7396b9c787efaed42d538c18c98df3bf8a173509e92729d2bff52c219eb416bf532c757653e3ee3991851be1717dc5b72da97c37815516d64a7419764b47a1a517d507c3653f07ed3bdc", 0x7d}, {&(0x7f0000002cc0)="b566c3caaf78113fa2e54c6197bc4142e45b10b77af860274dcdb5616128722e0de59052ee520e3a1a7922ac8ac7a2918312428c9420aa949b42635302acf41f0854a4aec321e581ff623b9d427f739a8fbee830183491166be7abdc0faaedbc291e194cc41f568b7b6466589525eae89d", 0x71}, {&(0x7f0000002d40)="7cc2066fb9642f262fec79b7af0cd970287e0f1da8ea761112dcc6296cbaabfb98ab49f0cf292ef4ebf55d0ebc0fda3c4d87866b605686cb42fd6afdfeeefdd03b90db2c5384ba67833b459f47c0a1cf0e728c0f63c464b9245f3d92823c60fad1f874df714a0fe95e36c4ea02b0de0a138f6eab16b747093873b57b5dc859bb580b9e1ecbd2e2f319afe2f6e89d9681518b622f41ac82c0398c8538426da8813dfdae108d26131bab8a67ffb2a9bdff63c06f3665573882b438cdde63c749598aff6a53bf", 0xc5}, {&(0x7f0000002e40)="260ad7418cf510b47613e4d1e56f8a9ba552cb5ca1", 0x15}, {&(0x7f0000002e80)="007ca7b88b321970d0b86adf9ef5460e3e352e37390f52d47c0261eb3867a91b655ae454ccc9af7ff7f296104b052c6f587491455df169970374a80254661283ec30b465447113d8ce0b98b5bbb9cfed86e33b07e71a1de05f318eb296e30bad7520e2e22886703239663fd1d2bd1ed25ff41e739dc21e9af75aece630a24eaa03e617820b9f5cf9c45cdc177fc6e800b2cb2d743e10973ba31c485db527c3e3bd1038c5b6ed3abd245a97a0eaf0f53f7ad2fa", 0xb3}, {&(0x7f0000002f40)="ca2e86c143a8bcb5102c3b181251de15d9d54d5155122c01f7c0b647e7d6395fe60848cc291b1672fde975da1452259fe9bd9e95a94ba41af4f3d5c281bf6995ba882e9c561ee2310ce6bb397924d9d3ab66d58ac380c264c88e2b11bb499dd893b12c11fa4e3baeacc0079f5d7b04ee71b4fcef316ed1c8b9976e7494fecdef753a479a8419228d91c18f03092c87c0456c43f894b057f815d5a5d2b1b3c87f0f555842a52774a3eae72118f9a7ee92f62d8a4deeb7d1b02f", 0xb9}, {&(0x7f0000003000)="ab5e468fdf0658234fdc5844839b956664d8d7cde84d8771129bf30a1276291304c06d82b06fd58b8548d22ac280acfbbbfc9d6c048231002a046d8f63116b437c991c3db87cbb8e58968ee8c130cf56ff4ee547214d69cb608a685d841f9fc827751543cffe348ae3d84e8dfbc9b82b2658204849453f0cb72cccf47c1079e3862a096ca8213054100714fed64dfe74e04d914b88d33711933fbb79b35d711e69bad05b94e4f35ac306ee6ae6058bda214970b0f33e3b9411adf8f9ad108176d6c2d23d7126edcace94351a", 0xcc}], 0x8, &(0x7f0000003180)=[@hoplimit_2292={{0x14, 0x29, 0x8, 0x81}}, @rthdrdstopts={{0x28, 0x29, 0x37, {0x21, 0x1, '\x00', [@padn={0x1, 0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @ra={0x5, 0x2, 0x3}]}}}, @hopopts={{0xa0, 0x29, 0x36, {0x3c, 0x11, '\x00', [@calipso={0x7, 0x50, {0x0, 0x12, 0x4, 0x3ff, [0x0, 0x4, 0x0, 0xfffffffffffffffa, 0x6, 0x15, 0x65e, 0x5, 0x8]}}, @hao={0xc9, 0x10, @private2}, @hao={0xc9, 0x10, @private0}, @hao={0xc9, 0x10, @empty}]}}}, @pktinfo={{0x24, 0x29, 0x32, {@empty}}}, @rthdr={{0xa8, 0x29, 0x39, {0x5c, 0x12, 0x1, 0x7f, 0x0, [@local, @local, @rand_addr=' \x01\x00', @loopback, @mcast1, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @local, @remote, @empty]}}}], 0x1b0}}, {{&(0x7f0000003340)={0xa, 0x4e23, 0x9c, @local, 0x101}, 0x1c, &(0x7f00000033c0)=[{&(0x7f0000003380)="442acd7cc8f4fbf7093d501ff9d66d065b7a0f957bb94f", 0x17}], 0x1}}, {{&(0x7f0000003400)={0xa, 0x4e23, 0x1000, @local, 0x2}, 0x1c, &(0x7f0000003680)=[{&(0x7f0000003440)="b93b0b65af271ff5e322eb95c9fb62bcfa0fbc961672af2a0ef706199731ea286932389b3cbe421b19fd414d98aec2467830768290179a76c3d7260e96281579931cf108115df2c97abac97acb542028f6636260590aef", 0x57}, {&(0x7f00000034c0)="09bfafee679c3156717d085627734643df185232810eaea8e356e0ca5f17db33d2589140c741d6b2c11f96b5e4ed8939615c8ef1360de8d7b2", 0x39}, {&(0x7f0000003500)="7117490ba6dcac6c34fe93c81532d7b96ed648508789c6a26af9516a8abaf1a49b3f2e329b0a77b8b5c5e21220df5a758e60b73aa950e13cd26d39b6ed8c8bd8fcb7a0437d9d4ac579d0c0e55cd45e82e3b83a0da71e48bbb527a9e4daf50622ad79eb45b79df9858b9fa8666c1921bb7d03b0e3c873cbd0a4f29cf848c2917b1c9c065c", 0x84}, {&(0x7f00000035c0)="d3680bdd2b63cc9d2a7185770c6ce766297c73fca143cbdaf837f6798a1baa08690a562a6c8b39897f82817c4fb2485707d808b7ceb103b509579fd9fb30a03d9e91914ee32e30f58f25111caa11d1131dd06b3876744c8e1789697b1bb7b307ee44dcfa6cb8388c8eff0b2c2e805d957722b721e475e463b3709716a689b08f45339d8017c3ebc996ff3dad73bcc754d36244d58cb748cdb93e22b25877324a8fe3cfe4139afd21f3aa2a3fd5101353a93810455c8062205c17a6a91b21ac", 0xbf}], 0x4, &(0x7f00000036c0)=[@rthdrdstopts={{0x140, 0x29, 0x37, {0x5c, 0x25, '\x00', [@pad1, @padn={0x1, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}, @padn={0x1, 0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}, @ra={0x5, 0x2, 0x1}, @generic={0x81, 0xfb, "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"}, @ra={0x5, 0x2, 0x5}, @hao={0xc9, 0x10, @private2={0xfc, 0x2, '\x00', 0x1}}]}}}, @tclass={{0x14, 0x29, 0x43, 0x23}}], 0x158}}, {{&(0x7f0000003840)={0xa, 0x4e21, 0x7, @mcast1, 0x80000000}, 0x1c, &(0x7f0000003940)=[{&(0x7f0000003880)="21aa455a95aaa4aaa2c1de", 0xb}, {&(0x7f00000038c0)="8b2b9cac3853c5597527a8", 0xb}, {&(0x7f0000003900)="2f52daab4e6ebb7db64ffe0b932edb5c87231fc848b0239d8d08107d77bba2a57ad7b3a7941690e63c8d3347f4fa8a8d85c5dc48", 0x34}], 0x3, &(0x7f0000003980)=[@pktinfo={{0x24, 0x29, 0x32, {@dev={0xfe, 0x80, '\x00', 0x22}}}}, @dstopts_2292={{0xa8, 0x29, 0x4, {0x2b, 0x11, '\x00', [@padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}, @jumbo={0xc2, 0x4, 0x8}, @calipso={0x7, 0x50, {0x1, 0x12, 0x2, 0x9, [0x8, 0xffffffffffff8000, 0x3, 0x7, 0x3, 0x7, 0x1ff, 0xffffffffffffffff, 0x80]}}, @ra={0x5, 0x2, 0x401}, @calipso={0x7, 0x28, {0x1, 0x8, 0x40, 0x7ff, [0x1, 0x1f, 0xffffffff, 0xffffffff]}}]}}}, @hopopts={{0x38, 0x29, 0x36, {0x11, 0x3, '\x00', [@hao={0xc9, 0x10, @private1}, @jumbo={0xc2, 0x4, 0x7d6}, @ra={0x5, 0x2, 0x20}]}}}, @tclass={{0x14, 0x29, 0x43, 0x9}}], 0x120}}, {{&(0x7f0000003ac0)={0xa, 0x4e24, 0x5, @mcast1, 0x4}, 0x1c, &(0x7f0000003bc0)=[{&(0x7f0000003b00)="ca74af556ed97fdd652c7ecaf709c4c7116b7b59f02e050a4a28ceb7ef72a8bea3d38015e80e56f97e49a2209f5e160945abbe1ab4f798a6b2455b594e15c2bb70d3f80940b4aae83d472da579e328e4978292ab5ba0ada4c200c747b95e965876f3d4f9df58bb6e21ad9a3b0d5b4acca759c0e091d4092e7ec64ad4f83f957cf0f86bb9e742788fd3b71a777c1bfd4d23e2c88875b511664fd4ae", 0x9b}], 0x1, &(0x7f0000003c00)=[@rthdr_2292={{0x68, 0x29, 0x39, {0x2c, 0xa, 0x0, 0x0, 0x0, [@dev={0xfe, 0x80, '\x00', 0x42}, @remote, @loopback, @private0={0xfc, 0x0, '\x00', 0x1}, @private2]}}}, @hopopts={{0x20, 0x29, 0x36, {0x3a, 0x0, '\x00', [@pad1, @enc_lim={0x4, 0x1, 0x9}]}}}, @dstopts_2292={{0x20, 0x29, 0x4, {0x1, 0x0, '\x00', [@padn={0x1, 0x3, [0x0, 0x0, 0x0]}]}}}], 0xa8}}], 0x6, 0x4000) r4 = openat$incfs(0xffffffffffffff9c, &(0x7f0000003e40)='.log\x00', 0x200000, 0x2d) accept4(r4, &(0x7f0000003e80)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast}, &(0x7f0000003f00)=0x80, 0x140800) setsockopt$inet6_buf(r3, 0x29, 0x14, &(0x7f0000003f40)="1fffa0ed3903b950f8a0f003f2c0657d4fa18315cbdf4695769bf3ffee0bd1bc10b7c1fe354bfc137e7e7d96b7692a86514f5b1cff20041f444a28441ed8c1884afe3ab8447b9d440fad87622c8689777a85f17ec48aea956a814fc84a20a885dbe69fa1e4c93b96904ab7a90609b4129ca857096ae230b5f848ce7a2613634c914fb3664121c6919d072686125223b3b22e37844fc62a9b5871c0c7b358f7210af87cdd8582db7ff2fe7787f63ae82b1166191301e8f749da1413bbe8a1a889879d008422583e60178933cfb47b3e17f5920c943c55a6d987fd90430c777b30737c67", 0xe3) r5 = signalfd4(r2, &(0x7f0000004040)={[0xfffffffffffffffe]}, 0x8, 0x800) setsockopt$inet6_tcp_int(r5, 0x6, 0x11, &(0x7f0000004080)=0xc9be, 0x4) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000040c0)={'wlan1\x00'}) openat(r0, &(0x7f0000004100)='./file0\x00', 0xc26c2, 0x184) r6 = openat$full(0xffffffffffffff9c, &(0x7f0000004140), 0x90801, 0x0) connect$inet6(r6, &(0x7f0000004180)={0xa, 0x4e20, 0x401, @dev={0xfe, 0x80, '\x00', 0x2c}, 0xe8}, 0x1c) ioctl$sock_inet6_SIOCSIFDSTADDR(r6, 0x8918, &(0x7f00000041c0)={@empty, 0x8}) accept(r5, &(0x7f0000004200)=@ethernet={0x0, @local}, &(0x7f0000004280)=0x80) 12:02:48 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 9) [ 1016.698116] ? sock_write_iter+0x3d0/0x3d0 [ 1016.699064] ? do_recvmmsg+0x6d0/0x6d0 [ 1016.699875] ? perf_trace_lock+0xac/0x490 [ 1016.700714] ? __lockdep_reset_lock+0x180/0x180 [ 1016.701670] ? perf_trace_lock+0xac/0x490 [ 1016.702499] ? SOFTIRQ_verbose+0x10/0x10 [ 1016.703334] ___sys_sendmsg+0xf3/0x170 [ 1016.704128] ? sendmsg_copy_msghdr+0x160/0x160 [ 1016.704155] ? lock_downgrade+0x6d0/0x6d0 [ 1016.704179] ? find_held_lock+0x2c/0x110 [ 1016.706570] ? __fget_files+0x296/0x4c0 [ 1016.707409] ? __fget_light+0xea/0x290 [ 1016.708230] __sys_sendmsg+0xe5/0x1b0 [ 1016.709007] ? __sys_sendmsg_sock+0x40/0x40 [ 1016.709895] ? rcu_read_lock_any_held+0x75/0xa0 [ 1016.710872] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1016.711943] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1016.712983] ? trace_hardirqs_on+0x5b/0x180 [ 1016.713868] do_syscall_64+0x33/0x40 [ 1016.714626] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1016.715680] RIP: 0033:0x7fed842aab19 [ 1016.716430] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1016.720166] RSP: 002b:00007fed81820188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1016.721699] RAX: ffffffffffffffda RBX: 00007fed843bdf60 RCX: 00007fed842aab19 [ 1016.723139] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1016.724596] RBP: 00007fed818201d0 R08: 0000000000000000 R09: 0000000000000000 [ 1016.726034] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1016.727479] R13: 00007ffe3d75192f R14: 00007fed81820300 R15: 0000000000022000 [ 1016.751386] FAULT_INJECTION: forcing a failure. [ 1016.751386] name failslab, interval 1, probability 0, space 0, times 0 [ 1016.753337] pci 0000:00:02.0: vgaarb: changed VGA decodes: olddecodes=io+mem,decodes=io+mem:owns=io+mem [ 1016.753793] CPU: 1 PID: 9769 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 1016.756129] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1016.757806] Call Trace: [ 1016.758344] dump_stack+0x107/0x167 [ 1016.759088] should_fail.cold+0x5/0xa [ 1016.759871] ? kvmalloc_node+0x119/0x170 [ 1016.760690] should_failslab+0x5/0x20 [ 1016.761464] __kmalloc_node+0x76/0x420 [ 1016.762266] kvmalloc_node+0x119/0x170 [ 1016.763059] bucket_table_alloc.isra.0+0x88/0x490 [ 1016.764052] rhashtable_init+0x341/0x760 [ 1016.764870] rhltable_init+0x1c/0x60 [ 1016.765640] sta_info_init+0x1f/0x110 [ 1016.766418] ieee80211_alloc_hw_nm+0x6a0/0x2320 [ 1016.767376] ? trace_hardirqs_on+0x5b/0x180 [ 1016.768268] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1016.769261] ? ____sys_sendmsg+0x70d/0x870 [ 1016.770124] ? ___sys_sendmsg+0xf3/0x170 [ 1016.770867] SELinux: duplicate or incompatible mount options [ 1016.770962] ? __sys_sendmsg+0xe5/0x1b0 [ 1016.770986] ? do_syscall_64+0x33/0x40 [ 1016.773245] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1016.774340] ? __lockdep_reset_lock+0x180/0x180 [ 1016.775278] ? lock_acquire+0x197/0x470 [ 1016.776091] ? create_object.isra.0+0x3ad/0xa20 [ 1016.777039] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1016.777997] ? __kmalloc+0x16e/0x390 [ 1016.778757] hwsim_new_radio_nl+0x991/0x1080 [ 1016.779658] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1016.780735] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1016.782089] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1016.783445] genl_family_rcv_msg_doit+0x22d/0x330 [ 1016.784420] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1016.785745] ? cap_capable+0x1d6/0x240 [ 1016.786544] ? ns_capable+0xe2/0x110 [ 1016.787336] genl_rcv_msg+0x33c/0x5a0 [ 1016.788125] ? genl_get_cmd+0x480/0x480 [ 1016.788927] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1016.789965] ? lock_release+0x680/0x680 [ 1016.790764] ? __lockdep_reset_lock+0x180/0x180 [ 1016.791721] netlink_rcv_skb+0x14b/0x430 [ 1016.792538] ? genl_get_cmd+0x480/0x480 [ 1016.793338] ? netlink_ack+0xab0/0xab0 [ 1016.794139] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1016.795058] ? is_vmalloc_addr+0x7b/0xb0 [ 1016.795890] genl_rcv+0x24/0x40 [ 1016.796553] netlink_unicast+0x549/0x7f0 [ 1016.797377] ? netlink_attachskb+0x870/0x870 [ 1016.798260] ? __virt_addr_valid+0x128/0x350 [ 1016.799171] netlink_sendmsg+0x90f/0xdf0 [ 1016.800007] ? netlink_unicast+0x7f0/0x7f0 [ 1016.800893] ? netlink_unicast+0x7f0/0x7f0 [ 1016.801736] __sock_sendmsg+0x154/0x190 [ 1016.802554] ____sys_sendmsg+0x70d/0x870 [ 1016.803395] ? sock_write_iter+0x3d0/0x3d0 [ 1016.804260] ? do_recvmmsg+0x6d0/0x6d0 [ 1016.805040] ? perf_trace_lock+0xac/0x490 [ 1016.805901] ? __lockdep_reset_lock+0x180/0x180 [ 1016.806825] ? perf_trace_lock+0xac/0x490 [ 1016.807670] ? SOFTIRQ_verbose+0x10/0x10 [ 1016.808489] ___sys_sendmsg+0xf3/0x170 [ 1016.809279] ? sendmsg_copy_msghdr+0x160/0x160 [ 1016.810201] ? lock_downgrade+0x6d0/0x6d0 [ 1016.811039] ? find_held_lock+0x2c/0x110 [ 1016.811879] ? __fget_files+0x296/0x4c0 [ 1016.812696] ? __fget_light+0xea/0x290 [ 1016.813491] __sys_sendmsg+0xe5/0x1b0 [ 1016.814263] ? __sys_sendmsg_sock+0x40/0x40 [ 1016.815127] ? rcu_read_lock_any_held+0x75/0xa0 [ 1016.816118] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1016.817166] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1016.818212] ? trace_hardirqs_on+0x5b/0x180 [ 1016.819077] do_syscall_64+0x33/0x40 [ 1016.819850] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1016.820871] RIP: 0033:0x7f59b4343b19 [ 1016.821637] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1016.825301] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1016.826826] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 1016.828262] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1016.829688] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1016.831112] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1016.832547] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 12:02:48 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) openat$incfs(0xffffffffffffffff, &(0x7f0000000140)='.pending_reads\x00', 0x0, 0x0) ftruncate(r0, 0x1000003) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x12a) close(0xffffffffffffffff) perf_event_open(0x0, 0x0, 0xc, 0xffffffffffffffff, 0x3) ftruncate(r0, 0x3) signalfd(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) lseek(r1, 0x0, 0x2) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/icmp\x00') preadv(r2, &(0x7f0000000440)=[{&(0x7f0000000040)=""/67, 0x43}], 0x1, 0x48, 0x0) r3 = syz_open_pts(r2, 0x0) ioctl$F2FS_IOC_PRECACHE_EXTENTS(r3, 0xf50f, 0x0) finit_module(r2, &(0x7f00000000c0)=']\x00', 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x4000, 0x128) copy_file_range(r4, 0x0, r2, 0x0, 0x200f5ef, 0x0) 12:02:48 executing program 6: io_setup(0x6, &(0x7f0000000040)=0x0) r1 = socket$inet_tcp(0x2, 0x1, 0x0) io_submit(r0, 0x1, &(0x7f00000001c0)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x64ef, r1, 0x0, 0x0, 0x0, 0x0, 0x2}]) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_udp_encap(r2, 0x11, 0xb, &(0x7f0000000600)=0x5, 0x4) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) [ 1017.024054] FAULT_INJECTION: forcing a failure. [ 1017.024054] name failslab, interval 1, probability 0, space 0, times 0 [ 1017.025339] CPU: 0 PID: 9774 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1017.026076] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1017.027001] Call Trace: [ 1017.027305] dump_stack+0x107/0x167 [ 1017.027725] should_fail.cold+0x5/0xa [ 1017.028148] ? create_object.isra.0+0x3a/0xa20 [ 1017.028639] should_failslab+0x5/0x20 [ 1017.029055] kmem_cache_alloc+0x5b/0x310 [ 1017.029506] ? __mutex_lock+0x5af/0x10b0 [ 1017.029963] create_object.isra.0+0x3a/0xa20 [ 1017.030447] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1017.031017] __kmalloc+0x16e/0x390 [ 1017.031421] genl_family_rcv_msg_attrs_parse.constprop.0+0xdb/0x280 [ 1017.032121] genl_family_rcv_msg_doit+0xda/0x330 [ 1017.032655] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1017.033386] ? cap_capable+0x1d6/0x240 [ 1017.033821] ? security_capable+0x95/0xc0 [ 1017.034294] ? ns_capable+0xe2/0x110 [ 1017.034711] genl_rcv_msg+0x33c/0x5a0 [ 1017.035133] ? genl_get_cmd+0x480/0x480 [ 1017.035577] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1017.036150] ? lock_release+0x680/0x680 [ 1017.036610] ? __lockdep_reset_lock+0x180/0x180 [ 1017.037130] netlink_rcv_skb+0x14b/0x430 [ 1017.037590] ? genl_get_cmd+0x480/0x480 [ 1017.038040] ? netlink_ack+0xab0/0xab0 [ 1017.038499] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1017.039013] ? is_vmalloc_addr+0x7b/0xb0 [ 1017.039498] genl_rcv+0x24/0x40 [ 1017.039865] netlink_unicast+0x549/0x7f0 [ 1017.040333] ? netlink_attachskb+0x870/0x870 [ 1017.040834] ? __virt_addr_valid+0x128/0x350 [ 1017.041339] netlink_sendmsg+0x90f/0xdf0 [ 1017.041798] ? netlink_unicast+0x7f0/0x7f0 [ 1017.042291] ? netlink_unicast+0x7f0/0x7f0 [ 1017.042772] __sock_sendmsg+0x154/0x190 [ 1017.043231] ____sys_sendmsg+0x70d/0x870 [ 1017.043702] ? sock_write_iter+0x3d0/0x3d0 [ 1017.044185] ? do_recvmmsg+0x6d0/0x6d0 [ 1017.044629] ? perf_trace_lock+0xac/0x490 [ 1017.045109] ? __lockdep_reset_lock+0x180/0x180 [ 1017.045667] ? perf_trace_lock+0xac/0x490 [ 1017.046139] ? SOFTIRQ_verbose+0x10/0x10 [ 1017.046608] ___sys_sendmsg+0xf3/0x170 [ 1017.047062] ? sendmsg_copy_msghdr+0x160/0x160 [ 1017.047607] ? lock_downgrade+0x6d0/0x6d0 [ 1017.048090] ? find_held_lock+0x2c/0x110 [ 1017.048575] ? __fget_files+0x296/0x4c0 [ 1017.049043] ? __fget_light+0xea/0x290 [ 1017.049502] __sys_sendmsg+0xe5/0x1b0 [ 1017.049941] ? __sys_sendmsg_sock+0x40/0x40 [ 1017.050450] ? rcu_read_lock_any_held+0x75/0xa0 [ 1017.051007] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1017.051624] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1017.052218] ? trace_hardirqs_on+0x5b/0x180 [ 1017.052726] do_syscall_64+0x33/0x40 [ 1017.053157] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1017.053745] RIP: 0033:0x7fb858d1fb19 [ 1017.054175] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1017.056304] RSP: 002b:00007fb856295188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1017.057182] RAX: ffffffffffffffda RBX: 00007fb858e32f60 RCX: 00007fb858d1fb19 [ 1017.058017] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1017.058839] RBP: 00007fb8562951d0 R08: 0000000000000000 R09: 0000000000000000 [ 1017.059665] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1017.060484] R13: 00007ffde2c0b16f R14: 00007fb856295300 R15: 0000000000022000 [ 1017.067852] pci 0000:00:02.0: vgaarb: changed VGA decodes: olddecodes=io+mem,decodes=io+mem:owns=io+mem [ 1017.070788] pci 0000:00:02.0: vgaarb: changed VGA decodes: olddecodes=io+mem,decodes=io+mem:owns=io+mem [ 1017.073285] SELinux: duplicate or incompatible mount options 12:03:03 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 17) 12:03:03 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 10) 12:03:03 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 7) 12:03:03 executing program 6: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000000), r0) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000900), r1) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_UNLABEL_C_STATICLISTDEF(r3, &(0x7f00000003c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000380)={&(0x7f0000000300)={0x44, 0x0, 0x10, 0x70bd28, 0x25dfdbfe, {}, [@NLBL_UNLABEL_A_SECCTX={0x26, 0x7, 'system_u:object_r:dmesg_exec_t:s0\x00'}, @NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x1}]}, 0x44}, 0x1, 0x0, 0x0, 0x4040840}, 0x20000081) sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000002100000009001f0070687931000000000000000000000000000000000c0005000201aaaaaaaaaaaa"], 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x0) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_UNLABEL_C_ACCEPT(r4, &(0x7f0000000140)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000100)={&(0x7f00000001c0)={0xe0, 0x0, 0x400, 0x70bd2d, 0x25dfdbfd, {}, [@NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @rand_addr=' \x01\x00'}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @broadcast}, @NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @private1={0xfc, 0x1, '\x00', 0x1}}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @dev={0xac, 0x14, 0x14, 0xe}}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @mcast1}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'veth1_to_hsr\x00'}, @NLBL_UNLABEL_A_SECCTX={0x28, 0x7, 'system_u:object_r:crypt_device_t:s0\x00'}, @NLBL_UNLABEL_A_SECCTX={0x25, 0x7, 'system_u:object_r:dpkg_exec_t:s0\x00'}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @dev={0xac, 0x14, 0x14, 0x37}}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'wlan0\x00'}]}, 0xe0}, 0x1, 0x0, 0x0, 0xc040}, 0x800) 12:03:03 executing program 0: r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FAT_IOCTL_GET_ATTRIBUTES(r0, 0x80047210, &(0x7f0000000400)) r1 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x43, 0x8}, &(0x7f0000000140)='./file0\x00', 0x18, 0x0, 0x23456}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) io_uring_enter(r1, 0x1941, 0xb233, 0x2, &(0x7f0000000040), 0x8) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r1, 0x8000000) syz_io_uring_submit(r4, r3, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0) 12:03:03 executing program 4: r0 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400020120000200008000f80000200040000000000000000000010000000000000002", 0x2d}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000011100)) r1 = openat(r0, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r2 = syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r2, 0x8000000) io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0) preadv(r2, &(0x7f0000000440)=[{0x0}], 0x1000000000000264, 0x6, 0x2) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x8800000) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401, 0x1, @perf_bp={&(0x7f0000000080), 0x8}, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) ppoll(&(0x7f0000000140)=[{0xffffffffffffffff, 0x9}, {r0, 0x48}], 0x2, &(0x7f0000000180)={0x77359400}, &(0x7f00000001c0)={[0x401]}, 0x8) ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0xc028660f, &(0x7f0000000480)={0x0, 0xffffffffffffffff, 0x0, 0x3, 0x9, 0x9}) sendfile(r1, r3, 0x0, 0x100000001) 12:03:03 executing program 5: r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) write$binfmt_elf64(r1, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], 0x15b0) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000000)) pipe(0x0) fcntl$dupfd(0xffffffffffffffff, 0x406, r1) r2 = syz_io_uring_setup(0x132, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) syz_io_uring_setup(0x43f4, &(0x7f0000000400)={0x0, 0xdd12, 0x4, 0x1, 0x359, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000040), &(0x7f0000000d40)=0x0) syz_io_uring_submit(r3, r6, &(0x7f0000000000)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x5, 0x6000, @fd_index=0x9, 0x10000, 0x0, 0x0, 0x0, 0x0, {0x1, r5}}, 0x0) syz_io_uring_submit(0x0, r4, &(0x7f00000003c0)=@IORING_OP_READV=@pass_iovec={0x1, 0x1, 0x0, @fd=r0, 0x4, &(0x7f0000000340)=[{&(0x7f0000000080)=""/44, 0x2c}, {&(0x7f00000000c0)=""/176, 0xb0}, {&(0x7f0000000180)=""/102, 0x66}, {&(0x7f0000000200)=""/241, 0xf1}, {&(0x7f0000000300)=""/41, 0x29}], 0x5, 0x10, 0x1}, 0x800) ioctl$VT_DISALLOCATE(0xffffffffffffffff, 0x5608) 12:03:03 executing program 1: mmap$IORING_OFF_CQ_RING(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xfff, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/keys\x00', 0x0, 0x0) preadv(r0, &(0x7f0000001580)=[{&(0x7f00000015c0)=""/4106, 0x100a}], 0x1, 0x2, 0x0) r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000380)={[0x1]}, 0x8, 0x800) r2 = openat(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x0, 0x80) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_CLOSE={0x13, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0) clock_gettime(0x3, &(0x7f0000000200)) r3 = syz_io_uring_setup(0x4ee8, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r2}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000280), &(0x7f0000000100)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r3, 0x8000000) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) signalfd4(r3, &(0x7f0000000240), 0x8, 0x81800) readv(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000001340)=""/4096, 0x1000}], 0x1) syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x0, 0xfffffffd}, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000000040), &(0x7f0000000140)) mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x1e1a47f4a1764c1a, r1, 0x4e230000) ftruncate(0xffffffffffffffff, 0x4) openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x5d09c1, 0x183) r4 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TIOCL_BLANKSCREEN(r4, 0x541c, &(0x7f0000000180)) [ 1032.062733] FAULT_INJECTION: forcing a failure. [ 1032.062733] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1032.064593] CPU: 1 PID: 9797 Comm: syz-executor.3 Not tainted 5.10.199 #1 [ 1032.065506] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1032.066607] Call Trace: [ 1032.066964] dump_stack+0x107/0x167 [ 1032.067449] should_fail.cold+0x5/0xa [ 1032.067975] _copy_from_iter_full+0x201/0xa60 [ 1032.068566] ? __virt_addr_valid+0x128/0x350 [ 1032.069158] ? __check_object_size+0x319/0x440 [ 1032.069754] netlink_sendmsg+0x879/0xdf0 [ 1032.070301] ? netlink_unicast+0x7f0/0x7f0 [ 1032.070873] ? netlink_unicast+0x7f0/0x7f0 [ 1032.071430] __sock_sendmsg+0x154/0x190 [ 1032.071963] ____sys_sendmsg+0x70d/0x870 [ 1032.072497] ? sock_write_iter+0x3d0/0x3d0 [ 1032.073052] ? do_recvmmsg+0x6d0/0x6d0 [ 1032.073569] ? perf_trace_lock+0xac/0x490 [ 1032.074118] ? __lockdep_reset_lock+0x180/0x180 [ 1032.074734] ? perf_trace_lock+0xac/0x490 [ 1032.075278] ? SOFTIRQ_verbose+0x10/0x10 [ 1032.075835] ___sys_sendmsg+0xf3/0x170 [ 1032.076344] ? sendmsg_copy_msghdr+0x160/0x160 [ 1032.076962] ? lock_downgrade+0x6d0/0x6d0 [ 1032.077502] ? find_held_lock+0x2c/0x110 [ 1032.078059] ? __fget_files+0x296/0x4c0 [ 1032.078586] ? __fget_light+0xea/0x290 [ 1032.078691] FAULT_INJECTION: forcing a failure. [ 1032.078691] name failslab, interval 1, probability 0, space 0, times 0 [ 1032.079119] __sys_sendmsg+0xe5/0x1b0 [ 1032.079134] ? __sys_sendmsg_sock+0x40/0x40 [ 1032.079158] ? rcu_read_lock_any_held+0x75/0xa0 [ 1032.083093] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1032.083808] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1032.084509] ? trace_hardirqs_on+0x5b/0x180 [ 1032.085082] do_syscall_64+0x33/0x40 [ 1032.085593] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1032.086253] RIP: 0033:0x7fed842aab19 [ 1032.086764] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1032.089176] RSP: 002b:00007fed81820188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1032.090210] RAX: ffffffffffffffda RBX: 00007fed843bdf60 RCX: 00007fed842aab19 [ 1032.091163] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1032.092170] RBP: 00007fed818201d0 R08: 0000000000000000 R09: 0000000000000000 [ 1032.093170] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1032.094155] R13: 00007ffe3d75192f R14: 00007fed81820300 R15: 0000000000022000 [ 1032.095174] CPU: 0 PID: 9799 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1032.096607] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1032.098300] Call Trace: [ 1032.098843] dump_stack+0x107/0x167 [ 1032.099600] should_fail.cold+0x5/0xa [ 1032.100382] ? create_object.isra.0+0x3a/0xa20 [ 1032.101317] should_failslab+0x5/0x20 [ 1032.102096] kmem_cache_alloc+0x5b/0x310 [ 1032.102930] create_object.isra.0+0x3a/0xa20 [ 1032.103833] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1032.104884] __kmalloc+0x16e/0x390 [ 1032.105642] genl_family_rcv_msg_attrs_parse.constprop.0+0xdb/0x280 [ 1032.106981] genl_family_rcv_msg_doit+0xda/0x330 [ 1032.107971] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1032.109315] ? cap_capable+0x1d6/0x240 [ 1032.110125] ? security_capable+0x95/0xc0 [ 1032.110980] ? ns_capable+0xe2/0x110 [ 1032.111755] genl_rcv_msg+0x33c/0x5a0 [ 1032.112539] ? genl_get_cmd+0x480/0x480 [ 1032.113353] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1032.114413] ? lock_release+0x680/0x680 [ 1032.115223] ? __lockdep_reset_lock+0x180/0x180 [ 1032.116179] netlink_rcv_skb+0x14b/0x430 [ 1032.117003] ? genl_get_cmd+0x480/0x480 [ 1032.117819] ? netlink_ack+0xab0/0xab0 [ 1032.118627] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1032.119573] ? is_vmalloc_addr+0x7b/0xb0 [ 1032.120401] genl_rcv+0x24/0x40 [ 1032.121077] netlink_unicast+0x549/0x7f0 [ 1032.121907] ? netlink_attachskb+0x870/0x870 [ 1032.122772] ? __virt_addr_valid+0x128/0x350 [ 1032.123684] netlink_sendmsg+0x90f/0xdf0 [ 1032.124516] ? netlink_unicast+0x7f0/0x7f0 [ 1032.125388] ? netlink_unicast+0x7f0/0x7f0 [ 1032.126246] __sock_sendmsg+0x154/0x190 [ 1032.127054] ____sys_sendmsg+0x70d/0x870 [ 1032.127893] ? sock_write_iter+0x3d0/0x3d0 [ 1032.128746] ? do_recvmmsg+0x6d0/0x6d0 [ 1032.129534] ? perf_trace_lock+0xac/0x490 [ 1032.130382] ? __lockdep_reset_lock+0x180/0x180 [ 1032.131320] ? perf_trace_lock+0xac/0x490 [ 1032.132164] ? SOFTIRQ_verbose+0x10/0x10 [ 1032.132992] ___sys_sendmsg+0xf3/0x170 [ 1032.133782] ? sendmsg_copy_msghdr+0x160/0x160 [ 1032.134712] ? lock_downgrade+0x6d0/0x6d0 [ 1032.135570] ? find_held_lock+0x2c/0x110 [ 1032.136406] ? __fget_files+0x296/0x4c0 [ 1032.137226] ? __fget_light+0xea/0x290 [ 1032.138026] __sys_sendmsg+0xe5/0x1b0 [ 1032.138799] ? __sys_sendmsg_sock+0x40/0x40 [ 1032.139683] ? rcu_read_lock_any_held+0x75/0xa0 [ 1032.140649] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1032.141709] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1032.142747] ? trace_hardirqs_on+0x5b/0x180 [ 1032.143636] do_syscall_64+0x33/0x40 [ 1032.144393] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1032.145428] RIP: 0033:0x7fb858d1fb19 [ 1032.146183] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1032.149918] RSP: 002b:00007fb856295188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1032.151474] RAX: ffffffffffffffda RBX: 00007fb858e32f60 RCX: 00007fb858d1fb19 12:03:03 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 8) [ 1032.153185] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1032.153197] RBP: 00007fb8562951d0 R08: 0000000000000000 R09: 0000000000000000 [ 1032.153209] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1032.153220] R13: 00007ffde2c0b16f R14: 00007fb856295300 R15: 0000000000022000 [ 1032.174193] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 12:03:03 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 11) [ 1032.198546] FAULT_INJECTION: forcing a failure. [ 1032.198546] name failslab, interval 1, probability 0, space 0, times 0 [ 1032.198561] CPU: 1 PID: 9804 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 1032.198569] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1032.198573] Call Trace: [ 1032.198591] dump_stack+0x107/0x167 [ 1032.198609] should_fail.cold+0x5/0xa [ 1032.198626] ? create_object.isra.0+0x3a/0xa20 [ 1032.198642] should_failslab+0x5/0x20 [ 1032.198657] kmem_cache_alloc+0x5b/0x310 [ 1032.198674] create_object.isra.0+0x3a/0xa20 [ 1032.198687] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1032.198704] __kmalloc_node+0x1ae/0x420 [ 1032.198725] kvmalloc_node+0x119/0x170 [ 1032.198742] bucket_table_alloc.isra.0+0x88/0x490 [ 1032.198757] rhashtable_init+0x341/0x760 [ 1032.198772] rhltable_init+0x1c/0x60 [ 1032.198788] sta_info_init+0x1f/0x110 [ 1032.198802] ieee80211_alloc_hw_nm+0x6a0/0x2320 [ 1032.198816] ? trace_hardirqs_on+0x5b/0x180 [ 1032.198833] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1032.198845] ? ____sys_sendmsg+0x70d/0x870 [ 1032.198856] ? ___sys_sendmsg+0xf3/0x170 [ 1032.198866] ? __sys_sendmsg+0xe5/0x1b0 [ 1032.198880] ? do_syscall_64+0x33/0x40 [ 1032.198894] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1032.198907] ? __lockdep_reset_lock+0x180/0x180 [ 1032.198918] ? lock_acquire+0x197/0x470 [ 1032.198929] ? create_object.isra.0+0x3ad/0xa20 [ 1032.198948] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1032.198962] ? __kmalloc+0x16e/0x390 [ 1032.198983] hwsim_new_radio_nl+0x991/0x1080 [ 1032.198999] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1032.199027] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1032.199038] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1032.199056] genl_family_rcv_msg_doit+0x22d/0x330 [ 1032.199072] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1032.199086] ? cap_capable+0x1d6/0x240 [ 1032.199110] ? ns_capable+0xe2/0x110 [ 1032.199126] genl_rcv_msg+0x33c/0x5a0 [ 1032.199141] ? genl_get_cmd+0x480/0x480 [ 1032.199154] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1032.199171] ? lock_release+0x680/0x680 [ 1032.199183] ? __lockdep_reset_lock+0x180/0x180 [ 1032.199199] netlink_rcv_skb+0x14b/0x430 [ 1032.199211] ? genl_get_cmd+0x480/0x480 [ 1032.199224] ? netlink_ack+0xab0/0xab0 [ 1032.199247] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1032.199260] ? is_vmalloc_addr+0x7b/0xb0 [ 1032.199275] genl_rcv+0x24/0x40 [ 1032.199285] netlink_unicast+0x549/0x7f0 [ 1032.199302] ? netlink_attachskb+0x870/0x870 [ 1032.199314] ? __virt_addr_valid+0x128/0x350 [ 1032.199335] netlink_sendmsg+0x90f/0xdf0 [ 1032.199352] ? netlink_unicast+0x7f0/0x7f0 [ 1032.199374] ? netlink_unicast+0x7f0/0x7f0 [ 1032.199387] __sock_sendmsg+0x154/0x190 [ 1032.199400] ____sys_sendmsg+0x70d/0x870 [ 1032.199415] ? sock_write_iter+0x3d0/0x3d0 [ 1032.199425] ? do_recvmmsg+0x6d0/0x6d0 [ 1032.199437] ? perf_trace_lock+0xac/0x490 [ 1032.199455] ? __lockdep_reset_lock+0x180/0x180 [ 1032.199465] ? perf_trace_lock+0xac/0x490 [ 1032.199476] ? SOFTIRQ_verbose+0x10/0x10 [ 1032.199502] ___sys_sendmsg+0xf3/0x170 [ 1032.199517] ? sendmsg_copy_msghdr+0x160/0x160 [ 1032.199534] ? lock_downgrade+0x6d0/0x6d0 [ 1032.199549] ? find_held_lock+0x2c/0x110 [ 1032.199571] ? __fget_files+0x296/0x4c0 [ 1032.199593] ? __fget_light+0xea/0x290 [ 1032.199612] __sys_sendmsg+0xe5/0x1b0 [ 1032.199624] ? __sys_sendmsg_sock+0x40/0x40 [ 1032.199637] ? rcu_read_lock_any_held+0x75/0xa0 [ 1032.199664] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1032.199677] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1032.199686] ? trace_hardirqs_on+0x5b/0x180 [ 1032.199702] do_syscall_64+0x33/0x40 [ 1032.199716] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1032.199724] RIP: 0033:0x7f59b4343b19 [ 1032.199738] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1032.199745] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1032.199759] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 1032.199767] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1032.199774] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1032.199781] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1032.199788] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 [ 1032.315635] FAULT_INJECTION: forcing a failure. [ 1032.315635] name failslab, interval 1, probability 0, space 0, times 0 [ 1032.315653] CPU: 1 PID: 9816 Comm: syz-executor.3 Not tainted 5.10.199 #1 [ 1032.315661] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1032.315666] Call Trace: [ 1032.315684] dump_stack+0x107/0x167 [ 1032.315703] should_fail.cold+0x5/0xa [ 1032.315720] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xdb/0x280 [ 1032.315736] should_failslab+0x5/0x20 [ 1032.315748] __kmalloc+0x72/0x390 [ 1032.315766] genl_family_rcv_msg_attrs_parse.constprop.0+0xdb/0x280 [ 1032.315783] genl_family_rcv_msg_doit+0xda/0x330 [ 1032.315801] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1032.315814] ? cap_capable+0x1d6/0x240 [ 1032.315831] ? security_capable+0x95/0xc0 [ 1032.315848] ? ns_capable+0xe2/0x110 [ 1032.315863] genl_rcv_msg+0x33c/0x5a0 [ 1032.315877] ? genl_get_cmd+0x480/0x480 [ 1032.315891] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1032.315909] ? lock_release+0x680/0x680 [ 1032.315921] ? __lockdep_reset_lock+0x180/0x180 [ 1032.315936] netlink_rcv_skb+0x14b/0x430 [ 1032.315947] ? genl_get_cmd+0x480/0x480 [ 1032.315959] ? netlink_ack+0xab0/0xab0 [ 1032.315984] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1032.316004] ? is_vmalloc_addr+0x7b/0xb0 [ 1032.363177] genl_rcv+0x24/0x40 [ 1032.363186] netlink_unicast+0x549/0x7f0 [ 1032.363202] ? netlink_attachskb+0x870/0x870 [ 1032.363213] ? __virt_addr_valid+0x128/0x350 [ 1032.363233] netlink_sendmsg+0x90f/0xdf0 [ 1032.363249] ? netlink_unicast+0x7f0/0x7f0 [ 1032.363269] ? netlink_unicast+0x7f0/0x7f0 [ 1032.363282] __sock_sendmsg+0x154/0x190 [ 1032.363295] ____sys_sendmsg+0x70d/0x870 [ 1032.363309] ? sock_write_iter+0x3d0/0x3d0 [ 1032.363319] ? do_recvmmsg+0x6d0/0x6d0 [ 1032.363339] ? perf_trace_lock+0xac/0x490 [ 1032.369395] ? __lockdep_reset_lock+0x180/0x180 [ 1032.369405] ? perf_trace_lock+0xac/0x490 [ 1032.369416] ? SOFTIRQ_verbose+0x10/0x10 [ 1032.369431] ___sys_sendmsg+0xf3/0x170 [ 1032.369445] ? sendmsg_copy_msghdr+0x160/0x160 [ 1032.369461] ? lock_downgrade+0x6d0/0x6d0 [ 1032.369475] ? find_held_lock+0x2c/0x110 [ 1032.369495] ? __fget_files+0x296/0x4c0 [ 1032.369514] ? __fget_light+0xea/0x290 [ 1032.369532] __sys_sendmsg+0xe5/0x1b0 [ 1032.369544] ? __sys_sendmsg_sock+0x40/0x40 [ 1032.369555] ? rcu_read_lock_any_held+0x75/0xa0 [ 1032.369581] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1032.369594] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1032.369603] ? trace_hardirqs_on+0x5b/0x180 [ 1032.369619] do_syscall_64+0x33/0x40 [ 1032.369632] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1032.369641] RIP: 0033:0x7fed842aab19 [ 1032.369663] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1032.381360] RSP: 002b:00007fed81820188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1032.381373] RAX: ffffffffffffffda RBX: 00007fed843bdf60 RCX: 00007fed842aab19 [ 1032.381379] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1032.381386] RBP: 00007fed818201d0 R08: 0000000000000000 R09: 0000000000000000 [ 1032.381392] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1032.381399] R13: 00007ffe3d75192f R14: 00007fed81820300 R15: 0000000000022000 [ 1032.384849] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.6'. [ 1032.390902] FAULT_INJECTION: forcing a failure. [ 1032.390902] name failslab, interval 1, probability 0, space 0, times 0 [ 1032.390927] CPU: 0 PID: 9818 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1032.390941] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1032.390951] Call Trace: [ 1032.390975] dump_stack+0x107/0x167 [ 1032.391007] should_fail.cold+0x5/0xa [ 1032.391033] ? create_object.isra.0+0x3a/0xa20 [ 1032.391057] should_failslab+0x5/0x20 [ 1032.391078] kmem_cache_alloc+0x5b/0x310 [ 1032.391107] create_object.isra.0+0x3a/0xa20 [ 1032.391129] ? kasan_unpoison_shadow+0x33/0x50 [ 1032.391160] kmalloc_order+0xfe/0x160 [ 1032.391193] kmalloc_order_trace+0x14/0xa0 [ 1032.391218] wiphy_new_nm+0x6f3/0x1e00 [ 1032.391252] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1032.391276] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1032.391296] ? __local_bh_enable_ip+0x9d/0x100 [ 1032.391315] ? trace_hardirqs_on+0x5b/0x180 [ 1032.391341] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1032.391362] ? ____sys_sendmsg+0x70d/0x870 [ 1032.391382] ? ___sys_sendmsg+0xf3/0x170 [ 1032.391401] ? __sys_sendmsg+0xe5/0x1b0 [ 1032.391424] ? do_syscall_64+0x33/0x40 [ 1032.391448] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1032.391469] ? __lockdep_reset_lock+0x180/0x180 [ 1032.391489] ? lock_acquire+0x197/0x470 [ 1032.391530] ? create_object.isra.0+0x3ad/0xa20 [ 1032.391561] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1032.391587] ? __kmalloc+0x16e/0x390 [ 1032.391615] hwsim_new_radio_nl+0x991/0x1080 [ 1032.391640] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1032.391686] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1032.391704] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1032.391732] genl_family_rcv_msg_doit+0x22d/0x330 [ 1032.391755] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1032.391774] ? cap_capable+0x1d6/0x240 [ 1032.391810] ? ns_capable+0xe2/0x110 [ 1032.391835] genl_rcv_msg+0x33c/0x5a0 [ 1032.391859] ? genl_get_cmd+0x480/0x480 [ 1032.391878] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1032.391905] ? lock_release+0x680/0x680 [ 1032.391923] ? __lockdep_reset_lock+0x180/0x180 [ 1032.391948] netlink_rcv_skb+0x14b/0x430 [ 1032.391967] ? genl_get_cmd+0x480/0x480 [ 1032.391987] ? netlink_ack+0xab0/0xab0 [ 1032.392021] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1032.392040] ? is_vmalloc_addr+0x7b/0xb0 [ 1032.392063] genl_rcv+0x24/0x40 [ 1032.392078] netlink_unicast+0x549/0x7f0 [ 1032.392104] ? netlink_attachskb+0x870/0x870 [ 1032.392121] ? __virt_addr_valid+0x128/0x350 [ 1032.392153] netlink_sendmsg+0x90f/0xdf0 [ 1032.392181] ? netlink_unicast+0x7f0/0x7f0 [ 1032.392214] ? netlink_unicast+0x7f0/0x7f0 [ 1032.392233] __sock_sendmsg+0x154/0x190 [ 1032.392254] ____sys_sendmsg+0x70d/0x870 [ 1032.392277] ? sock_write_iter+0x3d0/0x3d0 [ 1032.392293] ? do_recvmmsg+0x6d0/0x6d0 [ 1032.392312] ? perf_trace_lock+0xac/0x490 [ 1032.392339] ? __lockdep_reset_lock+0x180/0x180 [ 1032.392356] ? perf_trace_lock+0xac/0x490 [ 1032.392373] ? SOFTIRQ_verbose+0x10/0x10 [ 1032.392398] ___sys_sendmsg+0xf3/0x170 [ 1032.392421] ? sendmsg_copy_msghdr+0x160/0x160 [ 1032.392448] ? lock_downgrade+0x6d0/0x6d0 [ 1032.392472] ? find_held_lock+0x2c/0x110 [ 1032.392503] ? __fget_files+0x296/0x4c0 [ 1032.392537] ? __fget_light+0xea/0x290 [ 1032.392567] __sys_sendmsg+0xe5/0x1b0 [ 1032.392587] ? __sys_sendmsg_sock+0x40/0x40 [ 1032.392605] ? rcu_read_lock_any_held+0x75/0xa0 [ 1032.392648] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1032.392666] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1032.392680] ? trace_hardirqs_on+0x5b/0x180 [ 1032.392706] do_syscall_64+0x33/0x40 [ 1032.392727] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1032.392740] RIP: 0033:0x7fb858d1fb19 [ 1032.392760] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1032.392771] RSP: 002b:00007fb856295188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1032.392792] RAX: ffffffffffffffda RBX: 00007fb858e32f60 RCX: 00007fb858d1fb19 [ 1032.392804] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1032.392815] RBP: 00007fb8562951d0 R08: 0000000000000000 R09: 0000000000000000 [ 1032.392826] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1032.392837] R13: 00007ffde2c0b16f R14: 00007fb856295300 R15: 0000000000022000 [ 1032.470772] FAT-fs (loop4): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 12:03:18 executing program 0: r0 = syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) r1 = syz_io_uring_setup(0x4d4f, &(0x7f00000001c0)={0x0, 0x0, 0x2, 0x3, 0x1000, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000240)=0x0, &(0x7f0000000140)=0x0) r4 = openat$full(0xffffffffffffff9c, 0x0, 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd_index}, 0x0) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) openat$cgroup_ro(r4, &(0x7f00000000c0)='blkio.bfq.io_serviced_recursive\x00', 0x0, 0x0) socket$inet6_icmp(0xa, 0x2, 0x3a) r6 = openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x80800, 0x0) r7 = openat(0xffffffffffffff9c, 0x0, 0x200001, 0x0) perf_event_open(&(0x7f0000001d80)={0x3, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x8}, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x10000}, 0x0, 0x3, r4, 0x0) pidfd_getfd(0xffffffffffffffff, r7, 0x0) sendmsg$IPSET_CMD_FLUSH(r7, 0x0, 0xc801) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r6, 0xc0189379, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r5, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0) 12:03:18 executing program 4: mount(0x0, &(0x7f00000004c0)='./file0\x00', 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xb51d, 0xed5}, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mount(0x0, 0x0, 0x0, 0x300b4e2, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00'}) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FIGETBSZ(0xffffffffffffffff, 0x2, &(0x7f0000000000)) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r4}) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) bind$inet6(0xffffffffffffffff, 0x0, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8914, &(0x7f0000000140)={'lo\x00'}) r5 = socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_COALESCE(r5, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB="0515aa00", @ANYRES32=0x0, @ANYBLOB="6d6e09ca044e459fc78ca27728297fa689f9108b9e5a3e210d9015b22211d6cc3f97cd895030adcb9a95ad"], 0x1c}}, 0x0) r6 = openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x80, 0x40) getsockopt$inet6_IPV6_IPSEC_POLICY(r6, 0x29, 0x22, &(0x7f00000001c0)={{{@in=@private, @in6=@initdev}}, {{@in6=@mcast1}, 0x0, @in6=@initdev}}, &(0x7f0000000080)=0xe8) 12:03:18 executing program 1: r0 = syz_open_pts(0xffffffffffffffff, 0xc880) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000300)={'wlan0\x00', 0x0}) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$NL80211_CMD_NEW_INTERFACE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000200)={0x4c, r3, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x1, 0x3a}, @val={0x8, 0x3, r2}, @val={0xc}}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0xa}, @NL80211_ATTR_IFNAME={0x14, 0x4, 'veth1_to_team\x00'}]}, 0x4c}}, 0x0) r4 = socket$netlink(0x10, 0x3, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) sendmsg$NBD_CMD_RECONFIGURE(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000004c0)={&(0x7f00000003c0)={0xc8, 0x0, 0x200, 0x70bd2a, 0x25dfdbfc, {}, [@NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x6}, @NBD_ATTR_SOCKETS={0x3c, 0x7, 0x0, 0x1, [{0x8}, {0x8}, {0x8}, {0x8}, {0x8}, {0x8}, {0x8}]}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x2}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0xe355}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x2}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x1c, 0x7, 0x0, 0x1, [{0x8}, {0x8}, {0x8}]}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0xb7d1}, @NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x2}]}, 0xc8}, 0x1, 0x0, 0x0, 0x4000}, 0x840) fcntl$setstatus(r5, 0x4, 0x2000) bind$inet6(r5, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) bind$inet6(r5, &(0x7f0000000200)={0xa, 0x4e21, 0x6, @mcast2, 0xdc6}, 0x1c) connect$inet6(r5, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="29719ea84f4503ceb5fcf5ea0549f4ae77ab00abd023edee71c45435000086c5813ebf7039", 0x25}], 0x1}, 0x10044001) r6 = fork() setsockopt$inet6_tcp_int(r5, 0x6, 0x19, &(0x7f0000000140)=0x400, 0x4) ptrace$setopts(0x4200, r6, 0x9, 0x0) ioctl$sock_SIOCSPGRP(r5, 0x8902, &(0x7f0000000040)=r6) sendmsg$nl_generic(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c0000001e00210c00000000000000000002000008000000", @ANYRES32=r6, @ANYBLOB="284a506bfba37636a281bb167ad6398a06b7e942bba0b2a5889cfe88ef37b78c58b3cab46ef032d1bb6b119a3a0a3c9035dd01c964a523"], 0x1c}}, 0x0) fcntl$setown(r0, 0x8, r6) 12:03:18 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 12) 12:03:18 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 18) 12:03:18 executing program 6: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_icmp_ICMP_FILTER(r0, 0x1, 0x1, &(0x7f0000000080)={0x9754}, 0x4) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x2, &(0x7f0000000040)=[{0x28, 0xd, 0x0, 0x3f}, {0x6, 0x0, 0x20, 0x1}]}, 0x10) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f00000000c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYRES32=r0, @ANYBLOB="000000002e7ea1faa3bae793"]) setsockopt$inet_group_source_req(r1, 0x0, 0x2b, &(0x7f0000000100)={0x1000, {{0x2, 0x4e23, @multicast2}}, {{0x2, 0x4e23, @multicast2}}}, 0x108) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x1000008, 0x2010, r1, 0x0) r3 = accept$inet(r1, &(0x7f0000000240)={0x2, 0x0, @local}, &(0x7f0000000280)=0x10) syz_io_uring_submit(r2, 0x0, &(0x7f00000006c0)=@IORING_OP_SENDMSG={0x9, 0x3, 0x0, r3, 0x0, &(0x7f0000000680)={&(0x7f00000002c0)=@in={0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000340)="d3a5fec3f7a6cd88b496e288c37af1eb72d1050d919903be11f8562b15603a3cca77637c4851abb701eeee8f8026e18b65ae7d1412f130f43cd56547ae5d7f909870410c552eb01ab766b885259e5f9630484a9b3ebe18aa10d1eeb4df485d1762664a49561097392b988a8de1518dc8554c8b95", 0x74}, {&(0x7f00000003c0)="ce8f2103ce803a7a004a8a1b2f9ac8d69d7189a91913ad325c1caac4ede07c5fa3b7157de28e48cb25b837602cbd15cec35f07c7dcebdfc2132658a96577aad198f33b9a49be00c6adc5936ee9593c527339b832e013d58d8fe5a8bd16bf2149f976143cdfe6debf80c56435eec57b3c52099e471aba51f2ef6737e98708fcac530a3a860bbce14630f230fed83bc1f94af05d045a2c0276219d43334e320c87f3fc5c520c5e1cd15803439655f74b6445a592749e3b21e37e14d874736f3a9b6394a6e7f6c60f172964946fc5a2183e11cea089b6", 0xd5}, {&(0x7f00000004c0)="499d9c45766ea410adaa576df92698754d8c2a06d0c0e01c75b484b28f0517095042d6c0855e2f1089c500", 0x2b}, {&(0x7f0000000500)="e78e41588bf3e0dcfc85e2e8534c010d310b0876ccaf7e5c24fa954cc39f46fc9e817de4c7677dd39a5a992f9a28c680fa8a4e075291dfdd47a416c176fb599f54d6693d22045d7430d1e4c88310eb8c8e", 0x51}, {&(0x7f0000000580)="9b136692b0e16357dc335b0eaa141f3dc17a361e52a80bfd4f19ff4933c81cad423e4b1393419e4ecae3dcf6773d6d3ab69316156cfc55b345f09e169586cd66", 0x40}], 0x5, &(0x7f0000000640)}, 0x0, 0x4044}, 0xe31) syz_mount_image$ext4(&(0x7f0000000640)='ext2\x00', &(0x7f0000000700)='./file0\x00', 0x4, 0x4, &(0x7f0000000980)=[{&(0x7f0000000740)="2cc4448ddf30741884e81f91379769c49e2e6d0bb0c7ef4054d3c7a65308d609e71277b38f9ef43272f4efd5a005d20df1c2b74d9bfb5e8dc2a478b7", 0x3c, 0x4}, {&(0x7f0000000780)="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", 0xfb, 0x6}, {&(0x7f0000000880)="5f9f8a", 0x3, 0x8000}, {&(0x7f00000008c0)="e90969ff6f5e5ba9c1dcccff23875961f9ef1dae541f182d55c374d6fa1801fd47d0cc1955c4396e75b6a8a99499372be7b553cd5fc3310f04b6bdd927d129fe9b168c48f2e48bbeecf9327f82f50c1726fa4941b2a2d36460d3e4ee4c4304f91817a26f46229222c886ca418f3a91cbcd72a1391b3d3d5f82e7753cd473a722718acec9b0a3f851f25203ec4c69ad47c64bfe523ee950d14d8c58aa875105417cce3be4cb102f605bb2f80d1b16f3a6c137bed5577cb5f4cc30", 0xba, 0x100}], 0x800000, &(0x7f0000000a00)={[{@nojournal_checksum}, {@noinit_itable}, {@errors_continue}, {@nobh}, {@nobh}, {@bh}, {@nobh}, {@barrier_val={'barrier', 0x3d, 0x4}}], [{@fsmagic={'fsmagic', 0x3d, 0x3ff}}, {@smackfsfloor={'smackfsfloor', 0x3d, '\x00'}}, {@hash}, {@audit}, {@euid_eq={'euid', 0x3d, 0xee01}}, {@seclabel}]}) 12:03:18 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 9) 12:03:18 executing program 5: socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0) setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="384948b300753c6e015340cbf5d8d69372d88f3cbb194327d903001ff48fdd32a31b0a828f0e99ac917778f082848b0dd4649682f3cd3322abca134ffa1752fd4509a116548d93590b31a571be03109787b37dc9bc2ebf86cdc763b5bd049e82670ef5a226609860"], 0x8) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x2, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4934, 0xdc95}, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0xffffffff, 0x0, 0x0, 0x7}, 0x0, 0xfffffffffffffffe, 0xffffffffffffffff, 0xa) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='status\x00') connect$inet(0xffffffffffffffff, &(0x7f0000000280)={0x2, 0x0, @loopback}, 0x10) readv(r0, &(0x7f0000001540)=[{&(0x7f0000000140)=""/44, 0x2c}], 0x1) fsetxattr$trusted_overlay_origin(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'bridge_slave_1\x00'}) r3 = syz_io_uring_complete(0x0) connect$inet(r3, &(0x7f0000000040)={0x2, 0x4e24, @loopback}, 0x10) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, &(0x7f0000000080)={@local, 0x78, r5}) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000000)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, r5}) accept4$packet(0xffffffffffffffff, 0x0, &(0x7f0000000080), 0x0) [ 1047.315358] FAULT_INJECTION: forcing a failure. [ 1047.315358] name failslab, interval 1, probability 0, space 0, times 0 [ 1047.316827] CPU: 0 PID: 9839 Comm: syz-executor.3 Not tainted 5.10.199 #1 [ 1047.317645] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1047.318620] Call Trace: [ 1047.318940] dump_stack+0x107/0x167 [ 1047.319387] should_fail.cold+0x5/0xa [ 1047.319871] ? create_object.isra.0+0x3a/0xa20 [ 1047.320419] should_failslab+0x5/0x20 [ 1047.320876] kmem_cache_alloc+0x5b/0x310 [ 1047.321358] ? lock_release+0x680/0x680 [ 1047.321833] create_object.isra.0+0x3a/0xa20 [ 1047.322363] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1047.322989] __kmalloc+0x16e/0x390 [ 1047.323445] genl_family_rcv_msg_attrs_parse.constprop.0+0xdb/0x280 [ 1047.324249] genl_family_rcv_msg_doit+0xda/0x330 [ 1047.324835] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1047.325668] ? cap_capable+0x1d6/0x240 [ 1047.326163] ? security_capable+0x95/0xc0 [ 1047.326687] ? ns_capable+0xe2/0x110 [ 1047.327150] genl_rcv_msg+0x33c/0x5a0 [ 1047.327623] ? genl_get_cmd+0x480/0x480 [ 1047.328146] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1047.328787] ? lock_release+0x680/0x680 [ 1047.329273] ? __lockdep_reset_lock+0x180/0x180 [ 1047.329852] netlink_rcv_skb+0x14b/0x430 [ 1047.330355] ? genl_get_cmd+0x480/0x480 [ 1047.330850] ? netlink_ack+0xab0/0xab0 [ 1047.331346] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1047.331931] ? is_vmalloc_addr+0x7b/0xb0 [ 1047.332444] genl_rcv+0x24/0x40 [ 1047.332852] netlink_unicast+0x549/0x7f0 [ 1047.333361] ? netlink_attachskb+0x870/0x870 [ 1047.333916] ? __virt_addr_valid+0x128/0x350 [ 1047.334473] netlink_sendmsg+0x90f/0xdf0 [ 1047.334986] ? netlink_unicast+0x7f0/0x7f0 [ 1047.335521] ? netlink_unicast+0x7f0/0x7f0 [ 1047.336067] __sock_sendmsg+0x154/0x190 [ 1047.336567] ____sys_sendmsg+0x70d/0x870 [ 1047.337070] ? sock_write_iter+0x3d0/0x3d0 [ 1047.337601] ? do_recvmmsg+0x6d0/0x6d0 [ 1047.338096] ? perf_trace_lock+0xac/0x490 [ 1047.338623] ? __lockdep_reset_lock+0x180/0x180 [ 1047.339207] ? perf_trace_lock+0xac/0x490 [ 1047.339745] ? SOFTIRQ_verbose+0x10/0x10 [ 1047.340250] ___sys_sendmsg+0xf3/0x170 [ 1047.340736] ? sendmsg_copy_msghdr+0x160/0x160 [ 1047.341303] ? lock_downgrade+0x6d0/0x6d0 [ 1047.341816] ? find_held_lock+0x2c/0x110 [ 1047.342331] ? __fget_files+0x296/0x4c0 [ 1047.342834] ? __fget_light+0xea/0x290 [ 1047.343319] __sys_sendmsg+0xe5/0x1b0 [ 1047.343806] ? __sys_sendmsg_sock+0x40/0x40 [ 1047.344337] ? rcu_read_lock_any_held+0x75/0xa0 [ 1047.344922] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1047.345573] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1047.346204] ? trace_hardirqs_on+0x5b/0x180 [ 1047.346750] do_syscall_64+0x33/0x40 [ 1047.347211] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1047.347849] RIP: 0033:0x7fed842aab19 [ 1047.348306] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1047.350587] RSP: 002b:00007fed81820188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1047.351516] RAX: ffffffffffffffda RBX: 00007fed843bdf60 RCX: 00007fed842aab19 [ 1047.352393] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1047.353287] RBP: 00007fed818201d0 R08: 0000000000000000 R09: 0000000000000000 [ 1047.354160] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1047.355045] R13: 00007ffe3d75192f R14: 00007fed81820300 R15: 0000000000022000 [ 1047.478472] FAULT_INJECTION: forcing a failure. [ 1047.478472] name failslab, interval 1, probability 0, space 0, times 0 [ 1047.480142] CPU: 0 PID: 9843 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 1047.481050] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1047.482011] Call Trace: [ 1047.482322] dump_stack+0x107/0x167 [ 1047.482754] should_fail.cold+0x5/0xa [ 1047.483208] should_failslab+0x5/0x20 [ 1047.483651] __kmalloc_track_caller+0x79/0x370 [ 1047.484206] ? kasprintf+0xbb/0xf0 [ 1047.484625] kvasprintf+0xb5/0x150 [ 1047.485036] ? bust_spinlocks+0xe0/0xe0 [ 1047.485496] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1047.486105] ? get_random_u32+0x3cb/0x670 [ 1047.486593] kasprintf+0xbb/0xf0 [ 1047.486987] ? kvasprintf_const+0x1a0/0x1a0 [ 1047.487495] ? lockdep_init_map_type+0x2c7/0x780 [ 1047.488064] ? lockdep_init_map_type+0x2c7/0x780 [ 1047.488623] ieee80211_alloc_led_names+0x82/0x420 [ 1047.489187] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1047.489733] ? trace_hardirqs_on+0x5b/0x180 [ 1047.490244] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1047.490807] ? ____sys_sendmsg+0x70d/0x870 [ 1047.491303] ? ___sys_sendmsg+0xf3/0x170 [ 1047.491773] ? __sys_sendmsg+0xe5/0x1b0 [ 1047.492235] ? do_syscall_64+0x33/0x40 [ 1047.492686] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1047.493299] ? __lockdep_reset_lock+0x180/0x180 [ 1047.493839] ? lock_acquire+0x197/0x470 [ 1047.494306] ? create_object.isra.0+0x3ad/0xa20 [ 1047.494849] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1047.495398] ? __kmalloc+0x16e/0x390 [ 1047.495840] hwsim_new_radio_nl+0x991/0x1080 [ 1047.496353] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1047.496970] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1047.497737] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1047.498493] genl_family_rcv_msg_doit+0x22d/0x330 [ 1047.499057] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1047.499814] ? cap_capable+0x1d6/0x240 [ 1047.500267] ? ns_capable+0xe2/0x110 [ 1047.500694] genl_rcv_msg+0x33c/0x5a0 [ 1047.501135] ? genl_get_cmd+0x480/0x480 [ 1047.501587] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1047.502180] ? lock_release+0x680/0x680 [ 1047.502634] ? __lockdep_reset_lock+0x180/0x180 [ 1047.503166] netlink_rcv_skb+0x14b/0x430 [ 1047.503631] ? genl_get_cmd+0x480/0x480 [ 1047.504103] ? netlink_ack+0xab0/0xab0 [ 1047.504564] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1047.505088] ? is_vmalloc_addr+0x7b/0xb0 [ 1047.505550] genl_rcv+0x24/0x40 [ 1047.505928] netlink_unicast+0x549/0x7f0 [ 1047.506393] ? netlink_attachskb+0x870/0x870 [ 1047.506897] ? __virt_addr_valid+0x128/0x350 [ 1047.507407] netlink_sendmsg+0x90f/0xdf0 [ 1047.507879] ? netlink_unicast+0x7f0/0x7f0 [ 1047.508374] ? netlink_unicast+0x7f0/0x7f0 [ 1047.508855] __sock_sendmsg+0x154/0x190 [ 1047.509315] ____sys_sendmsg+0x70d/0x870 [ 1047.509783] ? sock_write_iter+0x3d0/0x3d0 [ 1047.510263] ? do_recvmmsg+0x6d0/0x6d0 [ 1047.510708] ? perf_trace_lock+0xac/0x490 [ 1047.511189] ? __lockdep_reset_lock+0x180/0x180 [ 1047.511730] ? perf_trace_lock+0xac/0x490 [ 1047.512200] ? SOFTIRQ_verbose+0x10/0x10 [ 1047.512668] ___sys_sendmsg+0xf3/0x170 [ 1047.513124] ? sendmsg_copy_msghdr+0x160/0x160 [ 1047.513653] ? lock_downgrade+0x6d0/0x6d0 [ 1047.514138] ? find_held_lock+0x2c/0x110 [ 1047.514602] ? __fget_files+0x296/0x4c0 [ 1047.515065] ? __fget_light+0xea/0x290 [ 1047.515507] __sys_sendmsg+0xe5/0x1b0 [ 1047.515948] ? __sys_sendmsg_sock+0x40/0x40 [ 1047.516443] ? rcu_read_lock_any_held+0x75/0xa0 [ 1047.516986] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1047.517586] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1047.518170] ? trace_hardirqs_on+0x5b/0x180 [ 1047.518664] do_syscall_64+0x33/0x40 [ 1047.519086] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1047.519673] RIP: 0033:0x7f59b4343b19 [ 1047.520107] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1047.522192] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1047.523052] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 1047.523862] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1047.524680] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1047.525497] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1047.526310] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 [ 1047.527730] EXT4-fs (loop6): VFS: Can't find ext4 filesystem [ 1047.553591] FAULT_INJECTION: forcing a failure. [ 1047.553591] name failslab, interval 1, probability 0, space 0, times 0 [ 1047.557347] CPU: 1 PID: 9844 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1047.558745] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1047.560429] Call Trace: [ 1047.560984] dump_stack+0x107/0x167 [ 1047.561732] should_fail.cold+0x5/0xa [ 1047.562527] should_failslab+0x5/0x20 [ 1047.563301] __kmalloc_track_caller+0x79/0x370 [ 1047.564242] ? kvasprintf_const+0x60/0x1a0 [ 1047.565112] kvasprintf+0xb5/0x150 [ 1047.565835] ? bust_spinlocks+0xe0/0xe0 [ 1047.566650] ? lock_release+0x680/0x680 [ 1047.567455] ? find_held_lock+0x2c/0x110 [ 1047.568313] kvasprintf_const+0x60/0x1a0 [ 1047.569142] kobject_set_name_vargs+0x56/0x150 [ 1047.570068] dev_set_name+0xbb/0xf0 [ 1047.570813] ? device_initialize+0x620/0x620 [ 1047.571712] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1047.572782] ? kmalloc_order+0xfe/0x160 [ 1047.573602] wiphy_new_nm+0x805/0x1e00 [ 1047.574406] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1047.575347] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1047.576414] ? __local_bh_enable_ip+0x9d/0x100 [ 1047.577336] ? trace_hardirqs_on+0x5b/0x180 [ 1047.578216] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1047.579207] ? ____sys_sendmsg+0x70d/0x870 [ 1047.580075] ? ___sys_sendmsg+0xf3/0x170 [ 1047.580898] ? __sys_sendmsg+0xe5/0x1b0 [ 1047.581706] ? do_syscall_64+0x33/0x40 [ 1047.582489] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1047.583566] ? __lockdep_reset_lock+0x180/0x180 [ 1047.584556] ? lock_acquire+0x197/0x470 [ 1047.585366] ? create_object.isra.0+0x3ad/0xa20 [ 1047.586317] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1047.587268] ? __kmalloc+0x16e/0x390 [ 1047.588049] hwsim_new_radio_nl+0x991/0x1080 [ 1047.588945] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1047.590010] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1047.591339] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1047.592710] genl_family_rcv_msg_doit+0x22d/0x330 [ 1047.593692] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1047.595024] ? cap_capable+0x1d6/0x240 [ 1047.595839] ? ns_capable+0xe2/0x110 [ 1047.596598] genl_rcv_msg+0x33c/0x5a0 [ 1047.597373] ? genl_get_cmd+0x480/0x480 [ 1047.598179] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1047.599229] ? lock_release+0x680/0x680 [ 1047.600050] ? __lockdep_reset_lock+0x180/0x180 [ 1047.600997] netlink_rcv_skb+0x14b/0x430 [ 1047.601822] ? genl_get_cmd+0x480/0x480 [ 1047.602630] ? netlink_ack+0xab0/0xab0 [ 1047.603439] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1047.604372] ? is_vmalloc_addr+0x7b/0xb0 [ 1047.605199] genl_rcv+0x24/0x40 [ 1047.605866] netlink_unicast+0x549/0x7f0 [ 1047.606698] ? netlink_attachskb+0x870/0x870 [ 1047.607589] ? __virt_addr_valid+0x128/0x350 [ 1047.608501] netlink_sendmsg+0x90f/0xdf0 [ 1047.609348] ? netlink_unicast+0x7f0/0x7f0 [ 1047.610222] ? netlink_unicast+0x7f0/0x7f0 [ 1047.611100] __sock_sendmsg+0x154/0x190 [ 1047.611927] ____sys_sendmsg+0x70d/0x870 12:03:19 executing program 0: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = openat$incfs(0xffffffffffffff9c, &(0x7f0000001700)='.log\x00', 0x8180, 0x88) setsockopt$inet6_group_source_req(r1, 0x29, 0x2c, &(0x7f0000001740)={0x8001, {{0xa, 0x4e24, 0xfffffffc, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0xff}}, {{0xa, 0x4e21, 0xd7fa, @rand_addr=' \x01\x00', 0x8}}}, 0x108) setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000040)={0x0, {{0xa, 0x0, 0x0, @mcast1}}, {{0xa, 0x0, 0x0, @private1}}}, 0x108) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_udp_encap(r2, 0x11, 0xb, &(0x7f0000000600)=0x5, 0x4) setsockopt$inet6_group_source_req(r2, 0x29, 0x2e, &(0x7f0000000180)={0x4637, {{0xa, 0x4e24, 0x42, @ipv4={'\x00', '\xff\xff', @loopback}, 0x3ff}}, {{0xa, 0x4e22, 0x8, @mcast2, 0x1}}}, 0x108) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_group_source_req(r3, 0x29, 0x2e, &(0x7f0000000040)={0x6, {{0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x3f}}}, {{0xa, 0x0, 0xfffffff8, @private1, 0x2}}}, 0x108) setsockopt$inet6_MCAST_MSFILTER(r3, 0x29, 0x30, &(0x7f0000000300)=ANY=[@ANYBLOB="03000000000000000a00000000000000ff010000000000000000000000000001000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000100"/144], 0x90) [ 1047.612766] ? sock_write_iter+0x3d0/0x3d0 [ 1047.613808] ? do_recvmmsg+0x6d0/0x6d0 [ 1047.614600] ? perf_trace_lock+0xac/0x490 [ 1047.615460] ? __lockdep_reset_lock+0x180/0x180 [ 1047.616407] ? perf_trace_lock+0xac/0x490 [ 1047.617258] ? SOFTIRQ_verbose+0x10/0x10 [ 1047.618089] ___sys_sendmsg+0xf3/0x170 [ 1047.618889] ? sendmsg_copy_msghdr+0x160/0x160 [ 1047.619843] ? lock_downgrade+0x6d0/0x6d0 [ 1047.620704] ? find_held_lock+0x2c/0x110 [ 1047.621544] ? __fget_files+0x296/0x4c0 [ 1047.622377] ? __fget_light+0xea/0x290 [ 1047.623180] __sys_sendmsg+0xe5/0x1b0 [ 1047.623960] ? __sys_sendmsg_sock+0x40/0x40 [ 1047.624839] ? rcu_read_lock_any_held+0x75/0xa0 [ 1047.625803] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1047.626873] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1047.627948] ? trace_hardirqs_on+0x5b/0x180 [ 1047.628835] do_syscall_64+0x33/0x40 [ 1047.629589] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1047.630635] RIP: 0033:0x7fb858d1fb19 [ 1047.631388] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1047.635115] RSP: 002b:00007fb856295188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1047.636683] RAX: ffffffffffffffda RBX: 00007fb858e32f60 RCX: 00007fb858d1fb19 [ 1047.638122] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1047.639710] RBP: 00007fb8562951d0 R08: 0000000000000000 R09: 0000000000000000 [ 1047.641163] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1047.642599] R13: 00007ffde2c0b16f R14: 00007fb856295300 R15: 0000000000022000 12:03:19 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 10) 12:03:19 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 19) [ 1047.684014] FAULT_INJECTION: forcing a failure. [ 1047.684014] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1047.685533] CPU: 0 PID: 9865 Comm: syz-executor.3 Not tainted 5.10.199 #1 [ 1047.686279] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1047.687301] Call Trace: [ 1047.687611] dump_stack+0x107/0x167 [ 1047.688019] should_fail.cold+0x5/0xa [ 1047.688447] __alloc_pages_nodemask+0x182/0x600 [ 1047.688958] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1047.689611] ? __is_insn_slot_addr+0x14c/0x290 [ 1047.690115] ? lock_chain_count+0x20/0x20 [ 1047.690587] ? __kernel_text_address+0x9/0x40 [ 1047.691088] ? __lockdep_reset_lock+0x180/0x180 [ 1047.691601] alloc_pages_current+0x187/0x280 [ 1047.692098] kmalloc_order+0x35/0x160 [ 1047.692513] kmalloc_order_trace+0x14/0xa0 [ 1047.692994] wiphy_new_nm+0x6f3/0x1e00 [ 1047.693442] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1047.693966] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1047.694535] ? __local_bh_enable_ip+0x9d/0x100 [ 1047.695051] ? trace_hardirqs_on+0x5b/0x180 [ 1047.695536] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1047.696106] ? ____sys_sendmsg+0x70d/0x870 [ 1047.696568] ? ___sys_sendmsg+0xf3/0x170 [ 1047.697026] ? __sys_sendmsg+0xe5/0x1b0 [ 1047.697465] ? do_syscall_64+0x33/0x40 [ 1047.697912] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1047.698487] ? __lockdep_reset_lock+0x180/0x180 [ 1047.699012] ? lock_acquire+0x197/0x470 [ 1047.699446] ? create_object.isra.0+0x3ad/0xa20 [ 1047.699988] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1047.700513] ? __kmalloc+0x16e/0x390 [ 1047.700920] hwsim_new_radio_nl+0x991/0x1080 [ 1047.701421] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1047.701993] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1047.702738] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1047.703452] genl_family_rcv_msg_doit+0x22d/0x330 [ 1047.704017] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1047.704756] ? cap_capable+0x1d6/0x240 [ 1047.705213] ? ns_capable+0xe2/0x110 [ 1047.705638] genl_rcv_msg+0x33c/0x5a0 [ 1047.706070] ? genl_get_cmd+0x480/0x480 [ 1047.706521] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1047.707083] ? lock_release+0x680/0x680 [ 1047.707544] ? __lockdep_reset_lock+0x180/0x180 [ 1047.708058] netlink_rcv_skb+0x14b/0x430 [ 1047.708526] ? genl_get_cmd+0x480/0x480 [ 1047.708951] ? netlink_ack+0xab0/0xab0 [ 1047.709409] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1047.709905] ? is_vmalloc_addr+0x7b/0xb0 [ 1047.710377] genl_rcv+0x24/0x40 [ 1047.710732] netlink_unicast+0x549/0x7f0 [ 1047.711194] ? netlink_attachskb+0x870/0x870 [ 1047.711672] ? __virt_addr_valid+0x128/0x350 [ 1047.712188] netlink_sendmsg+0x90f/0xdf0 [ 1047.712644] ? netlink_unicast+0x7f0/0x7f0 [ 1047.713123] ? netlink_unicast+0x7f0/0x7f0 [ 1047.713603] __sock_sendmsg+0x154/0x190 [ 1047.714047] ____sys_sendmsg+0x70d/0x870 [ 1047.714500] ? sock_write_iter+0x3d0/0x3d0 [ 1047.714983] ? do_recvmmsg+0x6d0/0x6d0 [ 1047.715425] ? perf_trace_lock+0xac/0x490 [ 1047.715890] ? __lockdep_reset_lock+0x180/0x180 [ 1047.716424] ? perf_trace_lock+0xac/0x490 [ 1047.716870] ? SOFTIRQ_verbose+0x10/0x10 [ 1047.717331] ___sys_sendmsg+0xf3/0x170 [ 1047.717763] ? sendmsg_copy_msghdr+0x160/0x160 [ 1047.718290] ? lock_downgrade+0x6d0/0x6d0 [ 1047.718739] ? find_held_lock+0x2c/0x110 [ 1047.719219] ? __fget_files+0x296/0x4c0 [ 1047.719652] ? __fget_light+0xea/0x290 [ 1047.720116] __sys_sendmsg+0xe5/0x1b0 [ 1047.720540] ? __sys_sendmsg_sock+0x40/0x40 [ 1047.721027] ? rcu_read_lock_any_held+0x75/0xa0 [ 1047.721565] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1047.722140] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1047.722726] ? trace_hardirqs_on+0x5b/0x180 [ 1047.723194] do_syscall_64+0x33/0x40 [ 1047.723626] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1047.724193] RIP: 0033:0x7fed842aab19 [ 1047.724620] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1047.726664] RSP: 002b:00007fed81820188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1047.727523] RAX: ffffffffffffffda RBX: 00007fed843bdf60 RCX: 00007fed842aab19 [ 1047.728330] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1047.729128] RBP: 00007fed818201d0 R08: 0000000000000000 R09: 0000000000000000 [ 1047.729928] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1047.730727] R13: 00007ffe3d75192f R14: 00007fed81820300 R15: 0000000000022000 12:03:19 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 13) [ 1047.742204] FAULT_INJECTION: forcing a failure. [ 1047.742204] name failslab, interval 1, probability 0, space 0, times 0 [ 1047.743598] CPU: 0 PID: 9868 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1047.744435] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1047.745362] Call Trace: [ 1047.745673] dump_stack+0x107/0x167 [ 1047.746101] should_fail.cold+0x5/0xa [ 1047.746551] ? create_object.isra.0+0x3a/0xa20 [ 1047.747076] should_failslab+0x5/0x20 [ 1047.747527] kmem_cache_alloc+0x5b/0x310 [ 1047.748026] ? vsnprintf+0x4ba/0x1600 [ 1047.748488] create_object.isra.0+0x3a/0xa20 [ 1047.749011] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1047.749609] __kmalloc_track_caller+0x177/0x370 [ 1047.750153] ? kvasprintf_const+0x60/0x1a0 [ 1047.750647] kvasprintf+0xb5/0x150 [ 1047.751064] ? bust_spinlocks+0xe0/0xe0 [ 1047.751529] ? lock_release+0x680/0x680 [ 1047.751971] ? find_held_lock+0x2c/0x110 [ 1047.752462] kvasprintf_const+0x60/0x1a0 [ 1047.752933] kobject_set_name_vargs+0x56/0x150 [ 1047.753459] dev_set_name+0xbb/0xf0 [ 1047.753875] ? device_initialize+0x620/0x620 [ 1047.754383] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1047.754989] ? kmalloc_order+0xfe/0x160 [ 1047.755464] wiphy_new_nm+0x805/0x1e00 [ 1047.755909] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1047.756454] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1047.757045] ? __local_bh_enable_ip+0x9d/0x100 [ 1047.757569] ? trace_hardirqs_on+0x5b/0x180 [ 1047.758049] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1047.758604] ? ____sys_sendmsg+0x70d/0x870 [ 1047.759088] ? ___sys_sendmsg+0xf3/0x170 [ 1047.759567] ? __sys_sendmsg+0xe5/0x1b0 [ 1047.760021] ? do_syscall_64+0x33/0x40 [ 1047.760487] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1047.761080] ? __lockdep_reset_lock+0x180/0x180 [ 1047.761611] ? lock_acquire+0x197/0x470 [ 1047.762070] ? create_object.isra.0+0x3ad/0xa20 [ 1047.762613] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1047.763133] ? __kmalloc+0x16e/0x390 [ 1047.763576] hwsim_new_radio_nl+0x991/0x1080 [ 1047.764089] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1047.764705] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1047.765426] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1047.766182] genl_family_rcv_msg_doit+0x22d/0x330 [ 1047.766715] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1047.767473] ? cap_capable+0x1d6/0x240 [ 1047.767943] ? ns_capable+0xe2/0x110 [ 1047.768393] genl_rcv_msg+0x33c/0x5a0 [ 1047.768821] ? genl_get_cmd+0x480/0x480 [ 1047.769294] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1047.769874] ? lock_release+0x680/0x680 [ 1047.770334] ? __lockdep_reset_lock+0x180/0x180 [ 1047.770859] netlink_rcv_skb+0x14b/0x430 [ 1047.771338] ? genl_get_cmd+0x480/0x480 [ 1047.771784] ? netlink_ack+0xab0/0xab0 12:03:19 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 11) [ 1047.772251] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1047.772877] ? is_vmalloc_addr+0x7b/0xb0 [ 1047.773326] genl_rcv+0x24/0x40 [ 1047.773698] netlink_unicast+0x549/0x7f0 [ 1047.774158] ? netlink_attachskb+0x870/0x870 [ 1047.774654] ? __virt_addr_valid+0x128/0x350 [ 1047.775145] netlink_sendmsg+0x90f/0xdf0 [ 1047.775595] ? netlink_unicast+0x7f0/0x7f0 [ 1047.776091] ? netlink_unicast+0x7f0/0x7f0 [ 1047.776559] __sock_sendmsg+0x154/0x190 [ 1047.777003] ____sys_sendmsg+0x70d/0x870 [ 1047.777459] ? sock_write_iter+0x3d0/0x3d0 [ 1047.777926] ? do_recvmmsg+0x6d0/0x6d0 [ 1047.778361] ? perf_trace_lock+0xac/0x490 [ 1047.778827] ? __lockdep_reset_lock+0x180/0x180 [ 1047.779340] ? perf_trace_lock+0xac/0x490 [ 1047.779803] ? SOFTIRQ_verbose+0x10/0x10 [ 1047.780260] ___sys_sendmsg+0xf3/0x170 [ 1047.780692] ? sendmsg_copy_msghdr+0x160/0x160 [ 1047.781216] ? lock_downgrade+0x6d0/0x6d0 [ 1047.781699] ? find_held_lock+0x2c/0x110 [ 1047.782155] ? __fget_files+0x296/0x4c0 [ 1047.782633] ? __fget_light+0xea/0x290 [ 1047.783075] __sys_sendmsg+0xe5/0x1b0 [ 1047.783524] ? __sys_sendmsg_sock+0x40/0x40 [ 1047.784006] ? rcu_read_lock_any_held+0x75/0xa0 [ 1047.784556] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1047.785130] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1047.785717] ? trace_hardirqs_on+0x5b/0x180 [ 1047.786206] do_syscall_64+0x33/0x40 [ 1047.786647] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1047.787205] RIP: 0033:0x7fb858d1fb19 [ 1047.787640] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1047.789764] RSP: 002b:00007fb856295188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1047.790641] RAX: ffffffffffffffda RBX: 00007fb858e32f60 RCX: 00007fb858d1fb19 [ 1047.791447] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1047.792247] RBP: 00007fb8562951d0 R08: 0000000000000000 R09: 0000000000000000 [ 1047.793048] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1047.793842] R13: 00007ffde2c0b16f R14: 00007fb856295300 R15: 0000000000022000 [ 1047.807272] EXT4-fs (loop6): VFS: Can't find ext4 filesystem 12:03:19 executing program 1: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r0 = creat(&(0x7f0000000080)='./file0\x00', 0x10) renameat2(r0, 0xfffffffffffffffd, r0, &(0x7f00000000c0)='./file0\x00', 0x1) perf_event_open(&(0x7f0000001d80)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) mmap(&(0x7f0000ffa000/0x1000)=nil, 0x1000, 0x3000005, 0x12, r1, 0x0) 12:03:19 executing program 6: getxattr(&(0x7f0000000040)='./file0\x00', &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x8}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000080)={'wpan0\x00'}) perf_event_open(&(0x7f0000000140)={0x2, 0x80, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x1, 0x0, 0x0, 0x8, 0x0, 0x7, 0x0, 0x19d4, 0x0, 0x7ff}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) inotify_add_watch(0xffffffffffffffff, 0x0, 0x2000003) r1 = syz_io_uring_setup(0x3ac4, &(0x7f00000002c0)={0x0, 0x0, 0x1}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000001c0)=0x0) r4 = openat$full(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r4}, 0x0) close(r4) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r6 = socket$inet(0x2, 0x2, 0x0) ioctl$sock_inet_SIOCSARP(r6, 0x8955, &(0x7f0000001780)={{0x2, 0x0, @remote}, {0x0, @multicast}, 0x0, {0x2, 0x0, @multicast1}, 'wg2\x00'}) syz_io_uring_submit(r5, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0) syz_open_procfs(0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) 12:03:19 executing program 0: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x40, 0x0, 0x0, 0x0, 0x5e, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x10000, 0x0, 0x2, 0xe, 0x1, 0x2}, 0x0, 0x7, 0xffffffffffffffff, 0xa) r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000480), 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4, 0x2}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000b80)=ANY=[@ANYRES32]) lseek(0xffffffffffffffff, 0x0, 0x0) ioctl$TIOCL_SCROLLCONSOLE(r0, 0x5453, 0x0) r2 = syz_open_dev$tty1(0xc, 0x4, 0x4) ioctl$KDSETKEYCODE(r2, 0x4b4d, &(0x7f0000000040)={0x4, 0x4}) fcntl$getown(r0, 0x9) socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_setup(0x752d, &(0x7f0000000380)={0x0, 0x52b2, 0x2, 0x1, 0x68}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f00000001c0), &(0x7f0000000400)) clock_gettime(0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x46e2, 0x7d) r4 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) copy_file_range(r3, &(0x7f0000000100)=0xfffffffffffff674, r4, 0x0, 0x0, 0x0) ioctl$INCFS_IOC_GET_FILLED_BLOCKS(r4, 0x80286722, &(0x7f0000000180)={&(0x7f0000000080)=""/204, 0xcc, 0x10f3, 0x1}) r5 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00') readv(r5, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x3000001, 0x8010, r5, 0x0) 12:03:19 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r1 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) r2 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout_data(r2, 0x107, 0xa, 0x0, 0x0) readahead(r2, 0x9, 0x6) chown(&(0x7f0000000080)='./file0\x00', 0xffffffffffffffff, 0x0) writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0) socket$unix(0x1, 0x5, 0x0) bind$unix(0xffffffffffffffff, 0x0, 0x0) fallocate(r3, 0x0, 0x0, 0x8000) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ioctl$FS_IOC_RESVSP(r4, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x4000006}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$packet_rx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f0000000180)=@req={0x4, 0x7, 0xc9ee, 0x401}, 0x10) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r1, 0x2}) [ 1048.038417] FAULT_INJECTION: forcing a failure. [ 1048.038417] name failslab, interval 1, probability 0, space 0, times 0 [ 1048.040865] CPU: 1 PID: 9871 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 1048.042286] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1048.043993] Call Trace: [ 1048.044542] dump_stack+0x107/0x167 [ 1048.045289] should_fail.cold+0x5/0xa [ 1048.046068] ? create_object.isra.0+0x3a/0xa20 [ 1048.047005] should_failslab+0x5/0x20 [ 1048.047806] kmem_cache_alloc+0x5b/0x310 [ 1048.048636] ? vsnprintf+0x4ba/0x1600 [ 1048.049413] create_object.isra.0+0x3a/0xa20 [ 1048.050321] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1048.051391] __kmalloc_track_caller+0x177/0x370 [ 1048.052349] ? kasprintf+0xbb/0xf0 [ 1048.053086] kvasprintf+0xb5/0x150 [ 1048.053807] ? bust_spinlocks+0xe0/0xe0 [ 1048.054615] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1048.055717] ? get_random_u32+0x3cb/0x670 [ 1048.056573] kasprintf+0xbb/0xf0 [ 1048.057270] ? kvasprintf_const+0x1a0/0x1a0 [ 1048.058164] ? lockdep_init_map_type+0x2c7/0x780 [ 1048.059143] ? lockdep_init_map_type+0x2c7/0x780 [ 1048.060136] ieee80211_alloc_led_names+0x82/0x420 [ 1048.061126] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1048.062099] ? trace_hardirqs_on+0x5b/0x180 [ 1048.062993] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1048.064006] ? ____sys_sendmsg+0x70d/0x870 [ 1048.064869] ? ___sys_sendmsg+0xf3/0x170 [ 1048.065699] ? __sys_sendmsg+0xe5/0x1b0 [ 1048.066513] ? do_syscall_64+0x33/0x40 [ 1048.067311] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1048.068415] ? __lockdep_reset_lock+0x180/0x180 [ 1048.069362] ? lock_acquire+0x197/0x470 [ 1048.070183] ? create_object.isra.0+0x3ad/0xa20 [ 1048.071142] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1048.072112] ? __kmalloc+0x16e/0x390 [ 1048.072885] hwsim_new_radio_nl+0x991/0x1080 [ 1048.073796] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1048.074874] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1048.076221] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1048.077548] genl_family_rcv_msg_doit+0x22d/0x330 [ 1048.078538] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1048.079916] ? cap_capable+0x1d6/0x240 [ 1048.080730] ? ns_capable+0xe2/0x110 [ 1048.081490] genl_rcv_msg+0x33c/0x5a0 [ 1048.082277] ? genl_get_cmd+0x480/0x480 [ 1048.083092] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1048.084153] ? lock_release+0x680/0x680 [ 1048.084961] ? __lockdep_reset_lock+0x180/0x180 [ 1048.085909] netlink_rcv_skb+0x14b/0x430 [ 1048.086739] ? genl_get_cmd+0x480/0x480 [ 1048.087539] ? netlink_ack+0xab0/0xab0 [ 1048.088364] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1048.089283] ? is_vmalloc_addr+0x7b/0xb0 [ 1048.090109] genl_rcv+0x24/0x40 [ 1048.090768] netlink_unicast+0x549/0x7f0 [ 1048.091598] ? netlink_attachskb+0x870/0x870 [ 1048.092482] ? __virt_addr_valid+0x128/0x350 [ 1048.093381] netlink_sendmsg+0x90f/0xdf0 [ 1048.094224] ? netlink_unicast+0x7f0/0x7f0 [ 1048.095099] ? netlink_unicast+0x7f0/0x7f0 [ 1048.095981] __sock_sendmsg+0x154/0x190 [ 1048.096788] ____sys_sendmsg+0x70d/0x870 [ 1048.097624] ? sock_write_iter+0x3d0/0x3d0 [ 1048.098478] ? do_recvmmsg+0x6d0/0x6d0 [ 1048.099274] ? perf_trace_lock+0xac/0x490 [ 1048.100137] ? __lockdep_reset_lock+0x180/0x180 [ 1048.101086] ? perf_trace_lock+0xac/0x490 [ 1048.101923] ? SOFTIRQ_verbose+0x10/0x10 [ 1048.102759] ___sys_sendmsg+0xf3/0x170 [ 1048.103550] ? sendmsg_copy_msghdr+0x160/0x160 [ 1048.104493] ? lock_downgrade+0x6d0/0x6d0 [ 1048.105339] ? find_held_lock+0x2c/0x110 [ 1048.106171] ? __fget_files+0x296/0x4c0 [ 1048.106986] ? __fget_light+0xea/0x290 [ 1048.107788] __sys_sendmsg+0xe5/0x1b0 [ 1048.108556] ? __sys_sendmsg_sock+0x40/0x40 [ 1048.109426] ? rcu_read_lock_any_held+0x75/0xa0 [ 1048.110395] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1048.111449] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1048.112517] ? trace_hardirqs_on+0x5b/0x180 [ 1048.113401] do_syscall_64+0x33/0x40 [ 1048.114162] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1048.115193] RIP: 0033:0x7f59b4343b19 [ 1048.115959] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1048.119668] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1048.121237] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 1048.122670] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1048.124120] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1048.125560] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1048.126991] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 [ 1048.195077] FAULT_INJECTION: forcing a failure. [ 1048.195077] name failslab, interval 1, probability 0, space 0, times 0 [ 1048.196395] CPU: 0 PID: 9873 Comm: syz-executor.3 Not tainted 5.10.199 #1 [ 1048.197144] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1048.198057] Call Trace: [ 1048.198351] dump_stack+0x107/0x167 [ 1048.198766] should_fail.cold+0x5/0xa [ 1048.199181] ? create_object.isra.0+0x3a/0xa20 [ 1048.199712] should_failslab+0x5/0x20 [ 1048.200132] kmem_cache_alloc+0x5b/0x310 [ 1048.200595] create_object.isra.0+0x3a/0xa20 [ 1048.201098] ? kasan_unpoison_shadow+0x33/0x50 [ 1048.201617] kmalloc_order+0xfe/0x160 [ 1048.202045] kmalloc_order_trace+0x14/0xa0 [ 1048.202533] wiphy_new_nm+0x6f3/0x1e00 [ 1048.202977] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1048.203510] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1048.204115] ? __local_bh_enable_ip+0x9d/0x100 [ 1048.204638] ? trace_hardirqs_on+0x5b/0x180 [ 1048.205146] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1048.205698] ? ____sys_sendmsg+0x70d/0x870 [ 1048.206172] ? ___sys_sendmsg+0xf3/0x170 [ 1048.206630] ? __sys_sendmsg+0xe5/0x1b0 [ 1048.207080] ? do_syscall_64+0x33/0x40 [ 1048.207512] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1048.208095] ? __lockdep_reset_lock+0x180/0x180 [ 1048.208623] ? lock_acquire+0x197/0x470 [ 1048.209053] ? create_object.isra.0+0x3ad/0xa20 [ 1048.209607] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1048.210144] ? __kmalloc+0x16e/0x390 [ 1048.210566] hwsim_new_radio_nl+0x991/0x1080 [ 1048.211085] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1048.211714] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1048.212495] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1048.213250] genl_family_rcv_msg_doit+0x22d/0x330 [ 1048.213811] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1048.214575] ? cap_capable+0x1d6/0x240 [ 1048.215039] ? ns_capable+0xe2/0x110 [ 1048.215459] genl_rcv_msg+0x33c/0x5a0 [ 1048.215897] ? genl_get_cmd+0x480/0x480 [ 1048.216344] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1048.216924] ? lock_release+0x680/0x680 [ 1048.217394] ? __lockdep_reset_lock+0x180/0x180 [ 1048.217934] netlink_rcv_skb+0x14b/0x430 [ 1048.218399] ? genl_get_cmd+0x480/0x480 [ 1048.218862] ? netlink_ack+0xab0/0xab0 [ 1048.219324] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1048.219861] ? is_vmalloc_addr+0x7b/0xb0 [ 1048.220332] genl_rcv+0x24/0x40 [ 1048.220715] netlink_unicast+0x549/0x7f0 [ 1048.221187] ? netlink_attachskb+0x870/0x870 [ 1048.221693] ? __virt_addr_valid+0x128/0x350 [ 1048.222207] netlink_sendmsg+0x90f/0xdf0 [ 1048.222680] ? netlink_unicast+0x7f0/0x7f0 [ 1048.223170] ? netlink_unicast+0x7f0/0x7f0 [ 1048.223644] __sock_sendmsg+0x154/0x190 [ 1048.224107] ____sys_sendmsg+0x70d/0x870 [ 1048.224582] ? sock_write_iter+0x3d0/0x3d0 [ 1048.225073] ? do_recvmmsg+0x6d0/0x6d0 [ 1048.225521] ? perf_trace_lock+0xac/0x490 [ 1048.226002] ? __lockdep_reset_lock+0x180/0x180 [ 1048.226534] ? perf_trace_lock+0xac/0x490 [ 1048.227013] ? SOFTIRQ_verbose+0x10/0x10 [ 1048.227488] ___sys_sendmsg+0xf3/0x170 [ 1048.227931] ? sendmsg_copy_msghdr+0x160/0x160 [ 1048.228460] ? lock_downgrade+0x6d0/0x6d0 [ 1048.228938] ? find_held_lock+0x2c/0x110 [ 1048.229413] ? __fget_files+0x296/0x4c0 [ 1048.229881] ? __fget_light+0xea/0x290 [ 1048.230321] __sys_sendmsg+0xe5/0x1b0 [ 1048.230746] ? __sys_sendmsg_sock+0x40/0x40 [ 1048.231229] ? rcu_read_lock_any_held+0x75/0xa0 [ 1048.231769] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1048.232368] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1048.232964] ? trace_hardirqs_on+0x5b/0x180 [ 1048.233466] do_syscall_64+0x33/0x40 [ 1048.233899] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1048.234494] RIP: 0033:0x7fed842aab19 [ 1048.234930] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1048.237050] RSP: 002b:00007fed81820188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1048.237946] RAX: ffffffffffffffda RBX: 00007fed843bdf60 RCX: 00007fed842aab19 [ 1048.238760] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1048.239584] RBP: 00007fed818201d0 R08: 0000000000000000 R09: 0000000000000000 [ 1048.240422] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1048.241239] R13: 00007ffe3d75192f R14: 00007fed81820300 R15: 0000000000022000 12:03:19 executing program 6: fcntl$lock(0xffffffffffffffff, 0x0, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x4, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x8000}, 0x0, 0x0, 0x3, 0x0, 0x0, 0xa418b6d, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000280)=ANY=[@ANYBLOB="010089bad7ad886607a9220000000000", @ANYRES16=r0, @ANYRES32=r0]) r1 = syz_open_dev$evdev(&(0x7f0000000000), 0x401, 0x90040) syz_io_uring_setup(0x28f3, &(0x7f0000000100)={0x0, 0x9d, 0x10, 0x1, 0x209}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000240)) r2 = open_tree(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x8001) ioctl$sock_SIOCADDDLCI(r2, 0x8980, &(0x7f0000000040)={'vlan1\x00', 0x7}) ioctl$sock_inet_SIOCGIFADDR(0xffffffffffffffff, 0x8915, &(0x7f0000000380)={'veth0_vlan\x00', {0x2, 0x0, @loopback}}) openat(r2, &(0x7f0000000080)='./file0\x00', 0x106000, 0xe0) ioctl$BTRFS_IOC_WAIT_SYNC(0xffffffffffffffff, 0x40089416, &(0x7f00000000c0)) dup2(r0, r1) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) r4 = dup(r3) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(r4, 0x8936, &(0x7f0000000080)={@local, 0x78, r6}) ioctl$sock_inet6_SIOCDIFADDR(r4, 0x8916, &(0x7f0000000000)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, r6}) sendmsg$TIPC_CMD_GET_LINKS(r4, &(0x7f0000000340)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x100, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x11, 0xff}}, ["", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) 12:03:19 executing program 4: r0 = memfd_create(&(0x7f0000000180)='\xbf4\xa3\xb7\x99\x04\xfb\xce\x98\xc1\x83\xf5\x89juz\xd9\xb6\xca\x99\xdb\xd4\v\x1b\"\xb4\xd8\xff\xa4\f}\xaa\xddP8\x81\xec\xc8\x80wP\xc9b\xa3\x8f\xe1\xedfA\xf3G\xf5m\x11\xe4\xe5\xc7\xa4\xc5\nv\xbb\xa3\xb3\x0f\x12y\"\x8dJ\x06\xa4\x97\xd5\x16\x11\t\xb0w\x8d\x17^\x03\x81\x0e{\xa7\xf8\xa5.\x06\x83\vJ\xb5z\x8c\x1fh\xf7{\xb4\xc2\xa6\b\x13\xd2\xcfK&I\x96~v\xf1\xbd\xf5\xfd\x85\xb8\x15\x92P\xc6n<#\x86\xac\x92\x1a\xe6F\xec\xb8\x1cBf\xc7\xa1]\xf7_\xfd\x1f\xaek\xaf\x1c\xc5\xb5u\xdd\x01\x01\x05\x87\x8f8\x90#;\xb3\x84\xabl\xa7#H\x1e\xdc\xbd\x91\x16\x8e\xc1\xb4Z\xb0\x93^$\xc7b\xdeb6\xea<\xec\xd4{\x1bB\xacc\xcd\x83\xbd\xa4\n\xc7\xa21\xd7\xcb]E0\xa3\x95\xd4\xcf\xb4\x83\xa0\xe1Yz\xe5T\x83l\xd0\xd8i\ve\xff\xefd\xc6\x13R\a\xf8\x1a\xb7\xaa\xb0ir,3\x91V\x91\xec\a\xaf\xa4\x06/_\x81W\xc6\x83\xaf\xb9\x05\xf2\xb1c\xef\b\xdan\b2\xe9\xd1K/}u\xe4 \xff\xe4\f\xea\xa0\x91?\xca\xd2H\x01\t\xe0\xe3\xb4/\xf8\x1c\xf5[Z\xf0\xc9\xc3\t\x82\xf2m\xbe\x91\x98\xb0\xe0_\xb7\x14o\x88U<\t\x95\x7f\xbd\xe8\xf5f\x96\xd1\xc64\r0}D\x9e4\xb8\xc5^lN=w\x81\x96\xdc\xe0s\vXdYH\x00'/362, 0x0) r1 = inotify_init() fallocate(r1, 0x0, 0x2, 0x453) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000140), 0x82400, 0x0) ioctl$TIOCVHANGUP(r2, 0x5437, 0x0) r3 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000000)='ns/time_for_children\x00') r4 = syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r4, 0x8000000) io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0) copy_file_range(r3, &(0x7f0000000040), r4, 0x0, 0x20, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 12:03:19 executing program 1: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r1, &(0x7f0000000600)={0xa, 0x0, 0x0, @local, 0x3}, 0x1c) io_submit(0x0, 0x1, &(0x7f00000000c0)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0xf001, r0, &(0x7f00000001c0)="5c370970db4b85d35fd7b3ee6cb02dfd1be05a172762aed001135e252341285a698ef3bacad03cd81d2cae6c8d04bec7a010bb92e1a6a234a72d19f70654c323f74208efa1c7b6e0c949ab87be1c6428f3e654a39c9d12156daf5ae5889eea9cd3e4103eacd96cc175a2b0f2108087493fdc9a944512abeaefe2ffc026cc4420d11c37b310f91d5b0c4176f9b1d585d8fafd1619b27a886add402f8e9e2faa936fb0a81eec0b6847a7bc223f393858660113e94739c2b7d1ef87e06bfdf0563a00c4f8ea539ab43839167604954db17d2b3bdf92bee4bc3b7eadfc750ed205b80c", 0xe1, 0x1000, 0x0, 0x3}]) sendmmsg$inet6(r1, &(0x7f0000004d00), 0x7ffff000, 0x811) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000900), r3) sendmsg$IEEE802154_ADD_IFACE(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)={0x2c, r4, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy1\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x2c}}, 0x0) ioctl$FS_IOC_SETVERSION(r1, 0x40087602, &(0x7f0000000000)=0x1f) 12:03:19 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 14) 12:03:19 executing program 0: sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0xff, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x843, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa) setresuid(0x0, 0x0, 0x0) fchown(r0, 0x0, 0xee01) openat(0xffffffffffffffff, &(0x7f0000000100)='./file0\x00', 0x10000, 0x9) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0xb4017a8758487d15, 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x109080, 0x20) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c) syz_genetlink_get_family_id$tipc(&(0x7f0000000040), r1) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) getsockopt$IPT_SO_GET_REVISION_TARGET(r1, 0x0, 0x43, &(0x7f0000000140)={'ah\x00'}, &(0x7f0000000180)=0x1e) sendfile(r2, r1, 0x0, 0x80464c453f) 12:03:19 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 20) 12:03:19 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) r0 = socket$netlink(0x10, 0x3, 0xc) sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000011c0)=ANY=[@ANYBLOB="280000001000"], 0x28}}, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) r3 = fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff) perf_event_open(&(0x7f0000000280)={0x0, 0x80, 0x0, 0x3, 0xd8, 0xff, 0x0, 0xdd6c, 0x13882, 0x4, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x7, 0x0, @perf_config_ext={0x7ff, 0xab4}, 0x0, 0x7f, 0x0, 0x5, 0x0, 0xa9, 0x4, 0x0, 0x2, 0x0, 0x400000000040}, 0x0, 0x1, r3, 0xb20d19c4de386f8d) sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000180)={&(0x7f0000000400)=ANY=[@ANYRES16=0x0, @ANYBLOB], 0x14}}, 0x4) ioctl$FITHAW(r1, 0xc0045878) [ 1048.391373] FAULT_INJECTION: forcing a failure. [ 1048.391373] name failslab, interval 1, probability 0, space 0, times 0 [ 1048.393752] CPU: 1 PID: 9894 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1048.395157] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1048.396870] Call Trace: [ 1048.397416] dump_stack+0x107/0x167 [ 1048.398182] should_fail.cold+0x5/0xa [ 1048.398975] ? rfkill_alloc+0xa6/0x2c0 [ 1048.399787] should_failslab+0x5/0x20 [ 1048.400568] __kmalloc+0x72/0x390 [ 1048.401288] rfkill_alloc+0xa6/0x2c0 [ 1048.402069] wiphy_new_nm+0x12a3/0x1e00 [ 1048.402893] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1048.403866] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1048.404932] ? __local_bh_enable_ip+0x9d/0x100 [ 1048.405861] ? trace_hardirqs_on+0x5b/0x180 [ 1048.406759] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1048.407762] ? ____sys_sendmsg+0x70d/0x870 [ 1048.408631] ? ___sys_sendmsg+0xf3/0x170 [ 1048.409458] ? __sys_sendmsg+0xe5/0x1b0 [ 1048.410290] ? do_syscall_64+0x33/0x40 [ 1048.411091] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1048.412210] ? __lockdep_reset_lock+0x180/0x180 [ 1048.413156] ? lock_acquire+0x197/0x470 [ 1048.413978] ? create_object.isra.0+0x3ad/0xa20 [ 1048.414943] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1048.415896] ? __kmalloc+0x16e/0x390 [ 1048.416665] hwsim_new_radio_nl+0x991/0x1080 [ 1048.417562] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1048.418634] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1048.419972] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1048.421311] genl_family_rcv_msg_doit+0x22d/0x330 [ 1048.422291] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1048.423645] ? cap_capable+0x1d6/0x240 [ 1048.424500] ? ns_capable+0xe2/0x110 [ 1048.425268] genl_rcv_msg+0x33c/0x5a0 [ 1048.426068] ? genl_get_cmd+0x480/0x480 [ 1048.426880] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1048.427953] ? lock_release+0x680/0x680 [ 1048.428772] ? __lockdep_reset_lock+0x180/0x180 [ 1048.429733] netlink_rcv_skb+0x14b/0x430 [ 1048.430557] ? genl_get_cmd+0x480/0x480 [ 1048.431376] ? netlink_ack+0xab0/0xab0 [ 1048.432206] ? netlink_deliver_tap+0x1c4/0xcd0 12:03:19 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000a00)=ANY=[], 0x98a) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x20) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f0000000080)={0x0, 0xfdfdffff, 0x102, 0x0, '\x00', [{}, {0x800, 0x0, 0x400000000000000}], ['\x00']}) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0xc02, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000001c0)={'macsec0\x00', &(0x7f0000000180)=@ethtool_channels={0x3c, 0x1, 0x3, 0x3, 0x2, 0x10001, 0x6, 0x7, 0x80000001}}) ioctl$SCSI_IOCTL_STOP_UNIT(r0, 0x6) unshare(0x48020200) [ 1048.433149] ? is_vmalloc_addr+0x7b/0xb0 [ 1048.434147] genl_rcv+0x24/0x40 [ 1048.434807] netlink_unicast+0x549/0x7f0 [ 1048.435648] ? netlink_attachskb+0x870/0x870 [ 1048.436546] ? __virt_addr_valid+0x128/0x350 [ 1048.437460] netlink_sendmsg+0x90f/0xdf0 [ 1048.438291] ? netlink_unicast+0x7f0/0x7f0 [ 1048.439172] ? netlink_unicast+0x7f0/0x7f0 [ 1048.440047] __sock_sendmsg+0x154/0x190 [ 1048.440852] ____sys_sendmsg+0x70d/0x870 [ 1048.441685] ? sock_write_iter+0x3d0/0x3d0 [ 1048.442537] ? do_recvmmsg+0x6d0/0x6d0 [ 1048.443341] ? perf_trace_lock+0xac/0x490 [ 1048.444193] ? __lockdep_reset_lock+0x180/0x180 [ 1048.445129] ? perf_trace_lock+0xac/0x490 [ 1048.445979] ? SOFTIRQ_verbose+0x10/0x10 [ 1048.446808] ___sys_sendmsg+0xf3/0x170 [ 1048.447616] ? sendmsg_copy_msghdr+0x160/0x160 [ 1048.448554] ? lock_downgrade+0x6d0/0x6d0 [ 1048.449394] ? find_held_lock+0x2c/0x110 [ 1048.450230] ? __fget_files+0x296/0x4c0 [ 1048.451047] ? __fget_light+0xea/0x290 [ 1048.451866] __sys_sendmsg+0xe5/0x1b0 [ 1048.452638] ? __sys_sendmsg_sock+0x40/0x40 [ 1048.453510] ? rcu_read_lock_any_held+0x75/0xa0 [ 1048.454480] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1048.455537] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1048.456577] ? trace_hardirqs_on+0x5b/0x180 [ 1048.457459] do_syscall_64+0x33/0x40 [ 1048.458215] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1048.459249] RIP: 0033:0x7fb858d1fb19 [ 1048.460025] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1048.463723] RSP: 002b:00007fb856295188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1048.465262] RAX: ffffffffffffffda RBX: 00007fb858e32f60 RCX: 00007fb858d1fb19 [ 1048.466699] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1048.468152] RBP: 00007fb8562951d0 R08: 0000000000000000 R09: 0000000000000000 [ 1048.469589] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1048.471033] R13: 00007ffde2c0b16f R14: 00007fb856295300 R15: 0000000000022000 [ 1048.473060] FAULT_INJECTION: forcing a failure. [ 1048.473060] name failslab, interval 1, probability 0, space 0, times 0 [ 1048.475782] CPU: 0 PID: 9907 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 1048.477184] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1048.478867] Call Trace: [ 1048.479411] dump_stack+0x107/0x167 [ 1048.480169] should_fail.cold+0x5/0xa [ 1048.480959] should_failslab+0x5/0x20 [ 1048.481738] __kmalloc_track_caller+0x79/0x370 [ 1048.482688] ? kasprintf+0xbb/0xf0 [ 1048.483431] kvasprintf+0xb5/0x150 [ 1048.484181] ? bust_spinlocks+0xe0/0xe0 [ 1048.484993] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1048.486086] ? get_random_u32+0x3cb/0x670 [ 1048.486949] kasprintf+0xbb/0xf0 [ 1048.487643] ? kvasprintf_const+0x1a0/0x1a0 [ 1048.488575] ? lockdep_init_map_type+0x2c7/0x780 [ 1048.489546] ? lockdep_init_map_type+0x2c7/0x780 [ 1048.490544] ieee80211_alloc_led_names+0x117/0x420 [ 1048.491558] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1048.492568] ? trace_hardirqs_on+0x5b/0x180 [ 1048.493457] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1048.494481] ? ____sys_sendmsg+0x70d/0x870 [ 1048.495357] ? ___sys_sendmsg+0xf3/0x170 [ 1048.496204] ? __sys_sendmsg+0xe5/0x1b0 [ 1048.497015] ? do_syscall_64+0x33/0x40 [ 1048.497822] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1048.498920] ? __lockdep_reset_lock+0x180/0x180 [ 1048.499908] ? lock_acquire+0x197/0x470 [ 1048.500720] ? create_object.isra.0+0x3ad/0xa20 [ 1048.501691] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1048.502641] ? __kmalloc+0x16e/0x390 [ 1048.503434] hwsim_new_radio_nl+0x991/0x1080 [ 1048.504355] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1048.505425] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1048.506784] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1048.508151] genl_family_rcv_msg_doit+0x22d/0x330 [ 1048.509137] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1048.510479] ? cap_capable+0x1d6/0x240 [ 1048.511289] ? ns_capable+0xe2/0x110 [ 1048.512079] genl_rcv_msg+0x33c/0x5a0 [ 1048.512870] ? genl_get_cmd+0x480/0x480 [ 1048.513682] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1048.514737] ? lock_release+0x680/0x680 [ 1048.515578] netlink_rcv_skb+0x14b/0x430 [ 1048.516440] ? genl_get_cmd+0x480/0x480 [ 1048.517267] ? netlink_ack+0xab0/0xab0 [ 1048.518074] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1048.519003] ? is_vmalloc_addr+0x7b/0xb0 [ 1048.519839] genl_rcv+0x24/0x40 [ 1048.520513] netlink_unicast+0x549/0x7f0 [ 1048.521366] ? netlink_attachskb+0x870/0x870 [ 1048.522264] ? __virt_addr_valid+0x128/0x350 [ 1048.523173] netlink_sendmsg+0x90f/0xdf0 [ 1048.524024] ? netlink_unicast+0x7f0/0x7f0 [ 1048.524908] ? netlink_unicast+0x7f0/0x7f0 [ 1048.525774] __sock_sendmsg+0x154/0x190 [ 1048.526587] ____sys_sendmsg+0x70d/0x870 [ 1048.527416] ? sock_write_iter+0x3d0/0x3d0 [ 1048.528291] ? do_recvmmsg+0x6d0/0x6d0 [ 1048.529092] ? perf_trace_lock+0xac/0x490 [ 1048.529961] ? __lockdep_reset_lock+0x180/0x180 [ 1048.530903] ? perf_trace_lock+0xac/0x490 [ 1048.531770] ? SOFTIRQ_verbose+0x10/0x10 [ 1048.532619] ___sys_sendmsg+0xf3/0x170 [ 1048.533432] ? sendmsg_copy_msghdr+0x160/0x160 [ 1048.534389] ? lock_downgrade+0x6d0/0x6d0 [ 1048.535255] ? find_held_lock+0x2c/0x110 [ 1048.536129] ? __fget_files+0x296/0x4c0 [ 1048.536978] ? __fget_light+0xea/0x290 [ 1048.537788] __sys_sendmsg+0xe5/0x1b0 [ 1048.538573] ? __sys_sendmsg_sock+0x40/0x40 [ 1048.539451] ? rcu_read_lock_any_held+0x75/0xa0 [ 1048.540429] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1048.541499] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1048.542566] ? trace_hardirqs_on+0x5b/0x180 [ 1048.543449] do_syscall_64+0x33/0x40 [ 1048.544233] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1048.545287] RIP: 0033:0x7f59b4343b19 [ 1048.546052] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1048.549850] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1048.551417] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 1048.552903] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1048.554366] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1048.555834] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1048.557310] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 [ 1048.584738] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.5'. [ 1048.669911] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.5'. [ 1062.121960] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.5'. [ 1062.127447] FAULT_INJECTION: forcing a failure. [ 1062.127447] name failslab, interval 1, probability 0, space 0, times 0 [ 1062.128859] CPU: 1 PID: 9936 Comm: syz-executor.3 Not tainted 5.10.199 #1 [ 1062.129671] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1062.130658] Call Trace: [ 1062.130982] dump_stack+0x107/0x167 [ 1062.131425] should_fail.cold+0x5/0xa [ 1062.131928] should_failslab+0x5/0x20 [ 1062.132421] __kmalloc_track_caller+0x79/0x370 [ 1062.132996] ? kvasprintf_const+0x60/0x1a0 [ 1062.133533] kvasprintf+0xb5/0x150 [ 1062.133972] ? bust_spinlocks+0xe0/0xe0 [ 1062.134474] ? lock_release+0x680/0x680 [ 1062.134969] ? find_held_lock+0x2c/0x110 [ 1062.135494] kvasprintf_const+0x60/0x1a0 [ 1062.136013] kobject_set_name_vargs+0x56/0x150 [ 1062.136585] dev_set_name+0xbb/0xf0 [ 1062.137028] ? device_initialize+0x620/0x620 [ 1062.137569] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1062.138210] ? kmalloc_order+0xfe/0x160 [ 1062.138711] wiphy_new_nm+0x805/0x1e00 [ 1062.139199] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1062.139800] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1062.140451] ? __local_bh_enable_ip+0x9d/0x100 [ 1062.141006] ? trace_hardirqs_on+0x5b/0x180 [ 1062.141539] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1062.142142] ? ____sys_sendmsg+0x70d/0x870 [ 1062.142652] ? ___sys_sendmsg+0xf3/0x170 [ 1062.143150] ? __sys_sendmsg+0xe5/0x1b0 [ 1062.143638] ? do_syscall_64+0x33/0x40 [ 1062.144141] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1062.144806] ? __lockdep_reset_lock+0x180/0x180 [ 1062.145396] ? lock_acquire+0x197/0x470 [ 1062.145897] ? create_object.isra.0+0x3ad/0xa20 [ 1062.146472] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1062.147040] ? __kmalloc+0x16e/0x390 [ 1062.147496] hwsim_new_radio_nl+0x991/0x1080 12:03:33 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 12) 12:03:33 executing program 0: perf_event_open(&(0x7f0000001d80)={0x3, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x8}, 0x0, 0x0, 0x1000, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000700)=ANY=[@ANYBLOB], 0x20}}, 0x0) pread64(0xffffffffffffffff, &(0x7f00000003c0)=""/195, 0xc3, 0x5) syz_open_procfs(0x0, 0x0) r0 = openat(0xffffffffffffff9c, 0x0, 0x60000, 0x0) io_uring_enter(0xffffffffffffffff, 0x3e77, 0x3f74, 0x3, &(0x7f0000000180), 0x8) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0) io_uring_enter(0xffffffffffffffff, 0x3e77, 0x3f74, 0x3, &(0x7f0000000180)={[0x785a59ed]}, 0x8) signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x100800) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x1001, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x8, 0x10010, r0, 0x8000000) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) 12:03:33 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000001140)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) umount2(&(0x7f00000000c0)='./file0\x00', 0x8) ftruncate(r0, 0x1000004) write$P9_RREADLINK(r0, &(0x7f0000000080)={0x10, 0x17, 0x0, {0x7, './file0'}}, 0x10) creat(&(0x7f0000000040)='./file0\x00', 0x0) 12:03:33 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x16d142, 0x0) r1 = creat(&(0x7f0000000140)='./file1\x00', 0x0) r2 = dup2(r1, r0) r3 = openat$random(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000080)) fcntl$getownex(r2, 0x10, 0x0) r4 = syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r4, 0x8000000) io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0) fcntl$getownex(r4, 0x10, &(0x7f00000000c0)) dup2(r3, r2) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) sendfile(r0, r5, 0x0, 0x100000001) 12:03:33 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) r0 = socket$netlink(0x10, 0x3, 0xc) sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000011c0)=ANY=[@ANYBLOB="280000001000"], 0x28}}, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) r3 = fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff) perf_event_open(&(0x7f0000000280)={0x0, 0x80, 0x0, 0x3, 0xd8, 0xff, 0x0, 0xdd6c, 0x13882, 0x4, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x7, 0x0, @perf_config_ext={0x7ff, 0xab4}, 0x0, 0x7f, 0x0, 0x5, 0x0, 0xa9, 0x4, 0x0, 0x2, 0x0, 0x400000000040}, 0x0, 0x1, r3, 0xb20d19c4de386f8d) sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000180)={&(0x7f0000000400)=ANY=[@ANYRES16=0x0, @ANYBLOB], 0x14}}, 0x4) ioctl$FITHAW(r1, 0xc0045878) 12:03:33 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 15) 12:03:33 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 21) 12:03:33 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x30f5, &(0x7f0000000080)={0x0, 0x4}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000240), 0x141043, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x2, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1, {0x2}}, 0x0) sendmsg$NL80211_CMD_STOP_P2P_DEVICE(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x2000}, 0xc, 0x0}, 0x20004884) [ 1062.148196] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1062.148980] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1062.149788] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1062.150600] genl_family_rcv_msg_doit+0x22d/0x330 [ 1062.151201] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1062.152032] ? cap_capable+0x1d6/0x240 [ 1062.152523] ? ns_capable+0xe2/0x110 [ 1062.152992] genl_rcv_msg+0x33c/0x5a0 [ 1062.153465] ? genl_get_cmd+0x480/0x480 [ 1062.153964] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1062.154602] ? lock_release+0x680/0x680 [ 1062.155103] ? __lockdep_reset_lock+0x180/0x180 [ 1062.155655] netlink_rcv_skb+0x14b/0x430 [ 1062.156176] ? genl_get_cmd+0x480/0x480 [ 1062.156653] ? netlink_ack+0xab0/0xab0 [ 1062.157143] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1062.157667] ? is_vmalloc_addr+0x7b/0xb0 [ 1062.158165] genl_rcv+0x24/0x40 [ 1062.158556] netlink_unicast+0x549/0x7f0 [ 1062.159060] ? netlink_attachskb+0x870/0x870 [ 1062.159573] ? __virt_addr_valid+0x128/0x350 [ 1062.160133] netlink_sendmsg+0x90f/0xdf0 [ 1062.160623] ? netlink_unicast+0x7f0/0x7f0 [ 1062.161120] ? netlink_unicast+0x7f0/0x7f0 [ 1062.161609] __sock_sendmsg+0x154/0x190 [ 1062.162079] ____sys_sendmsg+0x70d/0x870 [ 1062.162560] ? sock_write_iter+0x3d0/0x3d0 [ 1062.163054] ? do_recvmmsg+0x6d0/0x6d0 [ 1062.163528] ? perf_trace_lock+0xac/0x490 [ 1062.164026] ? __lockdep_reset_lock+0x180/0x180 [ 1062.164577] ? perf_trace_lock+0xac/0x490 [ 1062.165053] ? SOFTIRQ_verbose+0x10/0x10 [ 1062.165668] ___sys_sendmsg+0xf3/0x170 [ 1062.166215] ? sendmsg_copy_msghdr+0x160/0x160 [ 1062.166789] ? lock_downgrade+0x6d0/0x6d0 [ 1062.167325] ? find_held_lock+0x2c/0x110 [ 1062.167825] ? __fget_files+0x296/0x4c0 [ 1062.168338] ? __fget_light+0xea/0x290 [ 1062.168838] __sys_sendmsg+0xe5/0x1b0 [ 1062.169308] ? __sys_sendmsg_sock+0x40/0x40 [ 1062.169855] ? rcu_read_lock_any_held+0x75/0xa0 [ 1062.170446] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1062.171102] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1062.171746] ? trace_hardirqs_on+0x5b/0x180 [ 1062.172300] do_syscall_64+0x33/0x40 [ 1062.172748] entry_SYSCALL_64_after_hwframe+0x62/0xc7 sendmsg$inet6(r3, &(0x7f0000000500)={&(0x7f00000003c0)={0xa, 0x4e20, 0x1, @mcast1}, 0x1c, &(0x7f0000002dc0)=[{&(0x7f0000001840)="0fb277158be678be2c958f507843adccfaf593fa85842e28b630ae7d85d55e120ce7295bbbde18768113a4a281db0c8c610511f9c10355460aae6181f899bec96fb323a893eec258e3539cfa5b78f1262f174b12403de6e7c10bcc487ac205", 0x5f}, {&(0x7f00000018c0)="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", 0x1000}, {&(0x7f00000028c0)="c8efbf0ce57222f33086c2ab0200491b9c8debf7b2eff5dbe43b8d1ca8f601407f07344aab67d9fac8092bb7e95d13d47aa260a30b26817d49a19bc4acd9da4e6631835ff42eaa35b9421d342fc44f000b790adc2144c1870cf913bc6b2d4cbdb477747bce8dec5afa8b563f0be75e45e81ae665710094106cd65e53a2a31dc8e166581db6bea67177bcac659a083bd0721beb2240d777acceb27f879abab045786f047455f123c564488bcce4bc899368f9bb3016d0c66ba9b886ab6b3f64f0153a6c90e15243036bd0346688732d4c3a8b2afe1275cde1a0483571d85a0e0356d8d57c4bec44d3dad3355b13f6cfd8ba", 0xf1}, {&(0x7f00000029c0)="4bf938d3b443d78abe47bf9a0ca31504da28e41c7b41adaecc28cf2f8c4114dcb1aea6115e569b20f658efc89974e911230d3d409e5e4690c7e5bfd1772055335299282fe5ee92dcccaf9088ac897f73", 0x50}, {&(0x7f0000002a40)="41330bd458d71614f60a56cd9166e5fc958158585cc582ab955841804d1d1de075b40188cb35fdc72ecb6d9483b3dc5ab63184d1cf7e4b6d32ebc69ee06b990b9078f390366bbdabd6142f5edac444f521630853a0099eae6dc4e6f0334d24d3f848705a753349246c0059a9169a11c92978539fc4e58d7a9f68df8ff1a27e1187f0b3cb423839a34162eb32bd7a3f4f6d36fda167", 0x95}, {&(0x7f0000002b00)="a08eb3d62cc5dd84d7dc8b5509b39e2937e8fc481085ba9e0a4e0e1a2ff1e8b8655075d00aee79a6934824eb1266139432256f8fa35c30a4c77d40735124414643dcfce101d9cafd3d624643d27466a2f8bbf0fad15f3c551e84286608ecca28cc89ef550c4281a479635f2673a18582b5625199ed1936ad0b32f7caf0919307dce6c962b30489d92d1b43045a5d0e9d48234339323d13f9c5b1411d30c1373e473500b73fea8dd623bf5c3bbb2d9120e7d44b6aaa06ed17553213b83d0f460c1207978e53096f79af64803d8264599ebae7cfc311780facdff25c2cc6a27f07d9e475d577a4866bc4b4ce93abab44d363ba4f4401f1", 0xf6}, {&(0x7f0000002c00)="5d4e066de6550184a7ba08e87b21b1c62ae2623c706e5168bb7ad516033d8a53895c13f0c463e3a1a7ed719e02a97f0353d9daffec7b7b205f0ca5e6dab5e5504bcecf5752cb03aa6c910070f69f340f98b1a6fcc4528e80cf06faf376a7ab9d8597b81c2c8369f8d1916c46bea4102ff2b98379ffbca3e31a713fa1057b", 0x7e}, {&(0x7f0000002c80)="3ae9e5ba611f8e5877567415fd52294cdfa5961961c3941efba61461aa9b3784b764fab34cd737bd0c555d407a549824f8d2e5158108b5678a330ad813bcbb115238076abd1acc7153bfa7959c2e4a60066c8f53233c1668d529f5380604fa07bcdd020510eff6fc671ce12f598461e17a2862c36aaed34678f98853fe3d9d48869d11f61976be29582fb09bfdc80771ee84722b912b16b40695cd2c714215ce7d836cda1fdc164facad223bd635d2c4e4d2463ae8cfe4fb50040bafcc", 0xbd}, {&(0x7f0000002d40)="f39dc08c661be3ffeffe4865ec3dd50317110890f50d66959e4e7baf450d6b0c3919da7dbbf21d33a533bfd1fb7e8828dba06bba55ba52f51aa2f2005dae5f3d0de87561b721f358ea7c2e1bac0e9d7da84c50f84f93", 0x56}], 0x9, &(0x7f0000002e80)=[@hoplimit={{0x14, 0x29, 0x34, 0xffff0001}}, @dstopts={{0x58, 0x29, 0x37, {0x2f, 0x7, '\x00', [@enc_lim={0x4, 0x1, 0xa9}, @hao={0xc9, 0x10, @private0={0xfc, 0x0, '\x00', 0x1}}, @jumbo={0xc2, 0x4, 0x80000001}, @hao={0xc9, 0x10, @mcast2}, @hao={0xc9, 0x10, @private2={0xfc, 0x2, '\x00', 0x1}}]}}}, @flowinfo={{0x14, 0x29, 0xb, 0x9}}, @rthdrdstopts={{0x1028, 0x29, 0x37, {0x3a, 0x202, '\x00', [@generic={0x3, 0x1000, "0023e0cb892d7f1133203d0b163a11a359123a369a59f4291e36a2ffaaea9901b1e4d3feb8e3152a22fdf98441cba216004b0a9303369db252fa1b292b94b838a333ae43599f3ca520a6960b00e8c678d9c3e513be2531e8b6282ff1aa75c541c1b35ad0c8a8921b9087c5e99e490560c9d53243f0f07ff56a9b240985f75e9179b4209e86ca9c610b374d6f768948ce23ad9709bc36fc5b4f08e53bcb65cf9ef7613f66b8a49c7f600238180cd4f0ddd88100fdd157e400fc5a6c4dff9f1bfcf9ffd7fe581152d9ca5c8210bcf51b66e073a68af372268afc6c9436e4b65cc94e162494fe9d58abc48b914504007a52216803e55e9cf1e0d7495a041e7f3cac7bcbf4747f56d5306cf43fe6c0115fe7ef1f1e86e0ead71a49b7d7a206ca86e8da161f9093dbd448c2422e74e4c06ba2b7186f070891f7d2e6334f328bab89bde3729ec93b98d2cbfdb30187b97eb7f54e0c09d73892a5409f2862730d05f9b56fd62b01f4ed7eb64997a257536edf7414082c53591ca7d0b8d90d63fb95627c1ef22e62f38bed47fddb89a87cb0898aa82ebab66bb33cde76dab5d1dc50a825e4735a442bf70d322d13ecb881064e9e82f3b1447268706e77b7f5d6d9993b0bc0d770ff45374321d500717e568f9428628e9e267908576044d6969beb3ab00d841419d949c46da512254835a29f0c161c4431c687fffa070a02997aba66b79c4679537f137949007e55f2a75417cfd0f27ab40f2724119900d6b470b0997003877f1e1a06be49bf17c780617a6620cc7b02cffe442e716d2083cd2f3393feb9335cd5067d940f84f2016c150d1899fc39017ddfa219db792c3eddf885dcd9b8182fd89205b7a4d861dd3379ad1ea952c8aa0dc65be8179decec964d41ec709158e806e4376f46c9ceb25d4e2f9dac63c729863198913e40411805b43c34e82dbd56711455a7585c840ce5b5b9a2c882e8c986186a5de0c45a5d04972d47471052ddc479ed058300f63ca19420def905e1f31b60efc52cadbcf909f775b4210edd832c24f0166a639892460c243308d4bb1b1dd510461fbdadf861139a723d03775baae96b237e5b0a431aa54faa438f1d477724d6f77a465aeaa2f1467014c8d0c9780c217afddbf682e77166ccff51772e09118d2d48462babfe6517d7306fe3a097ce9b9dd936f9b2c8d12faee61f22364134a26f75e6ce4c058b954ac515c72e76fc367749486e6c259e0ae4c4c8d737b5b87dddd1ed903880394334078369e83aa1a12f31d9df1a617a0eac8e27a9c7ef0f762f412dfd1de5e9fab85b8fd566f2c1ca6a5d3bf3439fbf33f42a373ac72eaaa6fae8f884e780f3bbb258385913cb7b06e813295bfdb457050dbc5c187e301d9694d63cd904a09c29825a18f80f550fecdd0c298946a285a7ff3ec93c983a98d72cf4e03d4d63225ccd58ed48156048cd1e794cd09ab0e31ae811c0f729a01d51db92f613ff1af43f8ab604678d46bc5c19194f46cc68f881db9977576eeff21578da41b28c1ed2ac16da8465900853d5fbd25b6b74e1a10423ed4cb314671fcd96a5e438922d8238e74b2c9975b655aeec6ff33bc0f35aa2641ab88f7c3d9d2148114a1e23dcd6377be84b48f651bb77c69ce9b51199fba06400838638e67fcf129d515cad4a950e0d66c2847fcd6da385b3342e6a32f30193b49490524695daa5e4897ad13b259c0dac4266125933624bd349d6b8602d12640521e366da26631d860016f24bf544769e14451f63688cdc5ea4ef3752cf3ad5e522427e40eea02a1d4e428ffbdfba902dfc20aead8f40308979ed23031cc5254f41b7cf2dcba6ade2d4a9d432de2a62f8639dbba38d22d5dc8932b4933ad2389097f783ee358188c7d64950c3deada2ea76fa8493e0087fdb72d3f8984306b5eb959f8266189af5b88054cc887b13422765a85dfdd2434cf2af2753387c2d7b776973109a8c4d2833cadddeb23acab62cea8108885e181e2307cd059442a237cc5f795207dee9bf0cc894b476b1d2d1d3e4231e06821ca9489604257f7943f42d89f9c6b470dc186b828034f5c83dc7a97cc2074f7c0c24ee53f59f6f460960d684791ccbd7103338648256f2a46219e86e091d077b5594f6661b776d59a2d39d48dc342ed997ce0a5bc1d5204d879564bb88353f0b59fe651191e24e2ed3e4c867c34e58538a29290e616d16bfcf1e5ea955824a33b3b9d73dd15e2b38ebe7bf11e1ced93922f912b68dd350bdbd2d5188a64d92da128eb2501cecd66bddeb6b270f341c6a0dfd5f19c0361bf5105fa233ab00cb34361341881b05afa26424031f8f497b4fadd54205af42477707e380dff6bacdf6a66678799645d73316632d835871fa9dd7f260d693ebd840597cbb31f081a5ddd9bb1b783c75557ad5bf1d86f88b3dd318c28d802931a7b7618f21c6ffaf1b635d4c0ba742748e972c578038f800a470c51e6e0c76d276a7c1f1ab1e7acbd8429dad1cee761c519309639c6ea6f09cd68df2e65313650c7c66099521c8aaa1d25e4b0239c6f4c822e13c2af50ececa1ab03e87dfe2cd07ea3c80272f7a1d81ba9e5e7300c7c29a2823d440410f2fa9ae513abaed301c5470ae8afb043044366616809d02eddfa28b92a34f9306e73c330430ddf4df17cb91fc0be78bd5bcc45c9b97764c3cc353e11a60a05a02d9cb71e118e7eb5c4de3da045d88a0db33d69e258a5e75ba437c1ab0977b7762e5f04e7f6d3cc2ca5a2384d500da2808eb52031db36533cf2c2fdef644125bb3579a3fd2913c6f44c4f169bdfd25c6e4f65d80200b71b5d461add433d8f895d7993c698b9016e985f4af594e58410240815fbd8fe9253c120b1518de8d51257082a9c102aa75b1a2eccd2364dc47c08dad72b980d689eb7892df507094928ee87d1a7eebcacd836dbbbc05e98ab8ecfc5e4bd63e9e917d7f5213104a1205a14b45f492eed7c3f556b967fd420c434a5e16abff4348a0d5659d76f6434bd3d8385f1ece3521dc5fd70d2d2a20f75ed8c846f295316a416fd72d469f75c472aada2e104e86c4a5d7ba53822300780af6dd4d0d7f2bb956b94a8886cfc1c36e6a6fb46cf9973840ec480b003a47011f21c5f4bf03dd32bd59aea1c5016f4127e95d245660007ccc266aea21403d9878be5b7e8bd15314195775f466568ec01cb40f60460b56621121f71bd8b5b8b3b8ef4fa490e2cf040aad2e5c27c5bd7bdc9a743b1e36afefbfb928ea4c6e959abe42a7165f837d1d22b127f767a2e381633f4cca818b7c0d57b21c204a40e0925a913e03e078caf7710ff8fc53e95d6ac3b0eda1ce10f4adab0750f5f9d502f6307f6c2387913f0bc53911a84d7060df7bea3afbed39f2299cb33a721add00d86d9b82da317c19385aa2549f2f0e664aec6ca69260a3d4b949243cde1882209df3ecc85ce8afadf9c46c9a547ba6f840b9192586fb5eb9e5a787d59ef8345abdc79eafa61b8379343a2dcbea9693dd979526090228c433ba279d707a32c10c57cdfda52181f2f777c909e9becc3ca0ddf37b9727f06dea3a0076a558cf6bb31761f7e7e6fe6b95b5d7cb647436894c332b1ad440f20f500cc6d50752e0fdc597a4e485c63e3cea15228ee657c842b3a7f5729941563214b98d6776196124a009484835a94ba196eec22b14caf57e19d827312b7a6c6b08e1e0f604a755a1419e6c04314c5e5df91ae9be13650dd862541ba10216e5893cb5bd6725dfccb14da7a00897adb56d0f7b1514461ac38a71926755189d591d46e6bbc75e11a519991e37e9caf1699e426536c97650ef6294263e3f31bceed78670ee1b260152beb33b8a1830d0853ea759bb0d254c943c802d9500fdcd7450a45694113bf914b68a3c6f5e6cfc98592f7529fecbb61aa7867f01a72bb57007b69d4f845c6ce2cdb4aad3d0c8a5a71b2641f34aff2b28902e2181d0ac54df95a4d6a11fd665ae7d8a6c55f10e9443d0410d657576cd54503fed810109dc273fb9b63b8d79079706da2c6551f12412a9472e11025bdd6ff0e5bcbd57a87bb4a204a80fba47ed7fae31d1c777d5bb5d3c6f138e0f532c6d131d1e39e03f50830e4db9d311a85fd4a3722196c2b7629a62a75e67e45f8c82b033b1e6ecd31938317b662e3235915aa31ccb24a659f8152314b7f6b4c4b1fa02835ccf248b99025e4bee6d86be7026f159c5a5ab63b94e2ee24ca900c47371b29d2e25c5131e0a7768430df67f3f299415edc918da2f4a8e88fff8e8b16a077a0077a815f1cda06c13789a66dce3383b457a6bca0314651d007b0ae9d8d713da0d6ec4f956c3046100cdc8c9e8f860824ef6c03077c7d858cade046d0a6df88c1520925ff33758778a68abd5efa88f61a70cea27228bce1eb682bf254c464338e4cea7fd79e191fce447a5b65b2a48230746b4a53da7e74a57dc73742f7d76cce15deb9bb7c8cbad4836e89662332932abc103bea67e8d6e246f47ba6971a1884a68932f030e94ae1b35c5ddfec1b122b97bf91c951ebbcf1f3e9242fc2b0f747c44fd4f21c6641e05f5aefa5c1a533ca1ef600171eaf7fc7835ac80eccc4888457466a7c249438ae39fb4cedf9025be593d36bc72c88c19f37d58541043ca9b277d43e1b5334c907444c757f95684a199376073075a6ce2d1494211b7cb46cc6183ba9d86f2ebeb8def9731ea2a96c6159886f5cadc01abbbbcdbee157d34e0b0e4f6befdeb187dae5ef03f661e2383c8847fff5b8b9188edb467768c095015e1a9b415dd939385bc06061c922e13f8e3b79e6fa320fcb73dd792a4e284bb7744881760fa1c3d8b20f9fb4adadefb0138374efa30fa980dbbaeab5e63b78469202cc30d9bcebd46245ffdc1c101777cb4b0b9845316b7dbdd2d3821ba6eb196de77d3a2984ac0bf772ff8da307cd9404543bbd30a7e02d43293050127c92d715adacfa052f5f844b54c4755dfc06fbba9db371e0a5cabeae84a84145b61405870402909d6abfa078021af8de56ae7e7664b239ddacb5761486af88b08f35807fe685ceb0d0ab9b7d13fd00081ddbd9f92072f1d57d421cd3837ef5ba55bdd33f43a5e9913d45469efc8b25a2d3f1249ce79fcd1ed4879a07ca747a1aa6e9924fa719a70ccfbf7a401871b435ac44495904d73b82a42b09301c6efdff4a5082166a8b1f532a781fd8506a17a9c4207096d05b98e28d375076a246706b8d36a1021cb9641318972237666849a07f3192b750a53e69869ec74c8e484490705395c4a5bae3266e5129b2382e3934b0391b9dc931d10498095189beba32857a648bb9d31df739bd62c4b0a1a2a673551fcd8335e99761edf631cb4fd06b1c68149ba233d0b3b2c9e0bc71fae2882d50d83fad3695dbe28917b19451364acb9f4df632b649a45633eea5c56f66554a65c2ff9f75f6acdd6050631ed7dc0bdccca660314f9aff2669a5f046cec05cfecca1a36702bf7d1629fee47e7471cc29ef7da39c7125bb2053ad8eee444fe40f72e10325c5ae5a2cb38dec9ed4398d20fa191a6194aeaf9aa152e3e8398f8da0a8a6c1ebaec9d7bd234533cb960f4b7f7d122b7ed63c3b77a405124665a64cd24db563395a0caf1cdc3115fd8dddd10a45708fad42a2031792beea97acf0016771bfd1d14e9cb5253629d5073b527c618067ad641f4f3172d860bb61297367d0652a781f2eb2c0f6e34e4e7f9b5798d1fb9ba1c05f66b3444db25887cb2bec8b23efdfd6bddc25f51e47ae9f457cfe3f187a36271a60cf509e950f2493eed9528923524a6e737a5"}, @ra, @ra={0x5, 0x2, 0xf899}, @padn={0x1, 0x4, [0x0, 0x0, 0x0, 0x0]}]}}}], 0x10b0}, 0x24000000) ioctl$CDROMREADTOCENTRY(0xffffffffffffffff, 0x5306, &(0x7f0000000040)={0x2, 0xd, 0x3, 0x0, @msf={0x9, 0x7, 0x20}, 0x7}) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) r5 = signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0) syz_io_uring_submit(r4, r2, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x4}, 0x80000001) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) syz_io_uring_setup(0x5185, &(0x7f0000000180)={0x0, 0xb2a2, 0x20, 0x3, 0xa4, 0x0, r5}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000400), &(0x7f0000000440)) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000540)=ANY=[@ANYBLOB="2c0001000000000000000000000000000d00000000efe589624f96527d6a7332a49f4b399353042795d9ba28f898335f81e108a316e9b89f119944802eb96507a829d7be9732b60406a6753b26f1e4ac3079eb1b0f5230bf8c", @ANYRES32=0x0, @ANYBLOB="ad01f4dccf30b67bf160d4c452a0ca06a4c7ae2fe4ff030000a4a30e047f8134cd1840a635525a022b262061fc913e4c7cde23201f02cb69601e9e37774b42505fe8b0743197da8efac7c9689244e0e4ac7b9f0e6c81c88fdeaa92c5b57719b9d0c16812ea1a510600000088ea372a316ccb9b52f12189"], 0x102c}}, 0x0) readv(0xffffffffffffffff, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_FSYNC={0x3, 0x4, 0x0, @fd, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x5) ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) r6 = fcntl$dupfd(0xffffffffffffffff, 0x406, r3) [ 1062.173467] RIP: 0033:0x7fed842aab19 [ 1062.174032] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1062.176260] RSP: 002b:00007fed81820188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1062.177208] RAX: ffffffffffffffda RBX: 00007fed843bdf60 RCX: 00007fed842aab19 [ 1062.178083] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1062.178945] RBP: 00007fed818201d0 R08: 0000000000000000 R09: 0000000000000000 [ 1062.179833] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1062.180746] R13: 00007ffe3d75192f R14: 00007fed81820300 R15: 0000000000022000 [ 1062.181898] FAULT_INJECTION: forcing a failure. [ 1062.181898] name failslab, interval 1, probability 0, space 0, times 0 [ 1062.183741] CPU: 0 PID: 9937 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1062.184843] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1062.186172] Call Trace: [ 1062.186601] dump_stack+0x107/0x167 [ 1062.187186] should_fail.cold+0x5/0xa [ 1062.187803] ? create_object.isra.0+0x3a/0xa20 [ 1062.188558] should_failslab+0x5/0x20 [ 1062.189166] kmem_cache_alloc+0x5b/0x310 [ 1062.189821] create_object.isra.0+0x3a/0xa20 [ 1062.190523] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1062.191341] __kmalloc+0x16e/0x390 [ 1062.191925] rfkill_alloc+0xa6/0x2c0 [ 1062.192511] wiphy_new_nm+0x12a3/0x1e00 [ 1062.193137] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1062.193873] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1062.194702] ? __local_bh_enable_ip+0x9d/0x100 [ 1062.195407] ? trace_hardirqs_on+0x5b/0x180 [ 1062.196091] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1062.196870] ? ____sys_sendmsg+0x70d/0x870 [ 1062.197529] ? ___sys_sendmsg+0xf3/0x170 [ 1062.198156] ? __sys_sendmsg+0xe5/0x1b0 [ 1062.198783] ? do_syscall_64+0x33/0x40 [ 1062.199395] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1062.200235] ? __lockdep_reset_lock+0x180/0x180 [ 1062.200953] ? lock_acquire+0x197/0x470 [ 1062.201571] ? create_object.isra.0+0x3ad/0xa20 [ 1062.202301] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1062.203028] ? __kmalloc+0x16e/0x390 [ 1062.203612] hwsim_new_radio_nl+0x991/0x1080 [ 1062.204306] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1062.205122] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1062.206145] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1062.207156] genl_family_rcv_msg_doit+0x22d/0x330 [ 1062.207932] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1062.208933] ? cap_capable+0x1d6/0x240 [ 1062.209698] ? ns_capable+0xe2/0x110 [ 1062.210289] genl_rcv_msg+0x33c/0x5a0 [ 1062.210859] ? genl_get_cmd+0x480/0x480 [ 1062.211473] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1062.212256] ? lock_release+0x680/0x680 [ 1062.212875] ? __lockdep_reset_lock+0x180/0x180 [ 1062.213581] netlink_rcv_skb+0x14b/0x430 [ 1062.214217] ? genl_get_cmd+0x480/0x480 [ 1062.214809] ? netlink_ack+0xab0/0xab0 [ 1062.215419] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1062.216103] ? is_vmalloc_addr+0x7b/0xb0 [ 1062.216703] genl_rcv+0x24/0x40 [ 1062.217208] netlink_unicast+0x549/0x7f0 [ 1062.217844] ? netlink_attachskb+0x870/0x870 [ 1062.218528] ? __virt_addr_valid+0x128/0x350 [ 1062.219214] netlink_sendmsg+0x90f/0xdf0 [ 1062.219846] ? netlink_unicast+0x7f0/0x7f0 [ 1062.220530] ? netlink_unicast+0x7f0/0x7f0 [ 1062.221187] __sock_sendmsg+0x154/0x190 [ 1062.221799] ____sys_sendmsg+0x70d/0x870 [ 1062.222431] ? sock_write_iter+0x3d0/0x3d0 [ 1062.223081] ? do_recvmmsg+0x6d0/0x6d0 [ 1062.223680] ? perf_trace_lock+0xac/0x490 [ 1062.224332] ? __lockdep_reset_lock+0x180/0x180 [ 1062.225049] ? perf_trace_lock+0xac/0x490 [ 1062.225662] ? SOFTIRQ_verbose+0x10/0x10 [ 1062.226270] ___sys_sendmsg+0xf3/0x170 [ 1062.226880] ? sendmsg_copy_msghdr+0x160/0x160 [ 1062.227578] ? lock_downgrade+0x6d0/0x6d0 [ 1062.228253] ? find_held_lock+0x2c/0x110 [ 1062.228887] ? __fget_files+0x296/0x4c0 [ 1062.229512] ? __fget_light+0xea/0x290 [ 1062.230131] __sys_sendmsg+0xe5/0x1b0 [ 1062.230713] ? __sys_sendmsg_sock+0x40/0x40 [ 1062.231386] ? rcu_read_lock_any_held+0x75/0xa0 [ 1062.232127] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1062.232897] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1062.233692] ? trace_hardirqs_on+0x5b/0x180 [ 1062.234374] do_syscall_64+0x33/0x40 [ 1062.234962] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1062.235763] RIP: 0033:0x7fb858d1fb19 [ 1062.236358] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1062.239212] RSP: 002b:00007fb856295188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1062.240399] RAX: ffffffffffffffda RBX: 00007fb858e32f60 RCX: 00007fb858d1fb19 [ 1062.241493] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1062.242576] RBP: 00007fb8562951d0 R08: 0000000000000000 R09: 0000000000000000 [ 1062.243653] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1062.244738] R13: 00007ffde2c0b16f R14: 00007fb856295300 R15: 0000000000022000 sendmsg$nl_generic(r6, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000340)={&(0x7f0000000640)={0x11f0, 0x16, 0x4, 0x70bd29, 0x25dfdbfc, {0xd}, [@nested={0x133, 0x34, 0x0, 0x1, [@generic="0e055fb03fe7d8f0baf1a41250d4f5476621805af805eeba48e7da608d5cd55ad63168354367c14b74bd574a132ae64579a77e14a3a5cd5b1adc5afca26faf1e12ab746ad76e5a1293ffea9820d26b2c4283994d167909e2029e20cfe02a54b0540cde3eb196f971a733469dce3dba59172ca6299afe3d515759b33b728eb0bfb34d0c032cb9cd3e8ca7ec", @generic="a219b7b5912d4c57de1c6dcefdb1d260341d059a6f0db9fb34c12f975d560219885d193bcbc4392838ba5342e3a3e002a3cb4e469072d646f2b3fc4d4fe8a8e10163386aae1c1d1dcb59ca3a554dcc48a78bde17aa2f19bfa0d78e28e1f95ec82e9913cd48e23b8b021ad59b6186405383e72324fcf8302e54342d93a9a97b4437c3b15f84340ae1fdecab7c4477cb3dce2e47c30c48596e1f836e2926b45477aa98b520"]}, @nested={0x109e, 0x61, 0x0, 0x1, [@generic="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", @typed={0x8, 0x74, 0x0, 0x0, @ipv4=@rand_addr=0x64010102}, @typed={0xc, 0x7, 0x0, 0x0, @u64=0x1}, @generic="f07f08b95365d0c12db5df5d28e0b36638b1a65efb92834aad6f4f915afab5b8d8b17cf2436eadffd729df32120258e5f4d97627cb3a69a9264848e36bea528073573967f7e18ea487c757e8ba1ef3146acec22910ead8aeb51381b682d14c592f330d43462bca2398d041c8543e797117a9c97087d7493e159bdaa17c9875e7604900ca3e18"]}, @typed={0x8, 0x3f, 0x0, 0x0, @u32=0xffffffff}]}, 0x11f0}, 0x1, 0x0, 0x0, 0x897818bcb9f12406}, 0x48041) close(0xffffffffffffffff) 12:03:33 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pread64(0xffffffffffffffff, 0x0, 0x7ffffffff000, 0xf0ff1f00000000) r0 = socket$netlink(0x10, 0x3, 0xc) sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000011c0)=ANY=[@ANYBLOB="280000001000"], 0x28}}, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/crypto\x00', 0x0, 0x0) pread64(r2, &(0x7f00000010c0)=""/4088, 0xff8, 0x0) r3 = fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff) perf_event_open(&(0x7f0000000280)={0x0, 0x80, 0x0, 0x3, 0xd8, 0xff, 0x0, 0xdd6c, 0x13882, 0x4, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x2, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x7, 0x0, @perf_config_ext={0x7ff, 0xab4}, 0x0, 0x7f, 0x0, 0x5, 0x0, 0xa9, 0x4, 0x0, 0x2, 0x0, 0x400000000040}, 0x0, 0x1, r3, 0xb20d19c4de386f8d) sendmsg$NL80211_CMD_GET_FTM_RESPONDER_STATS(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000180)={&(0x7f0000000400)=ANY=[@ANYRES16=0x0, @ANYBLOB], 0x14}}, 0x4) ioctl$FITHAW(r1, 0xc0045878) [ 1062.294800] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.5'. [ 1062.375767] FAULT_INJECTION: forcing a failure. [ 1062.375767] name failslab, interval 1, probability 0, space 0, times 0 [ 1062.377505] CPU: 0 PID: 9939 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 1062.378546] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1062.379768] Call Trace: [ 1062.380197] dump_stack+0x107/0x167 [ 1062.380745] should_fail.cold+0x5/0xa [ 1062.381331] ? create_object.isra.0+0x3a/0xa20 [ 1062.382010] should_failslab+0x5/0x20 [ 1062.382589] kmem_cache_alloc+0x5b/0x310 [ 1062.383199] ? vsnprintf+0x4ba/0x1600 [ 1062.383774] create_object.isra.0+0x3a/0xa20 [ 1062.384472] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1062.385254] __kmalloc_track_caller+0x177/0x370 [ 1062.385973] ? kasprintf+0xbb/0xf0 [ 1062.386518] kvasprintf+0xb5/0x150 [ 1062.387058] ? bust_spinlocks+0xe0/0xe0 [ 1062.387670] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1062.388492] ? get_random_u32+0x3cb/0x670 [ 1062.389137] kasprintf+0xbb/0xf0 [ 1062.389656] ? kvasprintf_const+0x1a0/0x1a0 [ 1062.390313] ? lockdep_init_map_type+0x2c7/0x780 [ 1062.391046] ? lockdep_init_map_type+0x2c7/0x780 [ 1062.391781] ieee80211_alloc_led_names+0x117/0x420 [ 1062.392553] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1062.393263] ? trace_hardirqs_on+0x5b/0x180 [ 1062.393919] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1062.394691] ? ____sys_sendmsg+0x70d/0x870 [ 1062.395343] ? ___sys_sendmsg+0xf3/0x170 [ 1062.395987] ? __sys_sendmsg+0xe5/0x1b0 [ 1062.396593] ? do_syscall_64+0x33/0x40 [ 1062.397186] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1062.397984] ? __lockdep_reset_lock+0x180/0x180 [ 1062.398687] ? lock_acquire+0x197/0x470 [ 1062.399297] ? create_object.isra.0+0x3ad/0xa20 [ 1062.400023] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1062.400724] ? __kmalloc+0x16e/0x390 [ 1062.401311] hwsim_new_radio_nl+0x991/0x1080 [ 1062.401989] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1062.402784] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1062.403781] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1062.404778] genl_family_rcv_msg_doit+0x22d/0x330 [ 1062.405515] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1062.406513] ? cap_capable+0x1d6/0x240 [ 1062.407121] ? ns_capable+0xe2/0x110 [ 1062.407699] genl_rcv_msg+0x33c/0x5a0 [ 1062.408300] ? genl_get_cmd+0x480/0x480 [ 1062.408901] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1062.409692] ? lock_release+0x680/0x680 [ 1062.410297] netlink_rcv_skb+0x14b/0x430 [ 1062.410919] ? genl_get_cmd+0x480/0x480 [ 1062.411532] ? netlink_ack+0xab0/0xab0 [ 1062.412141] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1062.412836] ? is_vmalloc_addr+0x7b/0xb0 [ 1062.413475] genl_rcv+0x24/0x40 [ 1062.413974] netlink_unicast+0x549/0x7f0 [ 1062.414597] ? netlink_attachskb+0x870/0x870 [ 1062.415247] ? __virt_addr_valid+0x128/0x350 [ 1062.415937] netlink_sendmsg+0x90f/0xdf0 [ 1062.416570] ? netlink_unicast+0x7f0/0x7f0 [ 1062.417205] ? netlink_unicast+0x7f0/0x7f0 [ 1062.417840] __sock_sendmsg+0x154/0x190 [ 1062.418457] ____sys_sendmsg+0x70d/0x870 [ 1062.419084] ? sock_write_iter+0x3d0/0x3d0 [ 1062.419734] ? do_recvmmsg+0x6d0/0x6d0 [ 1062.420338] ? perf_trace_lock+0xac/0x490 [ 1062.420976] ? __lockdep_reset_lock+0x180/0x180 [ 1062.421689] ? perf_trace_lock+0xac/0x490 [ 1062.422320] ? SOFTIRQ_verbose+0x10/0x10 [ 1062.422960] ___sys_sendmsg+0xf3/0x170 [ 1062.423562] ? sendmsg_copy_msghdr+0x160/0x160 [ 1062.424254] ? lock_downgrade+0x6d0/0x6d0 [ 1062.424891] ? find_held_lock+0x2c/0x110 [ 1062.425536] ? __fget_files+0x296/0x4c0 [ 1062.426173] ? __fget_light+0xea/0x290 [ 1062.426762] __sys_sendmsg+0xe5/0x1b0 [ 1062.427341] ? __sys_sendmsg_sock+0x40/0x40 [ 1062.428020] ? rcu_read_lock_any_held+0x75/0xa0 [ 1062.428742] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1062.429554] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1062.430361] ? trace_hardirqs_on+0x5b/0x180 [ 1062.431027] do_syscall_64+0x33/0x40 [ 1062.431608] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1062.432393] RIP: 0033:0x7f59b4343b19 [ 1062.432944] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1062.435771] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1062.436913] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 1062.438007] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1062.439087] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1062.440191] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1062.441263] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 12:03:47 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 22) 12:03:47 executing program 5: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x0, 0x8}}, 0x0, 0xffffdfffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000140)='net/route\x00') socket$nl_netfilter(0x10, 0x3, 0xc) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, &(0x7f0000000100)=0x100, 0x4) r1 = openat$incfs(r0, &(0x7f0000000200)='.pending_reads\x00', 0x0, 0x10) ioctl$FITRIM(r1, 0xc0185879, &(0x7f0000000240)={0x6, 0x1f, 0x1000}) readv(r0, &(0x7f0000002a80)=[{&(0x7f0000000840)=""/4096, 0x1000}], 0x1) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x4, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000180)=ANY=[]) ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r0, 0xc0506617, &(0x7f0000000280)={@id={0x2, 0x0, @c}, 0x40, 0x0, '\x00', @b}) 12:03:47 executing program 4: sendmsg$IEEE802154_SET_MACPARAMS(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x4c, 0x0, 0x8, 0x70bd28, 0x25dfdbfd, {}, [@IEEE802154_ATTR_CSMA_MAX_BE={0x5, 0x27, 0x1f}, @IEEE802154_ATTR_CSMA_MIN_BE={0x5, 0x26, 0xf7}, @IEEE802154_ATTR_CSMA_RETRIES={0x5, 0x25, 0x5}, @IEEE802154_ATTR_CSMA_MAX_BE={0x5, 0x27, 0x1}, @IEEE802154_ATTR_CSMA_RETRIES={0x5, 0x25, 0xb4}, @IEEE802154_ATTR_CSMA_RETRIES={0x5, 0x25, 0x24}, @IEEE802154_ATTR_CCA_MODE={0x5, 0x23, 0x6}]}, 0x4c}, 0x1, 0x0, 0x0, 0x8000}, 0x4000) syz_mount_image$vfat(0x0, &(0x7f00000006c0)='./file0\x00', 0x0, 0x0, 0x0, 0x8c2803, 0x0) 12:03:47 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 13) 12:03:47 executing program 0: r0 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0xe}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) ftruncate(0xffffffffffffffff, 0x0) mknodat$null(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x1, 0x103) r1 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) linkat(r1, &(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000140)='./file0/file0\x00', 0x1000) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='numa_maps\x00') r3 = syz_mount_image$nfs(&(0x7f00000001c0), &(0x7f0000000300)='./file0/file0\x00', 0x26b, 0x1, &(0x7f0000000340)=[{&(0x7f00000003c0)="dad4268f30a650cc62877c9cfd88b790beb67410e705a6f1b9ac954547e8e9163f9145464b5d225dd0565be76209fd7c0cb6a76a236c98a3227d2ab2577004ed2fba0018e62f0435c1823515dfd6a0f4b7", 0x51, 0xb90}], 0x801000, &(0x7f0000000440)={[{'numa_maps\x00'}, {'/dev/sg#\x00'}, {'+\'@'}, {}, {'/dev/sg#\x00'}, {'numa_maps\x00'}], [{@obj_user={'obj_user', 0x3d, 'numa_maps\x00'}}, {@smackfshat={'smackfshat', 0x3d, '\x99\xa4\'-\xbb*^$'}}, {@obj_type={'obj_type', 0x3d, '/dev/sg#\x00'}}, {@obj_role={'obj_role', 0x3d, '&'}}, {@uid_eq={'uid', 0x3d, 0xffffffffffffffff}}, {@smackfsdef}]}) openat(r3, &(0x7f0000000500)='./file0/file0\x00', 0x121000, 0x0) readv(r2, &(0x7f0000003700)=[{&(0x7f0000000200)=""/216, 0xd8}, {&(0x7f0000000380)=""/51, 0x33}, {&(0x7f0000001640)=""/256, 0x100}, {&(0x7f0000003640)=""/128, 0x80}], 0x4) ioctl$CDROM_NEXT_WRITABLE(r0, 0x5394, &(0x7f0000000080)) socket$inet6_tcp(0xa, 0x1, 0x0) r4 = getpid() ioctl$sock_SIOCSPGRP(0xffffffffffffffff, 0x8902, &(0x7f0000000180)=r4) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_buf(r5, 0x29, 0x30, &(0x7f00000000c0)=""/183, &(0x7f0000000040)=0xb7) 12:03:47 executing program 1: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4) r1 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r1, &(0x7f0000000240)=ANY=[@ANYRESHEX=r1], 0x4a0043) setsockopt$inet_udp_int(r1, 0x11, 0x65, &(0x7f0000000100)=0x7, 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000200)={@in={{0x2, 0x4e20, @loopback}}, 0x0, 0x0, 0x42, 0x0, "0c2b307202364dd316fdd73c2a8ae24c22f7357582874a92dbec683baa18e52211cdf26a81cf523c7ee478e38bffaf0663b35dce0aedd47dee08546248ff2bbb0bcbaae606901053b8cb14229a601ed8"}, 0xd8) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) ioctl$EXT4_IOC_PRECACHE_EXTENTS(r0, 0x6612) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) dup2(0xffffffffffffffff, 0xffffffffffffffff) connect$inet6(0xffffffffffffffff, 0x0, 0x0) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000002ec0), 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, 0x0, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0) recvfrom$inet6(r0, &(0x7f0000001e00)=""/4096, 0x1000, 0xcd08, 0x0, 0x0) ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f00000070c0)={'wg2\x00'}) r2 = socket$unix(0x1, 0x0, 0x0) getsockname(r2, &(0x7f0000000140)=@rc={0x1f, @fixed}, &(0x7f0000000040)=0x80) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, &(0x7f0000007180)={'syztnl1\x00', &(0x7f0000007100)={'sit0\x00', 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, @remote, @local, 0x40, 0x0, 0x0, 0x400}}) 12:03:47 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 16) [ 1075.560031] FAULT_INJECTION: forcing a failure. [ 1075.560031] name failslab, interval 1, probability 0, space 0, times 0 [ 1075.561392] CPU: 0 PID: 9963 Comm: syz-executor.3 Not tainted 5.10.199 #1 [ 1075.562180] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1075.563135] Call Trace: [ 1075.563447] dump_stack+0x107/0x167 [ 1075.563870] should_fail.cold+0x5/0xa [ 1075.564332] ? create_object.isra.0+0x3a/0xa20 [ 1075.564865] should_failslab+0x5/0x20 [ 1075.565307] kmem_cache_alloc+0x5b/0x310 [ 1075.565778] ? vsnprintf+0x4ba/0x1600 [ 1075.566231] create_object.isra.0+0x3a/0xa20 [ 1075.566742] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1075.567330] __kmalloc_track_caller+0x177/0x370 [ 1075.567869] ? kvasprintf_const+0x60/0x1a0 [ 1075.568384] kvasprintf+0xb5/0x150 [ 1075.568794] ? bust_spinlocks+0xe0/0xe0 [ 1075.569270] ? lock_release+0x680/0x680 [ 1075.569726] ? find_held_lock+0x2c/0x110 [ 1075.570219] kvasprintf_const+0x60/0x1a0 [ 1075.570711] kobject_set_name_vargs+0x56/0x150 [ 1075.571264] dev_set_name+0xbb/0xf0 [ 1075.571697] ? device_initialize+0x620/0x620 [ 1075.572225] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1075.572854] ? kmalloc_order+0xfe/0x160 [ 1075.573339] wiphy_new_nm+0x805/0x1e00 [ 1075.573817] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1075.574381] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1075.575011] ? __local_bh_enable_ip+0x9d/0x100 [ 1075.575581] ? trace_hardirqs_on+0x5b/0x180 [ 1075.576137] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1075.576725] ? ____sys_sendmsg+0x70d/0x870 [ 1075.577231] ? ___sys_sendmsg+0xf3/0x170 [ 1075.577706] ? __sys_sendmsg+0xe5/0x1b0 [ 1075.578183] ? do_syscall_64+0x33/0x40 [ 1075.578647] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1075.579282] ? __lockdep_reset_lock+0x180/0x180 [ 1075.579837] ? lock_acquire+0x197/0x470 [ 1075.580328] ? create_object.isra.0+0x3ad/0xa20 [ 1075.580892] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1075.581451] ? __kmalloc+0x16e/0x390 [ 1075.581898] hwsim_new_radio_nl+0x991/0x1080 [ 1075.582431] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1075.583036] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1075.583814] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1075.584631] genl_family_rcv_msg_doit+0x22d/0x330 [ 1075.585239] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1075.586067] ? cap_capable+0x1d6/0x240 [ 1075.586539] ? ns_capable+0xe2/0x110 [ 1075.586983] genl_rcv_msg+0x33c/0x5a0 [ 1075.587494] ? genl_get_cmd+0x480/0x480 [ 1075.588070] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1075.588681] ? lock_release+0x680/0x680 [ 1075.589174] ? __lockdep_reset_lock+0x180/0x180 [ 1075.589739] netlink_rcv_skb+0x14b/0x430 [ 1075.590222] ? genl_get_cmd+0x480/0x480 [ 1075.590694] ? netlink_ack+0xab0/0xab0 [ 1075.591169] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1075.591720] ? is_vmalloc_addr+0x7b/0xb0 [ 1075.592231] genl_rcv+0x24/0x40 [ 1075.592643] netlink_unicast+0x549/0x7f0 [ 1075.593156] ? netlink_attachskb+0x870/0x870 [ 1075.593683] ? __virt_addr_valid+0x128/0x350 [ 1075.594241] netlink_sendmsg+0x90f/0xdf0 [ 1075.594745] ? netlink_unicast+0x7f0/0x7f0 [ 1075.595277] ? netlink_unicast+0x7f0/0x7f0 [ 1075.595807] __sock_sendmsg+0x154/0x190 [ 1075.596306] ____sys_sendmsg+0x70d/0x870 [ 1075.596811] ? sock_write_iter+0x3d0/0x3d0 [ 1075.597326] ? do_recvmmsg+0x6d0/0x6d0 [ 1075.597801] ? perf_trace_lock+0xac/0x490 [ 1075.598305] ? __lockdep_reset_lock+0x180/0x180 [ 1075.598860] ? perf_trace_lock+0xac/0x490 [ 1075.599373] ? SOFTIRQ_verbose+0x10/0x10 [ 1075.599872] ___sys_sendmsg+0xf3/0x170 [ 1075.600343] ? sendmsg_copy_msghdr+0x160/0x160 [ 1075.600912] ? lock_downgrade+0x6d0/0x6d0 [ 1075.601421] ? find_held_lock+0x2c/0x110 [ 1075.601925] ? __fget_files+0x296/0x4c0 [ 1075.602428] ? __fget_light+0xea/0x290 [ 1075.602919] __sys_sendmsg+0xe5/0x1b0 [ 1075.603382] ? __sys_sendmsg_sock+0x40/0x40 [ 1075.603913] ? rcu_read_lock_any_held+0x75/0xa0 [ 1075.604470] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1075.605085] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1075.605718] ? trace_hardirqs_on+0x5b/0x180 [ 1075.606256] do_syscall_64+0x33/0x40 [ 1075.606712] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1075.607330] RIP: 0033:0x7fed842aab19 [ 1075.607784] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1075.609942] RSP: 002b:00007fed81820188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1075.610874] RAX: ffffffffffffffda RBX: 00007fed843bdf60 RCX: 00007fed842aab19 [ 1075.611717] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1075.612537] RBP: 00007fed818201d0 R08: 0000000000000000 R09: 0000000000000000 [ 1075.613352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1075.614181] R13: 00007ffe3d75192f R14: 00007fed81820300 R15: 0000000000022000 12:03:47 executing program 6: gettid() perf_event_open(&(0x7f0000001d80)={0x4, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x8, 0x6}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = add_key$fscrypt_v1(&(0x7f0000000180), &(0x7f00000001c0)={'fscrypt:', @desc4}, &(0x7f0000000200)={0x0, "f038779de021f8c8c974dd89170cf2579d1fa459ba726003d07140eeb342b87ae631f7a548867a29f29fd1637ddac658a709b49b093393d0e1c7391515c7ab7c"}, 0x48, 0xfffffffffffffffe) keyctl$set_timeout(0xf, r0, 0x80000001) perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x96, 0xb9, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x4}, 0x10000, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x80}, 0x0, 0x7, 0xffffffffffffffff, 0x0) unshare(0x480) fork() keyctl$invalidate(0x15, 0x0) setgid(0x0) keyctl$chown(0x4, r0, 0xee01, 0x0) r1 = getpgrp(0xffffffffffffffff) waitid(0x2, r1, &(0x7f0000000080), 0x6000000d, 0x0) [ 1075.669191] FAULT_INJECTION: forcing a failure. [ 1075.669191] name failslab, interval 1, probability 0, space 0, times 0 [ 1075.671572] CPU: 1 PID: 9969 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 1075.673028] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1075.674702] Call Trace: [ 1075.675252] dump_stack+0x107/0x167 [ 1075.675995] should_fail.cold+0x5/0xa [ 1075.676784] ? create_object.isra.0+0x3a/0xa20 [ 1075.677736] should_failslab+0x5/0x20 [ 1075.678521] kmem_cache_alloc+0x5b/0x310 [ 1075.679354] ? vsnprintf+0x4ba/0x1600 [ 1075.680161] create_object.isra.0+0x3a/0xa20 [ 1075.681064] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1075.682110] __kmalloc_track_caller+0x177/0x370 [ 1075.683067] ? kasprintf+0xbb/0xf0 [ 1075.683790] kvasprintf+0xb5/0x150 [ 1075.684524] ? bust_spinlocks+0xe0/0xe0 [ 1075.685342] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1075.686417] ? get_random_u32+0x3cb/0x670 [ 1075.687293] kasprintf+0xbb/0xf0 [ 1075.687991] ? kvasprintf_const+0x1a0/0x1a0 [ 1075.688882] ? lockdep_init_map_type+0x2c7/0x780 [ 1075.689856] ? lockdep_init_map_type+0x2c7/0x780 [ 1075.690828] ieee80211_alloc_led_names+0x117/0x420 [ 1075.691839] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1075.692827] ? trace_hardirqs_on+0x5b/0x180 12:03:47 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 14) [ 1075.693716] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1075.694836] ? ____sys_sendmsg+0x70d/0x870 [ 1075.695709] ? ___sys_sendmsg+0xf3/0x170 [ 1075.696555] ? __sys_sendmsg+0xe5/0x1b0 [ 1075.697365] ? do_syscall_64+0x33/0x40 [ 1075.698165] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1075.699250] ? __lockdep_reset_lock+0x180/0x180 [ 1075.700204] ? lock_acquire+0x197/0x470 [ 1075.701003] ? create_object.isra.0+0x3ad/0xa20 [ 1075.701951] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1075.702904] ? __kmalloc+0x16e/0x390 [ 1075.703682] hwsim_new_radio_nl+0x991/0x1080 [ 1075.704609] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1075.705682] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1075.707034] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1075.708383] genl_family_rcv_msg_doit+0x22d/0x330 [ 1075.709379] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1075.710718] ? cap_capable+0x1d6/0x240 [ 1075.711533] ? ns_capable+0xe2/0x110 [ 1075.712318] genl_rcv_msg+0x33c/0x5a0 [ 1075.713120] ? genl_get_cmd+0x480/0x480 [ 1075.713939] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1075.714994] ? lock_release+0x680/0x680 [ 1075.715823] ? __lockdep_reset_lock+0x180/0x180 [ 1075.716787] netlink_rcv_skb+0x14b/0x430 [ 1075.717623] ? genl_get_cmd+0x480/0x480 [ 1075.718457] ? netlink_ack+0xab0/0xab0 [ 1075.719272] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1075.720211] ? is_vmalloc_addr+0x7b/0xb0 [ 1075.721043] genl_rcv+0x24/0x40 [ 1075.721726] netlink_unicast+0x549/0x7f0 [ 1075.722565] ? netlink_attachskb+0x870/0x870 [ 1075.723492] ? __virt_addr_valid+0x128/0x350 [ 1075.724427] netlink_sendmsg+0x90f/0xdf0 [ 1075.725269] ? netlink_unicast+0x7f0/0x7f0 [ 1075.726142] ? netlink_unicast+0x7f0/0x7f0 [ 1075.726995] __sock_sendmsg+0x154/0x190 [ 1075.727811] ____sys_sendmsg+0x70d/0x870 [ 1075.728652] ? sock_write_iter+0x3d0/0x3d0 [ 1075.729505] ? do_recvmmsg+0x6d0/0x6d0 [ 1075.730292] ? perf_trace_lock+0xac/0x490 [ 1075.731145] ? __lockdep_reset_lock+0x180/0x180 [ 1075.732092] ? perf_trace_lock+0xac/0x490 [ 1075.732940] ? SOFTIRQ_verbose+0x10/0x10 [ 1075.733770] ___sys_sendmsg+0xf3/0x170 [ 1075.734566] ? sendmsg_copy_msghdr+0x160/0x160 [ 1075.735496] ? lock_downgrade+0x6d0/0x6d0 [ 1075.736362] ? find_held_lock+0x2c/0x110 [ 1075.737202] ? __fget_files+0x296/0x4c0 [ 1075.738030] ? __fget_light+0xea/0x290 [ 1075.738835] __sys_sendmsg+0xe5/0x1b0 [ 1075.739614] ? __sys_sendmsg_sock+0x40/0x40 [ 1075.740501] ? rcu_read_lock_any_held+0x75/0xa0 [ 1075.741484] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1075.742553] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1075.743610] ? trace_hardirqs_on+0x5b/0x180 [ 1075.744506] do_syscall_64+0x33/0x40 [ 1075.745283] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1075.746330] RIP: 0033:0x7f59b4343b19 [ 1075.747105] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1075.750835] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1075.752379] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 1075.753837] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1075.755281] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1075.756731] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1075.758172] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 12:03:47 executing program 4: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x3a75, &(0x7f0000000340), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000240)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r3, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) socket$inet6_udplite(0xa, 0x2, 0x88) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'lo\x00'}) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) sendmsg$NL80211_CMD_GET_COALESCE(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x80}, 0x0) ioctl$sock_inet6_SIOCSIFADDR(r3, 0x8916, &(0x7f0000000040)={@private2={0xfc, 0x2, '\x00', 0x1}, 0x4, r6}) r7 = syz_genetlink_get_family_id$devlink(&(0x7f0000000100), 0xffffffffffffffff) sendmsg$DEVLINK_CMD_SB_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000180)={&(0x7f0000000500)={0xf4, r7, 0x1, 0x70bd27, 0x25dfdbfc, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x10001}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0xfffffff9}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x4}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x2a}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x2000000}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x3}}]}, 0xf4}, 0x1, 0x0, 0x0, 0x40040}, 0x4000) stat(0x0, &(0x7f0000001c00)) r8 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r8, r2, &(0x7f00000002c0)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x5, 0x0, @fd, 0x0, 0x0, 0x0, 0x0, 0x0, {0x2}}, 0x80000001) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 12:03:47 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4) r1 = openat$sr(0xffffffffffffff9c, &(0x7f00000002c0), 0x22000, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x3, &(0x7f0000000300)=0x6, 0x4) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c) lseek(r0, 0x1, 0x4) r2 = dup(r0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_int(r0, 0x6, 0x19, &(0x7f00000000c0)=0x6, 0x4) r3 = perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_bp={0x0}, 0x0, 0x4, 0x0, 0x0, 0x3, 0x0, 0x8000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x31, &(0x7f0000000540)=[{&(0x7f0000000100)=':\x00', 0xfffffdef}], 0x1}, 0x10044001) r4 = socket$packet(0x11, 0x2, 0x300) sendfile(r3, r4, &(0x7f00000001c0)=0x6c51, 0x3b83) r5 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000200), 0x80, 0x0) r6 = openat$cgroup_freezer_state(r2, &(0x7f0000000240), 0x2, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r5, 0xc0189379, &(0x7f0000000340)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r6, @ANYBLOB="000000000000004f152f66696c65302f66696c653000"]) [ 1075.865519] FAULT_INJECTION: forcing a failure. [ 1075.865519] name failslab, interval 1, probability 0, space 0, times 0 [ 1075.867012] CPU: 0 PID: 9973 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1075.867753] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1075.868700] Call Trace: [ 1075.869000] dump_stack+0x107/0x167 [ 1075.869413] should_fail.cold+0x5/0xa [ 1075.869830] ? kvmalloc_node+0x119/0x170 [ 1075.870286] should_failslab+0x5/0x20 [ 1075.870709] __kmalloc_node+0x76/0x420 [ 1075.871146] kvmalloc_node+0x119/0x170 [ 1075.871587] bucket_table_alloc.isra.0+0x88/0x490 [ 1075.872130] rhashtable_init+0x341/0x760 [ 1075.872595] rhltable_init+0x1c/0x60 [ 1075.873017] sta_info_init+0x1f/0x110 [ 1075.873438] ieee80211_alloc_hw_nm+0x6a0/0x2320 [ 1075.873965] ? trace_hardirqs_on+0x5b/0x180 [ 1075.874449] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1075.875005] ? ____sys_sendmsg+0x70d/0x870 [ 1075.875479] ? ___sys_sendmsg+0xf3/0x170 [ 1075.875935] ? __sys_sendmsg+0xe5/0x1b0 [ 1075.876383] ? do_syscall_64+0x33/0x40 [ 1075.876816] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1075.877422] ? __lockdep_reset_lock+0x180/0x180 [ 1075.877931] ? lock_acquire+0x197/0x470 [ 1075.878389] ? create_object.isra.0+0x3ad/0xa20 [ 1075.878919] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1075.879425] ? __kmalloc+0x16e/0x390 [ 1075.879857] hwsim_new_radio_nl+0x991/0x1080 [ 1075.880347] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1075.880950] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1075.881654] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1075.882400] genl_family_rcv_msg_doit+0x22d/0x330 [ 1075.882923] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1075.883681] ? cap_capable+0x1d6/0x240 [ 1075.884139] ? ns_capable+0xe2/0x110 [ 1075.884571] genl_rcv_msg+0x33c/0x5a0 [ 1075.885004] ? genl_get_cmd+0x480/0x480 [ 1075.885457] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1075.886017] ? lock_release+0x680/0x680 [ 1075.886467] ? __lockdep_reset_lock+0x180/0x180 [ 1075.886968] netlink_rcv_skb+0x14b/0x430 [ 1075.887432] ? genl_get_cmd+0x480/0x480 [ 1075.887865] ? netlink_ack+0xab0/0xab0 [ 1075.888335] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1075.888832] ? is_vmalloc_addr+0x7b/0xb0 [ 1075.889303] genl_rcv+0x24/0x40 [ 1075.889664] netlink_unicast+0x549/0x7f0 [ 1075.890133] ? netlink_attachskb+0x870/0x870 [ 1075.890606] ? __virt_addr_valid+0x128/0x350 [ 1075.891115] netlink_sendmsg+0x90f/0xdf0 [ 1075.891578] ? netlink_unicast+0x7f0/0x7f0 [ 1075.892069] ? netlink_unicast+0x7f0/0x7f0 [ 1075.892535] __sock_sendmsg+0x154/0x190 [ 1075.892991] ____sys_sendmsg+0x70d/0x870 [ 1075.893436] ? sock_write_iter+0x3d0/0x3d0 [ 1075.893916] ? do_recvmmsg+0x6d0/0x6d0 [ 1075.894355] ? perf_trace_lock+0xac/0x490 [ 1075.894828] ? __lockdep_reset_lock+0x180/0x180 [ 1075.895337] ? perf_trace_lock+0xac/0x490 [ 1075.895812] ? SOFTIRQ_verbose+0x10/0x10 [ 1075.896272] ___sys_sendmsg+0xf3/0x170 [ 1075.896719] ? sendmsg_copy_msghdr+0x160/0x160 [ 1075.897221] ? lock_downgrade+0x6d0/0x6d0 [ 1075.897694] ? find_held_lock+0x2c/0x110 [ 1075.898142] ? __fget_files+0x296/0x4c0 [ 1075.898608] ? __fget_light+0xea/0x290 [ 1075.899035] __sys_sendmsg+0xe5/0x1b0 [ 1075.899470] ? __sys_sendmsg_sock+0x40/0x40 [ 1075.899933] ? rcu_read_lock_any_held+0x75/0xa0 [ 1075.900482] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1075.901042] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1075.901628] ? trace_hardirqs_on+0x5b/0x180 [ 1075.902112] do_syscall_64+0x33/0x40 [ 1075.902536] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1075.903083] RIP: 0033:0x7fb858d1fb19 [ 1075.903511] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1075.905494] RSP: 002b:00007fb856295188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1075.906369] RAX: ffffffffffffffda RBX: 00007fb858e32f60 RCX: 00007fb858d1fb19 [ 1075.907170] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1075.907976] RBP: 00007fb8562951d0 R08: 0000000000000000 R09: 0000000000000000 [ 1075.908798] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1075.909604] R13: 00007ffde2c0b16f R14: 00007fb856295300 R15: 0000000000022000 12:03:47 executing program 1: keyctl$clear(0x10, 0xfffffffffffffffb) request_key(&(0x7f0000000000)='rxrpc_s\x00', &(0x7f0000000040)={'syz', 0x1}, &(0x7f0000000080)=']+!\x00', 0xfffffffffffffffe) keyctl$assume_authority(0x10, 0x0) keyctl$read(0xb, 0x0, 0x0, 0x0) request_key(&(0x7f00000000c0)='dns_resolver\x00', &(0x7f0000000100)={'syz', 0x1}, &(0x7f0000000140)='(#\x00', 0xfffffffffffffffa) request_key(&(0x7f00000003c0)='user\x00', &(0x7f0000000400)={'syz', 0x3}, &(0x7f0000000440)='rxrpc_s\x00', 0x0) [ 1076.005835] FAULT_INJECTION: forcing a failure. [ 1076.005835] name failslab, interval 1, probability 0, space 0, times 0 [ 1076.008285] CPU: 1 PID: 9985 Comm: syz-executor.3 Not tainted 5.10.199 #1 [ 1076.009672] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1076.011349] Call Trace: [ 1076.011892] dump_stack+0x107/0x167 [ 1076.012648] should_fail.cold+0x5/0xa [ 1076.013556] ? rfkill_alloc+0xa6/0x2c0 [ 1076.014354] should_failslab+0x5/0x20 [ 1076.015130] __kmalloc+0x72/0x390 12:03:47 executing program 6: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xc}, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000ac0)={0x614, 0x26, 0x101, 0x70bd2a, 0x0, {}, [@nested={0x5ff, 0x0, 0x0, 0x1, [@generic="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", @typed={0xc, 0x0, 0x0, 0x0, @u64}]}]}, 0x614}}, 0x0) r2 = syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180), &(0x7f0000002a40)) io_uring_enter(r2, 0x76d3, 0x0, 0x0, 0x0, 0x0) ioctl$F2FS_IOC_PRECACHE_EXTENTS(r0, 0xf50f, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8, 0x18012, 0xffffffffffffffff, 0x8000000) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) r4 = fork() ptrace$setopts(0x4206, r4, 0x0, 0x0) ptrace(0x8, r4) clone3(&(0x7f0000000480)={0x0, &(0x7f0000000140), &(0x7f0000000240), &(0x7f0000000300), {0x3f}, &(0x7f0000002a80)=""/4096, 0x1000, &(0x7f0000000340)=""/201, &(0x7f0000000440)=[r4], 0x1}, 0x58) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_SEND={0x1a, 0x4, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000180)="c3495f24ee914f16a45a1af7d46835f00ed068d0d4636913d5de674949cd3056f9935040acfd1904566c196354c9552ff38a04f99968389612c4eedee0a8cc3807714287e6ada65fb38b24a15f3ae2d6a0da487ddd1637f213b2e562b83e489fa0b6937147c2bab415d839709b044ad180f959d25e6f93898b6d9a09173fda0f757df7d079fe1f5fd66a0f4955256ab1f71503a233b1e7e0e21e6e5000d4273b6bfeebe8118f35d8", 0xa8, 0x4000005, 0x0, {0x0, r3}}, 0x8) sendmsg$IPSET_CMD_GET_BYNAME(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x34, 0xe, 0x6, 0x201, 0x0, 0x0, {0xc, 0x0, 0x6}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x34}}, 0x4000012) syz_io_uring_setup(0x623f, 0x0, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000100)=0x0) r6 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(0x0, r5, &(0x7f0000000000)=@IORING_OP_RECV=@pass_buffer={0x1b, 0x0, 0x0, r6, 0x0, &(0x7f0000000500), 0x0, 0xa63fd6a5717620d2, 0x1}, 0x0) r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) fadvise64(r7, 0x0, 0x0, 0x0) [ 1076.015849] rfkill_alloc+0xa6/0x2c0 [ 1076.016718] wiphy_new_nm+0x12a3/0x1e00 [ 1076.017548] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1076.018505] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1076.019561] ? __local_bh_enable_ip+0x9d/0x100 12:03:47 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 23) [ 1076.020499] ? trace_hardirqs_on+0x5b/0x180 [ 1076.021474] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1076.022463] ? ____sys_sendmsg+0x70d/0x870 [ 1076.023323] ? ___sys_sendmsg+0xf3/0x170 [ 1076.024166] ? __sys_sendmsg+0xe5/0x1b0 [ 1076.024965] ? do_syscall_64+0x33/0x40 [ 1076.025751] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1076.026813] ? __lockdep_reset_lock+0x180/0x180 [ 1076.027748] ? lock_acquire+0x197/0x470 [ 1076.028554] ? create_object.isra.0+0x3ad/0xa20 [ 1076.029497] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1076.030432] ? __kmalloc+0x16e/0x390 [ 1076.031190] hwsim_new_radio_nl+0x991/0x1080 [ 1076.032092] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1076.033158] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1076.034486] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1076.035808] genl_family_rcv_msg_doit+0x22d/0x330 [ 1076.036804] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1076.038132] ? cap_capable+0x1d6/0x240 [ 1076.038941] ? ns_capable+0xe2/0x110 [ 1076.039701] genl_rcv_msg+0x33c/0x5a0 [ 1076.040503] ? genl_get_cmd+0x480/0x480 [ 1076.041317] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1076.042364] ? lock_release+0x680/0x680 [ 1076.043173] ? __lockdep_reset_lock+0x180/0x180 [ 1076.044141] netlink_rcv_skb+0x14b/0x430 [ 1076.044959] ? genl_get_cmd+0x480/0x480 [ 1076.045766] ? netlink_ack+0xab0/0xab0 [ 1076.046572] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1076.047502] ? is_vmalloc_addr+0x7b/0xb0 [ 1076.048333] genl_rcv+0x24/0x40 [ 1076.048998] netlink_unicast+0x549/0x7f0 [ 1076.049830] ? netlink_attachskb+0x870/0x870 [ 1076.050720] ? __virt_addr_valid+0x128/0x350 [ 1076.051627] netlink_sendmsg+0x90f/0xdf0 [ 1076.052469] ? netlink_unicast+0x7f0/0x7f0 [ 1076.053342] ? netlink_unicast+0x7f0/0x7f0 [ 1076.054195] __sock_sendmsg+0x154/0x190 12:03:47 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 17) [ 1076.054996] ____sys_sendmsg+0x70d/0x870 [ 1076.055928] ? sock_write_iter+0x3d0/0x3d0 [ 1076.056784] ? do_recvmmsg+0x6d0/0x6d0 [ 1076.057572] ? perf_trace_lock+0xac/0x490 [ 1076.058420] ? __lockdep_reset_lock+0x180/0x180 [ 1076.059356] ? perf_trace_lock+0xac/0x490 [ 1076.060200] ? SOFTIRQ_verbose+0x10/0x10 [ 1076.061025] ___sys_sendmsg+0xf3/0x170 [ 1076.061820] ? sendmsg_copy_msghdr+0x160/0x160 [ 1076.062752] ? lock_downgrade+0x6d0/0x6d0 [ 1076.063594] ? find_held_lock+0x2c/0x110 [ 1076.064453] ? __fget_files+0x296/0x4c0 [ 1076.065273] ? __fget_light+0xea/0x290 [ 1076.066073] __sys_sendmsg+0xe5/0x1b0 [ 1076.066845] ? __sys_sendmsg_sock+0x40/0x40 [ 1076.067719] ? rcu_read_lock_any_held+0x75/0xa0 [ 1076.068693] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1076.069747] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1076.070790] ? trace_hardirqs_on+0x5b/0x180 [ 1076.071667] do_syscall_64+0x33/0x40 [ 1076.072437] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1076.073470] RIP: 0033:0x7fed842aab19 [ 1076.074234] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1076.077948] RSP: 002b:00007fed81820188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1076.079479] RAX: ffffffffffffffda RBX: 00007fed843bdf60 RCX: 00007fed842aab19 [ 1076.080933] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1076.082365] RBP: 00007fed818201d0 R08: 0000000000000000 R09: 0000000000000000 [ 1076.083805] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1076.085254] R13: 00007ffe3d75192f R14: 00007fed81820300 R15: 0000000000022000 [ 1076.088944] FAULT_INJECTION: forcing a failure. [ 1076.088944] name failslab, interval 1, probability 0, space 0, times 0 [ 1076.090222] CPU: 0 PID: 10001 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 1076.090965] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1076.091873] Call Trace: [ 1076.092174] dump_stack+0x107/0x167 [ 1076.092571] should_fail.cold+0x5/0xa [ 1076.092985] ? create_object.isra.0+0x3a/0xa20 [ 1076.093502] should_failslab+0x5/0x20 [ 1076.093932] kmem_cache_alloc+0x5b/0x310 [ 1076.094393] ? vsnprintf+0x4ba/0x1600 [ 1076.094826] create_object.isra.0+0x3a/0xa20 [ 1076.095315] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1076.095893] __kmalloc_track_caller+0x177/0x370 [ 1076.096423] ? kasprintf+0xbb/0xf0 [ 1076.096809] kvasprintf+0xb5/0x150 [ 1076.097196] ? bust_spinlocks+0xe0/0xe0 [ 1076.097625] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1076.098187] ? get_random_u32+0x3cb/0x670 [ 1076.098649] kasprintf+0xbb/0xf0 [ 1076.099022] ? kvasprintf_const+0x1a0/0x1a0 [ 1076.099493] ? lockdep_init_map_type+0x2c7/0x780 [ 1076.099994] ? lockdep_init_map_type+0x2c7/0x780 [ 1076.100513] ieee80211_alloc_led_names+0x1ac/0x420 [ 1076.101058] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1076.101577] ? trace_hardirqs_on+0x5b/0x180 [ 1076.102055] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1076.102596] ? ____sys_sendmsg+0x70d/0x870 [ 1076.103054] ? ___sys_sendmsg+0xf3/0x170 [ 1076.103493] ? __sys_sendmsg+0xe5/0x1b0 [ 1076.103927] ? do_syscall_64+0x33/0x40 [ 1076.104387] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1076.104988] ? __lockdep_reset_lock+0x180/0x180 [ 1076.105510] ? lock_acquire+0x197/0x470 [ 1076.105953] ? create_object.isra.0+0x3ad/0xa20 [ 1076.106485] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1076.107009] ? __kmalloc+0x16e/0x390 [ 1076.107421] hwsim_new_radio_nl+0x991/0x1080 [ 1076.107901] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1076.108484] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1076.109193] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1076.109909] genl_family_rcv_msg_doit+0x22d/0x330 [ 1076.110438] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1076.111157] ? cap_capable+0x1d6/0x240 [ 1076.111592] ? ns_capable+0xe2/0x110 [ 1076.111999] genl_rcv_msg+0x33c/0x5a0 [ 1076.112413] ? genl_get_cmd+0x480/0x480 [ 1076.112852] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1076.113420] ? lock_release+0x680/0x680 [ 1076.113859] ? __lockdep_reset_lock+0x180/0x180 [ 1076.114370] netlink_rcv_skb+0x14b/0x430 [ 1076.114816] ? genl_get_cmd+0x480/0x480 [ 1076.115252] ? netlink_ack+0xab0/0xab0 [ 1076.115703] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1076.116224] ? is_vmalloc_addr+0x7b/0xb0 [ 1076.116688] genl_rcv+0x24/0x40 [ 1076.117058] netlink_unicast+0x549/0x7f0 [ 1076.117524] ? netlink_attachskb+0x870/0x870 [ 1076.118026] ? __virt_addr_valid+0x128/0x350 [ 1076.118544] netlink_sendmsg+0x90f/0xdf0 [ 1076.119024] ? netlink_unicast+0x7f0/0x7f0 [ 1076.119515] ? netlink_unicast+0x7f0/0x7f0 [ 1076.119994] __sock_sendmsg+0x154/0x190 [ 1076.120423] ____sys_sendmsg+0x70d/0x870 [ 1076.120866] ? sock_write_iter+0x3d0/0x3d0 [ 1076.121326] ? do_recvmmsg+0x6d0/0x6d0 [ 1076.121751] ? perf_trace_lock+0xac/0x490 [ 1076.122210] ? __lockdep_reset_lock+0x180/0x180 [ 1076.122737] ? perf_trace_lock+0xac/0x490 [ 1076.123219] ? SOFTIRQ_verbose+0x10/0x10 [ 1076.123687] ___sys_sendmsg+0xf3/0x170 [ 1076.124128] ? sendmsg_copy_msghdr+0x160/0x160 [ 1076.124647] ? lock_downgrade+0x6d0/0x6d0 [ 1076.125127] ? find_held_lock+0x2c/0x110 [ 1076.125603] ? __fget_files+0x296/0x4c0 [ 1076.126056] ? __fget_light+0xea/0x290 [ 1076.126495] __sys_sendmsg+0xe5/0x1b0 [ 1076.126930] ? __sys_sendmsg_sock+0x40/0x40 [ 1076.127423] ? rcu_read_lock_any_held+0x75/0xa0 [ 1076.127965] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1076.128558] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1076.129142] ? trace_hardirqs_on+0x5b/0x180 [ 1076.129646] do_syscall_64+0x33/0x40 [ 1076.130061] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1076.130613] RIP: 0033:0x7f59b4343b19 [ 1076.131020] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1076.133071] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1076.133917] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 1076.134729] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1076.135538] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1076.136343] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1076.136947] netlink: 1520 bytes leftover after parsing attributes in process `syz-executor.6'. [ 1076.137149] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 12:03:47 executing program 0: ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f00000001c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x4}}, './file0\x00'}) setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000200), 0x4) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r1, 0x4) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f00000000c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff}, './file0\x00'}) ioctl$BTRFS_IOC_START_SYNC(0xffffffffffffffff, 0x80089418, &(0x7f0000000100)=0x0) ioctl$BTRFS_IOC_SNAP_DESTROY_V2(0xffffffffffffffff, 0x5000943f, &(0x7f0000001e00)={{r2}, r3, 0x2, @inherit={0x68, &(0x7f0000000140)={0x0, 0x4, 0x7, 0x9, {0x0, 0x0, 0x7, 0x7f, 0x8}, [0x1400000000, 0x6, 0x3, 0x100000000]}}, @subvolid=0xe1}) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r1, 0x50009418, &(0x7f0000002e00)={{}, r3, 0x10, @inherit={0x68, &(0x7f0000000340)=ANY=[@ANYBLOB="000000000000000004000000000000009e3b00000000b9ff988b53914fcde1fc7f3eae8d000000ff7f0000000000002200000000000000723c000000000000020000000000000000000100000000000104000000200000000000000006"]}, @subvolid=0x6}) r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r1, 0x0) syz_io_uring_setup(0x4, &(0x7f0000000080)={0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000b0000)=nil, &(0x7f00000002c0)=0x0, &(0x7f0000000000)=0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0, 0x3}, 0x4000, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r4, r6, &(0x7f0000000180)=@IORING_OP_SEND={0x1a, 0x2, 0x0, r1, 0x0, &(0x7f0000000300), 0x0, 0x8080, 0x1}, 0x0) syz_io_uring_complete(r5) clock_gettime(0x0, &(0x7f0000000400)) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000100)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x2, 0x0, 0x0, 0x0, 0x23456}, 0x4) syz_io_uring_submit(0x0, 0x0, &(0x7f0000006300)=@IORING_OP_CLOSE={0x13, 0x3}, 0x3) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_FASTOPEN_KEY(r7, 0x6, 0x21, &(0x7f00000000c0)="bd5aea8b8c2fbe2d2d2ebd5b2689660c", 0x10) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd=r7, 0xffffffffffff56c0, 0x0, 0x1f}, 0x2) creat(&(0x7f0000000100)='./file0\x00', 0x32) 12:03:47 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 15) [ 1076.235129] FAULT_INJECTION: forcing a failure. [ 1076.235129] name failslab, interval 1, probability 0, space 0, times 0 [ 1076.236403] CPU: 0 PID: 10003 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1076.237157] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1076.238047] Call Trace: [ 1076.238347] dump_stack+0x107/0x167 [ 1076.238757] should_fail.cold+0x5/0xa [ 1076.239205] ? create_object.isra.0+0x3a/0xa20 [ 1076.239722] should_failslab+0x5/0x20 [ 1076.240147] kmem_cache_alloc+0x5b/0x310 [ 1076.240595] create_object.isra.0+0x3a/0xa20 [ 1076.241078] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1076.241629] __kmalloc_node+0x1ae/0x420 [ 1076.242079] kvmalloc_node+0x119/0x170 [ 1076.242517] bucket_table_alloc.isra.0+0x88/0x490 [ 1076.243069] rhashtable_init+0x341/0x760 [ 1076.243522] rhltable_init+0x1c/0x60 [ 1076.243949] sta_info_init+0x1f/0x110 [ 1076.244393] ieee80211_alloc_hw_nm+0x6a0/0x2320 [ 1076.244902] ? trace_hardirqs_on+0x5b/0x180 [ 1076.245366] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1076.245892] ? ____sys_sendmsg+0x70d/0x870 [ 1076.246348] ? ___sys_sendmsg+0xf3/0x170 [ 1076.246793] ? __sys_sendmsg+0xe5/0x1b0 [ 1076.247237] ? do_syscall_64+0x33/0x40 [ 1076.247672] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1076.248255] ? __lockdep_reset_lock+0x180/0x180 [ 1076.248754] ? lock_acquire+0x197/0x470 [ 1076.249185] ? create_object.isra.0+0x3ad/0xa20 [ 1076.249703] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1076.250215] ? __kmalloc+0x16e/0x390 [ 1076.250620] hwsim_new_radio_nl+0x991/0x1080 [ 1076.251099] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1076.251680] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1076.252402] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1076.253123] genl_family_rcv_msg_doit+0x22d/0x330 [ 1076.253656] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1076.254383] ? cap_capable+0x1d6/0x240 [ 1076.254821] ? ns_capable+0xe2/0x110 [ 1076.255224] genl_rcv_msg+0x33c/0x5a0 [ 1076.255642] ? genl_get_cmd+0x480/0x480 [ 1076.256078] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1076.256667] ? lock_release+0x680/0x680 [ 1076.257092] ? __lockdep_reset_lock+0x180/0x180 [ 1076.257602] netlink_rcv_skb+0x14b/0x430 [ 1076.258046] ? genl_get_cmd+0x480/0x480 [ 1076.258494] ? netlink_ack+0xab0/0xab0 [ 1076.258934] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1076.259431] ? is_vmalloc_addr+0x7b/0xb0 [ 1076.259879] genl_rcv+0x24/0x40 [ 1076.260254] netlink_unicast+0x549/0x7f0 [ 1076.260713] ? netlink_attachskb+0x870/0x870 [ 1076.261199] ? __virt_addr_valid+0x128/0x350 [ 1076.261702] netlink_sendmsg+0x90f/0xdf0 [ 1076.262151] ? netlink_unicast+0x7f0/0x7f0 [ 1076.262640] ? netlink_unicast+0x7f0/0x7f0 [ 1076.263101] __sock_sendmsg+0x154/0x190 [ 1076.263532] ____sys_sendmsg+0x70d/0x870 [ 1076.263970] ? sock_write_iter+0x3d0/0x3d0 [ 1076.264446] ? do_recvmmsg+0x6d0/0x6d0 [ 1076.264870] ? perf_trace_lock+0xac/0x490 [ 1076.265337] ? __lockdep_reset_lock+0x180/0x180 [ 1076.265865] ? perf_trace_lock+0xac/0x490 [ 1076.266319] ? SOFTIRQ_verbose+0x10/0x10 [ 1076.266780] ___sys_sendmsg+0xf3/0x170 [ 1076.267212] ? sendmsg_copy_msghdr+0x160/0x160 [ 1076.267734] ? lock_downgrade+0x6d0/0x6d0 [ 1076.268201] ? find_held_lock+0x2c/0x110 [ 1076.268660] ? __fget_files+0x296/0x4c0 [ 1076.269119] ? __fget_light+0xea/0x290 [ 1076.269549] __sys_sendmsg+0xe5/0x1b0 [ 1076.269961] ? __sys_sendmsg_sock+0x40/0x40 [ 1076.270422] ? rcu_read_lock_any_held+0x75/0xa0 [ 1076.270937] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1076.271520] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1076.272120] ? trace_hardirqs_on+0x5b/0x180 [ 1076.272604] do_syscall_64+0x33/0x40 [ 1076.273022] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1076.273591] RIP: 0033:0x7fb858d1fb19 [ 1076.274017] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1076.276023] RSP: 002b:00007fb856295188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1076.276842] RAX: ffffffffffffffda RBX: 00007fb858e32f60 RCX: 00007fb858d1fb19 [ 1076.277627] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1076.278405] RBP: 00007fb8562951d0 R08: 0000000000000000 R09: 0000000000000000 [ 1076.279199] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1076.279982] R13: 00007ffde2c0b16f R14: 00007fb856295300 R15: 0000000000022000 12:03:47 executing program 1: syz_mount_image$vfat(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = inotify_init1(0x0) r1 = syz_io_uring_setup(0x458a, &(0x7f0000000080)={0x0, 0x0, 0x4, 0x0, 0x66}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) fcntl$dupfd(r1, 0x0, r0) inotify_add_watch(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x1) chdir(&(0x7f0000000040)='./file0\x00') openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0) getdents64(r2, &(0x7f0000001200)=""/4081, 0x742) r3 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r4 = inotify_init1(0x0) r5 = inotify_add_watch(r4, &(0x7f0000000040)='.\x00', 0x2000003) inotify_rm_watch(r4, r5) r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r6, 0x0, 0x100000001) 12:03:47 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x1000004) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000140)) connect$unix(r2, &(0x7f0000001140)=@abs, 0x6e) sendfile(r1, r0, 0x0, 0xb052) 12:03:47 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 18) 12:03:47 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 24) [ 1076.444760] FAULT_INJECTION: forcing a failure. [ 1076.444760] name failslab, interval 1, probability 0, space 0, times 0 [ 1076.447167] CPU: 1 PID: 10022 Comm: syz-executor.3 Not tainted 5.10.199 #1 [ 1076.448578] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1076.450252] Call Trace: [ 1076.450789] dump_stack+0x107/0x167 [ 1076.451538] should_fail.cold+0x5/0xa [ 1076.452393] ? create_object.isra.0+0x3a/0xa20 [ 1076.453446] should_failslab+0x5/0x20 [ 1076.454216] kmem_cache_alloc+0x5b/0x310 [ 1076.455052] create_object.isra.0+0x3a/0xa20 [ 1076.455941] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1076.456986] __kmalloc+0x16e/0x390 [ 1076.457821] rfkill_alloc+0xa6/0x2c0 [ 1076.458638] wiphy_new_nm+0x12a3/0x1e00 [ 1076.459643] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1076.460608] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1076.461674] ? __local_bh_enable_ip+0x9d/0x100 [ 1076.462591] ? trace_hardirqs_on+0x5b/0x180 [ 1076.463473] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1076.464498] ? ____sys_sendmsg+0x70d/0x870 [ 1076.465350] ? ___sys_sendmsg+0xf3/0x170 [ 1076.466172] ? __sys_sendmsg+0xe5/0x1b0 [ 1076.466976] ? do_syscall_64+0x33/0x40 [ 1076.467807] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1076.469033] ? __lockdep_reset_lock+0x180/0x180 [ 1076.470134] ? lock_acquire+0x197/0x470 [ 1076.470990] ? create_object.isra.0+0x3ad/0xa20 [ 1076.471942] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1076.472929] ? __kmalloc+0x16e/0x390 [ 1076.473693] hwsim_new_radio_nl+0x991/0x1080 [ 1076.474587] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1076.475653] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1076.477084] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1076.478567] genl_family_rcv_msg_doit+0x22d/0x330 [ 1076.479667] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1076.481024] ? cap_capable+0x1d6/0x240 [ 1076.481829] ? ns_capable+0xe2/0x110 [ 1076.482590] genl_rcv_msg+0x33c/0x5a0 [ 1076.483368] ? genl_get_cmd+0x480/0x480 [ 1076.484184] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1076.485234] ? lock_release+0x680/0x680 [ 1076.486039] ? __lockdep_reset_lock+0x180/0x180 [ 1076.486996] netlink_rcv_skb+0x14b/0x430 [ 1076.487822] ? genl_get_cmd+0x480/0x480 [ 1076.488729] ? netlink_ack+0xab0/0xab0 [ 1076.489531] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1076.490463] ? is_vmalloc_addr+0x7b/0xb0 [ 1076.491441] genl_rcv+0x24/0x40 [ 1076.492278] netlink_unicast+0x549/0x7f0 [ 1076.493111] ? netlink_attachskb+0x870/0x870 [ 1076.494004] ? __virt_addr_valid+0x128/0x350 [ 1076.494909] netlink_sendmsg+0x90f/0xdf0 [ 1076.495747] ? netlink_unicast+0x7f0/0x7f0 [ 1076.496635] ? netlink_unicast+0x7f0/0x7f0 [ 1076.497500] __sock_sendmsg+0x154/0x190 [ 1076.498395] ____sys_sendmsg+0x70d/0x870 [ 1076.499310] ? sock_write_iter+0x3d0/0x3d0 [ 1076.500358] ? do_recvmmsg+0x6d0/0x6d0 [ 1076.501155] ? perf_trace_lock+0xac/0x490 [ 1076.502004] ? __lockdep_reset_lock+0x180/0x180 [ 1076.502944] ? perf_trace_lock+0xac/0x490 [ 1076.503788] ? SOFTIRQ_verbose+0x10/0x10 [ 1076.504714] ___sys_sendmsg+0xf3/0x170 [ 1076.505512] ? sendmsg_copy_msghdr+0x160/0x160 [ 1076.506818] ? lock_downgrade+0x6d0/0x6d0 [ 1076.507898] ? find_held_lock+0x2c/0x110 [ 1076.508905] ? __fget_files+0x296/0x4c0 [ 1076.509878] ? __fget_light+0xea/0x290 [ 1076.510825] __sys_sendmsg+0xe5/0x1b0 [ 1076.511734] ? __sys_sendmsg_sock+0x40/0x40 [ 1076.512874] ? rcu_read_lock_any_held+0x75/0xa0 [ 1076.514107] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1076.515578] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1076.516641] ? trace_hardirqs_on+0x5b/0x180 [ 1076.517522] do_syscall_64+0x33/0x40 [ 1076.518286] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1076.519326] RIP: 0033:0x7fed842aab19 [ 1076.520089] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1076.523822] RSP: 002b:00007fed81820188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1076.525379] RAX: ffffffffffffffda RBX: 00007fed843bdf60 RCX: 00007fed842aab19 [ 1076.526904] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1076.528441] RBP: 00007fed818201d0 R08: 0000000000000000 R09: 0000000000000000 [ 1076.530060] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1076.531503] R13: 00007ffe3d75192f R14: 00007fed81820300 R15: 0000000000022000 [ 1076.777166] FAULT_INJECTION: forcing a failure. [ 1076.777166] name failslab, interval 1, probability 0, space 0, times 0 [ 1076.778435] CPU: 0 PID: 10026 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 1076.779216] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1076.780138] Call Trace: [ 1076.780430] dump_stack+0x107/0x167 [ 1076.780832] should_fail.cold+0x5/0xa [ 1076.781268] should_failslab+0x5/0x20 [ 1076.781692] __kmalloc_track_caller+0x79/0x370 [ 1076.782209] ? kasprintf+0xbb/0xf0 [ 1076.782602] kvasprintf+0xb5/0x150 [ 1076.782996] ? bust_spinlocks+0xe0/0xe0 [ 1076.783455] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1076.784033] ? get_random_u32+0x3cb/0x670 [ 1076.784489] kasprintf+0xbb/0xf0 [ 1076.784865] ? kvasprintf_const+0x1a0/0x1a0 [ 1076.785352] ? lockdep_init_map_type+0x2c7/0x780 [ 1076.785870] ? lockdep_init_map_type+0x2c7/0x780 [ 1076.786388] ieee80211_alloc_led_names+0x23f/0x420 [ 1076.786938] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1076.787475] ? trace_hardirqs_on+0x5b/0x180 [ 1076.787960] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1076.788518] ? ____sys_sendmsg+0x70d/0x870 [ 1076.788994] ? ___sys_sendmsg+0xf3/0x170 [ 1076.789443] ? __sys_sendmsg+0xe5/0x1b0 [ 1076.789892] ? do_syscall_64+0x33/0x40 [ 1076.790329] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1076.790923] ? __lockdep_reset_lock+0x180/0x180 [ 1076.791464] ? lock_acquire+0x197/0x470 [ 1076.791915] ? create_object.isra.0+0x3ad/0xa20 [ 1076.792428] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1076.792944] ? __kmalloc+0x16e/0x390 [ 1076.793364] hwsim_new_radio_nl+0x991/0x1080 [ 1076.793882] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1076.794472] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1076.795210] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1076.795967] genl_family_rcv_msg_doit+0x22d/0x330 [ 1076.796529] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1076.797259] ? cap_capable+0x1d6/0x240 [ 1076.797713] ? ns_capable+0xe2/0x110 [ 1076.798147] genl_rcv_msg+0x33c/0x5a0 [ 1076.798591] ? genl_get_cmd+0x480/0x480 [ 1076.799042] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1076.799623] ? lock_release+0x680/0x680 [ 1076.800066] ? __lockdep_reset_lock+0x180/0x180 [ 1076.800592] netlink_rcv_skb+0x14b/0x430 [ 1076.801062] ? genl_get_cmd+0x480/0x480 [ 1076.801502] ? netlink_ack+0xab0/0xab0 [ 1076.801952] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1076.802471] ? is_vmalloc_addr+0x7b/0xb0 [ 1076.802955] genl_rcv+0x24/0x40 [ 1076.803325] netlink_unicast+0x549/0x7f0 [ 1076.803781] ? netlink_attachskb+0x870/0x870 [ 1076.804278] ? __virt_addr_valid+0x128/0x350 [ 1076.804786] netlink_sendmsg+0x90f/0xdf0 [ 1076.805267] ? netlink_unicast+0x7f0/0x7f0 [ 1076.805753] ? netlink_unicast+0x7f0/0x7f0 [ 1076.806236] __sock_sendmsg+0x154/0x190 [ 1076.806693] ____sys_sendmsg+0x70d/0x870 [ 1076.807154] ? sock_write_iter+0x3d0/0x3d0 [ 1076.807647] ? do_recvmmsg+0x6d0/0x6d0 [ 1076.808088] ? perf_trace_lock+0xac/0x490 [ 1076.808570] ? __lockdep_reset_lock+0x180/0x180 [ 1076.809090] ? perf_trace_lock+0xac/0x490 [ 1076.809554] ? SOFTIRQ_verbose+0x10/0x10 [ 1076.810006] ___sys_sendmsg+0xf3/0x170 [ 1076.810455] ? sendmsg_copy_msghdr+0x160/0x160 [ 1076.810967] ? lock_downgrade+0x6d0/0x6d0 [ 1076.811440] ? find_held_lock+0x2c/0x110 [ 1076.811889] ? __fget_files+0x296/0x4c0 [ 1076.812370] ? __fget_light+0xea/0x290 [ 1076.812820] __sys_sendmsg+0xe5/0x1b0 [ 1076.813265] ? __sys_sendmsg_sock+0x40/0x40 [ 1076.813765] ? rcu_read_lock_any_held+0x75/0xa0 [ 1076.814296] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1076.814886] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1076.815477] ? trace_hardirqs_on+0x5b/0x180 [ 1076.815973] do_syscall_64+0x33/0x40 [ 1076.816390] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1076.816954] RIP: 0033:0x7f59b4343b19 [ 1076.817379] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1076.819464] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1076.820332] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 1076.821142] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1076.821959] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1076.822774] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1076.823584] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 12:03:48 executing program 4: r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r1 = dup(r0) ioctl$HCIINQUIRY(r1, 0x800448f0, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000280)) mknodat$loop(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0, 0x0) lstat(&(0x7f00000002c0)='./file1\x00', 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x1000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000080)=ANY=[@ANYBLOB="1c000004480000000000e3c512cbee684288"], 0x1c}}, 0x0) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) getpeername$unix(r3, &(0x7f0000000100)=@abs, &(0x7f0000000180)=0x6e) 12:03:48 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 16) 12:03:48 executing program 1: syz_mount_image$vfat(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = inotify_init1(0x0) r1 = syz_io_uring_setup(0x458a, &(0x7f0000000080)={0x0, 0x0, 0x4, 0x0, 0x66}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) fcntl$dupfd(r1, 0x0, r0) inotify_add_watch(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x1) chdir(&(0x7f0000000040)='./file0\x00') openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0) getdents64(r2, &(0x7f0000001200)=""/4081, 0x742) r3 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r4 = inotify_init1(0x0) r5 = inotify_add_watch(r4, &(0x7f0000000040)='.\x00', 0x2000003) inotify_rm_watch(r4, r5) r6 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r3, r6, 0x0, 0x100000001) [ 1077.001216] FAULT_INJECTION: forcing a failure. [ 1077.001216] name failslab, interval 1, probability 0, space 0, times 0 [ 1077.003612] CPU: 1 PID: 10029 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1077.005038] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1077.006722] Call Trace: [ 1077.007269] dump_stack+0x107/0x167 [ 1077.008035] should_fail.cold+0x5/0xa [ 1077.008851] should_failslab+0x5/0x20 [ 1077.009635] __kmalloc_track_caller+0x79/0x370 [ 1077.010573] ? kasprintf+0xbb/0xf0 [ 1077.011310] kvasprintf+0xb5/0x150 [ 1077.012042] ? bust_spinlocks+0xe0/0xe0 [ 1077.012871] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1077.013938] ? get_random_u32+0x3cb/0x670 [ 1077.014795] kasprintf+0xbb/0xf0 [ 1077.015484] ? kvasprintf_const+0x1a0/0x1a0 [ 1077.016399] ? lockdep_init_map_type+0x2c7/0x780 [ 1077.017362] ? lockdep_init_map_type+0x2c7/0x780 [ 1077.018354] ieee80211_alloc_led_names+0x82/0x420 [ 1077.019355] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1077.020349] ? trace_hardirqs_on+0x5b/0x180 [ 1077.021244] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1077.022249] ? ____sys_sendmsg+0x70d/0x870 [ 1077.023118] ? ___sys_sendmsg+0xf3/0x170 [ 1077.023950] ? __sys_sendmsg+0xe5/0x1b0 [ 1077.024773] ? do_syscall_64+0x33/0x40 [ 1077.025563] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1077.026655] ? __lockdep_reset_lock+0x180/0x180 [ 1077.027616] ? lock_acquire+0x197/0x470 [ 1077.028455] ? create_object.isra.0+0x3ad/0xa20 [ 1077.028843] audit: type=1400 audit(1698926628.535:237): avc: denied { checkpoint_restore } for pid=10006 comm="syz-executor.6" capability=40 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=capability2 permissive=1 [ 1077.029419] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1077.029444] ? __kmalloc+0x16e/0x390 [ 1077.033564] hwsim_new_radio_nl+0x991/0x1080 [ 1077.034479] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1077.035564] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1077.036907] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1077.038269] genl_family_rcv_msg_doit+0x22d/0x330 [ 1077.039251] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1077.040622] ? cap_capable+0x1d6/0x240 [ 1077.041433] ? ns_capable+0xe2/0x110 [ 1077.042221] genl_rcv_msg+0x33c/0x5a0 [ 1077.043026] ? genl_get_cmd+0x480/0x480 [ 1077.043837] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1077.044899] ? lock_release+0x680/0x680 [ 1077.045718] ? __lockdep_reset_lock+0x180/0x180 [ 1077.046666] netlink_rcv_skb+0x14b/0x430 [ 1077.047501] ? genl_get_cmd+0x480/0x480 [ 1077.048335] ? netlink_ack+0xab0/0xab0 [ 1077.049142] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1077.050076] ? is_vmalloc_addr+0x7b/0xb0 [ 1077.050910] genl_rcv+0x24/0x40 [ 1077.051584] netlink_unicast+0x549/0x7f0 [ 1077.052450] ? netlink_attachskb+0x870/0x870 [ 1077.053358] ? __virt_addr_valid+0x128/0x350 [ 1077.054272] netlink_sendmsg+0x90f/0xdf0 [ 1077.055122] ? netlink_unicast+0x7f0/0x7f0 [ 1077.056008] ? netlink_unicast+0x7f0/0x7f0 [ 1077.056912] __sock_sendmsg+0x154/0x190 [ 1077.057721] ____sys_sendmsg+0x70d/0x870 [ 1077.058565] ? sock_write_iter+0x3d0/0x3d0 [ 1077.059421] ? do_recvmmsg+0x6d0/0x6d0 [ 1077.060239] ? perf_trace_lock+0xac/0x490 [ 1077.061107] ? __lockdep_reset_lock+0x180/0x180 [ 1077.062060] ? perf_trace_lock+0xac/0x490 [ 1077.062904] ? SOFTIRQ_verbose+0x10/0x10 [ 1077.063741] ___sys_sendmsg+0xf3/0x170 [ 1077.064553] ? sendmsg_copy_msghdr+0x160/0x160 [ 1077.065521] ? lock_downgrade+0x6d0/0x6d0 [ 1077.066378] ? find_held_lock+0x2c/0x110 [ 1077.067220] ? __fget_files+0x296/0x4c0 [ 1077.068051] ? __fget_light+0xea/0x290 [ 1077.068879] __sys_sendmsg+0xe5/0x1b0 [ 1077.069664] ? __sys_sendmsg_sock+0x40/0x40 [ 1077.070546] ? rcu_read_lock_any_held+0x75/0xa0 [ 1077.071521] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1077.072616] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1077.073669] ? trace_hardirqs_on+0x5b/0x180 [ 1077.074555] do_syscall_64+0x33/0x40 [ 1077.075318] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1077.076377] RIP: 0033:0x7fb858d1fb19 [ 1077.077147] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1077.080892] RSP: 002b:00007fb856295188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1077.082462] RAX: ffffffffffffffda RBX: 00007fb858e32f60 RCX: 00007fb858d1fb19 [ 1077.083922] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1077.085397] RBP: 00007fb8562951d0 R08: 0000000000000000 R09: 0000000000000000 [ 1077.086856] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1077.088348] R13: 00007ffde2c0b16f R14: 00007fb856295300 R15: 0000000000022000 [ 1077.166385] FAULT_INJECTION: forcing a failure. [ 1077.166385] name failslab, interval 1, probability 0, space 0, times 0 [ 1077.167731] CPU: 0 PID: 10038 Comm: syz-executor.3 Not tainted 5.10.199 #1 [ 1077.168500] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1077.169411] Call Trace: [ 1077.169708] dump_stack+0x107/0x167 [ 1077.170109] should_fail.cold+0x5/0xa [ 1077.170520] ? kvmalloc_node+0x119/0x170 [ 1077.170968] should_failslab+0x5/0x20 [ 1077.171381] __kmalloc_node+0x76/0x420 [ 1077.171801] kvmalloc_node+0x119/0x170 [ 1077.172242] bucket_table_alloc.isra.0+0x88/0x490 [ 1077.172772] rhashtable_init+0x341/0x760 [ 1077.173219] rhltable_init+0x1c/0x60 [ 1077.173639] sta_info_init+0x1f/0x110 [ 1077.174045] ieee80211_alloc_hw_nm+0x6a0/0x2320 [ 1077.174545] ? trace_hardirqs_on+0x5b/0x180 [ 1077.175011] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1077.175538] ? ____sys_sendmsg+0x70d/0x870 [ 1077.175992] ? ___sys_sendmsg+0xf3/0x170 [ 1077.176451] ? __sys_sendmsg+0xe5/0x1b0 [ 1077.176901] ? do_syscall_64+0x33/0x40 [ 1077.177339] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1077.177938] ? __lockdep_reset_lock+0x180/0x180 [ 1077.178463] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1077.178978] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1077.179576] ? trace_hardirqs_on+0x5b/0x180 [ 1077.180067] hwsim_new_radio_nl+0x991/0x1080 [ 1077.180555] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1077.181141] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1077.181873] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1077.182600] genl_family_rcv_msg_doit+0x22d/0x330 [ 1077.183138] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1077.183901] ? cap_capable+0x1d6/0x240 [ 1077.184361] ? ns_capable+0xe2/0x110 [ 1077.184791] genl_rcv_msg+0x33c/0x5a0 [ 1077.185231] ? genl_get_cmd+0x480/0x480 [ 1077.185696] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1077.186294] ? lock_release+0x680/0x680 [ 1077.186755] ? __lockdep_reset_lock+0x180/0x180 [ 1077.187289] netlink_rcv_skb+0x14b/0x430 [ 1077.187758] ? genl_get_cmd+0x480/0x480 [ 1077.188209] ? netlink_ack+0xab0/0xab0 [ 1077.188671] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1077.189196] ? is_vmalloc_addr+0x7b/0xb0 [ 1077.189678] genl_rcv+0x24/0x40 [ 1077.190052] netlink_unicast+0x549/0x7f0 [ 1077.190526] ? netlink_attachskb+0x870/0x870 [ 1077.191031] ? __virt_addr_valid+0x128/0x350 [ 1077.191547] netlink_sendmsg+0x90f/0xdf0 [ 1077.192016] ? netlink_unicast+0x7f0/0x7f0 [ 1077.192485] ? netlink_unicast+0x7f0/0x7f0 [ 1077.192950] __sock_sendmsg+0x154/0x190 [ 1077.193377] ____sys_sendmsg+0x70d/0x870 [ 1077.193842] ? sock_write_iter+0x3d0/0x3d0 [ 1077.194300] ? do_recvmmsg+0x6d0/0x6d0 [ 1077.194742] ? perf_trace_lock+0xac/0x490 [ 1077.195197] ? __lockdep_reset_lock+0x180/0x180 [ 1077.195715] ? perf_trace_lock+0xac/0x490 [ 1077.196172] ? SOFTIRQ_verbose+0x10/0x10 [ 1077.196637] ___sys_sendmsg+0xf3/0x170 [ 1077.197079] ? sendmsg_copy_msghdr+0x160/0x160 [ 1077.197612] ? lock_downgrade+0x6d0/0x6d0 [ 1077.198070] ? find_held_lock+0x2c/0x110 [ 1077.198537] ? __fget_files+0x296/0x4c0 [ 1077.198976] ? __fget_light+0xea/0x290 [ 1077.199438] __sys_sendmsg+0xe5/0x1b0 [ 1077.199862] ? __sys_sendmsg_sock+0x40/0x40 [ 1077.200360] ? rcu_read_lock_any_held+0x75/0xa0 [ 1077.200878] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1077.201469] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1077.202019] ? trace_hardirqs_on+0x5b/0x180 [ 1077.202519] do_syscall_64+0x33/0x40 [ 1077.202937] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1077.203509] RIP: 0033:0x7fed842aab19 [ 1077.203920] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1077.206000] RSP: 002b:00007fed81820188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1077.206860] RAX: ffffffffffffffda RBX: 00007fed843bdf60 RCX: 00007fed842aab19 [ 1077.207694] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1077.208503] RBP: 00007fed818201d0 R08: 0000000000000000 R09: 0000000000000000 [ 1077.209310] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1077.210111] R13: 00007ffe3d75192f R14: 00007fed81820300 R15: 0000000000022000 [ 1077.261128] netlink: 1520 bytes leftover after parsing attributes in process `syz-executor.6'. 12:04:05 executing program 6: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) sendto(r0, &(0x7f0000000040)="5ea18a99", 0x4, 0x0, &(0x7f00000000c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1}, 0x80) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/class/ptp', 0x8000, 0x40) setsockopt$SO_TIMESTAMPING(r1, 0x1, 0x25, &(0x7f0000000080), 0x4) setsockopt$inet6_int(r0, 0x29, 0x42, &(0x7f0000000240)=0x8, 0x4) recvmmsg(r0, &(0x7f0000001a00)=[{{0x0, 0x0, 0x0}}], 0x300, 0x10062, 0x0) 12:04:05 executing program 1: r0 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x4, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000280), 0x9}, 0x50, 0x0, 0x0, 0x3}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) ftruncate(r0, 0x1000003) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0xc02, 0x0) write$eventfd(r0, &(0x7f0000000140)=0xfff, 0x8) write$binfmt_elf64(r1, &(0x7f0000000a00)=ANY=[], 0x98a) readv(r1, &(0x7f0000000100)=[{&(0x7f0000001340)=""/4096, 0x1000}], 0x1) r2 = openat$ptmx(0xffffffffffffff9c, 0x0, 0xc02, 0x0) fcntl$setflags(r2, 0x2, 0x0) ioctl$TIOCGPTPEER(r2, 0x5441, 0x80000001) r3 = syz_open_procfs(0x0, &(0x7f0000000140)='ns\x00') mount$9p_fd(0x0, &(0x7f0000000180)='./file1\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wf\t\x00o=', @ANYRESHEX, @ANYBLOB=',msize=0x0000000000380000,']) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1f) open_tree(r3, &(0x7f00000000c0)='./mnt\x00', 0x9001) r4 = syz_genetlink_get_family_id$SEG6(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$SEG6_CMD_SETHMAC(r3, &(0x7f0000000300)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)={0x54, r4, 0x20, 0x70bd27, 0x25dfdbfe, {}, [@SEG6_ATTR_DSTLEN={0x8, 0x2, 0x5}, @SEG6_ATTR_HMACKEYID={0x8}, @SEG6_ATTR_ALGID={0x5, 0x6, 0x1}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0x8}, @SEG6_ATTR_SECRET={0x10, 0x4, [0x1, 0xfffffffe, 0x1]}, @SEG6_ATTR_SECRET={0x10, 0x4, [0x400, 0x5, 0x1]}]}, 0x54}, 0x1, 0x0, 0x0, 0x4010}, 0x4) getpid() unshare(0x40000000) unshare(0x48020200) 12:04:05 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = fork() fcntl$getownex(r0, 0x10, &(0x7f0000000100)={0x0, 0x0}) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000140)=0x0) r4 = syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r4, 0x8000000) io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0) kcmp(r2, r3, 0x4, r4, r0) sendmsg$nl_generic(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)={0x28, 0x11, 0x1, 0x0, 0x0, {0x7}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @nested={0xc, 0x0, 0x0, 0x1, [@typed={0x8, 0x1a, 0x0, 0x0, @pid=r1}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x20000000}, 0x0) r5 = fork() ptrace$setopts(0x4206, r5, 0x0, 0x0) ptrace(0x8, r5) r6 = open_tree(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x2000) r7 = dup3(r0, r6, 0x80000) fdatasync(r7) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x1, 0x4, 0x2, 0x7, 0x0, 0x2, 0x4000, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x7, 0x0, @perf_config_ext={0xa0000000000, 0x8b7}, 0x8408, 0x1000, 0x101, 0x3, 0x3750d393, 0xdd8d, 0xf0, 0x0, 0x0, 0x0, 0x2}, r5, 0x10, r6, 0x2) 12:04:05 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 19) 12:04:05 executing program 4: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00'}) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f0000000180)={@ipv4={'\x00', '\xff\xff', @multicast1}, 0x0, r4}) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x401}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8914, &(0x7f0000000140)={'lo\x00'}) 12:04:05 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 25) 12:04:05 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 17) 12:04:05 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0xb) write$binfmt_elf64(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="7f454c460004010300000000ff00000003003e"], 0xaf2) close(r0) execveat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0, 0x0) r1 = io_uring_setup(0x5144, &(0x7f0000000140)={0x0, 0xae0f, 0x2, 0x2, 0x3d, 0x0, r0}) fsetxattr$security_ima(r1, &(0x7f00000000c0), &(0x7f00000001c0)=@ng={0x4, 0x0, "3f3bd922809b9d09e4c7bc0de5"}, 0xf, 0x0) open_tree(0xffffffffffffffff, &(0x7f0000000080)='./file1\x00', 0x1100) [ 1094.102179] FAULT_INJECTION: forcing a failure. [ 1094.102179] name failslab, interval 1, probability 0, space 0, times 0 [ 1094.104611] CPU: 0 PID: 10060 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 1094.106107] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1094.107907] Call Trace: [ 1094.108487] dump_stack+0x107/0x167 [ 1094.109261] should_fail.cold+0x5/0xa [ 1094.110060] ? create_object.isra.0+0x3a/0xa20 [ 1094.111021] should_failslab+0x5/0x20 [ 1094.111799] kmem_cache_alloc+0x5b/0x310 [ 1094.112639] ? vsnprintf+0x4ba/0x1600 [ 1094.113423] create_object.isra.0+0x3a/0xa20 [ 1094.114364] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1094.115405] __kmalloc_track_caller+0x177/0x370 [ 1094.116367] ? kasprintf+0xbb/0xf0 [ 1094.117102] kvasprintf+0xb5/0x150 [ 1094.117826] ? bust_spinlocks+0xe0/0xe0 [ 1094.118694] ? get_random_u32+0x3bd/0x670 [ 1094.119563] ? get_random_u32+0x3cb/0x670 [ 1094.120460] kasprintf+0xbb/0xf0 [ 1094.121179] ? kvasprintf_const+0x1a0/0x1a0 [ 1094.122117] ? lockdep_init_map_type+0x2c7/0x780 [ 1094.123153] ? lockdep_init_map_type+0x2c7/0x780 [ 1094.124162] ieee80211_alloc_led_names+0x23f/0x420 [ 1094.125200] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1094.126227] ? trace_hardirqs_on+0x5b/0x180 [ 1094.127152] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1094.128201] ? ____sys_sendmsg+0x70d/0x870 [ 1094.129078] ? ___sys_sendmsg+0xf3/0x170 [ 1094.129897] ? __sys_sendmsg+0xe5/0x1b0 [ 1094.130705] ? do_syscall_64+0x33/0x40 [ 1094.131541] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1094.132627] ? __lockdep_reset_lock+0x180/0x180 [ 1094.133569] ? lock_acquire+0x197/0x470 [ 1094.134371] ? create_object.isra.0+0x3ad/0xa20 [ 1094.135358] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1094.136328] ? __kmalloc+0x16e/0x390 [ 1094.137111] hwsim_new_radio_nl+0x991/0x1080 [ 1094.138011] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1094.139113] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1094.140498] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1094.141825] genl_family_rcv_msg_doit+0x22d/0x330 [ 1094.142795] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1094.144176] ? cap_capable+0x1d6/0x240 [ 1094.144992] ? ns_capable+0xe2/0x110 [ 1094.145771] genl_rcv_msg+0x33c/0x5a0 [ 1094.146551] ? genl_get_cmd+0x480/0x480 [ 1094.147394] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1094.148472] ? lock_release+0x680/0x680 [ 1094.149273] ? __lockdep_reset_lock+0x180/0x180 [ 1094.150222] netlink_rcv_skb+0x14b/0x430 [ 1094.151035] ? genl_get_cmd+0x480/0x480 [ 1094.151885] ? netlink_ack+0xab0/0xab0 [ 1094.152723] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1094.153654] ? is_vmalloc_addr+0x7b/0xb0 [ 1094.154465] genl_rcv+0x24/0x40 [ 1094.155159] netlink_unicast+0x549/0x7f0 [ 1094.155993] ? netlink_attachskb+0x870/0x870 [ 1094.156880] ? __virt_addr_valid+0x128/0x350 [ 1094.157827] netlink_sendmsg+0x90f/0xdf0 [ 1094.158646] ? netlink_unicast+0x7f0/0x7f0 [ 1094.159526] ? netlink_unicast+0x7f0/0x7f0 [ 1094.160392] __sock_sendmsg+0x154/0x190 [ 1094.161246] ____sys_sendmsg+0x70d/0x870 [ 1094.162069] ? sock_write_iter+0x3d0/0x3d0 [ 1094.162964] ? do_recvmmsg+0x6d0/0x6d0 [ 1094.163743] ? perf_trace_lock+0xac/0x490 [ 1094.164610] ? __lockdep_reset_lock+0x180/0x180 [ 1094.165536] ? perf_trace_lock+0xac/0x490 [ 1094.166424] ? SOFTIRQ_verbose+0x10/0x10 [ 1094.167243] ___sys_sendmsg+0xf3/0x170 [ 1094.168039] ? sendmsg_copy_msghdr+0x160/0x160 [ 1094.168985] ? lock_downgrade+0x6d0/0x6d0 [ 1094.169840] ? find_held_lock+0x2c/0x110 [ 1094.170706] ? __fget_files+0x296/0x4c0 [ 1094.171534] ? __fget_light+0xea/0x290 [ 1094.172335] __sys_sendmsg+0xe5/0x1b0 [ 1094.173119] ? __sys_sendmsg_sock+0x40/0x40 [ 1094.173980] ? rcu_read_lock_any_held+0x75/0xa0 [ 1094.175003] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1094.176054] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1094.177150] ? trace_hardirqs_on+0x5b/0x180 [ 1094.178024] do_syscall_64+0x33/0x40 [ 1094.178844] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1094.179870] RIP: 0033:0x7f59b4343b19 [ 1094.180651] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1094.184350] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1094.185929] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 1094.187350] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1094.188789] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1094.190277] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1094.191701] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 12:04:05 executing program 0: r0 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) ftruncate(r0, 0x1000003) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, 0x0) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0xc02, 0x0) write$eventfd(r0, &(0x7f0000000140)=0xfff, 0x8) write$binfmt_elf64(r1, &(0x7f0000000a00)=ANY=[], 0x98a) readv(r1, &(0x7f0000000100)=[{&(0x7f0000001340)=""/4096, 0x1000}], 0x1) r2 = openat$ptmx(0xffffffffffffff9c, 0x0, 0xc02, 0x0) fcntl$setflags(r2, 0x2, 0x0) ioctl$TIOCGPTPEER(r2, 0x5441, 0x80000001) r3 = syz_open_procfs(0x0, &(0x7f0000000140)='ns\x00') mount$9p_fd(0x0, &(0x7f0000000180)='./file1\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',msize=0x0000000000380000,']) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1f) open_tree(r3, &(0x7f00000000c0)='./mnt\x00', 0x9001) r4 = syz_genetlink_get_family_id$SEG6(&(0x7f00000001c0), 0xffffffffffffffff) sendmsg$SEG6_CMD_SETHMAC(r3, &(0x7f0000000300)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000002c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000009407e78b7868bfd14e034671746edf64a70381383d1a52f869a141647170bee77da9e953c7cc49d25b7b5e2447859ca112de4d9971c05c9e190d37ffd15555f6135310a09d45", @ANYRES16=r4, @ANYBLOB="000227bd7000fedbdf2501000000"], 0x14}, 0x1, 0x0, 0x0, 0x4010}, 0x4) getpid() unshare(0x40000000) unshare(0x48020200) [ 1094.357911] FAULT_INJECTION: forcing a failure. [ 1094.357911] name failslab, interval 1, probability 0, space 0, times 0 [ 1094.360267] CPU: 1 PID: 10064 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1094.361674] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1094.363355] Call Trace: [ 1094.363900] dump_stack+0x107/0x167 [ 1094.364656] should_fail.cold+0x5/0xa [ 1094.365432] ? create_object.isra.0+0x3a/0xa20 [ 1094.366352] should_failslab+0x5/0x20 [ 1094.367132] kmem_cache_alloc+0x5b/0x310 [ 1094.367945] ? vsnprintf+0x4ba/0x1600 [ 1094.368725] create_object.isra.0+0x3a/0xa20 [ 1094.369624] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1094.370670] __kmalloc_track_caller+0x177/0x370 [ 1094.371605] ? kasprintf+0xbb/0xf0 [ 1094.372349] kvasprintf+0xb5/0x150 [ 1094.373077] ? bust_spinlocks+0xe0/0xe0 [ 1094.373890] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1094.374967] ? get_random_u32+0x3cb/0x670 [ 1094.375808] kasprintf+0xbb/0xf0 [ 1094.376507] ? kvasprintf_const+0x1a0/0x1a0 [ 1094.377387] ? lockdep_init_map_type+0x2c7/0x780 [ 1094.378349] ? lockdep_init_map_type+0x2c7/0x780 [ 1094.379329] ieee80211_alloc_led_names+0x82/0x420 [ 1094.380330] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1094.381281] ? trace_hardirqs_on+0x5b/0x180 [ 1094.382173] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1094.383169] ? ____sys_sendmsg+0x70d/0x870 [ 1094.384020] ? ___sys_sendmsg+0xf3/0x170 [ 1094.384855] ? __sys_sendmsg+0xe5/0x1b0 [ 1094.385677] ? do_syscall_64+0x33/0x40 [ 1094.386461] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1094.387540] ? __lockdep_reset_lock+0x180/0x180 [ 1094.388486] ? lock_acquire+0x197/0x470 [ 1094.389301] ? create_object.isra.0+0x3ad/0xa20 [ 1094.390253] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1094.391198] ? __kmalloc+0x16e/0x390 [ 1094.391954] hwsim_new_radio_nl+0x991/0x1080 [ 1094.392861] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1094.393934] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1094.395251] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1094.396592] genl_family_rcv_msg_doit+0x22d/0x330 [ 1094.397568] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1094.398913] ? cap_capable+0x1d6/0x240 [ 1094.399724] ? ns_capable+0xe2/0x110 [ 1094.400506] genl_rcv_msg+0x33c/0x5a0 [ 1094.401282] ? genl_get_cmd+0x480/0x480 [ 1094.402099] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1094.403148] ? lock_release+0x680/0x680 [ 1094.403960] ? __lockdep_reset_lock+0x180/0x180 [ 1094.404915] netlink_rcv_skb+0x14b/0x430 [ 1094.405744] ? genl_get_cmd+0x480/0x480 [ 1094.406547] ? netlink_ack+0xab0/0xab0 [ 1094.407362] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1094.408277] ? is_vmalloc_addr+0x7b/0xb0 [ 1094.409120] genl_rcv+0x24/0x40 [ 1094.409781] netlink_unicast+0x549/0x7f0 [ 1094.410623] ? netlink_attachskb+0x870/0x870 [ 1094.411509] ? __virt_addr_valid+0x128/0x350 [ 1094.412438] netlink_sendmsg+0x90f/0xdf0 [ 1094.413264] ? netlink_unicast+0x7f0/0x7f0 [ 1094.414147] ? netlink_unicast+0x7f0/0x7f0 [ 1094.415005] __sock_sendmsg+0x154/0x190 [ 1094.415821] ____sys_sendmsg+0x70d/0x870 [ 1094.416654] ? sock_write_iter+0x3d0/0x3d0 [ 1094.417515] ? do_recvmmsg+0x6d0/0x6d0 [ 1094.418295] ? perf_trace_lock+0xac/0x490 [ 1094.419156] ? __lockdep_reset_lock+0x180/0x180 [ 1094.420092] ? perf_trace_lock+0xac/0x490 [ 1094.420941] ? SOFTIRQ_verbose+0x10/0x10 [ 1094.421765] ___sys_sendmsg+0xf3/0x170 [ 1094.422560] ? sendmsg_copy_msghdr+0x160/0x160 [ 1094.423494] ? lock_downgrade+0x6d0/0x6d0 [ 1094.424352] ? find_held_lock+0x2c/0x110 [ 1094.425194] ? __fget_files+0x296/0x4c0 [ 1094.426021] ? __fget_light+0xea/0x290 [ 1094.426821] __sys_sendmsg+0xe5/0x1b0 [ 1094.427599] ? __sys_sendmsg_sock+0x40/0x40 [ 1094.428484] ? rcu_read_lock_any_held+0x75/0xa0 [ 1094.429457] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1094.430512] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1094.431557] ? trace_hardirqs_on+0x5b/0x180 [ 1094.432437] do_syscall_64+0x33/0x40 [ 1094.433194] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1094.434225] RIP: 0033:0x7fb858d1fb19 [ 1094.434982] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1094.438669] RSP: 002b:00007fb856295188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1094.440230] RAX: ffffffffffffffda RBX: 00007fb858e32f60 RCX: 00007fb858d1fb19 [ 1094.441657] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1094.443105] RBP: 00007fb8562951d0 R08: 0000000000000000 R09: 0000000000000000 [ 1094.444547] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1094.445988] R13: 00007ffde2c0b16f R14: 00007fb856295300 R15: 0000000000022000 12:04:05 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 26) [ 1094.721669] FAULT_INJECTION: forcing a failure. [ 1094.721669] name failslab, interval 1, probability 0, space 0, times 0 [ 1094.724584] CPU: 1 PID: 10066 Comm: syz-executor.3 Not tainted 5.10.199 #1 [ 1094.726135] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1094.727996] Call Trace: [ 1094.728605] dump_stack+0x107/0x167 [ 1094.729438] should_fail.cold+0x5/0xa [ 1094.730302] ? create_object.isra.0+0x3a/0xa20 [ 1094.731330] should_failslab+0x5/0x20 [ 1094.732201] kmem_cache_alloc+0x5b/0x310 [ 1094.733144] create_object.isra.0+0x3a/0xa20 [ 1094.734131] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1094.735278] __kmalloc_node+0x1ae/0x420 [ 1094.736185] kvmalloc_node+0x119/0x170 [ 1094.737079] bucket_table_alloc.isra.0+0x88/0x490 [ 1094.738165] rhashtable_init+0x341/0x760 [ 1094.739088] rhltable_init+0x1c/0x60 [ 1094.739937] sta_info_init+0x1f/0x110 [ 1094.740801] ieee80211_alloc_hw_nm+0x6a0/0x2320 [ 1094.741854] ? trace_hardirqs_on+0x5b/0x180 [ 1094.742820] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1094.743913] ? ____sys_sendmsg+0x70d/0x870 [ 1094.744861] ? ___sys_sendmsg+0xf3/0x170 [ 1094.745763] ? __sys_sendmsg+0xe5/0x1b0 [ 1094.746646] ? do_syscall_64+0x33/0x40 [ 1094.747516] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1094.748697] ? __lockdep_reset_lock+0x180/0x180 [ 1094.749732] ? lock_acquire+0x197/0x470 [ 1094.750611] ? create_object.isra.0+0x3ad/0xa20 [ 1094.751660] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1094.752702] ? __kmalloc+0x16e/0x390 [ 1094.753544] hwsim_new_radio_nl+0x991/0x1080 [ 1094.754525] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1094.755699] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1094.757174] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1094.758635] genl_family_rcv_msg_doit+0x22d/0x330 [ 1094.759706] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1094.761178] ? cap_capable+0x1d6/0x240 [ 1094.762062] ? ns_capable+0xe2/0x110 [ 1094.762900] genl_rcv_msg+0x33c/0x5a0 [ 1094.763748] ? genl_get_cmd+0x480/0x480 [ 1094.764655] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1094.765790] ? lock_release+0x680/0x680 [ 1094.766670] ? __lockdep_reset_lock+0x180/0x180 [ 1094.767705] netlink_rcv_skb+0x14b/0x430 [ 1094.768613] ? genl_get_cmd+0x480/0x480 [ 1094.769495] ? netlink_ack+0xab0/0xab0 [ 1094.770372] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1094.771380] ? is_vmalloc_addr+0x7b/0xb0 [ 1094.772280] genl_rcv+0x24/0x40 [ 1094.773023] netlink_unicast+0x549/0x7f0 [ 1094.773944] ? netlink_attachskb+0x870/0x870 [ 1094.774915] ? __virt_addr_valid+0x128/0x350 [ 1094.775904] netlink_sendmsg+0x90f/0xdf0 [ 1094.776834] ? netlink_unicast+0x7f0/0x7f0 [ 1094.777776] ? netlink_unicast+0x7f0/0x7f0 [ 1094.778713] __sock_sendmsg+0x154/0x190 [ 1094.779586] ____sys_sendmsg+0x70d/0x870 [ 1094.780497] ? sock_write_iter+0x3d0/0x3d0 [ 1094.781415] ? do_recvmmsg+0x6d0/0x6d0 [ 1094.782274] ? perf_trace_lock+0xac/0x490 [ 1094.783189] ? __lockdep_reset_lock+0x180/0x180 [ 1094.784209] ? perf_trace_lock+0xac/0x490 [ 1094.785126] ? SOFTIRQ_verbose+0x10/0x10 [ 1094.786025] ___sys_sendmsg+0xf3/0x170 [ 1094.786883] ? sendmsg_copy_msghdr+0x160/0x160 [ 1094.787892] ? lock_downgrade+0x6d0/0x6d0 [ 1094.788817] ? find_held_lock+0x2c/0x110 [ 1094.789719] ? __fget_files+0x296/0x4c0 [ 1094.790613] ? __fget_light+0xea/0x290 [ 1094.791477] __sys_sendmsg+0xe5/0x1b0 [ 1094.792325] ? __sys_sendmsg_sock+0x40/0x40 [ 1094.793271] ? rcu_read_lock_any_held+0x75/0xa0 [ 1094.794329] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1094.795477] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1094.796619] ? trace_hardirqs_on+0x5b/0x180 [ 1094.797567] do_syscall_64+0x33/0x40 [ 1094.798400] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1094.799519] RIP: 0033:0x7fed842aab19 [ 1094.800347] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1094.804427] RSP: 002b:00007fed81820188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1094.806128] RAX: ffffffffffffffda RBX: 00007fed843bdf60 RCX: 00007fed842aab19 [ 1094.807726] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1094.809340] RBP: 00007fed818201d0 R08: 0000000000000000 R09: 0000000000000000 [ 1094.810936] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1094.812536] R13: 00007ffe3d75192f R14: 00007fed81820300 R15: 0000000000022000 [ 1094.972919] FAULT_INJECTION: forcing a failure. [ 1094.972919] name failslab, interval 1, probability 0, space 0, times 0 [ 1094.975258] CPU: 1 PID: 10086 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 1094.976695] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1094.978376] Call Trace: [ 1094.978915] dump_stack+0x107/0x167 [ 1094.979686] should_fail.cold+0x5/0xa [ 1094.980493] ? device_create_groups_vargs+0x8a/0x280 [ 1094.981538] should_failslab+0x5/0x20 [ 1094.982322] kmem_cache_alloc_trace+0x55/0x320 [ 1094.983289] device_create_groups_vargs+0x8a/0x280 [ 1094.984282] device_create+0xdc/0x120 [ 1094.985077] ? device_create_groups_vargs+0x280/0x280 [ 1094.986117] ? init_timer_key+0x12a/0x240 [ 1094.986970] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1094.987953] mac80211_hwsim_new_radio+0x352/0x4250 [ 1094.988962] ? ____sys_sendmsg+0x70d/0x870 [ 1094.989810] ? ___sys_sendmsg+0xf3/0x170 [ 1094.990630] ? __sys_sendmsg+0xe5/0x1b0 [ 1094.991434] ? do_syscall_64+0x33/0x40 [ 1094.992221] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1094.993306] ? __lockdep_reset_lock+0x180/0x180 [ 1094.994240] ? lock_acquire+0x197/0x470 [ 1094.995032] ? create_object.isra.0+0x3ad/0xa20 [ 1094.995972] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1094.996931] ? __kmalloc+0x16e/0x390 [ 1094.997697] hwsim_new_radio_nl+0x991/0x1080 [ 1094.998584] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1094.999646] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1095.000974] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1095.002282] genl_family_rcv_msg_doit+0x22d/0x330 [ 1095.003255] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1095.004574] ? cap_capable+0x1d6/0x240 [ 1095.005378] ? ns_capable+0xe2/0x110 [ 1095.006140] genl_rcv_msg+0x33c/0x5a0 [ 1095.006906] ? genl_get_cmd+0x480/0x480 [ 1095.007711] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1095.008823] ? lock_release+0x680/0x680 [ 1095.009817] ? __lockdep_reset_lock+0x180/0x180 [ 1095.010916] netlink_rcv_skb+0x14b/0x430 [ 1095.011872] ? genl_get_cmd+0x480/0x480 [ 1095.012817] ? netlink_ack+0xab0/0xab0 [ 1095.013757] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1095.014831] ? is_vmalloc_addr+0x7b/0xb0 [ 1095.015794] genl_rcv+0x24/0x40 [ 1095.016586] netlink_unicast+0x549/0x7f0 [ 1095.017552] ? netlink_attachskb+0x870/0x870 [ 1095.018582] ? __virt_addr_valid+0x128/0x350 [ 1095.019648] netlink_sendmsg+0x90f/0xdf0 [ 1095.020622] ? netlink_unicast+0x7f0/0x7f0 [ 1095.021636] ? netlink_unicast+0x7f0/0x7f0 [ 1095.022642] __sock_sendmsg+0x154/0x190 [ 1095.023578] ____sys_sendmsg+0x70d/0x870 [ 1095.024554] ? sock_write_iter+0x3d0/0x3d0 [ 1095.025535] ? do_recvmmsg+0x6d0/0x6d0 [ 1095.026456] ? perf_trace_lock+0xac/0x490 [ 1095.027429] ? __lockdep_reset_lock+0x180/0x180 [ 1095.028534] ? perf_trace_lock+0xac/0x490 [ 1095.029498] ? SOFTIRQ_verbose+0x10/0x10 [ 1095.030450] ___sys_sendmsg+0xf3/0x170 [ 1095.031361] ? sendmsg_copy_msghdr+0x160/0x160 [ 1095.032439] ? lock_downgrade+0x6d0/0x6d0 [ 1095.033411] ? find_held_lock+0x2c/0x110 [ 1095.034371] ? __fget_files+0x296/0x4c0 [ 1095.035316] ? __fget_light+0xea/0x290 [ 1095.036237] __sys_sendmsg+0xe5/0x1b0 [ 1095.037145] ? __sys_sendmsg_sock+0x40/0x40 [ 1095.038160] ? rcu_read_lock_any_held+0x75/0xa0 [ 1095.039280] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1095.040496] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1095.041680] ? trace_hardirqs_on+0x5b/0x180 [ 1095.042698] do_syscall_64+0x33/0x40 [ 1095.043569] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1095.044765] RIP: 0033:0x7f59b4343b19 [ 1095.045633] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1095.049876] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1095.051639] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 1095.053283] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1095.054929] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1095.056575] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1095.058211] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 12:04:22 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 20) [ 1110.637506] FAULT_INJECTION: forcing a failure. [ 1110.637506] name failslab, interval 1, probability 0, space 0, times 0 [ 1110.639846] CPU: 0 PID: 10110 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 1110.641266] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1110.642925] Call Trace: [ 1110.643461] dump_stack+0x107/0x167 [ 1110.644199] should_fail.cold+0x5/0xa [ 1110.645001] ? create_object.isra.0+0x3a/0xa20 [ 1110.645923] should_failslab+0x5/0x20 [ 1110.646684] kmem_cache_alloc+0x5b/0x310 [ 1110.647501] create_object.isra.0+0x3a/0xa20 [ 1110.648376] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1110.649425] kmem_cache_alloc_trace+0x151/0x320 [ 1110.650370] device_create_groups_vargs+0x8a/0x280 [ 1110.651350] device_create+0xdc/0x120 [ 1110.652121] ? device_create_groups_vargs+0x280/0x280 [ 1110.653178] ? init_timer_key+0x12a/0x240 [ 1110.654024] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1110.654994] mac80211_hwsim_new_radio+0x352/0x4250 [ 1110.655967] ? ____sys_sendmsg+0x70d/0x870 [ 1110.656874] ? ___sys_sendmsg+0xf3/0x170 [ 1110.657688] ? __sys_sendmsg+0xe5/0x1b0 [ 1110.658482] ? do_syscall_64+0x33/0x40 [ 1110.659260] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1110.660317] ? __lockdep_reset_lock+0x180/0x180 [ 1110.661275] ? lock_acquire+0x197/0x470 [ 1110.662070] ? create_object.isra.0+0x3ad/0xa20 [ 1110.663014] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1110.663947] ? __kmalloc+0x16e/0x390 [ 1110.664749] hwsim_new_radio_nl+0x991/0x1080 [ 1110.665631] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1110.666689] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1110.667995] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1110.669534] genl_family_rcv_msg_doit+0x22d/0x330 [ 1110.670495] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1110.671801] ? cap_capable+0x1d6/0x240 [ 1110.672642] ? ns_capable+0xe2/0x110 [ 1110.673395] genl_rcv_msg+0x33c/0x5a0 [ 1110.674157] ? genl_get_cmd+0x480/0x480 [ 1110.674948] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1110.675986] ? lock_release+0x680/0x680 [ 1110.676804] ? __lockdep_reset_lock+0x180/0x180 [ 1110.677733] netlink_rcv_skb+0x14b/0x430 [ 1110.678542] ? genl_get_cmd+0x480/0x480 [ 1110.679346] ? netlink_ack+0xab0/0xab0 [ 1110.680140] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1110.681077] ? is_vmalloc_addr+0x7b/0xb0 [ 1110.681894] genl_rcv+0x24/0x40 [ 1110.682559] netlink_unicast+0x549/0x7f0 [ 1110.683375] ? netlink_attachskb+0x870/0x870 [ 1110.684251] ? __virt_addr_valid+0x128/0x350 [ 1110.685188] netlink_sendmsg+0x90f/0xdf0 [ 1110.686012] ? netlink_unicast+0x7f0/0x7f0 [ 1110.686876] ? netlink_unicast+0x7f0/0x7f0 [ 1110.687719] __sock_sendmsg+0x154/0x190 [ 1110.688530] ____sys_sendmsg+0x70d/0x870 [ 1110.689363] ? sock_write_iter+0x3d0/0x3d0 [ 1110.690207] ? do_recvmmsg+0x6d0/0x6d0 [ 1110.690983] ? perf_trace_lock+0xac/0x490 [ 1110.691825] ? __lockdep_reset_lock+0x180/0x180 [ 1110.692778] ? perf_trace_lock+0xac/0x490 [ 1110.693612] ? SOFTIRQ_verbose+0x10/0x10 [ 1110.694431] ___sys_sendmsg+0xf3/0x170 [ 1110.695224] ? sendmsg_copy_msghdr+0x160/0x160 [ 1110.696146] ? lock_downgrade+0x6d0/0x6d0 [ 1110.697017] ? find_held_lock+0x2c/0x110 [ 1110.698013] ? __fget_files+0x296/0x4c0 [ 1110.698831] ? __fget_light+0xea/0x290 [ 1110.699618] __sys_sendmsg+0xe5/0x1b0 [ 1110.700383] ? __sys_sendmsg_sock+0x40/0x40 [ 1110.701270] ? rcu_read_lock_any_held+0x75/0xa0 [ 1110.702227] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1110.703269] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1110.704295] ? trace_hardirqs_on+0x5b/0x180 [ 1110.705200] do_syscall_64+0x33/0x40 [ 1110.705956] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1110.706977] RIP: 0033:0x7f59b4343b19 [ 1110.707728] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1110.711394] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1110.712924] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 1110.714343] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1110.715757] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1110.717205] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1110.718620] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 12:04:22 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0xa}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x3, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) r1 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) write$binfmt_elf64(r1, &(0x7f00000004c0)=ANY=[], 0x78) write$P9_RREADLINK(r1, &(0x7f0000000080)={0x10, 0x17, 0x1, {0x7, './file0'}}, 0x10) fallocate(r0, 0x10, 0x0, 0x8000) 12:04:22 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 27) 12:04:22 executing program 6: r0 = syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) io_uring_enter(r0, 0x60db, 0x575d, 0x0, 0x0, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000000)='./file0\x00', 0xfffffffffffffffe, 0x2, &(0x7f0000000240)=[{&(0x7f0000000140)="eb3c906d6b66732766617400020801000470000000f801", 0x17, 0xffffffffffff7fff}, {0x0, 0x0, 0x1}], 0x0, &(0x7f0000000380)=ANY=[@ANYRESHEX=r0]) chdir(&(0x7f0000000040)='./file0\x00') r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r3 = syz_io_uring_setup(0x5765, &(0x7f0000000400)={0x0, 0xf9e8, 0x2, 0x1, 0x237, 0x0, r0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000300), &(0x7f0000000480)) io_uring_enter(r3, 0x6326, 0xb425, 0x3, &(0x7f00000004c0)={[0x3]}, 0x8) lseek(r1, 0x800, 0x0) perf_event_open(&(0x7f0000000280)={0x5, 0x80, 0x1f, 0x6, 0x5d, 0x20, 0x0, 0x9, 0x80000, 0xf, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x3, 0x2, @perf_bp={&(0x7f0000000200), 0x8}, 0x4000, 0x6, 0x4, 0x9, 0x5, 0x1ca8, 0x7, 0x0, 0x4, 0x0, 0x200}, 0x0, 0x2, 0xffffffffffffffff, 0x8) rename(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000340)='./file0\x00') openat(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x6000, 0x100) pwrite64(r2, &(0x7f00000001c0)="b3", 0x1, 0x8000) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'bridge_slave_0\x00'}) sendfile(r2, r1, 0x0, 0xffffffff000) 12:04:22 executing program 5: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x10, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="33c7e625af3f4bdbed4bd327cdb8b12c41b6c9"], 0x94}}, 0x0) 12:04:22 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 12:04:22 executing program 1: syz_emit_ethernet(0x2a, &(0x7f0000000040)={@local, @local, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x1, 0x0, @private=0xa010100, @dev={0xac, 0x14, 0x14, 0x3}}, @address_request={0xd}}}}}, 0x0) write$tun(0xffffffffffffffff, &(0x7f0000000080)={@void, @val={0x2, 0x3, 0x4, 0x1, 0x80, 0x7fff}, @mpls={[{0x6753, 0x0, 0x1}, {0x6, 0x0, 0x1}, {0x2f, 0x0, 0x1}, {0x1}], @generic="69bd0e477cc7e1759ff39178385c4d7565b39973069514ab58693ca96f444450689da5bf7a1d1cf02ae20e6d205d0f4107b2a26407ead397edb58f42b171e19dd94e6301d25916d1fd02ebef729f419f3d8f693ad157c298f5990f94d11ffd8da2e8ec1ffed886e4996486d22d037033cf763c187a42f51af0f0c6d05fba55b386c4e0ef49ec18c30ec06cdbeeec5c1f3e1b23b37fb38f01d6"}}, 0xb3) 12:04:22 executing program 4: r0 = socket$inet(0x2, 0x3, 0x2) setsockopt$inet_mreqn(r0, 0x0, 0xcb, 0x0, 0x10) r1 = syz_io_uring_setup(0x696, &(0x7f0000000000)={0x0, 0xee0f, 0x2, 0x1, 0x3e7}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f00000000c0)=0x0) r3 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1}, &(0x7f00000a0000)=nil, &(0x7f0000ff3000/0xa000)=nil, &(0x7f0000000340)=0x0, &(0x7f0000000200)=0x0) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x4, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x1, {0x1000}}, 0x0) syz_io_uring_submit(0x0, r5, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) clock_gettime(0x0, &(0x7f0000000180)={0x0, 0x0}) syz_io_uring_setup(0x7d39, &(0x7f0000000100), &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000000000)=0x0) r10 = socket$nl_generic(0x10, 0x3, 0x10) syz_io_uring_submit(r8, r9, &(0x7f00000190c0)=@IORING_OP_ACCEPT={0xd, 0x2, 0x0, r10, 0x0}, 0x0) r11 = syz_open_dev$loop(&(0x7f00000004c0), 0x0, 0x0) lseek(r11, 0x0, 0x0) r12 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0) syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) r13 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) syz_io_uring_submit(r12, 0x0, &(0x7f0000000080)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r13}}, 0x7f) syz_io_uring_submit(r8, r9, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x3, 0x0, @fd=r11, 0x0, 0x0, 0x0, {0x4}, 0x1, {0x0, r13}}, 0x7) syz_io_uring_submit(0x0, r5, &(0x7f0000000240)=@IORING_OP_TIMEOUT={0xb, 0x4, 0x0, 0x0, 0x8, &(0x7f00000001c0)={r6, r7+10000000}, 0x1, 0x1, 0x1, {0x0, r13}}, 0x80000001) r14 = accept4$bt_l2cap(0xffffffffffffffff, &(0x7f0000000100), &(0x7f0000000140)=0xe, 0x80000) syz_io_uring_submit(0x0, r2, &(0x7f0000000180)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0, 0x8001, 0x4, 0x0, {0x0, r13, r14}}, 0x1) 12:04:22 executing program 0: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x58, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x2800018, &(0x7f0000000240)=ANY=[]) syz_mount_image$ext4(&(0x7f0000000100)='ext2\x00', &(0x7f00000001c0)='./file0\x00', 0x3, 0x7, &(0x7f0000001600)=[{&(0x7f0000000200)="79e426e6b6752588469cb618fa1b77efdca4f095b0540f51eb240125c99066f3008a1be99d4ac87c6bdce916c6f5f1c9ee389abb15ca19e64cca5406722508301ad364e35b1553c31eaf11f55ed52298df1c78b5c7759996a0b3bc1de256a148146d9f", 0x63, 0x4}, {&(0x7f0000000280)="a9420af4805d75c794fec38093fed2de83a41908cd5a83ba115464493c94a7e9a579707611eb85080dc13ffe9b50f6a452f12246bc2e0f5b58", 0x39, 0x6}, {&(0x7f00000002c0)="c108b585754654f681d7daa1bbd03eca13d3e3e21d69f8197d735efe95c053718fc1359ac68588baab795851482a69b493c72e6c6bbe201bf3b7e4f2143dc3fa28b5078e8c6830e603c88e40c8abeaa3d74ee0a7e5ebed3ace4c8886e6bfe48d158bee919eed61436fe3a5433c9b49dbf3248813ce7951d247d7d6da0139ece59f4f0129cb5870d91ab11e37c8e4bd975f28519f1872648b417f83d1d7feac0940ed87ee3ce359837d2362793783e1", 0xaf, 0x701}, {&(0x7f0000000380)="11c4007a8e9391bbca4ec07755c30953a5f01a645fc1e5bf45a28c80eab5f33da05da321be62b11204601b5e42c495d5e32502b08029dae207db3ecb1bc4eb80fddad40583db6f0c12c37149029f84c938951960508608c913001f26b6abc6663fbf584ba42405965da53f5e7c8d409e1a1470dce259c432eb604fa8fd855a1001706ba558ca07fa9bf7c8fa208f55faa1c513a118548f576ed5fb68", 0x9c}, {&(0x7f0000000440)="bb055b5f777f6525e8c726d092fda55b6ca6e5990c460d8c155d3d91916e9c5decaaf891415de2cd758018ae1ac4943e93de09d8ad7c26592604d3a44269fdc7e22d06a5b49b1422bd82dbe93f8af590d43141952487dd6352b6c78069349988017e1f97ab81cabb8a37fb741d4c65d45265b294b7845bb4b377dfdef2f1efb997cf3baafc853b93556f224fae526a77896d88b7b7852a694b7816287930", 0x9e, 0x3}, {&(0x7f0000000500)="40ddfed6aa383ca14872746ba636988cef6964b95e703fa9f3990e1f4e892f4bd408807c9c7d40c529c052561d83a7a9b0657299e1369e950263500583ccfe3ea261723a2d05921b50ff0bbc9bfd1df91ce1b3f6097ce7866bfd94616cc815970df34a42bd501718643fd36ff9cf6e325a62828ee0e0a343f0fb3b1bbf17745b42e1d3129e18e90ae9c0e587565f8c586fc94e8c969b0b66feb7a87c56d8318db40bb3c256ebd76dd1aac572cdd0def39543f90dabbca936c711db50b9be562112197c51b4f937640f78d5234b5913bc", 0xd0, 0x2719}, {&(0x7f0000000600)="0d3f4b52e4b9ad270c2350fa8f1029b89e54669bd34e245406bafa64cf312442763677c9a53f74664ca5fb934cdba930fba762b7e913db37555b32d44e6648ed02fe37f163daafe0b97d67c3e59a0efd6de1334975ed60886b318fbbe122cde211b9cf96ac09ccc4b55d770b82ba0414d12e5eae061ae12d8eff19868ff624048f980a092fbc8d2ab6968d45201c855ee5e7759228982c1900ee83b756d7bd8a7894fe66cbd899c1ff1b217ebd5860d81e7584495fbb9189d097f829ea7a55653e515d59274f38c36f1beb95ac2b1158c1d0e530a062b0730d58987575867066cbcd2c475d59ba2bc1347c4ea7db237d813552ca9d2e9f2ed98f458aa6006c64801bdc9b709f010a194c8a2407e032ba451717f8ce0b12d32ce0c893648dd70be5a4f91b37e870e2d6e1a43aefc4c2f874b7cc9b5083a3c71c142664c8e563abaf1b3f0d38b4ce666f50cf5020b43a9b52b593ef76bf8f6357995b59b4d453a5cca98b30cfb181b6f78e813d0d4c9a57509a71871cd672183ccb86f03c7a33cae400682eefe318b8d8c63bbace026a8faac53197f89921478826d53638b92aa4ac6f16c0663019a9b57d2f49e0172a14a8fb3ba817314b33a235bab68121a9655cea74c2ecc12eccb7d62a1479e98612013b6f577608032fcceb037201aac072c489e57d3e93acf3305e6fb1dab45ae05f9a3b5fa2c0dc480ca1d8bf3ea3173f3c99a9ae0c7e01b1cdf2784f7466e5f3badfa8340a3aed8ea0b558f022be89ae101e49a5add9bed42a17b836650f534ad8b683edb07be27e8e938bda0100a012b1320dedad69fff47b164c8a7340ba86f6082efb42cd4d034179921c44471b47db9e0777a823e79b87a894eb6ade8cf2f933455f7ef3058771f2f3506f328f108ec76316c6903dbfbd385fd2cce6ab2f7246b75242cb1b6d130a9a8a2017ef6c8ee2b79572a879dbc4f0eabad046b69785e0b98badc7b984db4538106caef93bcd7792e8b1e3f600901a413c7186367a94ba997bddcdefbccbd15cba0a9eee15ab0c449f130333b9c55a31238e8608a659391c0e166aadade1b415c689973fd2745e0107373c81db642d2096189f7b35b4c1e309699e08d149c51b62cacacc23451838cf8343fd5da98c4a051c33164a7ff64fe9085e4dcc2cc28c2ebcd5751e1705fee1466aa6a3b20ae133b6257e224704fdab1b4c98d983c1a0f38bdfa43ba2d2a49f9a44d86750cc9d99fd7701615ff396d683baf7137c4f3cf87841ea7296f34e7c48eed6db69162ce215312a03c85a62b49a695859d4e49d27b72f915a4ab154f00610318abee35abb3e5bb3422221d12e54010bd1751f4a9f8f24eb83401110883d2f7db1135d83465d060549d63fffaebe24fb32cc160b7eb7a4501b7bfde8895ef686c783078c2bbc742e99dbdca33d38354abce09b906addb82bb51670fa833f2f14622a10fdf6ddb3ace7ceb0061839826f24111fe4a1b8c105d71f2984cfca986ac0a873d9954c51dccd5eb46fafd78772ca48adff4cafdda6dbd465748d7cb5517d2b9c7367e216b5d4b95364a0a123b3b2458bca20d6cd64bbbbf1b20a291dfe65cbfc10155a70d35e1a4a07afd988d2781ca8bdc0588626127fa99944af418f212a3585a108cb8bc32819e0fef72a6d646ef4f02ee3b544dc35d648101e995ed470216e106772b6876379ac96bd5413730450ff9f0359a38ee02a9979523b9d927a090ab47d1c16e5b685718e7c42b6efa306adf279ec1794113955c53ffbe4b96b2be8d76462d4c361334f2a547a6499d21e91ad42ace1bc7c937116e5b1100facca5661b19450b195cffca84af8b3efa863216aa5d7ef795f6098b8fc2f82ff3e525b5528ef3c9992b9a4619db9543691042de3343b6787d9a35383b20b4038247ad18dd3b884ff15f1738af8296332324062fdff22e92a33ba5b9bdc23fe18e06521e2bf5103197c9efa1ca832ee482be75edbdf26941877531a8bf2d7e57c0567add9f36ed0a509cf92a2a2fc0ebce4b76342777deaa3c826fa27699ece206f5027a75461d88be03281635db772e2951014f9f00cad595a071947da96bb6440a1eafc1604bb028277001c34494e1ae2b60283f5678fadd80502b97d521e1f05d0e8c324a3efdfef73eeef2f9755b89d0853a007f5bc1e74b523563b8605227c2cdad008f5ee03de4dc1c618f183852ef66ae6859d1790c3a55839d7c8a9c64d2baa7f70ab21c6b95e0f56dcf8624e164ad013fa790ab7977a4203572381d83e1d2fea5763d443647de08cb8fdc721d3b5e4ae46fe6d9b6f0f74b3b90c8c8d43303740b1ab0ab8da39d3951e4c470f37c407d9a4c5292242006ec5b413f296bb047dab2dbcf3f3cde602f21265a12e2904b35db79a4aa50a7d5c0f58f37a3958581f46592c51a3f62dc79c4a1d5014ab3970fe74b91c937c923daa815b1c3edea6266e6ac46bc8a461b6f2cfac0ed70cfd6242833d173bab1bbbb05ec46b794f68570a4f812ab7c7b903fae4eab78d14f6ffcb79687f25b537830c898e6bc5d90c18ba13be7d2098214be1aa4ffa09737cccdd29ab84cf2d78c71301b583fd8f39aae7029b82ce163434d47b8db74dcdfa1e236b883f32000e244e52c0b1cd7aff213575cf3c6beae6a5977dbbbd53f6d0ca7297382050d6d693c63ec80c74eb2a16954296b0026a6bb7beab6dfc34f1659adc17a125691972f1d0c4a04b8662931a2fc8e05fbbdce7620c7f084a849be9e8b2e69444cd972069b5fd529dc6a8fb9186163c995f967e075439bb26ac7abb551e684257845e51c8a3bf48353179cc1c304f77d2983277aee5dd6fa448263d810595ffdce21bbfeca9c9b428133ebad755b153e3200a3ebd5ead6c804f30b3abcf873924f3dec1e06d98b30b27de3c9d532d51f46058369be0c3fc7001d6ee0509c7c017d727b168267766b33aab5d79e3e2e5ae07462e94fc5d50cf66b392bda04f92485bd319eeb1279aadbd1eb5bd42c75b672ea5eefe53e6a7794fd5cd9f282a32edb0210e3ce11e82dd3a80d0a0d368863cfe9e989cabb7c14e3b6b56109c325a2773a8c3a58e86553449609ce40b873867dec828c8cec827ef62d033a615a8d397f6361eeab93000e089a2cbd44015bad8a84a78ad21b2c574707b8da9d78584d7096f0a31c161c6496addb2fb06ca72fa31be32e6e6ef07586cf681a6c1f5799a1599a13c63f9d0065f4da4e8afc189f2a9c81db1fe0e6be35217f2188eeffbf9ed9d664e155227a5d9a850f904fcd9dc1b20a55e2a8ae9c7b6614e3a120c49e471f395e11c3ce03b4fa7fc5d70ce3288bc39dea338d3863ec0370da0fc20f9205a2202def3c0c8ca1fcf0b9c0c2279490f14d713d29cdf27c1b31d8137ab47801d6529fa88e2526d535bee88b3e6a85286d16df0e730198c50b64cadca7eed55697666ab9e613bbede74163d1337b5293da7dc97201c3ea301447ec05093c76a67edec771a8f7af56962f2681ce4e43e82dcdcb66775ed53d7596d3e6b78350bae7fde3eebeabe3a609a9222ec6e3586427527c9dd2f5dfa3ad0778e13a7f0dc13a3b002ab873b8eba0010b16fa1553577fcfbaebb6c4354a2493556ce4406568aca32d3af51ab318b4ea9792fcb895b906ca5bb87d079d42094fd6e6146535e3b6de9491e73c01b41837e7f8a8adfe217e8a27bbf8ce029618d2902f26faa14a47b26876decfb9a7d7b0f63515003192a98e0608b5f4118fbd27ada2445466c27d1f444ac86a70605fd5171ae889fa7d954010abe845253434161f84f73fe807a373a93674de45338ae302f8faf2cf49b970b6208ef31a1727031b78ca58010fc56968dbfbac9fbc1b702c087abfbf51055ec405dc208c9ca37021a934ed295609119bdd4ea5328d3a7fa40a6f1b534aa461b8af6ac39faa6b6aa2e554795a82f051ab54f3363a65bd7b582164c0ecea43c6c7ecad3779e5feda6265a42394b6c95e7b5debc4dccf76e1d756c891caea10277548575c61cad18f881feb3a293ca9a9e671c4d19e3b1d2900439d441841d6d54d03925cb2c11c2293f750325f57cb92505748f9340760675d8c47b6254ddc22d2596d9d04eb26f949e534d49f1b790e6f6b3b3051ac04bcb7ed6fe21628dcd301fcf954d5e685438637ef86d119a6e351d469fc0a2fa3f9ed2c681fcbaba58db7266ee8ba48b454f2c4f88cf87179e76ff22d1b950707e0d3dd906ee8f24d46a692a9ee28aafdf39396cce2c185b3a507422af2f5b25b9bfb5003ba15867cd8101eeed77a4df1f55c5bf94471eab10f2baeb316b176fbcf3be660a70d2500b9d3bd28ed665ead9970515ddb775bc91b3870d45c8e0005156c20a3e80bc28484c4f2bcc0f242664ac89eea295ca2d7f41633f44af26b7403be5ef333ae508f1637c96794854b42961a4ac29b05527cd6f005775b4862c217498e0ca399cf27867e171b7e43589ab5c441ccad1ec1f0f95dc77410a5b9d5be8c369dca8d95e5c4c6ec72c8825afbeba2dc52a5d5ccf76164e928fb08ee1e6d4c2ee5eda84f93de9f5a927c8212f244190427196a136e0e0495f628808209aa9a07c52a2fa1ff8fe025f64e9b422eb59318320731661191916efd2a5e8880051e7c10c76056d5c440ff97503729d87b10e29ffbc1b8fa161e94ed241af520f4fe475ec88e2b6b773fba91cd3de87a0738063e61b6d29e6995cf69b89971cec9a1fb011d3c7cba9d21049160e9317026be911ddd4e14d420620397ef4e3cb20a4537aa3d63f114909370f783e55dc626f912c84dc69ea23a7b3aff920a32c69ab77f0baf85591944c3ad3ce131374d348ceda1a15a532d92d459dbe84dba4a721c9cd397873ee97641b513d5eb87495dde7760b707274fcc468bbe1103af840c2f30107ae7aca23464f745ebcc2510a2549c61353563e1f425e843c683e28a5fc060ca4c57363630576222fb13a78b438fcedc644598a06efb2b5647eaaffee693030a48200e49138e8ac3c300d3dc063cfe02e1d1173a3798baeb918fdb23c59789025b976746b14c7d7da77cdf5a13b9e6d4473a0802db696cc636c445c95de4d87527640419450c3fbd8263876562606eddc2a2e021b1df4c07972344cd7b76c25b3353baece43f40eb122d30320e564e7c1c282500404f5687b90ad12d020d59b9c572d74875e7942855f0b7cc36ec155a830b5e7441b5a7f9baf1464ca96520d5bd63eee7e285912ade2aa4050300f6b6204a6f22ffaa35f016315f9b07acd1ab1f07964d8785ae20336c46359e46e1db25cd64839249ec428e5e9e3c5a30614ffaf45cfa500b3166972f2ea85e919d0de91e583f8407db82d8b4e966177a2d996a0a2b6d774b6de3e8a2e68ba1b2f5a8d015276fae0cb785dcb11f41182512ebab3174e5d9823b376db4821f4cd9be926c6f05654b4732a5fe397689e42b8f10f3e92987f2f15fab5188f2fb5c7616dfa69d8595aaa3f95a0c1ae39c73de71264e2978a462a176ac3ec10bbfee5e06be1cfc5dd0fb791c6506075e252055a5070a47939c3ffae113b59174e865183bcb70a81140de45514cb1d7cf817e21fd2286ffc5eb95465718e2ec716d0b3a830e13c2380f49f62d70690aecbe5a4abb342a215f0fc670a1c9e5740776841a651f71adb9c0b8c275402a7622d0ed1d5291608ed6a9574f76cd83b59bd2c937d212aa4e21ffceb9d729a4516990b4eb75249517f7ce81391ba16e5ffe47348eeae4908159e7a3f2f98ee78836e2aad1d360808cb76bd4a542a341f1c1c1a5b48658111f136", 0x1000, 0x6}], 0x14804, &(0x7f00000016c0)={[{@quota}, {@grpjquota_path={'grpjquota', 0x3d, './file0'}}, {@discard}], [{@context={'context', 0x3d, 'system_u'}}, {@mask={'mask', 0x3d, 'MAY_APPEND'}}, {@pcr={'pcr', 0x3d, 0x32}}, {@smackfsdef={'smackfsdef', 0x3d, '@#@'}}, {@subj_user={'subj_user', 0x3d, 'vfat\x00'}}, {@dont_appraise}, {@defcontext={'defcontext', 0x3d, 'staff_u'}}]}) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x101342, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) ftruncate(r0, 0xff) ioctl$sock_SIOCETHTOOL(r1, 0x8946, 0x0) 12:04:22 executing program 1: sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000)=0x10001, 0x9) pwrite64(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x1ff) r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r1, 0x8000000) io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0) fallocate(r1, 0x10, 0xfffffffffffffff9, 0x1ff) r2 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r0, 0x0) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r3, &(0x7f0000000280)=ANY=[], 0xfdef) syz_io_uring_complete(r2) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EXT4_IOC_SWAP_BOOT(r0, 0x6611) [ 1110.758445] FAT-fs (loop6): Unrecognized mount option "0x0000000000000003" or missing value 12:04:22 executing program 4: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) r1 = dup(r0) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(r1, 0x8936, &(0x7f0000000080)={@local, 0x78, r3}) ioctl$sock_inet6_SIOCDIFADDR(r1, 0x8916, &(0x7f0000000000)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, r3}) ioctl$VT_OPENQRY(r1, 0x5600, &(0x7f0000000100)) r4 = creat(&(0x7f0000000000)='./file0\x00', 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r5 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) pwrite64(r5, &(0x7f0000000480)="af", 0x1, 0x1000000) write$binfmt_elf64(r5, &(0x7f00000004c0)=ANY=[], 0x78) fallocate(r4, 0x8, 0x0, 0x8000) 12:04:22 executing program 5: r0 = epoll_create(0x8000) r1 = socket$inet_udp(0x2, 0x2, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000000)) pipe2(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f00000000c0)) epoll_ctl$EPOLL_CTL_MOD(r0, 0x2, r1, 0x0) getsockopt$inet_int(r1, 0x0, 0x8, &(0x7f0000000000), &(0x7f0000000040)=0x4) creat(0x0, 0x0) epoll_create(0x81) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x0, 0x0, 0x1002}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r4) r5 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0) r6 = fcntl$dupfd(r5, 0x0, r5) ioctl$SG_IO(r6, 0x2285, &(0x7f0000000340)={0x53, 0x0, 0x6, 0x0, @buffer={0x300, 0x93, &(0x7f0000000180)=""/147}, &(0x7f0000000240)="4feb7dc9066b", 0x0, 0x0, 0x0, 0x0, 0x0}) r7 = syz_open_dev$hidraw(&(0x7f0000000140), 0x6, 0x40000) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r3, 0xc018937a, &(0x7f0000000280)=ANY=[@ANYBLOB="010000000100000018f40000", @ANYRES32=r7, @ANYBLOB="00000000010000002e2f66696c653000"]) [ 1110.890478] FAULT_INJECTION: forcing a failure. [ 1110.890478] name failslab, interval 1, probability 0, space 0, times 0 [ 1110.891695] CPU: 1 PID: 10106 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1110.892409] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1110.893410] Call Trace: [ 1110.893745] dump_stack+0x107/0x167 [ 1110.894171] should_fail.cold+0x5/0xa [ 1110.894632] should_failslab+0x5/0x20 [ 1110.895157] __kmalloc_track_caller+0x79/0x370 [ 1110.895640] ? kasprintf+0xbb/0xf0 [ 1110.896087] kvasprintf+0xb5/0x150 [ 1110.896550] ? bust_spinlocks+0xe0/0xe0 [ 1110.897017] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1110.897617] ? get_random_u32+0x3cb/0x670 [ 1110.898104] kasprintf+0xbb/0xf0 [ 1110.898607] ? kvasprintf_const+0x1a0/0x1a0 [ 1110.899166] ? lockdep_init_map_type+0x2c7/0x780 [ 1110.899800] ? lockdep_init_map_type+0x2c7/0x780 [ 1110.900368] ieee80211_alloc_led_names+0x117/0x420 [ 1110.900957] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1110.901506] ? trace_hardirqs_on+0x5b/0x180 [ 1110.902020] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1110.902591] ? ____sys_sendmsg+0x70d/0x870 [ 1110.903070] ? ___sys_sendmsg+0xf3/0x170 [ 1110.903542] ? __sys_sendmsg+0xe5/0x1b0 [ 1110.904062] ? do_syscall_64+0x33/0x40 [ 1110.904500] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1110.905130] ? __lockdep_reset_lock+0x180/0x180 [ 1110.905691] ? lock_acquire+0x197/0x470 [ 1110.906200] ? create_object.isra.0+0x3ad/0xa20 [ 1110.906793] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1110.907393] ? __kmalloc+0x16e/0x390 [ 1110.907853] hwsim_new_radio_nl+0x991/0x1080 [ 1110.908402] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1110.909052] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1110.909816] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1110.910550] genl_family_rcv_msg_doit+0x22d/0x330 [ 1110.911084] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1110.911764] ? cap_capable+0x1d6/0x240 [ 1110.912159] ? ns_capable+0xe2/0x110 [ 1110.912545] genl_rcv_msg+0x33c/0x5a0 [ 1110.912923] ? genl_get_cmd+0x480/0x480 [ 1110.913315] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1110.913835] ? lock_release+0x680/0x680 [ 1110.914285] ? __lockdep_reset_lock+0x180/0x180 [ 1110.914817] netlink_rcv_skb+0x14b/0x430 [ 1110.915272] ? genl_get_cmd+0x480/0x480 [ 1110.915722] ? netlink_ack+0xab0/0xab0 [ 1110.916162] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1110.916673] ? is_vmalloc_addr+0x7b/0xb0 [ 1110.917121] genl_rcv+0x24/0x40 [ 1110.917482] netlink_unicast+0x549/0x7f0 [ 1110.917937] ? netlink_attachskb+0x870/0x870 [ 1110.918418] ? __virt_addr_valid+0x128/0x350 [ 1110.918903] netlink_sendmsg+0x90f/0xdf0 [ 1110.919348] ? netlink_unicast+0x7f0/0x7f0 [ 1110.919820] ? netlink_unicast+0x7f0/0x7f0 [ 1110.920283] __sock_sendmsg+0x154/0x190 [ 1110.920711] ____sys_sendmsg+0x70d/0x870 [ 1110.921147] ? sock_write_iter+0x3d0/0x3d0 [ 1110.921592] ? do_recvmmsg+0x6d0/0x6d0 [ 1110.922023] ? perf_trace_lock+0xac/0x490 [ 1110.922486] ? __lockdep_reset_lock+0x180/0x180 [ 1110.922994] ? perf_trace_lock+0xac/0x490 [ 1110.923438] ? SOFTIRQ_verbose+0x10/0x10 [ 1110.923884] ___sys_sendmsg+0xf3/0x170 [ 1110.924304] ? sendmsg_copy_msghdr+0x160/0x160 [ 1110.924834] ? lock_downgrade+0x6d0/0x6d0 [ 1110.925287] ? find_held_lock+0x2c/0x110 [ 1110.925744] ? __fget_files+0x296/0x4c0 [ 1110.926186] ? __fget_light+0xea/0x290 [ 1110.926610] __sys_sendmsg+0xe5/0x1b0 [ 1110.927030] ? __sys_sendmsg_sock+0x40/0x40 [ 1110.927500] ? rcu_read_lock_any_held+0x75/0xa0 [ 1110.928022] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1110.928602] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1110.929169] ? trace_hardirqs_on+0x5b/0x180 [ 1110.929650] do_syscall_64+0x33/0x40 [ 1110.930064] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1110.930635] RIP: 0033:0x7fb858d1fb19 [ 1110.931044] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1110.933045] RSP: 002b:00007fb856295188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1110.933871] RAX: ffffffffffffffda RBX: 00007fb858e32f60 RCX: 00007fb858d1fb19 [ 1110.934639] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1110.935418] RBP: 00007fb8562951d0 R08: 0000000000000000 R09: 0000000000000000 [ 1110.936187] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1110.936978] R13: 00007ffde2c0b16f R14: 00007fb856295300 R15: 0000000000022000 12:04:22 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 28) 12:04:22 executing program 1: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000240)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470000000f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f00000000c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f00000000c0)='\x00', 0x800, 0x1c1) sendfile(r0, r1, 0x0, 0x100000001) r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x0, 0x98) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendfile(r0, r2, 0x0, 0x80000001) 12:04:22 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 21) [ 1111.112261] FAULT_INJECTION: forcing a failure. [ 1111.112261] name failslab, interval 1, probability 0, space 0, times 0 [ 1111.113512] CPU: 1 PID: 10147 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 1111.114253] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1111.115137] Call Trace: [ 1111.115423] dump_stack+0x107/0x167 [ 1111.115816] should_fail.cold+0x5/0xa [ 1111.116244] ? create_object.isra.0+0x3a/0xa20 [ 1111.116838] should_failslab+0x5/0x20 [ 1111.117302] kmem_cache_alloc+0x5b/0x310 [ 1111.117781] create_object.isra.0+0x3a/0xa20 [ 1111.118311] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1111.118853] kmem_cache_alloc_trace+0x151/0x320 [ 1111.119357] device_create_groups_vargs+0x8a/0x280 [ 1111.119880] device_create+0xdc/0x120 [ 1111.120294] ? device_create_groups_vargs+0x280/0x280 [ 1111.120853] ? init_timer_key+0x12a/0x240 [ 1111.121306] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1111.121823] mac80211_hwsim_new_radio+0x352/0x4250 [ 1111.122367] ? ____sys_sendmsg+0x70d/0x870 [ 1111.122809] ? ___sys_sendmsg+0xf3/0x170 [ 1111.123263] ? __sys_sendmsg+0xe5/0x1b0 [ 1111.123706] ? do_syscall_64+0x33/0x40 [ 1111.124171] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1111.124916] ? __lockdep_reset_lock+0x180/0x180 [ 1111.125452] ? lock_acquire+0x197/0x470 [ 1111.125890] ? create_object.isra.0+0x3ad/0xa20 [ 1111.126424] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1111.126952] ? __kmalloc+0x16e/0x390 [ 1111.127371] hwsim_new_radio_nl+0x991/0x1080 [ 1111.127862] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1111.128445] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1111.129157] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1111.129877] genl_family_rcv_msg_doit+0x22d/0x330 [ 1111.130411] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1111.131159] ? cap_capable+0x1d6/0x240 [ 1111.131607] ? ns_capable+0xe2/0x110 [ 1111.132005] genl_rcv_msg+0x33c/0x5a0 [ 1111.132435] ? genl_get_cmd+0x480/0x480 [ 1111.132894] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1111.133472] ? lock_release+0x680/0x680 [ 1111.133910] ? __lockdep_reset_lock+0x180/0x180 [ 1111.134426] netlink_rcv_skb+0x14b/0x430 [ 1111.134874] ? genl_get_cmd+0x480/0x480 [ 1111.135295] ? netlink_ack+0xab0/0xab0 [ 1111.135719] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1111.136213] ? is_vmalloc_addr+0x7b/0xb0 [ 1111.136674] genl_rcv+0x24/0x40 [ 1111.137034] netlink_unicast+0x549/0x7f0 [ 1111.137468] ? netlink_attachskb+0x870/0x870 [ 1111.137936] ? __virt_addr_valid+0x128/0x350 [ 1111.138413] netlink_sendmsg+0x90f/0xdf0 [ 1111.138853] ? netlink_unicast+0x7f0/0x7f0 [ 1111.139317] ? netlink_unicast+0x7f0/0x7f0 [ 1111.139775] __sock_sendmsg+0x154/0x190 [ 1111.140203] ____sys_sendmsg+0x70d/0x870 [ 1111.140657] ? sock_write_iter+0x3d0/0x3d0 [ 1111.141109] ? do_recvmmsg+0x6d0/0x6d0 [ 1111.141527] ? perf_trace_lock+0xac/0x490 [ 1111.141974] ? __lockdep_reset_lock+0x180/0x180 [ 1111.142467] ? perf_trace_lock+0xac/0x490 [ 1111.142911] ? SOFTIRQ_verbose+0x10/0x10 [ 1111.143351] ___sys_sendmsg+0xf3/0x170 [ 1111.143766] ? sendmsg_copy_msghdr+0x160/0x160 [ 1111.144257] ? lock_downgrade+0x6d0/0x6d0 [ 1111.144715] ? find_held_lock+0x2c/0x110 [ 1111.145158] ? __fget_files+0x296/0x4c0 [ 1111.145590] ? __fget_light+0xea/0x290 [ 1111.146017] __sys_sendmsg+0xe5/0x1b0 [ 1111.146424] ? __sys_sendmsg_sock+0x40/0x40 [ 1111.146877] ? rcu_read_lock_any_held+0x75/0xa0 [ 1111.147393] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1111.147953] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1111.148510] ? trace_hardirqs_on+0x5b/0x180 [ 1111.148985] do_syscall_64+0x33/0x40 [ 1111.149384] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1111.149927] RIP: 0033:0x7f59b4343b19 [ 1111.150333] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1111.152321] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1111.153147] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 1111.153899] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1111.154681] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1111.155458] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1111.156227] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 12:04:22 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x2}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000000c0)) r1 = fork() ptrace$setopts(0x4206, r1, 0x0, 0x0) ptrace(0x8, r1) r2 = syz_open_procfs(r1, &(0x7f0000000180)='net/ip6_flowlabel\x00') readv(r2, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1) r3 = syz_open_procfs(0x0, &(0x7f0000000280)='fd/4\x00') ioctl$FIONREAD(r3, 0x6801, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x173000, 0x0) ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f0000000040)) syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100000, &(0x7f0000000440)=ANY=[]) mkdir(&(0x7f0000000300)='./file0/file0\x00', 0x0) unshare(0x48020200) [ 1111.203829] FAULT_INJECTION: forcing a failure. [ 1111.203829] name failslab, interval 1, probability 0, space 0, times 0 [ 1111.205282] CPU: 1 PID: 10149 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1111.206028] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1111.206917] Call Trace: [ 1111.207205] dump_stack+0x107/0x167 [ 1111.207600] should_fail.cold+0x5/0xa [ 1111.208020] ? create_object.isra.0+0x3a/0xa20 [ 1111.208538] should_failslab+0x5/0x20 [ 1111.208947] kmem_cache_alloc+0x5b/0x310 [ 1111.209390] ? vsnprintf+0x4ba/0x1600 [ 1111.209810] create_object.isra.0+0x3a/0xa20 [ 1111.210285] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1111.210826] __kmalloc_track_caller+0x177/0x370 [ 1111.211334] ? kasprintf+0xbb/0xf0 [ 1111.211717] kvasprintf+0xb5/0x150 [ 1111.212110] ? bust_spinlocks+0xe0/0xe0 [ 1111.212545] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1111.213106] ? get_random_u32+0x3cb/0x670 [ 1111.213553] kasprintf+0xbb/0xf0 [ 1111.213911] ? kvasprintf_const+0x1a0/0x1a0 [ 1111.214387] ? lockdep_init_map_type+0x2c7/0x780 [ 1111.214894] ? lockdep_init_map_type+0x2c7/0x780 [ 1111.215429] ieee80211_alloc_led_names+0x82/0x420 [ 1111.215955] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1111.216468] ? trace_hardirqs_on+0x5b/0x180 [ 1111.216933] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1111.217453] ? ____sys_sendmsg+0x70d/0x870 [ 1111.217907] ? ___sys_sendmsg+0xf3/0x170 [ 1111.218338] ? __sys_sendmsg+0xe5/0x1b0 [ 1111.218765] ? do_syscall_64+0x33/0x40 [ 1111.219181] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1111.219754] ? __lockdep_reset_lock+0x180/0x180 [ 1111.220257] ? lock_acquire+0x197/0x470 [ 1111.220701] ? create_object.isra.0+0x3ad/0xa20 [ 1111.221213] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1111.221711] ? __kmalloc+0x16e/0x390 [ 1111.222111] hwsim_new_radio_nl+0x991/0x1080 [ 1111.222577] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1111.223138] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1111.223837] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1111.224549] genl_family_rcv_msg_doit+0x22d/0x330 [ 1111.225077] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1111.225782] ? cap_capable+0x1d6/0x240 [ 1111.226217] ? ns_capable+0xe2/0x110 [ 1111.226632] genl_rcv_msg+0x33c/0x5a0 [ 1111.227049] ? genl_get_cmd+0x480/0x480 [ 1111.227478] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1111.228029] ? lock_release+0x680/0x680 [ 1111.228457] ? __lockdep_reset_lock+0x180/0x180 [ 1111.228973] netlink_rcv_skb+0x14b/0x430 [ 1111.229407] ? genl_get_cmd+0x480/0x480 [ 1111.229835] ? netlink_ack+0xab0/0xab0 [ 1111.230265] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1111.230751] ? is_vmalloc_addr+0x7b/0xb0 [ 1111.231197] genl_rcv+0x24/0x40 [ 1111.231553] netlink_unicast+0x549/0x7f0 [ 1111.231992] ? netlink_attachskb+0x870/0x870 [ 1111.232459] ? __virt_addr_valid+0x128/0x350 [ 1111.232945] netlink_sendmsg+0x90f/0xdf0 [ 1111.233378] ? netlink_unicast+0x7f0/0x7f0 [ 1111.233844] ? netlink_unicast+0x7f0/0x7f0 [ 1111.234302] __sock_sendmsg+0x154/0x190 [ 1111.234744] ____sys_sendmsg+0x70d/0x870 [ 1111.235181] ? sock_write_iter+0x3d0/0x3d0 [ 1111.235651] ? do_recvmmsg+0x6d0/0x6d0 [ 1111.236085] ? perf_trace_lock+0xac/0x490 [ 1111.236538] ? __lockdep_reset_lock+0x180/0x180 [ 1111.237037] ? perf_trace_lock+0xac/0x490 [ 1111.237515] ? SOFTIRQ_verbose+0x10/0x10 [ 1111.237955] ___sys_sendmsg+0xf3/0x170 [ 1111.238378] ? sendmsg_copy_msghdr+0x160/0x160 [ 1111.238893] ? lock_downgrade+0x6d0/0x6d0 [ 1111.239360] ? find_held_lock+0x2c/0x110 [ 1111.239804] ? __fget_files+0x296/0x4c0 [ 1111.240253] ? __fget_light+0xea/0x290 [ 1111.240704] __sys_sendmsg+0xe5/0x1b0 [ 1111.241130] ? __sys_sendmsg_sock+0x40/0x40 [ 1111.241594] ? rcu_read_lock_any_held+0x75/0xa0 [ 1111.242129] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1111.242689] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1111.243259] ? trace_hardirqs_on+0x5b/0x180 [ 1111.243733] do_syscall_64+0x33/0x40 [ 1111.244141] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1111.244695] RIP: 0033:0x7fb858d1fb19 [ 1111.245114] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1111.247073] RSP: 002b:00007fb856295188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1111.247896] RAX: ffffffffffffffda RBX: 00007fb858e32f60 RCX: 00007fb858d1fb19 [ 1111.248656] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1111.249417] RBP: 00007fb8562951d0 R08: 0000000000000000 R09: 0000000000000000 [ 1111.250167] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1111.250934] R13: 00007ffde2c0b16f R14: 00007fb856295300 R15: 0000000000022000 12:04:22 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 12:04:22 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 29) 12:04:22 executing program 4: ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x0, 0x1f, 0x0, 0x0, 0x5, "f31afa00434ef9bab774bdca0d00", 0x20}) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) r1 = socket$inet(0x2, 0xa, 0x20000000) ioctl$KDFONTOP_SET(0xffffffffffffffff, 0x4b72, &(0x7f00000005c0)={0x0, 0x1, 0x1a, 0x13, 0x9, &(0x7f00000001c0)="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"}) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) open_by_handle_at(r0, &(0x7f0000000240)=ANY=[@ANYRESHEX=r0], 0x5ad843) connect$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e20, @broadcast}, 0x10) ioctl$sock_inet_SIOCADDRT(r1, 0x890b, &(0x7f0000000600)={0x0, {0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x20}}, {0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x2, 0x4e24, @broadcast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x7fffffff, 0x6}) ioctl$sock_TIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000000)) ioctl$sock_inet6_SIOCDIFADDR(0xffffffffffffffff, 0x8936, &(0x7f0000000100)={@mcast1, 0x32}) getgroups(0x8, &(0x7f0000000140)=[0xee00, 0xee01, 0x0, 0xee01, 0x0, 0x0, 0x0, 0x0]) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f00000000c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0xffffffffffffffff}}, './cgroup/cgroup.procs\x00'}) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000680)={0x0, r2, 0xfd, 0x8, 0x100000000, 0x1}) openat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x840080, 0x64) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0xbadb5eef77a8684d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x0, 0x9}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) dup3(r1, r0, 0x80000) [ 1111.440065] FAULT_INJECTION: forcing a failure. [ 1111.440065] name failslab, interval 1, probability 0, space 0, times 0 [ 1111.443033] CPU: 0 PID: 10159 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 1111.444607] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1111.446376] Call Trace: [ 1111.446941] dump_stack+0x107/0x167 [ 1111.447720] should_fail.cold+0x5/0xa [ 1111.448552] ? create_object.isra.0+0x3a/0xa20 [ 1111.449547] should_failslab+0x5/0x20 [ 1111.450355] kmem_cache_alloc+0x5b/0x310 [ 1111.451200] ? vsnprintf+0x4ba/0x1600 [ 1111.452015] create_object.isra.0+0x3a/0xa20 [ 1111.452975] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1111.454046] __kmalloc_track_caller+0x177/0x370 [ 1111.455021] ? kvasprintf_const+0x60/0x1a0 [ 1111.455919] kvasprintf+0xb5/0x150 [ 1111.456684] ? bust_spinlocks+0xe0/0xe0 [ 1111.457525] ? lockdep_init_map_type+0x2c7/0x780 [ 1111.458523] kvasprintf_const+0x60/0x1a0 [ 1111.459376] kobject_set_name_vargs+0x56/0x150 [ 1111.460330] device_create_groups_vargs+0x1c0/0x280 [ 1111.461385] device_create+0xdc/0x120 [ 1111.462225] ? device_create_groups_vargs+0x280/0x280 [ 1111.463293] ? init_timer_key+0x12a/0x240 [ 1111.464176] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1111.465235] mac80211_hwsim_new_radio+0x352/0x4250 [ 1111.466277] ? ____sys_sendmsg+0x70d/0x870 [ 1111.467160] ? ___sys_sendmsg+0xf3/0x170 [ 1111.468010] ? __sys_sendmsg+0xe5/0x1b0 [ 1111.468861] ? do_syscall_64+0x33/0x40 [ 1111.469679] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1111.470779] ? __lockdep_reset_lock+0x180/0x180 [ 1111.471740] ? lock_acquire+0x197/0x470 [ 1111.472566] ? create_object.isra.0+0x3ad/0xa20 [ 1111.473532] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1111.474495] ? __kmalloc+0x16e/0x390 [ 1111.475274] hwsim_new_radio_nl+0x991/0x1080 [ 1111.476205] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1111.477295] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1111.478694] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1111.480034] genl_family_rcv_msg_doit+0x22d/0x330 [ 1111.481073] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1111.482437] ? cap_capable+0x1d6/0x240 [ 1111.483252] ? ns_capable+0xe2/0x110 [ 1111.484022] genl_rcv_msg+0x33c/0x5a0 [ 1111.484808] ? genl_get_cmd+0x480/0x480 [ 1111.485623] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1111.486688] ? lock_release+0x680/0x680 [ 1111.487529] ? __lockdep_reset_lock+0x180/0x180 [ 1111.488484] netlink_rcv_skb+0x14b/0x430 [ 1111.489329] ? genl_get_cmd+0x480/0x480 [ 1111.490150] ? netlink_ack+0xab0/0xab0 [ 1111.490980] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1111.491913] ? is_vmalloc_addr+0x7b/0xb0 [ 1111.492761] genl_rcv+0x24/0x40 [ 1111.493434] netlink_unicast+0x549/0x7f0 [ 1111.494283] ? netlink_attachskb+0x870/0x870 [ 1111.495180] ? __virt_addr_valid+0x128/0x350 [ 1111.496088] netlink_sendmsg+0x90f/0xdf0 [ 1111.496931] ? netlink_unicast+0x7f0/0x7f0 [ 1111.497827] ? netlink_unicast+0x7f0/0x7f0 [ 1111.498685] __sock_sendmsg+0x154/0x190 [ 1111.499494] ____sys_sendmsg+0x70d/0x870 [ 1111.500317] ? sock_write_iter+0x3d0/0x3d0 [ 1111.501174] ? do_recvmmsg+0x6d0/0x6d0 [ 1111.501962] ? perf_trace_lock+0xac/0x490 [ 1111.502827] ? __lockdep_reset_lock+0x180/0x180 [ 1111.503792] ? perf_trace_lock+0xac/0x490 [ 1111.504658] ? SOFTIRQ_verbose+0x10/0x10 [ 1111.505509] ___sys_sendmsg+0xf3/0x170 [ 1111.506318] ? sendmsg_copy_msghdr+0x160/0x160 [ 1111.507282] ? lock_downgrade+0x6d0/0x6d0 [ 1111.508160] ? find_held_lock+0x2c/0x110 [ 1111.509077] ? __fget_files+0x296/0x4c0 [ 1111.510022] ? __fget_light+0xea/0x290 [ 1111.510941] __sys_sendmsg+0xe5/0x1b0 [ 1111.511843] ? __sys_sendmsg_sock+0x40/0x40 [ 1111.512872] ? rcu_read_lock_any_held+0x75/0xa0 [ 1111.513993] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1111.515229] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1111.516436] ? trace_hardirqs_on+0x5b/0x180 [ 1111.517471] do_syscall_64+0x33/0x40 [ 1111.518341] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1111.519542] RIP: 0033:0x7f59b4343b19 [ 1111.520419] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1111.524736] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1111.526495] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 1111.528140] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1111.529774] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1111.531399] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1111.533059] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 [ 1111.550568] FAT-fs (loop6): Unrecognized mount option "0x0000000000000003" or missing value 12:04:38 executing program 1: syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x8c, &(0x7f0000000340)={[{@utf8}], [{@fsmagic}, {@measure}, {@seclabel}, {@obj_type={'obj_type', 0x3d, '\x00'}}]}) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x101}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pipe(&(0x7f00000000c0)) openat(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x2, 0x2) openat(r1, &(0x7f00000001c0)='./file1\x00', 0x0, 0x25) pipe2(&(0x7f0000000480)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r3 = io_uring_setup(0x6a35, &(0x7f0000000300)) dup3(r2, r3, 0x0) sendfile(r3, r0, 0x0, 0x100000001) r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040), 0x109000, 0x0) openat(r4, &(0x7f0000000140)='./file1\x00', 0x400000, 0x91) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) 12:04:38 executing program 4: perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x8, 0x8}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0, 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 12:04:38 executing program 6: perf_event_open(&(0x7f00000001c0)={0x1, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x4000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_bp={&(0x7f0000000100), 0x8}, 0x18102, 0x0, 0xffffffff, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r0 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r0, &(0x7f0000000240)=ANY=[@ANYRESHEX=r0], 0x4a0043) setsockopt$inet_udp_int(r0, 0x11, 0x65, &(0x7f0000000100)=0x7, 0x4) openat(r0, &(0x7f00000002c0)='./file0/file0\x00', 0x80000, 0x102) r1 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000300), 0x801, 0x0) r2 = openat(r1, &(0x7f0000000340)='./file0/file0\x00', 0x8400, 0x59) socket$inet_icmp_raw(0x2, 0x3, 0x1) openat(r2, &(0x7f0000000280)='./file0\x00', 0x400000, 0x40) creat(&(0x7f0000000000)='./file0\x00', 0x100) 12:04:38 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 30) 12:04:38 executing program 0: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_usb_connect$cdc_ecm(0x0, 0x4d, 0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) timer_create(0x3, &(0x7f0000000000)={0x0, 0x1c, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000040)=0x0) timer_settime(r1, 0x0, &(0x7f0000000480)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0) read(0xffffffffffffffff, &(0x7f0000000080)=""/65, 0x41) timer_gettime(r1, &(0x7f00000002c0)) timer_create(0x5, &(0x7f0000000680)={0x0, 0x16, 0x1, @thr={&(0x7f00000004c0)="16dbd83a6e48276d60f2c636a7b466a5974c5427625f513f3a97139884cd55614731f47160295d61b4400c38214cdb7768919e82a2cb53dfeabd49d4ba4bbfcabdab37c6b4047638cd88597b63f82175a0f1b4ad588f62cc69d9f1b7fbe37a7c59da509a955caec89dfada3a06dcbe8f0a62875decaed172999ae393eb9c9ff8caff3bb31c60a36e9261a6e9f583a36e87150897235faab79046f0ad835287fc3e3c0166cc6fcb638b6737c4d662397cc8e20b5f50c4bfdc8e82b5dfbab12569e1f663fc19d506d6f1e22746d0f5c34657d4cd8b6b16a1309d822d671726fe8281d3c3998922bc158e50fbdcb521", &(0x7f00000005c0)="59c51ce18c0932c12f92ac7929678568d04306d9fffd3a206c8767a8ce2da2ff6e6db6785e013bf3d658a734e0ad078f55a76d0a2f8d7448438065e2f182557db723ff56bf2ef90e48130b99d7abf3b890df2ed3bf3db3f686aaa2837a9c5d3747462fa98061b69cd399b22b13cae190ff26284cae95fa0387ef6d0d037495dacc34a5210f32f972cf68a2c38cf3d20514034d8cde132bd97a3ce782a90c1e22b06f5de772584d4f94aaf8e02d78c432a33fe2f9bc846dd54284"}}, &(0x7f00000006c0)) sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x50, 0x2, 0x3, 0x3, 0x0, 0x0, {0x3, 0x0, 0x6}, [@NFQA_CFG_CMD={0x8, 0x1, {0x3}}, @NFQA_CFG_PARAMS={0x9, 0x2, {0x2, 0x1}}, @NFQA_CFG_FLAGS={0x8, 0x5, 0x1, 0x0, 0x2}, @NFQA_CFG_FLAGS={0x8, 0x5, 0x1, 0x0, 0x30}, @NFQA_CFG_CMD={0x8, 0x1, {0x0, 0x0, 0x26}}, @NFQA_CFG_QUEUE_MAXLEN={0x8, 0x3, 0x1, 0x0, 0x8}, @NFQA_CFG_QUEUE_MAXLEN={0x8}]}, 0x50}, 0x1, 0x0, 0x0, 0x8080}, 0x4000004) timer_gettime(r1, &(0x7f0000000280)) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000700)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYRES32=0xffffffffffffffff, @ANYBLOB="00000000ccd5749675cb5b0420b0e79e05264a2d2e2f666973653000"]) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000340), 0xffffffffffffffff) r5 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r5, &(0x7f0000000240)=ANY=[@ANYRESHEX=r5], 0x4a0043) setsockopt$inet_udp_int(r5, 0x11, 0x65, &(0x7f0000000100)=0x7, 0x4) sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r3, &(0x7f0000000440)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x4c, r4, 0x1, 0x70bd26, 0x25dfdbfc, {}, [@NL802154_ATTR_NETNS_FD={0x8, 0x1d, r2}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_NETNS_FD={0x8, 0x1d, r5}, @NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x2}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000000}, 0x40) 12:04:38 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) r1 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) pwritev(r1, &(0x7f0000000080)=[{&(0x7f0000000180)='\x00', 0x1}], 0x1, 0x0, 0x0) r2 = syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r2, 0x8000000) io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_SETFLAGS(r2, 0x40086602, &(0x7f0000000100)=0x400000) 12:04:38 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 22) 12:04:38 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x2, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1126.592529] FAULT_INJECTION: forcing a failure. [ 1126.592529] name failslab, interval 1, probability 0, space 0, times 0 [ 1126.594947] CPU: 0 PID: 10187 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 1126.596434] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1126.598183] Call Trace: [ 1126.598743] dump_stack+0x107/0x167 [ 1126.599517] should_fail.cold+0x5/0xa [ 1126.600356] ? device_add+0x1020/0x1bc0 [ 1126.601202] should_failslab+0x5/0x20 [ 1126.602031] kmem_cache_alloc_trace+0x55/0x320 [ 1126.602992] ? kvasprintf+0xe9/0x150 [ 1126.603770] device_add+0x1020/0x1bc0 [ 1126.604579] ? devlink_add_symlinks+0x970/0x970 [ 1126.605593] device_create_groups_vargs+0x207/0x280 [ 1126.606682] device_create+0xdc/0x120 [ 1126.607488] ? device_create_groups_vargs+0x280/0x280 [ 1126.608571] ? init_timer_key+0x12a/0x240 [ 1126.609467] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1126.610524] mac80211_hwsim_new_radio+0x352/0x4250 [ 1126.611549] ? ____sys_sendmsg+0x70d/0x870 [ 1126.612432] ? ___sys_sendmsg+0xf3/0x170 [ 1126.613301] ? __sys_sendmsg+0xe5/0x1b0 [ 1126.614178] ? do_syscall_64+0x33/0x40 [ 1126.614989] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1126.616094] ? __lockdep_reset_lock+0x180/0x180 [ 1126.617059] ? lock_acquire+0x197/0x470 [ 1126.617886] ? create_object.isra.0+0x3ad/0xa20 [ 1126.618860] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1126.619833] ? __kmalloc+0x16e/0x390 [ 1126.620608] hwsim_new_radio_nl+0x991/0x1080 [ 1126.621534] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1126.622622] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1126.623988] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1126.625396] genl_family_rcv_msg_doit+0x22d/0x330 [ 1126.626411] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1126.627775] ? cap_capable+0x1d6/0x240 [ 1126.628605] ? ns_capable+0xe2/0x110 [ 1126.629438] genl_rcv_msg+0x33c/0x5a0 [ 1126.630236] ? genl_get_cmd+0x480/0x480 [ 1126.631061] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1126.632137] ? lock_release+0x680/0x680 [ 1126.633005] ? __lockdep_reset_lock+0x180/0x180 [ 1126.633968] netlink_rcv_skb+0x14b/0x430 [ 1126.634803] ? genl_get_cmd+0x480/0x480 [ 1126.635629] ? netlink_ack+0xab0/0xab0 [ 1126.636451] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1126.637449] ? is_vmalloc_addr+0x7b/0xb0 [ 1126.638301] genl_rcv+0x24/0x40 [ 1126.638983] netlink_unicast+0x549/0x7f0 [ 1126.639825] ? netlink_attachskb+0x870/0x870 [ 1126.640784] ? __virt_addr_valid+0x128/0x350 [ 1126.641717] netlink_sendmsg+0x90f/0xdf0 [ 1126.642562] ? netlink_unicast+0x7f0/0x7f0 [ 1126.643479] ? netlink_unicast+0x7f0/0x7f0 [ 1126.644352] __sock_sendmsg+0x154/0x190 [ 1126.645182] ____sys_sendmsg+0x70d/0x870 [ 1126.646023] ? sock_write_iter+0x3d0/0x3d0 [ 1126.646927] ? do_recvmmsg+0x6d0/0x6d0 [ 1126.647730] ? perf_trace_lock+0xac/0x490 [ 1126.648589] ? __lockdep_reset_lock+0x180/0x180 [ 1126.649560] ? perf_trace_lock+0xac/0x490 [ 1126.650407] ? SOFTIRQ_verbose+0x10/0x10 [ 1126.651276] ___sys_sendmsg+0xf3/0x170 [ 1126.652074] ? sendmsg_copy_msghdr+0x160/0x160 [ 1126.653035] ? lock_downgrade+0x6d0/0x6d0 12:04:38 executing program 4: add_key$fscrypt_v1(0x0, 0x0, &(0x7f00000008c0)={0x0, "65a6cf5b9c07642a3340db90bee4874c94ec4fdd53be77d8d05520d91682233c045247ee072dddb4606017c18511ee7cc2005a83f5d5bbc07333a25fce3d1db4", 0xfffffffc}, 0x48, 0xfffffffffffffffb) r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x17}, 0x3}, 0x1c) r1 = add_key$keyring(0x0, &(0x7f0000000100)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$unlink(0x4, r1, 0xfffffffffffffffd) request_key(&(0x7f0000000040)='logon\x00', &(0x7f0000000100)={'syz', 0x2}, &(0x7f0000000140)='\x00', r1) r2 = add_key$keyring(&(0x7f0000000000), 0x0, 0x0, 0x0, 0x0) keyctl$get_keyring_id(0x0, r2, 0x0) ioctl$sock_SIOCSIFVLAN_GET_VLAN_VID_CMD(0xffffffffffffffff, 0x8983, &(0x7f0000000180)) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @multicast1}}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x6, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x1100, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x7ffff000, 0x0) [ 1126.653920] ? find_held_lock+0x2c/0x110 [ 1126.654914] ? __fget_files+0x296/0x4c0 [ 1126.655753] ? __fget_light+0xea/0x290 [ 1126.656559] __sys_sendmsg+0xe5/0x1b0 [ 1126.657365] ? __sys_sendmsg_sock+0x40/0x40 [ 1126.658292] ? rcu_read_lock_any_held+0x75/0xa0 [ 1126.659272] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1126.660343] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1126.661414] ? trace_hardirqs_on+0x5b/0x180 [ 1126.662341] do_syscall_64+0x33/0x40 [ 1126.663111] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1126.664159] RIP: 0033:0x7f59b4343b19 [ 1126.664931] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1126.669049] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1126.670795] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 1126.672421] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1126.674097] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1126.675726] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1126.677362] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 [ 1126.684682] FAULT_INJECTION: forcing a failure. [ 1126.684682] name failslab, interval 1, probability 0, space 0, times 0 [ 1126.686165] CPU: 1 PID: 10193 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1126.686987] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1126.688018] Call Trace: [ 1126.688347] dump_stack+0x107/0x167 [ 1126.688867] should_fail.cold+0x5/0xa [ 1126.689827] should_failslab+0x5/0x20 [ 1126.690772] __kmalloc_track_caller+0x79/0x370 [ 1126.691897] ? kasprintf+0xbb/0xf0 [ 1126.692820] kvasprintf+0xb5/0x150 [ 1126.693650] ? bust_spinlocks+0xe0/0xe0 [ 1126.694542] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1126.695714] ? get_random_u32+0x3cb/0x670 [ 1126.696657] kasprintf+0xbb/0xf0 [ 1126.697427] ? kvasprintf_const+0x1a0/0x1a0 [ 1126.698400] ? lockdep_init_map_type+0x2c7/0x780 [ 1126.699452] ? lockdep_init_map_type+0x2c7/0x780 [ 1126.700439] ieee80211_alloc_led_names+0x1ac/0x420 [ 1126.701550] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1126.702610] ? trace_hardirqs_on+0x5b/0x180 [ 1126.703585] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1126.704695] ? ____sys_sendmsg+0x70d/0x870 [ 1126.705664] ? ___sys_sendmsg+0xf3/0x170 [ 1126.706545] ? __sys_sendmsg+0xe5/0x1b0 [ 1126.707338] ? do_syscall_64+0x33/0x40 [ 1126.708113] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1126.709183] ? __lockdep_reset_lock+0x180/0x180 [ 1126.710107] ? lock_acquire+0x197/0x470 [ 1126.710898] ? create_object.isra.0+0x3ad/0xa20 [ 1126.711832] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1126.712781] ? __kmalloc+0x16e/0x390 12:04:38 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1126.713530] hwsim_new_radio_nl+0x991/0x1080 [ 1126.714483] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1126.715101] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1126.715856] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 12:04:38 executing program 6: r0 = syz_open_procfs(0x0, &(0x7f0000000700)='clear_refs\x00') write$tcp_mem(r0, &(0x7f0000000080)={0xfffffffffffffffd}, 0x48) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0xffffffffffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) umount2(&(0x7f0000000040)='./file0\x00', 0x0) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/pm_trace_dev_match', 0x0, 0x0) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/resume', 0x22902, 0x0) write(r1, 0x0, 0x0) setxattr$incfs_metadata(&(0x7f0000000080)='./file0\x00', &(0x7f0000000100), &(0x7f0000000140)="9ca256793e04cf0da7b4d6f1e3c57d581db1cb2ccebf5b5c14dab758ba458dff8b68fff6ddd1dd7c3349999fae90074edc8526b88658df093ceb7f90b1a1f675e55676a8a8f0ed9e2711b684ad35effa26c18da219d61331580231571ba7966beca78a4875de17685bfb7c192245568a6006f25a00e46ec544bc95d86169e30e6a5bafceefb64337388b", 0x8a, 0x1) r3 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/pm_trace_dev_match', 0x0, 0x72) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(r3, 0xc0bc5351, &(0x7f0000000200)={0x2, 0x2, 'client1\x00', 0x6, "fee6b03974ba2221", "831d7e2f722b045d418bbcaa0af53b20a98a4aba6f801bc7bfb9772bbcd14f14", 0x9, 0xcee}) r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/power/resume', 0x22902, 0x0) copy_file_range(r3, 0x0, r4, 0x0, 0xa1, 0x0) ioctl$KDADDIO(r2, 0x4b34, 0x5) setsockopt$sock_void(0xffffffffffffffff, 0x1, 0x24, 0x0, 0x0) syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000680)='ns/pid\x00') io_setup(0x7, &(0x7f00000002c0)) fsmount(r2, 0x0, 0xd) unshare(0x48020200) ioctl$KDSIGACCEPT(r4, 0x4b4e, 0x2a) [ 1126.716589] genl_family_rcv_msg_doit+0x22d/0x330 [ 1126.717269] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1126.718010] ? cap_capable+0x1d6/0x240 [ 1126.718469] ? ns_capable+0xe2/0x110 [ 1126.718890] genl_rcv_msg+0x33c/0x5a0 [ 1126.719333] ? genl_get_cmd+0x480/0x480 [ 1126.719785] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1126.720388] ? lock_release+0x680/0x680 [ 1126.720848] ? __lockdep_reset_lock+0x180/0x180 [ 1126.721386] netlink_rcv_skb+0x14b/0x430 [ 1126.721858] ? genl_get_cmd+0x480/0x480 [ 1126.722329] ? netlink_ack+0xab0/0xab0 [ 1126.722792] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1126.723322] ? is_vmalloc_addr+0x7b/0xb0 [ 1126.723797] genl_rcv+0x24/0x40 [ 1126.724177] netlink_unicast+0x549/0x7f0 [ 1126.724657] ? netlink_attachskb+0x870/0x870 [ 1126.725177] ? __virt_addr_valid+0x128/0x350 [ 1126.725693] netlink_sendmsg+0x90f/0xdf0 [ 1126.726167] ? netlink_unicast+0x7f0/0x7f0 [ 1126.726666] ? netlink_unicast+0x7f0/0x7f0 [ 1126.727153] __sock_sendmsg+0x154/0x190 [ 1126.727616] ____sys_sendmsg+0x70d/0x870 [ 1126.728087] ? sock_write_iter+0x3d0/0x3d0 [ 1126.728595] ? do_recvmmsg+0x6d0/0x6d0 [ 1126.729056] ? perf_trace_lock+0xac/0x490 [ 1126.729540] ? __lockdep_reset_lock+0x180/0x180 [ 1126.730077] ? perf_trace_lock+0xac/0x490 [ 1126.730559] ? SOFTIRQ_verbose+0x10/0x10 [ 1126.731024] ___sys_sendmsg+0xf3/0x170 [ 1126.731475] ? sendmsg_copy_msghdr+0x160/0x160 [ 1126.732000] ? lock_downgrade+0x6d0/0x6d0 [ 1126.732482] ? find_held_lock+0x2c/0x110 [ 1126.732961] ? __fget_files+0x296/0x4c0 [ 1126.733440] ? __fget_light+0xea/0x290 [ 1126.733890] __sys_sendmsg+0xe5/0x1b0 [ 1126.734330] ? __sys_sendmsg_sock+0x40/0x40 [ 1126.734817] ? rcu_read_lock_any_held+0x75/0xa0 [ 1126.735374] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1126.735967] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1126.736565] ? trace_hardirqs_on+0x5b/0x180 [ 1126.737066] do_syscall_64+0x33/0x40 [ 1126.737502] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1126.738084] RIP: 0033:0x7fb858d1fb19 [ 1126.738518] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1126.740597] RSP: 002b:00007fb856295188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1126.741481] RAX: ffffffffffffffda RBX: 00007fb858e32f60 RCX: 00007fb858d1fb19 [ 1126.742292] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1126.743096] RBP: 00007fb8562951d0 R08: 0000000000000000 R09: 0000000000000000 [ 1126.743908] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1126.744755] R13: 00007ffde2c0b16f R14: 00007fb856295300 R15: 0000000000022000 12:04:53 executing program 6: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./mnt\x00', 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f00000001c0)='./mnt\x00', 0x0, 0x0, 0x0, 0x400, &(0x7f0000000080)=ANY=[]) 12:04:53 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x46e2, 0x3) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) creat(&(0x7f0000000540)='./file0\x00', 0x80) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x381040, 0x0) syncfs(r2) write$binfmt_elf64(r1, &(0x7f0000000180)=ANY=[@ANYRESOCT, @ANYRES32, @ANYBLOB="c96f19de8c5d09002662090e02f6010ca2ecf8c44efb47a796d74f9d53502a56d410c7492a47e039fa8aaf04d1de88c2529cd64bce7706b565449daaa5d23d207e471fbadde1435500d083c6edad3927d1775624a43e07689f7bbd821174b429d5342d41e33fc112d74c3e764182076079a2acff4c925cb0226b60342c78ed0b70d0d4f855df68bdbbf88d82e7fb402597ac51c6a38eb00d27488eb840e0180918c5ffcd9033d31b4c9be2f636be2eb3c75bfa11f58d83003a61369e0000000000e5db78c606000001008a08f0db430b1ea94d5518f5e6e3786f427246c00688af3aa770851aba", @ANYRESHEX=r0, @ANYRESDEC, @ANYBLOB="a99c76d316149599336120081b4e5def127f6ae72dbce226cad6a9c0564ce5dbdba126b533307616c7bb70c85cfedb03a2cd0271fae7"], 0xfdef) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r1, 0x3, 0x3, 0x8000008000) 12:04:53 executing program 0: rt_sigaction(0x12, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0, 0x8, &(0x7f0000000100)) epoll_pwait(0xffffffffffffffff, &(0x7f0000000040)=[{}, {}, {}], 0x3, 0x8, &(0x7f0000000180)={[0x1f]}, 0x8) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x4000004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ftruncate(0xffffffffffffffff, 0x1000005) write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000001c0)=ANY=[], 0xfdef) r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) fsetxattr$security_selinux(r0, &(0x7f0000000000), &(0x7f0000000080)='system_u:object_r:syslogd_var_lib_t:s0\x00', 0x27, 0x0) ioctl$RTC_WKALM_SET(r0, 0x4028700f, &(0x7f00000000c0)={0x1, 0x1, {0xa, 0x24, 0x5, 0x4, 0x2, 0xfe2d, 0x20, 0x121, 0x1}}) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x2000, 0x0) copy_file_range(r2, 0x0, r1, 0x0, 0x10001, 0x0) r3 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0), &(0x7f0000000100)) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r3, 0x8000000) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) sendfile(0xffffffffffffffff, r3, 0x0, 0x3) setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000140)={@private1={0xfc, 0x1, '\x00', 0x6}, 0x1000000, 0x2, 0x3, 0xc, 0x5e9e}, 0x20) unshare(0x48020200) 12:04:53 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x3d, 0x7, 0x1, 0x0, 0x2, 0x0, 0x0, 0xc0108, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000000)={0x0, @remote, @initdev}, &(0x7f0000000040)=0xc) bind$packet(0xffffffffffffffff, &(0x7f00000000c0)={0x11, 0xf5, r0, 0x1, 0x0, 0x6, @local}, 0x14) io_setup(0x5, &(0x7f0000000080)) 12:04:53 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 23) 12:04:53 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x4, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 12:04:53 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) recvmsg$unix(0xffffffffffffffff, 0x0, 0x100) ioctl$FIGETBSZ(0xffffffffffffffff, 0x2, &(0x7f0000000680)) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_STATX={0x15, 0x4, 0x0, 0xffffffffffffffff, &(0x7f0000000300), &(0x7f00000001c0)='./file0\x00', 0x857450c4d1051849, 0x1000, 0x1}, 0xb818) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) openat(0xffffffffffffff9c, &(0x7f00000008c0)='./file0\x00', 0x4000, 0x9) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000900), r1) sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000000180)={0x0, 0xfffffffffffffe9a, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB, @ANYRES16=r2, @ANYBLOB="010000000000000000002100000009001f00706879310000000005002000000000000c0005000000000000000000"], 0x34}}, 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$ieee802154(&(0x7f00000002c0), 0xffffffffffffffff) syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000280), 0xffffffffffffffff) sendmsg$NLBL_MGMT_C_ADD(0xffffffffffffffff, &(0x7f0000000880)={&(0x7f00000007c0), 0xc, 0x0, 0x1, 0x0, 0x0, 0x4008000}, 0x10) sendmsg$NL802154_CMD_NEW_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x38, 0x0, 0x8, 0x70bd2c, 0x25dfdbfd, {}, [@NL802154_ATTR_SEC_LEVEL={0x24, 0x22, 0x0, 0x1, [@NL802154_SECLEVEL_ATTR_CMD_FRAME={0x8, 0x3, 0x7}, @NL802154_SECLEVEL_ATTR_FRAME={0x8}, @NL802154_SECLEVEL_ATTR_DEV_OVERRIDE={0x5}, @NL802154_SECLEVEL_ATTR_CMD_FRAME={0x8, 0x3, 0x5}]}]}, 0x38}}, 0x0) 12:04:53 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 31) [ 1142.360503] FAULT_INJECTION: forcing a failure. [ 1142.360503] name failslab, interval 1, probability 0, space 0, times 0 [ 1142.362158] CPU: 1 PID: 10226 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1142.363096] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1142.364220] Call Trace: [ 1142.364583] dump_stack+0x107/0x167 [ 1142.365097] should_fail.cold+0x5/0xa [ 1142.365616] ? create_object.isra.0+0x3a/0xa20 [ 1142.366239] should_failslab+0x5/0x20 [ 1142.366754] kmem_cache_alloc+0x5b/0x310 [ 1142.367297] ? vsnprintf+0x4ba/0x1600 [ 1142.367798] create_object.isra.0+0x3a/0xa20 [ 1142.368385] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1142.369077] __kmalloc_track_caller+0x177/0x370 [ 1142.369720] ? kasprintf+0xbb/0xf0 [ 1142.370202] kvasprintf+0xb5/0x150 [ 1142.370677] ? bust_spinlocks+0xe0/0xe0 [ 1142.371217] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1142.371939] ? get_random_u32+0x3cb/0x670 [ 1142.372508] kasprintf+0xbb/0xf0 [ 1142.372981] ? kvasprintf_const+0x1a0/0x1a0 [ 1142.373568] ? lockdep_init_map_type+0x2c7/0x780 [ 1142.374207] ? lockdep_init_map_type+0x2c7/0x780 [ 1142.374808] ieee80211_alloc_led_names+0x1ac/0x420 [ 1142.375466] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1142.376088] ? trace_hardirqs_on+0x5b/0x180 [ 1142.376622] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1142.377270] ? ____sys_sendmsg+0x70d/0x870 [ 1142.377823] ? ___sys_sendmsg+0xf3/0x170 [ 1142.378348] ? __sys_sendmsg+0xe5/0x1b0 [ 1142.378863] ? do_syscall_64+0x33/0x40 [ 1142.379372] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1142.380060] ? __lockdep_reset_lock+0x180/0x180 [ 1142.380659] ? lock_acquire+0x197/0x470 [ 1142.381196] ? create_object.isra.0+0x3ad/0xa20 [ 1142.381806] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1142.382402] ? __kmalloc+0x16e/0x390 [ 1142.382891] hwsim_new_radio_nl+0x991/0x1080 [ 1142.383463] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1142.384142] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1142.385004] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1142.385846] genl_family_rcv_msg_doit+0x22d/0x330 [ 1142.386476] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1142.387334] ? cap_capable+0x1d6/0x240 [ 1142.387847] ? ns_capable+0xe2/0x110 [ 1142.388332] genl_rcv_msg+0x33c/0x5a0 [ 1142.388832] ? genl_get_cmd+0x480/0x480 [ 1142.389364] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1142.390030] ? lock_release+0x680/0x680 [ 1142.390546] ? __lockdep_reset_lock+0x180/0x180 [ 1142.391150] netlink_rcv_skb+0x14b/0x430 [ 1142.391673] ? genl_get_cmd+0x480/0x480 [ 1142.392159] ? netlink_ack+0xab0/0xab0 [ 1142.392676] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1142.393275] ? is_vmalloc_addr+0x7b/0xb0 [ 1142.393803] genl_rcv+0x24/0x40 [ 1142.394233] netlink_unicast+0x549/0x7f0 [ 1142.394768] ? netlink_attachskb+0x870/0x870 [ 1142.395338] ? __virt_addr_valid+0x128/0x350 [ 1142.395973] netlink_sendmsg+0x90f/0xdf0 [ 1142.396534] ? netlink_unicast+0x7f0/0x7f0 [ 1142.397139] ? netlink_unicast+0x7f0/0x7f0 [ 1142.397700] __sock_sendmsg+0x154/0x190 [ 1142.398211] ____sys_sendmsg+0x70d/0x870 [ 1142.398732] ? sock_write_iter+0x3d0/0x3d0 [ 1142.399269] ? do_recvmmsg+0x6d0/0x6d0 [ 1142.399772] ? perf_trace_lock+0xac/0x490 [ 1142.400307] ? __lockdep_reset_lock+0x180/0x180 [ 1142.400901] ? perf_trace_lock+0xac/0x490 [ 1142.401404] ? SOFTIRQ_verbose+0x10/0x10 [ 1142.401923] ___sys_sendmsg+0xf3/0x170 [ 1142.402424] ? sendmsg_copy_msghdr+0x160/0x160 [ 1142.403015] ? lock_downgrade+0x6d0/0x6d0 [ 1142.403547] ? find_held_lock+0x2c/0x110 [ 1142.404076] ? __fget_files+0x296/0x4c0 [ 1142.404596] ? __fget_light+0xea/0x290 [ 1142.405104] __sys_sendmsg+0xe5/0x1b0 [ 1142.405569] ? __sys_sendmsg_sock+0x40/0x40 [ 1142.406092] ? rcu_read_lock_any_held+0x75/0xa0 [ 1142.406704] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1142.407375] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1142.408032] ? trace_hardirqs_on+0x5b/0x180 [ 1142.408551] do_syscall_64+0x33/0x40 [ 1142.409041] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1142.409699] RIP: 0033:0x7fb858d1fb19 [ 1142.410175] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1142.412752] RSP: 002b:00007fb856295188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1142.413786] RAX: ffffffffffffffda RBX: 00007fb858e32f60 RCX: 00007fb858d1fb19 [ 1142.414854] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1142.415800] RBP: 00007fb8562951d0 R08: 0000000000000000 R09: 0000000000000000 [ 1142.416759] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1142.417726] R13: 00007ffde2c0b16f R14: 00007fb856295300 R15: 0000000000022000 12:04:53 executing program 6: semtimedop(0x0, &(0x7f0000000000)=[{0x0, 0x4, 0x800}, {0x1, 0x9, 0x1000}], 0x2, &(0x7f0000000040)={0x0, 0x3938700}) prlimit64(0x0, 0x7, &(0x7f00000003c0), 0x0) timer_create(0x0, 0x0, 0x0) syz_mount_image$ext4(0x0, 0x0, 0x0, 0x0, &(0x7f0000000200), 0x0, 0x0) 12:04:54 executing program 4: syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r0, r1, &(0x7f0000000200)=@IORING_OP_LINK_TIMEOUT={0xf, 0x4, 0x0, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x989680}, 0x1, 0x0, 0x1}, 0x0) r2 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000200000006000000000008000080000020000000dbf4655fdbf4655f0100ffff53ef010001000000daf4655f000000000000000001000000000000000b0000000004000008000000d2c200001203", 0x66, 0x400}, {&(0x7f0000010100)="00000000000000000000000082e36724c6f34caa846ed2e527703378010040", 0x1f, 0x4e0}, {&(0x7f0000000040)="00000400006fffffffffffffff00cd0c4facb9b9cb6c49808b4f06e70a44a893c7d8d87287005e3b", 0x28, 0x540}, {0x0, 0x0, 0x1000}], 0x0, &(0x7f0000000280)=ANY=[@ANYRES64=r0]) openat(r2, &(0x7f0000000140)='./file0\x00', 0x40, 0x104) fchmodat(r2, &(0x7f0000000080)='./file0\x00', 0x80) openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x200001, 0x10) 12:04:54 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x5, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 12:04:54 executing program 5: ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty, 0x98}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000002ec0), 0x4) setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000340)={@in={{0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}}, 0x0, 0x0, 0x4c, 0x0, "15bb6949bc674ed64133723aa6453b9d292123bebbcd37c5097fd53da62c01e266166394afb8d0aca105da30931d140a11973acb99cc0d8da3a4f6f42444a1948f422c8d8d2d8bdd069588783e32b713"}, 0xd8) ioctl$BTRFS_IOC_SNAP_CREATE(r0, 0x50009401, &(0x7f0000000700)={{}, "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"}) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1/file0\x00', 0x200, 0x54) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) setsockopt$bt_hci_HCI_DATA_DIR(r1, 0x0, 0x1, 0x0, 0x0) write$bt_hci(r1, 0x0, 0x106) ioctl$FIBMAP(r1, 0x1, &(0x7f0000000040)=0xffffff8a) setgid(0x0) fcntl$getownex(r0, 0x10, &(0x7f0000000140)) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) ioctl$AUTOFS_IOC_CATATONIC(0xffffffffffffffff, 0x9362, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x61, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2692, 0x0, @perf_config_ext={0x0, 0x71}, 0x0, 0x0, 0x0, 0x0, 0xe1}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0) recvfrom$inet6(r0, &(0x7f0000001e00)=""/4096, 0x1000, 0xcd08, 0x0, 0x0) write$bt_hci(r1, &(0x7f0000000440)=ANY=[@ANYBLOB="0103090ac80001fd12b8be0000000000000025ad7929228f020871292f8a65da605464f51ec8f9fc1b0b8962a22815c4f9c867f33d03dfd02d168554ea074c798243818e2577bc8b1833c001eabdb45e6961104f58470c0eb06036a94fb1e13f0f403da03e8c8437ea463fa168cde7d1f8f5bdb20dfd5478b462fbfacbcf27a94637a7f76da90e470bcea84cabd24deb0236c6e668d19d20f35f785895dfd3ba284ef2c9dc65910b4190c680bd944f7ebaebfefd14d2c64c29c8d724b0a8466c151b141a7792a992c5e5cf5b9a4c94b113ffaab806e7d8b335991b084c71"], 0xe) 12:04:54 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) execveat(r0, &(0x7f00000000c0)='./file1\x00', &(0x7f0000000240)=[&(0x7f00000001c0)='\'-^:&/\\,!])\x00'], &(0x7f00000005c0)=[&(0x7f0000000400)='io.pressure\x00', &(0x7f0000000440)='-!Z*\x00', &(0x7f0000000480)='\x00', &(0x7f00000004c0)='io.pressure\x00', &(0x7f0000000500)='/&:\x00', &(0x7f0000000540)='\xdf{[\x00', &(0x7f0000000580)='(-(+\x00'], 0x400) r1 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r4 = dup2(r3, r3) recvmsg(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f0000000100)=@rc={0x1f, @none}, 0x80, &(0x7f0000000040)=[{&(0x7f0000000180)=""/157, 0x9d}], 0x1}, 0x2) fsconfig$FSCONFIG_SET_PATH_EMPTY(0xffffffffffffffff, 0x4, &(0x7f0000000600)='\x00', &(0x7f0000000640)='./file1\x00', r1) r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x107142, 0x0) openat$cgroup_pressure(r4, &(0x7f0000000200)='io.pressure\x00', 0x2, 0x0) r6 = signalfd(r1, &(0x7f0000000080)={[0x6]}, 0x8) io_uring_setup(0x25ce, &(0x7f0000000380)={0x0, 0x4496, 0x2, 0x0, 0xa4, 0x0, r6}) r7 = openat$rtc(0xffffffffffffff9c, 0x0, 0x0, 0x0) fcntl$setstatus(r7, 0x4, 0x46c00) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000280)=ANY=[@ANYBLOB="010080000100000018000000c94932ef36060650d466b2792f7831ad8570b40625ed11f52c1e3e509060ae7e442214b6b700000000b200"/67, @ANYBLOB="06000000000000002e2f66696c653100f7d78c0e834f625471198f857e60552b8609c083c8eec51df9636d93d12f4b38caa4041f88edac61994257b06b0ffb116cabcf8e34838ddd351440852d4058b0be97551ee0cc0e686acee542651f70cc82f57c0138b08028f73bf6fb182bdb9448122b96554a7c0b5521f8db9fb757c83cbe7906a8ad24726fa64777cd24a4aa6786c2450769203ed72a582274b9cbd4c40a09444ff07f3add7e3cb7"]) sendfile(r5, r3, 0x0, 0x7ffffff9) fallocate(r2, 0x0, 0x0, 0x8004) perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r1}) [ 1142.561287] FAULT_INJECTION: forcing a failure. [ 1142.561287] name failslab, interval 1, probability 0, space 0, times 0 [ 1142.563949] CPU: 0 PID: 10233 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 1142.565569] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1142.567462] Call Trace: [ 1142.568073] dump_stack+0x107/0x167 [ 1142.568912] should_fail.cold+0x5/0xa [ 1142.569822] ? create_object.isra.0+0x3a/0xa20 [ 1142.570876] should_failslab+0x5/0x20 [ 1142.571751] kmem_cache_alloc+0x5b/0x310 [ 1142.572693] create_object.isra.0+0x3a/0xa20 [ 1142.573710] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1142.574885] kmem_cache_alloc_trace+0x151/0x320 [ 1142.575959] device_add+0x1020/0x1bc0 [ 1142.576844] ? devlink_add_symlinks+0x970/0x970 [ 1142.577938] device_create_groups_vargs+0x207/0x280 [ 1142.579091] device_create+0xdc/0x120 [ 1142.579966] ? device_create_groups_vargs+0x280/0x280 [ 1142.581161] ? init_timer_key+0x12a/0x240 [ 1142.582118] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1142.583225] mac80211_hwsim_new_radio+0x352/0x4250 [ 1142.584335] ? ____sys_sendmsg+0x70d/0x870 [ 1142.585301] ? ___sys_sendmsg+0xf3/0x170 [ 1142.586220] ? __sys_sendmsg+0xe5/0x1b0 [ 1142.587124] ? do_syscall_64+0x33/0x40 [ 1142.588010] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1142.589245] ? __lockdep_reset_lock+0x180/0x180 [ 1142.590310] ? lock_acquire+0x197/0x470 [ 1142.591220] ? create_object.isra.0+0x3ad/0xa20 [ 1142.592287] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1142.593358] ? __kmalloc+0x16e/0x390 [ 1142.594213] hwsim_new_radio_nl+0x991/0x1080 [ 1142.595225] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1142.596416] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1142.597905] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1142.599378] genl_family_rcv_msg_doit+0x22d/0x330 [ 1142.600462] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1142.601964] ? cap_capable+0x1d6/0x240 [ 1142.602861] ? ns_capable+0xe2/0x110 [ 1142.603707] genl_rcv_msg+0x33c/0x5a0 [ 1142.604571] ? genl_get_cmd+0x480/0x480 [ 1142.605478] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1142.606641] ? lock_release+0x680/0x680 [ 1142.607532] ? __lockdep_reset_lock+0x180/0x180 [ 1142.608581] netlink_rcv_skb+0x14b/0x430 [ 1142.609509] ? genl_get_cmd+0x480/0x480 [ 1142.610403] ? netlink_ack+0xab0/0xab0 [ 1142.611295] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1142.612312] ? is_vmalloc_addr+0x7b/0xb0 [ 1142.613227] genl_rcv+0x24/0x40 [ 1142.613961] netlink_unicast+0x549/0x7f0 [ 1142.614876] ? netlink_attachskb+0x870/0x870 [ 1142.615853] ? __virt_addr_valid+0x128/0x350 [ 1142.616846] netlink_sendmsg+0x90f/0xdf0 [ 1142.617773] ? netlink_unicast+0x7f0/0x7f0 [ 1142.618729] ? netlink_unicast+0x7f0/0x7f0 [ 1142.619672] __sock_sendmsg+0x154/0x190 [ 1142.620559] ____sys_sendmsg+0x70d/0x870 [ 1142.621475] ? sock_write_iter+0x3d0/0x3d0 [ 1142.622413] ? do_recvmmsg+0x6d0/0x6d0 [ 1142.623281] ? perf_trace_lock+0xac/0x490 [ 1142.624215] ? __lockdep_reset_lock+0x180/0x180 [ 1142.625252] ? perf_trace_lock+0xac/0x490 [ 1142.626168] ? SOFTIRQ_verbose+0x10/0x10 [ 1142.627073] ___sys_sendmsg+0xf3/0x170 [ 1142.627938] ? sendmsg_copy_msghdr+0x160/0x160 [ 1142.628974] ? lock_downgrade+0x6d0/0x6d0 [ 1142.629897] ? find_held_lock+0x2c/0x110 [ 1142.630810] ? __fget_files+0x296/0x4c0 [ 1142.631707] ? __fget_light+0xea/0x290 [ 1142.632582] __sys_sendmsg+0xe5/0x1b0 [ 1142.633434] ? __sys_sendmsg_sock+0x40/0x40 [ 1142.634387] ? rcu_read_lock_any_held+0x75/0xa0 [ 1142.635441] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1142.636596] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1142.637753] ? trace_hardirqs_on+0x5b/0x180 [ 1142.638716] do_syscall_64+0x33/0x40 [ 1142.639551] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1142.640676] RIP: 0033:0x7f59b4343b19 [ 1142.641507] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1142.645534] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1142.647224] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 1142.648787] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1142.650366] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1142.651929] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1142.653495] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 12:04:54 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xffff1ab2, 0x0, 0x2000, 0x0, 0x0, 0x1, 0x0, 0x1}, 0x10) fork() perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) futex(&(0x7f0000000080), 0x8, 0x0, 0x0, 0x0, 0x0) clock_gettime(0x1, &(0x7f0000000040)) futex(&(0x7f0000000000)=0x2, 0x5, 0x3, 0x0, &(0x7f0000001440)=0x4, 0xbffffffe) recvmmsg(0xffffffffffffffff, &(0x7f0000001280)=[{{0x0, 0x0, &(0x7f0000001600)=[{&(0x7f0000000140)=""/156, 0x9c}, {&(0x7f0000000200)=""/212, 0xd4}, {&(0x7f0000001040)=""/64, 0x40}, {&(0x7f0000001500)=""/245, 0xf5}, {&(0x7f0000001080)=""/46, 0x2e}], 0x5, &(0x7f0000000340)=""/187, 0xbb}, 0x7}, {{&(0x7f0000000400)=@in6={0xa, 0x0, 0x0, @mcast2}, 0x80, &(0x7f0000000500)=[{&(0x7f0000000480)=""/100, 0x64}], 0x1, &(0x7f0000000540)=""/80, 0x50}, 0xffffffc0}, {{&(0x7f00000005c0)=@vsock={0x28, 0x0, 0x0, @local}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000640)=""/248, 0xf8}, {&(0x7f0000000740)=""/151, 0x97}], 0x2, &(0x7f0000000840)=""/115, 0x73}}, {{&(0x7f00000008c0)=@l2, 0x80, &(0x7f0000000c80)=[{&(0x7f0000000940)=""/130, 0x82}, {&(0x7f0000000a00)=""/44, 0x2c}, {&(0x7f0000000a40)=""/76, 0x4c}, {&(0x7f0000000ac0)=""/137, 0x89}, {&(0x7f0000000b80)=""/75, 0x4b}, {&(0x7f0000000c00)=""/116, 0x74}], 0x6, &(0x7f0000000d00)=""/165, 0xa5}, 0x3ff}, {{&(0x7f0000000dc0)=@nfc_llcp, 0x80, &(0x7f0000000fc0)=[{&(0x7f0000000e40)=""/223, 0xdf}, {&(0x7f0000000f40)=""/121, 0x79}], 0x2, &(0x7f0000001000)=""/13, 0xd}, 0x8001}, {{&(0x7f0000001480)=@alg, 0x80, &(0x7f0000001200)=[{&(0x7f00000010c0)=""/10, 0xa}, {&(0x7f0000001100)=""/221, 0xdd}], 0x2, &(0x7f0000001240)=""/43, 0x2b}, 0x7fffffff}], 0x6, 0x12041, &(0x7f0000001400)={0x0, 0x3938700}) r0 = syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) r1 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_WRITE_FIXED={0x5, 0x5, 0x2000, @fd=r0, 0x3, 0x100000001, 0xf4, 0x0, 0x1, {0x1, r1}}, 0xa617) [ 1142.705300] futex_wake_op: syz-executor.6 tries to shift op by -1; fix this program 12:04:54 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 24) [ 1142.751807] futex_wake_op: syz-executor.6 tries to shift op by -1; fix this program [ 1142.755551] EXT4-fs (loop4): filesystem too large to mount safely on this system [ 1142.813547] EXT4-fs (loop4): filesystem too large to mount safely on this system 12:04:54 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 32) [ 1142.830883] FAULT_INJECTION: forcing a failure. [ 1142.830883] name failslab, interval 1, probability 0, space 0, times 0 [ 1142.832147] CPU: 1 PID: 10270 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1142.832909] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1142.833833] Call Trace: [ 1142.834132] dump_stack+0x107/0x167 [ 1142.834537] should_fail.cold+0x5/0xa [ 1142.834961] should_failslab+0x5/0x20 [ 1142.835381] __kmalloc_track_caller+0x79/0x370 [ 1142.835895] ? kasprintf+0xbb/0xf0 [ 1142.836291] kvasprintf+0xb5/0x150 [ 1142.836683] ? bust_spinlocks+0xe0/0xe0 [ 1142.837127] ? get_random_u32+0x3bd/0x670 [ 1142.837587] ? get_random_u32+0x3cb/0x670 [ 1142.838050] kasprintf+0xbb/0xf0 [ 1142.838430] ? kvasprintf_const+0x1a0/0x1a0 [ 1142.838915] ? lockdep_init_map_type+0x2c7/0x780 [ 1142.839445] ? lockdep_init_map_type+0x2c7/0x780 [ 1142.839975] ieee80211_alloc_led_names+0x23f/0x420 12:04:54 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xffff1ab2, 0x0, 0x2000, 0x0, 0x0, 0x1, 0x0, 0x1}, 0x10) fork() perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) futex(&(0x7f0000000080), 0x8, 0x0, 0x0, 0x0, 0x0) clock_gettime(0x1, &(0x7f0000000040)) futex(&(0x7f0000000000)=0x2, 0x5, 0x3, 0x0, &(0x7f0000001440)=0x4, 0xbffffffe) recvmmsg(0xffffffffffffffff, &(0x7f0000001280)=[{{0x0, 0x0, &(0x7f0000001600)=[{&(0x7f0000000140)=""/156, 0x9c}, {&(0x7f0000000200)=""/212, 0xd4}, {&(0x7f0000001040)=""/64, 0x40}, {&(0x7f0000001500)=""/245, 0xf5}, {&(0x7f0000001080)=""/46, 0x2e}], 0x5, &(0x7f0000000340)=""/187, 0xbb}, 0x7}, {{&(0x7f0000000400)=@in6={0xa, 0x0, 0x0, @mcast2}, 0x80, &(0x7f0000000500)=[{&(0x7f0000000480)=""/100, 0x64}], 0x1, &(0x7f0000000540)=""/80, 0x50}, 0xffffffc0}, {{&(0x7f00000005c0)=@vsock={0x28, 0x0, 0x0, @local}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000640)=""/248, 0xf8}, {&(0x7f0000000740)=""/151, 0x97}], 0x2, &(0x7f0000000840)=""/115, 0x73}}, {{&(0x7f00000008c0)=@l2, 0x80, &(0x7f0000000c80)=[{&(0x7f0000000940)=""/130, 0x82}, {&(0x7f0000000a00)=""/44, 0x2c}, {&(0x7f0000000a40)=""/76, 0x4c}, {&(0x7f0000000ac0)=""/137, 0x89}, {&(0x7f0000000b80)=""/75, 0x4b}, {&(0x7f0000000c00)=""/116, 0x74}], 0x6, &(0x7f0000000d00)=""/165, 0xa5}, 0x3ff}, {{&(0x7f0000000dc0)=@nfc_llcp, 0x80, &(0x7f0000000fc0)=[{&(0x7f0000000e40)=""/223, 0xdf}, {&(0x7f0000000f40)=""/121, 0x79}], 0x2, &(0x7f0000001000)=""/13, 0xd}, 0x8001}, {{&(0x7f0000001480)=@alg, 0x80, &(0x7f0000001200)=[{&(0x7f00000010c0)=""/10, 0xa}, {&(0x7f0000001100)=""/221, 0xdd}], 0x2, &(0x7f0000001240)=""/43, 0x2b}, 0x7fffffff}], 0x6, 0x12041, &(0x7f0000001400)={0x0, 0x3938700}) r0 = syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) r1 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_WRITE_FIXED={0x5, 0x5, 0x2000, @fd=r0, 0x3, 0x100000001, 0xf4, 0x0, 0x1, {0x1, r1}}, 0xa617) [ 1142.840526] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1142.841194] ? trace_hardirqs_on+0x5b/0x180 [ 1142.841656] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1142.842177] ? ____sys_sendmsg+0x70d/0x870 [ 1142.842618] ? ___sys_sendmsg+0xf3/0x170 [ 1142.843050] ? __sys_sendmsg+0xe5/0x1b0 [ 1142.843473] ? do_syscall_64+0x33/0x40 [ 1142.843889] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1142.844444] ? __lockdep_reset_lock+0x180/0x180 [ 1142.844937] ? lock_acquire+0x197/0x470 [ 1142.845354] ? create_object.isra.0+0x3ad/0xa20 [ 1142.845856] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1142.846356] ? __kmalloc+0x16e/0x390 [ 1142.846752] hwsim_new_radio_nl+0x991/0x1080 [ 1142.847217] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1142.847780] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1142.848470] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1142.849179] genl_family_rcv_msg_doit+0x22d/0x330 [ 1142.849690] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1142.850387] ? cap_capable+0x1d6/0x240 [ 1142.850812] ? ns_capable+0xe2/0x110 [ 1142.851212] genl_rcv_msg+0x33c/0x5a0 [ 1142.851622] ? genl_get_cmd+0x480/0x480 [ 1142.852054] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1142.852608] ? lock_release+0x680/0x680 [ 1142.853033] ? __lockdep_reset_lock+0x180/0x180 [ 1142.853529] netlink_rcv_skb+0x14b/0x430 [ 1142.853969] ? genl_get_cmd+0x480/0x480 [ 1142.854392] ? netlink_ack+0xab0/0xab0 [ 1142.854814] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1142.855298] ? is_vmalloc_addr+0x7b/0xb0 [ 1142.855733] genl_rcv+0x24/0x40 [ 1142.856088] netlink_unicast+0x549/0x7f0 [ 1142.856522] ? netlink_attachskb+0x870/0x870 [ 1142.857002] ? __virt_addr_valid+0x128/0x350 [ 1142.857480] netlink_sendmsg+0x90f/0xdf0 [ 1142.857919] ? netlink_unicast+0x7f0/0x7f0 [ 1142.858379] ? netlink_unicast+0x7f0/0x7f0 [ 1142.858833] __sock_sendmsg+0x154/0x190 [ 1142.859259] ____sys_sendmsg+0x70d/0x870 [ 1142.859692] ? sock_write_iter+0x3d0/0x3d0 [ 1142.860143] ? do_recvmmsg+0x6d0/0x6d0 [ 1142.860551] ? perf_trace_lock+0xac/0x490 [ 1142.861001] ? __lockdep_reset_lock+0x180/0x180 [ 1142.861497] ? perf_trace_lock+0xac/0x490 [ 1142.861931] ? SOFTIRQ_verbose+0x10/0x10 [ 1142.862366] ___sys_sendmsg+0xf3/0x170 [ 1142.862781] ? sendmsg_copy_msghdr+0x160/0x160 [ 1142.863275] ? lock_downgrade+0x6d0/0x6d0 [ 1142.863723] ? find_held_lock+0x2c/0x110 [ 1142.864167] ? __fget_files+0x296/0x4c0 [ 1142.864591] ? __fget_light+0xea/0x290 [ 1142.865023] __sys_sendmsg+0xe5/0x1b0 [ 1142.865427] ? __sys_sendmsg_sock+0x40/0x40 [ 1142.865889] ? rcu_read_lock_any_held+0x75/0xa0 [ 1142.866399] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1142.866956] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1142.867503] ? trace_hardirqs_on+0x5b/0x180 [ 1142.867971] do_syscall_64+0x33/0x40 [ 1142.868368] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1142.868908] RIP: 0033:0x7fb858d1fb19 [ 1142.869305] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1142.871245] RSP: 002b:00007fb856295188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1142.872040] RAX: ffffffffffffffda RBX: 00007fb858e32f60 RCX: 00007fb858d1fb19 [ 1142.872794] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1142.873561] RBP: 00007fb8562951d0 R08: 0000000000000000 R09: 0000000000000000 [ 1142.874313] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1142.875072] R13: 00007ffde2c0b16f R14: 00007fb856295300 R15: 0000000000022000 12:04:54 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @perf_bp={&(0x7f0000000140), 0x8}, 0x0, 0x0, 0x0, 0x2, 0x5, 0x1000000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}, 0x10001}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xd) r0 = syz_io_uring_setup(0x21, &(0x7f0000000080)={0x0, 0x45ae, 0x0, 0x2, 0x3b5, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000340)=0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000280)=@in6={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x20}}}}, 0x0) io_uring_enter(r0, 0x76d2, 0x0, 0x0, 0x0, 0x0) pwrite64(0xffffffffffffffff, 0x0, 0x0, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) r5 = dup2(0xffffffffffffffff, 0xffffffffffffffff) r6 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r6, &(0x7f0000000100)=ANY=[], 0xfdef) epoll_ctl$EPOLL_CTL_DEL(r4, 0x2, r5) syz_io_uring_submit(0x0, r2, &(0x7f0000000800)=@IORING_OP_RECVMSG={0xa, 0x1, 0x0, r3, 0x0, &(0x7f00000007c0)={&(0x7f0000000400)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, 0x80, &(0x7f0000000700)=[{&(0x7f0000000480)=""/15, 0xf}, {&(0x7f00000004c0)=""/132, 0x84}, {&(0x7f0000000580)=""/203, 0xcb}, {&(0x7f0000000680)=""/57, 0x39}, {&(0x7f00000006c0)=""/53, 0x35}], 0x5, &(0x7f0000000780)=""/59, 0x3b}, 0x0, 0x100, 0x1, {0x2}}, 0x2) r7 = socket$nl_sock_diag(0x10, 0x3, 0x4) ppoll(&(0x7f0000000000)=[{0xffffffffffffffff, 0x230}, {r7}, {0xffffffffffffffff, 0x4}, {r6, 0x408}, {r6, 0x108}], 0x5, &(0x7f0000000080)={0x77359400}, &(0x7f00000000c0)={[0x8]}, 0x8) fallocate(r6, 0x8, 0x0, 0x8000) ioctl$INCFS_IOC_GET_FILLED_BLOCKS(r7, 0x80286722, &(0x7f0000000300)={&(0x7f00000001c0)=""/89, 0x59, 0x80000001, 0x6}) openat(r6, &(0x7f0000000180)='./file0\x00', 0x351201, 0x3) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) [ 1142.951817] futex_wake_op: syz-executor.6 tries to shift op by -1; fix this program [ 1143.099930] FAULT_INJECTION: forcing a failure. [ 1143.099930] name failslab, interval 1, probability 0, space 0, times 0 [ 1143.102566] CPU: 0 PID: 10273 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 1143.104085] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1143.105910] Call Trace: [ 1143.106494] dump_stack+0x107/0x167 [ 1143.107305] should_fail.cold+0x5/0xa [ 1143.108157] should_failslab+0x5/0x20 [ 1143.109020] __kmalloc_track_caller+0x79/0x370 [ 1143.110030] ? kstrdup_const+0x53/0x80 [ 1143.110892] ? __lock_acquire+0x1657/0x5b00 [ 1143.111848] kstrdup+0x36/0x70 [ 1143.112560] kstrdup_const+0x53/0x80 [ 1143.113395] __kernfs_new_node+0x9d/0x860 [ 1143.114315] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1143.115372] ? perf_trace_lock+0xac/0x490 [ 1143.116283] ? SOFTIRQ_verbose+0x10/0x10 [ 1143.117207] ? __lockdep_reset_lock+0x180/0x180 [ 1143.118252] kernfs_create_dir_ns+0x9c/0x230 [ 1143.119228] sysfs_create_dir_ns+0x127/0x290 [ 1143.120203] ? sysfs_create_mount_point+0xb0/0xb0 [ 1143.121274] ? rwlock_bug.part.0+0x90/0x90 [ 1143.122215] ? class_dir_child_ns_type+0x9/0x60 [ 1143.123244] kobject_add_internal+0x25e/0xa30 [ 1143.124243] kobject_add+0x150/0x1c0 [ 1143.125088] ? kset_create_and_add+0x1a0/0x1a0 [ 1143.126097] ? lockdep_init_map_type+0x2c7/0x780 [ 1143.127160] device_add+0x35a/0x1bc0 [ 1143.127990] ? devlink_add_symlinks+0x970/0x970 [ 1143.129044] device_create_groups_vargs+0x207/0x280 [ 1143.130145] device_create+0xdc/0x120 [ 1143.130992] ? device_create_groups_vargs+0x280/0x280 [ 1143.132126] ? init_timer_key+0x12a/0x240 [ 1143.133060] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1143.134140] mac80211_hwsim_new_radio+0x352/0x4250 [ 1143.135219] ? ____sys_sendmsg+0x70d/0x870 [ 1143.136145] ? ___sys_sendmsg+0xf3/0x170 [ 1143.137051] ? __sys_sendmsg+0xe5/0x1b0 [ 1143.137923] ? do_syscall_64+0x33/0x40 [ 1143.138779] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1143.139943] ? __lockdep_reset_lock+0x180/0x180 [ 1143.140968] ? lock_acquire+0x197/0x470 [ 1143.141840] ? create_object.isra.0+0x3ad/0xa20 [ 1143.142872] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1143.143893] ? __kmalloc+0x16e/0x390 [ 1143.144719] hwsim_new_radio_nl+0x991/0x1080 [ 1143.145714] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1143.146871] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1143.148319] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1143.149769] genl_family_rcv_msg_doit+0x22d/0x330 [ 1143.150830] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1143.152277] ? cap_capable+0x1d6/0x240 [ 1143.153174] ? ns_capable+0xe2/0x110 [ 1143.153999] genl_rcv_msg+0x33c/0x5a0 [ 1143.154838] ? genl_get_cmd+0x480/0x480 [ 1143.155711] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1143.156846] ? lock_release+0x680/0x680 [ 1143.157726] ? __lockdep_reset_lock+0x180/0x180 [ 1143.158749] netlink_rcv_skb+0x14b/0x430 [ 1143.159638] ? genl_get_cmd+0x480/0x480 [ 1143.160509] ? netlink_ack+0xab0/0xab0 [ 1143.161389] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1143.162403] ? is_vmalloc_addr+0x7b/0xb0 [ 1143.163298] genl_rcv+0x24/0x40 [ 1143.164021] netlink_unicast+0x549/0x7f0 [ 1143.164918] ? netlink_attachskb+0x870/0x870 [ 1143.165907] ? __virt_addr_valid+0x128/0x350 [ 1143.166890] netlink_sendmsg+0x90f/0xdf0 [ 1143.167793] ? netlink_unicast+0x7f0/0x7f0 [ 1143.168740] ? netlink_unicast+0x7f0/0x7f0 [ 1143.169686] __sock_sendmsg+0x154/0x190 [ 1143.170563] ____sys_sendmsg+0x70d/0x870 [ 1143.171461] ? sock_write_iter+0x3d0/0x3d0 [ 1143.172386] ? do_recvmmsg+0x6d0/0x6d0 [ 1143.173251] ? perf_trace_lock+0xac/0x490 [ 1143.174172] ? __lockdep_reset_lock+0x180/0x180 [ 1143.175185] ? perf_trace_lock+0xac/0x490 [ 1143.176095] ? SOFTIRQ_verbose+0x10/0x10 [ 1143.177007] ___sys_sendmsg+0xf3/0x170 [ 1143.177867] ? sendmsg_copy_msghdr+0x160/0x160 [ 1143.178874] ? lock_downgrade+0x6d0/0x6d0 [ 1143.179789] ? find_held_lock+0x2c/0x110 [ 1143.180695] ? __fget_files+0x296/0x4c0 [ 1143.181595] ? __fget_light+0xea/0x290 [ 1143.182462] __sys_sendmsg+0xe5/0x1b0 [ 1143.183301] ? __sys_sendmsg_sock+0x40/0x40 [ 1143.184244] ? rcu_read_lock_any_held+0x75/0xa0 [ 1143.185309] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1143.186459] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1143.187585] ? trace_hardirqs_on+0x5b/0x180 [ 1143.188537] do_syscall_64+0x33/0x40 [ 1143.189368] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1143.190488] RIP: 0033:0x7f59b4343b19 [ 1143.191308] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1143.195318] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1143.197003] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 1143.198564] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1143.200124] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1143.201689] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1143.203250] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 [ 1143.206475] kobject_add_internal failed for hwsim159 (error: -12 parent: mac80211_hwsim) 12:05:11 executing program 1: mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = getpid() ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0}, './file0/file0\x00'}) openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/consoles\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000080)={0x3, 0x80, 0x49, 0x26, 0x7f, 0x4, 0x0, 0xffff, 0x8821, 0xe, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x4, @perf_config_ext={0x7286, 0x100}, 0x20, 0x0, 0xa8c600, 0x5, 0x7, 0xb3, 0x4, 0x0, 0x1, 0x0, 0x1}, r1, 0x10, r2, 0x9) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) ioctl$CDROMRESET(r3, 0x5312) perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40082404, 0x0) r4 = openat$thread_pidfd(0xffffffffffffff9c, 0x0, 0x0, 0x0) mlock2(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0) openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x802, 0x4) ioctl$INCFS_IOC_CREATE_FILE(r4, 0xc058671e, 0x0) 12:05:11 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x6, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 12:05:11 executing program 5: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="17d2f871c4a1c3ddc245db", @ANYRES16=0x0, @ANYBLOB="200029bd7000ffdbdf2521000000080003", @ANYRES32=0x0, @ANYBLOB="0c0099001f0000004c000000080077000500000011002a0025030106c672060303"], 0x48}, 0x1, 0x0, 0x0, 0x8080}, 0x80) perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, &(0x7f0000000340)='limits\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r0, 0x0) r1 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000440)={&(0x7f0000000240)=@hci, 0x80, 0x0}}, 0x0) clock_gettime(0x0, &(0x7f0000001940)) syz_io_uring_submit(0x0, r3, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, 0x0) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1000002, 0x77c5e991e68b6a9e, r1, 0x0) syz_io_uring_submit(r5, r3, &(0x7f0000000400)=@IORING_OP_READV=@pass_iovec={0x1, 0x4, 0x6000, @fd_index, 0x2, &(0x7f0000000040)=[{&(0x7f0000000140)=""/77, 0x4d}, {&(0x7f0000000380)=""/65, 0x41}, {&(0x7f0000000580)=""/68, 0x44}, {&(0x7f0000000600)=""/215, 0xd7}], 0x4, 0x2}, 0x3) dup2(r4, 0xffffffffffffffff) 12:05:11 executing program 0: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r0, 0xc0189374, &(0x7f0000000040)=ANY=[@ANYBLOB="710900000000000000190447002b48cae110f4f200000000"]) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x44204, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x1}, 0x1400, 0x100}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(r0, 0x0, 0x0, 0x8800000) 12:05:11 executing program 4: signalfd4(0xffffffffffffffff, &(0x7f0000000140)={[0x81]}, 0x8, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b000000000200002802000002", 0x61, 0x400}, {&(0x7f0000010400)="030000000400000005000000d400", 0xe, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x401, 0xc00}, {&(0x7f0000010e00), 0x0, 0x1600}], 0x8010, &(0x7f0000000280)=ANY=[@ANYBLOB="004eaced03000088f61a07b8c3f3c1aa396415dd0a7ffd1ad8f12a0550"]) chdir(&(0x7f0000000040)='./file0\x00') ftruncate(0xffffffffffffffff, 0x3) creat(&(0x7f0000000000)='./file1/file0\x00', 0xc0) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x8) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) write(r0, &(0x7f0000000240), 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$TCSETSW2(r1, 0x402c542c, &(0x7f0000000240)={0x0, 0x0, 0x0, 0xa563, 0x0, "0489fdc1843fc745ea52a5fff7962e807836db"}) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x80) r2 = creat(&(0x7f0000000540)='./file0\x00', 0x0) pwrite64(r2, 0x0, 0x0, 0x0) signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x2]}, 0x8) ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000080)=0x3) write$binfmt_aout(r1, &(0x7f00000002c0)={{0x10b, 0x30, 0x6, 0xcf, 0x3c6, 0x1, 0x39f}, "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"}, 0x1020) r3 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r3, &(0x7f0000000100)=ANY=[], 0xfdef) creat(&(0x7f0000000540)='./file0\x00', 0x0) 12:05:11 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 33) 12:05:11 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 25) 12:05:11 executing program 6: modify_ldt$write(0x1, &(0x7f0000000100)={0xffff1ab2, 0x0, 0x2000, 0x0, 0x0, 0x1, 0x0, 0x1}, 0x10) fork() perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) futex(&(0x7f0000000080), 0x8, 0x0, 0x0, 0x0, 0x0) clock_gettime(0x1, &(0x7f0000000040)) futex(&(0x7f0000000000)=0x2, 0x5, 0x3, 0x0, &(0x7f0000001440)=0x4, 0xbffffffe) recvmmsg(0xffffffffffffffff, &(0x7f0000001280)=[{{0x0, 0x0, &(0x7f0000001600)=[{&(0x7f0000000140)=""/156, 0x9c}, {&(0x7f0000000200)=""/212, 0xd4}, {&(0x7f0000001040)=""/64, 0x40}, {&(0x7f0000001500)=""/245, 0xf5}, {&(0x7f0000001080)=""/46, 0x2e}], 0x5, &(0x7f0000000340)=""/187, 0xbb}, 0x7}, {{&(0x7f0000000400)=@in6={0xa, 0x0, 0x0, @mcast2}, 0x80, &(0x7f0000000500)=[{&(0x7f0000000480)=""/100, 0x64}], 0x1, &(0x7f0000000540)=""/80, 0x50}, 0xffffffc0}, {{&(0x7f00000005c0)=@vsock={0x28, 0x0, 0x0, @local}, 0x80, &(0x7f0000000800)=[{&(0x7f0000000640)=""/248, 0xf8}, {&(0x7f0000000740)=""/151, 0x97}], 0x2, &(0x7f0000000840)=""/115, 0x73}}, {{&(0x7f00000008c0)=@l2, 0x80, &(0x7f0000000c80)=[{&(0x7f0000000940)=""/130, 0x82}, {&(0x7f0000000a00)=""/44, 0x2c}, {&(0x7f0000000a40)=""/76, 0x4c}, {&(0x7f0000000ac0)=""/137, 0x89}, {&(0x7f0000000b80)=""/75, 0x4b}, {&(0x7f0000000c00)=""/116, 0x74}], 0x6, &(0x7f0000000d00)=""/165, 0xa5}, 0x3ff}, {{&(0x7f0000000dc0)=@nfc_llcp, 0x80, &(0x7f0000000fc0)=[{&(0x7f0000000e40)=""/223, 0xdf}, {&(0x7f0000000f40)=""/121, 0x79}], 0x2, &(0x7f0000001000)=""/13, 0xd}, 0x8001}, {{&(0x7f0000001480)=@alg, 0x80, &(0x7f0000001200)=[{&(0x7f00000010c0)=""/10, 0xa}, {&(0x7f0000001100)=""/221, 0xdd}], 0x2, &(0x7f0000001240)=""/43, 0x2b}, 0x7fffffff}], 0x6, 0x12041, &(0x7f0000001400)={0x0, 0x3938700}) r0 = syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) r1 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_WRITE_FIXED={0x5, 0x5, 0x2000, @fd=r0, 0x3, 0x100000001, 0xf4, 0x0, 0x1, {0x1, r1}}, 0xa617) [ 1159.695873] FAULT_INJECTION: forcing a failure. [ 1159.695873] name failslab, interval 1, probability 0, space 0, times 0 [ 1159.695895] CPU: 1 PID: 10301 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 1159.695906] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1159.695913] Call Trace: [ 1159.695937] dump_stack+0x107/0x167 [ 1159.695964] should_fail.cold+0x5/0xa [ 1159.695994] ? create_object.isra.0+0x3a/0xa20 [ 1159.696018] should_failslab+0x5/0x20 [ 1159.696037] kmem_cache_alloc+0x5b/0x310 [ 1159.696059] ? __is_insn_slot_addr+0x123/0x290 [ 1159.696084] create_object.isra.0+0x3a/0xa20 [ 1159.696105] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1159.696133] __kmalloc_track_caller+0x177/0x370 [ 1159.696152] ? kstrdup_const+0x53/0x80 [ 1159.696181] kstrdup+0x36/0x70 [ 1159.696203] kstrdup_const+0x53/0x80 [ 1159.696225] __kernfs_new_node+0x9d/0x860 [ 1159.696254] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1159.696280] ? perf_trace_lock+0xac/0x490 [ 1159.696298] ? SOFTIRQ_verbose+0x10/0x10 [ 1159.696323] ? __lockdep_reset_lock+0x180/0x180 [ 1159.696361] kernfs_create_dir_ns+0x9c/0x230 [ 1159.696388] sysfs_create_dir_ns+0x127/0x290 [ 1159.696408] ? sysfs_create_mount_point+0xb0/0xb0 [ 1159.696430] ? rwlock_bug.part.0+0x90/0x90 [ 1159.696458] ? class_dir_child_ns_type+0x9/0x60 [ 1159.696483] kobject_add_internal+0x25e/0xa30 [ 1159.696515] kobject_add+0x150/0x1c0 [ 1159.696534] ? kset_create_and_add+0x1a0/0x1a0 [ 1159.696561] ? lockdep_init_map_type+0x2c7/0x780 [ 1159.696600] device_add+0x35a/0x1bc0 [ 1159.696627] ? devlink_add_symlinks+0x970/0x970 [ 1159.696664] device_create_groups_vargs+0x207/0x280 [ 1159.696690] device_create+0xdc/0x120 [ 1159.696714] ? device_create_groups_vargs+0x280/0x280 [ 1159.696736] ? init_timer_key+0x12a/0x240 [ 1159.696769] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1159.696799] mac80211_hwsim_new_radio+0x352/0x4250 [ 1159.696816] ? ____sys_sendmsg+0x70d/0x870 [ 1159.696832] ? ___sys_sendmsg+0xf3/0x170 [ 1159.696849] ? __sys_sendmsg+0xe5/0x1b0 [ 1159.696868] ? do_syscall_64+0x33/0x40 [ 1159.696889] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1159.696907] ? __lockdep_reset_lock+0x180/0x180 [ 1159.696925] ? lock_acquire+0x197/0x470 [ 1159.696943] ? create_object.isra.0+0x3ad/0xa20 [ 1159.696973] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1159.696996] ? __kmalloc+0x16e/0x390 [ 1159.697023] hwsim_new_radio_nl+0x991/0x1080 [ 1159.697049] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1159.697091] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1159.697110] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1159.697138] genl_family_rcv_msg_doit+0x22d/0x330 [ 1159.697174] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1159.697193] ? cap_capable+0x1d6/0x240 [ 1159.697231] ? ns_capable+0xe2/0x110 [ 1159.697256] genl_rcv_msg+0x33c/0x5a0 [ 1159.697281] ? genl_get_cmd+0x480/0x480 [ 1159.697301] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1159.697329] ? lock_release+0x680/0x680 [ 1159.697348] ? __lockdep_reset_lock+0x180/0x180 [ 1159.697373] netlink_rcv_skb+0x14b/0x430 [ 1159.697392] ? genl_get_cmd+0x480/0x480 [ 1159.697414] ? netlink_ack+0xab0/0xab0 [ 1159.697449] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1159.697469] ? is_vmalloc_addr+0x7b/0xb0 [ 1159.697492] genl_rcv+0x24/0x40 [ 1159.697509] netlink_unicast+0x549/0x7f0 [ 1159.697535] ? netlink_attachskb+0x870/0x870 [ 1159.697554] ? __virt_addr_valid+0x128/0x350 [ 1159.697591] netlink_sendmsg+0x90f/0xdf0 [ 1159.697619] ? netlink_unicast+0x7f0/0x7f0 [ 1159.697654] ? netlink_unicast+0x7f0/0x7f0 [ 1159.697674] __sock_sendmsg+0x154/0x190 [ 1159.697695] ____sys_sendmsg+0x70d/0x870 [ 1159.697718] ? sock_write_iter+0x3d0/0x3d0 [ 1159.697734] ? do_recvmmsg+0x6d0/0x6d0 [ 1159.697753] ? perf_trace_lock+0xac/0x490 [ 1159.697782] ? __lockdep_reset_lock+0x180/0x180 [ 1159.697798] ? perf_trace_lock+0xac/0x490 [ 1159.697816] ? SOFTIRQ_verbose+0x10/0x10 [ 1159.697842] ___sys_sendmsg+0xf3/0x170 [ 1159.697865] ? sendmsg_copy_msghdr+0x160/0x160 [ 1159.697892] ? lock_downgrade+0x6d0/0x6d0 [ 1159.697917] ? find_held_lock+0x2c/0x110 [ 1159.697949] ? __fget_files+0x296/0x4c0 [ 1159.697984] ? __fget_light+0xea/0x290 [ 1159.698014] __sys_sendmsg+0xe5/0x1b0 [ 1159.698034] ? __sys_sendmsg_sock+0x40/0x40 [ 1159.698053] ? rcu_read_lock_any_held+0x75/0xa0 [ 1159.698097] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1159.698115] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1159.698131] ? trace_hardirqs_on+0x5b/0x180 [ 1159.698157] do_syscall_64+0x33/0x40 [ 1159.698179] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1159.698193] RIP: 0033:0x7f59b4343b19 [ 1159.698214] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1159.698225] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1159.698247] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 1159.698259] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1159.698271] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1159.698283] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1159.698295] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 [ 1159.902242] futex_wake_op: syz-executor.6 tries to shift op by -1; fix this program [ 1159.961887] FAULT_INJECTION: forcing a failure. [ 1159.961887] name failslab, interval 1, probability 0, space 0, times 0 [ 1159.964651] CPU: 1 PID: 10299 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1159.964664] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1159.964672] Call Trace: [ 1159.964698] dump_stack+0x107/0x167 [ 1159.964729] should_fail.cold+0x5/0xa [ 1159.964755] ? create_object.isra.0+0x3a/0xa20 [ 1159.964782] should_failslab+0x5/0x20 [ 1159.964802] kmem_cache_alloc+0x5b/0x310 [ 1159.964833] create_object.isra.0+0x3a/0xa20 [ 1159.964855] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1159.964886] __kmalloc_track_caller+0x177/0x370 [ 1159.964906] ? kasprintf+0xbb/0xf0 [ 1159.964938] kvasprintf+0xb5/0x150 [ 1159.964961] ? bust_spinlocks+0xe0/0xe0 [ 1159.964991] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1159.965019] ? get_random_u32+0x3cb/0x670 [ 1159.965053] kasprintf+0xbb/0xf0 [ 1159.965076] ? kvasprintf_const+0x1a0/0x1a0 [ 1159.965105] ? lockdep_init_map_type+0x2c7/0x780 [ 1159.965130] ? lockdep_init_map_type+0x2c7/0x780 [ 1159.965193] ieee80211_alloc_led_names+0x23f/0x420 [ 1159.965225] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1159.965247] ? trace_hardirqs_on+0x5b/0x180 [ 1159.965275] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1159.965294] ? ____sys_sendmsg+0x70d/0x870 [ 1159.965312] ? ___sys_sendmsg+0xf3/0x170 [ 1159.965331] ? __sys_sendmsg+0xe5/0x1b0 [ 1159.965351] ? do_syscall_64+0x33/0x40 [ 1159.965375] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1159.965394] ? __lockdep_reset_lock+0x180/0x180 [ 1159.965415] ? lock_acquire+0x197/0x470 [ 1159.965435] ? create_object.isra.0+0x3ad/0xa20 [ 1159.965468] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1159.965494] ? __kmalloc+0x16e/0x390 [ 1159.965524] hwsim_new_radio_nl+0x991/0x1080 [ 1159.965552] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1159.965597] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1159.965619] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1159.965651] genl_family_rcv_msg_doit+0x22d/0x330 [ 1159.965678] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1159.965699] ? cap_capable+0x1d6/0x240 [ 1159.965740] ? ns_capable+0xe2/0x110 12:05:11 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x7, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1159.965768] genl_rcv_msg+0x33c/0x5a0 [ 1159.965795] ? genl_get_cmd+0x480/0x480 [ 1159.965818] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1159.965848] ? lock_release+0x680/0x680 [ 1159.965869] ? __lockdep_reset_lock+0x180/0x180 [ 1159.965898] netlink_rcv_skb+0x14b/0x430 [ 1159.965919] ? genl_get_cmd+0x480/0x480 [ 1159.965942] ? netlink_ack+0xab0/0xab0 [ 1159.965981] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1159.966005] ? is_vmalloc_addr+0x7b/0xb0 [ 1159.966032] genl_rcv+0x24/0x40 [ 1159.966051] netlink_unicast+0x549/0x7f0 [ 1159.966081] ? netlink_attachskb+0x870/0x870 [ 1159.966101] ? __virt_addr_valid+0x128/0x350 [ 1159.966137] netlink_sendmsg+0x90f/0xdf0 [ 1159.966168] ? netlink_unicast+0x7f0/0x7f0 [ 1159.966206] ? netlink_unicast+0x7f0/0x7f0 [ 1159.966228] __sock_sendmsg+0x154/0x190 [ 1159.966252] ____sys_sendmsg+0x70d/0x870 [ 1159.966286] ? sock_write_iter+0x3d0/0x3d0 [ 1159.966304] ? do_recvmmsg+0x6d0/0x6d0 [ 1160.027358] ? perf_trace_lock+0xac/0x490 [ 1160.028308] ? __lockdep_reset_lock+0x180/0x180 [ 1160.029374] ? perf_trace_lock+0xac/0x490 [ 1160.030306] ? SOFTIRQ_verbose+0x10/0x10 [ 1160.031228] ___sys_sendmsg+0xf3/0x170 [ 1160.032110] ? sendmsg_copy_msghdr+0x160/0x160 [ 1160.033162] ? lock_downgrade+0x6d0/0x6d0 [ 1160.034102] ? find_held_lock+0x2c/0x110 [ 1160.035054] ? __fget_files+0x296/0x4c0 [ 1160.035965] ? __fget_light+0xea/0x290 [ 1160.036855] __sys_sendmsg+0xe5/0x1b0 [ 1160.037757] ? __sys_sendmsg_sock+0x40/0x40 [ 1160.038730] ? rcu_read_lock_any_held+0x75/0xa0 12:05:11 executing program 1: r0 = creat(0x0, 0x0) fcntl$dupfd(r0, 0x0, r0) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) setsockopt$inet6_MRT6_DEL_MFC_PROXY(r0, 0x29, 0xd3, &(0x7f0000000300)={{0xa, 0x4e21, 0x4, @dev={0xfe, 0x80, '\x00', 0x21}, 0x3}, {0xa, 0x4e21, 0x9, @empty, 0xffff5834}, 0x7, [0x8, 0x9, 0x8, 0x9, 0xf26, 0x9, 0x1]}, 0x5c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffffd}, 0x0, 0x7c}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000000100)) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x94, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x10001}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = epoll_create(0x3) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) read(r3, &(0x7f0000000080)=""/63, 0x3f) r4 = syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0xd943, 0x1, &(0x7f0000000180)=[{&(0x7f00000000c0)='$_\b=', 0x4, 0xe72c}], 0x1040000, &(0x7f00000001c0)={[{@nr_inodes={'nr_inodes', 0x3d, [0x74, 0x65]}}], [{@subj_type}, {@fsuuid={'fsuuid', 0x3d, {[0x31, 0x36, 0x65, 0xaf, 0x65, 0x35, 0x63, 0x30], 0x2d, [0x66, 0x39, 0x33, 0x38], 0x2d, [0x66, 0x66, 0x35, 0x61], 0x2d, [0x7, 0x38, 0x2, 0x37], 0x2d, [0x32, 0xf4, 0x38, 0x62, 0x34, 0x63, 0x61, 0x37]}}}, {@obj_type={'obj_type', 0x3d, '@'}}, {@appraise_type}, {@pcr={'pcr', 0x3d, 0x17}}]}) readv(r4, &(0x7f00000002c0)=[{&(0x7f0000000240)=""/65, 0x41}], 0x1) dup2(r2, r1) socket$netlink(0x10, 0x3, 0x0) unshare(0x48020200) [ 1160.039810] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1160.041097] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1160.042274] ? trace_hardirqs_on+0x5b/0x180 [ 1160.043263] do_syscall_64+0x33/0x40 [ 1160.044105] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1160.045287] RIP: 0033:0x7fb858d1fb19 [ 1160.046130] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1160.050305] RSP: 002b:00007fb856295188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1160.052000] RAX: ffffffffffffffda RBX: 00007fb858e32f60 RCX: 00007fb858d1fb19 [ 1160.053601] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1160.055188] RBP: 00007fb8562951d0 R08: 0000000000000000 R09: 0000000000000000 [ 1160.056779] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1160.058383] R13: 00007ffde2c0b16f R14: 00007fb856295300 R15: 0000000000022000 12:05:11 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 34) 12:05:11 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./mnt\x00', 0x0, 0x0, 0x0, 0x1000a4, 0x0) r0 = syz_mount_image$nfs4(0x0, &(0x7f00000010c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f00000004c0)='mnt/encrypted_dir\x00', 0xa0) r1 = perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rename(&(0x7f0000000180)='mnt/encrypted_dir\x00', &(0x7f00000001c0)='./file0\x00') r2 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f0000000080)={@remote}, 0x14) r3 = socket$inet6_udp(0xa, 0x2, 0x0) rename(0x0, &(0x7f00000003c0)='mnt/encrypted_dir\x00') ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000000c0)={'lo\x00', 0x0}) setsockopt$inet6_group_source_req(r0, 0x29, 0x2f, &(0x7f0000000200)={0x6, {{0xa, 0x4e24, 0x7, @empty, 0x1}}, {{0xa, 0x4e21, 0x0, @local, 0x8}}}, 0x108) r5 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x100, 0x0) mknodat$loop(r5, &(0x7f0000000380)='./file0\x00', 0x80, 0x0) setsockopt$inet6_mreq(r2, 0x29, 0x1c, &(0x7f0000000000)={@private0, r4}, 0x14) chroot(&(0x7f0000000140)='./file2\x00') stat(0x0, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$PERF_EVENT_IOC_QUERY_BPF(r1, 0xc008240a, &(0x7f0000000340)=ANY=[@ANYBLOB="0504000000000000000000000000000000000000000298c800000000000004"]) setresuid(0xffffffffffffffff, r6, 0x0) 12:05:11 executing program 0: r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = fcntl$getown(r0, 0x9) perf_event_open(&(0x7f0000000080)={0x0, 0x80, 0x6, 0x5, 0xff, 0x41, 0x0, 0x9, 0x8000, 0x2, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0xe2, 0x2, @perf_bp={&(0x7f0000000040), 0xf}, 0x8110, 0x8, 0x7, 0x1d, 0x81, 0x25a, 0x8, 0x0, 0x100, 0x0, 0x8000}, r1, 0x2, r0, 0x0) r2 = fork() ptrace$setopts(0x4206, r2, 0x0, 0x0) ptrace(0x8, r2) perf_event_open(&(0x7f0000000200)={0x0, 0x80, 0x4a, 0x0, 0x5, 0x2, 0x0, 0x0, 0xaabc, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x5, 0x2, @perf_config_ext={0xe728, 0xc8}, 0x8, 0x7, 0x5000, 0x9, 0x80000001, 0xecdb, 0x3, 0x0, 0x800, 0x0, 0x8}, r2, 0xe, 0xffffffffffffffff, 0x0) r3 = syz_io_uring_setup(0x620e, &(0x7f0000000180), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_LINK_TIMEOUT={0xf, 0x4, 0x0, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x989680}, 0x1, 0x0, 0x1}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) r6 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, 0xffffffffffffffff, 0x8000000) syz_io_uring_submit(r6, 0x0, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd, 0x0, 0x0}, 0x80000001) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) syz_io_uring_submit(r6, r5, &(0x7f0000000280)=@IORING_OP_FADVISE={0x18, 0x5, 0x0, @fd_index=0x1, 0xb020, 0x0, 0xfffffffa, 0x3, 0x1, {0x0, r7}}, 0x2) syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_CLOSE={0x13, 0x2}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0) r8 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r3, 0x8000000) syz_io_uring_submit(r8, r5, &(0x7f00000002c0)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x80000001) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) 12:05:11 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) r1 = syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r1, 0x8000000) io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0) sendfile(r1, r0, &(0x7f0000000000)=0x4, 0x9) ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000040)={0x19}) [ 1160.237614] EXT4-fs warning (device sda): verify_group_input:146: Cannot add at group 25 (only 16 groups) 12:05:11 executing program 6: openat$rtc(0xffffffffffffff9c, &(0x7f0000000100), 0x80000, 0x0) r0 = perf_event_open(&(0x7f00000001c0)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) r1 = syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r1, 0x8000000) io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0) ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r1, 0x40089413, &(0x7f0000000140)=0x866b) creat(&(0x7f0000000180)='./file0\x00', 0xc0) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f00000000c0)=0x0) perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x4, 0x8e, 0x7f, 0x81, 0x0, 0x3, 0x42, 0x2, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x3, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x3, 0x1, @perf_bp={&(0x7f0000000000), 0x4}, 0x1000, 0x7fff, 0x0, 0x2, 0x2, 0x91, 0x0, 0x0, 0x3f, 0x0, 0x40}, r2, 0xa, r0, 0x9) [ 1160.305121] EXT4-fs warning (device sda): verify_group_input:146: Cannot add at group 25 (only 16 groups) [ 1160.440147] FAULT_INJECTION: forcing a failure. [ 1160.440147] name failslab, interval 1, probability 0, space 0, times 0 [ 1160.442629] CPU: 1 PID: 10323 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 1160.444046] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1160.445709] Call Trace: [ 1160.446254] dump_stack+0x107/0x167 [ 1160.447000] should_fail.cold+0x5/0xa [ 1160.447791] ? create_object.isra.0+0x3a/0xa20 [ 1160.448704] should_failslab+0x5/0x20 [ 1160.449510] kmem_cache_alloc+0x5b/0x310 [ 1160.450322] ? __is_insn_slot_addr+0x123/0x290 [ 1160.451253] create_object.isra.0+0x3a/0xa20 [ 1160.452146] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1160.453191] __kmalloc_track_caller+0x177/0x370 [ 1160.454133] ? kstrdup_const+0x53/0x80 [ 1160.454932] kstrdup+0x36/0x70 [ 1160.455589] kstrdup_const+0x53/0x80 [ 1160.456342] __kernfs_new_node+0x9d/0x860 [ 1160.457199] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1160.458149] ? perf_trace_lock+0xac/0x490 [ 1160.458988] ? SOFTIRQ_verbose+0x10/0x10 [ 1160.459818] ? __lockdep_reset_lock+0x180/0x180 [ 1160.460763] kernfs_create_dir_ns+0x9c/0x230 [ 1160.461680] sysfs_create_dir_ns+0x127/0x290 [ 1160.462575] ? sysfs_create_mount_point+0xb0/0xb0 [ 1160.463551] ? rwlock_bug.part.0+0x90/0x90 [ 1160.464416] ? class_dir_child_ns_type+0x9/0x60 [ 1160.465373] kobject_add_internal+0x25e/0xa30 [ 1160.466299] kobject_add+0x150/0x1c0 [ 1160.467056] ? kset_create_and_add+0x1a0/0x1a0 [ 1160.467987] ? lockdep_init_map_type+0x2c7/0x780 [ 1160.468965] device_add+0x35a/0x1bc0 [ 1160.469741] ? devlink_add_symlinks+0x970/0x970 [ 1160.470699] device_create_groups_vargs+0x207/0x280 [ 1160.471715] device_create+0xdc/0x120 [ 1160.472494] ? device_create_groups_vargs+0x280/0x280 [ 1160.473545] ? init_timer_key+0x12a/0x240 [ 1160.474416] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1160.475380] mac80211_hwsim_new_radio+0x352/0x4250 [ 1160.476375] ? ____sys_sendmsg+0x70d/0x870 [ 1160.477228] ? ___sys_sendmsg+0xf3/0x170 [ 1160.478056] ? __sys_sendmsg+0xe5/0x1b0 [ 1160.478848] ? do_syscall_64+0x33/0x40 [ 1160.479643] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1160.480689] ? __lockdep_reset_lock+0x180/0x180 [ 1160.481643] ? lock_acquire+0x197/0x470 [ 1160.482434] ? create_object.isra.0+0x3ad/0xa20 [ 1160.483401] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1160.484331] ? __kmalloc+0x16e/0x390 [ 1160.485077] hwsim_new_radio_nl+0x991/0x1080 [ 1160.485994] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1160.487096] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1160.488438] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1160.489821] genl_family_rcv_msg_doit+0x22d/0x330 [ 1160.490809] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1160.492195] ? cap_capable+0x1d6/0x240 [ 1160.493007] ? ns_capable+0xe2/0x110 [ 1160.493804] genl_rcv_msg+0x33c/0x5a0 [ 1160.494586] ? genl_get_cmd+0x480/0x480 [ 1160.495395] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1160.496494] ? lock_release+0x680/0x680 [ 1160.497326] ? __lockdep_reset_lock+0x180/0x180 [ 1160.498324] netlink_rcv_skb+0x14b/0x430 [ 1160.499155] ? genl_get_cmd+0x480/0x480 [ 1160.499965] ? netlink_ack+0xab0/0xab0 [ 1160.500772] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1160.501715] ? is_vmalloc_addr+0x7b/0xb0 [ 1160.502534] genl_rcv+0x24/0x40 [ 1160.503200] netlink_unicast+0x549/0x7f0 [ 1160.504026] ? netlink_attachskb+0x870/0x870 [ 1160.504914] ? __virt_addr_valid+0x128/0x350 [ 1160.505825] netlink_sendmsg+0x90f/0xdf0 [ 1160.506661] ? netlink_unicast+0x7f0/0x7f0 [ 1160.507524] ? netlink_unicast+0x7f0/0x7f0 [ 1160.508374] __sock_sendmsg+0x154/0x190 [ 1160.509172] ____sys_sendmsg+0x70d/0x870 [ 1160.509991] ? sock_write_iter+0x3d0/0x3d0 [ 1160.510839] ? do_recvmmsg+0x6d0/0x6d0 [ 1160.511619] ? perf_trace_lock+0xac/0x490 [ 1160.512449] ? __lockdep_reset_lock+0x180/0x180 [ 1160.513392] ? perf_trace_lock+0xac/0x490 [ 1160.514219] ? SOFTIRQ_verbose+0x10/0x10 [ 1160.515039] ___sys_sendmsg+0xf3/0x170 [ 1160.515823] ? sendmsg_copy_msghdr+0x160/0x160 [ 1160.516744] ? lock_downgrade+0x6d0/0x6d0 [ 1160.517591] ? find_held_lock+0x2c/0x110 [ 1160.518416] ? __fget_files+0x296/0x4c0 [ 1160.519227] ? __fget_light+0xea/0x290 [ 1160.520017] __sys_sendmsg+0xe5/0x1b0 [ 1160.520780] ? __sys_sendmsg_sock+0x40/0x40 [ 1160.521649] ? rcu_read_lock_any_held+0x75/0xa0 [ 1160.522603] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1160.523649] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1160.524676] ? trace_hardirqs_on+0x5b/0x180 [ 1160.525558] do_syscall_64+0x33/0x40 [ 1160.526306] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1160.527331] RIP: 0033:0x7f59b4343b19 [ 1160.528078] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1160.531751] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1160.533288] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 1160.534716] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1160.536139] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1160.537575] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1160.538997] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 12:05:11 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 26) [ 1160.829813] FAULT_INJECTION: forcing a failure. [ 1160.829813] name failslab, interval 1, probability 0, space 0, times 0 [ 1160.832488] CPU: 0 PID: 10341 Comm: syz-executor.2 Not tainted 5.10.199 #1 [ 1160.834068] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1160.835937] Call Trace: [ 1160.836539] dump_stack+0x107/0x167 [ 1160.837397] should_fail.cold+0x5/0xa [ 1160.838269] ? create_object.isra.0+0x3a/0xa20 [ 1160.839310] should_failslab+0x5/0x20 [ 1160.840166] kmem_cache_alloc+0x5b/0x310 [ 1160.841071] ? vsnprintf+0x4ba/0x1600 [ 1160.841934] create_object.isra.0+0x3a/0xa20 [ 1160.842915] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1160.844046] __kmalloc_track_caller+0x177/0x370 [ 1160.845071] ? kasprintf+0xbb/0xf0 [ 1160.845872] kvasprintf+0xb5/0x150 [ 1160.846658] ? bust_spinlocks+0xe0/0xe0 [ 1160.847537] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1160.848696] ? get_random_u32+0x3cb/0x670 [ 1160.849641] kasprintf+0xbb/0xf0 [ 1160.850390] ? kvasprintf_const+0x1a0/0x1a0 [ 1160.851354] ? lockdep_init_map_type+0x2c7/0x780 [ 1160.852401] ? lockdep_init_map_type+0x2c7/0x780 [ 1160.853470] ieee80211_alloc_led_names+0x23f/0x420 [ 1160.854565] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 1160.855611] ? trace_hardirqs_on+0x5b/0x180 [ 1160.856569] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1160.857667] ? ____sys_sendmsg+0x70d/0x870 [ 1160.858598] ? ___sys_sendmsg+0xf3/0x170 [ 1160.859489] ? __sys_sendmsg+0xe5/0x1b0 [ 1160.860365] ? do_syscall_64+0x33/0x40 [ 1160.861231] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1160.862398] ? __lockdep_reset_lock+0x180/0x180 [ 1160.863414] ? lock_acquire+0x197/0x470 [ 1160.864278] ? create_object.isra.0+0x3ad/0xa20 [ 1160.865307] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1160.866323] ? __kmalloc+0x16e/0x390 [ 1160.867149] hwsim_new_radio_nl+0x991/0x1080 [ 1160.868114] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1160.869275] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1160.870703] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1160.872124] genl_family_rcv_msg_doit+0x22d/0x330 [ 1160.873189] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1160.874622] ? cap_capable+0x1d6/0x240 [ 1160.875489] ? ns_capable+0xe2/0x110 [ 1160.876308] genl_rcv_msg+0x33c/0x5a0 [ 1160.877144] ? genl_get_cmd+0x480/0x480 [ 1160.878026] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1160.879159] ? lock_release+0x680/0x680 [ 1160.880024] ? __lockdep_reset_lock+0x180/0x180 [ 1160.881041] netlink_rcv_skb+0x14b/0x430 [ 1160.881928] ? genl_get_cmd+0x480/0x480 [ 1160.882795] ? netlink_ack+0xab0/0xab0 [ 1160.883652] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1160.884635] ? is_vmalloc_addr+0x7b/0xb0 [ 1160.885519] genl_rcv+0x24/0x40 [ 1160.886228] netlink_unicast+0x549/0x7f0 [ 1160.887108] ? netlink_attachskb+0x870/0x870 [ 1160.888050] ? __virt_addr_valid+0x128/0x350 [ 1160.889009] netlink_sendmsg+0x90f/0xdf0 [ 1160.889905] ? netlink_unicast+0x7f0/0x7f0 [ 1160.890829] ? netlink_unicast+0x7f0/0x7f0 [ 1160.891739] __sock_sendmsg+0x154/0x190 [ 1160.892595] ____sys_sendmsg+0x70d/0x870 [ 1160.893479] ? sock_write_iter+0x3d0/0x3d0 [ 1160.894387] ? do_recvmmsg+0x6d0/0x6d0 [ 1160.895224] ? perf_trace_lock+0xac/0x490 [ 1160.896124] ? __lockdep_reset_lock+0x180/0x180 [ 1160.897119] ? perf_trace_lock+0xac/0x490 [ 1160.898016] ? SOFTIRQ_verbose+0x10/0x10 [ 1160.898897] ___sys_sendmsg+0xf3/0x170 [ 1160.899737] ? sendmsg_copy_msghdr+0x160/0x160 [ 1160.900730] ? lock_downgrade+0x6d0/0x6d0 [ 1160.901635] ? find_held_lock+0x2c/0x110 [ 1160.902513] ? __fget_files+0x296/0x4c0 [ 1160.903380] ? __fget_light+0xea/0x290 [ 1160.904222] __sys_sendmsg+0xe5/0x1b0 [ 1160.905034] ? __sys_sendmsg_sock+0x40/0x40 [ 1160.905962] ? rcu_read_lock_any_held+0x75/0xa0 [ 1160.906976] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1160.908086] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1160.909189] ? trace_hardirqs_on+0x5b/0x180 [ 1160.910114] do_syscall_64+0x33/0x40 [ 1160.910911] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1160.912000] RIP: 0033:0x7fb858d1fb19 [ 1160.912797] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1160.916705] RSP: 002b:00007fb856295188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1160.918325] RAX: ffffffffffffffda RBX: 00007fb858e32f60 RCX: 00007fb858d1fb19 [ 1160.919829] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1160.921333] RBP: 00007fb8562951d0 R08: 0000000000000000 R09: 0000000000000000 [ 1160.922830] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1160.924325] R13: 00007ffde2c0b16f R14: 00007fb856295300 R15: 0000000000022000 12:05:27 executing program 5: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7}, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r1, 0x8000000) io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) r3 = dup(r2) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(r3, 0x8936, &(0x7f0000000080)={@local, 0x78, r5}) ioctl$sock_inet6_SIOCDIFADDR(r3, 0x8916, &(0x7f0000000000)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, r5}) r6 = syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r6, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r6, 0x8000000) io_uring_enter(r6, 0x58ab, 0x0, 0x0, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r3, 0xc0189375, &(0x7f0000000500)={{0x1, 0x1, 0x18, r6}, './file0\x00'}) open_by_handle_at(r1, &(0x7f0000000440)=@fuse={0xc, 0x81, {0x7ff, 0x401, 0x2a}}, 0x200000) ioctl$KDFONTOP_GET(r0, 0x4b72, &(0x7f0000000400)={0x1, 0x1, 0xc, 0x1c, 0x1b9}) 12:05:27 executing program 0: ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, &(0x7f0000000040)=0x74) sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8080}, 0x80) r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9) mmap(&(0x7f0000a39000/0x1000)=nil, 0x1000, 0x0, 0x10, r0, 0x43751000) syz_open_procfs(0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) fallocate(r1, 0x0, 0x0, 0x1000002) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1000009, 0x1f012, r1, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100)) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, 0x0) 12:05:27 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 27) 12:05:27 executing program 4: io_setup(0x7f, &(0x7f00000002c0)=0x0) r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) io_submit(r0, 0x1, &(0x7f00000001c0)=[&(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0}]) 12:05:27 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 35) 12:05:27 executing program 1: accept(0xffffffffffffffff, &(0x7f0000000000)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @private}}, &(0x7f0000000080)=0x80) 12:05:27 executing program 6: r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fcntl$lock(r0, 0x25, &(0x7f0000000600)={0x1, 0x0, 0x7fffffff}) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="241e00001900250c00000000000000000200000008000000", @ANYRES32=0x0, @ANYRESOCT, @ANYRES32=0x0, @ANYBLOB], 0x24}}, 0x0) sendmsg$NL80211_CMD_SET_BSS(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x5c, 0x0, 0x202, 0x70bd28, 0x25dfdbfc, {{}, {@void, @void}}, [@NL80211_ATTR_BSS_HT_OPMODE={0x6, 0x6d, 0x81}, @NL80211_ATTR_BSS_SHORT_PREAMBLE={0x5, 0x1d, 0xff}, @NL80211_ATTR_BSS_SHORT_PREAMBLE={0x5, 0x1d, 0x64}, @NL80211_ATTR_P2P_CTWINDOW={0x5, 0xa2, 0x18}, @NL80211_ATTR_BSS_CTS_PROT={0x5, 0x1c, 0x1}, @NL80211_ATTR_BSS_CTS_PROT={0x5, 0x1c, 0x40}, @NL80211_ATTR_BSS_CTS_PROT={0x5, 0x1c, 0x2}, @NL80211_ATTR_BSS_SHORT_PREAMBLE={0x5, 0x1d, 0x40}, @NL80211_ATTR_P2P_CTWINDOW={0x5, 0xa2, 0x1}]}, 0x5c}, 0x1, 0x0, 0x0, 0x20000800}, 0x8011) fcntl$lock(r0, 0x26, &(0x7f0000000600)={0x2, 0x0, 0x0, 0x43}) ioctl$AUTOFS_DEV_IOCTL_FAIL(r0, 0xc0189377, &(0x7f00000057c0)=ANY=[@ANYBLOB='\x00', @ANYRES32=r0, @ANYBLOB="3f0000008000"]) r2 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x1, 0x0, 0x0, 0x0, 0x0, r0}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x30010, r2, 0x0) sendfile(r2, 0xffffffffffffffff, 0x0, 0x1) fsync(r2) r3 = syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r3, 0x8000000) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) io_uring_enter(0xffffffffffffffff, 0x4cce, 0x7021, 0x2, &(0x7f0000000000)={[0x2]}, 0x8) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2000000, 0x810, r2, 0x8000000) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) clone3(&(0x7f0000000ac0)={0x134124500, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1175.965918] FAULT_INJECTION: forcing a failure. [ 1175.965918] name failslab, interval 1, probability 0, space 0, times 0 [ 1175.967362] CPU: 1 PID: 10358 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 1175.968300] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1175.969446] Call Trace: [ 1175.969810] dump_stack+0x107/0x167 [ 1175.970321] should_fail.cold+0x5/0xa [ 1175.970833] ? create_object.isra.0+0x3a/0xa20 [ 1175.971446] should_failslab+0x5/0x20 [ 1175.971941] kmem_cache_alloc+0x5b/0x310 [ 1175.972494] create_object.isra.0+0x3a/0xa20 [ 1175.973092] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1175.973779] kmem_cache_alloc+0x159/0x310 [ 1175.974353] __kernfs_new_node+0xd4/0x860 [ 1175.974901] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1175.975540] ? perf_trace_lock+0xac/0x490 [ 1175.976102] ? SOFTIRQ_verbose+0x10/0x10 [ 1175.976648] ? __lockdep_reset_lock+0x180/0x180 [ 1175.977291] kernfs_create_dir_ns+0x9c/0x230 [ 1175.977873] sysfs_create_dir_ns+0x127/0x290 [ 1175.978452] ? sysfs_create_mount_point+0xb0/0xb0 [ 1175.979109] ? rwlock_bug.part.0+0x90/0x90 [ 1175.979635] ? class_dir_child_ns_type+0x9/0x60 [ 1175.980258] kobject_add_internal+0x25e/0xa30 [ 1175.980885] kobject_add+0x150/0x1c0 [ 1175.981395] ? kset_create_and_add+0x1a0/0x1a0 [ 1175.982020] ? lockdep_init_map_type+0x2c7/0x780 [ 1175.982671] device_add+0x35a/0x1bc0 [ 1175.983171] ? devlink_add_symlinks+0x970/0x970 [ 1175.983797] device_create_groups_vargs+0x207/0x280 [ 1175.984472] device_create+0xdc/0x120 [ 1175.984983] ? device_create_groups_vargs+0x280/0x280 [ 1175.985633] ? init_timer_key+0x12a/0x240 [ 1175.986183] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1175.986824] mac80211_hwsim_new_radio+0x352/0x4250 [ 1175.987484] ? ____sys_sendmsg+0x70d/0x870 [ 1175.988052] ? ___sys_sendmsg+0xf3/0x170 [ 1175.988605] ? __sys_sendmsg+0xe5/0x1b0 [ 1175.989148] ? do_syscall_64+0x33/0x40 [ 1175.989689] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1175.990407] ? __lockdep_reset_lock+0x180/0x180 [ 1175.991048] ? lock_acquire+0x197/0x470 [ 1175.991532] ? create_object.isra.0+0x3ad/0xa20 [ 1175.992152] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1175.992794] ? __kmalloc+0x16e/0x390 [ 1175.993316] hwsim_new_radio_nl+0x991/0x1080 [ 1175.993921] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1175.994646] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1175.995530] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1175.996413] genl_family_rcv_msg_doit+0x22d/0x330 [ 1175.997069] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1175.997953] ? cap_capable+0x1d6/0x240 [ 1175.998484] ? ns_capable+0xe2/0x110 [ 1175.998980] genl_rcv_msg+0x33c/0x5a0 [ 1175.999485] ? genl_get_cmd+0x480/0x480 [ 1176.000020] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1176.000720] ? lock_release+0x680/0x680 [ 1176.001251] ? __lockdep_reset_lock+0x180/0x180 [ 1176.001825] netlink_rcv_skb+0x14b/0x430 [ 1176.002359] ? genl_get_cmd+0x480/0x480 [ 1176.002908] ? netlink_ack+0xab0/0xab0 [ 1176.003451] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1176.004053] ? is_vmalloc_addr+0x7b/0xb0 [ 1176.004597] genl_rcv+0x24/0x40 [ 1176.005036] netlink_unicast+0x549/0x7f0 [ 1176.005596] ? netlink_attachskb+0x870/0x870 [ 1176.006184] ? __virt_addr_valid+0x128/0x350 [ 1176.006778] netlink_sendmsg+0x90f/0xdf0 [ 1176.007325] ? netlink_unicast+0x7f0/0x7f0 [ 1176.007897] ? netlink_unicast+0x7f0/0x7f0 [ 1176.008459] __sock_sendmsg+0x154/0x190 [ 1176.008986] ____sys_sendmsg+0x70d/0x870 [ 1176.009529] ? sock_write_iter+0x3d0/0x3d0 [ 1176.010083] ? do_recvmmsg+0x6d0/0x6d0 [ 1176.010603] ? perf_trace_lock+0xac/0x490 [ 1176.011164] ? __lockdep_reset_lock+0x180/0x180 [ 1176.011788] ? perf_trace_lock+0xac/0x490 [ 1176.012335] ? SOFTIRQ_verbose+0x10/0x10 [ 1176.012875] ___sys_sendmsg+0xf3/0x170 [ 1176.013414] ? sendmsg_copy_msghdr+0x160/0x160 [ 1176.014025] ? lock_downgrade+0x6d0/0x6d0 [ 1176.014579] ? find_held_lock+0x2c/0x110 [ 1176.015115] ? __fget_files+0x296/0x4c0 [ 1176.015645] ? __fget_light+0xea/0x290 [ 1176.016168] __sys_sendmsg+0xe5/0x1b0 [ 1176.016674] ? __sys_sendmsg_sock+0x40/0x40 [ 1176.017244] ? rcu_read_lock_any_held+0x75/0xa0 [ 1176.017866] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1176.018552] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1176.019211] ? trace_hardirqs_on+0x5b/0x180 [ 1176.019764] do_syscall_64+0x33/0x40 [ 1176.020244] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1176.020904] RIP: 0033:0x7f59b4343b19 [ 1176.021390] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1176.023734] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1176.024709] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 1176.025639] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1176.026576] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1176.027465] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1176.028356] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 12:05:27 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x8, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 12:05:27 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ftruncate(r0, 0x1000003) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)={0x0, 0x0, 0x2, 0x80000007, 0xffff7ff9}) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0xc02, 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x5, &(0x7f0000000080)=0x1088, 0x4) sendmmsg$inet6(r2, &(0x7f0000004540)=[{{&(0x7f0000000000)={0x2, 0x4e23, 0x0, @private0}, 0x1c, 0x0}}], 0x1, 0x0) ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000140)={0x2, 0x7, 0x4, 0x52f, 0x8001}) write$binfmt_elf64(r1, &(0x7f0000000a00)=ANY=[], 0x98a) ioctl$F2FS_IOC_DEFRAGMENT(r0, 0xc010f508, &(0x7f0000000180)={0x3, 0x5}) readv(r1, &(0x7f0000000340), 0x0) pwrite64(r1, &(0x7f0000000240)="3e5b16e900afd16fff57ff37b1597593f59e2cec1ddc23874c6abd139a13b96debd198", 0x23, 0x3) readv(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000001340)=""/4096, 0x1000}], 0x1) getsockopt$IP6T_SO_GET_INFO(r2, 0x29, 0x40, &(0x7f00000001c0)={'filter\x00', 0x0, [0x8000, 0x4, 0x3, 0x1]}, &(0x7f00000000c0)=0x54) unshare(0x48020200) syz_open_dev$sg(&(0x7f0000000080), 0x80000001, 0x39b341) 12:05:27 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 36) 12:05:27 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1176.270331] FAULT_INJECTION: forcing a failure. [ 1176.270331] name failslab, interval 1, probability 0, space 0, times 0 [ 1176.274320] CPU: 0 PID: 10378 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 1176.275858] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1176.277698] Call Trace: [ 1176.278287] dump_stack+0x107/0x167 [ 1176.279111] should_fail.cold+0x5/0xa [ 1176.279972] ? __kernfs_new_node+0xd4/0x860 [ 1176.280936] should_failslab+0x5/0x20 [ 1176.281802] kmem_cache_alloc+0x5b/0x310 [ 1176.282708] __kernfs_new_node+0xd4/0x860 [ 1176.283632] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1176.284686] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1176.285846] ? SOFTIRQ_verbose+0x10/0x10 [ 1176.286739] ? kernfs_add_one+0x124/0x4d0 [ 1176.287677] kernfs_new_node+0x93/0x120 [ 1176.288560] __kernfs_create_file+0x51/0x350 [ 1176.289547] sysfs_add_file_mode_ns+0x221/0x560 [ 1176.290584] sysfs_create_file_ns+0x131/0x1d0 [ 1176.291575] ? sysfs_add_file_mode_ns+0x560/0x560 [ 1176.292651] ? is_acpi_device_node+0x6e/0x90 [ 1176.293646] device_create_file+0xea/0x1d0 [ 1176.294581] device_add+0x547/0x1bc0 [ 1176.295411] ? devlink_add_symlinks+0x970/0x970 [ 1176.296454] device_create_groups_vargs+0x207/0x280 [ 1176.297569] device_create+0xdc/0x120 [ 1176.298418] ? device_create_groups_vargs+0x280/0x280 [ 1176.299557] ? init_timer_key+0x12a/0x240 [ 1176.300530] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1176.301624] mac80211_hwsim_new_radio+0x352/0x4250 [ 1176.302699] ? ____sys_sendmsg+0x70d/0x870 [ 1176.303625] ? ___sys_sendmsg+0xf3/0x170 [ 1176.304515] ? __sys_sendmsg+0xe5/0x1b0 [ 1176.305398] ? do_syscall_64+0x33/0x40 [ 1176.306262] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1176.307429] ? __lockdep_reset_lock+0x180/0x180 [ 1176.308447] ? lock_acquire+0x197/0x470 [ 1176.309319] ? create_object.isra.0+0x3ad/0xa20 [ 1176.310358] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1176.311380] ? __kmalloc+0x16e/0x390 [ 1176.312207] hwsim_new_radio_nl+0x991/0x1080 [ 1176.313178] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1176.314348] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1176.315790] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1176.317223] genl_family_rcv_msg_doit+0x22d/0x330 [ 1176.318296] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1176.319744] ? cap_capable+0x1d6/0x240 [ 1176.320621] ? ns_capable+0xe2/0x110 [ 1176.321469] genl_rcv_msg+0x33c/0x5a0 [ 1176.322310] ? genl_get_cmd+0x480/0x480 [ 1176.323187] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1176.324327] ? lock_release+0x680/0x680 [ 1176.325204] ? __lockdep_reset_lock+0x180/0x180 [ 1176.326238] netlink_rcv_skb+0x14b/0x430 [ 1176.327132] ? genl_get_cmd+0x480/0x480 [ 1176.328007] ? netlink_ack+0xab0/0xab0 [ 1176.328883] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1176.329896] ? is_vmalloc_addr+0x7b/0xb0 [ 1176.330797] genl_rcv+0x24/0x40 [ 1176.331527] netlink_unicast+0x549/0x7f0 [ 1176.332442] ? netlink_attachskb+0x870/0x870 12:05:27 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x9, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1176.333425] ? __virt_addr_valid+0x128/0x350 [ 1176.334579] netlink_sendmsg+0x90f/0xdf0 [ 1176.335496] ? netlink_unicast+0x7f0/0x7f0 [ 1176.336440] ? netlink_unicast+0x7f0/0x7f0 [ 1176.337381] __sock_sendmsg+0x154/0x190 [ 1176.338260] ____sys_sendmsg+0x70d/0x870 [ 1176.339157] ? sock_write_iter+0x3d0/0x3d0 [ 1176.340083] ? do_recvmmsg+0x6d0/0x6d0 [ 1176.340935] ? perf_trace_lock+0xac/0x490 [ 1176.341872] ? __lockdep_reset_lock+0x180/0x180 [ 1176.342887] ? perf_trace_lock+0xac/0x490 [ 1176.343801] ? SOFTIRQ_verbose+0x10/0x10 [ 1176.344698] ___sys_sendmsg+0xf3/0x170 [ 1176.345562] ? sendmsg_copy_msghdr+0x160/0x160 [ 1176.346571] ? lock_downgrade+0x6d0/0x6d0 [ 1176.347490] ? find_held_lock+0x2c/0x110 [ 1176.348394] ? __fget_files+0x296/0x4c0 [ 1176.349281] ? __fget_light+0xea/0x290 [ 1176.350169] __sys_sendmsg+0xe5/0x1b0 [ 1176.351005] ? __sys_sendmsg_sock+0x40/0x40 [ 1176.351968] ? rcu_read_lock_any_held+0x75/0xa0 [ 1176.353018] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1176.354182] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1176.355324] ? trace_hardirqs_on+0x5b/0x180 [ 1176.356266] do_syscall_64+0x33/0x40 [ 1176.357061] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1176.358188] RIP: 0033:0x7f59b4343b19 [ 1176.358962] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1176.362743] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1176.364309] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 1176.365774] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1176.367230] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1176.368691] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1176.370160] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 12:05:27 executing program 6: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) ftruncate(0xffffffffffffffff, 0x1000003) r0 = socket$inet(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e21, @multicast1}, 0x10) dup3(r0, 0xffffffffffffffff, 0x80000) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, 0x0) connect$inet(r0, &(0x7f00000000c0)={0x2, 0x4e23, @rand_addr=0x64010102}, 0x10) connect$inet(r0, &(0x7f0000000240)={0x2, 0x4e1e, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10) connect$inet(0xffffffffffffffff, 0x0, 0x0) connect$inet(r0, &(0x7f0000000140)={0x2, 0x4e21, @local}, 0x10) shutdown(r0, 0x1) openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x509940, 0x11) openat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x40, 0x2c1) unshare(0x48020200) 12:05:27 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 12:05:27 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x6, &(0x7f0000000380)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f00000001c0)="201900d07642da921fd6ff04430c6c6b8c0ac5060048065e24ecf3bb8ce311427ac446646b66cda5c391a00fbccd665cde721d7307fdcb6b969016edfcfc7632c1f3819bab23a38c40d2318820e65ef0262cc5dd8b5bc96f21bc84022b67785d6741984f29f705f842bd5a0870925cdb5d80eb689f80ea6ff07d3876a48c6519dad0190710", 0x85, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}, {&(0x7f0000000280)="190aa256d77db1af48260738adb9b397ad3b5791197896d6a04be4af52075bb3442d8b554c4b58a2250de424bb9eacaa44ab1f455250ca4fbad735811cfac0d38a07cdd8e068c2efde96c35e3dc66f9efd5ae4de94d319e3e007f4b0e813a8eb292e23b616336a1ae006d0b40ed6ab41ce3977c703d024f9d7080d50c07f4ca16fb60cb101f31913647dae104d46bd5862409eb3926fa75aba5a2c020939aba802f4d0eb9a1e5f36028fdf72e4abbe526bdd90d141015b6e896d08b5821b0738729347effd41f3742efae3c29c592d4c09f150db4620baa869cf747988700a", 0xdf}], 0x0, &(0x7f0000000180)=ANY=[]) stat(0x0, 0x0) pkey_mprotect(&(0x7f0000ff4000/0x2000)=nil, 0x2000, 0x0, 0xffffffffffffffff) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0xfdef) r0 = syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) stat(&(0x7f0000000180)='./file0/file0\x00', &(0x7f0000000440)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r1 = pkey_alloc(0x0, 0x0) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x8, r1) pkey_mprotect(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, r1) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) fcntl$getownex(r0, 0x10, &(0x7f00000004c0)) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) lseek(r0, 0x100000001, 0x4) ioctl$PTP_CLOCK_GETCAPS(0xffffffffffffffff, 0x80503d01, 0x0) syz_open_dev$vcsa(&(0x7f0000000140), 0x101, 0x14000) 12:05:28 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 37) [ 1176.544595] EXT4-fs error (device loop4): ext4_orphan_get:1417: comm syz-executor.4: bad orphan inode 83875359 [ 1176.544891] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 1176.681873] FAULT_INJECTION: forcing a failure. [ 1176.681873] name failslab, interval 1, probability 0, space 0, times 0 [ 1176.681887] CPU: 1 PID: 10399 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 1176.681893] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1176.681897] Call Trace: [ 1176.681912] dump_stack+0x107/0x167 [ 1176.681928] should_fail.cold+0x5/0xa [ 1176.681942] ? __kernfs_new_node+0xd4/0x860 [ 1176.681956] should_failslab+0x5/0x20 [ 1176.681966] kmem_cache_alloc+0x5b/0x310 [ 1176.681986] __kernfs_new_node+0xd4/0x860 [ 1176.682002] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1176.682020] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1176.682030] ? SOFTIRQ_verbose+0x10/0x10 [ 1176.682040] ? kernfs_add_one+0x124/0x4d0 [ 1176.682063] kernfs_new_node+0x93/0x120 [ 1176.682077] __kernfs_create_file+0x51/0x350 [ 1176.682091] sysfs_add_file_mode_ns+0x221/0x560 [ 1176.682109] sysfs_create_file_ns+0x131/0x1d0 [ 1176.682120] ? sysfs_add_file_mode_ns+0x560/0x560 [ 1176.682139] ? is_acpi_device_node+0x6e/0x90 [ 1176.682154] device_create_file+0xea/0x1d0 [ 1176.682166] device_add+0x547/0x1bc0 [ 1176.682181] ? devlink_add_symlinks+0x970/0x970 [ 1176.682201] device_create_groups_vargs+0x207/0x280 [ 1176.682215] device_create+0xdc/0x120 [ 1176.682228] ? device_create_groups_vargs+0x280/0x280 [ 1176.682241] ? init_timer_key+0x12a/0x240 [ 1176.682259] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1176.682276] mac80211_hwsim_new_radio+0x352/0x4250 [ 1176.682287] ? ____sys_sendmsg+0x70d/0x870 [ 1176.682296] ? ___sys_sendmsg+0xf3/0x170 [ 1176.682305] ? __sys_sendmsg+0xe5/0x1b0 [ 1176.682317] ? do_syscall_64+0x33/0x40 [ 1176.682329] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1176.682338] ? __lockdep_reset_lock+0x180/0x180 [ 1176.682349] ? lock_acquire+0x197/0x470 [ 1176.682360] ? create_object.isra.0+0x3ad/0xa20 [ 1176.682376] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1176.682389] ? __kmalloc+0x16e/0x390 [ 1176.682403] hwsim_new_radio_nl+0x991/0x1080 [ 1176.682417] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1176.682441] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1176.682451] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1176.682467] genl_family_rcv_msg_doit+0x22d/0x330 [ 1176.682480] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1176.682492] ? cap_capable+0x1d6/0x240 [ 1176.682512] ? ns_capable+0xe2/0x110 [ 1176.682526] genl_rcv_msg+0x33c/0x5a0 [ 1176.682539] ? genl_get_cmd+0x480/0x480 [ 1176.682551] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1176.682566] ? lock_release+0x680/0x680 [ 1176.682576] ? __lockdep_reset_lock+0x180/0x180 [ 1176.682590] netlink_rcv_skb+0x14b/0x430 [ 1176.682601] ? genl_get_cmd+0x480/0x480 [ 1176.682612] ? netlink_ack+0xab0/0xab0 [ 1176.682632] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1176.682643] ? is_vmalloc_addr+0x7b/0xb0 [ 1176.682656] genl_rcv+0x24/0x40 [ 1176.682665] netlink_unicast+0x549/0x7f0 [ 1176.682680] ? netlink_attachskb+0x870/0x870 [ 1176.682690] ? __virt_addr_valid+0x128/0x350 [ 1176.682708] netlink_sendmsg+0x90f/0xdf0 [ 1176.682723] ? netlink_unicast+0x7f0/0x7f0 [ 1176.682742] ? netlink_unicast+0x7f0/0x7f0 [ 1176.682753] __sock_sendmsg+0x154/0x190 [ 1176.682764] ____sys_sendmsg+0x70d/0x870 [ 1176.682777] ? sock_write_iter+0x3d0/0x3d0 [ 1176.682786] ? do_recvmmsg+0x6d0/0x6d0 [ 1176.682796] ? perf_trace_lock+0xac/0x490 [ 1176.682812] ? __lockdep_reset_lock+0x180/0x180 [ 1176.682821] ? perf_trace_lock+0xac/0x490 [ 1176.682830] ? SOFTIRQ_verbose+0x10/0x10 [ 1176.682844] ___sys_sendmsg+0xf3/0x170 [ 1176.682856] ? sendmsg_copy_msghdr+0x160/0x160 [ 1176.682871] ? lock_downgrade+0x6d0/0x6d0 [ 1176.682885] ? find_held_lock+0x2c/0x110 [ 1176.682905] ? __fget_files+0x296/0x4c0 [ 1176.682924] ? __fget_light+0xea/0x290 [ 1176.682940] __sys_sendmsg+0xe5/0x1b0 [ 1176.682951] ? __sys_sendmsg_sock+0x40/0x40 [ 1176.682962] ? rcu_read_lock_any_held+0x75/0xa0 [ 1176.682985] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1176.682995] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1176.683005] ? trace_hardirqs_on+0x5b/0x180 [ 1176.683019] do_syscall_64+0x33/0x40 [ 1176.683031] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1176.683038] RIP: 0033:0x7f59b4343b19 [ 1176.683049] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1176.683056] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1176.683068] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 1176.683075] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1176.683081] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1176.683087] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1176.683094] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 12:05:28 executing program 5: r0 = inotify_init1(0x0) inotify_rm_watch(0xffffffffffffffff, 0x0) mkdirat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x6}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = memfd_create(&(0x7f0000000440)='\"\xff\xff\xff\x7f\x00\x00\x00\x00\xcf]?L\ay\x17\x80\xda\x03F\xcfg)\x9d!z\xdf\xc6\x1d\xb0\xa5\xc7%]GP\xc7\xb0@%\xe4p]\xd9q\\\x1f\xa5\x89N\xac]\xa6zZ\xda\xb0\xfd\xcb\x86\xfb\xc3=X\x1c\x82\x05\xc0\x9c\x82:k\xff]\x1c\x1f\x90\xa5&\x7f|=m\xa5\xfa\xbd\xf2R\x94TG\xdcK\xd5\x06\xab)\xc7\xd0\aH\'kE\xf5UH\x88by.\xc6\xf2\xae\xfa^4,\xc5\xd1\x85\xacoV:\x11\x04\x9f\x1c\xd4e3\xacI\x83\xf0Fv\xb6&I\x16\x93\x9c\xe7(;\xd893o\x03+Q\x97\xd3r\xb4G\xd0\x04r0, @ANYBLOB='\a\x00\x00\x00\x00\x0047\\\x00\x00./fil']) munmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000) perf_event_open(0x0, 0x0, 0x4, r1, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f0000000100), 0x4) kcmp(0xffffffffffffffff, 0x0, 0x6, r0, 0xffffffffffffffff) setsockopt$sock_int(r3, 0x1, 0x12, &(0x7f0000000200)=0x33e0, 0x4) setsockopt$inet6_tcp_int(r3, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e1c, 0x0, @loopback}, 0x1c) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) execveat(r2, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000340)=[&(0x7f0000000240)='\x00', &(0x7f0000000280)='--\x00', &(0x7f00000002c0)='\x00', &(0x7f0000000300)='\x00'], &(0x7f0000000480)=[&(0x7f0000000380)='\x00', &(0x7f00000003c0)='\x00', &(0x7f0000000400)='\x00', &(0x7f0000000440)='\\{\x00'], 0x400) sendfile(r3, r2, 0x0, 0x9bbb) bind$inet6(r2, &(0x7f0000000180)={0xa, 0x4e23, 0x4, @dev={0xfe, 0x80, '\x00', 0x1a}, 0x5}, 0x1c) 12:05:28 executing program 4: unlinkat(0xffffffffffffffff, &(0x7f0000000140)='./file0\x00', 0x0) mmap(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = open(0x0, 0x240880, 0x0) mkdirat(r0, &(0x7f0000000200)='./file0\x00', 0x86) r1 = syz_open_procfs(0x0, &(0x7f0000000040)='net/ip6_tables_matches\x00') pipe2(&(0x7f00000002c0)={0xffffffffffffffff}, 0x4800) perf_event_open(&(0x7f0000000180)={0x5, 0x80, 0x80, 0x1, 0x7f, 0x6, 0x0, 0x419b, 0x100, 0x15, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0xae3, 0x1, @perf_config_ext={0x1, 0x8}, 0x200, 0x80, 0x5, 0x9, 0xead, 0x7, 0x7f, 0x0, 0x5, 0x0, 0xf7c}, 0x0, 0x1, r2, 0x2) pread64(r1, &(0x7f0000000240)=""/83, 0x53, 0x200000048) getsockname(r1, &(0x7f0000000240)=@hci, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff) write$binfmt_elf32(r3, &(0x7f00000098c0)=ANY=[@ANYBLOB="95ac6923bedb15bc32ff099b5078ffc4469522ec5dc540f31fe6ab413e2d0870e64c6a09aa8deea1984429899656145a1e89b0c2b8e1b763536c139064f7316b089e64b4c2d73d3dc0a14dd9a02b961bcb58117dcfa22a8cfc3d31009299393b2261a9da0a910ee74afdba54f612704e7031cd625e202c8634edd7e7848d2ad2f3b53a2e50ca53ffe20dff9a26ee41622979d50932fea46927234426466b89455ef35bc0a69d1ba8e4068ef9985b01ba7f2d3330e3aca97e6be3a3f6fdb07d5eb4017a6470796e139886d67885c4c9ae8ec1c714645b313b9ddfbcb38702b7a8511e5706523ff1c6ffe722b0a75466754e8e104a73e7c523660c4f83f85b7a356b187aed3194807076a5dd9c17fbd645b1c90971a0bf6da358232fc81e4f67fb4f8f83a6c142f9"], 0x31b) close(r3) clone3(&(0x7f00000008c0)={0x3040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000000040)={0x0, 0x4, 0x0, 'queue1\x00', 0xffffffff}) execveat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0, 0x0) 12:05:28 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x2, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1177.233717] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s [ 1177.234897] sr 1:0:0:0: [sr0] tag#0 CDB: opcode=0x9b [ 1177.235538] sr 1:0:0:0: [sr0] tag#0 CDB[00]: 9b ac cc 23 f1 e8 dd 76 2d d0 1d ce 09 51 32 13 [ 1177.236554] sr 1:0:0:0: [sr0] tag#0 CDB[10]: bb 12:05:28 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 38) 12:05:28 executing program 5: r0 = inotify_init1(0x0) inotify_rm_watch(0xffffffffffffffff, 0x0) mkdirat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x6}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = memfd_create(&(0x7f0000000440)='\"\xff\xff\xff\x7f\x00\x00\x00\x00\xcf]?L\ay\x17\x80\xda\x03F\xcfg)\x9d!z\xdf\xc6\x1d\xb0\xa5\xc7%]GP\xc7\xb0@%\xe4p]\xd9q\\\x1f\xa5\x89N\xac]\xa6zZ\xda\xb0\xfd\xcb\x86\xfb\xc3=X\x1c\x82\x05\xc0\x9c\x82:k\xff]\x1c\x1f\x90\xa5&\x7f|=m\xa5\xfa\xbd\xf2R\x94TG\xdcK\xd5\x06\xab)\xc7\xd0\aH\'kE\xf5UH\x88by.\xc6\xf2\xae\xfa^4,\xc5\xd1\x85\xacoV:\x11\x04\x9f\x1c\xd4e3\xacI\x83\xf0Fv\xb6&I\x16\x93\x9c\xe7(;\xd893o\x03+Q\x97\xd3r\xb4G\xd0\x04 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1177.487075] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1177.488551] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 1177.489950] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1177.491335] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1177.492716] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1177.494107] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 12:05:44 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_emit_ethernet(0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaa0008004500002800000000002b9078ac1e0001ac1414bb00000000", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB], 0x0) r1 = getpgid(0x0) perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0x5, 0x0, 0x1, 0x8, 0x0, 0x1, 0x32004, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x3, 0x4, @perf_bp, 0x40, 0x100, 0x2, 0xa, 0x9, 0xffff8001, 0x0, 0x0, 0x40, 0x0, 0x5}, r1, 0xffffffffffffffff, r0, 0x8) 12:05:44 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xc, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 12:05:44 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 12:05:44 executing program 6: r0 = syz_io_uring_setup(0x4086, &(0x7f00000005c0)={0x0, 0x4be5}, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000000640), &(0x7f0000000680)) ioctl$VT_RESIZE(0xffffffffffffffff, 0x5609, &(0x7f0000000940)={0x0, 0x0, 0x6}) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, @out_args}, './file0\x00'}) r2 = syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r2, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r2, 0x8000000) io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0) dup2(r1, r2) 12:05:44 executing program 5: ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x6, "779b1e7567d62f09a2d166d436fc9990c772b9"}) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) ioctl$sock_inet_SIOCGIFNETMASK(0xffffffffffffffff, 0x891b, &(0x7f0000000040)={'dummy0\x00'}) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) r2 = dup(r1) getsockopt$IP_VS_SO_GET_TIMEOUT(r1, 0x0, 0x486, &(0x7f0000000180), &(0x7f00000001c0)=0xc) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(r2, 0x8936, &(0x7f0000000080)={@local, 0x78, r4}) ioctl$sock_inet6_SIOCDIFADDR(r2, 0x8916, &(0x7f0000000000)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, r4}) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r2, 0xc018937a, &(0x7f00000000c0)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00']) openat$cgroup_ro(r2, &(0x7f0000000100)='blkio.bfq.io_merged_recursive\x00', 0x0, 0x0) r5 = socket$inet6_udplite(0xa, 0x2, 0x88) r6 = dup(r5) r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) ioctl$sock_inet6_SIOCDIFADDR(r6, 0x8936, &(0x7f0000000080)={@local, 0x78, r8}) ioctl$sock_inet6_SIOCDIFADDR(r6, 0x8916, &(0x7f0000000000)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, r8}) ioctl$TUNATTACHFILTER(r6, 0x400454c9, 0x0) 12:05:44 executing program 4: futex(0x0, 0x0, 0x0, &(0x7f00000001c0)={0x0, 0x989680}, 0x0, 0x0) futex(0x0, 0x6, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clock_gettime(0x3, &(0x7f0000000000)) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='pagemap\x00') readv(r0, &(0x7f0000002a80)=[{&(0x7f0000000740)=""/216, 0xd8}, {&(0x7f0000000840)=""/4096, 0x200000}], 0x2) mmap$perf(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x5, 0x10, 0xffffffffffffffff, 0x0) 12:05:44 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 39) 12:05:44 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ftruncate(r0, 0x1000003) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)={0x0, 0x0, 0x2, 0x80000007, 0xffff7ff9}) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0xc02, 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x5, &(0x7f0000000080)=0x1088, 0x4) sendmmsg$inet6(r2, &(0x7f0000004540)=[{{&(0x7f0000000000)={0x2, 0x4e23, 0x0, @private0}, 0x1c, 0x0}}], 0x1, 0x0) ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000140)={0x2, 0x7, 0x4, 0x52f, 0x8001}) write$binfmt_elf64(r1, &(0x7f0000000a00)=ANY=[], 0x98a) ioctl$F2FS_IOC_DEFRAGMENT(r0, 0xc010f508, &(0x7f0000000180)={0x3, 0x5}) readv(r1, &(0x7f0000000340), 0x0) pwrite64(r1, &(0x7f0000000240)="3e5b16e900afd16fff57ff37b1597593f59e2cec1ddc23874c6abd139a13b96debd198", 0x23, 0x3) readv(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000001340)=""/4096, 0x1000}], 0x1) getsockopt$IP6T_SO_GET_INFO(r2, 0x29, 0x40, &(0x7f00000001c0)={'filter\x00', 0x0, [0x8000, 0x4, 0x3, 0x1]}, &(0x7f00000000c0)=0x54) unshare(0x48020200) syz_open_dev$sg(&(0x7f0000000080), 0x80000001, 0x39b341) [ 1192.877499] FAULT_INJECTION: forcing a failure. [ 1192.877499] name failslab, interval 1, probability 0, space 0, times 0 [ 1192.880087] CPU: 1 PID: 10453 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 1192.881918] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1192.883688] Call Trace: [ 1192.884373] dump_stack+0x107/0x167 [ 1192.885167] should_fail.cold+0x5/0xa [ 1192.886167] ? create_object.isra.0+0x3a/0xa20 [ 1192.887158] should_failslab+0x5/0x20 [ 1192.888038] kmem_cache_alloc+0x5b/0x310 [ 1192.888924] create_object.isra.0+0x3a/0xa20 [ 1192.889893] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1192.890978] kmem_cache_alloc+0x159/0x310 [ 1192.891873] __kernfs_new_node+0xd4/0x860 [ 1192.892764] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1192.893781] ? __lockdep_reset_lock+0x180/0x180 [ 1192.894778] ? lock_acquire+0x1b9/0x470 [ 1192.895625] ? find_held_lock+0x2c/0x110 [ 1192.896494] ? sysfs_do_create_link_sd+0x82/0x140 [ 1192.897527] kernfs_new_node+0x93/0x120 [ 1192.898403] kernfs_create_link+0xcb/0x230 [ 1192.899303] sysfs_do_create_link_sd+0x90/0x140 [ 1192.900284] sysfs_create_link+0x5f/0xc0 [ 1192.901148] device_add+0x5e1/0x1bc0 [ 1192.901950] ? devlink_add_symlinks+0x970/0x970 [ 1192.902950] device_create_groups_vargs+0x207/0x280 [ 1192.904002] device_create+0xdc/0x120 [ 1192.904811] ? device_create_groups_vargs+0x280/0x280 [ 1192.905914] ? init_timer_key+0x12a/0x240 [ 1192.906804] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1192.907828] mac80211_hwsim_new_radio+0x352/0x4250 [ 1192.908857] ? ____sys_sendmsg+0x70d/0x870 [ 1192.909750] ? ___sys_sendmsg+0xf3/0x170 [ 1192.910600] ? __sys_sendmsg+0xe5/0x1b0 [ 1192.911439] ? do_syscall_64+0x33/0x40 [ 1192.912264] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1192.913376] ? __lockdep_reset_lock+0x180/0x180 [ 1192.914355] ? lock_acquire+0x197/0x470 [ 1192.915188] ? create_object.isra.0+0x3ad/0xa20 [ 1192.916169] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1192.917141] ? __kmalloc+0x16e/0x390 [ 1192.917943] hwsim_new_radio_nl+0x991/0x1080 [ 1192.918869] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1192.919965] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1192.921333] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1192.922698] genl_family_rcv_msg_doit+0x22d/0x330 [ 1192.923713] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1192.925082] ? cap_capable+0x1d6/0x240 [ 1192.925923] ? ns_capable+0xe2/0x110 [ 1192.926707] genl_rcv_msg+0x33c/0x5a0 [ 1192.927507] ? genl_get_cmd+0x480/0x480 [ 1192.928337] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1192.929415] ? lock_release+0x680/0x680 [ 1192.930254] ? __lockdep_reset_lock+0x180/0x180 [ 1192.931231] netlink_rcv_skb+0x14b/0x430 [ 1192.932071] ? genl_get_cmd+0x480/0x480 [ 1192.932901] ? netlink_ack+0xab0/0xab0 [ 1192.933739] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1192.934685] ? is_vmalloc_addr+0x7b/0xb0 [ 1192.935533] genl_rcv+0x24/0x40 [ 1192.936221] netlink_unicast+0x549/0x7f0 [ 1192.937073] ? netlink_attachskb+0x870/0x870 [ 1192.938002] ? __virt_addr_valid+0x128/0x350 [ 1192.938920] netlink_sendmsg+0x90f/0xdf0 [ 1192.939770] ? netlink_unicast+0x7f0/0x7f0 [ 1192.940653] ? netlink_unicast+0x7f0/0x7f0 [ 1192.941526] __sock_sendmsg+0x154/0x190 [ 1192.942354] ____sys_sendmsg+0x70d/0x870 [ 1192.943198] ? sock_write_iter+0x3d0/0x3d0 [ 1192.944063] ? do_recvmmsg+0x6d0/0x6d0 [ 1192.944864] ? perf_trace_lock+0xac/0x490 [ 1192.945733] ? __lockdep_reset_lock+0x180/0x180 [ 1192.946683] ? perf_trace_lock+0xac/0x490 [ 1192.947525] ? SOFTIRQ_verbose+0x10/0x10 [ 1192.948378] ___sys_sendmsg+0xf3/0x170 [ 1192.949175] ? sendmsg_copy_msghdr+0x160/0x160 [ 1192.950141] ? lock_downgrade+0x6d0/0x6d0 [ 1192.950996] ? find_held_lock+0x2c/0x110 [ 1192.951858] ? __fget_files+0x296/0x4c0 [ 1192.952687] ? __fget_light+0xea/0x290 [ 1192.953512] __sys_sendmsg+0xe5/0x1b0 [ 1192.954311] ? __sys_sendmsg_sock+0x40/0x40 [ 1192.955205] ? rcu_read_lock_any_held+0x75/0xa0 [ 1192.956177] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1192.957251] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1192.958304] ? trace_hardirqs_on+0x5b/0x180 [ 1192.959187] do_syscall_64+0x33/0x40 [ 1192.959943] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1192.960982] RIP: 0033:0x7f59b4343b19 [ 1192.961749] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1192.965453] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1192.967003] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 1192.968450] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1192.969899] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1192.971340] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1192.972782] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 12:05:59 executing program 0: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TCSETSF2(r0, 0x402c542d, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet(0x2, 0x3, 0x80) connect$inet(r1, &(0x7f0000000140)={0x2, 0x0, @local}, 0x10) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x82040, 0x0) fcntl$dupfd(r2, 0x406, r1) sendmmsg$inet(r1, &(0x7f0000000000), 0x400000d, 0x100000000000000) setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, &(0x7f0000000300)={@private=0xa010101, @local}, 0xc) setsockopt$inet_mreqn(r1, 0x0, 0x23, &(0x7f0000000180)={@broadcast, @remote}, 0xc) pwrite64(r1, &(0x7f0000000000)="9323ca9fe6e70ad7b215ba34b4548052bd9cbad0a3fdf9232c233d94d846c0d85710b0916ac6b79ba5d3f700a6d4504568b4db86703880c8", 0x38, 0x0) 12:05:59 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0xd}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0xff}}, './file0\x00'}) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f00000000c0)={{0xa, 0x4e20, 0x80000000, @private1, 0x21}, {0xa, 0x4e23, 0x8, @private1, 0x76}, 0x8, [0x101, 0x7, 0xb71, 0x4af, 0x6, 0x3, 0x3f, 0x401]}, 0x5c) socket$inet_icmp_raw(0x2, 0x3, 0x1) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f0000000400)={'gretap0\x00', &(0x7f00000002c0)={'syztnl0\x00', 0x0, 0x10, 0x8, 0xf649, 0x8324, {{0x23, 0x4, 0x0, 0x13, 0x8c, 0x64, 0x0, 0x6, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@end, @timestamp={0x44, 0x14, 0xfb, 0x0, 0x7, [0x1, 0xffff8091, 0xfffffff7, 0xff]}, @lsrr={0x83, 0x27, 0x35, [@rand_addr=0x64010101, @rand_addr=0x64010100, @multicast1, @private=0xa010100, @multicast1, @private=0xa010100, @loopback, @loopback, @initdev={0xac, 0x1e, 0x1, 0x0}]}, @ra={0x94, 0x4}, @timestamp_addr={0x44, 0xc, 0xc4, 0x1, 0x8, [{@multicast2, 0x9}]}, @generic={0x88, 0xd, "14a6c65aac0e4ab8992833"}, @ra={0x94, 0x4, 0x1}, @ssrr={0x89, 0x1b, 0xef, [@dev={0xac, 0x14, 0x14, 0x13}, @rand_addr=0x64010101, @initdev={0xac, 0x1e, 0x0, 0x0}, @dev={0xac, 0x14, 0x14, 0x20}, @multicast2, @loopback]}]}}}}}) setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f0000000440)={@private2, r2}, 0x14) setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x41, &(0x7f0000000000), 0x4) sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0x2}], 0x1, 0x0, 0x38}}], 0x1, 0x0) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x4) setsockopt$inet6_mreq(r3, 0x29, 0x1b, &(0x7f00000001c0)={@loopback}, 0x14) r4 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400020820000400008000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000400)=ANY=[]) mkdirat(r4, &(0x7f0000000040)='./file0\x00', 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_MOD(r3, 0x3, r4, &(0x7f0000000180)={0x2}) epoll_wait(r3, &(0x7f0000000080)=[{}], 0x1, 0x6226) epoll_pwait(0xffffffffffffffff, &(0x7f0000000240)=[{}, {}, {}, {}, {}, {}, {}, {}], 0x8, 0x8, &(0x7f0000000140)={[0x31]}, 0x8) 12:05:59 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 40) 12:05:59 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x4, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 12:05:59 executing program 6: syz_mount_image$ext4(0x0, &(0x7f0000000200)='./file0\x00', 0x2, 0x0, 0x0, 0x1081802, 0x0) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000500)='ramfs\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x105e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x300b4e2, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00'}) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r4}) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x1004, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x40, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x30}}, 0x62ff}, 0x1c) syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) 12:05:59 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xd, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 12:05:59 executing program 5: ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan1\x00'}) sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="20002cbd7000ffdddf25120000000c0099001f060000530000000a000600080211000000009c0500740002000000"], 0x34}, 0x1, 0x0, 0x0, 0x24040091}, 0x40000) sendmsg$NL80211_CMD_TESTMODE(0xffffffffffffffff, 0x0, 0x8001) setsockopt(0xffffffffffffffff, 0x80000001, 0x0, &(0x7f0000000000)="d6547e36fc54c90660b7476ebee6fc625172f9fb41501b197b5f3f70983636a6339e1e85d66136c9ab9c4c4ac9f47e62e803b9ef933f94e7743dd3f042e684ce17f03e969718e964ee18366ffdfce76af1d45d6363a4174148eed0ed680f244413688cf5740d20bfec520e6a149e3680f24f23ef267afc48c0982fa7", 0x7c) r0 = signalfd(0xffffffffffffffff, &(0x7f0000000080)={[0x9]}, 0x8) ioctl$sock_SIOCINQ(r0, 0x541b, &(0x7f0000000280)) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x1c, 0x14, 0xc21, 0x0, 0x0, {0xa}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}]}, 0x1c}}, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f00000002c0)=ANY=[@ANYRESHEX=r3, @ANYRESDEC=r2, @ANYRES32]) r5 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r5, &(0x7f0000000240)=ANY=[@ANYRESHEX=r5], 0x4a0043) setsockopt$inet_udp_int(r5, 0x11, 0x65, &(0x7f0000000100)=0x7, 0x4) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000440)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_MAC_ACL(r5, &(0x7f0000000500)={&(0x7f0000000400), 0xc, &(0x7f00000004c0)={&(0x7f0000000480)={0x30, 0x0, 0x4, 0x70bd29, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r6}, @val={0xc, 0x99, {0x7fff, 0x19}}}}, [@NL80211_ATTR_ACL_POLICY={0x8}]}, 0x30}, 0x1, 0x0, 0x0, 0x8000}, 0x4000014) getsockopt$IP_VS_SO_GET_VERSION(0xffffffffffffffff, 0x0, 0x480, &(0x7f0000000140), &(0x7f0000000180)=0x40) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000200)={0x44004100, 0x0, &(0x7f00000000c0), &(0x7f0000000100), {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 12:05:59 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='rpc_pipefs\x00', 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x18, r0, @out_args}, './file1\x00'}) r2 = creat(&(0x7f00000001c0)='./cgroup/cgroup.procs\x00', 0x0) open_by_handle_at(r2, &(0x7f0000000240)=ANY=[@ANYRESHEX=r2], 0x4a0043) setsockopt$inet_udp_int(r2, 0x11, 0x65, &(0x7f0000000100)=0x7, 0x4) renameat2(r1, &(0x7f0000000240)='./file0\x00', r2, &(0x7f0000000280)='./file1\x00', 0x2) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff) rename(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00') umount2(&(0x7f0000000080)='./file0\x00', 0xb) r3 = syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) r4 = syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r4, 0x8000000) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x300000e, 0x40110, r4, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r3, 0x8000000) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) fcntl$dupfd(r3, 0x406, r0) [ 1207.883043] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. [ 1207.893741] FAULT_INJECTION: forcing a failure. [ 1207.893741] name failslab, interval 1, probability 0, space 0, times 0 [ 1207.896395] CPU: 0 PID: 10471 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 1207.897975] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1207.899823] Call Trace: [ 1207.900422] dump_stack+0x107/0x167 [ 1207.901250] should_fail.cold+0x5/0xa [ 1207.902121] ? __kernfs_new_node+0xd4/0x860 [ 1207.903087] should_failslab+0x5/0x20 [ 1207.903945] kmem_cache_alloc+0x5b/0x310 [ 1207.904863] ? __ipv6_addr_label.isra.0+0x1e9/0x340 [ 1207.906006] __kernfs_new_node+0xd4/0x860 [ 1207.906936] ? SOFTIRQ_verbose+0x10/0x10 [ 1207.907851] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1207.908907] ? __lockdep_reset_lock+0x180/0x180 [ 1207.909980] ? lock_acquire+0x197/0x470 [ 1207.910886] ? find_held_lock+0x2c/0x110 [ 1207.911802] ? sysfs_do_create_link_sd+0x82/0x140 [ 1207.912922] kernfs_new_node+0x93/0x120 [ 1207.913845] kernfs_create_link+0xcb/0x230 [ 1207.914829] sysfs_do_create_link_sd+0x90/0x140 [ 1207.915899] sysfs_create_link+0x5f/0xc0 [ 1207.916823] device_add+0x5e1/0x1bc0 [ 1207.917674] ? devlink_add_symlinks+0x970/0x970 [ 1207.918753] device_create_groups_vargs+0x207/0x280 [ 1207.919885] device_create+0xdc/0x120 [ 1207.920743] ? device_create_groups_vargs+0x280/0x280 [ 1207.921918] ? init_timer_key+0x12a/0x240 [ 1207.922883] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1207.923984] mac80211_hwsim_new_radio+0x352/0x4250 [ 1207.925092] ? ____sys_sendmsg+0x70d/0x870 [ 1207.926071] ? ___sys_sendmsg+0xf3/0x170 [ 1207.926998] ? __sys_sendmsg+0xe5/0x1b0 [ 1207.927902] ? do_syscall_64+0x33/0x40 [ 1207.928787] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1207.929987] ? __lockdep_reset_lock+0x180/0x180 [ 1207.931037] ? lock_acquire+0x197/0x470 [ 1207.931929] ? create_object.isra.0+0x3ad/0xa20 [ 1207.932998] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1207.934065] ? __kmalloc+0x16e/0x390 [ 1207.934919] hwsim_new_radio_nl+0x991/0x1080 [ 1207.935925] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1207.937117] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1207.938600] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1207.940060] genl_family_rcv_msg_doit+0x22d/0x330 [ 1207.941145] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1207.942612] ? cap_capable+0x1d6/0x240 [ 1207.943509] ? ns_capable+0xe2/0x110 [ 1207.944341] genl_rcv_msg+0x33c/0x5a0 [ 1207.945201] ? genl_get_cmd+0x480/0x480 [ 1207.946098] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1207.947248] ? lock_release+0x680/0x680 [ 1207.948140] ? __lockdep_reset_lock+0x180/0x180 [ 1207.949173] netlink_rcv_skb+0x14b/0x430 [ 1207.950098] ? genl_get_cmd+0x480/0x480 [ 1207.950984] ? netlink_ack+0xab0/0xab0 [ 1207.951869] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1207.952894] ? is_vmalloc_addr+0x7b/0xb0 [ 1207.953805] genl_rcv+0x24/0x40 [ 1207.954552] netlink_unicast+0x549/0x7f0 [ 1207.955459] ? netlink_attachskb+0x870/0x870 [ 1207.956435] ? __virt_addr_valid+0x128/0x350 [ 1207.957419] netlink_sendmsg+0x90f/0xdf0 [ 1207.958329] ? netlink_unicast+0x7f0/0x7f0 [ 1207.959307] ? netlink_unicast+0x7f0/0x7f0 [ 1207.960239] __sock_sendmsg+0x154/0x190 [ 1207.961112] ____sys_sendmsg+0x70d/0x870 [ 1207.962021] ? sock_write_iter+0x3d0/0x3d0 [ 1207.962933] ? do_recvmmsg+0x6d0/0x6d0 [ 1207.963796] ? perf_trace_lock+0xac/0x490 [ 1207.964706] ? __lockdep_reset_lock+0x180/0x180 [ 1207.965729] ? perf_trace_lock+0xac/0x490 [ 1207.966659] ? SOFTIRQ_verbose+0x10/0x10 [ 1207.967567] ___sys_sendmsg+0xf3/0x170 [ 1207.968417] ? sendmsg_copy_msghdr+0x160/0x160 [ 1207.969431] ? lock_downgrade+0x6d0/0x6d0 [ 1207.970352] ? find_held_lock+0x2c/0x110 [ 1207.971255] ? __fget_files+0x296/0x4c0 [ 1207.972136] ? __fget_light+0xea/0x290 [ 1207.973012] __sys_sendmsg+0xe5/0x1b0 [ 1207.973861] ? __sys_sendmsg_sock+0x40/0x40 [ 1207.974800] ? rcu_read_lock_any_held+0x75/0xa0 [ 1207.975849] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1207.976975] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1207.978113] ? trace_hardirqs_on+0x5b/0x180 [ 1207.979062] do_syscall_64+0x33/0x40 [ 1207.979881] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1207.980995] RIP: 0033:0x7f59b4343b19 [ 1207.981816] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1207.985804] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1207.987468] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 1207.989024] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1207.990591] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1207.992139] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1207.993692] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 12:05:59 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x10000000}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000540)={0x48001100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) fadvise64(r1, 0x8, 0x100000001, 0x1) fsetxattr$trusted_overlay_origin(r0, &(0x7f0000000040), &(0x7f0000000080), 0x2, 0x3) 12:05:59 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 41) [ 1208.244522] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. 12:05:59 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xe, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 12:05:59 executing program 5: mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff) socket$netlink(0x10, 0x3, 0xb) r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0xc, 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r2 = syz_mount_image$iso9660(&(0x7f0000000340), &(0x7f0000000380)='./file0\x00', 0x3f, 0x0, &(0x7f0000000480), 0x82400, &(0x7f00000008c0)=ANY=[@ANYRESOCT, @ANYRESHEX=0xee00, @ANYBLOB="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"/287, @ANYRESDEC=0xee01, @ANYBLOB=',dont_hash,obj_role=.u#/,mask=MAY_WRITE;measure,seclabel,\x00']) r3 = openat(r2, &(0x7f00000005c0)='./file1\x00', 0x20000, 0x40) ftruncate(r1, 0x1000003) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, &(0x7f0000000280)={0x8}) syz_genetlink_get_family_id$nl80211(&(0x7f0000000600), r3) write$binfmt_elf64(r1, &(0x7f00000001c0)=ANY=[], 0xfdef) lseek(r1, 0x0, 0x3) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000680)={'wlan0\x00', 0x0}) write$P9_RREADLINK(r3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1000000017020007002e2f66696c6531f44c8a1b1c4465e97de83a39429d27a7c95f4857d05d10239c8b9062502f3d85295ff3fe671245e98256dfb54734bd33cca4"], 0x10) sendmsg$NL80211_CMD_LEAVE_MESH(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f00000002c0)={&(0x7f00000006c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="006a0c480b43e75f41cc3a19057aa831761c", @ANYRES32=0x0, @ANYBLOB="0c009900000000004e000000"], 0x28}, 0x1, 0x0, 0x0, 0x2004c880}, 0x4094) lseek(r1, 0x3800000000000, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NL80211_CMD_SET_PMK(r1, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="1450eb3c", @ANYRES16=0x0, @ANYBLOB="00012cbd7000fbdbdf257b00000008000300", @ANYRES32=r4, @ANYBLOB="0c0099000400001100000000000a00060008021100000000001400fe008116318664cdae6aec6b71baba6f6dfb1400020179671d343424bf4d15a1000100000a0006000802110000e600001400fe00750000000015000000000000000000121400fe00cfc3d37cc10cecc9f1f05fd28e7ce85e000000000000000000000000000000000000000000000000f5ffffffffffffff0000000000"], 0xb4}}, 0x4c805) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x400, 0x0) openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) [ 1208.351058] FAULT_INJECTION: forcing a failure. [ 1208.351058] name failslab, interval 1, probability 0, space 0, times 0 [ 1208.353148] CPU: 1 PID: 10489 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 1208.354408] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1208.355895] Call Trace: [ 1208.356380] dump_stack+0x107/0x167 [ 1208.357044] should_fail.cold+0x5/0xa [ 1208.357736] ? __kernfs_new_node+0xd4/0x860 [ 1208.358526] should_failslab+0x5/0x20 [ 1208.359214] kmem_cache_alloc+0x5b/0x310 [ 1208.359952] ? __ipv6_addr_label.isra.0+0x1e9/0x340 [ 1208.360863] __kernfs_new_node+0xd4/0x860 [ 1208.361578] ? SOFTIRQ_verbose+0x10/0x10 [ 1208.362257] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1208.363054] ? __lockdep_reset_lock+0x180/0x180 [ 1208.363795] ? lock_acquire+0x197/0x470 [ 1208.364413] ? find_held_lock+0x2c/0x110 [ 1208.365092] ? sysfs_do_create_link_sd+0x82/0x140 [ 1208.365865] kernfs_new_node+0x93/0x120 [ 1208.366486] kernfs_create_link+0xcb/0x230 [ 1208.367171] sysfs_do_create_link_sd+0x90/0x140 [ 1208.367954] sysfs_create_link+0x5f/0xc0 [ 1208.368630] device_add+0x5e1/0x1bc0 [ 1208.369269] ? devlink_add_symlinks+0x970/0x970 [ 1208.370071] device_create_groups_vargs+0x207/0x280 [ 1208.370864] device_create+0xdc/0x120 [ 1208.371465] ? device_create_groups_vargs+0x280/0x280 [ 1208.372276] ? init_timer_key+0x12a/0x240 [ 1208.372937] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1208.373698] mac80211_hwsim_new_radio+0x352/0x4250 [ 1208.374484] ? ____sys_sendmsg+0x70d/0x870 [ 1208.375143] ? ___sys_sendmsg+0xf3/0x170 [ 1208.375781] ? __sys_sendmsg+0xe5/0x1b0 [ 1208.376405] ? do_syscall_64+0x33/0x40 [ 1208.377017] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1208.377856] ? __lockdep_reset_lock+0x180/0x180 [ 1208.378586] ? lock_acquire+0x197/0x470 [ 1208.379209] ? create_object.isra.0+0x3ad/0xa20 [ 1208.379941] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1208.380668] ? __kmalloc+0x16e/0x390 [ 1208.381257] hwsim_new_radio_nl+0x991/0x1080 [ 1208.381974] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1208.382794] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1208.383816] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1208.384834] genl_family_rcv_msg_doit+0x22d/0x330 [ 1208.385591] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1208.386624] ? cap_capable+0x1d6/0x240 [ 1208.387249] ? ns_capable+0xe2/0x110 [ 1208.387839] genl_rcv_msg+0x33c/0x5a0 [ 1208.388435] ? genl_get_cmd+0x480/0x480 [ 1208.389055] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1208.389877] ? lock_release+0x680/0x680 [ 1208.390495] ? __lockdep_reset_lock+0x180/0x180 [ 1208.391221] netlink_rcv_skb+0x14b/0x430 [ 1208.391856] ? genl_get_cmd+0x480/0x480 [ 1208.392479] ? netlink_ack+0xab0/0xab0 [ 1208.393101] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1208.393827] ? is_vmalloc_addr+0x7b/0xb0 [ 1208.394470] genl_rcv+0x24/0x40 [ 1208.394984] netlink_unicast+0x549/0x7f0 [ 1208.395628] ? netlink_attachskb+0x870/0x870 [ 1208.396313] ? __virt_addr_valid+0x128/0x350 [ 1208.397009] netlink_sendmsg+0x90f/0xdf0 [ 1208.397654] ? netlink_unicast+0x7f0/0x7f0 [ 1208.398333] ? netlink_unicast+0x7f0/0x7f0 [ 1208.398993] __sock_sendmsg+0x154/0x190 [ 1208.399615] ____sys_sendmsg+0x70d/0x870 [ 1208.400255] ? sock_write_iter+0x3d0/0x3d0 [ 1208.400913] ? do_recvmmsg+0x6d0/0x6d0 [ 1208.401525] ? perf_trace_lock+0xac/0x490 [ 1208.402196] ? __lockdep_reset_lock+0x180/0x180 [ 1208.402915] ? perf_trace_lock+0xac/0x490 [ 1208.403558] ? SOFTIRQ_verbose+0x10/0x10 [ 1208.404196] ___sys_sendmsg+0xf3/0x170 [ 1208.404811] ? sendmsg_copy_msghdr+0x160/0x160 [ 1208.405533] ? lock_downgrade+0x6d0/0x6d0 [ 1208.406194] ? find_held_lock+0x2c/0x110 [ 1208.406839] ? __fget_files+0x296/0x4c0 [ 1208.407471] ? __fget_light+0xea/0x290 [ 1208.408086] __sys_sendmsg+0xe5/0x1b0 [ 1208.408681] ? __sys_sendmsg_sock+0x40/0x40 [ 1208.409351] ? rcu_read_lock_any_held+0x75/0xa0 [ 1208.410119] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1208.410933] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1208.411734] ? trace_hardirqs_on+0x5b/0x180 [ 1208.412412] do_syscall_64+0x33/0x40 [ 1208.412996] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1208.413801] RIP: 0033:0x7f59b4343b19 [ 1208.414384] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1208.417235] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1208.418424] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 1208.419531] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1208.420634] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1208.421739] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1208.422862] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 12:05:59 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0xd}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0xff}}, './file0\x00'}) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r0, 0x29, 0xd2, &(0x7f00000000c0)={{0xa, 0x4e20, 0x80000000, @private1, 0x21}, {0xa, 0x4e23, 0x8, @private1, 0x76}, 0x8, [0x101, 0x7, 0xb71, 0x4af, 0x6, 0x3, 0x3f, 0x401]}, 0x5c) socket$inet_icmp_raw(0x2, 0x3, 0x1) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f0000000400)={'gretap0\x00', &(0x7f00000002c0)={'syztnl0\x00', 0x0, 0x10, 0x8, 0xf649, 0x8324, {{0x23, 0x4, 0x0, 0x13, 0x8c, 0x64, 0x0, 0x6, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @remote, {[@end, @timestamp={0x44, 0x14, 0xfb, 0x0, 0x7, [0x1, 0xffff8091, 0xfffffff7, 0xff]}, @lsrr={0x83, 0x27, 0x35, [@rand_addr=0x64010101, @rand_addr=0x64010100, @multicast1, @private=0xa010100, @multicast1, @private=0xa010100, @loopback, @loopback, @initdev={0xac, 0x1e, 0x1, 0x0}]}, @ra={0x94, 0x4}, @timestamp_addr={0x44, 0xc, 0xc4, 0x1, 0x8, [{@multicast2, 0x9}]}, @generic={0x88, 0xd, "14a6c65aac0e4ab8992833"}, @ra={0x94, 0x4, 0x1}, @ssrr={0x89, 0x1b, 0xef, [@dev={0xac, 0x14, 0x14, 0x13}, @rand_addr=0x64010101, @initdev={0xac, 0x1e, 0x0, 0x0}, @dev={0xac, 0x14, 0x14, 0x20}, @multicast2, @loopback]}]}}}}}) setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f0000000440)={@private2, r2}, 0x14) setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x41, &(0x7f0000000000), 0x4) sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002040)=[{{&(0x7f0000000380)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000001600)=[{&(0x7f00000003c0)="db9c", 0x2}], 0x1, 0x0, 0x38}}], 0x1, 0x0) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x4) setsockopt$inet6_mreq(r3, 0x29, 0x1b, &(0x7f00000001c0)={@loopback}, 0x14) r4 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400020820000400008000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f0000000400)=ANY=[]) mkdirat(r4, &(0x7f0000000040)='./file0\x00', 0x0) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) epoll_ctl$EPOLL_CTL_MOD(r3, 0x3, r4, &(0x7f0000000180)={0x2}) epoll_wait(r3, &(0x7f0000000080)=[{}], 0x1, 0x6226) epoll_pwait(0xffffffffffffffff, &(0x7f0000000240)=[{}, {}, {}, {}, {}, {}, {}, {}], 0x8, 0x8, &(0x7f0000000140)={[0x31]}, 0x8) 12:06:00 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 42) 12:06:00 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x5, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1208.606590] FAULT_INJECTION: forcing a failure. [ 1208.606590] name failslab, interval 1, probability 0, space 0, times 0 [ 1208.609168] CPU: 0 PID: 10511 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 1208.610728] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1208.612554] Call Trace: [ 1208.613145] dump_stack+0x107/0x167 [ 1208.613975] should_fail.cold+0x5/0xa [ 1208.614835] ? __kernfs_new_node+0xd4/0x860 [ 1208.615801] should_failslab+0x5/0x20 [ 1208.616651] kmem_cache_alloc+0x5b/0x310 [ 1208.617565] __kernfs_new_node+0xd4/0x860 [ 1208.618508] ? SOFTIRQ_verbose+0x10/0x10 [ 1208.619422] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1208.620472] ? __lockdep_reset_lock+0x180/0x180 [ 1208.621514] ? lock_acquire+0x197/0x470 [ 1208.622406] ? find_held_lock+0x2c/0x110 [ 1208.623319] ? sysfs_do_create_link_sd+0x82/0x140 [ 1208.624394] kernfs_new_node+0x93/0x120 [ 1208.625282] kernfs_create_link+0xcb/0x230 [ 1208.626235] sysfs_do_create_link_sd+0x90/0x140 [ 1208.627272] sysfs_create_link+0x5f/0xc0 [ 1208.628181] device_add+0x703/0x1bc0 [ 1208.629017] ? devlink_add_symlinks+0x970/0x970 [ 1208.630086] device_create_groups_vargs+0x207/0x280 [ 1208.631203] device_create+0xdc/0x120 [ 1208.632055] ? device_create_groups_vargs+0x280/0x280 [ 1208.633198] ? init_timer_key+0x12a/0x240 [ 1208.634139] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1208.635221] mac80211_hwsim_new_radio+0x352/0x4250 [ 1208.636310] ? ____sys_sendmsg+0x70d/0x870 [ 1208.637246] ? ___sys_sendmsg+0xf3/0x170 [ 1208.638163] ? __sys_sendmsg+0xe5/0x1b0 [ 1208.639052] ? do_syscall_64+0x33/0x40 [ 1208.639915] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1208.641095] ? __lockdep_reset_lock+0x180/0x180 [ 1208.642131] ? lock_acquire+0x197/0x470 [ 1208.643017] ? create_object.isra.0+0x3ad/0xa20 [ 1208.644057] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1208.645095] ? __kmalloc+0x16e/0x390 [ 1208.645935] hwsim_new_radio_nl+0x991/0x1080 [ 1208.646929] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1208.648094] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1208.649549] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1208.651012] genl_family_rcv_msg_doit+0x22d/0x330 [ 1208.652087] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1208.653541] ? cap_capable+0x1d6/0x240 [ 1208.654431] ? ns_capable+0xe2/0x110 [ 1208.655263] genl_rcv_msg+0x33c/0x5a0 [ 1208.656111] ? genl_get_cmd+0x480/0x480 [ 1208.656991] ? lock_acquire+0x1b9/0x470 [ 1208.657887] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1208.659036] ? lock_release+0x680/0x680 [ 1208.659914] ? __lockdep_reset_lock+0x180/0x180 [ 1208.660948] netlink_rcv_skb+0x14b/0x430 [ 1208.661853] ? genl_get_cmd+0x480/0x480 [ 1208.662734] ? netlink_ack+0xab0/0xab0 [ 1208.663616] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1208.664629] ? is_vmalloc_addr+0x7b/0xb0 [ 1208.665536] genl_rcv+0x24/0x40 [ 1208.666278] netlink_unicast+0x549/0x7f0 [ 1208.667191] ? netlink_attachskb+0x870/0x870 [ 1208.668164] ? __virt_addr_valid+0x128/0x350 [ 1208.669150] netlink_sendmsg+0x90f/0xdf0 [ 1208.670081] ? netlink_unicast+0x7f0/0x7f0 [ 1208.671037] ? netlink_unicast+0x7f0/0x7f0 [ 1208.671980] __sock_sendmsg+0x154/0x190 [ 1208.672868] ____sys_sendmsg+0x70d/0x870 [ 1208.673783] ? sock_write_iter+0x3d0/0x3d0 [ 1208.674718] ? do_recvmmsg+0x6d0/0x6d0 [ 1208.675583] ? perf_trace_lock+0xac/0x490 [ 1208.676510] ? __lockdep_reset_lock+0x180/0x180 [ 1208.677536] ? perf_trace_lock+0xac/0x490 [ 1208.678479] ? SOFTIRQ_verbose+0x10/0x10 [ 1208.679391] ___sys_sendmsg+0xf3/0x170 [ 1208.680262] ? sendmsg_copy_msghdr+0x160/0x160 [ 1208.681283] ? lock_downgrade+0x6d0/0x6d0 [ 1208.682216] ? find_held_lock+0x2c/0x110 [ 1208.683129] ? __fget_files+0x296/0x4c0 [ 1208.684025] ? __fget_light+0xea/0x290 [ 1208.684903] __sys_sendmsg+0xe5/0x1b0 [ 1208.685747] ? __sys_sendmsg_sock+0x40/0x40 [ 1208.686710] ? rcu_read_lock_any_held+0x75/0xa0 [ 1208.687763] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1208.688919] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1208.690073] ? trace_hardirqs_on+0x5b/0x180 [ 1208.691035] do_syscall_64+0x33/0x40 [ 1208.691866] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1208.693011] RIP: 0033:0x7f59b4343b19 [ 1208.693849] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1208.697902] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1208.699571] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 1208.701133] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1208.702712] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1208.704275] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1208.705845] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 12:06:14 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x6, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 12:06:14 executing program 5: sendmsg$NL80211_CMD_START_P2P_DEVICE(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, 0x0, 0x300, 0x70bd2d, 0x25dfdbfb, {{}, {@void, @void}}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4800}, 0x8040044) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0) getresuid(&(0x7f0000000140), 0x0, 0x0) 12:06:14 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xf, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 12:06:14 executing program 4: r0 = open(&(0x7f0000000000)='./file1\x00', 0x600000, 0x1b2) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000001c0), 0x8}}, 0x0, 0xffffffffffffffff, r0, 0x0) lseek(r1, 0x0, 0x1) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000000140)=0x1, 0x4) connect$inet6(r2, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback={0x0, 0x7}}, 0x1c) fallocate(r1, 0x3, 0x52, 0x6) setsockopt$inet6_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f0000000080), 0x4) r3 = openat$sr(0xffffffffffffff9c, &(0x7f00000002c0), 0x5f42, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x1000)=nil, 0x1000, 0x4, 0x10, r3, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = socket$inet(0xa, 0x3, 0xff) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'sit0\x00', 0x0}) ioctl$sock_inet6_SIOCADDRT(r4, 0x890b, &(0x7f0000000140)={@private0, @loopback, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400032, r6}) write$binfmt_elf64(0xffffffffffffffff, 0x0, 0x950) r7 = syz_open_dev$vcsa(&(0x7f0000000840), 0x401, 0x28180) ioctl$F2FS_IOC_GARBAGE_COLLECT(r7, 0x4004f506, &(0x7f0000000880)=0x1) perf_event_open(&(0x7f0000000100)={0x0, 0x80, 0x8, 0x7f, 0x9, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, @perf_config_ext={0xfffffffffffff046, 0x2}, 0x0, 0xc5c1, 0xfc9, 0x2, 0x2, 0x7, 0x0, 0x0, 0x10001, 0x0, 0x5}, 0x0, 0xe, r1, 0xa) r8 = creat(&(0x7f0000000080)='./file0\x00', 0x0) pwrite64(r8, &(0x7f00000000c0)="041a3a4985d424bdce9675f286982a09f7fe7569cb2c6e71f89e8019678c585aa70cc9e2435235dcb0b3434020d0f4d5613bb8bde96608eaf4af1834720900b040007af6d3edc14cd7ab81c733b614b0835ac6af8173be3b00015a826f2562ae98feb0d40000f80000", 0xff69, 0x3ff03) 12:06:14 executing program 6: r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000000380)="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", 0x121, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f00000000c0)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) syz_open_dev$mouse(&(0x7f0000000080), 0x1, 0x4140) openat(r0, &(0x7f0000000040)='./file1\x00', 0x141800, 0xa4) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file1\x00', 0x6, 0x2, &(0x7f0000000540)=[{&(0x7f0000000280)="629b524089456d356d776e5df2af46f241e912be5ccaaa8db881ebace2f3f48e6a1ea8430907bfaebe0299688015e56f1c75f4396b68a333f85a5d287e354927729dcf1539299564678d8f29de5f50144b17b34bc3807d7f2a95923a5e15154314be107369c1e833705ed65ab0d85525fcef74871d3d33cc01112a4238b1819abe705915aa17d1a367f53382acb9657cd42e855c19368d1980f7e7a787e612ec5e33eb92cc9e53dd1ea20a0db4d65547dd19d3c7c48141b7492b6de600262ff10f30", 0xc2, 0xff}, {&(0x7f00000004c0)="48c25d2a417af3618e99aa5ed05db7c21055e4d70210714701d19a26b5dacc7a0d4e0c0e791e022ca892bad561d3b06b7d231db50619b0677c40980c8a726f7bda66844c6ba0a19d5374bbe11e57ad336dc0d7e17664f28bbd453f4371e739e083f71a7805e9e1390055d3e43a", 0x6d, 0xae}], 0x2201001, &(0x7f0000000580)={[{@norecovery}, {@journal_path={'journal_path', 0x3d, './file1'}}, {@barrier_val}, {@barrier}, {@block_validity}, {@debug}]}) [ 1223.463415] EXT4-fs (loop6): Unrecognized mount option "Ö" or missing value [ 1223.464518] EXT4-fs (loop6): failed to parse options in superblock: Ö [ 1223.465507] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! 12:06:14 executing program 0: r0 = openat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x111480, 0x0) r1 = socket$netlink(0x10, 0x3, 0x9) connect$netlink(0xffffffffffffffff, &(0x7f0000000080)=@kern={0x10, 0x0, 0x0, 0x2000}, 0xc) ioctl$sock_FIOGETOWN(r1, 0x8903, &(0x7f0000000140)=0x0) r3 = syz_open_procfs(r2, 0x0) getdents64(r3, &(0x7f00000001c0)=""/66, 0x18) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r3, 0x81f8943c, &(0x7f0000000240)) r4 = openat$incfs(r0, &(0x7f0000000100)='.log\x00', 0x0, 0x4) write(r4, 0x0, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, 0x0) socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$AUTOFS_IOC_FAIL(0xffffffffffffffff, 0x9361, 0x100) copy_file_range(r1, &(0x7f0000000180)=0x80000001, 0xffffffffffffffff, &(0x7f0000000440)=0xd1, 0x3, 0x0) r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0) getdents64(r5, 0x0, 0x0) openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0) setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0x7, &(0x7f0000000000)={0xaa}, 0x10) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) 12:06:14 executing program 1: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, @perf_config_ext, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x9, 0x204, 0x402}) r1 = open$dir(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) r2 = creat(&(0x7f0000000080)='./file0/file0\x00', 0x1) ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000001c0)={0x1ff, 0x9, 0x52}) ioctl$KDGKBTYPE(r0, 0x4b33, &(0x7f0000000100)) r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r4 = syz_io_uring_setup(0x4d4f, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0) io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r2, 0xc0189378, &(0x7f0000000380)=ANY=[@ANYBLOB="dec404350100000040e91cbe2ec52bf52c3a9b19a717eb2b0000010000000000004086ca41ac9ff07767a3f450872989000000000000000000", @ANYRES32, @ANYBLOB="6e68936fe0db8520216cae191493df9c95444185652a3c3176b920c83faf4f78c9883f557cef9a26db1ecf475bf13aa99669a56664037658e9b85f131b34ee8f80159bb6b6e25230101d6feee6ba13785096b0a800655bdd8da0a039abc38b5a6574b8b4bcafa2cc0ad064967163efc3ba5a75b6cedd50af60a34abf5e31909ae1c5cad8f5", @ANYRESOCT=r4]) r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) ioctl$VT_RESIZE(r5, 0x5609, &(0x7f0000000180)={0x0, 0x8, 0xfff}) openat(r1, &(0x7f0000000340)='./file0\x00', 0x5ccb6ef269f6cd3c, 0x20f) copy_file_range(r5, 0x0, r3, 0x0, 0x10001, 0x0) shutdown(r2, 0x1) openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x600280, 0x0) 12:06:14 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 43) [ 1223.524203] EXT4-fs error (device loop6): ext4_orphan_get:1417: comm syz-executor.6: bad orphan inode 2171290112 [ 1223.528281] EXT4-fs (loop6): mounted filesystem without journal. Opts: Ö; ,errors=continue 12:06:15 executing program 5: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_usb_connect$cdc_ecm(0x0, 0x4d, 0x0, 0x0) timer_delete(0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clock_gettime(0x0, &(0x7f0000000140)={0x0, 0x0}) timer_create(0x6, &(0x7f0000000380)={0x0, 0x2d, 0x2, @thr={&(0x7f00000002c0)="d7d9fef08ae78484236085a1f4500502f1c7e02460740bfb01d679b9f22f7b6d917d63d901253ef8f5a03f0134", &(0x7f0000000300)="cdfdc761e00322860b90892390aa05791cf8cb87ba56dec50b75ece6bd3c531f3b038e139e2f0877b71c7812dbe81d7964db34b1d71cd2d9af5fc3250e6cedfa5347be6e7671f7c1ea2414f6a34e0cec8e2f9df8c6702bdec7"}}, &(0x7f00000003c0)=0x0) timer_settime(r2, 0x0, &(0x7f0000000180)={{r0, r1+10000000}}, &(0x7f0000000240)) syz_usb_connect$uac1(0x1, 0xe2, &(0x7f00000004c0)={{0x12, 0x1, 0x200, 0x0, 0x0, 0x0, 0x10, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xd0, 0x3, 0x1, 0x79, 0x70, 0x1, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x101, 0x1}, [@output_terminal={0x9, 0x24, 0x3, 0x2, 0x306, 0x1, 0x2, 0x7f}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@as_header={0x7, 0x24, 0x1, 0xfa, 0x39, 0x1}, @format_type_i_discrete={0x10, 0x24, 0x2, 0x1, 0x7c, 0x2, 0x0, 0x18, "1bb20c8351186121"}]}, {{0x9, 0x5, 0x1, 0x9, 0x10, 0x1, 0x40, 0x20, {0x7, 0x25, 0x1, 0x0, 0x3, 0x9}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_i_discrete={0x11, 0x24, 0x2, 0x1, 0x7, 0x4, 0x0, 0x9, "94ddfa40bd7a5813b0"}, @as_header={0x7, 0x24, 0x1, 0x2, 0x0, 0x5}, @format_type_i_discrete={0x11, 0x24, 0x2, 0x1, 0x69, 0x3, 0x5, 0x3, "e998cd4540b5dc3ff0"}, @format_type_ii_discrete={0x12, 0x24, 0x2, 0x2, 0x1, 0x1, 0x3, "6457709d8e1e3f6fce"}, @format_type_ii_discrete={0xd, 0x24, 0x2, 0x2, 0x0, 0x8, 0x2, "8ca7585c"}, @format_type_ii_discrete={0x9, 0x24, 0x2, 0x2, 0x7ff, 0x1c}]}, {{0x9, 0x5, 0x82, 0x9, 0x200, 0x3, 0x1, 0x3, {0x7, 0x25, 0x1, 0x2, 0x81}}}}}}}]}}, &(0x7f0000000700)={0xa, &(0x7f0000000100)={0xa, 0x6, 0x110, 0x3, 0x3, 0x0, 0x40, 0x28}, 0x38, &(0x7f00000005c0)={0x5, 0xf, 0x38, 0x3, [@ssp_cap={0x14, 0x10, 0xa, 0xc1, 0x2, 0x101, 0x8, 0x7ff, [0xc028, 0x30]}, @wireless={0xb, 0x10, 0x1, 0x4, 0x1, 0x1f, 0x2, 0x0, 0x3f}, @ss_container_id={0x14, 0x10, 0x4, 0x1, "183eafc04e5a75328f80494a587d3b7a"}]}, 0x4, [{0x4, &(0x7f0000000600)=@lang_id={0x4, 0x3, 0x280a}}, {0x4, &(0x7f0000000640)=@lang_id={0x4, 0x3, 0xc07}}, {0x4, &(0x7f0000000680)=@lang_id={0x4, 0x3, 0x140c}}, {0x4, &(0x7f00000006c0)=@lang_id={0x4, 0x3, 0x1009}}]}) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) timer_create(0x7, &(0x7f0000000780)={0x0, 0x10}, &(0x7f00000007c0)=0x0) clock_gettime(0x0, &(0x7f0000000800)={0x0, 0x0}) timer_settime(r3, 0x1, &(0x7f0000000840)={{r4, r5+60000000}}, &(0x7f0000000880)) r6 = socket$netlink(0x10, 0x3, 0x0) perf_event_open(&(0x7f0000000400)={0x1, 0x80, 0x40, 0x7f, 0x8, 0x29, 0x0, 0xffff, 0x4, 0x2, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x8, 0x1, @perf_config_ext={0x800, 0xfffffffffffffff8}, 0xc0c, 0x2, 0x14d, 0x8, 0x8, 0x8, 0x8, 0x0, 0xffffff4e, 0x0, 0x3}, 0x0, 0x1, 0xffffffffffffffff, 0x1) sendmsg$nl_generic(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={0x14, 0x16, 0xd01, 0x0, 0x0, {0xd}}, 0x14}}, 0x0) read(r6, &(0x7f0000000080)=""/65, 0x41) timer_gettime(0x0, &(0x7f0000000080)) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000480)=ANY=[@ANYBLOB="0000000000000000000000005c488faff8af", @ANYRES64, @ANYRES32, @ANYBLOB="0000e5ff2e2f66696c003000"]) socket$netlink(0x10, 0x3, 0x12) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 1223.552591] FAULT_INJECTION: forcing a failure. [ 1223.552591] name failslab, interval 1, probability 0, space 0, times 0 [ 1223.552614] CPU: 1 PID: 10543 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 1223.552625] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1223.552632] Call Trace: [ 1223.552657] dump_stack+0x107/0x167 [ 1223.552683] should_fail.cold+0x5/0xa [ 1223.552707] ? create_object.isra.0+0x3a/0xa20 [ 1223.552730] should_failslab+0x5/0x20 [ 1223.552748] kmem_cache_alloc+0x5b/0x310 [ 1223.552776] create_object.isra.0+0x3a/0xa20 [ 1223.552797] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1223.552824] kmem_cache_alloc+0x159/0x310 [ 1223.552855] __kernfs_new_node+0xd4/0x860 [ 1223.552875] ? SOFTIRQ_verbose+0x10/0x10 [ 1223.552901] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1223.552918] ? __lockdep_reset_lock+0x180/0x180 [ 1223.552949] ? lock_acquire+0x197/0x470 [ 1223.552966] ? find_held_lock+0x2c/0x110 [ 1223.552999] ? sysfs_do_create_link_sd+0x82/0x140 [ 1223.553027] kernfs_new_node+0x93/0x120 [ 1223.553053] kernfs_create_link+0xcb/0x230 [ 1223.553077] sysfs_do_create_link_sd+0x90/0x140 [ 1223.553100] sysfs_create_link+0x5f/0xc0 [ 1223.553123] device_add+0x703/0x1bc0 [ 1223.553150] ? devlink_add_symlinks+0x970/0x970 [ 1223.553187] device_create_groups_vargs+0x207/0x280 [ 1223.553213] device_create+0xdc/0x120 [ 1223.553238] ? device_create_groups_vargs+0x280/0x280 [ 1223.553259] ? init_timer_key+0x12a/0x240 [ 1223.553292] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1223.553322] mac80211_hwsim_new_radio+0x352/0x4250 [ 1223.553340] ? ____sys_sendmsg+0x70d/0x870 [ 1223.553356] ? ___sys_sendmsg+0xf3/0x170 [ 1223.553372] ? __sys_sendmsg+0xe5/0x1b0 [ 1223.553392] ? do_syscall_64+0x33/0x40 [ 1223.553413] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1223.553430] ? __lockdep_reset_lock+0x180/0x180 [ 1223.553449] ? lock_acquire+0x197/0x470 [ 1223.553467] ? create_object.isra.0+0x3ad/0xa20 [ 1223.553497] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1223.553521] ? __kmalloc+0x16e/0x390 [ 1223.553548] hwsim_new_radio_nl+0x991/0x1080 [ 1223.553574] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1223.553616] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1223.553635] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1223.553664] genl_family_rcv_msg_doit+0x22d/0x330 [ 1223.553688] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1223.553708] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1223.553726] ? cap_capable+0x1d6/0x240 [ 1223.553763] ? ns_capable+0xe2/0x110 [ 1223.553789] genl_rcv_msg+0x33c/0x5a0 [ 1223.553813] ? genl_get_cmd+0x480/0x480 [ 1223.553834] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1223.553861] ? lock_release+0x680/0x680 [ 1223.553880] ? __lockdep_reset_lock+0x180/0x180 [ 1223.553906] netlink_rcv_skb+0x14b/0x430 [ 1223.553925] ? genl_get_cmd+0x480/0x480 [ 1223.553946] ? netlink_ack+0xab0/0xab0 [ 1223.554004] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1223.554025] ? is_vmalloc_addr+0x7b/0xb0 [ 1223.554048] genl_rcv+0x24/0x40 [ 1223.554065] netlink_unicast+0x549/0x7f0 [ 1223.554092] ? netlink_attachskb+0x870/0x870 [ 1223.554110] ? __virt_addr_valid+0x128/0x350 [ 1223.554144] netlink_sendmsg+0x90f/0xdf0 [ 1223.554172] ? netlink_unicast+0x7f0/0x7f0 [ 1223.554206] ? netlink_unicast+0x7f0/0x7f0 [ 1223.554226] __sock_sendmsg+0x154/0x190 [ 1223.554247] ____sys_sendmsg+0x70d/0x870 [ 1223.554271] ? sock_write_iter+0x3d0/0x3d0 [ 1223.554287] ? do_recvmmsg+0x6d0/0x6d0 [ 1223.554306] ? perf_trace_lock+0xac/0x490 [ 1223.554334] ? __lockdep_reset_lock+0x180/0x180 [ 1223.554351] ? perf_trace_lock+0xac/0x490 [ 1223.554369] ? SOFTIRQ_verbose+0x10/0x10 [ 1223.554395] ___sys_sendmsg+0xf3/0x170 [ 1223.554418] ? sendmsg_copy_msghdr+0x160/0x160 [ 1223.554445] ? lock_downgrade+0x6d0/0x6d0 [ 1223.554470] ? find_held_lock+0x2c/0x110 [ 1223.554502] ? __fget_files+0x296/0x4c0 [ 1223.554537] ? __fget_light+0xea/0x290 [ 1223.554567] __sys_sendmsg+0xe5/0x1b0 [ 1223.554587] ? __sys_sendmsg_sock+0x40/0x40 [ 1223.554606] ? rcu_read_lock_any_held+0x75/0xa0 [ 1223.554650] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1223.554669] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1223.554684] ? trace_hardirqs_on+0x5b/0x180 [ 1223.554710] do_syscall_64+0x33/0x40 [ 1223.554732] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1223.554746] RIP: 0033:0x7f59b4343b19 [ 1223.554767] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1223.554778] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1223.554800] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 1223.554812] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1223.554824] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1223.554836] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1223.554848] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 12:06:15 executing program 6: syz_mount_image$ext4(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0, 0x40000, 0x0) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000500)='ramfs\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x1}, 0x1900, 0x0, 0x0, 0x4, 0x0, 0x4, 0x0, 0x0, 0x101}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x300b4e2, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00'}) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) symlinkat(&(0x7f00000000c0)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000100)='./file0\x00') r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f0000000180)={@loopback, 0x7a, r4}) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e24, 0x5, @private2, 0xfffffc01}, 0x1c) ioctl$sock_inet_SIOCGIFPFLAGS(0xffffffffffffffff, 0x8935, &(0x7f0000000000)={'wlan0\x00'}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0xff, 0x0, 0x10000000000005e, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000001c0), 0x1}, 0x0, 0x3, 0x1004, 0x0, 0x0, 0x2}, 0x0, 0xffffffffefffffff, 0xffffffffffffffff, 0x2) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8914, &(0x7f0000000140)={'lo\x00'}) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) 12:06:15 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 12:06:15 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 44) [ 1223.731971] udc-core: couldn't find an available UDC or it's busy [ 1223.733771] misc raw-gadget: fail, usb_gadget_probe_driver returned -19 12:06:15 executing program 0: r0 = syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) r1 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0) r2 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0) r3 = syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r3, 0x8000000) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000180)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x9, 0xfffffffd}}, './file0\x00'}) r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000280)={0x2, &(0x7f00000001c0)=[{0x1, 0x8, 0x1f, 0x3}, {0x8000, 0xa2, 0xff, 0x6}]}) ioctl$FIDEDUPERANGE(0xffffffffffffffff, 0xc0189436, &(0x7f00000002c0)={0xfffffffffffffe01, 0x2e3c2311, 0x9, 0x0, 0x0, [{{r0}, 0x9801}, {{r1}, 0x3}, {{}, 0xcf24}, {{r2}, 0x100000001}, {}, {{r3}, 0x3}, {{r4}, 0x6}, {{r5}, 0x80}, {{}, 0x7118}]}) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000800100000f000000000000000100000005000000000004000040000020000000d9f4655fd9f4655f0100ffff53ef010001000000d9f4655f000000000000000001000000000000000b0000000004000008000000d2c201001203", 0x66, 0x400}, {&(0x7f0000010100)="00000000000000000000000085f42d27379e44ba9a8dcb77402e9f71010040", 0x1f, 0x4e0}, {&(0x7f0000000140)="02000000030000000400000018000f000300040000000000000000000f00c2b4", 0x20, 0x800}, {&(0x7f0000011600)="ed41000000080000d9f4655fd9f4655fd9f4655f000000000000040040", 0x1d, 0x23fe}], 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="00e82a47c1cf7d0c377912c5d1af20e717dd2f00000000000000009682d2a4f698903090b8902be63b2925104856e2772b74d8b5a5ace0fd896711"]) rename(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0/file0\x00') 12:06:15 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000100000005000000000004000040000020000000d6f4655fd6f4655f0100ffff53ef010001000000d5f4655f000000000000000001000000000000000b0000000001000018000000c28500002b02", 0x66, 0x400}, {&(0x7f0000010100)="000000000000000000000000f4e089668a0d4000840a22d1089d0f04010040", 0x1f, 0x4e0}, {&(0x7f0000010200)="000000000000000000000000000000000000000000000000000000002000200001000000000005", 0x27, 0x7ff}, {&(0x7f0000010300)="02", 0x60, 0x800}], 0x100000, &(0x7f0000012e00)) mount(&(0x7f0000000040)=@sg0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='hfsplus\x00', 0x1000, 0x0) 12:06:15 executing program 1: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, @perf_config_ext, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000000c0)={0x9, 0x204, 0x402}) r1 = open$dir(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) r2 = creat(&(0x7f0000000080)='./file0/file0\x00', 0x1) ioctl$VT_RESIZE(r0, 0x5609, &(0x7f00000001c0)={0x1ff, 0x9, 0x52}) ioctl$KDGKBTYPE(r0, 0x4b33, &(0x7f0000000100)) r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) r4 = syz_io_uring_setup(0x4d4f, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r4, 0x0) io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r2, 0xc0189378, &(0x7f0000000380)=ANY=[@ANYBLOB="dec404350100000040e91cbe2ec52bf52c3a9b19a717eb2b0000010000000000004086ca41ac9ff07767a3f450872989000000000000000000", @ANYRES32, @ANYBLOB="6e68936fe0db8520216cae191493df9c95444185652a3c3176b920c83faf4f78c9883f557cef9a26db1ecf475bf13aa99669a56664037658e9b85f131b34ee8f80159bb6b6e25230101d6feee6ba13785096b0a800655bdd8da0a039abc38b5a6574b8b4bcafa2cc0ad064967163efc3ba5a75b6cedd50af60a34abf5e31909ae1c5cad8f5", @ANYRESOCT=r4]) r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) ioctl$VT_RESIZE(r5, 0x5609, &(0x7f0000000180)={0x0, 0x8, 0xfff}) openat(r1, &(0x7f0000000340)='./file0\x00', 0x5ccb6ef269f6cd3c, 0x20f) copy_file_range(r5, 0x0, r3, 0x0, 0x10001, 0x0) shutdown(r2, 0x1) openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x600280, 0x0) [ 1223.871738] FAULT_INJECTION: forcing a failure. [ 1223.871738] name failslab, interval 1, probability 0, space 0, times 0 [ 1223.871753] CPU: 0 PID: 10560 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 1223.871760] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 12:06:15 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 45) [ 1223.871764] Call Trace: [ 1223.871780] dump_stack+0x107/0x167 12:06:15 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x7, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1223.871796] should_fail.cold+0x5/0xa [ 1223.871812] ? __kernfs_new_node+0xd4/0x860 [ 1223.871826] should_failslab+0x5/0x20 [ 1223.871837] kmem_cache_alloc+0x5b/0x310 [ 1223.871854] __kernfs_new_node+0xd4/0x860 [ 1223.871867] ? find_held_lock+0x2c/0x110 [ 1223.871882] ? kernfs_dop_revalidate+0x3a0/0x3a0 12:06:15 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x2}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x40, 0x0, 0x0, 0x80}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x6) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000000c0)) readv(0xffffffffffffffff, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1) r1 = syz_open_procfs(0x0, &(0x7f0000000280)='fd/4\x00') ioctl$FIONREAD(r1, 0x6801, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x173000, 0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000040)) sendmsg$nl_generic(r1, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x140000}, 0xc, &(0x7f0000000180)={&(0x7f0000001e00)=ANY=[@ANYBLOB="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", @ANYRES32, @ANYBLOB="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", @ANYRES32=r0, @ANYBLOB="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"], 0x17f0}, 0x1, 0x0, 0x0, 0x10}, 0x4000080) syz_mount_image$tmpfs(0x0, &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100000, &(0x7f0000000440)=ANY=[]) mkdir(&(0x7f0000000300)='./file0/file0\x00', 0x0) unshare(0x48030f00) [ 1223.871893] ? kernfs_add_one+0x36e/0x4d0 [ 1223.871915] ? mutex_lock_io_nested+0xf30/0xf30 [ 1223.871925] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1223.871945] kernfs_create_dir_ns+0x9c/0x230 [ 1223.871961] internal_create_group+0x793/0xb30 [ 1223.871981] ? sysfs_remove_group+0x170/0x170 [ 1223.871998] ? kernfs_put+0x31/0x50 [ 1223.872015] dpm_sysfs_add+0x82/0x290 [ 1223.872028] device_add+0x9b7/0x1bc0 [ 1223.872042] ? devlink_add_symlinks+0x970/0x970 [ 1223.872063] device_create_groups_vargs+0x207/0x280 [ 1223.872077] device_create+0xdc/0x120 [ 1223.872091] ? device_create_groups_vargs+0x280/0x280 [ 1223.872104] ? init_timer_key+0x12a/0x240 [ 1223.872123] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1223.872141] mac80211_hwsim_new_radio+0x352/0x4250 [ 1223.872151] ? ____sys_sendmsg+0x70d/0x870 [ 1223.872161] ? ___sys_sendmsg+0xf3/0x170 [ 1223.872170] ? __sys_sendmsg+0xe5/0x1b0 [ 1223.872181] ? do_syscall_64+0x33/0x40 [ 1223.872193] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1223.872203] ? __lockdep_reset_lock+0x180/0x180 [ 1223.872214] ? lock_acquire+0x197/0x470 [ 1223.872224] ? create_object.isra.0+0x3ad/0xa20 [ 1223.872241] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1223.872254] ? __kmalloc+0x16e/0x390 [ 1223.872269] hwsim_new_radio_nl+0x991/0x1080 [ 1223.872284] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1223.872308] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1223.872319] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1223.872335] genl_family_rcv_msg_doit+0x22d/0x330 [ 1223.872349] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1223.872360] ? cap_capable+0x1d6/0x240 [ 1223.872382] ? ns_capable+0xe2/0x110 [ 1223.872396] genl_rcv_msg+0x33c/0x5a0 [ 1223.872409] ? genl_get_cmd+0x480/0x480 [ 1223.872421] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1223.872436] ? lock_release+0x680/0x680 [ 1223.872448] ? __lockdep_reset_lock+0x180/0x180 [ 1223.872462] netlink_rcv_skb+0x14b/0x430 [ 1223.872473] ? genl_get_cmd+0x480/0x480 [ 1223.872484] ? netlink_ack+0xab0/0xab0 [ 1223.872505] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1223.872519] ? is_vmalloc_addr+0x7b/0xb0 [ 1223.872534] genl_rcv+0x24/0x40 [ 1223.872544] netlink_unicast+0x549/0x7f0 [ 1223.872559] ? netlink_attachskb+0x870/0x870 [ 1223.872569] ? __virt_addr_valid+0x128/0x350 [ 1223.872588] netlink_sendmsg+0x90f/0xdf0 [ 1223.872604] ? netlink_unicast+0x7f0/0x7f0 [ 1223.872623] ? netlink_unicast+0x7f0/0x7f0 [ 1223.872635] __sock_sendmsg+0x154/0x190 [ 1223.872647] ____sys_sendmsg+0x70d/0x870 [ 1223.872660] ? sock_write_iter+0x3d0/0x3d0 [ 1223.872669] ? do_recvmmsg+0x6d0/0x6d0 [ 1223.872680] ? perf_trace_lock+0xac/0x490 [ 1223.872696] ? __lockdep_reset_lock+0x180/0x180 [ 1223.872706] ? perf_trace_lock+0xac/0x490 [ 1223.872716] ? SOFTIRQ_verbose+0x10/0x10 [ 1223.872730] ___sys_sendmsg+0xf3/0x170 [ 1223.872743] ? sendmsg_copy_msghdr+0x160/0x160 [ 1223.872759] ? lock_downgrade+0x6d0/0x6d0 [ 1223.872773] ? find_held_lock+0x2c/0x110 [ 1223.872792] ? __fget_files+0x296/0x4c0 [ 1223.872811] ? __fget_light+0xea/0x290 [ 1223.872828] __sys_sendmsg+0xe5/0x1b0 [ 1223.872840] ? __sys_sendmsg_sock+0x40/0x40 [ 1223.872850] ? rcu_read_lock_any_held+0x75/0xa0 [ 1223.872875] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1223.872886] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1223.872895] ? trace_hardirqs_on+0x5b/0x180 [ 1223.872910] do_syscall_64+0x33/0x40 [ 1223.872922] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1223.872930] RIP: 0033:0x7f59b4343b19 [ 1223.872943] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1223.872949] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1223.872962] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 1223.872968] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1223.872975] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1223.872981] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1223.872988] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 [ 1224.117789] FAULT_INJECTION: forcing a failure. [ 1224.117789] name failslab, interval 1, probability 0, space 0, times 0 [ 1224.117814] CPU: 1 PID: 10582 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 1224.117826] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1224.117834] Call Trace: [ 1224.117859] dump_stack+0x107/0x167 [ 1224.117887] should_fail.cold+0x5/0xa [ 1224.117913] ? __kernfs_new_node+0xd4/0x860 [ 1224.117938] should_failslab+0x5/0x20 [ 1224.117958] kmem_cache_alloc+0x5b/0x310 [ 1224.118017] __kernfs_new_node+0xd4/0x860 [ 1224.118039] ? find_held_lock+0x2c/0x110 [ 1224.118066] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1224.118088] ? kernfs_add_one+0x36e/0x4d0 [ 1224.118126] ? mutex_lock_io_nested+0xf30/0xf30 [ 1224.118146] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1224.118183] kernfs_create_dir_ns+0x9c/0x230 [ 1224.118212] internal_create_group+0x793/0xb30 [ 1224.118244] ? sysfs_remove_group+0x170/0x170 [ 1224.118274] ? kernfs_put+0x31/0x50 [ 1224.118304] dpm_sysfs_add+0x82/0x290 [ 1224.118326] device_add+0x9b7/0x1bc0 [ 1224.118355] ? devlink_add_symlinks+0x970/0x970 [ 1224.118394] device_create_groups_vargs+0x207/0x280 [ 1224.118421] device_create+0xdc/0x120 [ 1224.118448] ? device_create_groups_vargs+0x280/0x280 [ 1224.118470] ? init_timer_key+0x12a/0x240 [ 1224.118504] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1224.118536] mac80211_hwsim_new_radio+0x352/0x4250 [ 1224.118555] ? ____sys_sendmsg+0x70d/0x870 [ 1224.118572] ? ___sys_sendmsg+0xf3/0x170 [ 1224.118590] ? __sys_sendmsg+0xe5/0x1b0 [ 1224.118609] ? do_syscall_64+0x33/0x40 [ 1224.118631] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1224.118650] ? __lockdep_reset_lock+0x180/0x180 [ 1224.118669] ? lock_acquire+0x197/0x470 [ 1224.118689] ? create_object.isra.0+0x3ad/0xa20 [ 1224.118721] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1224.118745] ? __kmalloc+0x16e/0x390 [ 1224.118773] hwsim_new_radio_nl+0x991/0x1080 [ 1224.118800] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1224.118843] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1224.118863] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1224.118893] genl_family_rcv_msg_doit+0x22d/0x330 [ 1224.118919] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1224.118939] ? cap_capable+0x1d6/0x240 [ 1224.118978] ? ns_capable+0xe2/0x110 [ 1224.119005] genl_rcv_msg+0x33c/0x5a0 [ 1224.119031] ? genl_get_cmd+0x480/0x480 [ 1224.119052] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1224.119081] ? lock_release+0x680/0x680 [ 1224.119101] ? __lockdep_reset_lock+0x180/0x180 [ 1224.119128] netlink_rcv_skb+0x14b/0x430 [ 1224.119148] ? genl_get_cmd+0x480/0x480 [ 1224.119170] ? netlink_ack+0xab0/0xab0 [ 1224.119207] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1224.119227] ? is_vmalloc_addr+0x7b/0xb0 [ 1224.119252] genl_rcv+0x24/0x40 [ 1224.119269] netlink_unicast+0x549/0x7f0 [ 1224.119297] ? netlink_attachskb+0x870/0x870 [ 1224.119316] ? __virt_addr_valid+0x128/0x350 [ 1224.119351] netlink_sendmsg+0x90f/0xdf0 [ 1224.119381] ? netlink_unicast+0x7f0/0x7f0 [ 1224.119418] ? netlink_unicast+0x7f0/0x7f0 [ 1224.119438] __sock_sendmsg+0x154/0x190 [ 1224.119461] ____sys_sendmsg+0x70d/0x870 [ 1224.119486] ? sock_write_iter+0x3d0/0x3d0 [ 1224.119503] ? do_recvmmsg+0x6d0/0x6d0 [ 1224.119524] ? perf_trace_lock+0xac/0x490 [ 1224.119553] ? __lockdep_reset_lock+0x180/0x180 [ 1224.119571] ? perf_trace_lock+0xac/0x490 [ 1224.119590] ? SOFTIRQ_verbose+0x10/0x10 [ 1224.119617] ___sys_sendmsg+0xf3/0x170 [ 1224.119642] ? sendmsg_copy_msghdr+0x160/0x160 [ 1224.119671] ? lock_downgrade+0x6d0/0x6d0 [ 1224.119697] ? find_held_lock+0x2c/0x110 [ 1224.119731] ? __fget_files+0x296/0x4c0 [ 1224.119767] ? __fget_light+0xea/0x290 [ 1224.119799] __sys_sendmsg+0xe5/0x1b0 [ 1224.119820] ? __sys_sendmsg_sock+0x40/0x40 [ 1224.119840] ? rcu_read_lock_any_held+0x75/0xa0 [ 1224.119886] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1224.119906] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1224.119922] ? trace_hardirqs_on+0x5b/0x180 [ 1224.119950] do_syscall_64+0x33/0x40 [ 1224.119973] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1224.119987] RIP: 0033:0x7f59b4343b19 [ 1224.120010] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1224.120022] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1224.120046] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 1224.120058] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1224.120071] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1224.120083] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1224.120096] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 12:06:30 executing program 1: r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) dup(r0) r1 = socket$netlink(0x10, 0x3, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0xd07e2, 0x0) ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r2, 0x8982, &(0x7f00000000c0)={0x0, 'veth1_vlan\x00', {}, 0x2}) ioctl$F2FS_IOC_START_VOLATILE_WRITE(r0, 0xf503, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000011c0)={0x28, 0x10, 0x1, 0x0, 0x0, {}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}, @nested={0xc, 0x0, 0x0, 0x1, [@typed={0x8, 0x10, 0x0, 0x0, @fd=r2}]}]}, 0x28}}, 0x0) syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000300)=[{&(0x7f0000010000)="01434430303101004c494e55582020202020202020202020202020202020202020202020202020204344524f4d202020202020202020202020202020202020202020202020202020000000000000000022000000000000220000000000000000000000000000000000000000000000000000000000000000010000010100000100080800180000000000001813000000000000000000001500000000220017", 0x9f, 0x8000}, {0x0, 0x0, 0x800a800}, {&(0x7f0000010900)="8800170000000000001700080000000008007809140b2a3a0802000001000001010053500701beef005252050181505824016d4100000000416d03000000000000030000000000000000000000000000000054461a010e7809140b2a3a087809140b2a3a087809140b2a3a0843451c0119000000000000190000000000000000ed", 0x81, 0xb800}, {&(0x7f0000000140)="4552ed", 0x3, 0xc800}], 0x0, &(0x7f0000000080)={[{@check_strict}]}) 12:06:30 executing program 6: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x5, 0x0, 0xa418b6d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r1 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ptype\x00') read(r1, &(0x7f00000002c0)=""/225, 0xe1) write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000003c0)={{0x7f, 0x45, 0x4c, 0x46, 0x7f, 0x2, 0x2, 0x0, 0x10000000000, 0x3, 0x3e, 0x1800, 0x3bd, 0x40, 0x31e, 0x6, 0x200, 0x38, 0x1, 0x1f32, 0x800, 0x100}, [{0x70000000, 0x3, 0x0, 0xff, 0x0, 0x0, 0x3, 0x1f}], "", ['\x00', '\x00', '\x00']}, 0x378) r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x4a6c80) r3 = syz_open_procfs(0x0, 0x0) openat$sndseq(0xffffffffffffff9c, &(0x7f0000000280), 0x80) r4 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ptype\x00') r5 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x121142, 0x0) ftruncate(r5, 0xffff) getsockopt$inet_IP_IPSEC_POLICY(r5, 0x0, 0x10, &(0x7f0000000740)={{{@in6=@private0, @in6=@ipv4={""/10, ""/2, @initdev}}}, {{@in6=@private0}, 0x0, @in6=@loopback}}, &(0x7f00000000c0)=0xe8) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000040)=[r1, r0, r2, r3, r4, r0], 0x6) clone3(&(0x7f0000000200)={0x44004100, &(0x7f0000000080), 0x0, &(0x7f0000000100), {0x18}, 0x0, 0x0, 0x0, &(0x7f00000001c0)=[0x0, 0x0], 0x2}, 0x58) ioctl$SNDRV_TIMER_IOCTL_SELECT(r4, 0x40345410, &(0x7f0000000180)={{0x3, 0x1, 0x9, 0x0, 0x4}}) [ 1238.693952] netlink: 'syz-executor.1': attribute type 16 has an invalid length. 12:06:30 executing program 4: r0 = syz_io_uring_setup(0x3c35, &(0x7f0000000180)={0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x2, 0x0, 0x0}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80004, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) r3 = syz_io_uring_setup(0x4ee5, &(0x7f0000000080), &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f0000000100)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r3, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r3, 0x8000000) io_uring_enter(r3, 0x58ab, 0x0, 0x0, 0x0, 0x0) read(r3, &(0x7f0000000080)=""/152, 0x98) r4 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x20000, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x3, 0x50, r4, 0x0) 12:06:30 executing program 0: r0 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x6}}, 0x0, 0x0, 0xffffffffffffffff, 0x8) futex(&(0x7f0000000080), 0x5, 0x0, 0x0, &(0x7f0000000040), 0x20000003) clock_gettime(0x6, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) futex(&(0x7f0000000000), 0x8, 0x2, &(0x7f00000000c0)={0x0, 0x989680}, &(0x7f0000000140)=0x2, 0x0) r2 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0) r3 = openat$cgroup_subtree(r1, &(0x7f0000000200), 0x2, 0x0) ioctl$AUTOFS_IOC_EXPIRE(r3, 0x810c9365, &(0x7f0000000240)={{0xd9d3, 0x7e5}, 0x100, './file0\x00'}) dup2(r2, r3) fallocate(r1, 0x0, 0x0, 0x8000) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x10, r0, 0x8000000) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r4, 0x0, &(0x7f0000000180)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x1, {0x3, r5}}, 0x6) unshare(0x48020200) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, 0xffffffffffffffff, 0x8000000) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0) io_uring_enter(0xffffffffffffffff, 0x820, 0x554, 0x0, &(0x7f0000000380)={[0x5]}, 0x8) syz_io_uring_setup(0x1659, &(0x7f0000003380)={0x0, 0x0, 0x2, 0x1, 0x174}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000003000), &(0x7f0000003400)) 12:06:30 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x12, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 12:06:30 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x2}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000000c0)) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00') readv(r1, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r1, 0xc018937a, &(0x7f0000000180)={{0x1, 0x1, 0x18, r1, {0xba}}, './file0/file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f0000000200)={{0x1, 0x1, 0x18, r2}, './file0/../file0\x00'}) syz_open_procfs(0x0, &(0x7f0000000280)='fd/4\x00') syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100000, &(0x7f0000000440)=ANY=[]) mkdir(&(0x7f0000000300)='./file0/file0\x00', 0x0) mount$bind(&(0x7f00000000c0)='./file0/file0\x00', &(0x7f0000000340)='./file0/../file0\x00', 0x0, 0x17810, 0x0) umount2(&(0x7f0000000040)='./file0/file0\x00', 0xe) unshare(0x48020200) 12:06:30 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 46) 12:06:30 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x8, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) [ 1238.755759] netlink: 'syz-executor.1': attribute type 16 has an invalid length. 12:06:30 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x242e2, 0x0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) writev(r1, &(0x7f0000000240)=[{&(0x7f0000000280)="c8", 0x1}], 0x1) perf_event_open(&(0x7f0000001d80)={0x7, 0x80, 0x0, 0x1, 0x0, 0x0, 0x2}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) madvise(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x2) madvise(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0) [ 1238.869978] FAULT_INJECTION: forcing a failure. [ 1238.869978] name failslab, interval 1, probability 0, space 0, times 0 [ 1238.872540] CPU: 0 PID: 10606 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 1238.873976] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1238.875722] Call Trace: [ 1238.876277] dump_stack+0x107/0x167 [ 1238.877041] should_fail.cold+0x5/0xa [ 1238.877848] ? __kernfs_new_node+0xd4/0x860 [ 1238.878782] should_failslab+0x5/0x20 [ 1238.879570] kmem_cache_alloc+0x5b/0x310 [ 1238.880412] ? perf_trace_lock+0xac/0x490 [ 1238.881281] __kernfs_new_node+0xd4/0x860 [ 1238.882137] ? kernfs_add_one+0x36e/0x4d0 [ 1238.883019] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1238.884015] ? find_held_lock+0x2c/0x110 [ 1238.884876] ? kernfs_find_and_get_ns+0x55/0x70 [ 1238.885839] ? lock_downgrade+0x6d0/0x6d0 [ 1238.886705] ? kernfs_find_and_get_ns+0x21/0x70 [ 1238.887682] kernfs_new_node+0x93/0x120 [ 1238.888512] __kernfs_create_file+0x51/0x350 [ 1238.889448] sysfs_add_file_mode_ns+0x221/0x560 [ 1238.890458] sysfs_merge_group+0x198/0x320 [ 1238.891352] ? sysfs_update_group+0x30/0x30 [ 1238.892309] ? kernfs_put+0x31/0x50 [ 1238.893099] dpm_sysfs_add+0x249/0x290 [ 1238.893938] device_add+0x9b7/0x1bc0 [ 1238.894755] ? devlink_add_symlinks+0x970/0x970 [ 1238.895803] device_create_groups_vargs+0x207/0x280 [ 1238.896871] device_create+0xdc/0x120 [ 1238.897737] ? device_create_groups_vargs+0x280/0x280 [ 1238.898830] ? init_timer_key+0x12a/0x240 [ 1238.899748] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1238.900761] mac80211_hwsim_new_radio+0x352/0x4250 [ 1238.901783] ? ____sys_sendmsg+0x70d/0x870 [ 1238.902658] ? ___sys_sendmsg+0xf3/0x170 [ 1238.903540] ? __sys_sendmsg+0xe5/0x1b0 [ 1238.904360] ? do_syscall_64+0x33/0x40 [ 1238.905162] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1238.906254] ? __lockdep_reset_lock+0x180/0x180 [ 1238.907211] ? lock_acquire+0x197/0x470 [ 1238.908039] ? create_object.isra.0+0x3ad/0xa20 [ 1238.908989] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1238.909967] ? __kmalloc+0x16e/0x390 [ 1238.910756] hwsim_new_radio_nl+0x991/0x1080 [ 1238.911656] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1238.912745] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1238.914109] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1238.915473] genl_family_rcv_msg_doit+0x22d/0x330 [ 1238.916477] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1238.917844] ? cap_capable+0x1d6/0x240 [ 1238.918676] ? ns_capable+0xe2/0x110 [ 1238.919456] genl_rcv_msg+0x33c/0x5a0 [ 1238.920251] ? genl_get_cmd+0x480/0x480 [ 1238.921076] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1238.922151] ? lock_release+0x680/0x680 [ 1238.922989] ? __lockdep_reset_lock+0x180/0x180 [ 1238.923955] netlink_rcv_skb+0x14b/0x430 [ 1238.924799] ? genl_get_cmd+0x480/0x480 [ 1238.925631] ? netlink_ack+0xab0/0xab0 [ 1238.926467] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1238.927427] ? is_vmalloc_addr+0x7b/0xb0 [ 1238.928274] genl_rcv+0x24/0x40 [ 1238.928962] netlink_unicast+0x549/0x7f0 [ 1238.929814] ? netlink_attachskb+0x870/0x870 [ 1238.930745] ? __virt_addr_valid+0x128/0x350 [ 1238.931672] netlink_sendmsg+0x90f/0xdf0 [ 1238.932524] ? netlink_unicast+0x7f0/0x7f0 [ 1238.933417] ? netlink_unicast+0x7f0/0x7f0 [ 1238.934305] __sock_sendmsg+0x154/0x190 [ 1238.935141] ____sys_sendmsg+0x70d/0x870 [ 1238.936002] ? sock_write_iter+0x3d0/0x3d0 [ 1238.936885] ? do_recvmmsg+0x6d0/0x6d0 [ 1238.937703] ? perf_trace_lock+0xac/0x490 [ 1238.938589] ? __lockdep_reset_lock+0x180/0x180 [ 1238.939560] ? perf_trace_lock+0xac/0x490 [ 1238.940412] ? SOFTIRQ_verbose+0x10/0x10 [ 1238.941268] ___sys_sendmsg+0xf3/0x170 [ 1238.942092] ? sendmsg_copy_msghdr+0x160/0x160 [ 1238.943070] ? lock_downgrade+0x6d0/0x6d0 [ 1238.943945] ? find_held_lock+0x2c/0x110 [ 1238.944807] ? __fget_files+0x296/0x4c0 [ 1238.945659] ? __fget_light+0xea/0x290 [ 1238.946481] __sys_sendmsg+0xe5/0x1b0 [ 1238.947284] ? __sys_sendmsg_sock+0x40/0x40 [ 1238.948185] ? rcu_read_lock_any_held+0x75/0xa0 [ 1238.949186] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1238.950282] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1238.951359] ? trace_hardirqs_on+0x5b/0x180 [ 1238.952284] do_syscall_64+0x33/0x40 [ 1238.953074] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1238.954153] RIP: 0033:0x7f59b4343b19 [ 1238.954949] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1238.958788] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1238.960352] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 1238.961815] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1238.963304] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1238.964763] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1238.966257] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 12:06:30 executing program 4: syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) r0 = syz_mount_image$vfat(&(0x7f0000000380), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x900020, &(0x7f0000000900)=ANY=[]) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x62) r2 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) perf_event_open(&(0x7f0000000280)={0x4, 0x80, 0x8, 0x0, 0x6, 0x7, 0x0, 0x1f, 0x8, 0x2, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x2, @perf_config_ext={0x3f, 0x3}, 0x100, 0x0, 0x2, 0x8, 0x0, 0x8, 0x400, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xb, r1, 0x0) r3 = syz_open_dev$vcsn(&(0x7f0000000240), 0xfffffffffffffffd, 0x204a80) io_submit(0x0, 0x2, &(0x7f0000000480)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x8, 0xf1, r1, &(0x7f0000000040)="3c48b846cc13c5dd6e439617a32759a0aa85153e783601501eeff8aa5a2840b91928e9d16bae1f6d049ff0ea896ecd2da2561af8cafc9c1f2c6abdf96b18fa3bd6cc81f11ab2cf1b0c7df3cb2bc8ed4c6cb2dc752299f94cb7f815160271ab8838f0756a55274983195f0607bcf813895e82be1211f7be20dc304dadff3728", 0x7f, 0xfff, 0x0, 0x2, r2}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x2, 0x0, r3, &(0x7f00000003c0)="2e28f784c6406c9d0645d710c0174f047275a221c167209e708d8d89b1dc39ccb2845d3d3f5e267b2dc2525cfad4554bb0a59b36d7b8263fd2d26dbfa46248c2a309d94a6e3d04f200a19b63e3081715afe4da1a52995fe9a61c0258ba91422abc696396f229da781852212c87c4518c4173f99a8ba198b7f7b80c8b18ef4c5959aaa756f7729e4b", 0x88, 0x9, 0x0, 0x1, r2}]) setfsgid(0xee01) ioctl$FS_IOC_ADD_ENCRYPTION_KEY(0xffffffffffffffff, 0xc0506617, 0x0) ioctl$EXT4_IOC_SWAP_BOOT(r3, 0x6611) unlinkat(r0, &(0x7f00000004c0)='./file0\x00', 0x200) ioctl$sock_SIOCSIFVLAN_SET_VLAN_NAME_TYPE_CMD(0xffffffffffffffff, 0x8983, &(0x7f00000001c0)={0x6, 'ip6gretap0\x00', {0xe6}, 0x200}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000140)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = open(&(0x7f0000000180)='./file0\x00', 0x240880, 0x0) mkdirat(r4, &(0x7f0000000200)='./file0\x00', 0x86) 12:06:30 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x13, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 12:06:30 executing program 1: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x948}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r1 = ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r0, 0xc0189373, &(0x7f0000001400)={{0x1, 0x1, 0x18, r1, {0xb9}}, './file1\x00'}) write(r0, &(0x7f0000000380)="02", 0x1) 12:06:30 executing program 1: pipe(&(0x7f0000000480)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$FIGETBSZ(r1, 0x2, &(0x7f0000000200)) r2 = syz_open_dev$vcsn(&(0x7f0000000a40), 0x0, 0x0) ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f0000000000)) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$bt_l2cap_L2CAP_OPTIONS(r2, 0x6, 0x1, &(0x7f0000000000)={0x0, 0x0, 0xfc01, 0x0, 0x77, 0x0, 0x1}, 0xc) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) move_pages(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fsetxattr$security_ima(r2, &(0x7f0000000140), &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], 0x54, 0x1) r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000180), 0x180, 0x0) ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f00000007c0)={0x53, 0xfffffffffffffffd, 0x6, 0x20, @scatter={0x3, 0x0, &(0x7f0000000640)=[{&(0x7f0000000040)=""/221, 0xdd}, {&(0x7f00000002c0)=""/65, 0x41}, {&(0x7f0000000600)=""/57, 0x39}]}, &(0x7f0000000680)="a6ffe2520bec", &(0x7f00000006c0)=""/177, 0x4, 0x4, 0x0, &(0x7f0000000780)}) preadv(r0, &(0x7f0000000440)=[{&(0x7f00000001c0)=""/3, 0x3}, {&(0x7f0000000340)=""/201, 0xc9}, {&(0x7f0000000240)=""/114, 0x72}], 0x3, 0x3, 0x1) ioctl$LOOP_CTL_ADD(r3, 0x4c80, 0x0) r4 = socket$inet6_udp(0xa, 0x2, 0x0) r5 = dup2(r4, r4) connect$inet6(r5, 0x0, 0x0) ioctl$LOOP_CTL_REMOVE(r5, 0x4c81, 0xb) r6 = ioctl$LOOP_CTL_GET_FREE(r3, 0x4c82) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r6) 12:06:30 executing program 4: syz_usb_connect$cdc_ecm(0x0, 0x4d, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}, 0x1c280}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) timer_create(0x2, &(0x7f0000000240)={0x0, 0xb, 0x4}, &(0x7f0000000040)) openat$ttyS3(0xffffffffffffff9c, &(0x7f00000001c0), 0x280400, 0x0) kcmp(0x0, 0x0, 0x6, 0xffffffffffffffff, 0xffffffffffffffff) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) timer_create(0x3, &(0x7f0000000000)={0x0, 0x1c, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000040)=0x0) timer_settime(r0, 0x0, &(0x7f0000000480)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000100)={0x0, 0x0}) clock_gettime(0x0, &(0x7f0000000300)={0x0, 0x0}) timer_settime(r0, 0x0, &(0x7f0000000340)={{0x77359400}, {r3, r4+60000000}}, 0x0) capset(&(0x7f0000000180)={0x20080522, r2}, &(0x7f00000002c0)={0x40, 0x2, 0xfffffaf2, 0x6, 0xffffffff, 0x40}) sendmsg$nl_generic(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={0x14, 0x16, 0xd01}, 0x14}}, 0x0) read(r1, &(0x7f0000000080)=""/65, 0x41) timer_gettime(r0, &(0x7f0000000080)) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 12:06:30 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 47) [ 1239.660272] FAULT_INJECTION: forcing a failure. [ 1239.660272] name failslab, interval 1, probability 0, space 0, times 0 [ 1239.662675] CPU: 0 PID: 10642 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 1239.664190] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1239.665949] Call Trace: [ 1239.666538] dump_stack+0x107/0x167 [ 1239.667319] should_fail.cold+0x5/0xa [ 1239.668127] ? __kernfs_new_node+0xd4/0x860 [ 1239.669033] should_failslab+0x5/0x20 [ 1239.669822] kmem_cache_alloc+0x5b/0x310 [ 1239.670704] ? perf_trace_lock+0xac/0x490 [ 1239.671574] __kernfs_new_node+0xd4/0x860 [ 1239.672440] ? kernfs_add_one+0x36e/0x4d0 [ 1239.673322] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1239.674318] ? find_held_lock+0x2c/0x110 [ 1239.675176] ? kernfs_find_and_get_ns+0x55/0x70 [ 1239.676151] ? lock_downgrade+0x6d0/0x6d0 [ 1239.677027] ? kernfs_find_and_get_ns+0x21/0x70 [ 1239.678008] kernfs_new_node+0x93/0x120 [ 1239.678870] __kernfs_create_file+0x51/0x350 [ 1239.679808] sysfs_add_file_mode_ns+0x221/0x560 [ 1239.680805] sysfs_merge_group+0x198/0x320 [ 1239.681682] ? sysfs_update_group+0x30/0x30 [ 1239.682599] ? kernfs_put+0x31/0x50 [ 1239.683354] dpm_sysfs_add+0x249/0x290 [ 1239.684171] device_add+0x9b7/0x1bc0 [ 1239.684945] ? devlink_add_symlinks+0x970/0x970 [ 1239.685932] device_create_groups_vargs+0x207/0x280 [ 1239.687002] device_create+0xdc/0x120 [ 1239.687805] ? device_create_groups_vargs+0x280/0x280 [ 1239.688897] ? init_timer_key+0x12a/0x240 [ 1239.689787] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1239.690822] mac80211_hwsim_new_radio+0x352/0x4250 [ 1239.691837] ? ____sys_sendmsg+0x70d/0x870 [ 1239.692711] ? ___sys_sendmsg+0xf3/0x170 [ 1239.693554] ? __sys_sendmsg+0xe5/0x1b0 [ 1239.694383] ? do_syscall_64+0x33/0x40 [ 1239.695200] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1239.696298] ? __lockdep_reset_lock+0x180/0x180 [ 1239.697272] ? lock_acquire+0x197/0x470 [ 1239.698101] ? create_object.isra.0+0x3ad/0xa20 [ 1239.699127] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1239.700105] ? __kmalloc+0x16e/0x390 [ 1239.700886] hwsim_new_radio_nl+0x991/0x1080 [ 1239.701805] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1239.702907] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1239.704272] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1239.705625] genl_family_rcv_msg_doit+0x22d/0x330 [ 1239.706664] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1239.708024] ? cap_capable+0x1d6/0x240 [ 1239.708861] ? ns_capable+0xe2/0x110 [ 1239.709638] genl_rcv_msg+0x33c/0x5a0 [ 1239.710453] ? genl_get_cmd+0x480/0x480 [ 1239.711275] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1239.712371] ? lock_release+0x680/0x680 [ 1239.713194] ? __lockdep_reset_lock+0x180/0x180 [ 1239.714195] netlink_rcv_skb+0x14b/0x430 [ 1239.715039] ? genl_get_cmd+0x480/0x480 [ 1239.715874] ? netlink_ack+0xab0/0xab0 [ 1239.716700] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1239.717657] ? is_vmalloc_addr+0x7b/0xb0 [ 1239.718516] genl_rcv+0x24/0x40 [ 1239.719200] netlink_unicast+0x549/0x7f0 [ 1239.720064] ? netlink_attachskb+0x870/0x870 [ 1239.720982] ? __virt_addr_valid+0x128/0x350 [ 1239.721913] netlink_sendmsg+0x90f/0xdf0 [ 1239.722774] ? netlink_unicast+0x7f0/0x7f0 [ 1239.723664] ? netlink_unicast+0x7f0/0x7f0 [ 1239.724548] __sock_sendmsg+0x154/0x190 [ 1239.725384] ____sys_sendmsg+0x70d/0x870 [ 1239.726248] ? sock_write_iter+0x3d0/0x3d0 [ 1239.727114] ? do_recvmmsg+0x6d0/0x6d0 [ 1239.727920] ? perf_trace_lock+0xac/0x490 [ 1239.728788] ? __lockdep_reset_lock+0x180/0x180 [ 1239.729755] ? perf_trace_lock+0xac/0x490 [ 1239.730617] ? SOFTIRQ_verbose+0x10/0x10 [ 1239.731477] ___sys_sendmsg+0xf3/0x170 [ 1239.732284] ? sendmsg_copy_msghdr+0x160/0x160 [ 1239.733239] ? lock_downgrade+0x6d0/0x6d0 [ 1239.734102] ? find_held_lock+0x2c/0x110 [ 1239.734976] ? __fget_files+0x296/0x4c0 [ 1239.735820] ? __fget_light+0xea/0x290 [ 1239.736641] __sys_sendmsg+0xe5/0x1b0 [ 1239.737432] ? __sys_sendmsg_sock+0x40/0x40 [ 1239.738344] ? rcu_read_lock_any_held+0x75/0xa0 [ 1239.739330] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1239.740427] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1239.741515] ? trace_hardirqs_on+0x5b/0x180 [ 1239.742427] do_syscall_64+0x33/0x40 [ 1239.743214] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1239.744278] RIP: 0033:0x7f59b4343b19 [ 1239.745064] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1239.748859] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1239.750438] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 1239.751920] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1239.753392] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1239.754898] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1239.756369] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 12:06:47 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x9, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 12:06:47 executing program 6: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x4200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x40000000000000}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) readv(0xffffffffffffffff, &(0x7f0000000280)=[{0x0}], 0x1) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) r1 = open_tree(0xffffffffffffffff, &(0x7f0000000240)='./file0\x00', 0x0) sendmsg$nl_xfrm(r1, &(0x7f0000000340)={&(0x7f0000001600)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000016c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="400000001f0020002cbd0000008000000001000004d20a00050000005ec72ab9e00000000000000000030000000000000000000062"], 0x40}, 0x1, 0x0, 0x0, 0x80}, 0x240400c5) sendmsg$nl_xfrm(r0, &(0x7f0000002e00)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000600)=@updsa={0x184, 0x10, 0x1, 0x0, 0x0, {{@in6=@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0xd}}, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x0, 0x32}, @in6=@private0, {}, {}, {}, 0x0, 0x0, 0xa, 0x4}, [@algo_crypt={0x58, 0x2, {{'cbc(aes)\x00'}, 0x80, "0f24aa6b13c2e62f3556b1cbcfeac2a0"}}, @extra_flags={0x8, 0x18, 0xfd}, @address_filter={0x28, 0x1a, {@in=@multicast1, @in=@remote, 0xa, 0x8, 0x80}}, @lastused={0xc}]}, 0x184}}, 0x0) sendmsg$DEVLINK_CMD_SB_GET(r1, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="425b52ee81368fcbc5ba1c2285c55336e616917a96d4720a0a9add5c971dbdc94c4560931e89a14e8f9447b2b4ae73f0f94058ec45d6ef7242dd345c0ddd2ba5f4f908db0aae86c3391a0091737b41f03b8a4259372118576143ad9f0ce7abbf1aefd60c20211ddbf3e3540a3b412e005fa59afb877794f5b6a6a68b", @ANYRES16=0x0, @ANYBLOB="00022dbd7000fedbdf250b000000080001007063690011000200303030303a30303a31302e300000000008000b000100696d0000000f0002006e6574646576736d6d30000008000b008000e2ff070001007063690011000200303030303a30303a31302e3000000071668aa461a6c4d154bf030d3a53cf0008000b00aeffffff"], 0x84}}, 0x24048015) r2 = creat(&(0x7f0000000080)='./file0\x00', 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r2, 0xc018937e, &(0x7f00000002c0)={{0x1, 0x1, 0x18, r1, @in_args={0x2}}, './file1\x00'}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x2400, 0x9) symlinkat(&(0x7f0000000100)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000140)='./file0\x00') socket$nl_xfrm(0x10, 0x3, 0x6) creat(&(0x7f0000000040)='./file0\x00', 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000001ac0)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) syz_io_uring_setup(0x21, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000180)=0x0, &(0x7f0000002a40)) syz_io_uring_submit(r4, 0x0, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0) 12:06:47 executing program 5: r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000140), 0x140, 0x0) sendmsg$ETHTOOL_MSG_STRSET_GET(r0, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000380)={&(0x7f00000001c0)={0x190, 0x0, 0x0, 0x70bd25, 0x25dfdbfb, {}, [@ETHTOOL_A_STRSET_COUNTS_ONLY={0x4}, @ETHTOOL_A_STRSET_STRINGSETS={0x178, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}]}, {0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}]}, {0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8b02922a5574ee9f}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}]}, {0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}]}, {0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0xf}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x3}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}]}, {0x44, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x6}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}]}, {0x2c, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x1}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x7}]}, {0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x2}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0xe}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x8}]}, {0x24, 0x1, 0x0, 0x1, [@ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x4}, @ETHTOOL_A_STRINGSET_ID={0x8}, @ETHTOOL_A_STRINGSET_ID={0x8, 0x1, 0x5}]}]}]}, 0x190}, 0x1, 0x0, 0x0, 0x7f5a2964feb3ea46}, 0x400800c) preadv(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000080)=""/121, 0x79}], 0x1, 0x1, 0x0) 12:06:47 executing program 1: stat(&(0x7f0000000040)='.\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0}) r1 = socket$inet(0x2, 0xa, 0x0) quotactl(0xfffffffffffffffe, &(0x7f0000000000)='./file0\x00', r0, &(0x7f0000000080)="18a7bc1b36f550e9d93ec7ad60ed551798a29005e4a7189f51b4f1f621341b0ececc5dc29a2e910b3664711c24643cbaf693ecd0b5cdecdd0ae78b32daed47756b4e5e61a771d0a3bac40485e6bb233f7e909592fbeb5d94e1a8ba414f20ad43bc9952141c84831811734c247e460dbfc6a37129d25c0091f1533704ee104bbce514b41e04a30e66b3c6a2269f508968cb576df60816401263c6582abae15c22ec1d813b8b0ea854d99aafbea2424caa89ca") ioctl$sock_inet_SIOCGIFNETMASK(r1, 0x891c, &(0x7f00000001c0)={'syz_tun\x00', {0x2, 0x0, @empty}}) [ 1256.089833] FAULT_INJECTION: forcing a failure. [ 1256.089833] name failslab, interval 1, probability 0, space 0, times 0 [ 1256.091394] CPU: 1 PID: 10661 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 1256.092282] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1256.093354] Call Trace: [ 1256.093715] dump_stack+0x107/0x167 [ 1256.094204] should_fail.cold+0x5/0xa [ 1256.094724] ? __kernfs_new_node+0xd4/0x860 [ 1256.095288] should_failslab+0x5/0x20 [ 1256.095794] kmem_cache_alloc+0x5b/0x310 [ 1256.096331] ? perf_trace_lock+0xac/0x490 [ 1256.096885] __kernfs_new_node+0xd4/0x860 [ 1256.097430] ? kernfs_add_one+0x36e/0x4d0 [ 1256.097983] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1256.098635] ? find_held_lock+0x2c/0x110 [ 1256.099198] ? kernfs_find_and_get_ns+0x55/0x70 [ 1256.099802] ? lock_downgrade+0x6d0/0x6d0 [ 1256.100340] ? kernfs_find_and_get_ns+0x21/0x70 [ 1256.100958] kernfs_new_node+0x93/0x120 [ 1256.101473] __kernfs_create_file+0x51/0x350 [ 1256.102056] sysfs_add_file_mode_ns+0x221/0x560 [ 1256.102680] sysfs_merge_group+0x198/0x320 [ 1256.103226] ? sysfs_update_group+0x30/0x30 [ 1256.103795] ? kernfs_put+0x31/0x50 [ 1256.104274] dpm_sysfs_add+0x249/0x290 [ 1256.104780] device_add+0x9b7/0x1bc0 [ 1256.105275] ? devlink_add_symlinks+0x970/0x970 [ 1256.105901] device_create_groups_vargs+0x207/0x280 [ 1256.106560] device_create+0xdc/0x120 [ 1256.107049] ? device_create_groups_vargs+0x280/0x280 [ 1256.107736] ? init_timer_key+0x12a/0x240 [ 1256.108293] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1256.108945] mac80211_hwsim_new_radio+0x352/0x4250 [ 1256.109614] ? ____sys_sendmsg+0x70d/0x870 [ 1256.110165] ? ___sys_sendmsg+0xf3/0x170 [ 1256.110723] ? __sys_sendmsg+0xe5/0x1b0 [ 1256.111255] ? do_syscall_64+0x33/0x40 [ 1256.111794] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1256.112512] ? __lockdep_reset_lock+0x180/0x180 [ 1256.113147] ? lock_acquire+0x197/0x470 [ 1256.113687] ? create_object.isra.0+0x3ad/0xa20 [ 1256.114320] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1256.114933] ? __kmalloc+0x16e/0x390 [ 1256.115444] hwsim_new_radio_nl+0x991/0x1080 [ 1256.116051] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1256.116768] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1256.117640] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1256.118549] genl_family_rcv_msg_doit+0x22d/0x330 [ 1256.119169] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1256.120025] ? cap_capable+0x1d6/0x240 [ 1256.120527] ? ns_capable+0xe2/0x110 [ 1256.121019] genl_rcv_msg+0x33c/0x5a0 [ 1256.121506] ? genl_get_cmd+0x480/0x480 [ 1256.122010] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1256.122685] ? lock_release+0x680/0x680 [ 1256.123191] ? __lockdep_reset_lock+0x180/0x180 [ 1256.123783] netlink_rcv_skb+0x14b/0x430 [ 1256.124307] ? genl_get_cmd+0x480/0x480 [ 1256.124842] ? netlink_ack+0xab0/0xab0 [ 1256.125355] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1256.125940] ? is_vmalloc_addr+0x7b/0xb0 [ 1256.126499] genl_rcv+0x24/0x40 [ 1256.126937] netlink_unicast+0x549/0x7f0 [ 1256.127441] ? netlink_attachskb+0x870/0x870 [ 1256.128018] ? __virt_addr_valid+0x128/0x350 [ 1256.128581] netlink_sendmsg+0x90f/0xdf0 [ 1256.129120] ? netlink_unicast+0x7f0/0x7f0 [ 1256.129692] ? netlink_unicast+0x7f0/0x7f0 [ 1256.130247] __sock_sendmsg+0x154/0x190 [ 1256.130787] ____sys_sendmsg+0x70d/0x870 [ 1256.131326] ? sock_write_iter+0x3d0/0x3d0 [ 1256.131884] ? do_recvmmsg+0x6d0/0x6d0 [ 1256.132401] ? perf_trace_lock+0xac/0x490 [ 1256.132952] ? __lockdep_reset_lock+0x180/0x180 [ 1256.133527] ? perf_trace_lock+0xac/0x490 [ 1256.134079] ? SOFTIRQ_verbose+0x10/0x10 [ 1256.134629] ___sys_sendmsg+0xf3/0x170 [ 1256.135115] ? sendmsg_copy_msghdr+0x160/0x160 [ 1256.135725] ? lock_downgrade+0x6d0/0x6d0 [ 1256.136278] ? find_held_lock+0x2c/0x110 [ 1256.136809] ? __fget_files+0x296/0x4c0 [ 1256.137344] ? __fget_light+0xea/0x290 [ 1256.137850] __sys_sendmsg+0xe5/0x1b0 [ 1256.138356] ? __sys_sendmsg_sock+0x40/0x40 [ 1256.138934] ? rcu_read_lock_any_held+0x75/0xa0 [ 1256.139565] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1256.140252] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1256.140940] ? trace_hardirqs_on+0x5b/0x180 [ 1256.141512] do_syscall_64+0x33/0x40 [ 1256.142013] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1256.142709] RIP: 0033:0x7f59b4343b19 [ 1256.143210] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1256.145665] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1256.146672] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 1256.147599] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1256.148544] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1256.149477] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1256.150429] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 12:06:47 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 48) 12:06:47 executing program 0: r0 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) perf_event_open(&(0x7f0000000640)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x6}}, 0x0, 0x0, 0xffffffffffffffff, 0x8) futex(&(0x7f0000000080), 0x5, 0x0, 0x0, &(0x7f0000000040), 0x20000003) clock_gettime(0x6, 0x0) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) futex(&(0x7f0000000000), 0x8, 0x2, &(0x7f00000000c0)={0x0, 0x989680}, &(0x7f0000000140)=0x2, 0x0) r2 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0) r3 = openat$cgroup_subtree(r1, &(0x7f0000000200), 0x2, 0x0) ioctl$AUTOFS_IOC_EXPIRE(r3, 0x810c9365, &(0x7f0000000240)={{0xd9d3, 0x7e5}, 0x100, './file0\x00'}) dup2(r2, r3) fallocate(r1, 0x0, 0x0, 0x8000) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x10, r0, 0x8000000) r5 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(r4, 0x0, &(0x7f0000000180)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x1, {0x3, r5}}, 0x6) unshare(0x48020200) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, 0xffffffffffffffff, 0x8000000) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0) io_uring_enter(0xffffffffffffffff, 0x820, 0x554, 0x0, &(0x7f0000000380)={[0x5]}, 0x8) syz_io_uring_setup(0x1659, &(0x7f0000003380)={0x0, 0x0, 0x2, 0x1, 0x174}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000003000), &(0x7f0000003400)) 12:06:47 executing program 4: r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/vmallocinfo\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r0, 0x0, 0xffe3) getsockopt$packet_int(0xffffffffffffffff, 0x107, 0xa, 0x0, &(0x7f0000001300)) futex(&(0x7f0000000000)=0x1, 0x7, 0x0, 0x0, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) r1 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000080)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r1}}, 0x7f) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x3, 0x0, @fd, 0x0, 0x0, 0x0, {0x4}, 0x1, {0x0, r1}}, 0x7) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_TIMEOUT={0xb, 0x4, 0x0, 0x0, 0x8, &(0x7f00000001c0), 0x1, 0x1, 0x1, {0x0, r1}}, 0x80000001) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000140)=@IORING_OP_LINK_TIMEOUT={0xf, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000040), 0x1, 0x1, 0x0, {0x0, r1}}, 0xffffffff) add_key$fscrypt_v1(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, 0x0, 0x0) keyctl$chown(0x4, 0x0, 0xee01, 0x0) ioctl$F2FS_IOC_RELEASE_VOLATILE_WRITE(0xffffffffffffffff, 0xf504, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x88) execveat(r2, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000) ioctl$BTRFS_IOC_RM_DEV(r2, 0x5000940b, &(0x7f0000000280)={{}, "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"}) r3 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x5206}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) write$rfkill(r3, &(0x7f00000000c0)={0x0, 0x0, 0x3, 0x1}, 0x8) 12:06:47 executing program 3: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x16, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) 12:06:47 executing program 5: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x4080, 0x48) r2 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000300)='./file0\x00', 0x5, 0x7, &(0x7f0000001680)=[{&(0x7f0000000340)="c8c1c63d49dfc1e654ace49b1317e316f20626a689fc662832ec9b90ade03c76a1c20ed161c45f0f26a6e41ec87c3331ecad81de59fcb7948a1a76694f5282aee594523f10a83c1db6ff9f082429947635ce631122995e4afc73e6245700408cbdc2ab75d9d9837a21e75878", 0x6c, 0x3}, {&(0x7f00000003c0)="05478cedb20b15abba0a9a2920d5d544bc6035d42a62582a3f30e32f2ab6db83ac3f95a5a6f0bf124b687b0e408fc09fcef176fa83b4c17d4fd4d408962fc8dcde290fca8e3c5f850e6066ee6e0d110e84c35db5ad417f24b4b9e8cb871d684cf9674ec6ecdcf24c64ad05186feb5449f9b41e97304eef028e9a5cb5be925c3417f47851f557e2056855d924f482b283eb6b545ff2e56d1b1e118344dd78ba2f4228c2d9271b0887535757", 0xab, 0x2}, {&(0x7f0000000480)="198fe02ffd2f1d4815803c4876869c495d1cc1e3f3ab4d9a72237e8d04bab7315da5f03e2c3f9d3cd49e28409bbba9384f684c0366aa4486d9a4b1d3eb9fdd08e01dcdec4246ceb85830f21832", 0x4d, 0x20}, {&(0x7f0000000500)="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", 0x1000}, {&(0x7f0000001500)="e16c691078c0045869b709ba2188013a6cffcad6ed2053f0c00cae55e3754519295e48288de39d5b71d08120030daaf06487fdda0121b3189bd909a707367317b3c0c776cb4a00d2987d01a1f8f33f5ed9ea713084262ff358e13952bc", 0x5d, 0x10000}, {&(0x7f0000001580)="5aa57c2c82158ffb32a2ad53e64ab052923385180cd98481ba6f3db867927ed16da0173b33df0ece59cdbe03ef6af151c905086124a1a6f56ade12239236ceb5215933df9ad51a", 0x47, 0xffffffffffffff55}, {&(0x7f0000001600)="d830f556943a4770596123270211b67e41de8eb3df19213bd134f26274238ced0c2448b420328afe01cc0680a1eb1d6accf78d9234dc646257afb2164389e95e252682861e69a7322a017c55d5196fa599ea4703b2b592170f62f63d8c18239416e524", 0x63, 0x4}], 0x8, &(0x7f0000001740)={[{@numtail}, {@nonumtail}], [{@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]}) r3 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) dup2(0xffffffffffffffff, r3) write(r2, &(0x7f0000000240)="01", 0x1) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x10) r4 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x105142, 0x0) r5 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x105142, 0x0) ftruncate(r5, 0xffff) sendfile(r4, r5, &(0x7f0000000140)=0x240000000, 0x3) sendfile(r0, r1, 0x0, 0x20d315) r6 = socket$netlink(0x10, 0x3, 0x0) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYRES64=r0, @ANYRES16, @ANYRES64=r1, @ANYRESDEC=r6], 0xfdef) getpgid(0x0) socket$packet(0x11, 0x3, 0x300) creat(&(0x7f00000000c0)='./file0\x00', 0x108) 12:06:47 executing program 1: r0 = syz_mount_image$ext4(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(0x0, 0x0, 0x0, 0x173000, 0x0) syz_mount_image$tmpfs(&(0x7f0000000000), 0x0, 0x0, 0x0, 0x0, 0x100000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x248e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000005c0), 0x5}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$SNAPSHOT_PREF_IMAGE_SIZE(0xffffffffffffffff, 0x3312, 0x1f) r1 = openat$zero(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0) unlinkat(r1, &(0x7f0000000540)='./file0/../file0\x00', 0x200) setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x24, &(0x7f0000000000)={@local, @multicast1}, 0xc) fsmount(0xffffffffffffffff, 0x0, 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000002700)='/proc/stat\x00', 0x0, 0x0) r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0) sendfile(r3, r2, &(0x7f0000000040)=0x3, 0x3) recvmmsg$unix(r2, 0x0, 0x0, 0x1, &(0x7f0000001c40)={0x77359400}) mount(0x0, &(0x7f00000002c0)='./file0/../file0\x00', &(0x7f0000000380)='ramfs\x00', 0x0, 0x0) mkdir(0x0, 0x180) lsetxattr$security_capability(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140), &(0x7f00000001c0)=@v1={0x1000000, [{0x80, 0x401}]}, 0xc, 0x3) execveat(r0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000640)=[&(0x7f0000000480)='!\x00', &(0x7f00000004c0)='ramfs\x00', &(0x7f0000000500)='$):\'-)/\x00', 0x0], &(0x7f00000007c0)=[&(0x7f0000000800)='pipefs\x00', &(0x7f00000006c0)='/dev/zero\x00'], 0x1000) mount$bind(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)='./file0/file0\x00', 0x0, 0x1000, 0x0) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0) ioctl$FS_IOC_SETFSLABEL(0xffffffffffffffff, 0x41009432, &(0x7f0000000840)="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") [ 1256.232855] [ 1256.233096] ====================================================== [ 1256.233865] WARNING: possible circular locking dependency detected [ 1256.234642] 5.10.199 #1 Not tainted [ 1256.235077] ------------------------------------------------------ [ 1256.235822] syz-executor.4/10666 is trying to acquire lock: [ 1256.236494] ffff888008d8cb78 ((work_completion)(&hdev->bg_scan_update)){+.+.}-{0:0}, at: __flush_work+0xdd/0xa90 [ 1256.237739] [ 1256.237739] but task is already holding lock: [ 1256.238461] ffffffff85619468 (rfkill_global_mutex){+.+.}-{3:3}, at: rfkill_fop_write+0xff/0x4b0 [ 1256.239516] [ 1256.239516] which lock already depends on the new lock. [ 1256.239516] [ 1256.240480] [ 1256.240480] the existing dependency chain (in reverse order) is: [ 1256.241373] [ 1256.241373] -> #4 (rfkill_global_mutex){+.+.}-{3:3}: [ 1256.242174] __mutex_lock+0x13d/0x10b0 [ 1256.242728] rfkill_register+0x36/0xa10 [ 1256.243274] hci_register_dev+0x42e/0xc00 [ 1256.243850] __vhci_create_device+0x2c8/0x5c0 [ 1256.246164] vhci_open_timeout+0x38/0x50 [ 1256.248289] process_one_work+0x9a9/0x14b0 [ 1256.249046] worker_thread+0x61d/0x1310 [ 1256.249759] kthread+0x38f/0x470 [ 1256.250375] ret_from_fork+0x22/0x30 [ 1256.251047] [ 1256.251047] -> #3 (&data->open_mutex){+.+.}-{3:3}: [ 1256.252030] __mutex_lock+0x13d/0x10b0 [ 1256.252704] vhci_send_frame+0x63/0xa0 [ 1256.253384] hci_send_frame+0x1b9/0x320 [ 1256.254071] hci_tx_work+0x10af/0x1660 [ 1256.254761] process_one_work+0x9a9/0x14b0 [ 1256.255484] worker_thread+0x61d/0x1310 [ 1256.256170] kthread+0x38f/0x470 [ 1256.256766] ret_from_fork+0x22/0x30 [ 1256.257404] [ 1256.257404] -> #2 ((work_completion)(&hdev->tx_work)){+.+.}-{0:0}: [ 1256.258697] __flush_work+0x105/0xa90 [ 1256.259283] hci_dev_do_close+0x131/0x1240 [ 1256.259877] hci_unregister_dev+0x149/0x430 [ 1256.260482] vhci_release+0x70/0xf0 [ 1256.261002] __fput+0x285/0x980 [ 1256.261472] task_work_run+0xe2/0x1a0 [ 1256.262003] do_exit+0xb6f/0x2600 [ 1256.262502] do_group_exit+0x125/0x310 [ 1256.263109] get_signal+0x4bc/0x22f0 [ 1256.263688] arch_do_signal_or_restart+0x2b7/0x1990 [ 1256.264443] exit_to_user_mode_prepare+0x10f/0x190 [ 1256.265181] syscall_exit_to_user_mode+0x38/0x1e0 [ 1256.265912] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1256.266666] [ 1256.266666] -> #1 (&hdev->req_lock){+.+.}-{3:3}: [ 1256.267459] __mutex_lock+0x13d/0x10b0 [ 1256.267999] bg_scan_update+0x82/0x500 [ 1256.268526] process_one_work+0x9a9/0x14b0 [ 1256.269072] worker_thread+0x61d/0x1310 [ 1256.269584] kthread+0x38f/0x470 [ 1256.270034] ret_from_fork+0x22/0x30 [ 1256.270600] [ 1256.270600] -> #0 ((work_completion)(&hdev->bg_scan_update)){+.+.}-{0:0}: [ 1256.271604] __lock_acquire+0x29e7/0x5b00 [ 1256.272210] lock_acquire+0x197/0x470 [ 1256.272802] __flush_work+0x105/0xa90 [ 1256.273352] __cancel_work_timer+0x368/0x4c0 [ 1256.274011] hci_request_cancel_all+0x73/0x230 [ 1256.274696] hci_dev_do_close+0xd9/0x1240 [ 1256.275312] hci_rfkill_set_block+0x166/0x1a0 [ 1256.275975] rfkill_set_block+0x1fd/0x540 [ 1256.276579] rfkill_fop_write+0x253/0x4b0 [ 1256.277187] vfs_write+0x29a/0xa70 [ 1256.277729] ksys_write+0x1f6/0x260 [ 1256.278300] do_syscall_64+0x33/0x40 [ 1256.278896] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1256.279637] [ 1256.279637] other info that might help us debug this: [ 1256.279637] [ 1256.280659] Chain exists of: [ 1256.280659] (work_completion)(&hdev->bg_scan_update) --> &data->open_mutex --> rfkill_global_mutex [ 1256.280659] [ 1256.282330] Possible unsafe locking scenario: [ 1256.282330] [ 1256.283068] CPU0 CPU1 [ 1256.283634] ---- ---- [ 1256.284198] lock(rfkill_global_mutex); [ 1256.284703] lock(&data->open_mutex); [ 1256.285487] lock(rfkill_global_mutex); [ 1256.286289] lock((work_completion)(&hdev->bg_scan_update)); [ 1256.287022] [ 1256.287022] *** DEADLOCK *** [ 1256.287022] [ 1256.287758] 1 lock held by syz-executor.4/10666: [ 1256.288332] #0: ffffffff85619468 (rfkill_global_mutex){+.+.}-{3:3}, at: rfkill_fop_write+0xff/0x4b0 [ 1256.289483] [ 1256.289483] stack backtrace: [ 1256.290034] CPU: 1 PID: 10666 Comm: syz-executor.4 Not tainted 5.10.199 #1 [ 1256.290893] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1256.291925] Call Trace: [ 1256.292248] dump_stack+0x107/0x167 [ 1256.292699] check_noncircular+0x263/0x2e0 [ 1256.293219] ? register_lock_class+0xbb/0x17b0 [ 1256.293784] ? print_circular_bug+0x470/0x470 [ 1256.294346] ? find_first_zero_bit+0x94/0xb0 [ 1256.294904] ? alloc_chain_hlocks+0x1ec/0x5a0 [ 1256.295455] __lock_acquire+0x29e7/0x5b00 [ 1256.295972] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1256.296617] ? SOFTIRQ_verbose+0x10/0x10 [ 1256.297123] ? __lockdep_reset_lock+0x180/0x180 [ 1256.297696] ? mark_lock+0xf5/0x2df0 [ 1256.298157] lock_acquire+0x197/0x470 [ 1256.298632] ? __flush_work+0xdd/0xa90 [ 1256.299113] ? lock_release+0x680/0x680 [ 1256.299598] ? __flush_work+0x78c/0xa90 [ 1256.300088] ? lock_downgrade+0x6d0/0x6d0 [ 1256.300600] __flush_work+0x105/0xa90 [ 1256.301067] ? __flush_work+0xdd/0xa90 [ 1256.301544] ? lock_chain_count+0x20/0x20 [ 1256.302049] ? queue_delayed_work_on+0xe0/0xe0 [ 1256.302623] ? mark_lock+0xf5/0x2df0 [ 1256.303072] ? mark_lock+0xf5/0x2df0 [ 1256.303521] ? lock_chain_count+0x20/0x20 [ 1256.304028] ? perf_trace_lock+0xac/0x490 [ 1256.304529] ? lock_chain_count+0x20/0x20 [ 1256.305033] ? mark_held_locks+0x9e/0xe0 [ 1256.305531] __cancel_work_timer+0x368/0x4c0 [ 1256.306061] ? try_to_grab_pending+0xe0/0xe0 [ 1256.306572] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1256.307196] ? cancel_delayed_work+0x24d/0x2b0 [ 1256.307753] ? trace_hardirqs_on+0x5b/0x180 [ 1256.308278] ? cancel_delayed_work+0x1b8/0x2b0 [ 1256.308835] ? cancel_delayed_work_sync+0x20/0x20 [ 1256.309425] hci_request_cancel_all+0x73/0x230 [ 1256.309981] hci_dev_do_close+0xd9/0x1240 [ 1256.310493] ? rfkill_set_block+0x18f/0x540 [ 1256.311023] ? hci_dev_open+0x350/0x350 [ 1256.311506] ? mark_held_locks+0x9e/0xe0 [ 1256.311999] ? trace_hardirqs_on+0x5b/0x180 [ 1256.312531] hci_rfkill_set_block+0x166/0x1a0 [ 1256.313080] ? hci_power_off+0x20/0x20 [ 1256.313559] rfkill_set_block+0x1fd/0x540 [ 1256.314066] rfkill_fop_write+0x253/0x4b0 [ 1256.314587] ? rfkill_sync_work+0xa0/0xa0 [ 1256.315102] ? security_file_permission+0x24e/0x570 [ 1256.315720] ? rfkill_sync_work+0xa0/0xa0 [ 1256.316224] vfs_write+0x29a/0xa70 [ 1256.316661] ksys_write+0x1f6/0x260 [ 1256.317106] ? __ia32_sys_read+0xb0/0xb0 [ 1256.317606] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1256.318242] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1256.318878] do_syscall_64+0x33/0x40 [ 1256.319329] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1256.319932] RIP: 0033:0x7f625dac4b19 [ 1256.320381] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1256.322623] RSP: 002b:00007f625b03a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1256.323524] RAX: ffffffffffffffda RBX: 00007f625dbd7f60 RCX: 00007f625dac4b19 [ 1256.324384] RDX: 0000000000000008 RSI: 00000000200000c0 RDI: 0000000000000004 [ 1256.325243] RBP: 00007f625db1ef6d R08: 0000000000000000 R09: 0000000000000000 [ 1256.326118] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1256.326983] R13: 00007ffcd7564f9f R14: 00007f625b03a300 R15: 0000000000022000 12:06:47 executing program 7: r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x14, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}}, 0x14}}, 0x0) (fail_nth: 49) 12:06:47 executing program 6: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x8}, 0x11010}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x4000, 0x0, 0x0, 0x0) mlock2(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$sock_int(r1, 0x1, 0x12, &(0x7f0000000200)=0x33e0, 0x4) mremap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x4000, 0x2, &(0x7f0000ffc000/0x4000)=nil) mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, &(0x7f00000001c0)=0xffffffffffffffff, 0x0, 0x0) madvise(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0) munmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000) setsockopt$inet6_tcp_int(r0, 0x6, 0x6, &(0x7f0000000180)=0x3, 0x4) setsockopt$inet6_tcp_int(r1, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) mbind(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x3, 0x0, 0x5, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x3f, 0x3, 0x1, 0x6, 0x0, 0x400, 0x28002, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x6, 0x2, @perf_bp={&(0x7f0000000240), 0x8}, 0x60, 0xa2, 0x80000000, 0xa, 0x0, 0x2, 0x8000, 0x0, 0xfff, 0x0, 0x8}, 0x0, 0xf, 0xffffffffffffffff, 0x3) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) fallocate(0xffffffffffffffff, 0x3, 0x4077, 0x8000) mbind(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000, &(0x7f0000000140)=0x8001, 0x2, 0x0) name_to_handle_at(0xffffffffffffffff, &(0x7f0000000100)='\x00', &(0x7f0000000300)=@FILEID_NILFS_WITHOUT_PARENT={0x20, 0x61, {0xfffffffffffffffc, 0x0, 0x0, 0x0, 0x7fff}}, &(0x7f0000000340), 0x1400) sendfile(r1, r0, 0x0, 0x9bbb) 12:06:47 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) openat(r1, &(0x7f0000000040)='./file1\x00', 0x101000, 0x44) r2 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r2, 0x0, 0x100000001) [ 1256.415939] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue [ 1256.885298] ieee80211 phy199: Selected rate control algorithm 'minstrel_ht' [ 1256.947337] FAULT_INJECTION: forcing a failure. [ 1256.947337] name failslab, interval 1, probability 0, space 0, times 0 [ 1256.949718] CPU: 0 PID: 10692 Comm: syz-executor.7 Not tainted 5.10.199 #1 [ 1256.951156] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1256.952865] Call Trace: [ 1256.953411] dump_stack+0x107/0x167 [ 1256.954154] should_fail.cold+0x5/0xa [ 1256.954937] ? create_object.isra.0+0x3a/0xa20 [ 1256.955883] should_failslab+0x5/0x20 [ 1256.956669] kmem_cache_alloc+0x5b/0x310 [ 1256.957510] create_object.isra.0+0x3a/0xa20 [ 1256.958428] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1256.959510] kmem_cache_alloc+0x159/0x310 [ 1256.960361] ? lock_release+0x4d1/0x680 [ 1256.961187] __kernfs_new_node+0xd4/0x860 [ 1256.962045] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1256.963041] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1256.964035] ? lock_release+0x4d1/0x680 [ 1256.964888] ? wait_for_completion_io+0x270/0x270 [ 1256.965881] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1256.966977] kernfs_new_node+0x93/0x120 [ 1256.967794] __kernfs_create_file+0x51/0x350 [ 1256.968697] sysfs_add_file_mode_ns+0x221/0x560 [ 1256.969659] sysfs_merge_group+0x198/0x320 [ 1256.970536] ? sysfs_update_group+0x30/0x30 [ 1256.971425] ? kernfs_put+0x31/0x50 [ 1256.972182] dpm_sysfs_add+0x249/0x290 [ 1256.972982] device_add+0x9b7/0x1bc0 [ 1256.973759] ? devlink_add_symlinks+0x970/0x970 [ 1256.974743] device_create_groups_vargs+0x207/0x280 [ 1256.975767] device_create+0xdc/0x120 [ 1256.976548] ? device_create_groups_vargs+0x280/0x280 [ 1256.977605] ? init_timer_key+0x12a/0x240 [ 1256.978484] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 1256.979483] mac80211_hwsim_new_radio+0x352/0x4250 [ 1256.980484] ? ____sys_sendmsg+0x70d/0x870 [ 1256.981341] ? ___sys_sendmsg+0xf3/0x170 [ 1256.982191] ? __sys_sendmsg+0xe5/0x1b0 [ 1256.983024] ? do_syscall_64+0x33/0x40 [ 1256.983828] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1256.984919] ? __lockdep_reset_lock+0x180/0x180 [ 1256.985893] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1256.986870] ? lock_release+0x4d1/0x680 [ 1256.987702] ? stack_trace_save+0x8c/0xc0 [ 1256.988565] ? __kmalloc+0x16e/0x390 [ 1256.989346] hwsim_new_radio_nl+0x991/0x1080 [ 1256.990262] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1256.991389] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1256.992752] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1256.994099] genl_family_rcv_msg_doit+0x22d/0x330 [ 1256.995107] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1256.996457] ? cap_capable+0x1d6/0x240 [ 1256.997263] ? ns_capable+0xe2/0x110 [ 1256.998017] genl_rcv_msg+0x33c/0x5a0 [ 1256.998818] ? genl_get_cmd+0x480/0x480 [ 1256.999628] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1257.000684] ? lock_release+0x680/0x680 [ 1257.001515] ? __lockdep_reset_lock+0x180/0x180 [ 1257.002480] netlink_rcv_skb+0x14b/0x430 [ 1257.003310] ? genl_get_cmd+0x480/0x480 [ 1257.004128] ? netlink_ack+0xab0/0xab0 [ 1257.004939] ? netlink_deliver_tap+0x15a/0xcd0 [ 1257.005874] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1257.006833] ? is_vmalloc_addr+0x7b/0xb0 [ 1257.007670] genl_rcv+0x24/0x40 [ 1257.008348] netlink_unicast+0x549/0x7f0 [ 1257.009182] ? netlink_attachskb+0x870/0x870 [ 1257.010079] ? __virt_addr_valid+0x128/0x350 [ 1257.010996] netlink_sendmsg+0x90f/0xdf0 [ 1257.011835] ? netlink_unicast+0x7f0/0x7f0 [ 1257.012710] ? netlink_unicast+0x7f0/0x7f0 [ 1257.013585] __sock_sendmsg+0x154/0x190 [ 1257.014413] ____sys_sendmsg+0x70d/0x870 [ 1257.015253] ? sock_write_iter+0x3d0/0x3d0 [ 1257.016113] ? do_recvmmsg+0x6d0/0x6d0 [ 1257.016917] ? perf_trace_lock+0xac/0x490 [ 1257.017779] ? __lockdep_reset_lock+0x180/0x180 [ 1257.018750] ? perf_trace_lock+0xac/0x490 [ 1257.019608] ? SOFTIRQ_verbose+0x10/0x10 [ 1257.020439] ___sys_sendmsg+0xf3/0x170 [ 1257.021249] ? sendmsg_copy_msghdr+0x160/0x160 [ 1257.022185] ? lock_release+0x4d1/0x680 [ 1257.023025] ? lock_downgrade+0x6d0/0x6d0 [ 1257.023886] ? __fget_files+0x296/0x4c0 [ 1257.024712] ? __fget_light+0xea/0x290 [ 1257.025514] __sys_sendmsg+0xe5/0x1b0 [ 1257.026296] ? __sys_sendmsg_sock+0x40/0x40 [ 1257.027220] ? fpregs_assert_state_consistent+0xb9/0xe0 [ 1257.028318] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1257.029377] ? trace_hardirqs_on+0x5b/0x180 [ 1257.030271] do_syscall_64+0x33/0x40 [ 1257.031047] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1257.032101] RIP: 0033:0x7f59b4343b19 [ 1257.032869] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1257.036681] RSP: 002b:00007f59b18b9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1257.038246] RAX: ffffffffffffffda RBX: 00007f59b4456f60 RCX: 00007f59b4343b19 [ 1257.039724] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 1257.041217] RBP: 00007f59b18b91d0 R08: 0000000000000000 R09: 0000000000000000 [ 1257.042694] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1257.044160] R13: 00007ffde2f73c1f R14: 00007f59b18b9300 R15: 0000000000022000 [ 1257.079352] ieee80211 phy200: Selected rate control algorithm 'minstrel_ht' VM DIAGNOSIS: 12:06:47 Registers: info registers vcpu 0 RAX=000000000003ffff RBX=0000000000000028 RCX=ffffc900007df000 RDX=0000000000040000 RSI=ffffffff839e622d RDI=0000000000000005 RBP=0000000000000016 RSP=ffff8880511c7050 R8 =0000000000000000 R9 =ffffffff856725cf R10=0000000000000000 R11=0000000000000001 R12=0000000000000102 R13=0000000000000008 R14=ffff8880521bb250 R15=dffffc0000000000 RIP=ffffffff81408ae5 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007fed81820700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 ffffc90000000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f6668bdf000 CR3=00000000454ec000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000008 DR2=0000000000000008 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000600 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffffffffffffffffffff XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000031 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822ca1d1 RDI=ffffffff879e81e0 RBP=ffffffff879e81a0 RSP=ffff88805429f1d0 R8 =0000000000000001 R9 =0000000000000003 R10=0000000000000000 R11=0000000000000001 R12=0000000000000031 R13=0000000000000031 R14=ffffffff879e81a0 R15=dffffc0000000000 RIP=ffffffff822ca228 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f625b03a700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f65f6428545 CR3=000000003ead8000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffffffffffffffffffff XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000