0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="00f0ff7f1d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2793.042187] FAULT_INJECTION: forcing a failure. 10:08:05 executing program 1: ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'}) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) r1 = syz_open_dev$tty20(0xc, 0x4, 0x1) flock(r1, 0x2) io_uring_setup(0x0, &(0x7f00000001c0)={0x0, 0x0, 0x20, 0x0, 0x1cf}) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x2004, @fd_index=0xb, 0x4, 0x0, 0x0, 0x2, 0x0, {0x3}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000640)=@IORING_OP_SENDMSG={0x9, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=@rxrpc=@in6={0x21, 0x2, 0x2, 0x1c, {0xa, 0x4e23, 0x7, @private0={0xfc, 0x0, '\x00', 0x1}, 0x2}}, 0x80, &(0x7f0000000380), 0x0, &(0x7f0000000980)=ANY=[@ANYBLOB="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"/551], 0x190}, 0x0, 0x200080c0, 0x1}, 0x9) r2 = socket$inet(0x2, 0xa, 0x0) ioctl$sock_inet_SIOCGIFNETMASK(r2, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}}) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) ioctl$TIOCL_PASTESEL(r3, 0x4bfb, &(0x7f00000001c0)) ioctl$AUTOFS_IOC_SETTIMEOUT(r3, 0x80049367, &(0x7f0000000040)=0x383b) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f0000000100)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {r0}}, './file0\x00'}) ioctl$sock_inet_SIOCSIFDSTADDR(r3, 0x8918, &(0x7f0000000140)={'syzkaller0\x00', {0x2, 0x0, @multicast2}}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfffffffffffffff8}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) dup3(r2, r0, 0x0) [ 2793.042187] name failslab, interval 1, probability 0, space 0, times 0 [ 2793.044360] CPU: 0 PID: 15623 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 2793.045129] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2793.046050] Call Trace: [ 2793.046350] dump_stack+0x107/0x167 [ 2793.046763] should_fail.cold+0x5/0xa [ 2793.047192] ? skb_clone+0x14f/0x3d0 [ 2793.047619] should_failslab+0x5/0x20 [ 2793.048044] kmem_cache_alloc+0x5b/0x310 [ 2793.048507] skb_clone+0x14f/0x3d0 [ 2793.048917] netlink_broadcast_filtered+0xa08/0xdc0 [ 2793.049493] netlink_broadcast+0x35/0x50 [ 2793.049949] kobject_uevent_env+0x93d/0xf90 [ 2793.050439] driver_bound+0x19d/0x1f0 [ 2793.050874] device_bind_driver+0xae/0xd0 [ 2793.051333] mac80211_hwsim_new_radio+0x3d2/0x4250 [ 2793.051879] ? __nla_validate_parse+0xbcd/0x2b10 [ 2793.052418] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2793.052945] hwsim_new_radio_nl+0x991/0x1080 [ 2793.053433] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2793.054019] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2793.054741] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2793.055475] genl_family_rcv_msg_doit+0x22d/0x330 [ 2793.056015] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2793.056766] ? __sanitizer_cov_trace_pc+0x4/0x60 [ 2793.057298] ? ns_capable+0xe2/0x110 [ 2793.057717] genl_rcv_msg+0x33c/0x5a0 [ 2793.058145] ? genl_get_cmd+0x480/0x480 [ 2793.058585] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2793.059181] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2793.059757] ? netlink_rcv_skb+0x7b/0x430 [ 2793.060230] netlink_rcv_skb+0x14b/0x430 [ 2793.060682] ? genl_get_cmd+0x480/0x480 [ 2793.061126] ? netlink_ack+0xab0/0xab0 [ 2793.061565] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2793.062083] ? is_vmalloc_addr+0x7b/0xb0 [ 2793.062538] genl_rcv+0x24/0x40 [ 2793.062900] netlink_unicast+0x549/0x7f0 [ 2793.063351] ? netlink_attachskb+0x870/0x870 [ 2793.063837] ? __virt_addr_valid+0x128/0x350 [ 2793.064342] netlink_sendmsg+0x90f/0xdf0 [ 2793.064799] ? netlink_unicast+0x7f0/0x7f0 [ 2793.065275] ? netlink_unicast+0x7f0/0x7f0 [ 2793.065751] __sock_sendmsg+0x154/0x190 [ 2793.066193] ____sys_sendmsg+0x70d/0x870 [ 2793.066646] ? sock_write_iter+0x3d0/0x3d0 [ 2793.067114] ? do_recvmmsg+0x6d0/0x6d0 [ 2793.067551] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2793.068132] ? lock_downgrade+0x6d0/0x6d0 [ 2793.068608] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2793.069191] ? SOFTIRQ_verbose+0x10/0x10 [ 2793.069659] ___sys_sendmsg+0xf3/0x170 [ 2793.070096] ? sendmsg_copy_msghdr+0x160/0x160 [ 2793.070615] ? lock_downgrade+0x6d0/0x6d0 [ 2793.071078] ? find_held_lock+0x2c/0x110 [ 2793.071540] ? __fget_files+0x296/0x4c0 [ 2793.071996] ? __fget_light+0xea/0x290 [ 2793.072451] __sys_sendmsg+0xe5/0x1b0 [ 2793.072873] ? __sys_sendmsg_sock+0x40/0x40 [ 2793.073351] ? rcu_read_lock_any_held+0x75/0xa0 [ 2793.073889] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2793.074472] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2793.075043] ? trace_hardirqs_on+0x5b/0x180 [ 2793.075528] do_syscall_64+0x33/0x40 [ 2793.075941] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2793.076525] RIP: 0033:0x7fd0ea82fb19 [ 2793.076939] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2793.078978] RSP: 002b:00007fd0e7da5188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2793.079829] RAX: ffffffffffffffda RBX: 00007fd0ea942f60 RCX: 00007fd0ea82fb19 [ 2793.080632] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2793.081426] RBP: 00007fd0e7da51d0 R08: 0000000000000000 R09: 0000000000000000 [ 2793.082219] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2793.083010] R13: 00007ffedd9ef45f R14: 00007fd0e7da5300 R15: 0000000000022000 [ 2793.088669] FAULT_INJECTION: forcing a failure. [ 2793.088669] name failslab, interval 1, probability 0, space 0, times 0 [ 2793.090017] CPU: 0 PID: 15655 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 2793.090751] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2793.091630] Call Trace: [ 2793.091915] dump_stack+0x107/0x167 [ 2793.092330] should_fail.cold+0x5/0xa [ 2793.092735] ? create_object.isra.0+0x3a/0xa20 [ 2793.093244] should_failslab+0x5/0x20 [ 2793.093650] kmem_cache_alloc+0x5b/0x310 [ 2793.094095] create_object.isra.0+0x3a/0xa20 [ 2793.094567] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2793.095109] kmem_cache_alloc_trace+0x151/0x320 [ 2793.095626] ? dev_uevent_filter+0xd0/0xd0 [ 2793.096072] kobject_uevent_env+0x22b/0xf90 [ 2793.096575] driver_bound+0x19d/0x1f0 [ 2793.096988] device_bind_driver+0xae/0xd0 [ 2793.097449] mac80211_hwsim_new_radio+0x3d2/0x4250 [ 2793.097979] ? __nla_validate_parse+0x2bd/0x2b10 [ 2793.098515] ? kcov_put+0x14/0x40 [ 2793.098901] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2793.099435] hwsim_new_radio_nl+0x991/0x1080 [ 2793.099924] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2793.100519] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2793.101257] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2793.101991] genl_family_rcv_msg_doit+0x22d/0x330 [ 2793.102528] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2793.103265] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2793.103850] ? cap_capable+0x1cd/0x230 [ 2793.104308] ? ns_capable+0xe2/0x110 [ 2793.104732] genl_rcv_msg+0x33c/0x5a0 [ 2793.105168] ? genl_get_cmd+0x480/0x480 [ 2793.105609] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2793.106191] ? lock_release+0x680/0x680 [ 2793.106633] ? netlink_deliver_tap+0xf4/0xcd0 [ 2793.107137] netlink_rcv_skb+0x14b/0x430 [ 2793.107586] ? genl_get_cmd+0x480/0x480 [ 2793.108028] ? netlink_ack+0xab0/0xab0 [ 2793.108481] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2793.108984] ? is_vmalloc_addr+0x7b/0xb0 [ 2793.109435] genl_rcv+0x24/0x40 [ 2793.109805] netlink_unicast+0x549/0x7f0 [ 2793.110265] ? netlink_attachskb+0x870/0x870 [ 2793.110751] ? __virt_addr_valid+0x128/0x350 [ 2793.111259] netlink_sendmsg+0x90f/0xdf0 [ 2793.111711] ? netlink_unicast+0x7f0/0x7f0 [ 2793.112216] ? netlink_unicast+0x7f0/0x7f0 [ 2793.112697] __sock_sendmsg+0x154/0x190 [ 2793.113150] ____sys_sendmsg+0x70d/0x870 [ 2793.113610] ? sock_write_iter+0x3d0/0x3d0 [ 2793.114076] ? do_recvmmsg+0x6d0/0x6d0 [ 2793.114508] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2793.115091] ? lock_downgrade+0x6d0/0x6d0 [ 2793.115558] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2793.116137] ? SOFTIRQ_verbose+0x10/0x10 [ 2793.116602] ___sys_sendmsg+0xf3/0x170 [ 2793.117035] ? sendmsg_copy_msghdr+0x160/0x160 [ 2793.117562] ? lock_downgrade+0x6d0/0x6d0 [ 2793.118039] ? find_held_lock+0x2c/0x110 [ 2793.118498] ? __fget_files+0x296/0x4c0 [ 2793.118951] ? __fget_light+0xea/0x290 [ 2793.119395] __sys_sendmsg+0xe5/0x1b0 [ 2793.119825] ? __sys_sendmsg_sock+0x40/0x40 [ 2793.120322] ? rcu_read_lock_any_held+0x75/0xa0 [ 2793.120865] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2793.121453] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2793.122023] ? trace_hardirqs_on+0x5b/0x180 [ 2793.122511] do_syscall_64+0x33/0x40 [ 2793.122925] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2793.123492] RIP: 0033:0x7fa741f89b19 [ 2793.123910] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2793.125972] RSP: 002b:00007fa73f4ff188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2793.126820] RAX: ffffffffffffffda RBX: 00007fa74209cf60 RCX: 00007fa741f89b19 [ 2793.127615] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2793.128423] RBP: 00007fa73f4ff1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2793.129209] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2793.130010] R13: 00007ffd248a3bcf R14: 00007fa73f4ff300 R15: 0000000000022000 [ 2793.151697] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 2793.154037] System zones: 0-7 [ 2793.156854] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 2793.164497] device veth0_vlan entered promiscuous mode 10:08:05 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) (fail_nth: 81) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2793.213087] device veth0_vlan entered promiscuous mode 10:08:05 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0900001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:08:05 executing program 3: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 16) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:08:05 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="effdffff1d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:08:05 executing program 2: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 74) r2 = creat(0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:08:05 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x46800, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) [ 2793.355202] FAULT_INJECTION: forcing a failure. [ 2793.355202] name failslab, interval 1, probability 0, space 0, times 0 [ 2793.358140] CPU: 1 PID: 15673 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 2793.359566] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2793.361277] Call Trace: [ 2793.361825] dump_stack+0x107/0x167 [ 2793.362587] should_fail.cold+0x5/0xa [ 2793.363383] should_failslab+0x5/0x20 [ 2793.364168] __kmalloc_node_track_caller+0x74/0x3b0 [ 2793.365222] ? alloc_uevent_skb+0x7b/0x210 [ 2793.366108] __alloc_skb+0xb1/0x5b0 [ 2793.366876] alloc_uevent_skb+0x7b/0x210 [ 2793.367728] kobject_uevent_env+0x99a/0xf90 [ 2793.368662] driver_bound+0x19d/0x1f0 [ 2793.369470] device_bind_driver+0xae/0xd0 [ 2793.370338] mac80211_hwsim_new_radio+0x3d2/0x4250 [ 2793.370357] ? ____sys_sendmsg+0x70d/0x870 [ 2793.370374] ? ___sys_sendmsg+0xf3/0x170 [ 2793.370391] ? __sys_sendmsg+0xe5/0x1b0 [ 2793.370417] ? do_syscall_64+0x33/0x40 [ 2793.374265] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2793.375375] ? lock_acquire+0x197/0x470 [ 2793.376228] ? create_object.isra.0+0x3ad/0xa20 [ 2793.377213] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2793.378189] hwsim_new_radio_nl+0x991/0x1080 [ 2793.378216] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2793.378259] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2793.381108] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2793.382455] genl_family_rcv_msg_doit+0x22d/0x330 [ 2793.383443] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2793.384827] ? cap_capable+0x1cd/0x230 [ 2793.384903] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=15685 comm=syz-executor.1 [ 2793.385656] ? ns_capable+0xe2/0x110 [ 2793.385683] genl_rcv_msg+0x33c/0x5a0 [ 2793.388518] ? genl_get_cmd+0x480/0x480 [ 2793.389338] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2793.390422] ? lock_release+0x680/0x680 [ 2793.391262] ? netlink_deliver_tap+0xf4/0xcd0 [ 2793.392218] netlink_rcv_skb+0x14b/0x430 [ 2793.393046] device lo entered promiscuous mode [ 2793.394001] ? genl_get_cmd+0x480/0x480 [ 2793.394027] ? netlink_ack+0xab0/0xab0 [ 2793.395285] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2793.396255] ? is_vmalloc_addr+0x7b/0xb0 [ 2793.397105] genl_rcv+0x24/0x40 [ 2793.397795] netlink_unicast+0x549/0x7f0 [ 2793.398660] ? netlink_attachskb+0x870/0x870 [ 2793.399569] ? __virt_addr_valid+0x128/0x350 [ 2793.400240] device lo left promiscuous mode [ 2793.400502] netlink_sendmsg+0x90f/0xdf0 [ 2793.401898] ? netlink_unicast+0x7f0/0x7f0 [ 2793.402802] ? netlink_unicast+0x7f0/0x7f0 [ 2793.403663] __sock_sendmsg+0x154/0x190 [ 2793.404493] ____sys_sendmsg+0x70d/0x870 [ 2793.405333] ? sock_write_iter+0x3d0/0x3d0 [ 2793.406194] ? do_recvmmsg+0x6d0/0x6d0 [ 2793.406989] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2793.408098] ___sys_sendmsg+0xf3/0x170 [ 2793.408923] ? sendmsg_copy_msghdr+0x160/0x160 [ 2793.409877] ? lock_downgrade+0x6d0/0x6d0 [ 2793.410735] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2793.411821] ? trace_hardirqs_on+0x5b/0x180 [ 2793.412739] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2793.413890] ? __fget_files+0x296/0x4c0 [ 2793.414716] ? __fget_light+0xea/0x290 [ 2793.415556] __sys_sendmsg+0xe5/0x1b0 [ 2793.416362] ? __sys_sendmsg_sock+0x40/0x40 [ 2793.417261] ? io_schedule_timeout+0x140/0x140 [ 2793.418222] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2793.419312] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2793.420378] ? trace_hardirqs_on+0x5b/0x180 [ 2793.421290] do_syscall_64+0x33/0x40 [ 2793.422063] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2793.423109] RIP: 0033:0x7fd0ea82fb19 [ 2793.423887] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2793.427724] RSP: 002b:00007fd0e7da5188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2793.429311] RAX: ffffffffffffffda RBX: 00007fd0ea942f60 RCX: 00007fd0ea82fb19 [ 2793.430811] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2793.432293] RBP: 00007fd0e7da51d0 R08: 0000000000000000 R09: 0000000000000000 [ 2793.433763] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2793.435239] R13: 00007ffedd9ef45f R14: 00007fd0e7da5300 R15: 0000000000022000 10:08:05 executing program 1: r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f0000000200)={0x0, 0x0, 0x0, 'queue1\x00'}) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfffffffffffffffc}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140), 0x40001, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = dup2(r3, r2) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000440)={{0x1, 0x1, 0x18, r1, {0x1}}, './file0\x00'}) r6 = syz_genetlink_get_family_id$batadv(0x0, r4) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r5, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000000}, 0xfffffff3, &(0x7f00000003c0)={&(0x7f0000000380)={0x24, r6, 0x400, 0x70bd29, 0x25dfdbfb, {}, [@BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x1}, @BATADV_ATTR_ORIG_INTERVAL={0xfec6, 0x39, 0x2}]}, 0x24}, 0x1, 0x0, 0x0, 0x200000c0}, 0x14050884) r7 = socket$packet(0x11, 0x3, 0x300) sendmsg$NL80211_CMD_CONTROL_PORT_FRAME(r4, &(0x7f0000000340)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000300)={&(0x7f00000010c0)={0x790, 0x0, 0x2, 0x70bd28, 0x25dfdbfe, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT={0x4}, @NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0xdade}, @NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0x17}, @NL80211_ATTR_FRAME={0x2a2, 0x33, @mgmt_frame=@beacon={@with_ht={{{0x0, 0x0, 0x8, 0x0, 0x0, 0x1, 0x0, 0x1}, {0x22d7}, @device_a, @broadcast, @initial, {0x4, 0x80}}, @ver_80211n={0x0, 0x1, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}}, 0x20, @default, 0x400, @void, @void, @val={0x3, 0x1, 0x8}, @val={0x4, 0x6, {0x5, 0x81, 0x1}}, @void, @void, @val={0x25, 0x3, {0x1, 0x7, 0xde}}, @void, @void, @val={0x2d, 0x1a, {0x80, 0x0, 0x6, 0x0, {0x100000001, 0x7, 0x0, 0x3f7, 0x0, 0x1, 0x1, 0x3}, 0x4, 0x0, 0x7}}, @val={0x72, 0x6}, @val={0x71, 0x7, {0x1, 0x1, 0x0, 0x0, 0x2, 0xa2, 0x1}}, @void, [{0xdd, 0xcc, "5db71bbdbe50c127b55059562a2e91574fd5f51e66dc74a0cdff00e46bc72e463c66170a0b6e18d89041c52b68d5c391324e41b7d87f16a3f277c58c967bb08f07988d30527489f0005a19f4e56def24b7cb7c0b20e62de5fe1c477077682f92ad75d604cf54ce9fd5a92aa171f8eaef8d401605edd760437f2490dce52293d7402bc41f7373320c458dd6eabb612be0d0f9a15c0bc23b7fedf6c7732b5f47eee392bc31668ce4fae548531f20d59b115da20aa29289f60d5c084ac0896a714db68e27d8a11a0105de8d2f3c"}, {0xdd, 0x8d, "96b4c9e5e49b07eea671db70410dc22ca0f6407d102e1bbfbd20ef57d43ebfe9b27b4af0e19144e884741714ed1ac2bec13007aad347695d1c5b62d95dde58b9573d5ef63ae6de18da1ee7d2cf5d4244d581ed376fa12171926bf282e92cf5b643b46b3ff42509220689aa34f9d7be648204600e2bb894bc3bf13f6ab49f4d69b4c6309ee7ef41184e1b010889"}, {0xdd, 0xb6, "9ffe160eeb125d7bcf53d9f3a4fb50f15034d91f4c46641fb7515956aa14a70e06be5750b117c54d6e34216f32514c3acaef4a8f1fb5c8b5fa6811123f73e03ee92b76150aa7052e42812009a035a1cabd9ecb1ac6e9aa6d6e8311d4a244ded5f94cb6d16de5a63b6ae2f8b91bc5839c5712fe26b25c1226761da33392a2df3705bd1640f92f151ec48812065971790bec9d76c11949e5e168170c4fc8511fc1d51a750fda630783f38680fb34b99d40efbb2bdc052e"}, {0xdd, 0x22, "dc2e01eb4e803d8da330d1d0a421d218a680363f02cacaa9c32c41e7ee916abd9bb9"}]}}, @NL80211_ATTR_FRAME={0x28a, 0x33, @mgmt_frame=@reassoc_req={@with_ht={{{0x0, 0x0, 0x2, 0x0, 0x0, 0x1, 0x1, 0x1}, {0xd82}, @device_b, @device_a, @initial, {0x6}}, @ver_80211n={0x0, 0x40, 0x3, 0x3, 0x0, 0x0, 0x1}}, 0x10000, 0x2, @broadcast, {0x0, 0x6, @default_ibss_ssid}, @void, @void, [{0xdd, 0xa7, "06f8ac6205f5b5a78235f0d5eb2d5ec89181086534773375d0e91bb8494217aeb2459b2ecd623a62bcbe4546e9ba8f73d49f3e595adc83d71d9a258e1f6b04f38eeef4cec008fe5f734bbb6a940cba508632b9b867ef7f59a728a52edfc6b16a2b709ded311f782418a1645a15dffcd040859f2bebf77de2047d202fb21a490b6b685c2e16f15688156cd793c844f317c143012e6ac0ea413c7003ae4f8aadf38d5b851fbfc290"}, {0xdd, 0xe3, "8b8e2b31be583defbe6b665ebf1b80635ae98929795a8e2a5047a21f25621cd43b518c87b67045b475fcd129f8ab62d6963819693b513deb54216e4b99f63f0934dd65c65a2c105c7de35b3ca1622ac7bded695a804fae4d5417b6a27200656a23ad8cd4b75d0a70486701040cc39394936ca43e06516d8cd1fab5685152c1174d3b6f9b9c6e58c7eca9358cba8a14d38492b41ddcffa526eb78234a2612f6d362db89877d163301cf32b7ec7e14691a50eaac152cc4f1bbd3847606ba992091d2139c63d7850d704e73e67dd64a91fd479fc4f7d8b6eb06083b82fef5a495609046a5"}, {0xdd, 0xbf, "9e0e489433d40896814481f6575057fa7133bc0d1b0837ab5a8655e4166696fcbcdf7a47f5d937a032c30f0e82b1b1ba8df68dff5a218a9b21af1097a565587a45dcaa8ed44550f733c1f50e693207ecb0477f3fa694563a92516800f6b423581774f79a67d5ca0f3de5b0f184a8163028bd01ab9acbe9bc54b6348b04ea8acc473c9836dd2284605d9e1c8c7b2b490e90c26cef7275f741385a1a91b57393c5b0d8b668286cb4367d7b768aeb68b2212cd8a024e9898bc9b24502edd39917"}, {0xdd, 0x7, "28c6ba85c8a2f4"}]}}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_FRAME={0x20c, 0x33, @data_frame={@qos_ht={{{@type00={{0x0, 0x2, 0x8, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1}, {0x3e6e}, @device_b, @device_a, @from_mac=@broadcast, {0x8, 0x5}}, {0x1, 0x1, 0x2, 0x0, 0x17}}, {@type00={{0x0, 0x2, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x2}, @device_a, @broadcast, @initial, {0x4, 0x40}}, {0x4, 0x1, 0x3, 0x1, 0x18}}}, @ver_80211n={0x0, 0x1f, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1}}, @a_msdu=[{@device_a, @device_b, 0x18, "f697843a560385a13499efa913319c8ec306bf3d196a205a"}, {@device_b, @device_b, 0x33, "fbf1c5d1b005f924b3c163f33fb258db514695c27eaabbfb618aecb6906f326b4754e9c5d75a6adf682c862e0c18389eef483c"}, {@broadcast, @device_a, 0x64, "d934302794ddc6947a1d5d4b4a17f3d7714dfc3ca2d077b9b7f3226a52b751d4a890abf3668d69f84e365210d340a283ad3f19cde7a19578372fc0f74e3bc594f51a469d9732275b2b2fd6929900af622ab7348270a6145198834ddf32bbcdb2283db78f"}, {@device_a, @device_b, 0xe2, "1cc7346ef84868a477ec7d98efa9888492706c0fd12b363e9588c14faae601ab0eaa57bbfdecbf91f2383b3019ff7a161e20a064902ee3888f949860ee27d8f68dd4fd8e4bade6848894f40819304545230df88af5a025597fa6fab8622aa759db1b1d4cd5424665d26fa5b3ac81ce89e81e49dc45a7a061f97ed1a0d9f0a4dc846776bd80805556c64b47406cc5fb3756d22030026f914802ed8de3cc29a4b3ca3956cdd66146badad0756982af6f7c080ee30e2300801c4425837ab7185a63216a154f43f2dc3a5d345a5e39687a3d9165c05863fc065c0975e10d58f9bc275740"}]}}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT={0x4}, @NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0x86dd}]}, 0x790}, 0x1, 0x0, 0x0, 0x20000040}, 0x40010) ioctl$BTRFS_IOC_DEV_REPLACE(r5, 0xca289435, &(0x7f0000000680)={0x2, 0x5, @status={[0x1de, 0x200, 0x1, 0x6321, 0x2, 0xfffffffffffffffc]}, [0x8, 0x7fffffff, 0x2, 0x1000, 0x10001, 0x2e, 0x7208, 0x2, 0xffff, 0x6d1, 0x7, 0xfe7, 0x6, 0x8, 0x200, 0x1, 0x7, 0x6, 0x40, 0x9, 0x8, 0x5, 0x6, 0x6, 0x9e0, 0x7fffffff, 0x3f, 0xfffffffffffffff7, 0x3, 0x0, 0x3, 0x7ff, 0x6, 0xca, 0x3, 0x1, 0xfffffffffffffffd, 0x5, 0x80000000, 0xb87, 0x9, 0x0, 0x0, 0xb4c7, 0x519, 0x2, 0x9, 0x3ff, 0x100000000, 0x5, 0x0, 0x8, 0x7f, 0x6, 0x7, 0x80000000, 0x100000000, 0x1ff, 0xf8a, 0x6, 0x1, 0x7, 0xfec, 0x56a5209]}) getsockopt$packet_buf(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000580)=""/212, &(0x7f00000002c0)=0xd4) r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) setsockopt$packet_add_memb(r7, 0x107, 0x1, &(0x7f0000000100)={r9, 0x3, 0x6}, 0x10) setsockopt$packet_add_memb(r7, 0x107, 0x1, &(0x7f0000000080)={r9, 0x1, 0x6, @dev}, 0x10) sendmsg$BATADV_CMD_GET_BLA_CLAIM(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="02002abd7000fcdbdf250b00000008000300", @ANYRES32=r9, @ANYBLOB="0500290001000000385e2ddccdbfa6a00c2e7069c85feef4cef598f1282d846b"], 0x24}, 0x1, 0x0, 0x0, 0x24040010}, 0x40040) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)={0x1c, 0x5e, 0xc21, 0x0, 0x0, {0x0, 0x2}, [@generic='\x00\x00\x00\x00\x00']}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000001880)={&(0x7f0000000480)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000540)={&(0x7f00000004c0)={0x54, 0x0, 0x10, 0x70bd2c, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_HT_CAPABILITY={0x1e, 0x1f, {0x400, 0x3, 0x1, 0x0, {0x7, 0x8, 0x0, 0x335, 0x0, 0x1, 0x1}, 0x1, 0x2, 0x1}}, @NL80211_ATTR_EXTERNAL_AUTH_SUPPORT={0x4}, @NL80211_ATTR_DISABLE_VHT={0x4}, @NL80211_ATTR_USE_MFP={0x8, 0x42, 0x1}, @NL80211_ATTR_PREV_BSSID={0xa, 0x4f, @from_mac=@device_b}, @NL80211_ATTR_DISABLE_HT={0x4}]}, 0x54}, 0x1, 0x0, 0x0, 0x4040014}, 0x8000) 10:08:05 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000000f00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2793.456392] device lo entered promiscuous mode [ 2793.466104] FAULT_INJECTION: forcing a failure. [ 2793.466104] name failslab, interval 1, probability 0, space 0, times 0 [ 2793.467700] CPU: 0 PID: 15678 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 2793.468479] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2793.469401] Call Trace: [ 2793.469708] dump_stack+0x107/0x167 [ 2793.470117] should_fail.cold+0x5/0xa [ 2793.470546] ? kvmalloc_node+0x119/0x170 [ 2793.470987] should_failslab+0x5/0x20 [ 2793.471406] __kmalloc_node+0x76/0x420 [ 2793.471834] kvmalloc_node+0x119/0x170 [ 2793.472293] bucket_table_alloc.isra.0+0x88/0x490 [ 2793.472809] rhashtable_init+0x341/0x760 [ 2793.473249] rhltable_init+0x1c/0x60 [ 2793.473662] sta_info_init+0x1f/0x110 [ 2793.474075] ieee80211_alloc_hw_nm+0x6a0/0x2320 [ 2793.474577] ? trace_hardirqs_on+0x5b/0x180 [ 2793.475053] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 2793.475588] ? __nla_validate_parse+0x696/0x2b10 [ 2793.476105] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2793.476634] hwsim_new_radio_nl+0x991/0x1080 [ 2793.477109] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2793.477687] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2793.478423] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2793.479166] genl_family_rcv_msg_doit+0x22d/0x330 [ 2793.479702] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2793.480449] ? cap_capable+0x1cd/0x230 [ 2793.480898] ? ns_capable+0xe2/0x110 [ 2793.481316] genl_rcv_msg+0x33c/0x5a0 [ 2793.481744] ? genl_get_cmd+0x480/0x480 [ 2793.482192] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2793.482769] ? lock_release+0x680/0x680 [ 2793.483208] ? netlink_deliver_tap+0xf4/0xcd0 [ 2793.483710] netlink_rcv_skb+0x14b/0x430 [ 2793.484163] ? genl_get_cmd+0x480/0x480 [ 2793.484601] ? netlink_ack+0xab0/0xab0 [ 2793.485045] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2793.485556] ? is_vmalloc_addr+0x7b/0xb0 [ 2793.486014] genl_rcv+0x24/0x40 [ 2793.486382] netlink_unicast+0x549/0x7f0 [ 2793.486835] ? netlink_attachskb+0x870/0x870 [ 2793.487326] ? __virt_addr_valid+0x128/0x350 [ 2793.487825] netlink_sendmsg+0x90f/0xdf0 [ 2793.488294] ? netlink_unicast+0x7f0/0x7f0 [ 2793.488777] ? netlink_unicast+0x7f0/0x7f0 [ 2793.489253] __sock_sendmsg+0x154/0x190 [ 2793.489706] ____sys_sendmsg+0x70d/0x870 [ 2793.490162] ? sock_write_iter+0x3d0/0x3d0 [ 2793.490632] ? do_recvmmsg+0x6d0/0x6d0 [ 2793.491078] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2793.491662] ? lock_downgrade+0x6d0/0x6d0 [ 2793.492132] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2793.492703] ? SOFTIRQ_verbose+0x10/0x10 [ 2793.493161] ___sys_sendmsg+0xf3/0x170 [ 2793.493594] ? sendmsg_copy_msghdr+0x160/0x160 [ 2793.494115] ? lock_downgrade+0x6d0/0x6d0 [ 2793.494588] ? find_held_lock+0x2c/0x110 [ 2793.495050] ? __fget_files+0x296/0x4c0 [ 2793.495511] ? __fget_light+0xea/0x290 [ 2793.495952] __sys_sendmsg+0xe5/0x1b0 [ 2793.496373] ? __sys_sendmsg_sock+0x40/0x40 [ 2793.496855] ? rcu_read_lock_any_held+0x75/0xa0 [ 2793.497367] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2793.497965] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2793.498517] ? trace_hardirqs_on+0x5b/0x180 [ 2793.498999] do_syscall_64+0x33/0x40 [ 2793.499410] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2793.499983] RIP: 0033:0x7f46fba00b19 [ 2793.500387] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2793.502424] RSP: 002b:00007f46f8f76188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2793.503275] RAX: ffffffffffffffda RBX: 00007f46fbb13f60 RCX: 00007f46fba00b19 [ 2793.504067] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2793.504888] RBP: 00007f46f8f761d0 R08: 0000000000000000 R09: 0000000000000000 [ 2793.505677] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2793.506472] R13: 00007ffe81962e7f R14: 00007f46f8f76300 R15: 0000000000022000 10:08:06 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0f00001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2793.519002] device lo left promiscuous mode 10:08:06 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) (fail_nth: 82) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2793.546244] FAULT_INJECTION: forcing a failure. [ 2793.546244] name failslab, interval 1, probability 0, space 0, times 0 [ 2793.547583] CPU: 0 PID: 15680 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 2793.548323] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2793.549226] Call Trace: [ 2793.549513] dump_stack+0x107/0x167 [ 2793.549919] should_fail.cold+0x5/0xa [ 2793.550339] ? kobject_get_path+0xc5/0x1f0 [ 2793.550806] should_failslab+0x5/0x20 [ 2793.551213] __kmalloc+0x72/0x390 [ 2793.551582] ? strlen+0x1e/0xa0 [ 2793.551945] kobject_get_path+0xc5/0x1f0 [ 2793.552403] kobject_uevent_env+0x251/0xf90 [ 2793.552880] driver_bound+0x19d/0x1f0 [ 2793.553298] device_bind_driver+0xae/0xd0 [ 2793.553757] mac80211_hwsim_new_radio+0x3d2/0x4250 [ 2793.554292] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2793.554800] hwsim_new_radio_nl+0x991/0x1080 [ 2793.555276] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2793.555854] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2793.556601] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2793.557351] genl_family_rcv_msg_doit+0x22d/0x330 [ 2793.557869] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2793.558600] ? cap_capable+0x1cd/0x230 [ 2793.559048] ? ns_capable+0xe2/0x110 [ 2793.559462] genl_rcv_msg+0x33c/0x5a0 [ 2793.559888] ? genl_get_cmd+0x480/0x480 [ 2793.560327] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2793.560913] ? lock_release+0x680/0x680 [ 2793.561357] ? netlink_deliver_tap+0xf4/0xcd0 [ 2793.561842] netlink_rcv_skb+0x14b/0x430 [ 2793.562295] ? genl_get_cmd+0x480/0x480 [ 2793.562724] ? netlink_ack+0xab0/0xab0 [ 2793.563176] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2793.563673] ? is_vmalloc_addr+0x7b/0xb0 [ 2793.564134] genl_rcv+0x24/0x40 [ 2793.564497] netlink_unicast+0x549/0x7f0 [ 2793.564962] ? netlink_attachskb+0x870/0x870 [ 2793.565429] ? __virt_addr_valid+0x128/0x350 [ 2793.565935] netlink_sendmsg+0x90f/0xdf0 [ 2793.566374] ? netlink_unicast+0x7f0/0x7f0 [ 2793.566859] ? netlink_unicast+0x7f0/0x7f0 [ 2793.567311] __sock_sendmsg+0x154/0x190 [ 2793.567757] ____sys_sendmsg+0x70d/0x870 [ 2793.568198] ? sock_write_iter+0x3d0/0x3d0 [ 2793.568678] ? do_recvmmsg+0x6d0/0x6d0 [ 2793.569111] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2793.569705] ? lock_downgrade+0x6d0/0x6d0 [ 2793.570173] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2793.570760] ? SOFTIRQ_verbose+0x10/0x10 [ 2793.571218] ___sys_sendmsg+0xf3/0x170 [ 2793.571657] ? sendmsg_copy_msghdr+0x160/0x160 [ 2793.572169] ? lock_downgrade+0x6d0/0x6d0 [ 2793.572652] ? find_held_lock+0x2c/0x110 [ 2793.573116] ? __fget_files+0x296/0x4c0 [ 2793.573572] ? __fget_light+0xea/0x290 [ 2793.574012] __sys_sendmsg+0xe5/0x1b0 [ 2793.574438] ? __sys_sendmsg_sock+0x40/0x40 [ 2793.574933] ? rcu_read_lock_any_held+0x75/0xa0 [ 2793.575471] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2793.576052] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2793.576634] ? trace_hardirqs_on+0x5b/0x180 [ 2793.577122] do_syscall_64+0x33/0x40 [ 2793.577533] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2793.578103] RIP: 0033:0x7fa741f89b19 [ 2793.578530] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2793.580580] RSP: 002b:00007fa73f4ff188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2793.581423] RAX: ffffffffffffffda RBX: 00007fa74209cf60 RCX: 00007fa741f89b19 [ 2793.582216] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2793.583011] RBP: 00007fa73f4ff1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2793.583797] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2793.584599] R13: 00007ffd248a3bcf R14: 00007fa73f4ff300 R15: 0000000000022000 [ 2793.587752] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 2793.610109] System zones: 0-7 10:08:06 executing program 1: msgctl$IPC_RMID(0x0, 0x0) msgctl$IPC_INFO(0x0, 0x3, 0x0) msgctl$IPC_INFO(0x0, 0x3, 0x0) r0 = msgget$private(0x0, 0x0) getpgrp(0x0) recvmmsg$unix(0xffffffffffffffff, &(0x7f0000001b00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000001680)=[@rights={{0x10}}], 0x10}}], 0x1, 0x0, &(0x7f0000001c40)={0x0, 0x989680}) msgrcv(r0, 0x0, 0x0, 0x0, 0x2800) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1cf, 0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000012b00)=ANY=[]) renameat2(r1, 0x0, 0xffffffffffffffff, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f00000002c0)=ANY=[@ANYBLOB="62958be60100000018000000", @ANYRES32=0xffffffffffffffff, @ANYBLOB='?\x00\x00\x00\a\x00\x00\x00./file0\x00']) sendfile(0xffffffffffffffff, r2, &(0x7f0000000300)=0x10001, 0x9) [ 2793.626711] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue 10:08:06 executing program 2: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 75) r2 = creat(0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2793.707744] FAULT_INJECTION: forcing a failure. [ 2793.707744] name failslab, interval 1, probability 0, space 0, times 0 [ 2793.711116] CPU: 1 PID: 15704 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 2793.712553] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2793.714258] Call Trace: [ 2793.714802] dump_stack+0x107/0x167 [ 2793.715570] should_fail.cold+0x5/0xa [ 2793.716392] ? create_object.isra.0+0x3a/0xa20 [ 2793.717354] should_failslab+0x5/0x20 [ 2793.717649] EXT4-fs (loop1): VFS: Can't find ext4 filesystem [ 2793.718135] kmem_cache_alloc+0x5b/0x310 [ 2793.718156] ? find_held_lock+0x2c/0x110 [ 2793.718183] create_object.isra.0+0x3a/0xa20 [ 2793.721402] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2793.722464] kmem_cache_alloc+0x159/0x310 [ 2793.723348] skb_clone+0x14f/0x3d0 [ 2793.724091] netlink_broadcast_filtered+0xa08/0xdc0 [ 2793.725164] netlink_broadcast+0x35/0x50 [ 2793.726009] kobject_uevent_env+0x93d/0xf90 [ 2793.726919] driver_bound+0x19d/0x1f0 [ 2793.727702] device_bind_driver+0xae/0xd0 [ 2793.728594] mac80211_hwsim_new_radio+0x3d2/0x4250 [ 2793.729619] ? ____sys_sendmsg+0x70d/0x870 [ 2793.730489] ? ___sys_sendmsg+0xf3/0x170 [ 2793.731338] ? __sys_sendmsg+0xe5/0x1b0 [ 2793.732158] ? do_syscall_64+0x33/0x40 [ 2793.732978] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2793.734078] ? lock_acquire+0x197/0x470 [ 2793.734892] ? create_object.isra.0+0x3ad/0xa20 [ 2793.735881] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2793.736852] hwsim_new_radio_nl+0x991/0x1080 [ 2793.737782] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2793.738881] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2793.740286] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2793.741652] genl_family_rcv_msg_doit+0x22d/0x330 [ 2793.742668] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2793.744051] ? cap_capable+0x1cd/0x230 [ 2793.744889] ? ns_capable+0xe2/0x110 [ 2793.745678] genl_rcv_msg+0x33c/0x5a0 [ 2793.746482] ? genl_get_cmd+0x480/0x480 [ 2793.747317] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2793.748414] ? lock_release+0x680/0x680 [ 2793.749245] ? netlink_deliver_tap+0xf4/0xcd0 [ 2793.750189] netlink_rcv_skb+0x14b/0x430 [ 2793.751048] ? genl_get_cmd+0x480/0x480 [ 2793.751887] ? netlink_ack+0xab0/0xab0 [ 2793.752724] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2793.753691] ? is_vmalloc_addr+0x7b/0xb0 [ 2793.754550] genl_rcv+0x24/0x40 [ 2793.755237] netlink_unicast+0x549/0x7f0 [ 2793.756109] ? netlink_attachskb+0x870/0x870 [ 2793.757047] ? __virt_addr_valid+0x128/0x350 [ 2793.757987] netlink_sendmsg+0x90f/0xdf0 [ 2793.758839] ? netlink_unicast+0x7f0/0x7f0 [ 2793.759741] ? netlink_unicast+0x7f0/0x7f0 [ 2793.760630] __sock_sendmsg+0x154/0x190 [ 2793.761472] ____sys_sendmsg+0x70d/0x870 [ 2793.762333] ? sock_write_iter+0x3d0/0x3d0 [ 2793.763218] ? do_recvmmsg+0x6d0/0x6d0 [ 2793.764029] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2793.765140] ? lock_downgrade+0x6d0/0x6d0 [ 2793.766007] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2793.767105] ? SOFTIRQ_verbose+0x10/0x10 [ 2793.767960] ___sys_sendmsg+0xf3/0x170 [ 2793.768784] ? sendmsg_copy_msghdr+0x160/0x160 [ 2793.769749] ? lock_downgrade+0x6d0/0x6d0 [ 2793.770628] ? find_held_lock+0x2c/0x110 [ 2793.771498] ? __fget_files+0x296/0x4c0 [ 2793.772371] ? __fget_light+0xea/0x290 [ 2793.773193] __sys_sendmsg+0xe5/0x1b0 [ 2793.773992] ? __sys_sendmsg_sock+0x40/0x40 [ 2793.774896] ? rcu_read_lock_any_held+0x75/0xa0 [ 2793.775903] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2793.777000] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2793.778063] ? trace_hardirqs_on+0x5b/0x180 [ 2793.778971] do_syscall_64+0x33/0x40 [ 2793.779751] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2793.780833] RIP: 0033:0x7fd0ea82fb19 [ 2793.781621] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2793.785475] RSP: 002b:00007fd0e7da5188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2793.787037] RAX: ffffffffffffffda RBX: 00007fd0ea942f60 RCX: 00007fd0ea82fb19 [ 2793.788532] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2793.790033] RBP: 00007fd0e7da51d0 R08: 0000000000000000 R09: 0000000000000000 [ 2793.791505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2793.792992] R13: 00007ffedd9ef45f R14: 00007fd0e7da5300 R15: 0000000000022000 [ 2793.867435] EXT4-fs (loop1): VFS: Can't find ext4 filesystem [ 2793.878572] FAULT_INJECTION: forcing a failure. [ 2793.878572] name failslab, interval 1, probability 0, space 0, times 0 [ 2793.881215] CPU: 1 PID: 15713 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 2793.882596] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2793.884239] Call Trace: [ 2793.884763] dump_stack+0x107/0x167 [ 2793.885492] should_fail.cold+0x5/0xa [ 2793.886253] ? radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 2793.887396] should_failslab+0x5/0x20 [ 2793.888148] kmem_cache_alloc+0x5b/0x310 [ 2793.888991] radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 2793.890098] idr_get_free+0x4b5/0x8f0 [ 2793.890877] idr_alloc_u32+0x170/0x2d0 [ 2793.891649] ? __fprop_inc_percpu_max+0x130/0x130 [ 2793.892619] ? lock_acquire+0x197/0x470 [ 2793.893408] ? __kernfs_new_node+0xff/0x860 [ 2793.894272] idr_alloc_cyclic+0x102/0x230 [ 2793.895102] ? idr_alloc+0x130/0x130 [ 2793.895838] ? rwlock_bug.part.0+0x90/0x90 [ 2793.896719] __kernfs_new_node+0x117/0x860 [ 2793.897559] ? SOFTIRQ_verbose+0x10/0x10 [ 2793.898365] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 2793.899313] ? lock_acquire+0x197/0x470 [ 2793.900097] ? find_held_lock+0x2c/0x110 [ 2793.900932] ? sysfs_do_create_link_sd+0x82/0x140 [ 2793.901887] kernfs_new_node+0x93/0x120 [ 2793.902673] kernfs_create_link+0xcb/0x230 [ 2793.903504] sysfs_do_create_link_sd+0x90/0x140 [ 2793.904425] sysfs_create_link+0x5f/0xc0 [ 2793.905229] driver_sysfs_add+0x179/0x290 [ 2793.906043] device_bind_driver+0x15/0xd0 [ 2793.906859] mac80211_hwsim_new_radio+0x3d2/0x4250 [ 2793.907822] ? ____sys_sendmsg+0x70d/0x870 [ 2793.908654] ? ___sys_sendmsg+0xf3/0x170 [ 2793.909448] ? __sys_sendmsg+0xe5/0x1b0 [ 2793.910228] ? do_syscall_64+0x33/0x40 [ 2793.910989] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2793.912048] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2793.913014] hwsim_new_radio_nl+0x991/0x1080 [ 2793.913887] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2793.914939] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2793.916235] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2793.917536] genl_family_rcv_msg_doit+0x22d/0x330 [ 2793.918481] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2793.919795] ? cap_capable+0x1cd/0x230 [ 2793.920593] ? ns_capable+0xe2/0x110 [ 2793.921336] genl_rcv_msg+0x33c/0x5a0 [ 2793.922086] ? genl_get_cmd+0x480/0x480 [ 2793.922898] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2793.923913] ? lock_release+0x680/0x680 [ 2793.924704] ? netlink_deliver_tap+0xf4/0xcd0 [ 2793.925588] netlink_rcv_skb+0x14b/0x430 [ 2793.926380] ? genl_get_cmd+0x480/0x480 [ 2793.927161] ? netlink_ack+0xab0/0xab0 [ 2793.927937] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2793.928862] ? is_vmalloc_addr+0x7b/0xb0 [ 2793.929667] genl_rcv+0x24/0x40 [ 2793.930326] netlink_unicast+0x549/0x7f0 [ 2793.931144] ? netlink_attachskb+0x870/0x870 [ 2793.932014] ? __virt_addr_valid+0x128/0x350 [ 2793.932921] netlink_sendmsg+0x90f/0xdf0 [ 2793.933738] ? netlink_unicast+0x7f0/0x7f0 [ 2793.934599] ? netlink_unicast+0x7f0/0x7f0 [ 2793.935435] __sock_sendmsg+0x154/0x190 [ 2793.936244] ____sys_sendmsg+0x70d/0x870 [ 2793.937074] ? sock_write_iter+0x3d0/0x3d0 [ 2793.937921] ? do_recvmmsg+0x6d0/0x6d0 [ 2793.938686] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2793.939728] ? lock_downgrade+0x6d0/0x6d0 [ 2793.940549] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2793.941564] ? SOFTIRQ_verbose+0x10/0x10 [ 2793.942359] ___sys_sendmsg+0xf3/0x170 [ 2793.943123] ? sendmsg_copy_msghdr+0x160/0x160 [ 2793.944017] ? lock_downgrade+0x6d0/0x6d0 [ 2793.944838] ? find_held_lock+0x2c/0x110 [ 2793.945639] ? __fget_files+0x296/0x4c0 [ 2793.946430] ? __fget_light+0xea/0x290 [ 2793.947199] __sys_sendmsg+0xe5/0x1b0 [ 2793.947939] ? __sys_sendmsg_sock+0x40/0x40 [ 2793.948792] ? rcu_read_lock_any_held+0x75/0xa0 [ 2793.949720] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2793.950737] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2793.951732] ? trace_hardirqs_on+0x5b/0x180 [ 2793.952585] do_syscall_64+0x33/0x40 [ 2793.953308] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2793.954292] RIP: 0033:0x7fa741f89b19 [ 2793.955016] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2793.958629] RSP: 002b:00007fa73f4ff188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2793.960096] RAX: ffffffffffffffda RBX: 00007fa74209cf60 RCX: 00007fa741f89b19 [ 2793.961480] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2793.962849] RBP: 00007fa73f4ff1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2793.964226] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2793.965602] R13: 00007ffd248a3bcf R14: 00007fa73f4ff300 R15: 0000000000022000 10:08:22 executing program 2: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 76) r2 = creat(0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:08:22 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x100000, 0x7, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000600100000f000000000000000100000005000000000004000040000020000000d4f4655fd4f4655f0100ffff53ef010001000000d3f4655f000000000000000001000000000000000b0000000001000008000000d2420100120300000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e32303232303739373400"/192, 0xc0, 0x400}, {&(0x7f0000010100)="00000000000000000000000076a34e3f63e54dbc8955dd45888f6106010040000c00000000000000d3f4655f00"/64, 0x40, 0x4e0}, {&(0x7f0000010200)="0000000000000000000000000000000000000000000000000000000020002000010000000000000000000000000000000000000004", 0x35, 0x540}, {&(0x7f0000010300)="03", 0x1, 0x640}, {&(0x7f0000010400)="02000000030000000400000016000f000300040000000000000000000f00c5d7", 0x20, 0x800}, {&(0x7f0000011600)="ed41000000080000d3f4655fd4f4655fd4f4655f000000000000040040", 0x1d, 0x2100}, {&(0x7f0000011800)="8081000000180000d3f4655fd3f4655fd3f4655f00000000000001", 0x1b, 0x2200}], 0x0, &(0x7f0000014100)) mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x81a008, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f00000002c0), 0x6e, 0xfffffffffffffffd, 0x0, &(0x7f0000000340)=[@cred={{0x1c}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0}}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0xb8}, 0x22) mount$9p_unix(&(0x7f0000000140)='./file0/file0\x00', &(0x7f0000000180)='./file0\x00', &(0x7f00000001c0), 0x4, &(0x7f0000000440)=ANY=[@ANYBLOB='trans=unix,access=client,loose,version=9p2000,cache=loose,cache=none,afid=0x0000000000000008,loose,version=9p2000.L,defcontextowner=\x00'/143, @ANYRESDEC=r0, @ANYBLOB=',rootcontext=root,subj_user=pipefs\x00,obj_user=$#,pcr=00000000000000000036,hash,rootcontext=unconfined_u,\x00']) 10:08:22 executing program 3: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 17) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:08:22 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x46803, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) 10:08:22 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0200001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:08:22 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c4800001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:08:22 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) (fail_nth: 83) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2809.567530] FAULT_INJECTION: forcing a failure. [ 2809.567530] name failslab, interval 1, probability 0, space 0, times 0 [ 2809.570115] CPU: 1 PID: 15721 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 2809.571451] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2809.573104] Call Trace: [ 2809.573617] dump_stack+0x107/0x167 [ 2809.574335] should_fail.cold+0x5/0xa [ 2809.575083] ? create_object.isra.0+0x3a/0xa20 [ 2809.575976] should_failslab+0x5/0x20 [ 2809.576727] kmem_cache_alloc+0x5b/0x310 [ 2809.577536] create_object.isra.0+0x3a/0xa20 [ 2809.578400] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2809.579399] __kmalloc_node+0x1ae/0x420 [ 2809.580208] kvmalloc_node+0x119/0x170 [ 2809.580991] bucket_table_alloc.isra.0+0x88/0x490 [ 2809.581928] rhashtable_init+0x341/0x760 [ 2809.582719] rhltable_init+0x1c/0x60 [ 2809.583440] sta_info_init+0x1f/0x110 [ 2809.584178] ieee80211_alloc_hw_nm+0x6a0/0x2320 [ 2809.585090] ? trace_hardirqs_on+0x5b/0x180 [ 2809.585933] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 2809.586882] ? ____sys_sendmsg+0x70d/0x870 [ 2809.587723] ? ___sys_sendmsg+0xf3/0x170 [ 2809.588519] ? __sys_sendmsg+0xe5/0x1b0 [ 2809.589321] ? do_syscall_64+0x33/0x40 [ 2809.590079] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2809.591132] ? lock_acquire+0x197/0x470 [ 2809.591912] ? create_object.isra.0+0x3ad/0xa20 [ 2809.592859] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2809.593783] hwsim_new_radio_nl+0x991/0x1080 [ 2809.594655] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2809.595700] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2809.597026] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2809.598347] genl_family_rcv_msg_doit+0x22d/0x330 [ 2809.599327] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2809.600671] ? cap_capable+0x1cd/0x230 [ 2809.601468] ? ns_capable+0xe2/0x110 [ 2809.602222] genl_rcv_msg+0x33c/0x5a0 [ 2809.602993] ? genl_get_cmd+0x480/0x480 [ 2809.603789] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2809.604856] ? lock_release+0x680/0x680 [ 2809.605661] ? netlink_deliver_tap+0xf4/0xcd0 [ 2809.606551] netlink_rcv_skb+0x14b/0x430 [ 2809.607344] ? genl_get_cmd+0x480/0x480 [ 2809.608120] ? netlink_ack+0xab0/0xab0 [ 2809.608927] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2809.609830] ? is_vmalloc_addr+0x7b/0xb0 [ 2809.610630] genl_rcv+0x24/0x40 [ 2809.611277] netlink_unicast+0x549/0x7f0 [ 2809.612079] ? netlink_attachskb+0x870/0x870 [ 2809.612945] ? __virt_addr_valid+0x128/0x350 [ 2809.613818] netlink_sendmsg+0x90f/0xdf0 [ 2809.614621] ? netlink_unicast+0x7f0/0x7f0 [ 2809.615469] ? netlink_unicast+0x7f0/0x7f0 [ 2809.616304] __sock_sendmsg+0x154/0x190 [ 2809.617102] ____sys_sendmsg+0x70d/0x870 [ 2809.617906] ? sock_write_iter+0x3d0/0x3d0 [ 2809.618745] ? do_recvmmsg+0x6d0/0x6d0 [ 2809.619520] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2809.620592] ? lock_downgrade+0x6d0/0x6d0 [ 2809.621410] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2809.622455] ? SOFTIRQ_verbose+0x10/0x10 [ 2809.623259] ___sys_sendmsg+0xf3/0x170 [ 2809.624028] ? sendmsg_copy_msghdr+0x160/0x160 [ 2809.624954] ? lock_downgrade+0x6d0/0x6d0 [ 2809.625778] ? find_held_lock+0x2c/0x110 [ 2809.626603] ? __fget_files+0x296/0x4c0 [ 2809.627412] ? __fget_light+0xea/0x290 [ 2809.628189] __sys_sendmsg+0xe5/0x1b0 [ 2809.628960] ? __sys_sendmsg_sock+0x40/0x40 [ 2809.629829] ? rcu_read_lock_any_held+0x75/0xa0 [ 2809.630774] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2809.631814] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2809.632840] ? trace_hardirqs_on+0x5b/0x180 [ 2809.633701] do_syscall_64+0x33/0x40 [ 2809.634439] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2809.635447] RIP: 0033:0x7f46fba00b19 [ 2809.636187] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2809.639828] RSP: 002b:00007f46f8f76188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2809.641331] RAX: ffffffffffffffda RBX: 00007f46fbb13f60 RCX: 00007f46fba00b19 [ 2809.642741] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2809.644145] RBP: 00007f46f8f761d0 R08: 0000000000000000 R09: 0000000000000000 [ 2809.645553] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2809.646959] R13: 00007ffe81962e7f R14: 00007f46f8f76300 R15: 0000000000022000 10:08:22 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)={0x1c, 0x5e, 0xc21, 0x0, 0x0, {0x0, 0x2}, [@generic='\x00\x00\x00\x00\x00']}, 0x1c}}, 0x0) ioctl$BTRFS_IOC_QGROUP_CREATE(r0, 0x4010942a, &(0x7f0000000040)={0x0, 0xbf7d}) connect$inet6(0xffffffffffffffff, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) r1 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100)) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) io_uring_enter(r1, 0x8058ab, 0x0, 0x0, 0x0, 0x0) fchown(r1, 0x0, 0xffffffffffffffff) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pipe2(&(0x7f0000001200)={0x0, 0x0}, 0x0) writev(r3, &(0x7f0000001280)=[{&(0x7f0000000140)="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", 0x1000}, {&(0x7f0000001180)='y', 0xff94}], 0x2) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000001dc0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_START_NAN(0xffffffffffffffff, &(0x7f0000002300)={&(0x7f0000001d80)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000022c0)={&(0x7f0000002240)={0x70, 0x0, 0x0, 0x70bd2a, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r4}, @val={0xc, 0x99, {0xf2, 0x77}}}}, [@NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x5}, @NL80211_ATTR_BANDS={0x8, 0xef, 0xe}, @NL80211_ATTR_BANDS={0x8, 0xef, 0x1}, @NL80211_ATTR_BANDS={0x8, 0xef, 0x8}, @NL80211_ATTR_BANDS={0x8, 0xef, 0x387051b4cc8576e}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x4}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x3}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x4}, @NL80211_ATTR_NAN_MASTER_PREF={0x5, 0xee, 0x7}]}, 0x70}, 0x1, 0x0, 0x0, 0x404}, 0x20000000) r5 = memfd_create(&(0x7f0000000140)='.:-,\x00', 0x0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000180)={0x0, r5, 0x7, 0x2, 0x8, 0x81}) signalfd(r5, &(0x7f00000002c0)={[0x73458ad8]}, 0x8) r6 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000) getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1c, &(0x7f0000001d40)={@private1, 0x0}, &(0x7f0000001e80)=0x14) sendmmsg$inet6(r6, &(0x7f00000021c0)=[{{&(0x7f0000000300)={0xa, 0x4e21, 0x1, @remote, 0x3}, 0x1c, &(0x7f00000016c0)=[{&(0x7f0000000640)="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", 0x1000}, {&(0x7f0000000340)="7ff72b9be7ca6f4cee82f0452ab42cc5f26b235337fc90cee7fd78a545c1ce47c5fe10d7bb2a48abf107d42c17c9b4fe69d583ea6cf99658af8fd5e549c0775ef8d81573b64eb02b618500b49ad845700f13146eab3c4e53ed6f633cba97f474373fe55dc7540df6f5a51d010b994ebf46e6aff94f5feba524c5313f3a2fac5499038c25822e1fcb44ce78913293", 0x8e}, {&(0x7f0000000400)="5c21fe0a31f34da50582f2834a954fc19c28cfcc0f56f1b96398fcd8bc1ae873d4af0eaccdfef1293581547c2ed452cd54c9e76588eafb4ab0758d62a7a1082021e8e60de73fa5fe515fb5b9", 0x4c}, {&(0x7f0000000500)="7601c82494cce14832acabecc5833ca1e3cbfd949adcb7814e6ebdd063220f6f9cd65e3c046057105a3409c0d07f803fcd0eda7a66458b55e26cb81e18e53da62b1df8ef28c3f93202d2e3e4b1e18f", 0x4f}, {&(0x7f0000000580)="fc4b41de579ea5e76368e76c2b0fa8eb43c8b87b45b461efe8e1201bdf923c3bebd08f6d60eed9b272e68bd159de5152aa61db6bbd20eec2c4ce35819dbf095503304b999574ab9f9a152d04606e67eab6f98da130e2f8c32d259d0b44b010a25f2bf95e01a3d36ed725ce8a90d94f0bd0b9ddbd091c", 0x76}, {&(0x7f0000001640)="c4297a93dad35fff94befa0fbf50621cc7f6e17c4c2a1d70fa9e2509837c3ee36a56b7d79d48b1c66f867d63c66dafc03b88cad0e3b757a22089142bb1feb91e61feccfa51b7c997192fc31cddd6ca18074a79f27621eb339d6d2f8eb2f09e66ab4462fb492b", 0x66}], 0x6, &(0x7f0000001740)=[@rthdrdstopts={{0xd8, 0x29, 0x37, {0x0, 0x17, '\x00', [@jumbo={0xc2, 0x4, 0xff}, @hao={0xc9, 0x10, @private0={0xfc, 0x0, '\x00', 0x1}}, @calipso={0x7, 0x50, {0x2, 0x12, 0x20, 0x7, [0x2, 0x1, 0x8001, 0x7ff, 0x7, 0x400, 0x2, 0xfffffffffffffff7, 0x3f3]}}, @ra={0x5, 0x2, 0x5}, @calipso={0x7, 0x48, {0x3, 0x10, 0x8, 0x98, [0x1000, 0x7, 0x64, 0x3, 0x3, 0x8, 0x7, 0x7]}}, @pad1]}}}, @rthdr_2292={{0x38, 0x29, 0x39, {0x73, 0x4, 0x1, 0x4, 0x0, [@private0={0xfc, 0x0, '\x00', 0x1}, @private0={0xfc, 0x0, '\x00', 0x1}]}}}, @dstopts_2292={{0x140, 0x29, 0x4, {0x5e, 0x24, '\x00', [@ra={0x5, 0x2, 0x2}, @pad1, @padn={0x1, 0xa, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @generic={0x20, 0xa0, "d4d7489ea549a894e641f2ce15931c40d956ac517d61d1b780aca1ab941bbceddf99642986b4d5416ec6f0c36462654ad1f9df6a6c20b8e872f2e2da19b5c89df5379064ea932781913e84cc6151f4874e333cbe8c77ef5b99d8bee3b9c41cdfdf1a7d6f7b6b9a09e5023ffe2aa769af33f821865cc161b881d234087e9af7a64e8cb12add4a9ac45833d453864f776c64e23d1927559bbb29e80f83d95ec269"}, @padn={0x1, 0x1, [0x0]}, @hao={0xc9, 0x10, @mcast2}, @calipso={0x7, 0x10, {0x3, 0x2, 0xcd, 0x3, [0x100000001]}}, @ra={0x5, 0x2, 0xfff8}, @calipso={0x7, 0x30, {0x0, 0xa, 0x1, 0x85a7, [0x3, 0x401, 0x9, 0x9, 0x1]}}, @hao={0xc9, 0x10, @private2={0xfc, 0x2, '\x00', 0x1}}]}}}, @hopopts_2292={{0x40, 0x29, 0x36, {0x88, 0x4, '\x00', [@pad1, @ra={0x5, 0x2, 0x8}, @jumbo={0xc2, 0x4, 0x1}, @generic={0xb3}, @generic={0xe0, 0x10, "7d5eefe228109333695a997b351d45d5"}]}}}, @dstopts={{0x18}}, @rthdrdstopts={{0x90, 0x29, 0x37, {0x0, 0xe, '\x00', [@hao={0xc9, 0x10, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, @calipso={0x7, 0x58, {0x2, 0x14, 0x60, 0x7, [0xfffffffffffffffe, 0xc7, 0x2, 0x1, 0x3, 0x8, 0xfffffffffffffff9, 0x10001, 0xff, 0x3]}}, @enc_lim={0x4, 0x1, 0x4}, @ra={0x5, 0x2, 0xff}, @pad1]}}}, @hoplimit_2292={{0x14, 0x29, 0x8, 0x6}}, @dontfrag={{0x14, 0x29, 0x3e, 0x20}}], 0x368}}, {{0x0, 0x0, &(0x7f0000001e00)=[{&(0x7f0000000480)="8fbdc080c98429b775b853e5fef20db4d753f17c3a1e7202788260640aaeb0fcf7ec3fc458de7adbe1fa62513ac6dec828", 0x31}, {&(0x7f0000001ac0)="b5d93c24310d4f4992a43d29092c0c395565d9a43bc2987923c0215868672059dadb6b5b9a134ddd449da506bb1d70", 0x2f}, {&(0x7f0000001b00)="2e8bf8f3820cc5c95c6ade9199edba30931c3d4229177a7a310372ef39dd0a2479fedc47a28b8a5f7b5124f8d63ea0f30b0a89a8d9b35c23503daa739c8597017203e4679a7b2621cfa1384c74e9774ca72458d152ac0264577045e718349bdce1b985e3a2d6c039b2baf5f7551ba66ba69af9", 0x73}, {&(0x7f0000001b80)="22d0f5619ab12a11b0b01b56eb994ec23bd371cdf725f20107314bcc66bb7f628f77dd2f2ff98a6b49556f1c7303f7d8f9bc86fa8c29957e638349459655d3d1557a5ea7bdbc55307b64c5dcb2ac7b81eb666f12b479bf74ccd77871822f86137b1711798c8002a8833b28b49196f08c62b9f9d9e432141cbc2fc49b0e7e27671f7b5d5fd069b23945f91d8a345578bb7bf7d08f759a0623d06f65da407fa70fabfda2b83a3941637f80d73995b339cf9b551294180ea9e71f6216c6f1740df6733daa7b0a7444ade199d0032ba791e314db63ede1a9f72eb159", 0xda}, {&(0x7f0000001c80)="ce3a3fddb08d9291ae208f135600c43859d22354a2ad7387b1f328b2faccc4e19577d63f1ad22ef0133c2b37e6da95b6e6d0d7395b15fa9af8e7e8e3f061a8daa765e5c7afc20fc3c3023b9cb9e84947ca1f3d705728df0671c651b9e59b78689d72b428e3fafca406246c09418ec62b0d4f1d12e1d3a00cdea9a1e96c068e31957ee1d200752212d3a6d60acf9f3eb9545a135d83c679c473fef6c5ab27dd792dd1209b6deb8997a4b2dea1e6e63a54", 0xb0}], 0x5, &(0x7f0000001ec0)=[@dontfrag={{0x14, 0x29, 0x3e, 0xffffffff}}, @hopopts={{0x28, 0x29, 0x36, {0x2f, 0x1, '\x00', [@jumbo={0xc2, 0x4, 0x4}, @ra={0x5, 0x2, 0x1ff}]}}}, @hoplimit={{0x14, 0x29, 0x34, 0x3ff}}, @hopopts={{0x1e0, 0x29, 0x36, {0xc, 0x39, '\x00', [@hao={0xc9, 0x10, @mcast2}, @calipso={0x7, 0x40, {0x0, 0xe, 0x7, 0x913, [0x2b1, 0x10001, 0x7, 0x7, 0x6, 0x5, 0x1ff]}}, @ra={0x5, 0x2, 0xddb1}, @ra={0x5, 0x2, 0xb1}, @generic={0x1, 0x8e, "fe4c2bf9a90c83210135ba6cf627c751dc1f42f1633d909a2dfb8a98bf6d367e7fea55f3460f74228c079750fb5b38ac798843dd401b997722a1c7c86ec61fa6622d9b9f205c0b7432edda9deff3fa21cbd8afdc8722aae872ed07426d5137f0595204c3f2287f57b9b544cd6c4704d4ae07569c05f939b6e98a3ab2f5724fde474c34c79be07005cbdc216878b2"}, @jumbo={0xc2, 0x4, 0x1}, @generic={0x7, 0xd4, "edf008f161521d93ae428815a5e9da3ea7413b292b3679bccc765cb74df9e803534b8ab5ec32646f369f37715f866db2624ed641042e129515d1b1f10dad14f3667c95641218a5d728c18f3500cd514956b912742bca07bb252d144286feabf155a6668e1a5b97df09f140310ca2b11bbe2d0da9ae6063f2ea1d197a943edf36766b6b743376ef461c0acf73ae085e787969656530d99fcfa4144ab4ff3c942ae2a97cc8c0d088071599edbdcbc44f3b4f20ba47585dfa6080b6d3e1b34cbf098e022f2559b1b245926ef38222cd0301dd66391f"}]}}}, @rthdr={{0x28, 0x29, 0x39, {0x5e, 0x2, 0x1, 0x3, 0x0, [@mcast2]}}}, @rthdr_2292={{0x38, 0x29, 0x39, {0x0, 0x4, 0x2, 0x81, 0x0, [@dev={0xfe, 0x80, '\x00', 0x1c}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01']}}}, @pktinfo={{0x24, 0x29, 0x32, {@empty, r7}}}, @hoplimit={{0x14, 0x29, 0x34, 0x7}}], 0x2d8}}], 0x2, 0x1) [ 2809.676203] 9pnet: p9_fd_create_unix (15742): problem connecting socket: ./file0/file0: -2 [ 2809.684031] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 2809.686488] System zones: 0-7 [ 2809.693432] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue 10:08:22 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0300001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:08:22 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c4c00001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2809.718950] EXT4-fs warning (device loop1): ext4_enable_quotas:6463: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix. 10:08:22 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x46c00, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) [ 2809.760596] EXT4-fs (loop1): mount failed 10:08:22 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x47000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) [ 2809.846516] EXT4-fs warning (device loop1): ext4_enable_quotas:6463: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix. [ 2809.866363] FAULT_INJECTION: forcing a failure. [ 2809.866363] name failslab, interval 1, probability 0, space 0, times 0 [ 2809.869431] CPU: 1 PID: 15728 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 2809.870836] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2809.872510] Call Trace: [ 2809.873044] dump_stack+0x107/0x167 [ 2809.873794] should_fail.cold+0x5/0xa [ 2809.874561] ? kobject_uevent_env+0x22b/0xf90 [ 2809.875471] ? dev_uevent_filter+0xd0/0xd0 [ 2809.876319] should_failslab+0x5/0x20 [ 2809.877107] kmem_cache_alloc_trace+0x55/0x320 [ 2809.878023] ? __device_release_driver+0x555/0x770 [ 2809.879008] ? dev_uevent_filter+0xd0/0xd0 [ 2809.879850] kobject_uevent_env+0x22b/0xf90 [ 2809.880730] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2809.881782] ? _raw_spin_unlock_irqrestore+0x38/0x40 [ 2809.882790] ? trace_hardirqs_on+0x5b/0x180 [ 2809.883659] __device_release_driver+0x5cd/0x770 [ 2809.884622] device_release_driver+0x26/0x40 [ 2809.885505] mac80211_hwsim_new_radio+0x29a2/0x4250 [ 2809.886495] ? ____sys_sendmsg+0x70d/0x870 [ 2809.887338] ? ___sys_sendmsg+0xf3/0x170 [ 2809.888146] ? __sys_sendmsg+0xe5/0x1b0 [ 2809.888992] ? do_syscall_64+0x33/0x40 [ 2809.889769] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2809.890828] ? __lockdep_reset_lock+0x180/0x180 [ 2809.891772] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2809.892733] hwsim_new_radio_nl+0x991/0x1080 [ 2809.893619] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2809.894671] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2809.895983] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2809.897310] genl_family_rcv_msg_doit+0x22d/0x330 [ 2809.898273] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2809.899588] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2809.900668] ? trace_hardirqs_on+0x5b/0x180 [ 2809.901519] ? cap_capable+0x1cd/0x230 [ 2809.902306] ? ns_capable+0xe2/0x110 [ 2809.903052] genl_rcv_msg+0x33c/0x5a0 [ 2809.903813] ? genl_get_cmd+0x480/0x480 [ 2809.904622] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2809.905646] ? lock_release+0x680/0x680 [ 2809.905888] EXT4-fs (loop1): mount failed [ 2809.906435] netlink_rcv_skb+0x14b/0x430 [ 2809.908079] ? genl_get_cmd+0x480/0x480 [ 2809.908872] ? netlink_ack+0xab0/0xab0 [ 2809.909661] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2809.910566] ? is_vmalloc_addr+0x7b/0xb0 [ 2809.911373] genl_rcv+0x24/0x40 [ 2809.912021] netlink_unicast+0x549/0x7f0 [ 2809.912838] ? netlink_attachskb+0x870/0x870 [ 2809.913704] ? __virt_addr_valid+0x128/0x350 [ 2809.914580] netlink_sendmsg+0x90f/0xdf0 [ 2809.915390] ? netlink_unicast+0x7f0/0x7f0 [ 2809.916239] ? netlink_unicast+0x7f0/0x7f0 [ 2809.917085] __sock_sendmsg+0x154/0x190 [ 2809.917877] ____sys_sendmsg+0x70d/0x870 [ 2809.918683] ? sock_write_iter+0x3d0/0x3d0 [ 2809.919534] ? do_recvmmsg+0x6d0/0x6d0 [ 2809.920328] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2809.921384] ? lock_downgrade+0x6d0/0x6d0 [ 2809.922211] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2809.923248] ? SOFTIRQ_verbose+0x10/0x10 [ 2809.924062] ___sys_sendmsg+0xf3/0x170 [ 2809.924861] ? sendmsg_copy_msghdr+0x160/0x160 [ 2809.925775] ? lock_downgrade+0x6d0/0x6d0 [ 2809.926606] ? find_held_lock+0x2c/0x110 [ 2809.927423] ? __fget_files+0x296/0x4c0 [ 2809.928230] ? __fget_light+0xea/0x290 [ 2809.929034] __sys_sendmsg+0xe5/0x1b0 [ 2809.929795] ? __sys_sendmsg_sock+0x40/0x40 [ 2809.930649] ? rcu_read_lock_any_held+0x75/0xa0 [ 2809.931599] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2809.932663] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2809.933674] ? trace_hardirqs_on+0x5b/0x180 [ 2809.934533] do_syscall_64+0x33/0x40 [ 2809.935269] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2809.936287] RIP: 0033:0x7fd0ea82fb19 [ 2809.937033] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2809.940677] RSP: 002b:00007fd0e7da5188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2809.942173] RAX: ffffffffffffffda RBX: 00007fd0ea942f60 RCX: 00007fd0ea82fb19 [ 2809.943574] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2809.944989] RBP: 00007fd0e7da51d0 R08: 0000000000000000 R09: 0000000000000000 [ 2809.946374] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2809.947774] R13: 00007ffedd9ef45f R14: 00007fd0e7da5300 R15: 0000000000022000 [ 2809.967871] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 2809.970290] System zones: 0-7 10:08:22 executing program 3: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 18) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2809.990604] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 2810.018601] FAULT_INJECTION: forcing a failure. [ 2810.018601] name failslab, interval 1, probability 0, space 0, times 0 [ 2810.021290] CPU: 1 PID: 15727 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 2810.022636] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2810.024243] Call Trace: [ 2810.024781] dump_stack+0x107/0x167 [ 2810.025503] should_fail.cold+0x5/0xa [ 2810.026249] ? __alloc_skb+0x6d/0x5b0 [ 2810.026986] should_failslab+0x5/0x20 [ 2810.027726] kmem_cache_alloc_node+0x55/0x330 [ 2810.028621] __alloc_skb+0x6d/0x5b0 [ 2810.029324] alloc_uevent_skb+0x7b/0x210 [ 2810.030097] kobject_uevent_env+0x99a/0xf90 [ 2810.030930] driver_bound+0x19d/0x1f0 [ 2810.031666] device_bind_driver+0xae/0xd0 [ 2810.032465] mac80211_hwsim_new_radio+0x3d2/0x4250 [ 2810.033388] ? ____sys_sendmsg+0x70d/0x870 [ 2810.034193] ? ___sys_sendmsg+0xf3/0x170 [ 2810.034958] ? __sys_sendmsg+0xe5/0x1b0 [ 2810.035726] ? do_syscall_64+0x33/0x40 [ 2810.036465] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2810.037504] ? __lockdep_reset_lock+0x180/0x180 [ 2810.038381] ? lock_acquire+0x197/0x470 [ 2810.039135] ? create_object.isra.0+0x3ad/0xa20 [ 2810.040022] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2810.040991] hwsim_new_radio_nl+0x991/0x1080 [ 2810.041839] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2810.042837] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2810.044070] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2810.045335] genl_family_rcv_msg_doit+0x22d/0x330 [ 2810.046247] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2810.047485] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2810.048476] ? cap_capable+0x1cd/0x230 [ 2810.049229] ? ns_capable+0xe2/0x110 [ 2810.049937] genl_rcv_msg+0x33c/0x5a0 [ 2810.050661] ? genl_get_cmd+0x480/0x480 [ 2810.051414] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2810.052401] ? lock_release+0x680/0x680 [ 2810.053167] ? netlink_deliver_tap+0xf4/0xcd0 [ 2810.054006] netlink_rcv_skb+0x14b/0x430 [ 2810.054770] ? genl_get_cmd+0x480/0x480 [ 2810.055517] ? netlink_ack+0xab0/0xab0 [ 2810.056262] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2810.057125] ? is_vmalloc_addr+0x7b/0xb0 [ 2810.057893] genl_rcv+0x24/0x40 [ 2810.058507] netlink_unicast+0x549/0x7f0 [ 2810.059274] ? netlink_attachskb+0x870/0x870 [ 2810.060095] ? __virt_addr_valid+0x128/0x350 [ 2810.060952] netlink_sendmsg+0x90f/0xdf0 [ 2810.061720] ? netlink_unicast+0x7f0/0x7f0 [ 2810.062542] ? netlink_unicast+0x7f0/0x7f0 [ 2810.063333] __sock_sendmsg+0x154/0x190 [ 2810.064079] ____sys_sendmsg+0x70d/0x870 [ 2810.064850] ? sock_write_iter+0x3d0/0x3d0 [ 2810.065640] ? do_recvmmsg+0x6d0/0x6d0 [ 2810.066368] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2810.067351] ? lock_downgrade+0x6d0/0x6d0 [ 2810.068130] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2810.069128] ? SOFTIRQ_verbose+0x10/0x10 [ 2810.069893] ___sys_sendmsg+0xf3/0x170 [ 2810.070645] ? sendmsg_copy_msghdr+0x160/0x160 [ 2810.071526] ? lock_downgrade+0x6d0/0x6d0 [ 2810.072326] ? find_held_lock+0x2c/0x110 [ 2810.073125] ? __fget_files+0x296/0x4c0 [ 2810.073897] ? __fget_light+0xea/0x290 [ 2810.074648] __sys_sendmsg+0xe5/0x1b0 [ 2810.075375] ? __sys_sendmsg_sock+0x40/0x40 [ 2810.076197] ? rcu_read_lock_any_held+0x75/0xa0 [ 2810.077101] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2810.078090] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2810.079063] ? trace_hardirqs_on+0x5b/0x180 [ 2810.079891] do_syscall_64+0x33/0x40 [ 2810.080621] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2810.081563] RIP: 0033:0x7fa741f89b19 [ 2810.082254] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2810.085638] RSP: 002b:00007fa73f4ff188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2810.087039] RAX: ffffffffffffffda RBX: 00007fa74209cf60 RCX: 00007fa741f89b19 [ 2810.088348] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2810.089671] RBP: 00007fa73f4ff1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2810.090978] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2810.092287] R13: 00007ffd248a3bcf R14: 00007fa73f4ff300 R15: 0000000000022000 10:08:22 executing program 1: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_int(r0, 0x29, 0x24, &(0x7f0000000080)=0x1000, 0x4) r1 = creat(&(0x7f0000000000)='./file2\x00', 0x0) fcntl$setlease(r1, 0x400, 0x1) fcntl$setown(r1, 0x8, 0xffffffffffffffff) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)={0x1c, 0x5e, 0xc21, 0x0, 0x0, {0x0, 0x2}, [@generic='\x00\x00\x00\x00\x00']}, 0x1c}}, 0x0) fcntl$setsig(r2, 0xa, 0x2e) close(r1) bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e24, 0x7fff, @local, 0x2}, 0x1c) r3 = open_tree(r1, &(0x7f0000000040)='./file2\x00', 0x801) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000000c0)={'vlan0\x00'}) ioctl$HIDIOCGRAWPHYS(r1, 0x80404805, &(0x7f0000000100)) 10:08:22 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0400001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:08:22 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) (fail_nth: 84) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2810.187195] FAULT_INJECTION: forcing a failure. [ 2810.187195] name failslab, interval 1, probability 0, space 0, times 0 [ 2810.189691] CPU: 1 PID: 15771 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 2810.190963] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2810.192473] Call Trace: [ 2810.192960] dump_stack+0x107/0x167 [ 2810.193620] should_fail.cold+0x5/0xa [ 2810.194324] should_failslab+0x5/0x20 [ 2810.195019] __kmalloc_track_caller+0x79/0x370 [ 2810.195835] ? kasprintf+0xbb/0xf0 [ 2810.196471] kvasprintf+0xb5/0x150 [ 2810.197099] ? bust_spinlocks+0xe0/0xe0 [ 2810.197795] ? get_random_u32+0x3bd/0x670 [ 2810.198515] ? get_random_u32+0x3cb/0x670 [ 2810.199250] kasprintf+0xbb/0xf0 [ 2810.199841] ? kvasprintf_const+0x1a0/0x1a0 [ 2810.200625] ? lockdep_init_map_type+0x2c7/0x780 [ 2810.201447] ? lockdep_init_map_type+0x2c7/0x780 [ 2810.202292] ieee80211_alloc_led_names+0x82/0x420 [ 2810.203151] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 2810.203982] ? trace_hardirqs_on+0x5b/0x180 [ 2810.204752] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 2810.205608] ? ____sys_sendmsg+0x70d/0x870 [ 2810.206331] ? ___sys_sendmsg+0xf3/0x170 [ 2810.207034] ? __sys_sendmsg+0xe5/0x1b0 [ 2810.207728] ? do_syscall_64+0x33/0x40 [ 2810.208399] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2810.209333] ? __lockdep_reset_lock+0x180/0x180 [ 2810.210133] ? lock_acquire+0x197/0x470 [ 2810.210819] ? create_object.isra.0+0x3ad/0xa20 [ 2810.211637] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2810.212475] hwsim_new_radio_nl+0x991/0x1080 [ 2810.213242] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2810.214145] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2810.215290] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2810.216438] genl_family_rcv_msg_doit+0x22d/0x330 [ 2810.217335] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2810.218465] ? cap_capable+0x1cd/0x230 [ 2810.219177] ? ns_capable+0xe2/0x110 [ 2810.219828] genl_rcv_msg+0x33c/0x5a0 [ 2810.220517] ? genl_get_cmd+0x480/0x480 [ 2810.221227] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2810.222137] ? lock_release+0x680/0x680 [ 2810.222836] ? __lockdep_reset_lock+0x180/0x180 [ 2810.223655] netlink_rcv_skb+0x14b/0x430 [ 2810.224370] ? genl_get_cmd+0x480/0x480 [ 2810.225104] ? netlink_ack+0xab0/0xab0 [ 2810.225846] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2810.226644] ? is_vmalloc_addr+0x7b/0xb0 [ 2810.227361] genl_rcv+0x24/0x40 [ 2810.227926] netlink_unicast+0x549/0x7f0 [ 2810.228651] ? netlink_attachskb+0x870/0x870 [ 2810.229426] ? __virt_addr_valid+0x128/0x350 [ 2810.230204] netlink_sendmsg+0x90f/0xdf0 [ 2810.230930] ? netlink_unicast+0x7f0/0x7f0 [ 2810.231685] ? netlink_unicast+0x7f0/0x7f0 [ 2810.232436] __sock_sendmsg+0x154/0x190 [ 2810.233141] ____sys_sendmsg+0x70d/0x870 [ 2810.233849] ? sock_write_iter+0x3d0/0x3d0 [ 2810.234585] ? do_recvmmsg+0x6d0/0x6d0 [ 2810.235277] ? perf_trace_lock+0xac/0x490 [ 2810.236009] ? __lockdep_reset_lock+0x180/0x180 [ 2810.236827] ? perf_trace_lock+0xac/0x490 [ 2810.237559] ? SOFTIRQ_verbose+0x10/0x10 [ 2810.238265] ___sys_sendmsg+0xf3/0x170 [ 2810.238937] ? sendmsg_copy_msghdr+0x160/0x160 [ 2810.239725] ? lock_downgrade+0x6d0/0x6d0 [ 2810.240477] ? __fget_files+0x296/0x4c0 [ 2810.241171] ? __fget_light+0xea/0x290 [ 2810.241841] __sys_sendmsg+0xe5/0x1b0 [ 2810.242507] ? __sys_sendmsg_sock+0x40/0x40 [ 2810.243246] ? rcu_read_lock_any_held+0x75/0xa0 [ 2810.244072] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2810.244991] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2810.245873] ? trace_hardirqs_on+0x5b/0x180 [ 2810.246616] do_syscall_64+0x33/0x40 [ 2810.247249] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2810.248092] RIP: 0033:0x7f46fba00b19 [ 2810.248705] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2810.251772] RSP: 002b:00007f46f8f76188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2810.253057] RAX: ffffffffffffffda RBX: 00007f46fbb13f60 RCX: 00007f46fba00b19 [ 2810.254255] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2810.255448] RBP: 00007f46f8f761d0 R08: 0000000000000000 R09: 0000000000000000 [ 2810.256649] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2810.257855] R13: 00007ffe81962e7f R14: 00007f46f8f76300 R15: 0000000000022000 [ 2810.357368] FAULT_INJECTION: forcing a failure. [ 2810.357368] name failslab, interval 1, probability 0, space 0, times 0 [ 2810.359978] CPU: 0 PID: 15774 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 2810.361403] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2810.363097] Call Trace: [ 2810.363641] dump_stack+0x107/0x167 [ 2810.364387] should_fail.cold+0x5/0xa [ 2810.365185] ? skb_clone+0x14f/0x3d0 [ 2810.365953] should_failslab+0x5/0x20 [ 2810.366734] kmem_cache_alloc+0x5b/0x310 [ 2810.367570] skb_clone+0x14f/0x3d0 [ 2810.368303] netlink_broadcast_filtered+0xa08/0xdc0 [ 2810.369357] netlink_broadcast+0x35/0x50 [ 2810.370192] kobject_uevent_env+0x93d/0xf90 [ 2810.371094] driver_bound+0x19d/0x1f0 [ 2810.371873] device_bind_driver+0xae/0xd0 [ 2810.372747] mac80211_hwsim_new_radio+0x3d2/0x4250 [ 2810.373754] ? __nla_validate_parse+0x2c7/0x2b10 [ 2810.374713] ? __nla_validate_parse+0x2d8/0x2b10 [ 2810.375680] ? kcov_ioctl+0x244/0x660 [ 2810.376474] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2810.377440] hwsim_new_radio_nl+0x991/0x1080 [ 2810.378342] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2810.379424] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2810.380779] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2810.382110] genl_family_rcv_msg_doit+0x22d/0x330 [ 2810.383095] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2810.384441] ? cap_capable+0x1cd/0x230 [ 2810.385282] ? ns_capable+0xe2/0x110 [ 2810.386049] genl_rcv_msg+0x33c/0x5a0 [ 2810.386830] ? genl_get_cmd+0x480/0x480 [ 2810.387640] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2810.388708] ? lock_release+0x680/0x680 [ 2810.389519] ? __lockdep_reset_lock+0x180/0x180 [ 2810.390480] netlink_rcv_skb+0x14b/0x430 [ 2810.391307] ? genl_get_cmd+0x480/0x480 [ 2810.392125] ? netlink_ack+0xab0/0xab0 [ 2810.392950] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2810.393879] ? is_vmalloc_addr+0x7b/0xb0 [ 2810.394709] genl_rcv+0x24/0x40 [ 2810.395378] netlink_unicast+0x549/0x7f0 [ 2810.396215] ? netlink_attachskb+0x870/0x870 [ 2810.397119] ? __virt_addr_valid+0x128/0x350 [ 2810.398029] netlink_sendmsg+0x90f/0xdf0 [ 2810.398866] ? netlink_unicast+0x7f0/0x7f0 [ 2810.399744] ? netlink_unicast+0x7f0/0x7f0 [ 2810.400613] __sock_sendmsg+0x154/0x190 [ 2810.401429] ____sys_sendmsg+0x70d/0x870 [ 2810.402262] ? sock_write_iter+0x3d0/0x3d0 [ 2810.403119] ? do_recvmmsg+0x6d0/0x6d0 [ 2810.403914] ? perf_trace_lock+0xac/0x490 [ 2810.404782] ? __lockdep_reset_lock+0x180/0x180 [ 2810.405724] ? perf_trace_lock+0xac/0x490 [ 2810.406568] ? SOFTIRQ_verbose+0x10/0x10 [ 2810.407407] ___sys_sendmsg+0xf3/0x170 [ 2810.408212] ? sendmsg_copy_msghdr+0x160/0x160 [ 2810.409156] ? lock_downgrade+0x6d0/0x6d0 [ 2810.410011] ? find_held_lock+0x2c/0x110 [ 2810.410860] ? __fget_files+0x296/0x4c0 [ 2810.411687] ? __fget_light+0xea/0x290 [ 2810.412506] __sys_sendmsg+0xe5/0x1b0 [ 2810.413285] ? __sys_sendmsg_sock+0x40/0x40 [ 2810.414162] ? rcu_read_lock_any_held+0x75/0xa0 [ 2810.415134] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2810.416195] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2810.417248] ? trace_hardirqs_on+0x5b/0x180 [ 2810.418134] do_syscall_64+0x33/0x40 [ 2810.418890] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2810.419926] RIP: 0033:0x7fd0ea82fb19 [ 2810.420691] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2810.424413] RSP: 002b:00007fd0e7da5188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2810.425972] RAX: ffffffffffffffda RBX: 00007fd0ea942f60 RCX: 00007fd0ea82fb19 [ 2810.427418] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2810.428873] RBP: 00007fd0e7da51d0 R08: 0000000000000000 R09: 0000000000000000 [ 2810.430317] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2810.431764] R13: 00007ffedd9ef45f R14: 00007fd0e7da5300 R15: 0000000000022000 10:08:35 executing program 2: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 77) r2 = creat(0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:08:35 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x47400, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) 10:08:35 executing program 0: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) sendto$unix(r0, &(0x7f00000000c0)="e4", 0x1, 0x0, 0x0, 0x0) r2 = dup(r1) write$binfmt_elf64(r0, &(0x7f0000000400)=ANY=[], 0x78) getsockname$unix(r1, &(0x7f0000000100), &(0x7f0000000000)=0x6e) sendto$unix(0xffffffffffffffff, &(0x7f0000000180)="81a9f417cb929a0cb012e0a3dbd1f508fe4b144def9960bf0f994b951680e07bea6e7f655b3f402d2d7abb80c2604ea122168d4eca834d27191afb46f04963955c57cfdf4c018f4bc89d875f29641ebb6680fed70bdb4712f190d3e8d8119076046dd7", 0x63, 0x1, &(0x7f0000000200)=@file={0x1, './file0\x00'}, 0x6e) recvmmsg(r2, &(0x7f0000007940)=[{{0x0, 0x0, 0x0}}], 0x500, 0x20000022, 0x0) 10:08:35 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c6800001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:08:35 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0500001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:08:35 executing program 1: r0 = syz_io_uring_setup(0x68d4, &(0x7f0000000100)={0x0, 0x867e, 0x0, 0x3, 0x399}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000080), &(0x7f00000002c0)) r1 = fcntl$dupfd(0xffffffffffffffff, 0x0, r0) io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)=""/148, 0x94}, {&(0x7f0000000580)=""/98, 0x62}, {&(0x7f0000000440)=""/181, 0xb5}, {&(0x7f0000000300)=""/67, 0x43}], 0x4) recvmmsg$unix(r1, &(0x7f00000040c0)=[{{&(0x7f0000000240), 0x6e, &(0x7f00000000c0)=[{&(0x7f0000000040)=""/5, 0x5}, {&(0x7f0000000600)=""/4096, 0x1000}], 0x2, &(0x7f0000000380)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0}}}], 0x80}}, {{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000001600)=""/176, 0xb0}, {&(0x7f0000000400)=""/49, 0x31}, {&(0x7f00000016c0)=""/157, 0x9d}], 0x3}}, {{&(0x7f0000001780)=@abs, 0x6e, &(0x7f0000001980)=[{&(0x7f0000001e00)=""/4096, 0x1000}, {&(0x7f0000002e00)=""/4096, 0x1000}, {&(0x7f0000001800)=""/138, 0x8a}, {&(0x7f0000000540)}, {&(0x7f00000018c0)=""/67, 0x43}, {&(0x7f0000001940)=""/48, 0x30}], 0x6, &(0x7f0000001a00)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x58}}, {{0x0, 0x0, &(0x7f0000003f80)=[{&(0x7f0000001a80)=""/75, 0x4b}, {&(0x7f0000001b00)=""/151, 0x97}, {&(0x7f0000001bc0)=""/233, 0xe9}, {&(0x7f0000001cc0)}, {&(0x7f0000001d00)=""/106, 0x6a}, {&(0x7f0000003e00)=""/157, 0x9d}, {&(0x7f0000003ec0)=""/153, 0x99}], 0x7, &(0x7f0000004000)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x98}}], 0x4, 0x40002002, &(0x7f00000041c0)={0x0, 0x989680}) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x68800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_config_ext={0x0, 0x100000001}, 0x8080, 0x0, 0x0, 0x0, 0x4, 0x0, 0x3f, 0x0, 0x0, 0x0, 0x878}, r2, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fork() 10:08:35 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) (fail_nth: 85) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:08:35 executing program 3: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 19) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2823.354367] FAULT_INJECTION: forcing a failure. [ 2823.354367] name failslab, interval 1, probability 0, space 0, times 0 [ 2823.355912] CPU: 1 PID: 15790 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 2823.356730] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2823.357696] Call Trace: [ 2823.358016] dump_stack+0x107/0x167 [ 2823.358445] should_fail.cold+0x5/0xa [ 2823.358900] ? create_object.isra.0+0x3a/0xa20 [ 2823.359451] should_failslab+0x5/0x20 [ 2823.359911] kmem_cache_alloc+0x5b/0x310 [ 2823.360400] create_object.isra.0+0x3a/0xa20 [ 2823.360916] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2823.361504] __kmalloc+0x16e/0x390 [ 2823.361930] kobject_get_path+0xc5/0x1f0 [ 2823.362397] kobject_uevent_env+0x251/0xf90 [ 2823.362908] driver_bound+0x19d/0x1f0 [ 2823.363346] device_bind_driver+0xae/0xd0 [ 2823.363831] mac80211_hwsim_new_radio+0x3d2/0x4250 [ 2823.364415] ? ____sys_sendmsg+0x70d/0x870 [ 2823.364918] ? ___sys_sendmsg+0xf3/0x170 [ 2823.365431] ? __sys_sendmsg+0xe5/0x1b0 [ 2823.365936] ? do_syscall_64+0x33/0x40 [ 2823.366414] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2823.367063] ? lock_acquire+0x197/0x470 [ 2823.367548] ? create_object.isra.0+0x3ad/0xa20 [ 2823.368121] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2823.368708] hwsim_new_radio_nl+0x991/0x1080 [ 2823.369250] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2823.369892] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2823.370678] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2823.371481] genl_family_rcv_msg_doit+0x22d/0x330 [ 2823.372087] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2823.372902] ? cap_capable+0x1cd/0x230 [ 2823.373386] ? ns_capable+0xe2/0x110 [ 2823.373834] genl_rcv_msg+0x33c/0x5a0 [ 2823.374309] ? genl_get_cmd+0x480/0x480 [ 2823.374811] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2823.375439] ? lock_release+0x680/0x680 [ 2823.375925] ? netlink_deliver_tap+0xf4/0xcd0 [ 2823.376469] netlink_rcv_skb+0x14b/0x430 [ 2823.376947] ? genl_get_cmd+0x480/0x480 [ 2823.377437] ? netlink_ack+0xab0/0xab0 [ 2823.377912] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2823.378495] ? is_vmalloc_addr+0x7b/0xb0 [ 2823.379005] genl_rcv+0x24/0x40 [ 2823.379406] netlink_unicast+0x549/0x7f0 [ 2823.379935] ? netlink_attachskb+0x870/0x870 [ 2823.380468] ? __virt_addr_valid+0x128/0x350 [ 2823.380992] netlink_sendmsg+0x90f/0xdf0 [ 2823.381484] ? netlink_unicast+0x7f0/0x7f0 [ 2823.382007] ? netlink_unicast+0x7f0/0x7f0 [ 2823.382496] __sock_sendmsg+0x154/0x190 [ 2823.382981] ____sys_sendmsg+0x70d/0x870 [ 2823.383447] ? sock_write_iter+0x3d0/0x3d0 [ 2823.383957] ? do_recvmmsg+0x6d0/0x6d0 [ 2823.384404] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2823.385055] ? lock_downgrade+0x6d0/0x6d0 [ 2823.385557] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2823.386182] ? SOFTIRQ_verbose+0x10/0x10 [ 2823.386678] ___sys_sendmsg+0xf3/0x170 [ 2823.387148] ? sendmsg_copy_msghdr+0x160/0x160 [ 2823.387694] ? lock_downgrade+0x6d0/0x6d0 [ 2823.388195] ? find_held_lock+0x2c/0x110 [ 2823.388693] ? __fget_files+0x296/0x4c0 [ 2823.389178] ? __fget_light+0xea/0x290 [ 2823.389652] __sys_sendmsg+0xe5/0x1b0 [ 2823.390117] ? __sys_sendmsg_sock+0x40/0x40 [ 2823.390639] ? rcu_read_lock_any_held+0x75/0xa0 [ 2823.391210] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2823.391834] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2823.392441] ? trace_hardirqs_on+0x5b/0x180 [ 2823.392948] do_syscall_64+0x33/0x40 [ 2823.393392] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2823.394016] RIP: 0033:0x7fa741f89b19 [ 2823.394464] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2823.396675] RSP: 002b:00007fa73f4ff188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2823.397589] RAX: ffffffffffffffda RBX: 00007fa74209cf60 RCX: 00007fa741f89b19 [ 2823.398439] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2823.399288] RBP: 00007fa73f4ff1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2823.400141] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2823.401014] R13: 00007ffd248a3bcf R14: 00007fa73f4ff300 R15: 0000000000022000 [ 2823.451533] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 2823.452614] System zones: 0-7 10:08:35 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0600001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2823.487309] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 2823.490289] FAULT_INJECTION: forcing a failure. [ 2823.490289] name failslab, interval 1, probability 0, space 0, times 0 [ 2823.491669] CPU: 1 PID: 15795 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 2823.492431] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2823.493367] Call Trace: [ 2823.493667] dump_stack+0x107/0x167 [ 2823.494073] should_fail.cold+0x5/0xa [ 2823.494501] ? create_object.isra.0+0x3a/0xa20 [ 2823.495006] should_failslab+0x5/0x20 [ 2823.495451] kmem_cache_alloc+0x5b/0x310 [ 2823.495926] ? kmem_cache_alloc_trace+0x151/0x320 [ 2823.496485] create_object.isra.0+0x3a/0xa20 [ 2823.496986] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2823.497581] __kmalloc+0x16e/0x390 [ 2823.497997] kobject_get_path+0xc5/0x1f0 [ 2823.498473] kobject_uevent_env+0x251/0xf90 [ 2823.498973] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2823.499580] ? _raw_spin_unlock_irqrestore+0x38/0x40 [ 2823.500163] ? trace_hardirqs_on+0x5b/0x180 [ 2823.500678] __device_release_driver+0x5cd/0x770 [ 2823.501230] device_release_driver+0x26/0x40 [ 2823.501742] mac80211_hwsim_new_radio+0x29a2/0x4250 [ 2823.502314] ? mark_held_locks+0x9e/0xe0 [ 2823.502805] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2823.503338] ? hwsim_new_radio_nl+0x61e/0x1080 [ 2823.503863] hwsim_new_radio_nl+0x991/0x1080 [ 2823.504365] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2823.504968] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2823.505720] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2823.506473] genl_family_rcv_msg_doit+0x22d/0x330 [ 2823.507033] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2823.507749] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2823.508370] ? cap_capable+0x1cd/0x230 [ 2823.508819] ? ns_capable+0xe2/0x110 [ 2823.509255] genl_rcv_msg+0x33c/0x5a0 [ 2823.509673] ? genl_get_cmd+0x480/0x480 [ 2823.510135] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2823.510702] ? lock_release+0x680/0x680 [ 2823.511160] ? netlink_deliver_tap+0xf4/0xcd0 [ 2823.511650] netlink_rcv_skb+0x14b/0x430 [ 2823.512117] ? genl_get_cmd+0x480/0x480 [ 2823.512549] ? netlink_ack+0xab0/0xab0 [ 2823.513011] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2823.513532] ? is_vmalloc_addr+0x7b/0xb0 [ 2823.514001] genl_rcv+0x24/0x40 [ 2823.514377] netlink_unicast+0x549/0x7f0 [ 2823.514854] ? netlink_attachskb+0x870/0x870 [ 2823.515360] ? __virt_addr_valid+0x128/0x350 [ 2823.515872] netlink_sendmsg+0x90f/0xdf0 [ 2823.516342] ? netlink_unicast+0x7f0/0x7f0 [ 2823.516828] ? netlink_unicast+0x7f0/0x7f0 [ 2823.517315] __sock_sendmsg+0x154/0x190 [ 2823.517756] ____sys_sendmsg+0x70d/0x870 [ 2823.518216] ? sock_write_iter+0x3d0/0x3d0 [ 2823.518677] ? do_recvmmsg+0x6d0/0x6d0 [ 2823.519122] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2823.519718] ? lock_downgrade+0x6d0/0x6d0 [ 2823.520195] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2823.520796] ? SOFTIRQ_verbose+0x10/0x10 [ 2823.521262] ___sys_sendmsg+0xf3/0x170 [ 2823.521707] ? sendmsg_copy_msghdr+0x160/0x160 [ 2823.522230] ? lock_downgrade+0x6d0/0x6d0 [ 2823.522703] ? find_held_lock+0x2c/0x110 [ 2823.523175] ? __fget_files+0x296/0x4c0 [ 2823.523615] ? __fget_light+0xea/0x290 [ 2823.524063] __sys_sendmsg+0xe5/0x1b0 [ 2823.524479] ? __sys_sendmsg_sock+0x40/0x40 [ 2823.524987] ? rcu_read_lock_any_held+0x75/0xa0 [ 2823.525502] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2823.526098] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2823.526664] ? trace_hardirqs_on+0x5b/0x180 [ 2823.527159] do_syscall_64+0x33/0x40 [ 2823.527568] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2823.528151] RIP: 0033:0x7fd0ea82fb19 [ 2823.528558] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2823.530637] RSP: 002b:00007fd0e7da5188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2823.531463] RAX: ffffffffffffffda RBX: 00007fd0ea942f60 RCX: 00007fd0ea82fb19 [ 2823.532271] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2823.533096] RBP: 00007fd0e7da51d0 R08: 0000000000000000 R09: 0000000000000000 [ 2823.533897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2823.534698] R13: 00007ffedd9ef45f R14: 00007fd0e7da5300 R15: 0000000000022000 10:08:36 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c6c00001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:08:36 executing program 1: r0 = openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self/attr/sockcreate\x00', 0x2, 0x0) fgetxattr(r0, 0x0, &(0x7f00000000c0)=""/150, 0x96) write$selinux_attr(r0, &(0x7f0000000040)='system_u:object_r:system_dbusd_var_lib_t:s0\x00', 0x2c) write$selinux_attr(r0, &(0x7f0000000840)='system_u:object_r:modules_dep_t:s0\x00', 0x23) r1 = syz_mount_image$nfs4(&(0x7f0000000000), &(0x7f0000000180)='./file0\x00', 0xad4, 0x6, &(0x7f0000000740)=[{&(0x7f00000001c0)="cc84cafea39017f098434d31e50f04905f123991a540ba1ccd348f04a1550e0a6355cf0e6e224b1661a2cff2c4f7d1aa25551cd44646b75848593c33203e2bb0dcd371e0c4e42185372325bbc3d8c71996f76f2b375085f027a310033785a2a4a9db18d88ae0ab57f2f565c06b00af41ac99327684c510e527535109ef0afbb762083ab125d09f46d6bf46f11840d8fab55afad42b166e9162aead6873b325a250c031111788d0a7ae293e2ec188ce172efbc95474cbfa3ac80b4a3c5fbf79be873a055afeda07ec8bb3244f0448fa5519abb95dcb239a0c5f4b600f442b891f1c9d9dc8478e995f22cc7e5b125c99111d5b", 0xf2, 0x1}, {&(0x7f00000002c0)="88af74f9b46eef40073082e2a227a335ae97962bb12c86c382eb0cb230e7f9ad9b14dbed5359f387577a918cd2ff3b9f9edf21571c05cc481f2eaa71b416c3d0fbc16dc17168ce60a7e6eab888e20ad03b2be5b3950403ac03bb6727e534571d6442e3ed93d5704f1a38bdf29b46541758ffe281953685f871a5b3c5c35c21c957771e7d92884154441c6ee989b27bda02068c94bba6ee22980a78e4d61232771bd9e3688b3e264f75eda42711a349237f39d70cee55eee57dbe61df924ce9ba5a7701dc8e1e095f793790eca535e393b7860caaca5aeb5ba6429e6cbd2ab0d68dedeb98e245", 0xe6, 0x6b}, {&(0x7f00000003c0)="3c9def17dcc7239e3d50197982b59223ad6cf6ddd8e299710e9672e118793479cb2bac1e41b3916957ffbd92802d433eab40445b92874fb085468ca455feec9ab997e79ae0274cc62582fb06cb4e910bdd3542bc3edea93913e54910644f30feca6e6e7412028cc555fc5356a815f8fa2447e235c25e88d18876015ef73ed6cc9b6b9527f3f223348388acddfeacb71489a65ca03790a099dac87f14d511d9bdc498493b164e3cae96701863", 0xac, 0x6fc}, {&(0x7f0000000580)="6c82c29479ce5d055b49559cd69cbc2fa4d41dbfa124f5ac02cbed3482705daf92ffcafd5648428aea3edf201be3010000400000000000fc8b5c37e5c07617a681bcf39657686f0b04006f1c7f062c71ddfb3131a78ff6772a0e5aea0563ca0169745f6e623002535d404deb9bb866a6f9c86cd8ebe7ac12b3fc8416670bdebb7118a45c5abc6c881acff2d09048a48ddd685b3ea358c7f00a4be61aa72bc569076863c24b439564adb4d85b905518d8f0c7944ebfbda9b180", 0xb9, 0x1}, {&(0x7f0000000640)="cfb82ea9bcdd0de7efe44b547382b38edf388368b046827b4de6ab8cfd1938b0fde857b269c7b4bd3d5de9b80973f1c8ebd5aab985060aad7e289d557d5bd0eb97abb23600fbe8bbd0c318857efba0b4915d79ad9880c43091a0f3ef567c93bf3c011924ed16040693348b716fb01c0c9eacb395563f98768acd240fbf01d9450878655e3d715432be95a455fe0f3b3e813e7b1c4900e7916a972c711ed6cfa19ac14e8e93c1125220f04ef11dd041c34e3c179ac5ed784684af5941a368d78de1f647b40b2312d639a7cdbfe6fbc67a9639f05de0bc282ae964143cbf1eadf1749c46e9d63183f2e90884b97c3ccef927885b21cf396837b2", 0xf9, 0x8}, {&(0x7f0000000480)="dd2b69413399241abaea49cd8a1800623d0e646fed187095379f6991e018d7b27a7af21a504a27aac7130b2e8804e5864209c58cf425", 0x36, 0x9}], 0x80028, &(0x7f00000008c0)={[{'.\\$'}], [{@euid_eq={'euid', 0x3d, 0xee01}}, {@measure}, {@smackfstransmute={'smackfstransmute', 0x3d, '\x9b3!\xa4L\xb4f\x13\xcc\xad\x8c\x1b8\xb5\xa9\xaf\x04\xeb\x11'}}]}) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000800)={{0x1, 0x1, 0x18, r1}, './file0\x00'}) r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000500), 0x202000, 0x0) getsockopt$inet_int(r2, 0x0, 0xa, &(0x7f0000000940), &(0x7f0000000980)=0x4) r3 = socket$inet6_udp(0xa, 0x2, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) connect$inet6(r3, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) ioctl$int_in(r1, 0x5452, &(0x7f0000000880)=0xfffffffffffffffd) perf_event_open(&(0x7f0000001d80)={0x3, 0x80, 0x0, 0x0, 0x3, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(r3, &(0x7f0000004d00)=[{{0x0, 0x11, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}, 0x200000}], 0x7ffff000, 0x0) [ 2823.545296] FAULT_INJECTION: forcing a failure. [ 2823.545296] name failslab, interval 1, probability 0, space 0, times 0 [ 2823.548104] CPU: 0 PID: 15798 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 2823.549558] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2823.551255] Call Trace: [ 2823.551812] dump_stack+0x107/0x167 [ 2823.552570] should_fail.cold+0x5/0xa [ 2823.553404] should_failslab+0x5/0x20 [ 2823.554185] __kmalloc_track_caller+0x79/0x370 [ 2823.555129] ? kasprintf+0xbb/0xf0 [ 2823.555872] kvasprintf+0xb5/0x150 [ 2823.556618] ? bust_spinlocks+0xe0/0xe0 [ 2823.557446] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2823.558534] ? get_random_u32+0x3cb/0x670 [ 2823.559391] kasprintf+0xbb/0xf0 [ 2823.560113] ? kvasprintf_const+0x1a0/0x1a0 [ 2823.561017] ? lockdep_init_map_type+0x2c7/0x780 [ 2823.561997] ? lockdep_init_map_type+0x2c7/0x780 [ 2823.562977] ieee80211_alloc_led_names+0x82/0x420 [ 2823.563986] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 2823.564964] ? trace_hardirqs_on+0x5b/0x180 [ 2823.565857] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 2823.566849] ? ____sys_sendmsg+0x70d/0x870 [ 2823.567718] ? ___sys_sendmsg+0xf3/0x170 [ 2823.568557] ? __sys_sendmsg+0xe5/0x1b0 [ 2823.569399] ? do_syscall_64+0x33/0x40 [ 2823.570203] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2823.571301] ? lock_acquire+0x197/0x470 [ 2823.572117] ? create_object.isra.0+0x3ad/0xa20 [ 2823.573094] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2823.574060] hwsim_new_radio_nl+0x991/0x1080 [ 2823.574979] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2823.576060] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2823.577421] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2823.578757] genl_family_rcv_msg_doit+0x22d/0x330 [ 2823.579763] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2823.581131] ? cap_capable+0x1cd/0x230 [ 2823.581949] ? ns_capable+0xe2/0x110 [ 2823.582713] genl_rcv_msg+0x33c/0x5a0 [ 2823.583494] ? genl_get_cmd+0x480/0x480 [ 2823.584310] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2823.585389] ? lock_release+0x680/0x680 [ 2823.586205] ? netlink_deliver_tap+0xf4/0xcd0 [ 2823.587132] netlink_rcv_skb+0x14b/0x430 [ 2823.587958] ? genl_get_cmd+0x480/0x480 [ 2823.588804] ? netlink_ack+0xab0/0xab0 [ 2823.589615] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2823.590566] ? is_vmalloc_addr+0x7b/0xb0 [ 2823.591398] genl_rcv+0x24/0x40 [ 2823.592089] netlink_unicast+0x549/0x7f0 [ 2823.592934] ? netlink_attachskb+0x870/0x870 [ 2823.593856] ? __virt_addr_valid+0x128/0x350 [ 2823.594773] netlink_sendmsg+0x90f/0xdf0 [ 2823.595631] ? netlink_unicast+0x7f0/0x7f0 [ 2823.596508] ? netlink_unicast+0x7f0/0x7f0 [ 2823.597404] __sock_sendmsg+0x154/0x190 [ 2823.598221] ____sys_sendmsg+0x70d/0x870 [ 2823.599074] ? sock_write_iter+0x3d0/0x3d0 [ 2823.599936] ? do_recvmmsg+0x6d0/0x6d0 [ 2823.600760] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2823.601845] ? lock_downgrade+0x6d0/0x6d0 [ 2823.602701] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2823.603764] ? SOFTIRQ_verbose+0x10/0x10 [ 2823.604610] ___sys_sendmsg+0xf3/0x170 [ 2823.605424] ? sendmsg_copy_msghdr+0x160/0x160 [ 2823.606368] ? lock_downgrade+0x6d0/0x6d0 [ 2823.607230] ? find_held_lock+0x2c/0x110 [ 2823.608083] ? __fget_files+0x296/0x4c0 [ 2823.608921] ? __fget_light+0xea/0x290 [ 2823.609738] __sys_sendmsg+0xe5/0x1b0 [ 2823.610525] ? __sys_sendmsg_sock+0x40/0x40 [ 2823.611411] ? rcu_read_lock_any_held+0x75/0xa0 [ 2823.612392] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2823.613482] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2823.614535] ? trace_hardirqs_on+0x5b/0x180 [ 2823.615434] do_syscall_64+0x33/0x40 [ 2823.616194] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2823.617261] RIP: 0033:0x7f46fba00b19 [ 2823.618033] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2823.621823] RSP: 002b:00007f46f8f76188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2823.623395] RAX: ffffffffffffffda RBX: 00007f46fbb13f60 RCX: 00007f46fba00b19 [ 2823.624874] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2823.626332] RBP: 00007f46f8f761d0 R08: 0000000000000000 R09: 0000000000000000 [ 2823.627789] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2823.629270] R13: 00007ffe81962e7f R14: 00007f46f8f76300 R15: 0000000000022000 10:08:36 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) (fail_nth: 86) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:08:36 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x47a00, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) [ 2823.681265] audit: type=1400 audit(1703585316.215:170): avc: denied { create } for pid=15813 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:modules_dep_t:s0 tclass=udp_socket permissive=1 [ 2823.684992] audit: type=1400 audit(1703585316.219:171): avc: denied { create } for pid=15813 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:modules_dep_t:s0 tclass=rawip_socket permissive=1 [ 2823.688867] audit: type=1400 audit(1703585316.223:172): avc: denied { connect } for pid=15813 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:modules_dep_t:s0 tclass=udp_socket permissive=1 [ 2823.693623] audit: type=1400 audit(1703585316.228:173): avc: denied { write } for pid=15813 comm="syz-executor.1" laddr=fe80::b lport=33994 faddr=fe80:: scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:object_r:modules_dep_t:s0 tclass=udp_socket permissive=1 [ 2823.722667] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 2823.738909] System zones: 0-7 [ 2823.747160] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 2823.807576] FAULT_INJECTION: forcing a failure. [ 2823.807576] name failslab, interval 1, probability 0, space 0, times 0 [ 2823.808910] CPU: 1 PID: 15824 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 2823.809637] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2823.810530] Call Trace: [ 2823.810852] dump_stack+0x107/0x167 [ 2823.811244] should_fail.cold+0x5/0xa [ 2823.811652] ? kobject_get_path+0xc5/0x1f0 [ 2823.812117] should_failslab+0x5/0x20 [ 2823.812525] __kmalloc+0x72/0x390 [ 2823.812924] ? trace_hardirqs_on+0x5b/0x180 [ 2823.813410] kobject_get_path+0xc5/0x1f0 [ 2823.813850] kobject_uevent_env+0x251/0xf90 [ 2823.814312] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2823.814879] ? _raw_spin_unlock_irqrestore+0x38/0x40 [ 2823.815410] ? trace_hardirqs_on+0x5b/0x180 [ 2823.815883] __device_release_driver+0x5cd/0x770 [ 2823.816394] device_release_driver+0x26/0x40 [ 2823.816882] mac80211_hwsim_new_radio+0x29a2/0x4250 [ 2823.817426] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2823.817940] hwsim_new_radio_nl+0x991/0x1080 [ 2823.818429] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2823.819016] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2823.819734] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2823.820583] genl_family_rcv_msg_doit+0x22d/0x330 [ 2823.821243] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2823.821967] ? cap_capable+0x1cd/0x230 [ 2823.822402] ? ns_capable+0xe2/0x110 [ 2823.822813] genl_rcv_msg+0x33c/0x5a0 [ 2823.823233] ? genl_get_cmd+0x480/0x480 [ 2823.823668] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2823.824236] ? lock_release+0x680/0x680 [ 2823.824691] ? netlink_deliver_tap+0xf4/0xcd0 [ 2823.825183] netlink_rcv_skb+0x14b/0x430 [ 2823.825633] ? genl_get_cmd+0x480/0x480 [ 2823.826069] ? netlink_ack+0xab0/0xab0 [ 2823.826508] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2823.826993] ? is_vmalloc_addr+0x7b/0xb0 [ 2823.827440] genl_rcv+0x24/0x40 [ 2823.827810] netlink_unicast+0x549/0x7f0 [ 2823.828261] ? netlink_attachskb+0x870/0x870 [ 2823.828756] ? __virt_addr_valid+0x128/0x350 [ 2823.829248] netlink_sendmsg+0x90f/0xdf0 [ 2823.829697] ? netlink_unicast+0x7f0/0x7f0 [ 2823.830173] ? netlink_unicast+0x7f0/0x7f0 [ 2823.830637] __sock_sendmsg+0x154/0x190 [ 2823.831085] ____sys_sendmsg+0x70d/0x870 [ 2823.831531] ? sock_write_iter+0x3d0/0x3d0 [ 2823.831994] ? do_recvmmsg+0x6d0/0x6d0 [ 2823.832428] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2823.833009] ? lock_downgrade+0x6d0/0x6d0 [ 2823.833456] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2823.834035] ? SOFTIRQ_verbose+0x10/0x10 [ 2823.834467] ___sys_sendmsg+0xf3/0x170 [ 2823.834900] ? sendmsg_copy_msghdr+0x160/0x160 [ 2823.835403] ? lock_downgrade+0x6d0/0x6d0 [ 2823.835860] ? find_held_lock+0x2c/0x110 [ 2823.836310] ? __fget_files+0x296/0x4c0 [ 2823.836771] ? __fget_light+0xea/0x290 [ 2823.837200] __sys_sendmsg+0xe5/0x1b0 [ 2823.837616] ? __sys_sendmsg_sock+0x40/0x40 [ 2823.838093] ? rcu_read_lock_any_held+0x75/0xa0 [ 2823.838618] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2823.839187] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2823.839764] ? trace_hardirqs_on+0x5b/0x180 [ 2823.840241] do_syscall_64+0x33/0x40 [ 2823.840641] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2823.841212] RIP: 0033:0x7fd0ea82fb19 [ 2823.841610] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2823.843627] RSP: 002b:00007fd0e7da5188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2823.844467] RAX: ffffffffffffffda RBX: 00007fd0ea942f60 RCX: 00007fd0ea82fb19 [ 2823.845258] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2823.846021] RBP: 00007fd0e7da51d0 R08: 0000000000000000 R09: 0000000000000000 [ 2823.846802] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2823.847556] R13: 00007ffedd9ef45f R14: 00007fd0e7da5300 R15: 0000000000022000 10:08:50 executing program 1: ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x1f, "77004a6efdff000100000000cdab000245b00f", 0x1}) r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) r1 = socket$inet(0x2, 0xa, 0x0) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/class/devlink', 0x0, 0x0) ioctl$sock_SIOCGIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(r2, 0x8982, &(0x7f0000000100)={0x3, 'vlan0\x00', {}, 0x8000}) ioctl$TUNSETLINK(r2, 0x400454cd, 0x537) sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0) r3 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TCSETSF2(r3, 0x402c542d, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, 0x0) ioctl$VT_GETMODE(0xffffffffffffffff, 0x5601, 0x0) r4 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000000c0)={'lo\x00', 0x0}) setsockopt$inet6_mreq(r4, 0x29, 0x1c, &(0x7f0000000000)={@local, r5}, 0x14) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x48204, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfffffffffffffffa}, 0x0, 0x5}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) dup3(r1, r0, 0x0) 10:08:50 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0700001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:08:50 executing program 2: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 78) r2 = creat(0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:08:50 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) setsockopt$inet6_int(r0, 0x29, 0x24, &(0x7f0000000080)=0x1000, 0x4) syz_emit_ethernet(0x10ea, &(0x7f00000000c0)={@link_local, @broadcast, @val={@val={0x9100, 0x4, 0x1, 0x4}, {0x8100, 0x7, 0x1, 0x1}}, {@ipv4={0x800, @tcp={{0x1d, 0x4, 0x1, 0x12, 0x10d4, 0x66, 0x0, 0xb8, 0x6, 0x0, @loopback, @multicast1, {[@timestamp_prespec={0x44, 0x3c, 0xf3, 0x3, 0x7, [{@rand_addr=0x64010101, 0xffffffff}, {@dev={0xac, 0x14, 0x14, 0x40}, 0x3}, {@dev={0xac, 0x14, 0x14, 0x2e}, 0x8001}, {@remote, 0x8}, {@loopback, 0xaf68}, {@rand_addr=0x64010100}, {@local, 0x3}]}, @end, @ra={0x94, 0x4, 0x1}, @noop, @timestamp={0x44, 0x1c, 0x1d, 0x0, 0x4, [0x7, 0x2e56, 0x3, 0x5, 0x20, 0x1000]}]}}, {{0x4e23, 0x4e23, 0x41424344, 0x41424344, 0x0, 0x0, 0x18, 0x2, 0x1000, 0x0, 0x9, {[@md5sig={0x13, 0x12, "6d526451eb6daa36fa36a8b4d5175a0d"}, @eol, @sack={0x5, 0xe, [0x5, 0x9, 0x16]}, @mptcp=@add_addr={0x1e, 0x12, 0x0, 0x12, 0x40, @local, 0x7, "5d9d6c8accd2ed56"}, @exp_smc={0xfe, 0x6}, @eol, @sack={0x5, 0x6, [0x8]}, @timestamp={0x8, 0xa, 0xffffffff, 0x3}]}}, {"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"}}}}}}, 0x0) 10:08:50 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) (fail_nth: 87) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:08:50 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c7400001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:08:50 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a102, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) 10:08:51 executing program 3: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 20) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2838.537227] FAULT_INJECTION: forcing a failure. [ 2838.537227] name failslab, interval 1, probability 0, space 0, times 0 [ 2838.540096] CPU: 1 PID: 15840 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 2838.541548] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2838.543255] Call Trace: [ 2838.543817] dump_stack+0x107/0x167 [ 2838.544583] should_fail.cold+0x5/0xa [ 2838.545388] ? __alloc_skb+0x6d/0x5b0 [ 2838.546195] should_failslab+0x5/0x20 [ 2838.546991] kmem_cache_alloc_node+0x55/0x330 [ 2838.547933] __alloc_skb+0x6d/0x5b0 [ 2838.548696] alloc_uevent_skb+0x7b/0x210 [ 2838.549839] kobject_uevent_env+0x99a/0xf90 [ 2838.550906] driver_bound+0x19d/0x1f0 [ 2838.551829] device_bind_driver+0xae/0xd0 [ 2838.552859] mac80211_hwsim_new_radio+0x3d2/0x4250 [ 2838.554038] ? ____sys_sendmsg+0x70d/0x870 [ 2838.555053] ? ___sys_sendmsg+0xf3/0x170 [ 2838.556028] ? __sys_sendmsg+0xe5/0x1b0 [ 2838.557000] ? do_syscall_64+0x33/0x40 [ 2838.557937] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2838.559220] ? lock_acquire+0x197/0x470 [ 2838.560179] ? create_object.isra.0+0x3ad/0xa20 [ 2838.561321] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2838.562457] hwsim_new_radio_nl+0x991/0x1080 [ 2838.563523] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2838.564818] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2838.566266] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2838.567602] genl_family_rcv_msg_doit+0x22d/0x330 [ 2838.568606] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2838.569971] ? cap_capable+0x1cd/0x230 [ 2838.570800] ? ns_capable+0xe2/0x110 [ 2838.571589] genl_rcv_msg+0x33c/0x5a0 [ 2838.572384] ? genl_get_cmd+0x480/0x480 [ 2838.573225] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2838.574293] ? lock_release+0x680/0x680 [ 2838.575156] ? netlink_deliver_tap+0xf4/0xcd0 [ 2838.576086] netlink_rcv_skb+0x14b/0x430 [ 2838.576980] ? genl_get_cmd+0x480/0x480 [ 2838.577795] ? netlink_ack+0xab0/0xab0 [ 2838.578648] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2838.579585] ? is_vmalloc_addr+0x7b/0xb0 [ 2838.580468] genl_rcv+0x24/0x40 [ 2838.581146] netlink_unicast+0x549/0x7f0 [ 2838.581984] ? netlink_attachskb+0x870/0x870 [ 2838.582882] ? __virt_addr_valid+0x128/0x350 [ 2838.583801] netlink_sendmsg+0x90f/0xdf0 [ 2838.584637] ? netlink_unicast+0x7f0/0x7f0 [ 2838.585531] ? netlink_unicast+0x7f0/0x7f0 [ 2838.586394] __sock_sendmsg+0x154/0x190 [ 2838.587209] ____sys_sendmsg+0x70d/0x870 [ 2838.588044] ? sock_write_iter+0x3d0/0x3d0 [ 2838.588914] ? do_recvmmsg+0x6d0/0x6d0 [ 2838.589707] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2838.590787] ? lock_downgrade+0x6d0/0x6d0 [ 2838.591637] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2838.592713] ? SOFTIRQ_verbose+0x10/0x10 [ 2838.593559] ___sys_sendmsg+0xf3/0x170 [ 2838.594368] ? sendmsg_copy_msghdr+0x160/0x160 [ 2838.595302] ? lock_downgrade+0x6d0/0x6d0 [ 2838.596162] ? find_held_lock+0x2c/0x110 [ 2838.597008] ? __fget_files+0x296/0x4c0 [ 2838.597829] ? __fget_light+0xea/0x290 [ 2838.598643] __sys_sendmsg+0xe5/0x1b0 [ 2838.599418] ? __sys_sendmsg_sock+0x40/0x40 [ 2838.600303] ? rcu_read_lock_any_held+0x75/0xa0 [ 2838.601279] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2838.602358] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2838.603401] ? trace_hardirqs_on+0x5b/0x180 [ 2838.604292] do_syscall_64+0x33/0x40 [ 2838.605066] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2838.606125] RIP: 0033:0x7fa741f89b19 [ 2838.606893] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2838.610673] RSP: 002b:00007fa73f4ff188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2838.612235] RAX: ffffffffffffffda RBX: 00007fa74209cf60 RCX: 00007fa741f89b19 [ 2838.613701] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2838.615165] RBP: 00007fa73f4ff1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2838.616620] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2838.618095] R13: 00007ffd248a3bcf R14: 00007fa73f4ff300 R15: 0000000000022000 [ 2838.628273] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 2838.631439] System zones: 0-7 [ 2838.640162] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 2838.716745] FAULT_INJECTION: forcing a failure. [ 2838.716745] name failslab, interval 1, probability 0, space 0, times 0 [ 2838.719675] CPU: 1 PID: 15845 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 2838.721111] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2838.722794] Call Trace: [ 2838.723342] dump_stack+0x107/0x167 [ 2838.724113] should_fail.cold+0x5/0xa [ 2838.724905] ? create_object.isra.0+0x3a/0xa20 [ 2838.725857] should_failslab+0x5/0x20 [ 2838.726632] kmem_cache_alloc+0x5b/0x310 [ 2838.727484] create_object.isra.0+0x3a/0xa20 [ 2838.728387] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2838.729432] kmem_cache_alloc_node+0x169/0x330 [ 2838.730402] __alloc_skb+0x6d/0x5b0 [ 2838.731164] alloc_uevent_skb+0x7b/0x210 [ 2838.732006] kobject_uevent_env+0x99a/0xf90 [ 2838.732907] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2838.733986] ? trace_hardirqs_on+0x5b/0x180 [ 2838.734865] __device_release_driver+0x5cd/0x770 [ 2838.735849] device_release_driver+0x26/0x40 [ 2838.736736] mac80211_hwsim_new_radio+0x29a2/0x4250 [ 2838.737771] ? ____sys_sendmsg+0x70d/0x870 [ 2838.738620] ? ___sys_sendmsg+0xf3/0x170 [ 2838.739450] ? __sys_sendmsg+0xe5/0x1b0 [ 2838.740269] ? do_syscall_64+0x33/0x40 [ 2838.741080] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2838.742185] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2838.743166] hwsim_new_radio_nl+0x991/0x1080 [ 2838.744072] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2838.745157] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2838.746524] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2838.747870] genl_family_rcv_msg_doit+0x22d/0x330 [ 2838.748885] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2838.750233] ? security_capable+0x6e/0xc0 [ 2838.751083] ? cap_capable+0x1cd/0x230 [ 2838.751905] ? ns_capable+0xe2/0x110 [ 2838.752676] genl_rcv_msg+0x33c/0x5a0 [ 2838.753475] ? genl_get_cmd+0x480/0x480 [ 2838.754292] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2838.755399] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2838.756464] ? netlink_rcv_skb+0x7b/0x430 [ 2838.757330] netlink_rcv_skb+0x14b/0x430 [ 2838.758162] ? genl_get_cmd+0x480/0x480 [ 2838.758984] ? netlink_ack+0xab0/0xab0 [ 2838.759796] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2838.760737] ? is_vmalloc_addr+0x7b/0xb0 [ 2838.761594] genl_rcv+0x24/0x40 [ 2838.762272] netlink_unicast+0x549/0x7f0 [ 2838.763114] ? netlink_attachskb+0x870/0x870 [ 2838.764026] ? __virt_addr_valid+0x128/0x350 [ 2838.764950] netlink_sendmsg+0x90f/0xdf0 [ 2838.765799] ? netlink_unicast+0x7f0/0x7f0 [ 2838.766684] ? netlink_unicast+0x7f0/0x7f0 [ 2838.767553] __sock_sendmsg+0x154/0x190 [ 2838.768373] ____sys_sendmsg+0x70d/0x870 [ 2838.769234] ? sock_write_iter+0x3d0/0x3d0 [ 2838.770100] ? do_recvmmsg+0x6d0/0x6d0 [ 2838.770904] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2838.771982] ? lock_downgrade+0x6d0/0x6d0 [ 2838.772843] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2838.773918] ? SOFTIRQ_verbose+0x10/0x10 [ 2838.774755] ___sys_sendmsg+0xf3/0x170 [ 2838.775558] ? sendmsg_copy_msghdr+0x160/0x160 [ 2838.776500] ? lock_downgrade+0x6d0/0x6d0 [ 2838.777364] ? find_held_lock+0x2c/0x110 [ 2838.778220] ? __fget_files+0x296/0x4c0 [ 2838.779057] ? __fget_light+0xea/0x290 [ 2838.779865] __sys_sendmsg+0xe5/0x1b0 [ 2838.780649] ? __sys_sendmsg_sock+0x40/0x40 [ 2838.781551] ? rcu_read_lock_any_held+0x75/0xa0 [ 2838.782538] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2838.783612] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2838.784668] ? trace_hardirqs_on+0x5b/0x180 [ 2838.785563] do_syscall_64+0x33/0x40 [ 2838.786326] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2838.787385] RIP: 0033:0x7fd0ea82fb19 [ 2838.788157] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2838.791902] RSP: 002b:00007fd0e7da5188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2838.793479] RAX: ffffffffffffffda RBX: 00007fd0ea942f60 RCX: 00007fd0ea82fb19 [ 2838.794933] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2838.796387] RBP: 00007fd0e7da51d0 R08: 0000000000000000 R09: 0000000000000000 [ 2838.797857] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2838.799309] R13: 00007ffedd9ef45f R14: 00007fd0e7da5300 R15: 0000000000022000 [ 2838.817139] FAULT_INJECTION: forcing a failure. [ 2838.817139] name failslab, interval 1, probability 0, space 0, times 0 [ 2838.821214] CPU: 1 PID: 15848 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 2838.822622] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2838.824338] Call Trace: [ 2838.824900] dump_stack+0x107/0x167 [ 2838.825660] should_fail.cold+0x5/0xa [ 2838.826447] should_failslab+0x5/0x20 [ 2838.827239] __kmalloc_track_caller+0x79/0x370 [ 2838.828180] ? kasprintf+0xbb/0xf0 [ 2838.828933] kvasprintf+0xb5/0x150 [ 2838.829654] ? bust_spinlocks+0xe0/0xe0 [ 2838.830472] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2838.831543] ? get_random_u32+0x3cb/0x670 [ 2838.832409] kasprintf+0xbb/0xf0 [ 2838.833119] ? kvasprintf_const+0x1a0/0x1a0 [ 2838.834019] ? lockdep_init_map_type+0x2c7/0x780 [ 2838.834990] ? lockdep_init_map_type+0x2c7/0x780 [ 2838.835996] ieee80211_alloc_led_names+0x117/0x420 [ 2838.837024] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 2838.837981] ? trace_hardirqs_on+0x5b/0x180 [ 2838.838863] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 2838.839856] ? ____sys_sendmsg+0x70d/0x870 [ 2838.840715] ? ___sys_sendmsg+0xf3/0x170 [ 2838.841544] ? __sys_sendmsg+0xe5/0x1b0 [ 2838.842352] ? do_syscall_64+0x33/0x40 [ 2838.843181] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2838.844267] ? lock_acquire+0x197/0x470 [ 2838.845116] ? create_object.isra.0+0x3ad/0xa20 [ 2838.846075] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2838.847064] hwsim_new_radio_nl+0x991/0x1080 [ 2838.847975] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2838.849084] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2838.850411] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2838.851779] genl_family_rcv_msg_doit+0x22d/0x330 [ 2838.852768] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2838.854119] ? cap_capable+0x1cd/0x230 [ 2838.854925] ? ns_capable+0xe2/0x110 [ 2838.855688] genl_rcv_msg+0x33c/0x5a0 [ 2838.856484] ? genl_get_cmd+0x480/0x480 [ 2838.857297] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2838.858362] ? lock_release+0x680/0x680 [ 2838.859166] ? netlink_deliver_tap+0xf4/0xcd0 [ 2838.860086] netlink_rcv_skb+0x14b/0x430 [ 2838.860958] ? genl_get_cmd+0x480/0x480 [ 2838.861768] ? netlink_ack+0xab0/0xab0 [ 2838.862584] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2838.863549] ? is_vmalloc_addr+0x7b/0xb0 [ 2838.864376] genl_rcv+0x24/0x40 [ 2838.865088] netlink_unicast+0x549/0x7f0 [ 2838.865924] ? netlink_attachskb+0x870/0x870 [ 2838.866844] ? __virt_addr_valid+0x128/0x350 [ 2838.867751] netlink_sendmsg+0x90f/0xdf0 [ 2838.868615] ? netlink_unicast+0x7f0/0x7f0 [ 2838.869499] ? netlink_unicast+0x7f0/0x7f0 [ 2838.870373] __sock_sendmsg+0x154/0x190 [ 2838.871180] ____sys_sendmsg+0x70d/0x870 [ 2838.872015] ? sock_write_iter+0x3d0/0x3d0 [ 2838.872900] ? do_recvmmsg+0x6d0/0x6d0 [ 2838.873696] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2838.874753] ? lock_downgrade+0x6d0/0x6d0 [ 2838.875601] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2838.876694] ? SOFTIRQ_verbose+0x10/0x10 [ 2838.877551] ___sys_sendmsg+0xf3/0x170 [ 2838.878346] ? sendmsg_copy_msghdr+0x160/0x160 [ 2838.879290] ? lock_downgrade+0x6d0/0x6d0 [ 2838.880129] ? find_held_lock+0x2c/0x110 [ 2838.880984] ? __fget_files+0x296/0x4c0 [ 2838.881808] ? __fget_light+0xea/0x290 [ 2838.882616] __sys_sendmsg+0xe5/0x1b0 [ 2838.883385] ? __sys_sendmsg_sock+0x40/0x40 [ 2838.884266] ? rcu_read_lock_any_held+0x75/0xa0 [ 2838.885248] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2838.886318] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2838.887352] ? trace_hardirqs_on+0x5b/0x180 [ 2838.888245] do_syscall_64+0x33/0x40 [ 2838.889005] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2838.890054] RIP: 0033:0x7f46fba00b19 [ 2838.890808] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2838.894576] RSP: 002b:00007f46f8f76188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2838.896117] RAX: ffffffffffffffda RBX: 00007f46fbb13f60 RCX: 00007f46fba00b19 [ 2838.897597] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2838.899062] RBP: 00007f46f8f761d0 R08: 0000000000000000 R09: 0000000000000000 [ 2838.900526] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2838.901995] R13: 00007ffe81962e7f R14: 00007f46f8f76300 R15: 0000000000022000 10:09:06 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a530, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) 10:09:06 executing program 0: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000002ec0), 0x4) sendmsg$inet6(r0, &(0x7f00000004c0)={&(0x7f0000000100)={0xa, 0x4e24, 0x76f, @loopback, 0x6}, 0x1c, &(0x7f0000000340)=[{&(0x7f0000000200)="534aefbfc0ce33a9b8475ef9fe975298191ef3fdd08c9e6b431a2504f5857461392b1a2edfd621a7aee55d6fc44a2475d8cff45a0d96431593b89026d703af41bf216d2498d2ecc82b540451c317fa6e34c2fa453288ca9710a3151b2e07a0656a085b9e1aec", 0x66}, {&(0x7f0000000700)="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", 0x1000}, {&(0x7f0000000280)="51606acf1f0c67972bcc8443cf197072e89b", 0x12}, {&(0x7f00000002c0)="8766798f25931f202c2f8c603e25764e4b84a2aa4825638075bc781183b79d5bf3e478321db6011cb649d7c31129210a0db4616bbdd6c76670822d7c922e04b9e25df5b9a54dd3a1f9f1af5d284508f2eaf0816f", 0x54}], 0x4, &(0x7f0000000380)=[@dstopts_2292={{0x108, 0x29, 0x4, {0x33, 0x1d, '\x00', [@ra={0x5, 0x2, 0x1ff}, @generic={0x92, 0xb2, "3c6126075c922cbfdbf5068a81ff811740dc625390a51374a56651519a80f0b6c614a58933206742810707cea76fe185fbdf0391e03148227856b734762570e83619a6ee37b12c9c6cf6a1250936149e5ef86405eef10c6d69574f8331dbb14f03844f5856fa2f78d834b14c7f7c30bbc3334256f51a14aac0f431e91ffb7590e216e6e56a14c3b771b35d84e3e60178a44f8f6372ff093c9e0bb4c3b6eb3a37fab01d1bb7e98b3a2e18a57ce41e74e4c4aa"}, @calipso={0x7, 0x18, {0x3, 0x4, 0x3, 0x3, [0x6, 0x9d]}}, @pad1, @hao={0xc9, 0x10, @empty}, @ra={0x5, 0x2, 0x9ae}]}}}, @dstopts_2292={{0x20, 0x29, 0x4, {0xb4, 0x0, '\x00', [@pad1]}}}, @hoplimit={{0x14, 0x29, 0x34, 0x7ff}}], 0x140}, 0x40000d1) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) setsockopt$bt_hci_HCI_DATA_DIR(r1, 0x0, 0x1, 0x0, 0x0) write$bt_hci(0xffffffffffffffff, &(0x7f0000001700)=ANY=[], 0x106) openat$bsg(0xffffffffffffff9c, &(0x7f0000000180), 0x40000, 0x0) ioctl$FIBMAP(r1, 0x1, &(0x7f0000000040)=0xffffff8a) setgid(0x0) fcntl$getownex(r0, 0x10, &(0x7f0000000140)) sendmsg$inet6(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x61, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2692, 0x0, @perf_config_ext={0x0, 0x71}}, 0x0, 0xfffdffffffffffff, 0xffffffffffffffff, 0x0) recvfrom$inet6(r0, &(0x7f0000001e00)=""/4096, 0x1000, 0xcd08, 0x0, 0x0) 10:09:06 executing program 3: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 21) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:09:06 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) (fail_nth: 88) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:09:06 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0800001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:09:06 executing program 1: ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f00000006c0)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0, 0x0}) ioctl$BTRFS_IOC_WAIT_SYNC(0xffffffffffffffff, 0x40089416, &(0x7f00000001c0)=r0) fsync(0xffffffffffffffff) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x400}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000180), 0x180, 0x0) ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0) setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0xe62a28a8003dfe4b, &(0x7f00000000c0)=0x1, 0x41) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0xb) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f00000003c0)={0x0, 0x0, 0x0}, 0x0) pread64(r2, &(0x7f0000000040)=""/86, 0x56, 0xfffffffffffffffd) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x4022812, 0xffffffffffffffff, 0x0) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) write$bt_hci(r3, &(0x7f0000000080)=ANY=[@ANYRES64=r3], 0xa) r4 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82) ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, r4) ioctl$F2FS_IOC_RESERVE_COMPRESS_BLOCKS(r1, 0x8008f513, &(0x7f0000000000)) 10:09:06 executing program 2: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 79) r2 = creat(0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:09:06 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c7a00001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2854.028643] FAULT_INJECTION: forcing a failure. [ 2854.028643] name failslab, interval 1, probability 0, space 0, times 0 [ 2854.030236] CPU: 0 PID: 15876 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 2854.031085] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2854.032083] Call Trace: [ 2854.032417] dump_stack+0x107/0x167 [ 2854.032867] should_fail.cold+0x5/0xa [ 2854.033342] ? create_object.isra.0+0x3a/0xa20 [ 2854.033904] should_failslab+0x5/0x20 [ 2854.034368] kmem_cache_alloc+0x5b/0x310 [ 2854.034870] ? vsnprintf+0x4ba/0x1600 [ 2854.035340] create_object.isra.0+0x3a/0xa20 [ 2854.035865] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2854.036487] __kmalloc_track_caller+0x177/0x370 [ 2854.037053] ? kasprintf+0xbb/0xf0 [ 2854.037494] kvasprintf+0xb5/0x150 [ 2854.037931] ? bust_spinlocks+0xe0/0xe0 [ 2854.038417] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2854.039058] ? get_random_u32+0x3cb/0x670 [ 2854.039568] kasprintf+0xbb/0xf0 [ 2854.039982] ? kvasprintf_const+0x1a0/0x1a0 [ 2854.040494] ? lockdep_init_map_type+0x2c7/0x780 [ 2854.041081] ? lockdep_init_map_type+0x2c7/0x780 [ 2854.041667] ieee80211_alloc_led_names+0x117/0x420 [ 2854.042263] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 2854.042832] ? trace_hardirqs_on+0x5b/0x180 [ 2854.043335] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 2854.043931] ? ____sys_sendmsg+0x70d/0x870 [ 2854.044442] ? ___sys_sendmsg+0xf3/0x170 [ 2854.044931] ? __sys_sendmsg+0xe5/0x1b0 [ 2854.045424] ? do_syscall_64+0x33/0x40 [ 2854.045899] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2854.046545] ? lock_acquire+0x197/0x470 [ 2854.047032] ? create_object.isra.0+0x3ad/0xa20 [ 2854.047607] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2854.048189] hwsim_new_radio_nl+0x991/0x1080 [ 2854.048723] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2854.049382] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2854.050175] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2854.050971] genl_family_rcv_msg_doit+0x22d/0x330 [ 2854.051555] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2854.052357] ? cap_capable+0x1cd/0x230 [ 2854.052848] ? ns_capable+0xe2/0x110 [ 2854.053313] genl_rcv_msg+0x33c/0x5a0 [ 2854.053774] ? genl_get_cmd+0x480/0x480 [ 2854.054255] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2854.054884] ? lock_release+0x680/0x680 [ 2854.055359] ? netlink_deliver_tap+0xf4/0xcd0 [ 2854.055906] netlink_rcv_skb+0x14b/0x430 [ 2854.056379] ? genl_get_cmd+0x480/0x480 [ 2854.056862] ? netlink_ack+0xab0/0xab0 [ 2854.057361] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2854.057905] ? is_vmalloc_addr+0x7b/0xb0 [ 2854.058392] genl_rcv+0x24/0x40 [ 2854.058792] netlink_unicast+0x549/0x7f0 [ 2854.059285] ? netlink_attachskb+0x870/0x870 [ 2854.059825] ? __virt_addr_valid+0x128/0x350 [ 2854.060364] netlink_sendmsg+0x90f/0xdf0 [ 2854.060863] ? netlink_unicast+0x7f0/0x7f0 [ 2854.061405] ? netlink_unicast+0x7f0/0x7f0 [ 2854.061915] __sock_sendmsg+0x154/0x190 [ 2854.062395] ____sys_sendmsg+0x70d/0x870 [ 2854.062891] ? sock_write_iter+0x3d0/0x3d0 [ 2854.063397] ? do_recvmmsg+0x6d0/0x6d0 [ 2854.063870] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2854.064510] ? lock_downgrade+0x6d0/0x6d0 [ 2854.065029] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2854.065661] ? SOFTIRQ_verbose+0x10/0x10 [ 2854.066154] ___sys_sendmsg+0xf3/0x170 [ 2854.066624] ? sendmsg_copy_msghdr+0x160/0x160 [ 2854.067179] ? lock_downgrade+0x6d0/0x6d0 [ 2854.067680] ? find_held_lock+0x2c/0x110 [ 2854.068179] ? __fget_files+0x296/0x4c0 [ 2854.068669] ? __fget_light+0xea/0x290 [ 2854.069162] __sys_sendmsg+0xe5/0x1b0 [ 2854.069623] ? __sys_sendmsg_sock+0x40/0x40 [ 2854.070149] ? rcu_read_lock_any_held+0x75/0xa0 [ 2854.070725] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2854.071357] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2854.071986] ? trace_hardirqs_on+0x5b/0x180 [ 2854.072510] do_syscall_64+0x33/0x40 [ 2854.072962] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2854.073592] RIP: 0033:0x7f46fba00b19 [ 2854.074029] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2854.076158] RSP: 002b:00007f46f8f76188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2854.077089] RAX: ffffffffffffffda RBX: 00007f46fbb13f60 RCX: 00007f46fba00b19 [ 2854.077954] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2854.078809] RBP: 00007f46f8f761d0 R08: 0000000000000000 R09: 0000000000000000 [ 2854.079651] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2854.080516] R13: 00007ffe81962e7f R14: 00007f46f8f76300 R15: 0000000000022000 [ 2854.106726] FAULT_INJECTION: forcing a failure. [ 2854.106726] name failslab, interval 1, probability 0, space 0, times 0 [ 2854.110072] CPU: 1 PID: 15886 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 2854.111479] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2854.112863] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 2854.113194] Call Trace: [ 2854.113222] dump_stack+0x107/0x167 [ 2854.114203] System zones: [ 2854.114604] should_fail.cold+0x5/0xa [ 2854.115034] 0-7 [ 2854.115593] ? create_object.isra.0+0x3a/0xa20 [ 2854.115617] should_failslab+0x5/0x20 [ 2854.116056] [ 2854.116437] kmem_cache_alloc+0x5b/0x310 [ 2854.118876] create_object.isra.0+0x3a/0xa20 [ 2854.119767] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2854.120820] __kmalloc_node_track_caller+0x1a6/0x3b0 [ 2854.121852] ? alloc_uevent_skb+0x7b/0x210 [ 2854.122722] __alloc_skb+0xb1/0x5b0 [ 2854.123466] alloc_uevent_skb+0x7b/0x210 [ 2854.124306] kobject_uevent_env+0x99a/0xf90 [ 2854.125214] driver_bound+0x19d/0x1f0 [ 2854.126000] device_bind_driver+0xae/0xd0 [ 2854.126847] mac80211_hwsim_new_radio+0x3d2/0x4250 [ 2854.127848] ? ____sys_sendmsg+0x70d/0x870 [ 2854.128716] ? ___sys_sendmsg+0xf3/0x170 [ 2854.129559] ? __sys_sendmsg+0xe5/0x1b0 [ 2854.130392] ? do_syscall_64+0x33/0x40 [ 2854.131196] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2854.132290] ? lock_acquire+0x197/0x470 [ 2854.133135] ? create_object.isra.0+0x3ad/0xa20 [ 2854.134104] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2854.135068] hwsim_new_radio_nl+0x991/0x1080 [ 2854.135976] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2854.137067] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2854.138420] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2854.139758] genl_family_rcv_msg_doit+0x22d/0x330 [ 2854.140750] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2854.142119] ? cap_capable+0x1cd/0x230 [ 2854.142938] ? ns_capable+0xe2/0x110 [ 2854.143709] genl_rcv_msg+0x33c/0x5a0 [ 2854.144498] ? genl_get_cmd+0x480/0x480 [ 2854.145317] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2854.146374] ? lock_release+0x680/0x680 [ 2854.147184] ? netlink_deliver_tap+0xf4/0xcd0 [ 2854.148115] netlink_rcv_skb+0x14b/0x430 [ 2854.148944] ? genl_get_cmd+0x480/0x480 [ 2854.149764] ? netlink_ack+0xab0/0xab0 [ 2854.150576] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2854.151533] ? is_vmalloc_addr+0x7b/0xb0 [ 2854.152372] genl_rcv+0x24/0x40 [ 2854.153072] netlink_unicast+0x549/0x7f0 [ 2854.153907] ? netlink_attachskb+0x870/0x870 [ 2854.154802] ? __virt_addr_valid+0x128/0x350 [ 2854.155707] netlink_sendmsg+0x90f/0xdf0 [ 2854.156543] ? netlink_unicast+0x7f0/0x7f0 [ 2854.157417] ? netlink_unicast+0x7f0/0x7f0 [ 2854.158270] __sock_sendmsg+0x154/0x190 [ 2854.159076] ____sys_sendmsg+0x70d/0x870 [ 2854.159924] ? sock_write_iter+0x3d0/0x3d0 [ 2854.160384] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 2854.160792] ? do_recvmmsg+0x6d0/0x6d0 [ 2854.160814] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2854.160838] ? lock_downgrade+0x6d0/0x6d0 [ 2854.164445] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2854.165516] ? SOFTIRQ_verbose+0x10/0x10 [ 2854.166350] ___sys_sendmsg+0xf3/0x170 [ 2854.167145] ? sendmsg_copy_msghdr+0x160/0x160 [ 2854.168081] ? lock_downgrade+0x6d0/0x6d0 [ 2854.168927] ? find_held_lock+0x2c/0x110 [ 2854.169773] ? __fget_files+0x296/0x4c0 [ 2854.170637] ? __fget_light+0xea/0x290 [ 2854.171437] __sys_sendmsg+0xe5/0x1b0 [ 2854.172218] ? __sys_sendmsg_sock+0x40/0x40 [ 2854.173107] ? rcu_read_lock_any_held+0x75/0xa0 [ 2854.174082] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2854.175154] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2854.176201] ? trace_hardirqs_on+0x5b/0x180 [ 2854.177098] do_syscall_64+0x33/0x40 [ 2854.177855] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2854.178896] RIP: 0033:0x7fa741f89b19 [ 2854.179654] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2854.183400] RSP: 002b:00007fa73f4ff188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2854.184980] RAX: ffffffffffffffda RBX: 00007fa74209cf60 RCX: 00007fa741f89b19 [ 2854.186492] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2854.188002] RBP: 00007fa73f4ff1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2854.189484] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2854.190957] R13: 00007ffd248a3bcf R14: 00007fa73f4ff300 R15: 0000000000022000 [ 2854.222496] FAULT_INJECTION: forcing a failure. [ 2854.222496] name failslab, interval 1, probability 0, space 0, times 0 [ 2854.224862] CPU: 1 PID: 15885 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 2854.226279] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2854.227978] Call Trace: [ 2854.228514] dump_stack+0x107/0x167 [ 2854.229292] should_fail.cold+0x5/0xa [ 2854.230072] ? __alloc_skb+0x6d/0x5b0 [ 2854.230852] should_failslab+0x5/0x20 [ 2854.231641] kmem_cache_alloc_node+0x55/0x330 [ 2854.232577] __alloc_skb+0x6d/0x5b0 [ 2854.233345] alloc_uevent_skb+0x7b/0x210 [ 2854.234193] kobject_uevent_env+0x99a/0xf90 [ 2854.235094] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2854.236157] ? trace_hardirqs_on+0x5b/0x180 [ 2854.237067] __device_release_driver+0x5cd/0x770 [ 2854.238029] device_release_driver+0x26/0x40 [ 2854.238927] mac80211_hwsim_new_radio+0x29a2/0x4250 [ 2854.239926] ? ____sys_sendmsg+0x70d/0x870 [ 2854.240786] ? ___sys_sendmsg+0xf3/0x170 [ 2854.241636] ? __sys_sendmsg+0xe5/0x1b0 [ 2854.242446] ? do_syscall_64+0x33/0x40 [ 2854.243235] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2854.244336] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2854.245307] hwsim_new_radio_nl+0x991/0x1080 10:09:06 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0900001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2854.246212] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2854.247465] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2854.248816] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2854.250160] genl_family_rcv_msg_doit+0x22d/0x330 [ 2854.251132] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2854.252453] ? cap_capable+0x1cd/0x230 [ 2854.253257] ? ns_capable+0xe2/0x110 [ 2854.254012] genl_rcv_msg+0x33c/0x5a0 [ 2854.254785] ? genl_get_cmd+0x480/0x480 [ 2854.255585] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2854.256627] ? lock_release+0x680/0x680 [ 2854.257437] ? netlink_deliver_tap+0xf4/0xcd0 [ 2854.258342] netlink_rcv_skb+0x14b/0x430 [ 2854.259159] ? genl_get_cmd+0x480/0x480 [ 2854.259977] ? netlink_ack+0xab0/0xab0 [ 2854.260792] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2854.261745] ? is_vmalloc_addr+0x7b/0xb0 [ 2854.262579] genl_rcv+0x24/0x40 [ 2854.263254] netlink_unicast+0x549/0x7f0 [ 2854.264092] ? netlink_attachskb+0x870/0x870 [ 2854.264997] ? __virt_addr_valid+0x128/0x350 [ 2854.265909] netlink_sendmsg+0x90f/0xdf0 [ 2854.266752] ? netlink_unicast+0x7f0/0x7f0 [ 2854.267635] ? netlink_unicast+0x7f0/0x7f0 [ 2854.268503] __sock_sendmsg+0x154/0x190 [ 2854.269334] ____sys_sendmsg+0x70d/0x870 [ 2854.270167] ? sock_write_iter+0x3d0/0x3d0 [ 2854.271036] ? do_recvmmsg+0x6d0/0x6d0 [ 2854.271840] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2854.272918] ? lock_downgrade+0x6d0/0x6d0 [ 2854.273782] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2854.274862] ? SOFTIRQ_verbose+0x10/0x10 [ 2854.275700] ___sys_sendmsg+0xf3/0x170 [ 2854.276505] ? sendmsg_copy_msghdr+0x160/0x160 [ 2854.277446] ? lock_downgrade+0x6d0/0x6d0 [ 2854.278300] ? find_held_lock+0x2c/0x110 [ 2854.279146] ? __fget_files+0x296/0x4c0 [ 2854.279977] ? __fget_light+0xea/0x290 [ 2854.280787] __sys_sendmsg+0xe5/0x1b0 [ 2854.281586] ? __sys_sendmsg_sock+0x40/0x40 [ 2854.282467] ? rcu_read_lock_any_held+0x75/0xa0 [ 2854.283441] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2854.284509] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2854.285560] ? trace_hardirqs_on+0x5b/0x180 [ 2854.286462] do_syscall_64+0x33/0x40 [ 2854.287226] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2854.288276] RIP: 0033:0x7fd0ea82fb19 [ 2854.289051] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2854.292783] RSP: 002b:00007fd0e7da5188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2854.294342] RAX: ffffffffffffffda RBX: 00007fd0ea942f60 RCX: 00007fd0ea82fb19 [ 2854.295801] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2854.297267] RBP: 00007fd0e7da51d0 R08: 0000000000000000 R09: 0000000000000000 [ 2854.298727] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2854.300184] R13: 00007ffedd9ef45f R14: 00007fd0e7da5300 R15: 0000000000022000 10:09:06 executing program 3: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 22) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:09:06 executing program 2: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 80) r2 = creat(0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:09:06 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a531, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) 10:09:06 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1cf000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2854.415315] FAULT_INJECTION: forcing a failure. [ 2854.415315] name failslab, interval 1, probability 0, space 0, times 0 [ 2854.418088] CPU: 1 PID: 15909 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 2854.419501] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2854.421217] Call Trace: [ 2854.421760] dump_stack+0x107/0x167 [ 2854.422510] should_fail.cold+0x5/0xa [ 2854.423289] ? skb_clone+0x14f/0x3d0 [ 2854.424086] should_failslab+0x5/0x20 [ 2854.424860] kmem_cache_alloc+0x5b/0x310 [ 2854.425695] skb_clone+0x14f/0x3d0 [ 2854.426415] netlink_broadcast_filtered+0xa08/0xdc0 [ 2854.427437] netlink_broadcast+0x35/0x50 [ 2854.428261] kobject_uevent_env+0x93d/0xf90 10:09:06 executing program 1: ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'vcan0\x00'}) syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0xdc800, 0x1e, &(0x7f0000000640)=[{&(0x7f0000010000)="00000000000000000000000000000000000000000000000000000000000000ffffff00ffffff000000000000000000ffffff00ffffff000000000000000000ffffff00ffffff000000000000000000ffffff00ffffff000000000000000055aa", 0x60, 0x1a0}, {&(0x7f0000010100)="4244db8cf0c2db8cf0c2818000060003003501b800000800000020000004000000180000054344524f4d000000000000000000000000000000000000000000000000000000000000006b000060000000c00000010000000700000001000000000000000000000000000000000000000000000000000000000000000000000000000000006000018f000c00000000000000000000c000019b0018000000000000", 0xa0, 0x400}, {&(0x7f0000010200)="ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x200, 0x6}, {&(0x7f0000010400)="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"/1408, 0x580, 0x8001}, {&(0x7f0000010a00)="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"/1408, 0x580, 0x400008800}, {&(0x7f0000011000)="ff43443030310100"/32, 0x20, 0x9000}, {&(0x7f0000011100)="01001c0000000100000005001d000000010046494c4530000000000000000000", 0x20, 0xa000}, {&(0x7f0000011200)="01000000001c0001000005000000001d000146494c4530000000000000000000", 0x20, 0xb000}, {&(0x7f0000011300)="01001e000000010000000a001f000000010000660069006c0065003000000000", 0x20, 0xc000}, {&(0x7f0000011400)="01000000001e000100000a000000001f000100660069006c0065003000000000", 0x20, 0xd000}, {&(0x7f0000000500)="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", 0x12c, 0xe000}, {&(0x7f0000011700)="22001d0000000000001d00080000000008007809140b2a3a0802000001000001010022001c0000000000001c00080000000008007809140b2a3a080200000100000101012a002c0000000000002c1a0400000000041a7809140b2a3a08000000010000010846494c45302e3b3100"/128, 0x80, 0xe800}, {&(0x7f0000011800)="22001e0000000000001e00080000000008007809140b2a3a0802000001000001010022001e0000000000001e00080000000008007809140b2a3a080200000100000101013400200000000000002064000000000000647809140b2a3a08000000010000011200660069006c0065002e0063006f006c0064002c001f0000000000001f00080000000008007809140b2a3a08020000010000010a00660069006c00650030002c0021000000000000210a0000000000000a7809140b2a3a08000000010000010a00660069006c00650031002c00220000000000002228230000000023287809140b2a3a08000000010000010a00660069006c00650032002c00270000000000002728230000000023287809140b2a3a08000000010000010a00660069006c0065003300"/320, 0x140, 0x5c23eacd}, {&(0x7f0000011a00)="22001f0000000000001f00080000000008007809140b2a3a0802000001000001010022001e0000000000001e00080000000008007809140b2a3a080200000100000101012c002c0000000000002c1a0400000000041a7809140b2a3a08000000010000010a00660069006c0065003000"/128, 0x80, 0xf800}, {&(0x7f0000011b00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0x10000}, {&(0x7f0000011c00)='syzkallers\x00'/32, 0x20, 0x10800}, {&(0x7f0000011d00)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x16000}, {&(0x7f0000012200)="000000000000000001000003000000000000000000000000000000000000000002000007000000300000002f00"/64, 0x40, 0xc8000}, {&(0x7f0000012300)="0000000000000000000000000000000000000000000000008000000000000000", 0x20, 0xc80e0}, {&(0x7f0000012400)="00000000000000000000000000000000000000000000000001f800f80078000e", 0x20, 0x1}, {&(0x7f0000012500)="00000000000000000100000300000002000000030000000b000000010000000402000025000000600000005b00"/64, 0x40, 0xce000}, {&(0x7f0000000080)="000000000000000000000000000000000000000000000000f800000000000000", 0x20, 0xce0e0}, {&(0x7f0000000940)="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"/1216, 0x4c0, 0xce1e0}, {&(0x7f0000012c00)="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", 0xfffffc5d, 0xce7e0}, {&(0x7f0000012f00)="00000000000000000000000000000000000000000000000041e1000000000000", 0x20, 0xcfbc0}, {&(0x7f0000013000)="000000000000000001000003000000000000000000000000000000000000000002000025000000100000000f00000000200000ff00"/64, 0x40, 0xda000}, {&(0x7f0000013100)="000000000000000000000000000000000000000000000000020a010000000000", 0x20, 0xda060}, {&(0x7f0000013200)="0000000000000000000000000000000000000000f78000008000000000000000", 0x20, 0xda0e0}, {&(0x7f0000013300)="00000000000000000000000000000000000000000000000001f800f80078000e", 0x20, 0xda1e0}, {&(0x7f0000013400)="4244db8cf0c2db8cf0c2010000000003002401b800000800000020000004000000100194054344524f4d0000000000000000000000000000000000000000000000000000000000000005000060000000c000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000c00000000000000000000c000000c0018000000000000", 0xa0, 0xdc000}], 0xc, &(0x7f0000013500)=ANY=[@ANYBLOB="17"]) [ 2854.429491] driver_bound+0x19d/0x1f0 [ 2854.430358] device_bind_driver+0xae/0xd0 [ 2854.431196] mac80211_hwsim_new_radio+0x3d2/0x4250 [ 2854.432192] ? ____sys_sendmsg+0x70d/0x870 [ 2854.433079] ? ___sys_sendmsg+0xf3/0x170 [ 2854.433909] ? __sys_sendmsg+0xe5/0x1b0 [ 2854.434725] ? do_syscall_64+0x33/0x40 [ 2854.435519] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2854.436605] ? lock_acquire+0x197/0x470 [ 2854.437439] ? create_object.isra.0+0x3ad/0xa20 [ 2854.438395] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2854.439358] hwsim_new_radio_nl+0x991/0x1080 [ 2854.440256] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2854.441336] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 10:09:06 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0f00001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2854.442669] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2854.444129] genl_family_rcv_msg_doit+0x22d/0x330 [ 2854.445135] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2854.446482] ? cap_capable+0x1cd/0x230 [ 2854.447290] ? ns_capable+0xe2/0x110 [ 2854.448055] genl_rcv_msg+0x33c/0x5a0 [ 2854.448832] ? genl_get_cmd+0x480/0x480 [ 2854.449655] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2854.450717] ? lock_release+0x680/0x680 [ 2854.451535] ? netlink_deliver_tap+0xf4/0xcd0 [ 2854.452454] netlink_rcv_skb+0x14b/0x430 [ 2854.453300] ? genl_get_cmd+0x480/0x480 [ 2854.454122] ? netlink_ack+0xab0/0xab0 [ 2854.454929] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2854.455873] ? is_vmalloc_addr+0x7b/0xb0 [ 2854.456703] genl_rcv+0x24/0x40 [ 2854.457381] netlink_unicast+0x549/0x7f0 [ 2854.458201] ? netlink_attachskb+0x870/0x870 [ 2854.459094] ? __virt_addr_valid+0x128/0x350 [ 2854.459997] netlink_sendmsg+0x90f/0xdf0 [ 2854.460827] ? netlink_unicast+0x7f0/0x7f0 [ 2854.461696] ? netlink_unicast+0x7f0/0x7f0 [ 2854.462557] __sock_sendmsg+0x154/0x190 [ 2854.463356] ____sys_sendmsg+0x70d/0x870 [ 2854.464185] ? sock_write_iter+0x3d0/0x3d0 [ 2854.465058] ? do_recvmmsg+0x6d0/0x6d0 [ 2854.465859] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2854.466932] ? lock_downgrade+0x6d0/0x6d0 [ 2854.467798] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2854.468893] ? SOFTIRQ_verbose+0x10/0x10 [ 2854.469733] ___sys_sendmsg+0xf3/0x170 [ 2854.470535] ? sendmsg_copy_msghdr+0x160/0x160 [ 2854.471486] ? lock_downgrade+0x6d0/0x6d0 [ 2854.472362] ? find_held_lock+0x2c/0x110 [ 2854.473232] ? __fget_files+0x296/0x4c0 [ 2854.474058] ? __fget_light+0xea/0x290 [ 2854.474871] __sys_sendmsg+0xe5/0x1b0 [ 2854.475672] ? __sys_sendmsg_sock+0x40/0x40 [ 2854.476566] ? rcu_read_lock_any_held+0x75/0xa0 [ 2854.477553] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2854.478626] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2854.479693] ? trace_hardirqs_on+0x5b/0x180 [ 2854.480603] do_syscall_64+0x33/0x40 [ 2854.481391] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2854.482442] RIP: 0033:0x7fa741f89b19 [ 2854.483212] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2854.486969] RSP: 002b:00007fa73f4ff188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2854.488526] RAX: ffffffffffffffda RBX: 00007fa74209cf60 RCX: 00007fa741f89b19 [ 2854.489988] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2854.491445] RBP: 00007fa73f4ff1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2854.492897] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2854.494366] R13: 00007ffd248a3bcf R14: 00007fa73f4ff300 R15: 0000000000022000 10:09:07 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c4800001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2854.556490] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 2854.564378] System zones: 0-7 [ 2854.573493] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue 10:09:07 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) (fail_nth: 89) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2854.649354] FAULT_INJECTION: forcing a failure. [ 2854.649354] name failslab, interval 1, probability 0, space 0, times 0 [ 2854.652173] CPU: 1 PID: 15930 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 2854.653583] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2854.655258] Call Trace: [ 2854.655799] dump_stack+0x107/0x167 [ 2854.656545] should_fail.cold+0x5/0xa [ 2854.657327] ? create_object.isra.0+0x3a/0xa20 [ 2854.658267] should_failslab+0x5/0x20 [ 2854.659052] kmem_cache_alloc+0x5b/0x310 [ 2854.659892] create_object.isra.0+0x3a/0xa20 [ 2854.660789] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2854.661848] kmem_cache_alloc_node+0x169/0x330 [ 2854.662793] __alloc_skb+0x6d/0x5b0 [ 2854.663550] alloc_uevent_skb+0x7b/0x210 [ 2854.664386] kobject_uevent_env+0x99a/0xf90 [ 2854.665285] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2854.666365] ? trace_hardirqs_on+0x5b/0x180 [ 2854.667253] __device_release_driver+0x5cd/0x770 [ 2854.668235] device_release_driver+0x26/0x40 [ 2854.669153] mac80211_hwsim_new_radio+0x29a2/0x4250 [ 2854.670170] ? ____sys_sendmsg+0x70d/0x870 [ 2854.671036] ? ___sys_sendmsg+0xf3/0x170 [ 2854.671880] ? __sys_sendmsg+0xe5/0x1b0 [ 2854.672687] ? do_syscall_64+0x33/0x40 [ 2854.673489] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2854.674590] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2854.675562] hwsim_new_radio_nl+0x991/0x1080 [ 2854.676463] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2854.677558] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2854.678900] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2854.680237] genl_family_rcv_msg_doit+0x22d/0x330 [ 2854.681251] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2854.682598] ? cap_capable+0x1cd/0x230 [ 2854.683408] ? ns_capable+0xe2/0x110 [ 2854.684177] genl_rcv_msg+0x33c/0x5a0 [ 2854.684963] ? genl_get_cmd+0x480/0x480 [ 2854.685787] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2854.686845] ? lock_release+0x680/0x680 [ 2854.687656] ? netlink_deliver_tap+0xf4/0xcd0 [ 2854.688579] netlink_rcv_skb+0x14b/0x430 [ 2854.689428] ? genl_get_cmd+0x480/0x480 [ 2854.690249] ? netlink_ack+0xab0/0xab0 [ 2854.691078] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2854.692014] ? is_vmalloc_addr+0x7b/0xb0 [ 2854.692839] genl_rcv+0x24/0x40 [ 2854.693521] netlink_unicast+0x549/0x7f0 [ 2854.694365] ? netlink_attachskb+0x870/0x870 [ 2854.695264] ? __virt_addr_valid+0x128/0x350 [ 2854.696179] netlink_sendmsg+0x90f/0xdf0 [ 2854.697055] ? netlink_unicast+0x7f0/0x7f0 [ 2854.697937] ? netlink_unicast+0x7f0/0x7f0 [ 2854.698809] __sock_sendmsg+0x154/0x190 [ 2854.699623] ____sys_sendmsg+0x70d/0x870 [ 2854.700469] ? sock_write_iter+0x3d0/0x3d0 [ 2854.701345] ? do_recvmmsg+0x6d0/0x6d0 [ 2854.702153] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2854.703236] ? lock_downgrade+0x6d0/0x6d0 [ 2854.704095] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2854.705186] ? SOFTIRQ_verbose+0x10/0x10 [ 2854.706037] ___sys_sendmsg+0xf3/0x170 [ 2854.706852] ? sendmsg_copy_msghdr+0x160/0x160 [ 2854.707811] ? lock_downgrade+0x6d0/0x6d0 [ 2854.708674] ? find_held_lock+0x2c/0x110 [ 2854.709535] ? __fget_files+0x296/0x4c0 [ 2854.710383] ? __fget_light+0xea/0x290 [ 2854.711213] __sys_sendmsg+0xe5/0x1b0 [ 2854.711994] ? __sys_sendmsg_sock+0x40/0x40 [ 2854.712871] ? rcu_read_lock_any_held+0x75/0xa0 [ 2854.713854] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2854.714925] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2854.715989] ? trace_hardirqs_on+0x5b/0x180 [ 2854.716896] do_syscall_64+0x33/0x40 [ 2854.717683] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2854.718720] RIP: 0033:0x7fd0ea82fb19 [ 2854.719483] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2854.723219] RSP: 002b:00007fd0e7da5188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2854.724761] RAX: ffffffffffffffda RBX: 00007fd0ea942f60 RCX: 00007fd0ea82fb19 [ 2854.726233] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2854.727695] RBP: 00007fd0e7da51d0 R08: 0000000000000000 R09: 0000000000000000 [ 2854.729177] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2854.730644] R13: 00007ffedd9ef45f R14: 00007fd0e7da5300 R15: 0000000000022000 [ 2854.803677] FAULT_INJECTION: forcing a failure. [ 2854.803677] name failslab, interval 1, probability 0, space 0, times 0 [ 2854.806038] CPU: 0 PID: 15921 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 2854.807444] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2854.809121] Call Trace: [ 2854.809671] dump_stack+0x107/0x167 [ 2854.810419] should_fail.cold+0x5/0xa [ 2854.811206] should_failslab+0x5/0x20 [ 2854.811981] __kmalloc_track_caller+0x79/0x370 [ 2854.812909] ? kasprintf+0xbb/0xf0 [ 2854.813666] kvasprintf+0xb5/0x150 [ 2854.814394] ? bust_spinlocks+0xe0/0xe0 [ 2854.815217] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2854.816303] ? get_random_u32+0x3cb/0x670 [ 2854.817178] kasprintf+0xbb/0xf0 [ 2854.817876] ? kvasprintf_const+0x1a0/0x1a0 [ 2854.818771] ? lockdep_init_map_type+0x2c7/0x780 [ 2854.819741] ? lockdep_init_map_type+0x2c7/0x780 [ 2854.820724] ieee80211_alloc_led_names+0x1ac/0x420 [ 2854.821770] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 2854.822729] ? trace_hardirqs_on+0x5b/0x180 [ 2854.823612] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 2854.824600] ? ____sys_sendmsg+0x70d/0x870 [ 2854.825462] ? ___sys_sendmsg+0xf3/0x170 [ 2854.826280] ? __sys_sendmsg+0xe5/0x1b0 [ 2854.827087] ? do_syscall_64+0x33/0x40 [ 2854.827868] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2854.828960] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2854.829935] hwsim_new_radio_nl+0x991/0x1080 [ 2854.830841] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2854.831928] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2854.833286] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2854.834646] genl_family_rcv_msg_doit+0x22d/0x330 [ 2854.835641] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2854.836982] ? cap_capable+0x1cd/0x230 [ 2854.837823] ? ns_capable+0xe2/0x110 [ 2854.838599] genl_rcv_msg+0x33c/0x5a0 [ 2854.839387] ? genl_get_cmd+0x480/0x480 [ 2854.840208] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2854.841282] ? lock_release+0x680/0x680 [ 2854.842106] ? netlink_deliver_tap+0xf4/0xcd0 [ 2854.843029] netlink_rcv_skb+0x14b/0x430 [ 2854.843864] ? genl_get_cmd+0x480/0x480 [ 2854.844680] ? netlink_ack+0xab0/0xab0 [ 2854.845507] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2854.846440] ? is_vmalloc_addr+0x7b/0xb0 [ 2854.847280] genl_rcv+0x24/0x40 [ 2854.847965] netlink_unicast+0x549/0x7f0 [ 2854.848817] ? netlink_attachskb+0x870/0x870 [ 2854.849732] ? __virt_addr_valid+0x128/0x350 [ 2854.850645] netlink_sendmsg+0x90f/0xdf0 [ 2854.851485] ? netlink_unicast+0x7f0/0x7f0 [ 2854.852368] ? netlink_unicast+0x7f0/0x7f0 [ 2854.853243] __sock_sendmsg+0x154/0x190 [ 2854.854062] ____sys_sendmsg+0x70d/0x870 [ 2854.854892] ? sock_write_iter+0x3d0/0x3d0 [ 2854.855758] ? do_recvmmsg+0x6d0/0x6d0 [ 2854.856560] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2854.857660] ? lock_downgrade+0x6d0/0x6d0 [ 2854.858519] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2854.859596] ? SOFTIRQ_verbose+0x10/0x10 [ 2854.860437] ___sys_sendmsg+0xf3/0x170 [ 2854.861257] ? sendmsg_copy_msghdr+0x160/0x160 [ 2854.862201] ? lock_downgrade+0x6d0/0x6d0 [ 2854.863055] ? find_held_lock+0x2c/0x110 [ 2854.863907] ? __fget_files+0x296/0x4c0 [ 2854.864724] ? __fget_light+0xea/0x290 [ 2854.865534] __sys_sendmsg+0xe5/0x1b0 [ 2854.866310] ? __sys_sendmsg_sock+0x40/0x40 [ 2854.867192] ? rcu_read_lock_any_held+0x75/0xa0 [ 2854.868162] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2854.869249] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2854.870291] ? trace_hardirqs_on+0x5b/0x180 [ 2854.871179] do_syscall_64+0x33/0x40 [ 2854.871936] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2854.872982] RIP: 0033:0x7f46fba00b19 [ 2854.873756] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2854.877521] RSP: 002b:00007f46f8f55188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2854.879070] RAX: ffffffffffffffda RBX: 00007f46fbb14020 RCX: 00007f46fba00b19 [ 2854.880546] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2854.881996] RBP: 00007f46f8f551d0 R08: 0000000000000000 R09: 0000000000000000 [ 2854.883431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2854.884876] R13: 00007ffe81962e7f R14: 00007f46f8f55300 R15: 0000000000022000 10:09:21 executing program 3: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 23) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:09:21 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(r0, 0xc0109428, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) r2 = memfd_create(&(0x7f0000000140)='\xb74\xa3\xb7\x99Y\xfb\xce\x98\xc1\x83\xf5\x89juz\xd9\xb6\xca\x99\xdb\xd4\v\x1b\"\xb4\xd8\xff\xa4\f}\xaa\xddP8\x81\xec\xc8\x84wP\xc9b\xa3\x8f\xe1\xedf\xa4\xc5\nv\xbb\xa3\xb3\x0f\x12y\"\x8dJ\x06\xa4\x97\xd5\x16\x11\t\xb0w\x8d\xd48\r\x17\x9f0\xa7\xbc\xb5{\xe9\x1b\xe1\xfc\x91v\x9a\xd5P\x90\x18\x1a\x19\xa7\xb0\xa5\xdf\xa3}\xe84\xa2\xed\xe3w\x89\xe5o\xaa\xa8\xedO)\xf7S~\xa6m\b\xd7\x8e2\x9dR\'\'9\x83\x83\x9ai\a\'V`7\xa6\xcfW\x00\xdd\x04UP2\xee\x05\xc3\xa8\xde)\xbc\xe2\xec2PGta\xa2\xb9\xdc\x89t\xad\xf3F\xc2\x95\xbfC\x03\xd0>\xc9\x12t\xdcxS[\xe2\x8c9n\x80\xf7\xff\xff\xff\xff\xff\xff\xff\x00\x00\x00\x00\x00\x00\x00\x00M[N\xad\xb9\xa0Cr\a\x00\f\xc6\x11\x01re\xc7\xffn\xde\xeb\xe8G~\xf7\t\xc5\xdczK+h\x8e\x8a\xdep\x8bYaK\xf4\x1e\xff5\xf0>\xce\xe0)=\xf0\xd5\xef\x9e\x02/\xbd\x17\x10\xb7;\x8f\xba\xba\xab9\xe2\x8f\x9e\xb7\xbb\xd9m\x03\x94\xe1\xd29\xfa\x9dP\xabs\xffu\xd3\xf5\xd8[\xccU\xa4\xc3\xaav\xd0\xca\x9e\xc50\xb5q\x80\x82\x7f\x16\x96{\x00\x00\x00', 0x3) fcntl$addseals(r2, 0x409, 0xd) fallocate(r2, 0x0, 0x0, 0x8317) openat(0xffffffffffffff9c, 0x0, 0x105142, 0x0) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000040), 0x3}, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}, 0x0, 0xfffffffffffffff8, 0xffffffffffffffff, 0x0) r3 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r3, 0x0, 0x100000001) 10:09:21 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0003001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:09:21 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a532, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) 10:09:21 executing program 2: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 81) r2 = creat(0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:09:21 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c4c00001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:09:21 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) (fail_nth: 90) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:09:21 executing program 1: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x1000003) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000080)) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)) write$P9_RREADLINK(r0, &(0x7f00000002c0)=ANY=[], 0x10) fallocate(r0, 0x3, 0x0, 0x30000000000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ftruncate(0xffffffffffffffff, 0x1000003) openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x183000, 0x0) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, 0x0, &(0x7f0000001400)=@keyring) r1 = add_key$keyring(&(0x7f0000000080), &(0x7f00000000c0)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffc) r2 = add_key$keyring(&(0x7f0000000040), &(0x7f00000002c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$chown(0x4, r2, 0x0, 0x0) keyctl$KEYCTL_MOVE(0x1e, r1, r2, 0xfffffffffffffffb, 0x0) add_key$keyring(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x1}, 0x0, 0x0, r1) r3 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)={0x1c, 0x5e, 0xc21, 0x0, 0x0, {0x0, 0x2}, [@generic='\x00\x00\x00\x00\x00']}, 0x1c}}, 0x0) fsetxattr$security_capability(r3, &(0x7f00000000c0), &(0x7f0000000140)=@v1={0x1000000, [{0x1, 0x7}]}, 0xc, 0x0) [ 2869.014161] FAULT_INJECTION: forcing a failure. [ 2869.014161] name failslab, interval 1, probability 0, space 0, times 0 [ 2869.015584] CPU: 1 PID: 15941 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 2869.016407] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2869.017388] Call Trace: [ 2869.017703] dump_stack+0x107/0x167 [ 2869.018137] should_fail.cold+0x5/0xa [ 2869.018582] ? __alloc_skb+0x6d/0x5b0 [ 2869.019040] should_failslab+0x5/0x20 [ 2869.019491] kmem_cache_alloc_node+0x55/0x330 [ 2869.020018] __alloc_skb+0x6d/0x5b0 [ 2869.020443] alloc_uevent_skb+0x7b/0x210 [ 2869.020922] kobject_uevent_env+0x99a/0xf90 [ 2869.021443] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2869.022045] ? trace_hardirqs_on+0x5b/0x180 [ 2869.022548] __device_release_driver+0x5cd/0x770 [ 2869.023099] device_release_driver+0x26/0x40 [ 2869.023611] mac80211_hwsim_new_radio+0x29a2/0x4250 [ 2869.024184] ? ____sys_sendmsg+0x70d/0x870 [ 2869.024668] ? ___sys_sendmsg+0xf3/0x170 [ 2869.025138] ? __sys_sendmsg+0xe5/0x1b0 [ 2869.025611] ? do_syscall_64+0x33/0x40 [ 2869.026057] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2869.026680] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2869.027239] hwsim_new_radio_nl+0x991/0x1080 [ 2869.027771] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2869.028409] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2869.029210] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2869.030008] genl_family_rcv_msg_doit+0x22d/0x330 [ 2869.030597] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2869.031411] ? cap_capable+0x1cd/0x230 [ 2869.031901] ? ns_capable+0xe2/0x110 [ 2869.032351] genl_rcv_msg+0x33c/0x5a0 [ 2869.032822] ? genl_get_cmd+0x480/0x480 [ 2869.033304] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2869.033933] ? lock_release+0x680/0x680 [ 2869.034412] ? netlink_deliver_tap+0xf4/0xcd0 [ 2869.034968] netlink_rcv_skb+0x14b/0x430 [ 2869.035454] ? genl_get_cmd+0x480/0x480 [ 2869.035934] ? netlink_ack+0xab0/0xab0 [ 2869.036408] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2869.036966] ? is_vmalloc_addr+0x7b/0xb0 [ 2869.037462] genl_rcv+0x24/0x40 [ 2869.037858] netlink_unicast+0x549/0x7f0 [ 2869.038348] ? netlink_attachskb+0x870/0x870 [ 2869.038872] ? __virt_addr_valid+0x128/0x350 [ 2869.039410] netlink_sendmsg+0x90f/0xdf0 [ 2869.039902] ? netlink_unicast+0x7f0/0x7f0 [ 2869.040417] ? netlink_unicast+0x7f0/0x7f0 [ 2869.040925] __sock_sendmsg+0x154/0x190 [ 2869.041413] ____sys_sendmsg+0x70d/0x870 [ 2869.041909] ? sock_write_iter+0x3d0/0x3d0 [ 2869.042414] ? do_recvmmsg+0x6d0/0x6d0 [ 2869.042886] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2869.043517] ? lock_downgrade+0x6d0/0x6d0 [ 2869.044016] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2869.044644] ? SOFTIRQ_verbose+0x10/0x10 [ 2869.045137] ___sys_sendmsg+0xf3/0x170 [ 2869.045622] ? sendmsg_copy_msghdr+0x160/0x160 [ 2869.046183] ? lock_downgrade+0x6d0/0x6d0 [ 2869.046681] ? find_held_lock+0x2c/0x110 [ 2869.047177] ? __fget_files+0x296/0x4c0 [ 2869.047661] ? __fget_light+0xea/0x290 [ 2869.048130] __sys_sendmsg+0xe5/0x1b0 [ 2869.048587] ? __sys_sendmsg_sock+0x40/0x40 [ 2869.049101] ? rcu_read_lock_any_held+0x75/0xa0 [ 2869.049657] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2869.050289] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2869.050872] ? trace_hardirqs_on+0x5b/0x180 [ 2869.051391] do_syscall_64+0x33/0x40 [ 2869.051812] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2869.052419] RIP: 0033:0x7fd0ea82fb19 [ 2869.052848] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2869.055066] RSP: 002b:00007fd0e7da5188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2869.055981] RAX: ffffffffffffffda RBX: 00007fd0ea942f60 RCX: 00007fd0ea82fb19 [ 2869.056830] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2869.057683] RBP: 00007fd0e7da51d0 R08: 0000000000000000 R09: 0000000000000000 [ 2869.058528] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2869.059381] R13: 00007ffedd9ef45f R14: 00007fd0e7da5300 R15: 0000000000022000 [ 2869.111669] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 2869.112854] System zones: 0-7 [ 2869.126889] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue 10:09:21 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) (fail_nth: 91) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2869.159546] FAULT_INJECTION: forcing a failure. [ 2869.159546] name failslab, interval 1, probability 0, space 0, times 0 [ 2869.160935] CPU: 1 PID: 15951 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 2869.161705] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2869.162600] Call Trace: [ 2869.163026] dump_stack+0x107/0x167 [ 2869.163498] should_fail.cold+0x5/0xa [ 2869.163925] ? create_object.isra.0+0x3a/0xa20 [ 2869.164434] ? create_object.isra.0+0x3a/0xa20 [ 2869.164942] should_failslab+0x5/0x20 [ 2869.165360] kmem_cache_alloc+0x5b/0x310 [ 2869.165803] ? vsnprintf+0x4ba/0x1600 [ 2869.166230] create_object.isra.0+0x3a/0xa20 [ 2869.166712] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2869.167273] __kmalloc_track_caller+0x177/0x370 [ 2869.167784] ? kasprintf+0xbb/0xf0 [ 2869.168256] kvasprintf+0xb5/0x150 [ 2869.168780] ? bust_spinlocks+0xe0/0xe0 [ 2869.169373] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2869.169951] ? get_random_u32+0x3cb/0x670 [ 2869.170413] kasprintf+0xbb/0xf0 [ 2869.170789] ? kvasprintf_const+0x1a0/0x1a0 [ 2869.171265] ? lockdep_init_map_type+0x2c7/0x780 [ 2869.171788] ? lockdep_init_map_type+0x2c7/0x780 [ 2869.172321] ieee80211_alloc_led_names+0x1ac/0x420 [ 2869.172866] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 2869.173397] ? trace_hardirqs_on+0x5b/0x180 [ 2869.173884] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 2869.174416] ? ____sys_sendmsg+0x70d/0x870 [ 2869.174871] ? ___sys_sendmsg+0xf3/0x170 [ 2869.175312] ? __sys_sendmsg+0xe5/0x1b0 [ 2869.175746] ? do_syscall_64+0x33/0x40 [ 2869.176170] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2869.176767] ? lock_acquire+0x197/0x470 [ 2869.177210] ? create_object.isra.0+0x3ad/0xa20 [ 2869.177724] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2869.178267] hwsim_new_radio_nl+0x991/0x1080 [ 2869.178774] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2869.179386] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2869.180142] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2869.180891] genl_family_rcv_msg_doit+0x22d/0x330 [ 2869.181449] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2869.182197] ? cap_capable+0x1cd/0x230 [ 2869.182661] ? ns_capable+0xe2/0x110 [ 2869.183093] genl_rcv_msg+0x33c/0x5a0 [ 2869.183531] ? genl_get_cmd+0x480/0x480 [ 2869.183987] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2869.184585] ? lock_release+0x680/0x680 [ 2869.185043] ? netlink_deliver_tap+0xf4/0xcd0 [ 2869.185574] netlink_rcv_skb+0x14b/0x430 [ 2869.186045] ? genl_get_cmd+0x480/0x480 [ 2869.186486] ? netlink_ack+0xab0/0xab0 [ 2869.186943] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2869.187472] ? is_vmalloc_addr+0x7b/0xb0 [ 2869.187944] genl_rcv+0x24/0x40 [ 2869.188321] netlink_unicast+0x549/0x7f0 [ 2869.188794] ? netlink_attachskb+0x870/0x870 [ 2869.189311] ? __virt_addr_valid+0x128/0x350 [ 2869.189823] netlink_sendmsg+0x90f/0xdf0 [ 2869.190297] ? netlink_unicast+0x7f0/0x7f0 [ 2869.190795] ? netlink_unicast+0x7f0/0x7f0 [ 2869.191275] __sock_sendmsg+0x154/0x190 [ 2869.191727] ____sys_sendmsg+0x70d/0x870 [ 2869.192189] ? sock_write_iter+0x3d0/0x3d0 [ 2869.192678] ? do_recvmmsg+0x6d0/0x6d0 [ 2869.193115] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2869.193733] ? lock_downgrade+0x6d0/0x6d0 [ 2869.194214] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2869.194814] ? SOFTIRQ_verbose+0x10/0x10 [ 2869.195281] ___sys_sendmsg+0xf3/0x170 [ 2869.195730] ? sendmsg_copy_msghdr+0x160/0x160 [ 2869.196266] ? lock_downgrade+0x6d0/0x6d0 [ 2869.196746] ? find_held_lock+0x2c/0x110 [ 2869.197218] ? __fget_files+0x296/0x4c0 [ 2869.197715] ? __fget_light+0xea/0x290 [ 2869.198164] __sys_sendmsg+0xe5/0x1b0 [ 2869.198601] ? __sys_sendmsg_sock+0x40/0x40 [ 2869.199097] ? rcu_read_lock_any_held+0x75/0xa0 [ 2869.199643] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2869.200254] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2869.200840] ? trace_hardirqs_on+0x5b/0x180 [ 2869.201336] do_syscall_64+0x33/0x40 [ 2869.201769] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2869.202348] RIP: 0033:0x7f46fba00b19 [ 2869.202780] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2869.204877] RSP: 002b:00007f46f8f76188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2869.205765] RAX: ffffffffffffffda RBX: 00007f46fbb13f60 RCX: 00007f46fba00b19 [ 2869.206574] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2869.207386] RBP: 00007f46f8f761d0 R08: 0000000000000000 R09: 0000000000000000 [ 2869.208191] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2869.209024] R13: 00007ffe81962e7f R14: 00007f46f8f76300 R15: 0000000000022000 10:09:21 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c6800001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:09:21 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a533, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) 10:09:21 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c3303001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:09:21 executing program 1: unshare(0x8000000) unshare(0x0) semget$private(0x0, 0x4000, 0x0) semtimedop(0x0, &(0x7f0000000040)=[{}], 0x1f4, 0x0) semctl$SETALL(0x0, 0x0, 0xb, 0x0) 10:09:21 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0005001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2869.352076] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 2869.353029] System zones: 0-7 10:09:21 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c6c00001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2869.360009] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 2869.375535] FAULT_INJECTION: forcing a failure. [ 2869.375535] name failslab, interval 1, probability 0, space 0, times 0 [ 2869.377886] CPU: 0 PID: 15949 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 2869.379285] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2869.380975] Call Trace: [ 2869.381533] dump_stack+0x107/0x167 [ 2869.382285] should_fail.cold+0x5/0xa [ 2869.383061] ? create_object.isra.0+0x3a/0xa20 [ 2869.384006] should_failslab+0x5/0x20 [ 2869.384791] kmem_cache_alloc+0x5b/0x310 [ 2869.385644] create_object.isra.0+0x3a/0xa20 [ 2869.386545] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2869.387586] __kmalloc_node_track_caller+0x1a6/0x3b0 [ 2869.388620] ? alloc_uevent_skb+0x7b/0x210 [ 2869.389512] __alloc_skb+0xb1/0x5b0 [ 2869.390258] alloc_uevent_skb+0x7b/0x210 [ 2869.391096] kobject_uevent_env+0x99a/0xf90 [ 2869.392014] driver_bound+0x19d/0x1f0 [ 2869.392805] device_bind_driver+0xae/0xd0 [ 2869.393685] mac80211_hwsim_new_radio+0x3d2/0x4250 [ 2869.394685] ? ____sys_sendmsg+0x70d/0x870 [ 2869.395547] ? ___sys_sendmsg+0xf3/0x170 [ 2869.396374] ? __sys_sendmsg+0xe5/0x1b0 [ 2869.397206] ? do_syscall_64+0x33/0x40 [ 2869.398003] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2869.399100] ? lock_acquire+0x197/0x470 [ 2869.399914] ? create_object.isra.0+0x3ad/0xa20 [ 2869.400877] ? hwsim_send_nullfunc_ps+0x80/0x80 10:09:21 executing program 1: mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x2000000000000b}, 0x11010, 0x0, 0xf79e, 0x1, 0x0, 0x800}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x4000, 0x0, 0x0, 0x3) pkey_alloc(0x0, 0x0) mlock2(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0) pkey_alloc(0x0, 0x1) r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$sock_int(r1, 0x1, 0x12, &(0x7f0000000200)=0x33e0, 0x4) mremap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil) mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x0) setsockopt$inet6_tcp_int(r1, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) mlock(&(0x7f0000ffd000/0x3000)=nil, 0x3000) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x20, @loopback}, 0x1c) get_mempolicy(&(0x7f0000000140), &(0x7f0000000180), 0x0, &(0x7f0000ffa000/0x4000)=nil, 0x3) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendfile(r1, r0, 0x0, 0x9bbb) clone3(&(0x7f00000003c0)={0x8040100, &(0x7f0000000100)=0xffffffffffffffff, &(0x7f00000001c0), &(0x7f0000000240), {0x3b}, &(0x7f0000000280)=""/176, 0xb0, &(0x7f0000000340)=""/42, &(0x7f0000000380)=[0xffffffffffffffff], 0x1, {r0}}, 0x58) ioctl$EXT4_IOC_GET_ES_CACHE(r2, 0xc020662a, &(0x7f0000000440)=ANY=[@ANYBLOB="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"]) mmap$usbmon(&(0x7f0000ff4000/0xc000)=nil, 0xc000, 0x0, 0x13, 0xffffffffffffffff, 0x0) [ 2869.401851] hwsim_new_radio_nl+0x991/0x1080 [ 2869.402894] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2869.403965] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2869.405331] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2869.406677] genl_family_rcv_msg_doit+0x22d/0x330 [ 2869.407667] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2869.409019] ? cap_capable+0x1cd/0x230 [ 2869.409847] ? ns_capable+0xe2/0x110 [ 2869.410619] genl_rcv_msg+0x33c/0x5a0 [ 2869.411410] ? genl_get_cmd+0x480/0x480 [ 2869.412228] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2869.413301] ? lock_release+0x680/0x680 [ 2869.414120] ? netlink_deliver_tap+0xf4/0xcd0 [ 2869.415045] netlink_rcv_skb+0x14b/0x430 [ 2869.415875] ? genl_get_cmd+0x480/0x480 [ 2869.416692] ? netlink_ack+0xab0/0xab0 [ 2869.417520] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2869.418451] ? is_vmalloc_addr+0x7b/0xb0 [ 2869.419285] genl_rcv+0x24/0x40 [ 2869.419959] netlink_unicast+0x549/0x7f0 [ 2869.420797] ? netlink_attachskb+0x870/0x870 [ 2869.421706] ? __virt_addr_valid+0x128/0x350 [ 2869.422635] netlink_sendmsg+0x90f/0xdf0 [ 2869.423472] ? netlink_unicast+0x7f0/0x7f0 [ 2869.424356] ? netlink_unicast+0x7f0/0x7f0 [ 2869.425232] __sock_sendmsg+0x154/0x190 [ 2869.426051] ____sys_sendmsg+0x70d/0x870 [ 2869.426890] ? sock_write_iter+0x3d0/0x3d0 [ 2869.427754] ? do_recvmmsg+0x6d0/0x6d0 [ 2869.428555] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2869.429647] ? lock_downgrade+0x6d0/0x6d0 [ 2869.430499] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2869.431577] ? SOFTIRQ_verbose+0x10/0x10 [ 2869.432392] ___sys_sendmsg+0xf3/0x170 [ 2869.433204] ? sendmsg_copy_msghdr+0x160/0x160 [ 2869.434139] ? lock_downgrade+0x6d0/0x6d0 [ 2869.434998] ? find_held_lock+0x2c/0x110 [ 2869.435832] ? __fget_files+0x296/0x4c0 [ 2869.436674] ? __fget_light+0xea/0x290 [ 2869.437488] __sys_sendmsg+0xe5/0x1b0 [ 2869.438276] ? __sys_sendmsg_sock+0x40/0x40 [ 2869.439146] ? rcu_read_lock_any_held+0x75/0xa0 [ 2869.440125] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2869.441199] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2869.442247] ? trace_hardirqs_on+0x5b/0x180 [ 2869.443132] do_syscall_64+0x33/0x40 [ 2869.443890] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2869.444934] RIP: 0033:0x7fa741f89b19 [ 2869.445714] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2869.449527] RSP: 002b:00007fa73f4ff188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2869.451073] RAX: ffffffffffffffda RBX: 00007fa74209cf60 RCX: 00007fa741f89b19 [ 2869.452571] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2869.454081] RBP: 00007fa73f4ff1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2869.455560] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2869.457046] R13: 00007ffd248a3bcf R14: 00007fa73f4ff300 R15: 0000000000022000 [ 2869.493120] FAULT_INJECTION: forcing a failure. [ 2869.493120] name failslab, interval 1, probability 0, space 0, times 0 [ 2869.494437] CPU: 1 PID: 15967 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 2869.495186] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2869.496079] Call Trace: [ 2869.496366] dump_stack+0x107/0x167 [ 2869.496761] should_fail.cold+0x5/0xa [ 2869.497172] ? create_object.isra.0+0x3a/0xa20 [ 2869.497676] should_failslab+0x5/0x20 [ 2869.498095] kmem_cache_alloc+0x5b/0x310 [ 2869.498536] create_object.isra.0+0x3a/0xa20 [ 2869.499024] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2869.499575] kmem_cache_alloc_node+0x169/0x330 [ 2869.500076] __alloc_skb+0x6d/0x5b0 [ 2869.500485] alloc_uevent_skb+0x7b/0x210 [ 2869.500927] kobject_uevent_env+0x99a/0xf90 [ 2869.501421] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2869.501984] ? trace_hardirqs_on+0x5b/0x180 [ 2869.502457] __device_release_driver+0x5cd/0x770 [ 2869.502976] device_release_driver+0x26/0x40 [ 2869.503444] mac80211_hwsim_new_radio+0x29a2/0x4250 [ 2869.503984] ? __nla_validate_parse+0x2c7/0x2b10 [ 2869.504521] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2869.505025] hwsim_new_radio_nl+0x991/0x1080 [ 2869.505520] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2869.506084] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2869.506816] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2869.507523] genl_family_rcv_msg_doit+0x22d/0x330 [ 2869.508059] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2869.508762] ? cap_capable+0x1cd/0x230 [ 2869.509211] ? ns_capable+0xe2/0x110 [ 2869.509615] genl_rcv_msg+0x33c/0x5a0 [ 2869.510023] ? genl_get_cmd+0x480/0x480 [ 2869.510448] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2869.511026] ? lock_release+0x680/0x680 [ 2869.511450] ? netlink_deliver_tap+0xf4/0xcd0 [ 2869.511950] netlink_rcv_skb+0x14b/0x430 [ 2869.512384] ? genl_get_cmd+0x480/0x480 [ 2869.512829] ? netlink_ack+0xab0/0xab0 [ 2869.513260] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2869.513765] ? is_vmalloc_addr+0x7b/0xb0 [ 2869.514200] genl_rcv+0x24/0x40 [ 2869.514566] netlink_unicast+0x549/0x7f0 [ 2869.515003] ? netlink_attachskb+0x870/0x870 [ 2869.515495] ? __virt_addr_valid+0x128/0x350 [ 2869.515971] netlink_sendmsg+0x90f/0xdf0 [ 2869.516426] ? netlink_unicast+0x7f0/0x7f0 [ 2869.516892] ? netlink_unicast+0x7f0/0x7f0 [ 2869.517380] __sock_sendmsg+0x154/0x190 [ 2869.517812] ____sys_sendmsg+0x70d/0x870 [ 2869.518263] ? sock_write_iter+0x3d0/0x3d0 [ 2869.518715] ? do_recvmmsg+0x6d0/0x6d0 [ 2869.519148] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2869.519724] ? lock_downgrade+0x6d0/0x6d0 [ 2869.520165] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2869.520725] ? SOFTIRQ_verbose+0x10/0x10 [ 2869.521163] ___sys_sendmsg+0xf3/0x170 [ 2869.521601] ? sendmsg_copy_msghdr+0x160/0x160 [ 2869.522091] ? lock_downgrade+0x6d0/0x6d0 [ 2869.522548] ? find_held_lock+0x2c/0x110 [ 2869.522991] ? __fget_files+0x296/0x4c0 [ 2869.523450] ? __fget_light+0xea/0x290 [ 2869.523872] __sys_sendmsg+0xe5/0x1b0 [ 2869.524296] ? __sys_sendmsg_sock+0x40/0x40 [ 2869.524755] ? rcu_read_lock_any_held+0x75/0xa0 [ 2869.525292] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2869.525846] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2869.526406] ? trace_hardirqs_on+0x5b/0x180 [ 2869.526870] do_syscall_64+0x33/0x40 [ 2869.527291] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2869.527837] RIP: 0033:0x7fd0ea82fb19 [ 2869.528252] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2869.530209] RSP: 002b:00007fd0e7da5188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2869.531052] RAX: ffffffffffffffda RBX: 00007fd0ea942f60 RCX: 00007fd0ea82fb19 [ 2869.531807] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2869.532566] RBP: 00007fd0e7da51d0 R08: 0000000000000000 R09: 0000000000000000 [ 2869.533329] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2869.534086] R13: 00007ffedd9ef45f R14: 00007fd0e7da5300 R15: 0000000000022000 10:09:37 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) (fail_nth: 92) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:09:37 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a534, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) 10:09:37 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c7400001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:09:37 executing program 0: rt_sigqueueinfo(0x0, 0x17, &(0x7f0000000140)={0x0, 0x0, 0xfffffffb}) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={&(0x7f00000001c0), 0x4}, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff, 0x0) ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000100)={0x0, 0x4, 0xb01}) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r1, 0x800448d4, &(0x7f0000000080)) r2 = syz_io_uring_complete(0x0) write$bt_hci(0xffffffffffffffff, 0x0, 0xa) capset(0x0, &(0x7f0000000200)={0x93, 0x80000001, 0x3f, 0x0, 0x0, 0x51c0}) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r2, 0xc018937a, &(0x7f0000000140)=ANY=[@ANYBLOB="01000000010000007c000000", @ANYRES32=r2, @ANYBLOB='\x00@\x00\x00\x00\x00\x00\x00']) finit_module(0xffffffffffffffff, &(0x7f00000002c0)='#\x1d\xb9\x9a\xfd3\xa1\x8a(\x99\xa8\xb2\r\x00\x00\x01\x00d\xafV\xb8\xf9O\xdf\x94V\xc2UX\x00\x02\xfc\xa6\a\xeeq\x87\xfdS4\tWq\xccz\x84\xd9@_\xea\xaa\xc6\xb5\xcel\xad;\x1f\x92?$F\xc9\xc6\x89\xf2\x02v;\x86\xfc\xcf\xa6\x1f>6+\x8c\\\xa4\xec\xd8^)\x00\x00\x00\x00\x00\x00', 0x3) timerfd_settime(0xffffffffffffffff, 0x3, &(0x7f00000000c0)={{}, {0x0, 0x989680}}, 0x0) ioctl$SG_IO(0xffffffffffffffff, 0x401070cd, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r3, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4) bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r3, 0x1, 0x7, &(0x7f0000002ec0), 0x4) sendfile(r2, r2, &(0x7f0000000040)=0xfffffffffffffeff, 0xffff) unshare(0x48020200) 10:09:37 executing program 3: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 24) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:09:37 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0006001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:09:37 executing program 2: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 82) r2 = creat(0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:09:37 executing program 1: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x60048, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x40000, 0x0, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendfile(r2, r1, 0x0, 0xf88c) r3 = creat(&(0x7f0000000000)='./file0\x00', 0x17c0ba75be9b2547) ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000040)={0x0, 0x2, 0xffff, 0x5}) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r3, 0xc0189378, &(0x7f0000000b80)=ANY=[@ANYBLOB="01000000010000001800000072b838d6db707ba2057e7101000000ffffffff763617fde62ddc224d801b51e3364040ebe4921b945329a45ae19b8fa09d3154938aef22fca0a8363a0a5c07998f782bb0c35158325dd6e8acfdb67a31561333d7b708d6bb9df13ed0c0e69e23817e5a3604c4e34a1d9da0475f90f85e6799d28bc200ae74cb16b7deca103ef9b934dbed6eb292218e53311cacbfc6fe7c6374cf50ced00967de315889890d5f97bd08450fcc7411c625f86c4a6590bce4094617b3ced13cc25a872ea0bda0fb874f3a4592f5e82574e3b7ff000000000000001ddd6118caf19f6e89f3f6c07ff4d3ca5dba7c6d31c4da79cebcc0a89274efda97e91841ccc4b542c0e44bcf67", @ANYRES32=r0, @ANYRES32=r2, @ANYBLOB='\x00\x00\x00\x00./file0\x00']) write$binfmt_elf64(r4, &(0x7f00000000c0)={{0x7f, 0x45, 0x4c, 0x46, 0x1, 0xfa, 0x6, 0x6, 0x0, 0x3, 0x3e, 0xfa, 0x2f2, 0x40, 0x21b, 0xddcc, 0x9, 0x38, 0x1, 0x5, 0x3, 0x1000}, [{0x3, 0x7, 0x7, 0x0, 0x64, 0x3, 0x9c6, 0x8}], "9cb2a81fdb4e40e2d7346a6a150ac220974d3e6f2b055085d7ee19b5f1819ac2545f7ec8816cde0cc80498ff", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0xaa4) close(r3) fcntl$setlease(0xffffffffffffffff, 0x400, 0x0) close(0xffffffffffffffff) creat(0x0, 0x4) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2e, 0x0, 0x0) readv(0xffffffffffffffff, &(0x7f0000001480)=[{&(0x7f0000001140)=""/134, 0x86}], 0x1) pipe2(&(0x7f0000001200), 0x80800) [ 2885.080424] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 2885.083490] System zones: 0-7 [ 2885.090435] FAULT_INJECTION: forcing a failure. [ 2885.090435] name failslab, interval 1, probability 0, space 0, times 0 [ 2885.093146] CPU: 0 PID: 16005 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 2885.094562] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2885.096264] Call Trace: [ 2885.096806] dump_stack+0x107/0x167 [ 2885.097583] should_fail.cold+0x5/0xa [ 2885.098369] ? kobject_uevent_env+0x22b/0xf90 [ 2885.099313] ? dev_uevent_filter+0xd0/0xd0 [ 2885.100178] should_failslab+0x5/0x20 [ 2885.100957] kmem_cache_alloc_trace+0x55/0x320 [ 2885.101888] ? __device_release_driver+0x555/0x770 [ 2885.102889] ? dev_uevent_filter+0xd0/0xd0 [ 2885.103737] kobject_uevent_env+0x22b/0xf90 [ 2885.104616] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2885.105686] ? _raw_spin_unlock_irqrestore+0x38/0x40 [ 2885.106698] ? trace_hardirqs_on+0x5b/0x180 [ 2885.107570] __device_release_driver+0x5cd/0x770 [ 2885.108533] device_release_driver+0x26/0x40 [ 2885.109440] mac80211_hwsim_new_radio+0x29a2/0x4250 [ 2885.110449] ? ____sys_sendmsg+0x70d/0x870 [ 2885.111311] ? ___sys_sendmsg+0xf3/0x170 [ 2885.112119] ? __sys_sendmsg+0xe5/0x1b0 [ 2885.112935] ? do_syscall_64+0x33/0x40 [ 2885.113731] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2885.114830] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2885.115787] hwsim_new_radio_nl+0x991/0x1080 [ 2885.116684] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2885.117763] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2885.119085] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2885.120424] genl_family_rcv_msg_doit+0x22d/0x330 [ 2885.121418] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2885.122766] ? cap_capable+0x1cd/0x230 [ 2885.123569] ? ns_capable+0xe2/0x110 [ 2885.124325] genl_rcv_msg+0x33c/0x5a0 [ 2885.125107] ? genl_get_cmd+0x480/0x480 [ 2885.125915] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2885.126980] ? lock_release+0x680/0x680 [ 2885.127802] ? netlink_deliver_tap+0xf4/0xcd0 [ 2885.128706] netlink_rcv_skb+0x14b/0x430 [ 2885.129526] ? genl_get_cmd+0x480/0x480 [ 2885.130328] ? netlink_ack+0xab0/0xab0 [ 2885.131130] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2885.132044] ? is_vmalloc_addr+0x7b/0xb0 [ 2885.132864] genl_rcv+0x24/0x40 [ 2885.133545] netlink_unicast+0x549/0x7f0 [ 2885.134362] ? netlink_attachskb+0x870/0x870 [ 2885.135237] ? __virt_addr_valid+0x128/0x350 [ 2885.136127] netlink_sendmsg+0x90f/0xdf0 [ 2885.136951] ? netlink_unicast+0x7f0/0x7f0 [ 2885.137815] ? netlink_unicast+0x7f0/0x7f0 [ 2885.138660] __sock_sendmsg+0x154/0x190 [ 2885.139466] ____sys_sendmsg+0x70d/0x870 [ 2885.140285] ? sock_write_iter+0x3d0/0x3d0 [ 2885.141127] ? do_recvmmsg+0x6d0/0x6d0 [ 2885.141922] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2885.142985] ? lock_downgrade+0x6d0/0x6d0 [ 2885.143835] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2885.144887] ? SOFTIRQ_verbose+0x10/0x10 [ 2885.145725] ___sys_sendmsg+0xf3/0x170 [ 2885.146514] ? sendmsg_copy_msghdr+0x160/0x160 [ 2885.147431] ? lock_downgrade+0x6d0/0x6d0 [ 2885.148265] ? find_held_lock+0x2c/0x110 [ 2885.149088] ? __fget_files+0x296/0x4c0 [ 2885.149902] ? __fget_light+0xea/0x290 [ 2885.150698] __sys_sendmsg+0xe5/0x1b0 [ 2885.151471] ? __sys_sendmsg_sock+0x40/0x40 [ 2885.152329] ? rcu_read_lock_any_held+0x75/0xa0 [ 2885.153293] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2885.154352] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2885.155391] ? trace_hardirqs_on+0x5b/0x180 [ 2885.156261] do_syscall_64+0x33/0x40 [ 2885.157021] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2885.158045] RIP: 0033:0x7fa741f89b19 [ 2885.158798] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2885.162483] RSP: 002b:00007fa73f4ff188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2885.163991] RAX: ffffffffffffffda RBX: 00007fa74209cf60 RCX: 00007fa741f89b19 [ 2885.165417] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2885.166833] RBP: 00007fa73f4ff1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2885.168238] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2885.169646] R13: 00007ffd248a3bcf R14: 00007fa73f4ff300 R15: 0000000000022000 [ 2885.182179] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue 10:09:37 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c7a00001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2885.264361] FAULT_INJECTION: forcing a failure. [ 2885.264361] name failslab, interval 1, probability 0, space 0, times 0 [ 2885.267071] CPU: 0 PID: 16014 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 2885.268431] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2885.270087] Call Trace: [ 2885.270614] dump_stack+0x107/0x167 [ 2885.271344] should_fail.cold+0x5/0xa [ 2885.272109] ? kobject_uevent_env+0x22b/0xf90 [ 2885.273015] ? dev_uevent_filter+0xd0/0xd0 [ 2885.273860] should_failslab+0x5/0x20 [ 2885.274603] kmem_cache_alloc_trace+0x55/0x320 [ 2885.275488] ? dev_uevent_filter+0xd0/0xd0 [ 2885.276307] kobject_uevent_env+0x22b/0xf90 [ 2885.277155] ? software_node_notify+0xf8/0x2f0 [ 2885.278061] device_del+0xa8f/0x1180 [ 2885.278790] ? uevent_show+0x370/0x370 [ 2885.279557] ? wait_for_completion_io+0x270/0x270 [ 2885.280496] device_unregister+0x11/0x30 [ 2885.281289] mac80211_hwsim_new_radio+0x414/0x4250 [ 2885.282238] ? ____sys_sendmsg+0x70d/0x870 [ 2885.283042] ? ___sys_sendmsg+0xf3/0x170 [ 2885.283814] ? __sys_sendmsg+0xe5/0x1b0 [ 2885.284568] ? do_syscall_64+0x33/0x40 [ 2885.285307] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2885.286333] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2885.287236] hwsim_new_radio_nl+0x991/0x1080 [ 2885.288069] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2885.289064] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2885.290328] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2885.291567] genl_family_rcv_msg_doit+0x22d/0x330 [ 2885.292484] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2885.293754] ? cap_capable+0x1cd/0x230 [ 2885.294508] ? ns_capable+0xe2/0x110 [ 2885.295219] genl_rcv_msg+0x33c/0x5a0 [ 2885.295954] ? genl_get_cmd+0x480/0x480 [ 2885.296717] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2885.297720] ? lock_release+0x680/0x680 [ 2885.298487] ? netlink_deliver_tap+0xf4/0xcd0 [ 2885.299339] netlink_rcv_skb+0x14b/0x430 [ 2885.300116] ? genl_get_cmd+0x480/0x480 [ 2885.300880] ? netlink_ack+0xab0/0xab0 [ 2885.301658] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2885.302527] ? is_vmalloc_addr+0x7b/0xb0 [ 2885.303314] genl_rcv+0x24/0x40 [ 2885.303935] netlink_unicast+0x549/0x7f0 [ 2885.304726] ? netlink_attachskb+0x870/0x870 [ 2885.305579] ? __virt_addr_valid+0x128/0x350 [ 2885.306430] netlink_sendmsg+0x90f/0xdf0 [ 2885.307211] ? netlink_unicast+0x7f0/0x7f0 [ 2885.308030] ? netlink_unicast+0x7f0/0x7f0 [ 2885.308836] __sock_sendmsg+0x154/0x190 [ 2885.309607] ____sys_sendmsg+0x70d/0x870 [ 2885.310382] ? sock_write_iter+0x3d0/0x3d0 [ 2885.311187] ? do_recvmmsg+0x6d0/0x6d0 [ 2885.311916] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2885.312894] ? lock_downgrade+0x6d0/0x6d0 [ 2885.313705] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2885.314680] ? SOFTIRQ_verbose+0x10/0x10 [ 2885.315469] ___sys_sendmsg+0xf3/0x170 [ 2885.316198] ? sendmsg_copy_msghdr+0x160/0x160 [ 2885.317064] ? lock_downgrade+0x6d0/0x6d0 [ 2885.317843] ? find_held_lock+0x2c/0x110 [ 2885.318616] ? __fget_files+0x296/0x4c0 [ 2885.319381] ? __fget_light+0xea/0x290 [ 2885.320118] __sys_sendmsg+0xe5/0x1b0 [ 2885.320818] ? __sys_sendmsg_sock+0x40/0x40 [ 2885.321640] ? rcu_read_lock_any_held+0x75/0xa0 [ 2885.322512] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2885.323488] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2885.324423] ? trace_hardirqs_on+0x5b/0x180 [ 2885.325224] do_syscall_64+0x33/0x40 [ 2885.325910] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2885.326855] RIP: 0033:0x7fd0ea82fb19 [ 2885.327544] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2885.330946] RSP: 002b:00007fd0e7da5188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2885.332352] RAX: ffffffffffffffda RBX: 00007fd0ea942f60 RCX: 00007fd0ea82fb19 [ 2885.333684] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2885.335006] RBP: 00007fd0e7da51d0 R08: 0000000000000000 R09: 0000000000000000 [ 2885.336319] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2885.337640] R13: 00007ffedd9ef45f R14: 00007fd0e7da5300 R15: 0000000000022000 10:09:37 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a535, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) 10:09:37 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0007001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:09:37 executing program 1: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r0, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4) socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c) sendmsg$inet(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x2, 0x4e21, @multicast1}, 0x10, 0x0}, 0x404c008) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x1, @ipv4={'\x00', '\xff\xff', @empty}, 0x1}, 0x1c) r1 = fcntl$dupfd(r0, 0x0, r0) sendmsg$inet6(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ftruncate(r2, 0x1000003) ioctl$FS_IOC_FSSETXATTR(r2, 0x40086602, &(0x7f0000000000)={0x0, 0x0, 0x2, 0x80000007, 0xffff7ff9}) fcntl$setlease(0xffffffffffffffff, 0x400, 0x1) fcntl$setown(0xffffffffffffffff, 0x8, 0xffffffffffffffff) fcntl$setsig(0xffffffffffffffff, 0xa, 0x2e) close(0xffffffffffffffff) recvfrom$inet6(0xffffffffffffffff, &(0x7f0000000300)=""/231, 0xe7, 0x20, &(0x7f0000000040)={0xa, 0x4e20, 0xffffffff, @mcast1, 0x1db6}, 0x1c) sendmmsg$inet6(r1, &(0x7f0000000200)=[{{&(0x7f00000001c0)={0x2, 0x4e21, 0x0, @private0}, 0x1c, 0x0}}], 0x1, 0x0) ioctl$F2FS_IOC_DEFRAGMENT(0xffffffffffffffff, 0xc010f508, &(0x7f0000000180)={0x3, 0x5}) 10:09:37 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) fgetxattr(r1, &(0x7f0000000000)=@random={'user.', '\x00'}, &(0x7f0000000040)=""/242, 0xf2) sendmsg$nl_xfrm(r0, &(0x7f0000002e00)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000600)=@updsa={0x158, 0x10, 0x1, 0x0, 0x0, {{@in=@private, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x32}, @in6=@private0, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_crypt={0x58, 0x2, {{'cbc(aes)\x00'}, 0x80, "0f24aa6b13c2e62f3556b1cbcfeac2a0"}}, @replay_val={0x10}]}, 0x158}}, 0x0) 10:09:37 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a536, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) 10:09:38 executing program 0: ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'}) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) flock(0xffffffffffffffff, 0x2) r1 = io_uring_setup(0x0, &(0x7f00000001c0)={0x0, 0x0, 0x20, 0x0, 0x1cf}) sendfile(0xffffffffffffffff, r1, 0x0, 0x9) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) bind$packet(0xffffffffffffffff, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0xa, 0xe6b5b91, 0x0, 0x0, 0x0, 0x0, {0x1}}, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000640)=@IORING_OP_SENDMSG={0x9, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x80, 0x0, {0x0, r2}}, 0x3c5a) ioctl$BTRFS_IOC_SEND(r1, 0x40489426, 0x0) ioctl$TUNGETVNETHDRSZ(r0, 0x800454d7, &(0x7f0000000340)) r3 = socket$inet(0x2, 0xa, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) dup3(r3, r0, 0x0) 10:09:38 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1cf000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2885.530267] FAULT_INJECTION: forcing a failure. [ 2885.530267] name failslab, interval 1, probability 0, space 0, times 0 [ 2885.532323] CPU: 1 PID: 16019 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 2885.533333] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2885.534559] Call Trace: [ 2885.534953] dump_stack+0x107/0x167 [ 2885.535529] should_fail.cold+0x5/0xa [ 2885.536135] should_failslab+0x5/0x20 [ 2885.536729] __kmalloc_track_caller+0x79/0x370 [ 2885.537450] ? kasprintf+0xbb/0xf0 [ 2885.538012] kvasprintf+0xb5/0x150 [ 2885.538579] ? bust_spinlocks+0xe0/0xe0 [ 2885.539189] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2885.540008] ? get_random_u32+0x3cb/0x670 [ 2885.540662] kasprintf+0xbb/0xf0 [ 2885.541175] ? kvasprintf_const+0x1a0/0x1a0 [ 2885.541851] ? lockdep_init_map_type+0x2c7/0x780 [ 2885.542586] ? lockdep_init_map_type+0x2c7/0x780 [ 2885.543321] ieee80211_alloc_led_names+0x23f/0x420 [ 2885.544081] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 2885.544811] ? trace_hardirqs_on+0x5b/0x180 [ 2885.545493] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 2885.546246] ? ____sys_sendmsg+0x70d/0x870 [ 2885.546901] ? ___sys_sendmsg+0xf3/0x170 [ 2885.547519] ? __sys_sendmsg+0xe5/0x1b0 [ 2885.548119] ? do_syscall_64+0x33/0x40 [ 2885.548704] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2885.549523] ? lock_acquire+0x197/0x470 [ 2885.550185] ? create_object.isra.0+0x3ad/0xa20 [ 2885.550896] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2885.551586] hwsim_new_radio_nl+0x991/0x1080 [ 2885.552260] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2885.553052] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2885.554057] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2885.555040] genl_family_rcv_msg_doit+0x22d/0x330 [ 2885.555776] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2885.556760] ? cap_capable+0x1cd/0x230 [ 2885.557363] ? ns_capable+0xe2/0x110 [ 2885.557953] genl_rcv_msg+0x33c/0x5a0 [ 2885.558541] ? genl_get_cmd+0x480/0x480 [ 2885.559137] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2885.559918] ? lock_release+0x680/0x680 [ 2885.560520] ? netlink_deliver_tap+0xf4/0xcd0 [ 2885.561202] netlink_rcv_skb+0x14b/0x430 [ 2885.561847] ? genl_get_cmd+0x480/0x480 [ 2885.562461] ? netlink_ack+0xab0/0xab0 [ 2885.563056] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2885.563751] ? is_vmalloc_addr+0x7b/0xb0 [ 2885.564370] genl_rcv+0x24/0x40 [ 2885.564867] netlink_unicast+0x549/0x7f0 [ 2885.565502] ? netlink_attachskb+0x870/0x870 [ 2885.566160] ? __virt_addr_valid+0x128/0x350 [ 2885.566834] netlink_sendmsg+0x90f/0xdf0 [ 2885.567452] ? netlink_unicast+0x7f0/0x7f0 [ 2885.568107] ? netlink_unicast+0x7f0/0x7f0 [ 2885.568760] __sock_sendmsg+0x154/0x190 [ 2885.569382] ____sys_sendmsg+0x70d/0x870 [ 2885.570016] ? sock_write_iter+0x3d0/0x3d0 [ 2885.570662] ? do_recvmmsg+0x6d0/0x6d0 [ 2885.571254] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2885.572046] ? lock_downgrade+0x6d0/0x6d0 [ 2885.572675] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2885.573477] ? SOFTIRQ_verbose+0x10/0x10 [ 2885.574093] ___sys_sendmsg+0xf3/0x170 [ 2885.574689] ? sendmsg_copy_msghdr+0x160/0x160 [ 2885.575382] ? lock_downgrade+0x6d0/0x6d0 [ 2885.576017] ? find_held_lock+0x2c/0x110 [ 2885.576646] ? __fget_files+0x296/0x4c0 [ 2885.577270] ? __fget_light+0xea/0x290 [ 2885.577892] __sys_sendmsg+0xe5/0x1b0 [ 2885.578472] ? __sys_sendmsg_sock+0x40/0x40 [ 2885.579126] ? rcu_read_lock_any_held+0x75/0xa0 [ 2885.579849] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2885.580643] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2885.581429] ? trace_hardirqs_on+0x5b/0x180 [ 2885.582097] do_syscall_64+0x33/0x40 [ 2885.582658] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2885.583438] RIP: 0033:0x7f46fba00b19 [ 2885.584006] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2885.586799] RSP: 002b:00007f46f8f76188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2885.587945] RAX: ffffffffffffffda RBX: 00007f46fbb13f60 RCX: 00007f46fba00b19 [ 2885.589027] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2885.590126] RBP: 00007f46f8f761d0 R08: 0000000000000000 R09: 0000000000000000 [ 2885.591209] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2885.592285] R13: 00007ffe81962e7f R14: 00007f46f8f76300 R15: 0000000000022000 [ 2885.605082] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 2885.606502] System zones: 0-7 [ 2885.608638] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 2885.616624] device veth0_vlan entered promiscuous mode 10:09:52 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) (fail_nth: 93) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:09:52 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0009001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:09:52 executing program 2: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 83) r2 = creat(0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:09:52 executing program 0: ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'}) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) flock(0xffffffffffffffff, 0x2) r1 = io_uring_setup(0x0, &(0x7f00000001c0)={0x0, 0x0, 0x20, 0x0, 0x1cf}) sendfile(0xffffffffffffffff, r1, 0x0, 0x9) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) bind$packet(0xffffffffffffffff, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0xa, 0xe6b5b91, 0x0, 0x0, 0x0, 0x0, {0x1}}, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) r2 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000640)=@IORING_OP_SENDMSG={0x9, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x80, 0x0, {0x0, r2}}, 0x3c5a) ioctl$BTRFS_IOC_SEND(r1, 0x40489426, 0x0) ioctl$TUNGETVNETHDRSZ(r0, 0x800454d7, &(0x7f0000000340)) r3 = socket$inet(0x2, 0xa, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000240)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x0) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_inet_SIOCGIFNETMASK(r3, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) dup3(r3, r0, 0x0) 10:09:52 executing program 3: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 25) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:09:52 executing program 1: perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_script(0xffffffffffffffff, 0x0, 0xb) fallocate(0xffffffffffffffff, 0x3, 0x0, 0x18000) pread64(0xffffffffffffffff, &(0x7f00000003c0)=""/4096, 0x1000, 0x8) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x125342, 0x0) fallocate(r0, 0x0, 0x4, 0x100) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0xce) close(0xffffffffffffffff) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(0xffffffffffffffff, 0x800c6613, &(0x7f0000000140)=@v2={0x2, @aes256, 0x8, '\x00', @c}) r3 = dup2(r2, r1) syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x0, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000240)=ANY=[@ANYBLOB="43e31f68a5ccc3ec69aa4806b01906076162f9ffffff7f25a5b9630f39230e9287794aa0db89f36cf6d04afe650d9546dcdbddc85e7781b3deb2bc7489758defa571b304c38b6d42000000000000000006000000000000da70a6d3d9575be7aa94d1cd601b7d70e7043e1225f076f40839a55da5bfbfc275885147b8ade2958aa2a20e0774096689b3963617876c328dc17b81b2b93f58b8b5777fb6acb174b9bbcb74ab66", @ANYRES16]) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) open$dir(&(0x7f00000000c0)='./file1\x00', 0x0, 0x1ae) fallocate(r4, 0x10, 0x0, 0x0) r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0) sendfile(r5, r3, 0x0, 0x7ffffff9) 10:09:52 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a537, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) 10:09:52 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0003001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2899.700645] FAULT_INJECTION: forcing a failure. [ 2899.700645] name failslab, interval 1, probability 0, space 0, times 0 [ 2899.703324] CPU: 1 PID: 16079 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 2899.704740] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2899.706459] Call Trace: [ 2899.707010] dump_stack+0x107/0x167 [ 2899.707765] should_fail.cold+0x5/0xa [ 2899.708559] ? create_object.isra.0+0x3a/0xa20 [ 2899.709504] should_failslab+0x5/0x20 [ 2899.710319] kmem_cache_alloc+0x5b/0x310 [ 2899.711163] create_object.isra.0+0x3a/0xa20 [ 2899.712062] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2899.713103] kmem_cache_alloc_trace+0x151/0x320 [ 2899.714061] ? __device_release_driver+0x555/0x770 [ 2899.715072] ? dev_uevent_filter+0xd0/0xd0 [ 2899.715935] kobject_uevent_env+0x22b/0xf90 [ 2899.716826] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2899.717906] ? _raw_spin_unlock_irqrestore+0x38/0x40 [ 2899.718950] ? trace_hardirqs_on+0x5b/0x180 [ 2899.719838] __device_release_driver+0x5cd/0x770 [ 2899.720816] device_release_driver+0x26/0x40 [ 2899.721728] mac80211_hwsim_new_radio+0x29a2/0x4250 [ 2899.722739] ? ____sys_sendmsg+0x70d/0x870 [ 2899.723595] ? ___sys_sendmsg+0xf3/0x170 [ 2899.724418] ? __sys_sendmsg+0xe5/0x1b0 [ 2899.725232] ? do_syscall_64+0x33/0x40 [ 2899.726035] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2899.727133] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2899.728095] hwsim_new_radio_nl+0x991/0x1080 [ 2899.728997] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2899.730092] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2899.731426] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2899.732758] genl_family_rcv_msg_doit+0x22d/0x330 [ 2899.733749] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2899.735082] ? cap_capable+0x1cd/0x230 [ 2899.735894] ? ns_capable+0xe2/0x110 [ 2899.736658] genl_rcv_msg+0x33c/0x5a0 [ 2899.737437] ? genl_get_cmd+0x480/0x480 [ 2899.738258] ? lock_acquire+0x1b9/0x470 [ 2899.739066] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2899.740129] ? lock_release+0x680/0x680 [ 2899.740939] ? netlink_deliver_tap+0xf4/0xcd0 [ 2899.741871] netlink_rcv_skb+0x14b/0x430 [ 2899.742698] ? genl_get_cmd+0x480/0x480 [ 2899.743511] ? netlink_ack+0xab0/0xab0 [ 2899.744323] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2899.745253] ? is_vmalloc_addr+0x7b/0xb0 [ 2899.746094] genl_rcv+0x24/0x40 [ 2899.746767] netlink_unicast+0x549/0x7f0 [ 2899.747600] ? netlink_attachskb+0x870/0x870 [ 2899.748495] ? __virt_addr_valid+0x128/0x350 [ 2899.749406] netlink_sendmsg+0x90f/0xdf0 [ 2899.750259] ? netlink_unicast+0x7f0/0x7f0 [ 2899.751131] ? netlink_unicast+0x7f0/0x7f0 [ 2899.751976] __sock_sendmsg+0x154/0x190 [ 2899.752007] device veth0_vlan entered promiscuous mode [ 2899.752802] ____sys_sendmsg+0x70d/0x870 [ 2899.752828] ? sock_write_iter+0x3d0/0x3d0 [ 2899.755186] ? do_recvmmsg+0x6d0/0x6d0 [ 2899.755989] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2899.757065] ? lock_downgrade+0x6d0/0x6d0 [ 2899.757939] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2899.759021] ? SOFTIRQ_verbose+0x10/0x10 [ 2899.759875] ___sys_sendmsg+0xf3/0x170 [ 2899.760676] ? sendmsg_copy_msghdr+0x160/0x160 [ 2899.761676] ? lock_downgrade+0x6d0/0x6d0 [ 2899.762552] ? find_held_lock+0x2c/0x110 [ 2899.763418] ? __fget_files+0x296/0x4c0 [ 2899.764248] ? __fget_light+0xea/0x290 [ 2899.765066] __sys_sendmsg+0xe5/0x1b0 [ 2899.765861] ? __sys_sendmsg_sock+0x40/0x40 [ 2899.766746] ? rcu_read_lock_any_held+0x75/0xa0 [ 2899.767716] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2899.768795] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2899.769852] ? trace_hardirqs_on+0x5b/0x180 [ 2899.770748] do_syscall_64+0x33/0x40 [ 2899.771502] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2899.772552] RIP: 0033:0x7fa741f89b19 [ 2899.773307] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2899.777006] RSP: 002b:00007fa73f4ff188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2899.778588] RAX: ffffffffffffffda RBX: 00007fa74209cf60 RCX: 00007fa741f89b19 [ 2899.780033] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2899.781473] RBP: 00007fa73f4ff1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2899.782918] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2899.784350] R13: 00007ffd248a3bcf R14: 00007fa73f4ff300 R15: 0000000000022000 10:09:52 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c5803001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2899.793748] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 2899.794761] System zones: 0-7 [ 2899.797414] FAULT_INJECTION: forcing a failure. [ 2899.797414] name failslab, interval 1, probability 0, space 0, times 0 [ 2899.798866] CPU: 0 PID: 16078 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 2899.799727] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2899.800775] Call Trace: [ 2899.801115] dump_stack+0x107/0x167 [ 2899.801575] should_fail.cold+0x5/0xa [ 2899.802065] should_failslab+0x5/0x20 [ 2899.802544] __kmalloc_node_track_caller+0x74/0x3b0 [ 2899.803173] ? alloc_uevent_skb+0x7b/0x210 [ 2899.803717] __alloc_skb+0xb1/0x5b0 [ 2899.804183] alloc_uevent_skb+0x7b/0x210 [ 2899.804699] kobject_uevent_env+0x99a/0xf90 [ 2899.805246] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2899.805910] ? trace_hardirqs_on+0x5b/0x180 [ 2899.806449] __device_release_driver+0x5cd/0x770 [ 2899.807044] device_release_driver+0x26/0x40 [ 2899.807596] mac80211_hwsim_new_radio+0x29a2/0x4250 [ 2899.808228] ? ____sys_sendmsg+0x70d/0x870 [ 2899.808759] ? ___sys_sendmsg+0xf3/0x170 [ 2899.809262] ? __sys_sendmsg+0xe5/0x1b0 [ 2899.809756] ? do_syscall_64+0x33/0x40 [ 2899.810248] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2899.810927] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2899.811517] hwsim_new_radio_nl+0x991/0x1080 [ 2899.812074] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2899.812724] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2899.813538] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2899.814352] genl_family_rcv_msg_doit+0x22d/0x330 [ 2899.814959] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2899.815781] ? security_capable+0x78/0xc0 [ 2899.816320] ? ns_capable+0xe2/0x110 [ 2899.816779] genl_rcv_msg+0x33c/0x5a0 [ 2899.817262] ? genl_get_cmd+0x480/0x480 [ 2899.817751] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2899.818394] ? lock_release+0x680/0x680 [ 2899.818877] ? netlink_deliver_tap+0xf4/0xcd0 [ 2899.819451] netlink_rcv_skb+0x14b/0x430 [ 2899.819936] ? genl_get_cmd+0x480/0x480 [ 2899.820436] ? netlink_ack+0xab0/0xab0 [ 2899.820912] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2899.821482] ? is_vmalloc_addr+0x7b/0xb0 [ 2899.821985] genl_rcv+0x24/0x40 [ 2899.822389] netlink_unicast+0x549/0x7f0 [ 2899.822877] ? netlink_attachskb+0x870/0x870 [ 2899.823421] ? __virt_addr_valid+0x128/0x350 [ 2899.823871] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 2899.823955] netlink_sendmsg+0x90f/0xdf0 [ 2899.826107] ? netlink_unicast+0x7f0/0x7f0 [ 2899.826616] ? netlink_unicast+0x7f0/0x7f0 [ 2899.827120] __sock_sendmsg+0x154/0x190 [ 2899.827593] ____sys_sendmsg+0x70d/0x870 [ 2899.828090] ? sock_write_iter+0x3d0/0x3d0 [ 2899.828600] ? do_recvmmsg+0x6d0/0x6d0 [ 2899.829074] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2899.829704] ? lock_downgrade+0x6d0/0x6d0 [ 2899.830194] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2899.830811] ? SOFTIRQ_verbose+0x10/0x10 [ 2899.831317] ___sys_sendmsg+0xf3/0x170 [ 2899.831801] ? sendmsg_copy_msghdr+0x160/0x160 [ 2899.832371] ? lock_downgrade+0x6d0/0x6d0 [ 2899.832882] ? find_held_lock+0x2c/0x110 [ 2899.833395] ? __fget_files+0x296/0x4c0 [ 2899.833902] ? __fget_light+0xea/0x290 [ 2899.834390] __sys_sendmsg+0xe5/0x1b0 [ 2899.834864] ? __sys_sendmsg_sock+0x40/0x40 [ 2899.835402] ? rcu_read_lock_any_held+0x75/0xa0 [ 2899.835990] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2899.836642] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2899.837275] ? trace_hardirqs_on+0x5b/0x180 10:09:52 executing program 2: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 84) r2 = creat(0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2899.837832] do_syscall_64+0x33/0x40 [ 2899.838444] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2899.839075] RIP: 0033:0x7fd0ea82fb19 [ 2899.839545] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2899.841826] RSP: 002b:00007fd0e7da5188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2899.842770] RAX: ffffffffffffffda RBX: 00007fd0ea942f60 RCX: 00007fd0ea82fb19 [ 2899.843651] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2899.844533] RBP: 00007fd0e7da51d0 R08: 0000000000000000 R09: 0000000000000000 [ 2899.845419] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2899.846324] R13: 00007ffedd9ef45f R14: 00007fd0e7da5300 R15: 0000000000022000 10:09:52 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000f001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2899.912194] FAULT_INJECTION: forcing a failure. [ 2899.912194] name failslab, interval 1, probability 0, space 0, times 0 [ 2899.914962] CPU: 1 PID: 16081 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 2899.916356] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2899.918063] Call Trace: [ 2899.918601] dump_stack+0x107/0x167 [ 2899.919352] should_fail.cold+0x5/0xa [ 2899.920129] ? create_object.isra.0+0x3a/0xa20 [ 2899.921063] should_failslab+0x5/0x20 [ 2899.921843] kmem_cache_alloc+0x5b/0x310 [ 2899.922664] ? vsnprintf+0x4ba/0x1600 [ 2899.923443] create_object.isra.0+0x3a/0xa20 [ 2899.924333] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2899.925369] __kmalloc_track_caller+0x177/0x370 [ 2899.926338] ? kasprintf+0xbb/0xf0 [ 2899.927073] kvasprintf+0xb5/0x150 [ 2899.927805] ? bust_spinlocks+0xe0/0xe0 [ 2899.928611] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2899.929711] ? get_random_u32+0x3cb/0x670 [ 2899.930566] kasprintf+0xbb/0xf0 [ 2899.931267] ? kvasprintf_const+0x1a0/0x1a0 [ 2899.932145] ? lockdep_init_map_type+0x2c7/0x780 [ 2899.933121] ? lockdep_init_map_type+0x2c7/0x780 [ 2899.934101] ieee80211_alloc_led_names+0x23f/0x420 [ 2899.935098] ieee80211_alloc_hw_nm+0x1b51/0x2320 [ 2899.936072] ? trace_hardirqs_on+0x5b/0x180 [ 2899.936969] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 2899.937987] ? ____sys_sendmsg+0x70d/0x870 [ 2899.938860] ? ___sys_sendmsg+0xf3/0x170 [ 2899.939692] ? __sys_sendmsg+0xe5/0x1b0 [ 2899.940511] ? do_syscall_64+0x33/0x40 [ 2899.941311] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2899.942423] ? lock_acquire+0x197/0x470 [ 2899.943242] ? create_object.isra.0+0x3ad/0xa20 [ 2899.944201] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2899.945169] hwsim_new_radio_nl+0x991/0x1080 [ 2899.946088] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2899.947155] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2899.948503] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2899.949841] genl_family_rcv_msg_doit+0x22d/0x330 [ 2899.950830] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2899.952170] ? cap_capable+0x1cd/0x230 [ 2899.952986] ? ns_capable+0xe2/0x110 [ 2899.953762] genl_rcv_msg+0x33c/0x5a0 [ 2899.954549] ? genl_get_cmd+0x480/0x480 [ 2899.955375] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2899.956432] ? lock_release+0x680/0x680 [ 2899.957238] ? netlink_deliver_tap+0xf4/0xcd0 [ 2899.958163] netlink_rcv_skb+0x14b/0x430 [ 2899.959008] ? genl_get_cmd+0x480/0x480 [ 2899.959816] ? netlink_ack+0xab0/0xab0 [ 2899.960633] genl_rcv+0x24/0x40 [ 2899.961306] netlink_unicast+0x549/0x7f0 [ 2899.962169] ? netlink_attachskb+0x870/0x870 [ 2899.963070] ? __virt_addr_valid+0x128/0x350 [ 2899.963986] netlink_sendmsg+0x90f/0xdf0 [ 2899.964835] ? netlink_unicast+0x7f0/0x7f0 [ 2899.965729] ? netlink_unicast+0x7f0/0x7f0 [ 2899.966599] __sock_sendmsg+0x154/0x190 [ 2899.967430] ____sys_sendmsg+0x70d/0x870 [ 2899.968275] ? sock_write_iter+0x3d0/0x3d0 [ 2899.969141] ? do_recvmmsg+0x6d0/0x6d0 [ 2899.969955] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2899.971038] ? lock_downgrade+0x6d0/0x6d0 [ 2899.971896] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2899.972968] ? SOFTIRQ_verbose+0x10/0x10 [ 2899.973808] ___sys_sendmsg+0xf3/0x170 [ 2899.974618] ? sendmsg_copy_msghdr+0x160/0x160 [ 2899.975567] ? lock_downgrade+0x6d0/0x6d0 [ 2899.976433] ? find_held_lock+0x2c/0x110 [ 2899.977280] ? __fget_files+0x296/0x4c0 [ 2899.978115] ? __fget_light+0xea/0x290 [ 2899.978937] __sys_sendmsg+0xe5/0x1b0 [ 2899.979739] ? __sys_sendmsg_sock+0x40/0x40 [ 2899.980636] ? rcu_read_lock_any_held+0x75/0xa0 [ 2899.981632] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2899.982711] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2899.983768] ? trace_hardirqs_on+0x5b/0x180 [ 2899.984668] do_syscall_64+0x33/0x40 [ 2899.985439] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2899.986479] RIP: 0033:0x7f46fba00b19 [ 2899.987237] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2899.990904] RSP: 002b:00007f46f8f76188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2899.992440] RAX: ffffffffffffffda RBX: 00007f46fbb13f60 RCX: 00007f46fba00b19 [ 2899.993908] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2899.995343] RBP: 00007f46f8f761d0 R08: 0000000000000000 R09: 0000000000000000 [ 2899.996791] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2899.998241] R13: 00007ffe81962e7f R14: 00007f46f8f76300 R15: 0000000000022000 10:09:52 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a538, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) 10:09:52 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0005001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2900.056375] FAULT_INJECTION: forcing a failure. [ 2900.056375] name failslab, interval 1, probability 0, space 0, times 0 [ 2900.057766] CPU: 0 PID: 16111 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 2900.058533] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2900.059434] Call Trace: [ 2900.059731] dump_stack+0x107/0x167 [ 2900.060138] should_fail.cold+0x5/0xa [ 2900.060553] ? create_object.isra.0+0x3a/0xa20 [ 2900.061058] should_failslab+0x5/0x20 [ 2900.061481] kmem_cache_alloc+0x5b/0x310 [ 2900.061931] ? find_held_lock+0x2c/0x110 [ 2900.062375] create_object.isra.0+0x3a/0xa20 [ 2900.062854] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2900.063420] kmem_cache_alloc+0x159/0x310 [ 2900.063880] skb_clone+0x14f/0x3d0 [ 2900.064269] netlink_broadcast_filtered+0xa08/0xdc0 [ 2900.064827] netlink_broadcast+0x35/0x50 [ 2900.065271] kobject_uevent_env+0x93d/0xf90 [ 2900.065776] driver_bound+0x19d/0x1f0 [ 2900.066188] device_bind_driver+0xae/0xd0 [ 2900.066633] mac80211_hwsim_new_radio+0x3d2/0x4250 [ 2900.067164] ? __nla_validate_parse+0x2c7/0x2b10 [ 2900.067669] ? __nla_validate_parse+0x2d8/0x2b10 [ 2900.068175] ? read_enabled_file_bool+0xa4/0xe0 [ 2900.068681] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2900.069177] ? mark_held_locks+0x9e/0xe0 [ 2900.069622] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2900.070181] hwsim_new_radio_nl+0x991/0x1080 [ 2900.070658] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2900.071216] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2900.071924] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2900.072619] genl_family_rcv_msg_doit+0x22d/0x330 [ 2900.073149] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2900.073873] ? cap_capable+0x1cd/0x230 [ 2900.074303] ? ns_capable+0xe2/0x110 [ 2900.074710] genl_rcv_msg+0x33c/0x5a0 [ 2900.075132] ? genl_get_cmd+0x480/0x480 [ 2900.075561] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2900.076126] ? lock_release+0x680/0x680 [ 2900.076555] netlink_rcv_skb+0x14b/0x430 [ 2900.076994] ? genl_get_cmd+0x480/0x480 [ 2900.077419] ? netlink_ack+0xab0/0xab0 [ 2900.077863] ? genl_pernet_exit+0x80/0x80 [ 2900.078307] ? netlink_unicast+0x51f/0x7f0 [ 2900.078770] genl_rcv+0x24/0x40 [ 2900.079122] netlink_unicast+0x549/0x7f0 [ 2900.079565] ? netlink_attachskb+0x870/0x870 [ 2900.080039] ? __virt_addr_valid+0x128/0x350 [ 2900.080518] netlink_sendmsg+0x90f/0xdf0 [ 2900.080961] ? netlink_unicast+0x7f0/0x7f0 [ 2900.081427] ? netlink_unicast+0x7f0/0x7f0 [ 2900.081899] __sock_sendmsg+0x154/0x190 [ 2900.082331] ____sys_sendmsg+0x70d/0x870 [ 2900.082769] ? sock_write_iter+0x3d0/0x3d0 [ 2900.083224] ? do_recvmmsg+0x6d0/0x6d0 [ 2900.083638] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2900.084204] ? lock_downgrade+0x6d0/0x6d0 [ 2900.084655] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2900.085224] ? SOFTIRQ_verbose+0x10/0x10 [ 2900.085668] ___sys_sendmsg+0xf3/0x170 [ 2900.086092] ? sendmsg_copy_msghdr+0x160/0x160 [ 2900.086588] ? lock_downgrade+0x6d0/0x6d0 [ 2900.087037] ? find_held_lock+0x2c/0x110 [ 2900.087486] ? __fget_files+0x296/0x4c0 [ 2900.087925] ? __fget_light+0xea/0x290 [ 2900.088345] __sys_sendmsg+0xe5/0x1b0 [ 2900.088753] ? __sys_sendmsg_sock+0x40/0x40 [ 2900.089216] ? rcu_read_lock_any_held+0x75/0xa0 [ 2900.089745] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2900.090304] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2900.090855] ? trace_hardirqs_on+0x5b/0x180 [ 2900.091331] do_syscall_64+0x33/0x40 [ 2900.091733] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2900.092282] RIP: 0033:0x7fa741f89b19 [ 2900.092676] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2900.094628] RSP: 002b:00007fa73f4ff188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2900.095436] RAX: ffffffffffffffda RBX: 00007fa74209cf60 RCX: 00007fa741f89b19 [ 2900.096199] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2900.096964] RBP: 00007fa73f4ff1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2900.097735] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2900.098505] R13: 00007ffd248a3bcf R14: 00007fa73f4ff300 R15: 0000000000022000 10:09:52 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) (fail_nth: 94) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:09:52 executing program 2: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 85) r2 = creat(0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2900.162983] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 2900.165046] System zones: 0-7 [ 2900.167627] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue 10:09:52 executing program 3: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 26) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2900.236191] FAULT_INJECTION: forcing a failure. [ 2900.236191] name failslab, interval 1, probability 0, space 0, times 0 [ 2900.237678] CPU: 0 PID: 16121 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 2900.238423] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2900.239312] Call Trace: [ 2900.239601] dump_stack+0x107/0x167 [ 2900.239995] should_fail.cold+0x5/0xa [ 2900.240398] ? create_object.isra.0+0x3a/0xa20 [ 2900.240886] should_failslab+0x5/0x20 [ 2900.241290] kmem_cache_alloc+0x5b/0x310 [ 2900.241727] ? kmem_cache_alloc_trace+0x151/0x320 [ 2900.242242] create_object.isra.0+0x3a/0xa20 [ 2900.242707] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2900.243260] __kmalloc+0x16e/0x390 [ 2900.243643] kobject_get_path+0xc5/0x1f0 [ 2900.244079] kobject_uevent_env+0x251/0xf90 [ 2900.244548] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2900.245112] ? _raw_spin_unlock_irqrestore+0x38/0x40 [ 2900.245657] ? trace_hardirqs_on+0x5b/0x180 [ 2900.246151] __device_release_driver+0x5cd/0x770 [ 2900.246673] device_release_driver+0x26/0x40 [ 2900.247150] mac80211_hwsim_new_radio+0x29a2/0x4250 [ 2900.247686] ? ____sys_sendmsg+0x70d/0x870 [ 2900.248140] ? ___sys_sendmsg+0xf3/0x170 [ 2900.248572] ? __sys_sendmsg+0xe5/0x1b0 [ 2900.249002] ? do_syscall_64+0x33/0x40 [ 2900.249416] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2900.250019] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2900.250531] hwsim_new_radio_nl+0x991/0x1080 [ 2900.251005] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2900.251576] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2900.252280] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2900.252984] genl_family_rcv_msg_doit+0x22d/0x330 [ 2900.253505] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2900.254223] ? cap_capable+0x1cd/0x230 [ 2900.254661] ? ns_capable+0xe2/0x110 [ 2900.255072] genl_rcv_msg+0x33c/0x5a0 [ 2900.255484] ? genl_get_cmd+0x480/0x480 [ 2900.255919] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2900.256474] ? lock_release+0x680/0x680 [ 2900.256898] ? netlink_deliver_tap+0xf4/0xcd0 [ 2900.257380] netlink_rcv_skb+0x14b/0x430 [ 2900.257831] ? genl_get_cmd+0x480/0x480 [ 2900.258261] ? netlink_ack+0xab0/0xab0 [ 2900.258694] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2900.259185] ? is_vmalloc_addr+0x7b/0xb0 [ 2900.259627] genl_rcv+0x24/0x40 [ 2900.259980] netlink_unicast+0x549/0x7f0 [ 2900.260423] ? netlink_attachskb+0x870/0x870 [ 2900.260892] ? __virt_addr_valid+0x128/0x350 [ 2900.261373] netlink_sendmsg+0x90f/0xdf0 [ 2900.261827] ? netlink_unicast+0x7f0/0x7f0 [ 2900.262283] ? netlink_unicast+0x7f0/0x7f0 [ 2900.262740] __sock_sendmsg+0x154/0x190 [ 2900.263168] ____sys_sendmsg+0x70d/0x870 [ 2900.263608] ? sock_write_iter+0x3d0/0x3d0 [ 2900.264063] ? do_recvmmsg+0x6d0/0x6d0 [ 2900.264489] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2900.265047] ? lock_downgrade+0x6d0/0x6d0 [ 2900.265492] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2900.266064] ? SOFTIRQ_verbose+0x10/0x10 [ 2900.266510] ___sys_sendmsg+0xf3/0x170 [ 2900.266928] ? sendmsg_copy_msghdr+0x160/0x160 [ 2900.267428] ? lock_downgrade+0x6d0/0x6d0 [ 2900.267886] ? find_held_lock+0x2c/0x110 [ 2900.268332] ? __fget_files+0x296/0x4c0 [ 2900.268774] ? __fget_light+0xea/0x290 [ 2900.269196] __sys_sendmsg+0xe5/0x1b0 [ 2900.269611] ? __sys_sendmsg_sock+0x40/0x40 [ 2900.270079] ? rcu_read_lock_any_held+0x75/0xa0 [ 2900.270585] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2900.271151] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2900.271705] ? trace_hardirqs_on+0x5b/0x180 [ 2900.272176] do_syscall_64+0x33/0x40 [ 2900.272572] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2900.273122] RIP: 0033:0x7fa741f89b19 [ 2900.273529] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2900.275519] RSP: 002b:00007fa73f4ff188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2900.276326] RAX: ffffffffffffffda RBX: 00007fa74209cf60 RCX: 00007fa741f89b19 [ 2900.277083] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2900.277859] RBP: 00007fa73f4ff1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2900.278617] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2900.279378] R13: 00007ffd248a3bcf R14: 00007fa73f4ff300 R15: 0000000000022000 10:09:52 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a539, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) [ 2900.359689] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 2900.361476] System zones: 0-7 [ 2900.367830] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 2900.374868] FAULT_INJECTION: forcing a failure. [ 2900.374868] name failslab, interval 1, probability 0, space 0, times 0 [ 2900.376498] CPU: 0 PID: 16124 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 2900.377225] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2900.378124] Call Trace: [ 2900.378412] dump_stack+0x107/0x167 [ 2900.378804] should_fail.cold+0x5/0xa [ 2900.379213] ? kobject_get_path+0xc5/0x1f0 [ 2900.379664] should_failslab+0x5/0x20 [ 2900.380062] __kmalloc+0x72/0x390 [ 2900.380438] kobject_get_path+0xc5/0x1f0 [ 2900.380874] kobject_uevent_env+0x251/0xf90 [ 2900.381333] ? software_node_notify+0xf8/0x2f0 [ 2900.381831] device_del+0xa8f/0x1180 [ 2900.382236] ? uevent_show+0x370/0x370 [ 2900.382650] ? wait_for_completion_io+0x270/0x270 [ 2900.383163] device_unregister+0x11/0x30 [ 2900.383591] mac80211_hwsim_new_radio+0x414/0x4250 [ 2900.384124] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2900.384622] hwsim_new_radio_nl+0x991/0x1080 [ 2900.385092] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2900.385667] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2900.386369] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2900.387078] genl_family_rcv_msg_doit+0x22d/0x330 [ 2900.387603] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2900.388300] ? cap_capable+0x1cd/0x230 [ 2900.388733] ? ns_capable+0xe2/0x110 [ 2900.389132] genl_rcv_msg+0x33c/0x5a0 [ 2900.389543] ? genl_get_cmd+0x480/0x480 [ 2900.389978] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2900.390541] ? lock_release+0x680/0x680 [ 2900.390967] ? netlink_deliver_tap+0xf4/0xcd0 [ 2900.391460] netlink_rcv_skb+0x14b/0x430 [ 2900.391895] ? genl_get_cmd+0x480/0x480 [ 2900.392327] ? netlink_ack+0xab0/0xab0 [ 2900.392751] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2900.393236] ? is_vmalloc_addr+0x7b/0xb0 [ 2900.393687] genl_rcv+0x24/0x40 [ 2900.394039] netlink_unicast+0x549/0x7f0 [ 2900.394481] ? netlink_attachskb+0x870/0x870 [ 2900.394953] ? __virt_addr_valid+0x128/0x350 [ 2900.395428] netlink_sendmsg+0x90f/0xdf0 [ 2900.395870] ? netlink_unicast+0x7f0/0x7f0 [ 2900.396328] ? netlink_unicast+0x7f0/0x7f0 [ 2900.396775] __sock_sendmsg+0x154/0x190 [ 2900.397210] ____sys_sendmsg+0x70d/0x870 [ 2900.397648] ? sock_write_iter+0x3d0/0x3d0 [ 2900.398098] ? do_recvmmsg+0x6d0/0x6d0 [ 2900.398513] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2900.399074] ? lock_downgrade+0x6d0/0x6d0 [ 2900.399521] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2900.400085] ? SOFTIRQ_verbose+0x10/0x10 [ 2900.400523] ___sys_sendmsg+0xf3/0x170 [ 2900.400944] ? sendmsg_copy_msghdr+0x160/0x160 [ 2900.401447] ? lock_downgrade+0x6d0/0x6d0 [ 2900.401915] ? find_held_lock+0x2c/0x110 [ 2900.402359] ? __fget_files+0x296/0x4c0 [ 2900.402792] ? __fget_light+0xea/0x290 [ 2900.403212] __sys_sendmsg+0xe5/0x1b0 [ 2900.403615] ? __sys_sendmsg_sock+0x40/0x40 [ 2900.404072] ? rcu_read_lock_any_held+0x75/0xa0 [ 2900.404590] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2900.405146] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2900.405701] ? trace_hardirqs_on+0x5b/0x180 [ 2900.406174] do_syscall_64+0x33/0x40 [ 2900.406574] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2900.407124] RIP: 0033:0x7fd0ea82fb19 [ 2900.407528] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2900.409482] RSP: 002b:00007fd0e7da5188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2900.410311] RAX: ffffffffffffffda RBX: 00007fd0ea942f60 RCX: 00007fd0ea82fb19 [ 2900.411071] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2900.411840] RBP: 00007fd0e7da51d0 R08: 0000000000000000 R09: 0000000000000000 [ 2900.412621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2900.413384] R13: 00007ffedd9ef45f R14: 00007fd0e7da5300 R15: 0000000000022000 [ 2900.467068] FAULT_INJECTION: forcing a failure. [ 2900.467068] name failslab, interval 1, probability 0, space 0, times 0 [ 2900.468695] CPU: 0 PID: 16126 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 2900.469426] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2900.470329] Call Trace: [ 2900.470617] dump_stack+0x107/0x167 [ 2900.471019] should_fail.cold+0x5/0xa [ 2900.471424] ? device_create_groups_vargs+0x8a/0x280 [ 2900.471973] should_failslab+0x5/0x20 [ 2900.472378] kmem_cache_alloc_trace+0x55/0x320 [ 2900.472870] device_create_groups_vargs+0x8a/0x280 [ 2900.473400] device_create+0xdc/0x120 [ 2900.473815] ? device_create_groups_vargs+0x280/0x280 [ 2900.474368] ? init_timer_key+0x12a/0x240 [ 2900.474817] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 2900.475327] mac80211_hwsim_new_radio+0x352/0x4250 [ 2900.475853] ? ____sys_sendmsg+0x70d/0x870 [ 2900.476310] ? ___sys_sendmsg+0xf3/0x170 [ 2900.476768] ? __sys_sendmsg+0xe5/0x1b0 [ 2900.477187] ? do_syscall_64+0x33/0x40 [ 2900.477611] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2900.478188] ? lock_acquire+0x197/0x470 [ 2900.478610] ? create_object.isra.0+0x3ad/0xa20 [ 2900.479119] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2900.479629] hwsim_new_radio_nl+0x991/0x1080 [ 2900.480099] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2900.480667] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2900.481360] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2900.482072] genl_family_rcv_msg_doit+0x22d/0x330 [ 2900.482593] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2900.483306] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2900.483882] ? trace_hardirqs_on+0x5b/0x180 [ 2900.484343] ? cap_capable+0x1cd/0x230 [ 2900.484781] ? ns_capable+0xe2/0x110 [ 2900.485181] genl_rcv_msg+0x33c/0x5a0 [ 2900.485600] ? genl_get_cmd+0x480/0x480 [ 2900.486037] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2900.486604] ? lock_release+0x680/0x680 [ 2900.487029] ? netlink_deliver_tap+0xf4/0xcd0 [ 2900.487517] netlink_rcv_skb+0x14b/0x430 [ 2900.487949] ? genl_get_cmd+0x480/0x480 [ 2900.488381] ? netlink_ack+0xab0/0xab0 [ 2900.488809] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2900.489298] ? is_vmalloc_addr+0x7b/0xb0 [ 2900.489754] genl_rcv+0x24/0x40 [ 2900.490106] netlink_unicast+0x549/0x7f0 [ 2900.490547] ? netlink_attachskb+0x870/0x870 [ 2900.491022] ? __virt_addr_valid+0x128/0x350 [ 2900.491503] netlink_sendmsg+0x90f/0xdf0 [ 2900.491943] ? netlink_unicast+0x7f0/0x7f0 [ 2900.492399] ? netlink_unicast+0x7f0/0x7f0 [ 2900.492850] __sock_sendmsg+0x154/0x190 [ 2900.493284] ____sys_sendmsg+0x70d/0x870 [ 2900.493735] ? sock_write_iter+0x3d0/0x3d0 [ 2900.494193] ? do_recvmmsg+0x6d0/0x6d0 [ 2900.494609] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2900.495175] ? lock_downgrade+0x6d0/0x6d0 [ 2900.495622] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2900.496181] ? SOFTIRQ_verbose+0x10/0x10 [ 2900.496627] ___sys_sendmsg+0xf3/0x170 [ 2900.497048] ? sendmsg_copy_msghdr+0x160/0x160 [ 2900.497544] ? lock_downgrade+0x6d0/0x6d0 [ 2900.497998] ? find_held_lock+0x2c/0x110 [ 2900.498440] ? __fget_files+0x296/0x4c0 [ 2900.498873] ? __fget_light+0xea/0x290 [ 2900.499293] __sys_sendmsg+0xe5/0x1b0 [ 2900.499696] ? __sys_sendmsg_sock+0x40/0x40 [ 2900.500158] ? rcu_read_lock_any_held+0x75/0xa0 [ 2900.500667] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2900.501228] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2900.501786] ? trace_hardirqs_on+0x5b/0x180 [ 2900.502248] do_syscall_64+0x33/0x40 [ 2900.502643] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2900.503187] RIP: 0033:0x7f46fba00b19 [ 2900.503590] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2900.505539] RSP: 002b:00007f46f8f76188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2900.506407] RAX: ffffffffffffffda RBX: 00007f46fbb13f60 RCX: 00007f46fba00b19 [ 2900.507157] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2900.507911] RBP: 00007f46f8f761d0 R08: 0000000000000000 R09: 0000000000000000 [ 2900.508659] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2900.509407] R13: 00007ffe81962e7f R14: 00007f46f8f76300 R15: 0000000000022000 10:10:07 executing program 3: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 27) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:10:07 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) (fail_nth: 95) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:10:08 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0020001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:10:08 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(r0, 0xc0109428, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) fallocate(r1, 0x0, 0x0, 0x8800000) r2 = memfd_create(&(0x7f0000000140)='\xb74\xa3\xb7\x99Y\xfb\xce\x98\xc1\x83\xf5\x89juz\xd9\xb6\xca\x99\xdb\xd4\v\x1b\"\xb4\xd8\xff\xa4\f}\xaa\xddP8\x81\xec\xc8\x84wP\xc9b\xa3\x8f\xe1\xedf\xa4\xc5\nv\xbb\xa3\xb3\x0f\x12y\"\x8dJ\x06\xa4\x97\xd5\x16\x11\t\xb0w\x8d\xd48\r\x17\x9f0\xa7\xbc\xb5{\xe9\x1b\xe1\xfc\x91v\x9a\xd5P\x90\x18\x1a\x19\xa7\xb0\xa5\xdf\xa3}\xe84\xa2\xed\xe3w\x89\xe5o\xaa\xa8\xedO)\xf7S~\xa6m\b\xd7\x8e2\x9dR\'\'9\x83\x83\x9ai\a\'V`7\xa6\xcfW\x00\xdd\x04UP2\xee\x05\xc3\xa8\xde)\xbc\xe2\xec2PGta\xa2\xb9\xdc\x89t\xad\xf3F\xc2\x95\xbfC\x03\xd0>\xc9\x12t\xdcxS[\xe2\x8c9n\x80\xf7\xff\xff\xff\xff\xff\xff\xff\x00\x00\x00\x00\x00\x00\x00\x00M[N\xad\xb9\xa0Cr\a\x00\f\xc6\x11\x01re\xc7\xffn\xde\xeb\xe8G~\xf7\t\xc5\xdczK+h\x8e\x8a\xdep\x8bYaK\xf4\x1e\xff5\xf0>\xce\xe0)=\xf0\xd5\xef\x9e\x02/\xbd\x17\x10\xb7;\x8f\xba\xba\xab9\xe2\x8f\x9e\xb7\xbb\xd9m\x03\x94\xe1\xd29\xfa\x9dP\xabs\xffu\xd3\xf5\xd8[\xccU\xa4\xc3\xaav\xd0\xca\x9e\xc50\xb5q\x80\x82\x7f\x16\x96{\x00\x00\x00', 0x3) fcntl$addseals(r2, 0x409, 0xd) fallocate(r2, 0x0, 0x0, 0x8317) openat(0xffffffffffffff9c, 0x0, 0x105142, 0x0) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x5, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x101}, 0x0, 0x0, 0x400}, 0x0, 0xfeffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r4, 0x0, 0x100000001) ioctl$AUTOFS_IOC_READY(r3, 0x9360, 0x3f) 10:10:08 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0006001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:10:08 executing program 0: recvmmsg$unix(0xffffffffffffffff, &(0x7f0000001180)=[{{&(0x7f0000000100), 0x6e, &(0x7f0000000680)=[{&(0x7f0000000740)=""/97, 0x61}, {&(0x7f0000000340)=""/234, 0xea}, {&(0x7f0000000440)=""/153, 0x99}, {&(0x7f0000000500)=""/237, 0xed}, {&(0x7f0000000600)=""/114, 0x72}], 0x5, &(0x7f0000001300)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000002c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=0xffffffffffffffff, @ANYRES32, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000fff93fa248c79da7c79b9439b1c59c969d31ce7b7fb31d73ab189dd1e206f02f70c19339973bf4da4c1e8b2412c9d10a25"], 0x90}}, {{&(0x7f00000007c0)=@abs, 0x6e, &(0x7f0000000180)=[{&(0x7f0000000840)=""/187, 0xbb}, {&(0x7f0000000900)=""/195, 0xc3}, {&(0x7f0000000040)=""/62, 0x3e}], 0x3}}, {{0x0, 0x0, &(0x7f0000000240), 0x0, &(0x7f0000000a00)=[@cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xd0}}, {{&(0x7f0000000b00), 0x6e, &(0x7f0000000bc0)=[{&(0x7f0000000b80)=""/47, 0x2f}], 0x1, &(0x7f0000001400)=ANY=[@ANYBLOB="20000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="2c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="00000020000000000000000100000001000000cfd55cd39f466785de0edaa4e9d84ce57dcb8d2603010045033006fe07efcf81c4d47c9ab0ffc621823e8cfe8b2d6d74f09200fc4f807da586ad55158b01e48571c833a9666be1f4a73ebfe72cbcd647b9dfb9556256634eaa1cdfdc39f8b0388b9be8a8bea1c7173ccc8707ce46a8805607f73bb22592bdb4b78ed3a80d54d2e5c2f728c0e311a2be2acab748f879b5b40e7f71afa8af799eaa0ebbf10361cd3e3de640b4b31c50a44b885b6ef91caf9ca9341d8dc60feaa6af7b0812a633db88b0da1dc87faf2471774495523ed45be87e051b30fbc8678bd486b3943eba3ac6ef9b4e3500f0d00000000000000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES16, @ANYBLOB="18000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYBLOB="14000000000000000100000001000000", @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000021a614000000000000000100000001000000", @ANYRES32, @ANYBLOB="0000000010000000000000000100000001000000"], 0xe8}}, {{&(0x7f0000000d00), 0x6e, &(0x7f0000001000)=[{&(0x7f0000000d80)=""/82, 0x52}, {&(0x7f0000000e00)=""/104, 0x68}, {&(0x7f0000000e80)=""/45, 0x2d}, {&(0x7f0000000ec0)=""/121, 0x79}, {&(0x7f0000000f40)=""/85, 0x55}, {&(0x7f0000000fc0)=""/63, 0x3f}], 0x6, &(0x7f0000001080)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xe0}}], 0x5, 0x10003, &(0x7f00000012c0)) syz_io_uring_setup(0x24, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0}, &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000000)=0x0, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f00000001c0)=@IORING_OP_ASYNC_CANCEL={0xe, 0x5}, 0x443c) r2 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_NONCE(r2, 0x8010661b, &(0x7f0000000700)) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x5, 0x0, 0x0, 0x0, 0x23456, 0x0, 0x0, 0x1, {0x0, r3}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_FSYNC={0x3, 0x3, 0x0, @fd, 0x0, 0x0, 0x0, 0x0, 0x1, {0x0, r3}}, 0x4) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_TIMEOUT_REMOVE={0xc, 0x3, 0x0, 0x0, 0x0, 0x12345, 0x0, 0x0, 0x0, {0x0, r3}}, 0x1) io_pgetevents(0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000003600)={&(0x7f00000035c0), 0x8}) 10:10:08 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a53a, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) 10:10:08 executing program 2: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 86) r2 = creat(0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2915.512318] FAULT_INJECTION: forcing a failure. [ 2915.512318] name failslab, interval 1, probability 0, space 0, times 0 [ 2915.514032] CPU: 1 PID: 16142 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 2915.515029] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2915.516220] Call Trace: [ 2915.516598] dump_stack+0x107/0x167 [ 2915.517120] should_fail.cold+0x5/0xa [ 2915.517669] ? create_object.isra.0+0x3a/0xa20 [ 2915.518333] should_failslab+0x5/0x20 [ 2915.518868] kmem_cache_alloc+0x5b/0x310 [ 2915.519444] create_object.isra.0+0x3a/0xa20 [ 2915.520061] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2915.520783] kmem_cache_alloc_trace+0x151/0x320 [ 2915.521456] ? dev_uevent_filter+0xd0/0xd0 [ 2915.522072] kobject_uevent_env+0x22b/0xf90 [ 2915.522689] ? software_node_notify+0xf8/0x2f0 [ 2915.523337] device_del+0xa8f/0x1180 [ 2915.523872] ? uevent_show+0x370/0x370 [ 2915.524422] ? wait_for_completion_io+0x270/0x270 [ 2915.525109] device_unregister+0x11/0x30 [ 2915.525683] mac80211_hwsim_new_radio+0x414/0x4250 [ 2915.526380] ? ____sys_sendmsg+0x70d/0x870 [ 2915.526974] ? ___sys_sendmsg+0xf3/0x170 [ 2915.527543] ? __sys_sendmsg+0xe5/0x1b0 [ 2915.528105] ? do_syscall_64+0x33/0x40 [ 2915.528666] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2915.529436] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2915.530106] hwsim_new_radio_nl+0x991/0x1080 [ 2915.530725] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2915.531458] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2915.532373] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2915.533288] genl_family_rcv_msg_doit+0x22d/0x330 [ 2915.533998] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2915.534918] ? cap_capable+0x1cd/0x230 [ 2915.535478] ? ns_capable+0xe2/0x110 [ 2915.536004] genl_rcv_msg+0x33c/0x5a0 [ 2915.536542] ? genl_get_cmd+0x480/0x480 [ 2915.537098] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2915.537849] ? lock_release+0x680/0x680 [ 2915.538405] ? netlink_deliver_tap+0xf4/0xcd0 [ 2915.539038] netlink_rcv_skb+0x14b/0x430 [ 2915.539634] ? genl_get_cmd+0x480/0x480 [ 2915.540191] ? netlink_ack+0xab0/0xab0 [ 2915.540746] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2915.541385] ? is_vmalloc_addr+0x7b/0xb0 [ 2915.541964] genl_rcv+0x24/0x40 [ 2915.542423] netlink_unicast+0x549/0x7f0 [ 2915.543002] ? netlink_attachskb+0x870/0x870 [ 2915.543613] ? __virt_addr_valid+0x128/0x350 [ 2915.544235] netlink_sendmsg+0x90f/0xdf0 [ 2915.544810] ? netlink_unicast+0x7f0/0x7f0 [ 2915.545410] ? netlink_unicast+0x7f0/0x7f0 [ 2915.546016] __sock_sendmsg+0x154/0x190 [ 2915.546571] ____sys_sendmsg+0x70d/0x870 [ 2915.547140] ? sock_write_iter+0x3d0/0x3d0 [ 2915.547730] ? do_recvmmsg+0x6d0/0x6d0 [ 2915.548275] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2915.549009] ? lock_downgrade+0x6d0/0x6d0 [ 2915.549589] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2915.550325] ? SOFTIRQ_verbose+0x10/0x10 [ 2915.550893] ___sys_sendmsg+0xf3/0x170 [ 2915.551442] ? sendmsg_copy_msghdr+0x160/0x160 [ 2915.552094] ? lock_downgrade+0x6d0/0x6d0 [ 2915.552697] ? find_held_lock+0x2c/0x110 [ 2915.553273] ? __fget_files+0x296/0x4c0 [ 2915.553843] ? __fget_light+0xea/0x290 [ 2915.554394] __sys_sendmsg+0xe5/0x1b0 [ 2915.554923] ? __sys_sendmsg_sock+0x40/0x40 [ 2915.555521] ? rcu_read_lock_any_held+0x75/0xa0 [ 2915.556181] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2915.556933] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2915.557671] ? trace_hardirqs_on+0x5b/0x180 [ 2915.558313] do_syscall_64+0x33/0x40 [ 2915.558836] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2915.559574] RIP: 0033:0x7fd0ea82fb19 [ 2915.560114] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2915.562749] RSP: 002b:00007fd0e7da5188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2915.563839] RAX: ffffffffffffffda RBX: 00007fd0ea942f60 RCX: 00007fd0ea82fb19 [ 2915.564861] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2915.565892] RBP: 00007fd0e7da51d0 R08: 0000000000000000 R09: 0000000000000000 [ 2915.566925] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2915.567934] R13: 00007ffedd9ef45f R14: 00007fd0e7da5300 R15: 0000000000022000 10:10:08 executing program 0: ioctl$BTRFS_IOC_SCRUB_CANCEL(0xffffffffffffffff, 0x941c, 0x0) ioctl$RTC_UIE_ON(0xffffffffffffffff, 0x7003) r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f00000000c0), 0x101003, 0x0) pread64(r0, &(0x7f0000000280)=""/178, 0xb2, 0x9028) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x2, 0x0, 0x0, 0xfffffffc, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f00000001c0)="201900d07642da921fd6ff11430c6c6b8c0ac5060048065e24ecf3bb8ce311427ac446646b66cda5c391a00fbccd665cde721d7307fdcb6b969016edfcfc7632c1f3819bab23a38c40d2318820e65ef0262cc5dd8b5bc96f21bc84022b67785d6741984f29f705f842bd5a0870925cdb5d80eb689f80ea6ff07d3876a48c6519dad01907103c1df3928cb15b27437eb6e994a4bed70de633978e40", 0x9b, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000180)=ANY=[]) pkey_mprotect(&(0x7f0000ff4000/0x3000)=nil, 0x3000, 0x0, 0xffffffffffffffff) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000003c0), 0xa000) write$sndseq(r2, &(0x7f0000000640)=[{0x8, 0xed, 0x8, 0x20, @tick=0x7, {0x7}, {0x6a, 0x2}, @result={0x5, 0x1}}, {0x66, 0x7, 0x7f, 0x6, @tick=0x9, {0x3f, 0x1}, {0x1, 0x2}, @quote={{0x4, 0x9}, 0x81, &(0x7f0000000340)={0xd8, 0xf5, 0x8, 0xb5, @tick=0x3, {0xc4, 0x6}, {0x7, 0x6}, @addr={0x2, 0xff}}}}, {0x48, 0x7, 0x20, 0xd9, @time={0x1ff, 0x8}, {0x3, 0x80}, {0x4, 0x1}, @time=@tick=0x80000000}, {0x6, 0x3, 0x7, 0x1, @time={0x0, 0x7}, {0x81, 0xf7}, {0x1, 0x5}, @connect={{0x4, 0x7}, {0x80, 0x15}}}, {0x9, 0x5, 0x20, 0x3, @tick=0x8a70, {0x3, 0x9}, {0xa9, 0x79}, @control={0x4, 0x20, 0x4}}, {0x5, 0x83, 0x6, 0x3, @time={0x401}, {0x1f}, {0x0, 0x4}, @quote={{0x7f, 0x6}, 0x8, &(0x7f0000000380)={0x9, 0x4, 0x4, 0x5, @time={0x1d5, 0x10001}, {0x3, 0x4}, {0x6, 0x20}, @ext={0xc5, &(0x7f00000004c0)="6d96c9afba7d6f93df74674038a444c2434732d52810bed89cb7476aeeca153b517156f599a1d02f0fecf93829f7e1d6f18e2c0bf0aade5534a2299dce81c6c90158bc640ae071c03619a3fdda31e3e116b53ba0b75c82f865c56682ef2f56b7a98014879ab5117b3aa71898d56f4ad3de1f4555d467033b2cd63401b9b69c47c593c8d2c31a0b72144ec7402845526e97d0dfbae89a167b57eb6201862e24e8b0d68f551416c304c5cb9e3bc19f5b3c01c755a8783a77e466836ac84d27438df95f67876f"}}}}, {0x81, 0x4e, 0x80, 0x1, @time={0x7, 0x8}, {0xa6, 0x3f}, {0x3, 0x3}, @quote={{0xff, 0x8}, 0x2, &(0x7f0000000600)={0xff, 0x3, 0xff, 0x1f, @time={0x3830, 0x4}, {0xb2, 0x1}, {0x6, 0x80}, @quote={{0x9, 0x20}, 0x3, &(0x7f00000005c0)={0xa4, 0xff, 0x40, 0x9, @tick=0x831, {0x1, 0x20}, {0x6, 0x7}, @result={0xc2, 0x8}}}}}}], 0xc4) r3 = pkey_alloc(0x0, 0x3) pkey_mprotect(&(0x7f0000fed000/0x13000)=nil, 0x13000, 0x0, r3) pkey_mprotect(&(0x7f0000ff4000/0x2000)=nil, 0x2000, 0x0, r3) write$binfmt_elf64(r1, &(0x7f00000001c0)=ANY=[], 0xfdef) r4 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000400), 0x4001, 0x0) ioctl$PTP_CLOCK_GETCAPS(r4, 0x80503d01, &(0x7f0000000140)) [ 2915.586386] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 2915.587737] System zones: 0-7 [ 2915.592379] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue 10:10:08 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a53b, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) [ 2915.657537] FAULT_INJECTION: forcing a failure. [ 2915.657537] name failslab, interval 1, probability 0, space 0, times 0 [ 2915.660569] CPU: 0 PID: 16149 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 2915.662024] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2915.663733] Call Trace: [ 2915.664283] dump_stack+0x107/0x167 [ 2915.665046] should_fail.cold+0x5/0xa 10:10:08 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1cd928001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2915.665844] ? __alloc_skb+0x6d/0x5b0 [ 2915.666789] should_failslab+0x5/0x20 [ 2915.667593] kmem_cache_alloc_node+0x55/0x330 [ 2915.668553] __alloc_skb+0x6d/0x5b0 [ 2915.669327] alloc_uevent_skb+0x7b/0x210 [ 2915.670209] kobject_uevent_env+0x99a/0xf90 [ 2915.671126] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2915.672223] ? trace_hardirqs_on+0x5b/0x180 [ 2915.673138] __device_release_driver+0x5cd/0x770 [ 2915.674145] device_release_driver+0x26/0x40 [ 2915.675069] mac80211_hwsim_new_radio+0x29a2/0x4250 [ 2915.676137] ? ____sys_sendmsg+0x70d/0x870 [ 2915.677028] ? ___sys_sendmsg+0xf3/0x170 [ 2915.677912] ? __sys_sendmsg+0xe5/0x1b0 [ 2915.678736] ? do_syscall_64+0x33/0x40 [ 2915.679591] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2915.680729] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2915.681749] hwsim_new_radio_nl+0x991/0x1080 [ 2915.682730] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2915.683844] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2915.685245] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2915.686645] genl_family_rcv_msg_doit+0x22d/0x330 [ 2915.687678] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2915.689082] ? cap_capable+0x1cd/0x230 [ 2915.689955] ? ns_capable+0xe2/0x110 [ 2915.690755] genl_rcv_msg+0x33c/0x5a0 [ 2915.691572] ? genl_get_cmd+0x480/0x480 [ 2915.692421] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2915.693535] ? lock_release+0x680/0x680 [ 2915.694406] ? netlink_deliver_tap+0xf4/0xcd0 [ 2915.695378] netlink_rcv_skb+0x14b/0x430 [ 2915.696253] ? genl_get_cmd+0x480/0x480 [ 2915.697116] ? netlink_ack+0xab0/0xab0 [ 2915.697989] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2915.698972] ? is_vmalloc_addr+0x7b/0xb0 [ 2915.699862] genl_rcv+0x24/0x40 [ 2915.700573] netlink_unicast+0x549/0x7f0 [ 2915.701471] ? netlink_attachskb+0x870/0x870 [ 2915.702454] netlink_sendmsg+0x90f/0xdf0 [ 2915.703346] ? netlink_unicast+0x7f0/0x7f0 [ 2915.704299] ? netlink_unicast+0x7f0/0x7f0 [ 2915.705195] __sock_sendmsg+0x154/0x190 [ 2915.706086] ____sys_sendmsg+0x70d/0x870 [ 2915.706977] ? sock_write_iter+0x3d0/0x3d0 [ 2915.707900] ? do_recvmmsg+0x6d0/0x6d0 [ 2915.708733] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2915.709919] ? lock_downgrade+0x6d0/0x6d0 [ 2915.710835] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2915.712010] ? SOFTIRQ_verbose+0x10/0x10 [ 2915.712856] ___sys_sendmsg+0xf3/0x170 [ 2915.713756] ? sendmsg_copy_msghdr+0x160/0x160 [ 2915.714778] ? lock_downgrade+0x6d0/0x6d0 [ 2915.715704] ? find_held_lock+0x2c/0x110 [ 2915.716622] ? __fget_files+0x296/0x4c0 [ 2915.717534] ? __fget_light+0xea/0x290 [ 2915.718426] __sys_sendmsg+0xe5/0x1b0 [ 2915.719281] ? __sys_sendmsg_sock+0x40/0x40 [ 2915.720249] ? rcu_read_lock_any_held+0x75/0xa0 [ 2915.721301] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2915.722466] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2915.723632] ? trace_hardirqs_on+0x5b/0x180 [ 2915.724604] do_syscall_64+0x33/0x40 [ 2915.725446] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2915.726588] RIP: 0033:0x7fa741f89b19 [ 2915.727431] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2915.731521] RSP: 002b:00007fa73f4ff188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2915.733254] RAX: ffffffffffffffda RBX: 00007fa74209cf60 RCX: 00007fa741f89b19 [ 2915.734848] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2915.736469] RBP: 00007fa73f4ff1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2915.738097] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2915.739745] R13: 00007ffd248a3bcf R14: 00007fa73f4ff300 R15: 0000000000022000 10:10:08 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0007001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2915.771662] FAULT_INJECTION: forcing a failure. [ 2915.771662] name failslab, interval 1, probability 0, space 0, times 0 [ 2915.774339] CPU: 0 PID: 16144 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 2915.775745] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2915.777473] Call Trace: [ 2915.778021] dump_stack+0x107/0x167 [ 2915.778786] should_fail.cold+0x5/0xa [ 2915.779586] ? create_object.isra.0+0x3a/0xa20 [ 2915.780557] should_failslab+0x5/0x20 [ 2915.781375] kmem_cache_alloc+0x5b/0x310 [ 2915.782224] create_object.isra.0+0x3a/0xa20 [ 2915.783131] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2915.784211] kmem_cache_alloc_trace+0x151/0x320 [ 2915.785205] device_create_groups_vargs+0x8a/0x280 [ 2915.786269] device_create+0xdc/0x120 [ 2915.787070] ? device_create_groups_vargs+0x280/0x280 [ 2915.788178] ? init_timer_key+0x12a/0x240 [ 2915.789049] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 2915.790098] mac80211_hwsim_new_radio+0x352/0x4250 [ 2915.791122] ? ____sys_sendmsg+0x70d/0x870 [ 2915.792003] ? ___sys_sendmsg+0xf3/0x170 [ 2915.792853] ? __sys_sendmsg+0xe5/0x1b0 [ 2915.793704] ? do_syscall_64+0x33/0x40 [ 2915.794555] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2915.795681] ? lock_acquire+0x197/0x470 [ 2915.796555] ? create_object.isra.0+0x3ad/0xa20 [ 2915.797570] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2915.798597] hwsim_new_radio_nl+0x991/0x1080 [ 2915.799534] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2915.800665] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2915.802077] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2915.803485] genl_family_rcv_msg_doit+0x22d/0x330 [ 2915.804530] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2915.805949] ? cap_capable+0x1cd/0x230 [ 2915.806813] ? ns_capable+0xe2/0x110 [ 2915.807615] genl_rcv_msg+0x33c/0x5a0 [ 2915.808453] ? genl_get_cmd+0x480/0x480 [ 2915.809317] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2915.810471] ? lock_release+0x680/0x680 [ 2915.811320] ? netlink_deliver_tap+0xf4/0xcd0 [ 2915.812292] netlink_rcv_skb+0x14b/0x430 [ 2915.813187] ? genl_get_cmd+0x480/0x480 [ 2915.814028] ? netlink_ack+0xab0/0xab0 [ 2915.814892] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2915.815899] ? is_vmalloc_addr+0x7b/0xb0 [ 2915.816755] genl_rcv+0x24/0x40 [ 2915.817450] netlink_unicast+0x549/0x7f0 [ 2915.818358] ? netlink_attachskb+0x870/0x870 [ 2915.819317] ? __virt_addr_valid+0x128/0x350 [ 2915.820284] netlink_sendmsg+0x90f/0xdf0 [ 2915.821126] ? netlink_unicast+0x7f0/0x7f0 [ 2915.822086] ? netlink_unicast+0x7f0/0x7f0 [ 2915.823021] __sock_sendmsg+0x154/0x190 [ 2915.823908] ____sys_sendmsg+0x70d/0x870 [ 2915.824772] ? sock_write_iter+0x3d0/0x3d0 [ 2915.825679] ? do_recvmmsg+0x6d0/0x6d0 [ 2915.826566] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2915.827737] ? lock_downgrade+0x6d0/0x6d0 [ 2915.828666] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2915.829793] ? SOFTIRQ_verbose+0x10/0x10 [ 2915.830674] ___sys_sendmsg+0xf3/0x170 [ 2915.831561] ? sendmsg_copy_msghdr+0x160/0x160 [ 2915.832608] ? lock_downgrade+0x6d0/0x6d0 [ 2915.833529] ? find_held_lock+0x2c/0x110 [ 2915.834412] ? __fget_files+0x296/0x4c0 [ 2915.835342] ? __fget_light+0xea/0x290 [ 2915.836230] __sys_sendmsg+0xe5/0x1b0 [ 2915.837001] ? __sys_sendmsg_sock+0x40/0x40 [ 2915.837957] ? rcu_read_lock_any_held+0x75/0xa0 [ 2915.839010] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2915.840168] ? syscall_enter_from_user_mode+0x1d/0x50 10:10:08 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) (fail_nth: 96) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2915.841215] ? trace_hardirqs_on+0x5b/0x180 [ 2915.842346] do_syscall_64+0x33/0x40 [ 2915.843174] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2915.844315] RIP: 0033:0x7f46fba00b19 [ 2915.845142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2915.849163] RSP: 002b:00007f46f8f76188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2915.850898] RAX: ffffffffffffffda RBX: 00007f46fbb13f60 RCX: 00007f46fba00b19 [ 2915.852526] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2915.854169] RBP: 00007f46f8f761d0 R08: 0000000000000000 R09: 0000000000000000 [ 2915.855807] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2915.857325] R13: 00007ffe81962e7f R14: 00007f46f8f76300 R15: 0000000000022000 10:10:08 executing program 0: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x4000, 0x0, 0x0, 0x0) pkey_alloc(0x0, 0x0) mlock2(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0) madvise(&(0x7f0000ff8000/0x4000)=nil, 0x4000, 0x8) r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00000001c0)={0xa, 0x4e20, 0x9, @mcast1, 0x10000}, 0x1c) setsockopt$sock_int(r1, 0x1, 0x12, &(0x7f0000000200)=0x33e0, 0x4) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000) munmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000) mbind(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1, &(0x7f0000000180)=0x2, 0x0, 0x6) setsockopt$inet6_tcp_int(r1, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) mbind(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x3c196920d8b85fc5, &(0x7f0000000140), 0x5, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendfile(r1, r0, 0x0, 0x9bbb) mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x8000, &(0x7f0000000100)=0x100, 0x9, 0x0) [ 2915.931128] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 2915.934134] System zones: 0-7 [ 2915.937520] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue 10:10:08 executing program 3: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 28) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:10:08 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1cd929001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:10:08 executing program 2: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 87) r2 = creat(0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2916.137495] FAULT_INJECTION: forcing a failure. [ 2916.137495] name failslab, interval 1, probability 0, space 0, times 0 [ 2916.140290] CPU: 0 PID: 16187 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 2916.141711] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2916.143397] Call Trace: [ 2916.143933] dump_stack+0x107/0x167 [ 2916.144678] should_fail.cold+0x5/0xa [ 2916.145446] ? __alloc_skb+0x6d/0x5b0 [ 2916.146241] ? __alloc_skb+0x6d/0x5b0 [ 2916.147020] should_failslab+0x5/0x20 [ 2916.147793] kmem_cache_alloc_node+0x55/0x330 [ 2916.148709] __alloc_skb+0x6d/0x5b0 [ 2916.149460] alloc_uevent_skb+0x7b/0x210 [ 2916.150316] kobject_uevent_env+0x99a/0xf90 [ 2916.151202] ? software_node_notify+0xf8/0x2f0 [ 2916.152157] device_del+0xa8f/0x1180 [ 2916.152928] ? uevent_show+0x370/0x370 [ 2916.153737] ? wait_for_completion_io+0x270/0x270 [ 2916.154745] device_unregister+0x11/0x30 [ 2916.155565] mac80211_hwsim_new_radio+0x414/0x4250 [ 2916.156555] ? ____sys_sendmsg+0x70d/0x870 [ 2916.157408] ? ___sys_sendmsg+0xf3/0x170 [ 2916.158234] ? __sys_sendmsg+0xe5/0x1b0 [ 2916.159042] ? do_syscall_64+0x33/0x40 [ 2916.159833] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2916.160929] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2916.161906] hwsim_new_radio_nl+0x991/0x1080 [ 2916.162803] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2916.163870] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2916.165199] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2916.166533] genl_family_rcv_msg_doit+0x22d/0x330 [ 2916.167509] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2916.168831] ? cap_capable+0x1cd/0x230 [ 2916.169635] ? ns_capable+0xe2/0x110 [ 2916.170411] genl_rcv_msg+0x33c/0x5a0 [ 2916.171199] ? genl_get_cmd+0x480/0x480 [ 2916.171997] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2916.173042] ? lock_release+0x680/0x680 [ 2916.173860] ? netlink_deliver_tap+0xf4/0xcd0 [ 2916.174778] netlink_rcv_skb+0x14b/0x430 [ 2916.175608] ? genl_get_cmd+0x480/0x480 [ 2916.176414] ? netlink_ack+0xab0/0xab0 [ 2916.177216] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2916.178144] ? is_vmalloc_addr+0x7b/0xb0 [ 2916.178967] genl_rcv+0x24/0x40 [ 2916.179635] netlink_unicast+0x549/0x7f0 [ 2916.180468] ? netlink_attachskb+0x870/0x870 [ 2916.181381] ? __virt_addr_valid+0x128/0x350 [ 2916.182290] netlink_sendmsg+0x90f/0xdf0 [ 2916.183119] ? netlink_unicast+0x7f0/0x7f0 [ 2916.183992] ? netlink_unicast+0x7f0/0x7f0 [ 2916.184862] __sock_sendmsg+0x154/0x190 [ 2916.185667] ____sys_sendmsg+0x70d/0x870 [ 2916.186517] ? sock_write_iter+0x3d0/0x3d0 [ 2916.187377] ? do_recvmmsg+0x6d0/0x6d0 [ 2916.188167] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2916.189228] ? lock_downgrade+0x6d0/0x6d0 [ 2916.190097] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2916.191156] ? SOFTIRQ_verbose+0x10/0x10 [ 2916.191993] ___sys_sendmsg+0xf3/0x170 [ 2916.192785] ? sendmsg_copy_msghdr+0x160/0x160 [ 2916.193722] ? lock_downgrade+0x6d0/0x6d0 [ 2916.194580] ? find_held_lock+0x2c/0x110 [ 2916.195420] ? __fget_files+0x296/0x4c0 [ 2916.196246] ? __fget_light+0xea/0x290 [ 2916.197043] __sys_sendmsg+0xe5/0x1b0 [ 2916.197815] ? __sys_sendmsg_sock+0x40/0x40 [ 2916.198711] ? rcu_read_lock_any_held+0x75/0xa0 [ 2916.199676] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2916.200751] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2916.201809] ? trace_hardirqs_on+0x5b/0x180 [ 2916.202710] do_syscall_64+0x33/0x40 [ 2916.203466] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2916.204518] RIP: 0033:0x7fd0ea82fb19 [ 2916.205275] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2916.208971] RSP: 002b:00007fd0e7da5188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2916.210513] RAX: ffffffffffffffda RBX: 00007fd0ea942f60 RCX: 00007fd0ea82fb19 [ 2916.211951] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2916.213390] RBP: 00007fd0e7da51d0 R08: 0000000000000000 R09: 0000000000000000 [ 2916.214836] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2916.216275] R13: 00007ffedd9ef45f R14: 00007fd0e7da5300 R15: 0000000000022000 [ 2916.243438] FAULT_INJECTION: forcing a failure. [ 2916.243438] name failslab, interval 1, probability 0, space 0, times 0 [ 2916.246531] CPU: 1 PID: 16192 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 2916.247938] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2916.249623] Call Trace: [ 2916.250178] dump_stack+0x107/0x167 [ 2916.250929] should_fail.cold+0x5/0xa [ 2916.251719] should_failslab+0x5/0x20 [ 2916.252503] __kmalloc_track_caller+0x79/0x370 [ 2916.253429] ? kvasprintf_const+0x60/0x1a0 [ 2916.254321] kvasprintf+0xb5/0x150 [ 2916.255060] ? bust_spinlocks+0xe0/0xe0 [ 2916.255889] ? lockdep_init_map_type+0x2c7/0x780 [ 2916.256877] kvasprintf_const+0x60/0x1a0 [ 2916.257713] kobject_set_name_vargs+0x56/0x150 [ 2916.258673] device_create_groups_vargs+0x1c0/0x280 [ 2916.259702] device_create+0xdc/0x120 [ 2916.260496] ? device_create_groups_vargs+0x280/0x280 [ 2916.261556] ? init_timer_key+0x12a/0x240 [ 2916.262433] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 2916.263433] mac80211_hwsim_new_radio+0x352/0x4250 [ 2916.264432] ? ____sys_sendmsg+0x70d/0x870 [ 2916.265306] ? ___sys_sendmsg+0xf3/0x170 [ 2916.266155] ? __sys_sendmsg+0xe5/0x1b0 [ 2916.266972] ? do_syscall_64+0x33/0x40 [ 2916.267766] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2916.268852] ? lock_acquire+0x197/0x470 [ 2916.269668] ? create_object.isra.0+0x3ad/0xa20 [ 2916.270639] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2916.271619] hwsim_new_radio_nl+0x991/0x1080 [ 2916.272519] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2916.273601] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2916.274972] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2916.276328] genl_family_rcv_msg_doit+0x22d/0x330 [ 2916.277322] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2916.278690] ? cap_capable+0x1cd/0x230 [ 2916.279506] ? ns_capable+0xe2/0x110 [ 2916.280285] genl_rcv_msg+0x33c/0x5a0 [ 2916.281081] ? genl_get_cmd+0x480/0x480 [ 2916.281899] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2916.282973] ? lock_release+0x680/0x680 [ 2916.283803] ? netlink_deliver_tap+0xf4/0xcd0 [ 2916.284743] netlink_rcv_skb+0x14b/0x430 [ 2916.285566] ? genl_get_cmd+0x480/0x480 [ 2916.286410] ? netlink_ack+0xab0/0xab0 [ 2916.287220] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2916.288165] ? is_vmalloc_addr+0x7b/0xb0 [ 2916.289016] genl_rcv+0x24/0x40 [ 2916.289696] netlink_unicast+0x549/0x7f0 [ 2916.290552] ? netlink_attachskb+0x870/0x870 [ 2916.291465] ? __sanitizer_cov_trace_pc+0xd/0x60 [ 2916.292465] netlink_sendmsg+0x90f/0xdf0 [ 2916.293312] ? netlink_unicast+0x7f0/0x7f0 [ 2916.294207] ? netlink_unicast+0x7f0/0x7f0 [ 2916.295085] __sock_sendmsg+0x154/0x190 [ 2916.295910] ____sys_sendmsg+0x70d/0x870 [ 2916.296756] ? sock_write_iter+0x3d0/0x3d0 [ 2916.297623] ? do_recvmmsg+0x6d0/0x6d0 [ 2916.298445] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2916.299533] ? lock_downgrade+0x6d0/0x6d0 [ 2916.300397] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2916.301475] ? SOFTIRQ_verbose+0x10/0x10 [ 2916.302329] ___sys_sendmsg+0xf3/0x170 [ 2916.303141] ? sendmsg_copy_msghdr+0x160/0x160 [ 2916.304100] ? lock_downgrade+0x6d0/0x6d0 [ 2916.304967] ? find_held_lock+0x2c/0x110 [ 2916.305835] ? __fget_files+0x296/0x4c0 [ 2916.306664] ? __fget_light+0xea/0x290 [ 2916.307468] __sys_sendmsg+0xe5/0x1b0 [ 2916.308245] ? __sys_sendmsg_sock+0x40/0x40 [ 2916.309119] ? rcu_read_lock_any_held+0x75/0xa0 [ 2916.310109] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2916.311187] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2916.312232] ? trace_hardirqs_on+0x5b/0x180 [ 2916.313120] do_syscall_64+0x33/0x40 [ 2916.313914] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2916.314968] RIP: 0033:0x7f46fba00b19 [ 2916.315742] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2916.319517] RSP: 002b:00007f46f8f55188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2916.321089] RAX: ffffffffffffffda RBX: 00007f46fbb14020 RCX: 00007f46fba00b19 [ 2916.322571] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2916.324050] RBP: 00007f46f8f551d0 R08: 0000000000000000 R09: 0000000000000000 [ 2916.325520] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2916.327007] R13: 00007ffe81962e7f R14: 00007f46f8f55300 R15: 0000000000022000 [ 2916.423477] FAULT_INJECTION: forcing a failure. [ 2916.423477] name failslab, interval 1, probability 0, space 0, times 0 [ 2916.428177] CPU: 1 PID: 16196 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 2916.429605] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2916.431313] Call Trace: [ 2916.431852] dump_stack+0x107/0x167 [ 2916.432612] should_fail.cold+0x5/0xa [ 2916.433388] ? create_object.isra.0+0x3a/0xa20 [ 2916.434366] should_failslab+0x5/0x20 [ 2916.435155] kmem_cache_alloc+0x5b/0x310 [ 2916.436002] ? kmem_cache_alloc_trace+0x151/0x320 [ 2916.437009] create_object.isra.0+0x3a/0xa20 [ 2916.437928] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2916.438987] __kmalloc+0x16e/0x390 [ 2916.439738] kobject_get_path+0xc5/0x1f0 [ 2916.440584] kobject_uevent_env+0x251/0xf90 [ 2916.441485] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2916.442613] ? _raw_spin_unlock_irqrestore+0x38/0x40 [ 2916.443699] ? trace_hardirqs_on+0x5b/0x180 [ 2916.444633] __device_release_driver+0x5cd/0x770 [ 2916.445639] device_release_driver+0x26/0x40 [ 2916.446550] mac80211_hwsim_new_radio+0x29a2/0x4250 [ 2916.447587] ? __nla_validate_parse+0xb58/0x2b10 [ 2916.448573] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2916.449547] hwsim_new_radio_nl+0x991/0x1080 [ 2916.450470] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2916.451547] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2916.452889] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2916.454242] genl_family_rcv_msg_doit+0x22d/0x330 [ 2916.455236] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2916.456595] ? cap_capable+0x1cd/0x230 [ 2916.457408] ? ns_capable+0xe2/0x110 [ 2916.458191] genl_rcv_msg+0x33c/0x5a0 [ 2916.458970] ? genl_get_cmd+0x480/0x480 [ 2916.459795] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2916.460847] ? lock_release+0x680/0x680 [ 2916.461666] ? netlink_deliver_tap+0xf4/0xcd0 [ 2916.462600] netlink_rcv_skb+0x14b/0x430 [ 2916.463435] ? genl_get_cmd+0x480/0x480 [ 2916.464248] ? netlink_ack+0xab0/0xab0 [ 2916.465062] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2916.465998] ? is_vmalloc_addr+0x7b/0xb0 [ 2916.466831] genl_rcv+0x24/0x40 [ 2916.467500] netlink_unicast+0x549/0x7f0 [ 2916.468341] ? netlink_attachskb+0x870/0x870 [ 2916.469209] ? __virt_addr_valid+0x128/0x350 [ 2916.470143] netlink_sendmsg+0x90f/0xdf0 [ 2916.470977] ? netlink_unicast+0x7f0/0x7f0 [ 2916.471869] ? netlink_unicast+0x7f0/0x7f0 [ 2916.472727] __sock_sendmsg+0x154/0x190 [ 2916.473566] ____sys_sendmsg+0x70d/0x870 [ 2916.474411] ? sock_write_iter+0x3d0/0x3d0 [ 2916.475258] ? do_recvmmsg+0x6d0/0x6d0 [ 2916.476054] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2916.477119] ? lock_downgrade+0x6d0/0x6d0 [ 2916.477990] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2916.479050] ? SOFTIRQ_verbose+0x10/0x10 [ 2916.479882] ___sys_sendmsg+0xf3/0x170 [ 2916.480678] ? sendmsg_copy_msghdr+0x160/0x160 [ 2916.481612] ? lock_downgrade+0x6d0/0x6d0 [ 2916.482466] ? find_held_lock+0x2c/0x110 [ 2916.483309] ? __fget_files+0x296/0x4c0 [ 2916.484134] ? __fget_light+0xea/0x290 [ 2916.484933] __sys_sendmsg+0xe5/0x1b0 [ 2916.485703] ? __sys_sendmsg_sock+0x40/0x40 [ 2916.486600] ? rcu_read_lock_any_held+0x75/0xa0 [ 2916.487566] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2916.488630] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2916.489665] ? trace_hardirqs_on+0x5b/0x180 [ 2916.490562] do_syscall_64+0x33/0x40 [ 2916.491322] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2916.492360] RIP: 0033:0x7fa741f89b19 [ 2916.493121] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2916.496866] RSP: 002b:00007fa73f4ff188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2916.498421] RAX: ffffffffffffffda RBX: 00007fa74209cf60 RCX: 00007fa741f89b19 [ 2916.499869] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2916.501312] RBP: 00007fa73f4ff1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2916.502766] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2916.504206] R13: 00007ffd248a3bcf R14: 00007fa73f4ff300 R15: 0000000000022000 10:10:22 executing program 2: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 88) r2 = creat(0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:10:22 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a53c, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) 10:10:22 executing program 3: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 29) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:10:22 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1cd92a001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:10:22 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0009001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:10:22 executing program 1: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470000000f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x25028, &(0x7f00000000c0)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) pwrite64(r0, &(0x7f00000000c0)="04", 0x1, 0x3ff03) accept$unix(r0, &(0x7f0000000180)=@abs, &(0x7f0000000240)=0x6e) r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) r3 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x0, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r5 = syz_io_uring_setup(0x2a7b, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)) r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, r4, &(0x7f0000000300)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x3, 0x6003, @fd_index=0xa, 0x2, 0x0, 0x0, 0x2, 0x0, {0x1, r6}}, 0x7bfc42b9) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendfile(r1, r3, 0x0, 0x80000001) 10:10:22 executing program 0: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = creat(&(0x7f0000000000)='./file2\x00', 0x0) fcntl$setlease(r1, 0x400, 0x1) fcntl$setown(r1, 0x8, 0xffffffffffffffff) fcntl$setsig(r1, 0xa, 0x2e) close(r1) connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e21, 0x658a, @private1={0xfc, 0x1, '\x00', 0x1}, 0x4}, 0x1c) sendmmsg$inet6(r0, &(0x7f00000068c0)=[{{&(0x7f0000000180)={0xa, 0x4e23, 0x0, @dev}, 0x1c, 0x0, 0x0, &(0x7f0000000480)=ANY=[@ANYRESOCT], 0x18}}], 0x1, 0x0) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) sendmsg$inet6(r2, &(0x7f0000000440)={&(0x7f0000000000)={0xa, 0x4e23, 0x0, @mcast1, 0xff}, 0x1c, &(0x7f0000000400)}, 0x40004) 10:10:22 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) (fail_nth: 97) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2929.649280] FAULT_INJECTION: forcing a failure. [ 2929.649280] name failslab, interval 1, probability 0, space 0, times 0 [ 2929.651307] CPU: 1 PID: 16212 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 2929.652293] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2929.653522] Call Trace: [ 2929.653922] dump_stack+0x107/0x167 [ 2929.654484] should_fail.cold+0x5/0xa [ 2929.655060] ? create_object.isra.0+0x3a/0xa20 [ 2929.655752] should_failslab+0x5/0x20 [ 2929.656325] kmem_cache_alloc+0x5b/0x310 [ 2929.656925] ? kmem_cache_alloc_trace+0x151/0x320 [ 2929.657629] create_object.isra.0+0x3a/0xa20 [ 2929.658304] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2929.659042] __kmalloc+0x16e/0x390 [ 2929.659562] kobject_get_path+0xc5/0x1f0 [ 2929.660169] kobject_uevent_env+0x251/0xf90 [ 2929.660809] ? software_node_notify+0xf8/0x2f0 [ 2929.661477] device_del+0xa8f/0x1180 [ 2929.662020] ? uevent_show+0x370/0x370 [ 2929.662585] ? wait_for_completion_io+0x270/0x270 [ 2929.663290] device_unregister+0x11/0x30 [ 2929.663879] mac80211_hwsim_new_radio+0x414/0x4250 [ 2929.664585] ? ____sys_sendmsg+0x70d/0x870 [ 2929.665185] ? ___sys_sendmsg+0xf3/0x170 [ 2929.665761] ? __sys_sendmsg+0xe5/0x1b0 [ 2929.666343] ? do_syscall_64+0x33/0x40 [ 2929.666899] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2929.667681] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2929.668366] hwsim_new_radio_nl+0x991/0x1080 [ 2929.669001] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2929.669765] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2929.670726] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2929.671662] genl_family_rcv_msg_doit+0x22d/0x330 [ 2929.672354] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2929.673293] ? selinux_capable+0x45/0x70 [ 2929.673867] ? cap_capable+0x1cd/0x230 [ 2929.674444] ? ns_capable+0xe2/0x110 [ 2929.674982] genl_rcv_msg+0x33c/0x5a0 [ 2929.675523] ? genl_get_cmd+0x480/0x480 [ 2929.676088] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2929.676828] ? lock_release+0x680/0x680 [ 2929.677397] ? netlink_deliver_tap+0xf4/0xcd0 [ 2929.678047] netlink_rcv_skb+0x14b/0x430 [ 2929.678622] ? genl_get_cmd+0x480/0x480 [ 2929.679191] ? netlink_ack+0xab0/0xab0 [ 2929.679756] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2929.680399] ? is_vmalloc_addr+0x7b/0xb0 [ 2929.680970] genl_rcv+0x24/0x40 [ 2929.681435] netlink_unicast+0x549/0x7f0 [ 2929.682013] ? netlink_attachskb+0x870/0x870 [ 2929.682633] ? __virt_addr_valid+0x128/0x350 [ 2929.683261] netlink_sendmsg+0x90f/0xdf0 [ 2929.683839] ? netlink_unicast+0x7f0/0x7f0 [ 2929.684449] ? netlink_unicast+0x7f0/0x7f0 [ 2929.685042] __sock_sendmsg+0x154/0x190 [ 2929.685601] ____sys_sendmsg+0x70d/0x870 [ 2929.686185] ? sock_write_iter+0x3d0/0x3d0 [ 2929.686777] ? do_recvmmsg+0x6d0/0x6d0 [ 2929.687327] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2929.688068] ? lock_downgrade+0x6d0/0x6d0 [ 2929.688655] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2929.689392] ? SOFTIRQ_verbose+0x10/0x10 [ 2929.689970] ___sys_sendmsg+0xf3/0x170 [ 2929.690524] ? sendmsg_copy_msghdr+0x160/0x160 [ 2929.691170] ? lock_downgrade+0x6d0/0x6d0 [ 2929.691765] ? find_held_lock+0x2c/0x110 [ 2929.692345] ? __fget_files+0x296/0x4c0 [ 2929.692937] ? __fget_light+0xea/0x290 [ 2929.693498] __sys_sendmsg+0xe5/0x1b0 [ 2929.694049] ? __sys_sendmsg_sock+0x40/0x40 [ 2929.694659] ? rcu_read_lock_any_held+0x75/0xa0 [ 2929.695335] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2929.696076] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2929.696807] ? trace_hardirqs_on+0x5b/0x180 [ 2929.697422] do_syscall_64+0x33/0x40 [ 2929.697946] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2929.698678] RIP: 0033:0x7fd0ea82fb19 [ 2929.699210] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2929.701815] RSP: 002b:00007fd0e7da5188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2929.702900] RAX: ffffffffffffffda RBX: 00007fd0ea942f60 RCX: 00007fd0ea82fb19 [ 2929.703904] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2929.704917] RBP: 00007fd0e7da51d0 R08: 0000000000000000 R09: 0000000000000000 [ 2929.705921] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2929.706941] R13: 00007ffedd9ef45f R14: 00007fd0e7da5300 R15: 0000000000022000 10:10:22 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000500)='ramfs\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x7}, 0x0, 0x200, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x300b4e2, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'batadv0\x00'}) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00'}) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'wg2\x00'}) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r3}) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e24, 0x5, @private2, 0xfffffc01}, 0x1c) ioctl$sock_inet_SIOCGIFPFLAGS(0xffffffffffffffff, 0x8935, &(0x7f0000000000)={'wlan0\x00'}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x560, 0x2000000000004}, 0x0, 0x0, 0x1004, 0x0, 0x0, 0x1, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) [ 2929.765644] FAULT_INJECTION: forcing a failure. [ 2929.765644] name failslab, interval 1, probability 0, space 0, times 0 [ 2929.769015] CPU: 0 PID: 16220 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 2929.770442] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2929.772123] Call Trace: [ 2929.772672] dump_stack+0x107/0x167 [ 2929.773427] should_fail.cold+0x5/0xa [ 2929.774221] should_failslab+0x5/0x20 [ 2929.775017] __kmalloc_node_track_caller+0x74/0x3b0 [ 2929.776054] ? alloc_uevent_skb+0x7b/0x210 [ 2929.776938] __alloc_skb+0xb1/0x5b0 [ 2929.777700] alloc_uevent_skb+0x7b/0x210 [ 2929.778549] kobject_uevent_env+0x99a/0xf90 [ 2929.779451] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2929.780538] ? trace_hardirqs_on+0x5b/0x180 [ 2929.781439] __device_release_driver+0x5cd/0x770 [ 2929.782436] device_release_driver+0x26/0x40 [ 2929.783339] mac80211_hwsim_new_radio+0x29a2/0x4250 [ 2929.784371] ? ____sys_sendmsg+0x70d/0x870 [ 2929.785247] ? ___sys_sendmsg+0xf3/0x170 [ 2929.786087] ? __sys_sendmsg+0xe5/0x1b0 [ 2929.786902] ? do_syscall_64+0x33/0x40 [ 2929.787701] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2929.788809] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2929.789791] hwsim_new_radio_nl+0x991/0x1080 [ 2929.790714] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2929.791799] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2929.793162] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2929.794531] genl_family_rcv_msg_doit+0x22d/0x330 [ 2929.795534] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2929.796899] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2929.797981] ? cap_capable+0x1cd/0x230 [ 2929.798813] ? ns_capable+0xe2/0x110 [ 2929.799584] genl_rcv_msg+0x33c/0x5a0 [ 2929.800374] ? genl_get_cmd+0x480/0x480 [ 2929.801201] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2929.802261] ? trace_hardirqs_on+0x5b/0x180 [ 2929.803145] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2929.804272] netlink_rcv_skb+0x14b/0x430 [ 2929.805107] ? genl_get_cmd+0x480/0x480 [ 2929.805923] ? netlink_ack+0xab0/0xab0 10:10:22 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) (fail_nth: 98) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:10:22 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1cd92b001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2929.806755] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2929.807868] ? is_vmalloc_addr+0x7b/0xb0 [ 2929.808701] genl_rcv+0x24/0x40 [ 2929.809373] netlink_unicast+0x549/0x7f0 [ 2929.810215] ? netlink_attachskb+0x870/0x870 [ 2929.811120] ? __virt_addr_valid+0x128/0x350 [ 2929.812021] netlink_sendmsg+0x90f/0xdf0 [ 2929.812852] ? netlink_unicast+0x7f0/0x7f0 [ 2929.813717] ? netlink_unicast+0x7f0/0x7f0 [ 2929.814582] __sock_sendmsg+0x154/0x190 [ 2929.815392] ____sys_sendmsg+0x70d/0x870 [ 2929.816218] ? sock_write_iter+0x3d0/0x3d0 [ 2929.817068] ? do_recvmmsg+0x6d0/0x6d0 [ 2929.817856] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2929.818935] ? lock_downgrade+0x6d0/0x6d0 [ 2929.819776] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2929.820832] ? SOFTIRQ_verbose+0x10/0x10 [ 2929.821655] ___sys_sendmsg+0xf3/0x170 [ 2929.822451] ? sendmsg_copy_msghdr+0x160/0x160 [ 2929.823379] ? lock_downgrade+0x6d0/0x6d0 [ 2929.824228] ? find_held_lock+0x2c/0x110 [ 2929.825062] ? __fget_files+0x296/0x4c0 [ 2929.825871] ? __fget_light+0xea/0x290 [ 2929.826670] __sys_sendmsg+0xe5/0x1b0 [ 2929.827445] ? __sys_sendmsg_sock+0x40/0x40 [ 2929.828312] ? rcu_read_lock_any_held+0x75/0xa0 [ 2929.829280] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2929.830355] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2929.831399] ? trace_hardirqs_on+0x5b/0x180 [ 2929.832273] do_syscall_64+0x33/0x40 [ 2929.833037] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2929.834080] RIP: 0033:0x7fa741f89b19 [ 2929.834847] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2929.838560] RSP: 002b:00007fa73f4ff188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2929.840112] RAX: ffffffffffffffda RBX: 00007fa74209cf60 RCX: 00007fa741f89b19 [ 2929.841574] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2929.843037] RBP: 00007fa73f4ff1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2929.843327] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 2929.844479] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2929.844491] R13: 00007ffd248a3bcf R14: 00007fa73f4ff300 R15: 0000000000022000 [ 2929.856842] System zones: 0-7 [ 2929.865485] FAULT_INJECTION: forcing a failure. [ 2929.865485] name failslab, interval 1, probability 0, space 0, times 0 [ 2929.868124] CPU: 0 PID: 16219 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 2929.869532] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2929.871210] Call Trace: [ 2929.871745] dump_stack+0x107/0x167 [ 2929.872492] should_fail.cold+0x5/0xa [ 2929.873268] ? create_object.isra.0+0x3a/0xa20 [ 2929.874213] should_failslab+0x5/0x20 [ 2929.874990] kmem_cache_alloc+0x5b/0x310 [ 2929.875815] ? vsnprintf+0x4ba/0x1600 [ 2929.876598] create_object.isra.0+0x3a/0xa20 [ 2929.877495] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2929.878550] __kmalloc_track_caller+0x177/0x370 [ 2929.879505] ? kvasprintf_const+0x60/0x1a0 [ 2929.880379] kvasprintf+0xb5/0x150 [ 2929.881105] ? bust_spinlocks+0xe0/0xe0 [ 2929.881934] ? lockdep_init_map_type+0x2c7/0x780 [ 2929.882927] kvasprintf_const+0x60/0x1a0 [ 2929.883759] kobject_set_name_vargs+0x56/0x150 [ 2929.884696] device_create_groups_vargs+0x1c0/0x280 [ 2929.885714] device_create+0xdc/0x120 [ 2929.886522] ? device_create_groups_vargs+0x280/0x280 [ 2929.887574] ? init_timer_key+0x12a/0x240 [ 2929.888427] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 2929.889420] mac80211_hwsim_new_radio+0x352/0x4250 [ 2929.890418] ? ____sys_sendmsg+0x70d/0x870 [ 2929.891278] ? ___sys_sendmsg+0xf3/0x170 [ 2929.892105] ? __sys_sendmsg+0xe5/0x1b0 [ 2929.892920] ? do_syscall_64+0x33/0x40 [ 2929.893705] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2929.894800] ? lock_acquire+0x197/0x470 [ 2929.895605] ? create_object.isra.0+0x3ad/0xa20 [ 2929.896571] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2929.897541] hwsim_new_radio_nl+0x991/0x1080 [ 2929.898442] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2929.899514] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2929.900839] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2929.902179] genl_family_rcv_msg_doit+0x22d/0x330 [ 2929.903162] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2929.904501] ? cap_capable+0x1cd/0x230 [ 2929.905310] ? ns_capable+0xe2/0x110 [ 2929.906085] genl_rcv_msg+0x33c/0x5a0 [ 2929.906864] ? genl_get_cmd+0x480/0x480 [ 2929.907673] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2929.908733] ? lock_release+0x680/0x680 [ 2929.909543] ? netlink_deliver_tap+0xf4/0xcd0 [ 2929.910474] netlink_rcv_skb+0x14b/0x430 [ 2929.911301] ? genl_get_cmd+0x480/0x480 [ 2929.912106] ? netlink_ack+0xab0/0xab0 [ 2929.912908] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2929.913834] ? is_vmalloc_addr+0x7b/0xb0 [ 2929.914672] genl_rcv+0x24/0x40 [ 2929.915341] netlink_unicast+0x549/0x7f0 [ 2929.916172] ? netlink_attachskb+0x870/0x870 [ 2929.917060] ? __virt_addr_valid+0x128/0x350 [ 2929.917974] netlink_sendmsg+0x90f/0xdf0 [ 2929.918806] ? netlink_unicast+0x7f0/0x7f0 [ 2929.919680] ? netlink_unicast+0x7f0/0x7f0 [ 2929.920536] __sock_sendmsg+0x154/0x190 [ 2929.921344] ____sys_sendmsg+0x70d/0x870 [ 2929.922174] ? sock_write_iter+0x3d0/0x3d0 [ 2929.923027] ? do_recvmmsg+0x6d0/0x6d0 [ 2929.923818] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2929.924877] ? lock_downgrade+0x6d0/0x6d0 [ 2929.925728] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2929.926796] ? SOFTIRQ_verbose+0x10/0x10 [ 2929.927632] ___sys_sendmsg+0xf3/0x170 [ 2929.928429] ? sendmsg_copy_msghdr+0x160/0x160 [ 2929.929366] ? lock_downgrade+0x6d0/0x6d0 [ 2929.930212] ? find_held_lock+0x2c/0x110 [ 2929.931049] ? __fget_files+0x296/0x4c0 [ 2929.931871] ? __fget_light+0xea/0x290 [ 2929.932665] __sys_sendmsg+0xe5/0x1b0 [ 2929.933439] ? __sys_sendmsg_sock+0x40/0x40 [ 2929.934319] ? rcu_read_lock_any_held+0x75/0xa0 [ 2929.935280] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2929.936337] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2929.937385] ? trace_hardirqs_on+0x5b/0x180 [ 2929.938264] do_syscall_64+0x33/0x40 [ 2929.939025] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2929.940060] RIP: 0033:0x7f46fba00b19 [ 2929.940816] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2929.944536] RSP: 002b:00007f46f8f76188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2929.946251] RAX: ffffffffffffffda RBX: 00007f46fbb13f60 RCX: 00007f46fba00b19 [ 2929.947687] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2929.948344] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 2929.949118] RBP: 00007f46f8f761d0 R08: 0000000000000000 R09: 0000000000000000 [ 2929.949130] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2929.949142] R13: 00007ffe81962e7f R14: 00007f46f8f76300 R15: 0000000000022000 10:10:22 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c000f001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:10:22 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a53d, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) 10:10:22 executing program 2: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 89) r2 = creat(0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2930.220650] FAULT_INJECTION: forcing a failure. [ 2930.220650] name failslab, interval 1, probability 0, space 0, times 0 [ 2930.222409] CPU: 1 PID: 16236 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 2930.223202] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2930.224150] Call Trace: [ 2930.224465] dump_stack+0x107/0x167 [ 2930.224900] should_fail.cold+0x5/0xa [ 2930.225343] should_failslab+0x5/0x20 [ 2930.225773] __kmalloc_node_track_caller+0x74/0x3b0 [ 2930.226372] ? alloc_uevent_skb+0x7b/0x210 [ 2930.226869] __alloc_skb+0xb1/0x5b0 [ 2930.227285] alloc_uevent_skb+0x7b/0x210 [ 2930.227746] kobject_uevent_env+0x99a/0xf90 [ 2930.228237] ? software_node_notify+0xf8/0x2f0 [ 2930.228784] device_del+0xa8f/0x1180 [ 2930.229208] ? uevent_show+0x370/0x370 [ 2930.229676] ? wait_for_completion_io+0x270/0x270 [ 2930.230289] device_unregister+0x11/0x30 [ 2930.230779] mac80211_hwsim_new_radio+0x414/0x4250 [ 2930.231356] ? mark_held_locks+0x9e/0xe0 [ 2930.231860] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2930.232414] hwsim_new_radio_nl+0x991/0x1080 [ 2930.232934] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2930.233555] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2930.234348] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2930.235127] genl_family_rcv_msg_doit+0x22d/0x330 [ 2930.235694] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2930.236476] ? ns_capable+0xbf/0x110 [ 2930.236911] ? ns_capable+0xe2/0x110 [ 2930.237359] genl_rcv_msg+0x33c/0x5a0 [ 2930.237807] ? genl_get_cmd+0x480/0x480 [ 2930.238241] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2930.238843] ? lock_release+0x680/0x680 [ 2930.239283] ? netlink_deliver_tap+0xf4/0xcd0 [ 2930.239798] netlink_rcv_skb+0x14b/0x430 [ 2930.240246] ? genl_get_cmd+0x480/0x480 [ 2930.240696] ? netlink_ack+0xab0/0xab0 [ 2930.241144] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2930.241664] ? is_vmalloc_addr+0x7b/0xb0 [ 2930.242131] genl_rcv+0x24/0x40 [ 2930.242497] netlink_unicast+0x549/0x7f0 [ 2930.242963] ? netlink_attachskb+0x870/0x870 [ 2930.243453] ? __virt_addr_valid+0x128/0x350 [ 2930.243951] netlink_sendmsg+0x90f/0xdf0 [ 2930.244412] ? netlink_unicast+0x7f0/0x7f0 [ 2930.244893] ? netlink_unicast+0x7f0/0x7f0 [ 2930.245360] __sock_sendmsg+0x154/0x190 [ 2930.245803] ____sys_sendmsg+0x70d/0x870 [ 2930.246263] ? sock_write_iter+0x3d0/0x3d0 [ 2930.246731] ? do_recvmmsg+0x6d0/0x6d0 [ 2930.247165] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2930.247770] ? lock_downgrade+0x6d0/0x6d0 [ 2930.248257] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2930.248869] ? SOFTIRQ_verbose+0x10/0x10 [ 2930.249350] ___sys_sendmsg+0xf3/0x170 [ 2930.249810] ? sendmsg_copy_msghdr+0x160/0x160 [ 2930.250358] ? lock_downgrade+0x6d0/0x6d0 [ 2930.250847] ? find_held_lock+0x2c/0x110 [ 2930.251342] ? __fget_files+0x296/0x4c0 [ 2930.251816] ? __fget_light+0xea/0x290 [ 2930.252273] __sys_sendmsg+0xe5/0x1b0 [ 2930.252730] ? __sys_sendmsg_sock+0x40/0x40 [ 2930.253238] ? rcu_read_lock_any_held+0x75/0xa0 [ 2930.253812] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2930.254433] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2930.254998] ? trace_hardirqs_on+0x5b/0x180 [ 2930.255524] do_syscall_64+0x33/0x40 [ 2930.255966] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2930.256562] RIP: 0033:0x7fd0ea82fb19 [ 2930.256999] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2930.259125] RSP: 002b:00007fd0e7da5188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2930.260016] RAX: ffffffffffffffda RBX: 00007fd0ea942f60 RCX: 00007fd0ea82fb19 [ 2930.260848] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2930.261679] RBP: 00007fd0e7da51d0 R08: 0000000000000000 R09: 0000000000000000 [ 2930.262504] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2930.263325] R13: 00007ffedd9ef45f R14: 00007fd0e7da5300 R15: 0000000000022000 [ 2930.265656] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 2930.266814] System zones: 0-7 [ 2930.268366] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue 10:10:22 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1cd92c001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:10:22 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0020001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:10:22 executing program 3: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 30) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2930.406683] FAULT_INJECTION: forcing a failure. [ 2930.406683] name failslab, interval 1, probability 0, space 0, times 0 [ 2930.408033] CPU: 1 PID: 16254 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 2930.408757] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2930.409613] Call Trace: [ 2930.409900] dump_stack+0x107/0x167 [ 2930.410305] should_fail.cold+0x5/0xa [ 2930.410714] ? create_object.isra.0+0x3a/0xa20 [ 2930.411202] should_failslab+0x5/0x20 [ 2930.411609] kmem_cache_alloc+0x5b/0x310 [ 2930.412047] create_object.isra.0+0x3a/0xa20 [ 2930.412505] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2930.413040] kmem_cache_alloc_node+0x169/0x330 [ 2930.413531] __alloc_skb+0x6d/0x5b0 [ 2930.413918] alloc_uevent_skb+0x7b/0x210 [ 2930.414367] kobject_uevent_env+0x99a/0xf90 [ 2930.414830] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2930.415378] ? trace_hardirqs_on+0x5b/0x180 [ 2930.415832] __device_release_driver+0x5cd/0x770 [ 2930.416335] device_release_driver+0x26/0x40 [ 2930.416800] mac80211_hwsim_new_radio+0x29a2/0x4250 [ 2930.417383] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2930.417899] hwsim_new_radio_nl+0x991/0x1080 [ 2930.418380] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2930.418931] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2930.419665] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2930.420396] genl_family_rcv_msg_doit+0x22d/0x330 [ 2930.420903] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2930.421599] ? cap_capable+0x1cd/0x230 [ 2930.422036] ? ns_capable+0xe2/0x110 [ 2930.422430] genl_rcv_msg+0x33c/0x5a0 [ 2930.422841] ? genl_get_cmd+0x480/0x480 [ 2930.423279] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2930.423825] ? lock_release+0x680/0x680 [ 2930.424260] ? __lockdep_reset_lock+0x180/0x180 [ 2930.424760] netlink_rcv_skb+0x14b/0x430 [ 2930.425174] ? genl_get_cmd+0x480/0x480 [ 2930.425591] ? netlink_ack+0xab0/0xab0 [ 2930.426030] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2930.426535] ? is_vmalloc_addr+0x7b/0xb0 [ 2930.426977] genl_rcv+0x24/0x40 [ 2930.427320] netlink_unicast+0x549/0x7f0 [ 2930.427770] ? netlink_attachskb+0x870/0x870 [ 2930.428228] ? __virt_addr_valid+0x128/0x350 [ 2930.428706] netlink_sendmsg+0x90f/0xdf0 [ 2930.429135] ? netlink_unicast+0x7f0/0x7f0 [ 2930.429598] ? netlink_unicast+0x7f0/0x7f0 [ 2930.430051] __sock_sendmsg+0x154/0x190 [ 2930.430494] ____sys_sendmsg+0x70d/0x870 [ 2930.430923] ? sock_write_iter+0x3d0/0x3d0 [ 2930.431366] ? do_recvmmsg+0x6d0/0x6d0 [ 2930.431775] ? perf_trace_lock+0xac/0x490 [ 2930.432214] ? __lockdep_reset_lock+0x180/0x180 [ 2930.432705] ? perf_trace_lock+0xac/0x490 [ 2930.433136] ? SOFTIRQ_verbose+0x10/0x10 [ 2930.433565] ___sys_sendmsg+0xf3/0x170 [ 2930.433990] ? sendmsg_copy_msghdr+0x160/0x160 [ 2930.434474] ? lock_downgrade+0x6d0/0x6d0 [ 2930.434910] ? find_held_lock+0x2c/0x110 [ 2930.435365] ? __fget_files+0x296/0x4c0 [ 2930.435797] ? __fget_light+0xea/0x290 [ 2930.436229] __sys_sendmsg+0xe5/0x1b0 [ 2930.436627] ? __sys_sendmsg_sock+0x40/0x40 [ 2930.437111] ? rcu_read_lock_any_held+0x75/0xa0 [ 2930.437611] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2930.438198] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2930.438729] ? trace_hardirqs_on+0x5b/0x180 [ 2930.439246] do_syscall_64+0x33/0x40 [ 2930.440407] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2930.441722] RIP: 0033:0x7fa741f89b19 [ 2930.442735] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2930.447389] RSP: 002b:00007fa73f4ff188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2930.449220] RAX: ffffffffffffffda RBX: 00007fa74209cf60 RCX: 00007fa741f89b19 [ 2930.450757] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2930.452379] RBP: 00007fa73f4ff1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2930.454118] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2930.455764] R13: 00007ffd248a3bcf R14: 00007fa73f4ff300 R15: 0000000000022000 [ 2930.518962] FAULT_INJECTION: forcing a failure. [ 2930.518962] name failslab, interval 1, probability 0, space 0, times 0 [ 2930.522210] CPU: 0 PID: 16278 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 2930.523611] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2930.525279] Call Trace: [ 2930.525822] dump_stack+0x107/0x167 [ 2930.526573] should_fail.cold+0x5/0xa [ 2930.527349] ? device_add+0x106f/0x1c50 [ 2930.528158] ? device_add+0x106f/0x1c50 [ 2930.528965] should_failslab+0x5/0x20 [ 2930.529738] kmem_cache_alloc_trace+0x55/0x320 [ 2930.530669] ? kvasprintf+0xe9/0x150 [ 2930.531433] device_add+0x106f/0x1c50 [ 2930.532208] ? devlink_add_symlinks+0x970/0x970 [ 2930.533165] device_create_groups_vargs+0x207/0x280 [ 2930.534193] device_create+0xdc/0x120 [ 2930.534970] ? device_create_groups_vargs+0x280/0x280 [ 2930.536014] ? init_timer_key+0x12a/0x240 [ 2930.536887] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 2930.537870] mac80211_hwsim_new_radio+0x352/0x4250 [ 2930.538867] ? ____sys_sendmsg+0x70d/0x870 [ 2930.539720] ? ___sys_sendmsg+0xf3/0x170 [ 2930.540539] ? __sys_sendmsg+0xe5/0x1b0 [ 2930.541344] ? do_syscall_64+0x33/0x40 [ 2930.542148] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2930.543229] ? lock_acquire+0x197/0x470 [ 2930.544036] ? create_object.isra.0+0x3ad/0xa20 [ 2930.544986] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2930.545940] hwsim_new_radio_nl+0x991/0x1080 [ 2930.546847] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2930.547907] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2930.549237] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2930.550564] genl_family_rcv_msg_doit+0x22d/0x330 [ 2930.551542] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2930.552869] ? cap_capable+0x1cd/0x230 [ 2930.553676] ? ns_capable+0xe2/0x110 [ 2930.554450] genl_rcv_msg+0x33c/0x5a0 [ 2930.555224] ? genl_get_cmd+0x480/0x480 [ 2930.556177] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2930.557226] ? lock_release+0x680/0x680 [ 2930.558040] ? __lockdep_reset_lock+0x180/0x180 [ 2930.558988] netlink_rcv_skb+0x14b/0x430 [ 2930.559809] ? genl_get_cmd+0x480/0x480 [ 2930.560611] ? netlink_ack+0xab0/0xab0 [ 2930.561411] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2930.562350] ? is_vmalloc_addr+0x7b/0xb0 [ 2930.563172] genl_rcv+0x24/0x40 [ 2930.563839] netlink_unicast+0x549/0x7f0 [ 2930.564664] ? netlink_attachskb+0x870/0x870 [ 2930.565551] ? __virt_addr_valid+0x128/0x350 [ 2930.566464] netlink_sendmsg+0x90f/0xdf0 [ 2930.567292] ? netlink_unicast+0x7f0/0x7f0 [ 2930.568160] ? netlink_unicast+0x7f0/0x7f0 [ 2930.569014] __sock_sendmsg+0x154/0x190 [ 2930.569820] ____sys_sendmsg+0x70d/0x870 [ 2930.570652] ? sock_write_iter+0x3d0/0x3d0 [ 2930.571504] ? do_recvmmsg+0x6d0/0x6d0 [ 2930.572293] ? perf_trace_lock+0xac/0x490 [ 2930.573138] ? __lockdep_reset_lock+0x180/0x180 [ 2930.574095] ? perf_trace_lock+0xac/0x490 [ 2930.574934] ? SOFTIRQ_verbose+0x10/0x10 [ 2930.575764] ___sys_sendmsg+0xf3/0x170 [ 2930.576558] ? sendmsg_copy_msghdr+0x160/0x160 [ 2930.577493] ? lock_downgrade+0x6d0/0x6d0 [ 2930.578346] ? find_held_lock+0x2c/0x110 [ 2930.579183] ? __fget_files+0x296/0x4c0 [ 2930.580004] ? __fget_light+0xea/0x290 [ 2930.580805] __sys_sendmsg+0xe5/0x1b0 [ 2930.581582] ? __sys_sendmsg_sock+0x40/0x40 [ 2930.582471] ? rcu_read_lock_any_held+0x75/0xa0 [ 2930.583433] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2930.584495] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2930.585534] ? trace_hardirqs_on+0x5b/0x180 [ 2930.586423] do_syscall_64+0x33/0x40 [ 2930.587179] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2930.588215] RIP: 0033:0x7f46fba00b19 [ 2930.588973] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2930.592698] RSP: 002b:00007f46f8f76188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2930.594255] RAX: ffffffffffffffda RBX: 00007f46fbb13f60 RCX: 00007f46fba00b19 [ 2930.595698] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2930.597140] RBP: 00007f46f8f761d0 R08: 0000000000000000 R09: 0000000000000000 [ 2930.598589] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2930.600031] R13: 00007ffe81962e7f R14: 00007f46f8f76300 R15: 0000000000022000 10:10:37 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c003f001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:10:37 executing program 1: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x620e, &(0x7f0000000180)={0x0, 0x4ac1, 0x0, 0x2, 0x2b9}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000100)=0x0, &(0x7f0000000140)=0x0) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000080), 0x4) ioctl$sock_SIOCDELRT(0xffffffffffffffff, 0x890c, 0x0) r4 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f0000000900)={&(0x7f0000000200)=@l2tp6={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010102}, 0xffffffff}, 0x80, 0x0}, 0x0, 0x4000000}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) r5 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x4, 0x52, r4, 0x10000000) r6 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)={0x1c, 0x5e, 0xc21, 0x0, 0x0, {0x0, 0x2}, [@generic='\x00\x00\x00\x00\x00']}, 0x1c}}, 0x0) syz_io_uring_submit(r1, r5, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x3, 0x0, @fd=r6, 0x0, 0x0, 0x0, {0x200}, 0x1}, 0x3) r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r0, 0x8000000) syz_io_uring_submit(r7, r2, &(0x7f00000002c0)=@IORING_OP_RECVMSG={0xa, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x80000001) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) 10:10:37 executing program 3: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 31) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:10:37 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) (fail_nth: 99) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:10:37 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1cd92d001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:10:37 executing program 2: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 90) r2 = creat(0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:10:37 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a53e, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) [ 2945.124536] FAULT_INJECTION: forcing a failure. [ 2945.124536] name failslab, interval 1, probability 0, space 0, times 0 [ 2945.126460] CPU: 0 PID: 16291 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 2945.127414] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2945.128540] Call Trace: [ 2945.128905] dump_stack+0x107/0x167 [ 2945.129419] should_fail.cold+0x5/0xa [ 2945.129948] ? create_object.isra.0+0x3a/0xa20 [ 2945.130595] should_failslab+0x5/0x20 [ 2945.131116] kmem_cache_alloc+0x5b/0x310 [ 2945.131670] create_object.isra.0+0x3a/0xa20 [ 2945.132260] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2945.132956] kmem_cache_alloc_trace+0x151/0x320 [ 2945.133585] device_add+0x106f/0x1c50 [ 2945.134104] ? devlink_add_symlinks+0x970/0x970 [ 2945.134756] device_create_groups_vargs+0x207/0x280 [ 2945.135443] device_create+0xdc/0x120 [ 2945.135969] ? device_create_groups_vargs+0x280/0x280 [ 2945.136675] ? init_timer_key+0x12a/0x240 [ 2945.137249] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 2945.137915] mac80211_hwsim_new_radio+0x352/0x4250 [ 2945.138605] ? ____sys_sendmsg+0x70d/0x870 [ 2945.139184] ? ___sys_sendmsg+0xf3/0x170 [ 2945.139737] ? __sys_sendmsg+0xe5/0x1b0 [ 2945.140285] ? do_syscall_64+0x33/0x40 [ 2945.140819] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2945.141549] ? lock_acquire+0x197/0x470 [ 2945.142086] ? create_object.isra.0+0x3ad/0xa20 [ 2945.142731] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2945.143378] hwsim_new_radio_nl+0x991/0x1080 [ 2945.143984] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2945.144698] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2945.145592] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2945.146505] genl_family_rcv_msg_doit+0x22d/0x330 [ 2945.147165] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2945.148060] ? cap_capable+0x1cd/0x230 [ 2945.148607] ? ns_capable+0xe2/0x110 [ 2945.149117] genl_rcv_msg+0x33c/0x5a0 [ 2945.149638] ? genl_get_cmd+0x480/0x480 [ 2945.150185] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2945.150894] ? lock_release+0x680/0x680 [ 2945.151429] ? netlink_deliver_tap+0xf4/0xcd0 [ 2945.152018] netlink_rcv_skb+0x14b/0x430 [ 2945.152547] ? genl_get_cmd+0x480/0x480 [ 2945.153066] ? netlink_ack+0xab0/0xab0 [ 2945.153582] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2945.154197] ? is_vmalloc_addr+0x7b/0xb0 [ 2945.154754] genl_rcv+0x24/0x40 [ 2945.155185] netlink_unicast+0x549/0x7f0 [ 2945.155722] ? netlink_attachskb+0x870/0x870 [ 2945.156293] ? __virt_addr_valid+0x128/0x350 [ 2945.156882] netlink_sendmsg+0x90f/0xdf0 [ 2945.157418] ? netlink_unicast+0x7f0/0x7f0 [ 2945.157998] ? netlink_unicast+0x7f0/0x7f0 [ 2945.158580] __sock_sendmsg+0x154/0x190 [ 2945.159131] ____sys_sendmsg+0x70d/0x870 [ 2945.159692] ? sock_write_iter+0x3d0/0x3d0 [ 2945.160282] ? do_recvmmsg+0x6d0/0x6d0 [ 2945.160813] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2945.161530] ? lock_downgrade+0x6d0/0x6d0 [ 2945.162098] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2945.162823] ? SOFTIRQ_verbose+0x10/0x10 [ 2945.163391] ___sys_sendmsg+0xf3/0x170 [ 2945.163932] ? sendmsg_copy_msghdr+0x160/0x160 [ 2945.164570] ? lock_downgrade+0x6d0/0x6d0 [ 2945.165142] ? find_held_lock+0x2c/0x110 [ 2945.165714] ? __fget_files+0x296/0x4c0 [ 2945.166279] ? __fget_light+0xea/0x290 [ 2945.166811] __sys_sendmsg+0xe5/0x1b0 [ 2945.167327] ? __sys_sendmsg_sock+0x40/0x40 [ 2945.167911] ? rcu_read_lock_any_held+0x75/0xa0 [ 2945.168567] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2945.169273] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2945.169983] ? trace_hardirqs_on+0x5b/0x180 [ 2945.170587] do_syscall_64+0x33/0x40 [ 2945.171089] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2945.171796] RIP: 0033:0x7f46fba00b19 [ 2945.172309] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2945.174822] RSP: 002b:00007f46f8f76188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2945.175854] RAX: ffffffffffffffda RBX: 00007f46fbb13f60 RCX: 00007f46fba00b19 [ 2945.176822] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2945.177801] RBP: 00007f46f8f761d0 R08: 0000000000000000 R09: 0000000000000000 [ 2945.178787] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2945.179759] R13: 00007ffe81962e7f R14: 00007f46f8f76300 R15: 0000000000022000 10:10:37 executing program 0: r0 = creat(0x0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) fcntl$dupfd(r1, 0x0, r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x248e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x100182, 0x0) fallocate(r2, 0x40, 0xffffffff, 0x100000001) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000000100)) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x94, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @perf_bp={0x0}, 0x0, 0x10001, 0x0, 0x0, 0x0, 0x4, 0x80}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r4 = epoll_create(0x3) dup2(r4, r3) ioctl$FIBMAP(r4, 0x1, &(0x7f0000000200)=0xffffff29) socket$netlink(0x10, 0x3, 0x0) unshare(0x48020200) [ 2945.223549] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 2945.224711] System zones: 0-7 [ 2945.244995] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue 10:10:37 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0048001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:10:37 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a53f, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) [ 2945.309246] FAULT_INJECTION: forcing a failure. [ 2945.309246] name failslab, interval 1, probability 0, space 0, times 0 [ 2945.310826] CPU: 0 PID: 16297 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 2945.311684] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2945.312709] Call Trace: [ 2945.313051] dump_stack+0x107/0x167 [ 2945.313515] should_fail.cold+0x5/0xa [ 2945.313992] ? skb_clone+0x14f/0x3d0 [ 2945.314465] ? skb_clone+0x14f/0x3d0 [ 2945.314938] should_failslab+0x5/0x20 [ 2945.315412] kmem_cache_alloc+0x5b/0x310 [ 2945.315918] skb_clone+0x14f/0x3d0 [ 2945.316354] netlink_broadcast_filtered+0xa08/0xdc0 [ 2945.316989] netlink_broadcast+0x35/0x50 [ 2945.317492] kobject_uevent_env+0x93d/0xf90 [ 2945.318028] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2945.318706] ? trace_hardirqs_on+0x5b/0x180 [ 2945.319258] __device_release_driver+0x5cd/0x770 [ 2945.319860] device_release_driver+0x26/0x40 [ 2945.320426] mac80211_hwsim_new_radio+0x29a2/0x4250 [ 2945.321056] ? ____sys_sendmsg+0x70d/0x870 [ 2945.321594] ? ___sys_sendmsg+0xf3/0x170 [ 2945.322111] ? __sys_sendmsg+0xe5/0x1b0 [ 2945.322630] ? do_syscall_64+0x33/0x40 [ 2945.323123] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2945.323801] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2945.324405] hwsim_new_radio_nl+0x991/0x1080 [ 2945.324961] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2945.325629] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2945.326455] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2945.327286] genl_family_rcv_msg_doit+0x22d/0x330 [ 2945.327891] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2945.328740] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2945.329419] ? cap_capable+0x1cd/0x230 [ 2945.329926] ? ns_capable+0xe2/0x110 [ 2945.330423] genl_rcv_msg+0x33c/0x5a0 [ 2945.330921] ? genl_get_cmd+0x480/0x480 [ 2945.331429] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2945.332097] ? lock_release+0x680/0x680 [ 2945.332609] ? netlink_deliver_tap+0xf4/0xcd0 [ 2945.333198] netlink_rcv_skb+0x14b/0x430 [ 2945.333720] ? genl_get_cmd+0x480/0x480 [ 2945.334241] ? netlink_ack+0xab0/0xab0 [ 2945.334748] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2945.335332] ? is_vmalloc_addr+0x7b/0xb0 [ 2945.335865] genl_rcv+0x24/0x40 [ 2945.336284] netlink_unicast+0x549/0x7f0 [ 2945.336810] ? netlink_attachskb+0x870/0x870 [ 2945.337376] ? __virt_addr_valid+0x128/0x350 [ 2945.337947] netlink_sendmsg+0x90f/0xdf0 [ 2945.338476] ? netlink_unicast+0x7f0/0x7f0 [ 2945.339015] ? netlink_unicast+0x7f0/0x7f0 [ 2945.339558] __sock_sendmsg+0x154/0x190 [ 2945.340076] ____sys_sendmsg+0x70d/0x870 [ 2945.340597] ? sock_write_iter+0x3d0/0x3d0 [ 2945.341136] ? do_recvmmsg+0x6d0/0x6d0 [ 2945.341645] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2945.342331] ? lock_downgrade+0x6d0/0x6d0 [ 2945.342873] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2945.343542] ? SOFTIRQ_verbose+0x10/0x10 [ 2945.344066] ___sys_sendmsg+0xf3/0x170 [ 2945.344562] ? sendmsg_copy_msghdr+0x160/0x160 [ 2945.345154] ? lock_downgrade+0x6d0/0x6d0 [ 2945.345688] ? find_held_lock+0x2c/0x110 [ 2945.346227] ? __fget_files+0x296/0x4c0 [ 2945.346747] ? __fget_light+0xea/0x290 [ 2945.347243] __sys_sendmsg+0xe5/0x1b0 [ 2945.347721] ? __sys_sendmsg_sock+0x40/0x40 [ 2945.348268] ? rcu_read_lock_any_held+0x75/0xa0 [ 2945.348884] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2945.349554] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2945.350226] ? trace_hardirqs_on+0x5b/0x180 [ 2945.350775] do_syscall_64+0x33/0x40 [ 2945.351254] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2945.351914] RIP: 0033:0x7fa741f89b19 [ 2945.352398] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2945.354757] RSP: 002b:00007fa73f4ff188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2945.355742] RAX: ffffffffffffffda RBX: 00007fa74209cf60 RCX: 00007fa741f89b19 [ 2945.356661] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2945.357572] RBP: 00007fa73f4ff1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2945.358504] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2945.359422] R13: 00007ffd248a3bcf R14: 00007fa73f4ff300 R15: 0000000000022000 [ 2945.412841] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 2945.415462] System zones: 0-7 [ 2945.426666] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue 10:10:37 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)) fcntl$F_GET_RW_HINT(0xffffffffffffffff, 0x40b, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_bp={&(0x7f0000000080), 0x3}, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_group_source_req(r1, 0x0, 0x2e, &(0x7f0000000100)={0x1, {{0x2, 0x0, @multicast2}}, {{0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, 0x108) setsockopt$inet_msfilter(r1, 0x0, 0x29, &(0x7f00000000c0)={@multicast2, @loopback, 0x0, 0x2, [@local, @private]}, 0x18) io_submit(0x0, 0x0, 0x0) openat(r0, &(0x7f00000002c0)='./file1\x00', 0x410802, 0x0) setgroups(0x4000000000000356, &(0x7f0000000380)) ioctl$F2FS_IOC_GET_PIN_FILE(0xffffffffffffffff, 0x8004f50e, &(0x7f0000000240)) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) pwritev(r2, &(0x7f0000001140)=[{&(0x7f0000000080)="f2", 0x1}], 0x1, 0x0, 0x0) ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000000)={0x8020}) close(r2) r3 = open$dir(0x0, 0x0, 0x0) open_by_handle_at(r3, &(0x7f0000000000)=@FILEID_INO32_GEN={0x8, 0x1, {0x80000001}}, 0x0) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r2, 0xc0189379, &(0x7f0000000040)={{0x1, 0x1, 0x18, r3}, './file1\x00'}) write$binfmt_elf64(0xffffffffffffffff, &(0x7f00000001c0)=ANY=[], 0xfdef) ioctl$F2FS_IOC_DEFRAGMENT(0xffffffffffffffff, 0xc010f508, &(0x7f0000000300)={0xc17d, 0x5}) 10:10:37 executing program 3: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 32) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2945.473521] FAULT_INJECTION: forcing a failure. [ 2945.473521] name failslab, interval 1, probability 0, space 0, times 0 [ 2945.475079] CPU: 0 PID: 16302 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 2945.475864] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2945.476812] Call Trace: [ 2945.477120] dump_stack+0x107/0x167 [ 2945.477534] should_fail.cold+0x5/0xa [ 2945.477965] ? create_object.isra.0+0x3a/0xa20 [ 2945.478496] should_failslab+0x5/0x20 [ 2945.478928] kmem_cache_alloc+0x5b/0x310 [ 2945.479395] create_object.isra.0+0x3a/0xa20 [ 2945.479897] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2945.480473] kmem_cache_alloc_node+0x169/0x330 [ 2945.480990] __alloc_skb+0x6d/0x5b0 [ 2945.481405] alloc_uevent_skb+0x7b/0x210 [ 2945.481871] kobject_uevent_env+0x99a/0xf90 [ 2945.482387] ? software_node_notify+0xf8/0x2f0 [ 2945.482913] device_del+0xa8f/0x1180 [ 2945.483358] ? uevent_show+0x370/0x370 10:10:38 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c004c001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2945.483832] ? wait_for_completion_io+0x270/0x270 [ 2945.484547] device_unregister+0x11/0x30 [ 2945.485027] mac80211_hwsim_new_radio+0x414/0x4250 [ 2945.485600] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2945.486125] hwsim_new_radio_nl+0x991/0x1080 [ 2945.486630] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2945.487230] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2945.487976] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2945.488716] genl_family_rcv_msg_doit+0x22d/0x330 [ 2945.489264] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2945.490014] ? cap_capable+0x1cd/0x230 [ 2945.490481] ? ns_capable+0xe2/0x110 [ 2945.490905] genl_rcv_msg+0x33c/0x5a0 [ 2945.491335] ? genl_get_cmd+0x480/0x480 [ 2945.491784] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2945.492370] ? lock_release+0x680/0x680 [ 2945.492830] ? netlink_deliver_tap+0xf4/0xcd0 [ 2945.493343] netlink_rcv_skb+0x14b/0x430 [ 2945.493801] ? genl_get_cmd+0x480/0x480 [ 2945.494276] ? netlink_ack+0xab0/0xab0 [ 2945.494746] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2945.495275] ? is_vmalloc_addr+0x7b/0xb0 [ 2945.495756] genl_rcv+0x24/0x40 [ 2945.496138] netlink_unicast+0x549/0x7f0 [ 2945.496609] ? netlink_attachskb+0x870/0x870 [ 2945.497121] ? __virt_addr_valid+0x128/0x350 [ 2945.497638] netlink_sendmsg+0x90f/0xdf0 [ 2945.498103] ? netlink_unicast+0x7f0/0x7f0 [ 2945.498609] ? netlink_unicast+0x7f0/0x7f0 [ 2945.499105] __sock_sendmsg+0x154/0x190 [ 2945.499562] ____sys_sendmsg+0x70d/0x870 [ 2945.500029] ? sock_write_iter+0x3d0/0x3d0 [ 2945.500511] ? do_recvmmsg+0x6d0/0x6d0 [ 2945.500967] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2945.501567] ? lock_downgrade+0x6d0/0x6d0 [ 2945.502043] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2945.502630] ? SOFTIRQ_verbose+0x10/0x10 [ 2945.503107] ___sys_sendmsg+0xf3/0x170 [ 2945.503561] ? sendmsg_copy_msghdr+0x160/0x160 [ 2945.504088] ? lock_downgrade+0x6d0/0x6d0 [ 2945.504569] ? find_held_lock+0x2c/0x110 [ 2945.505038] ? __fget_files+0x296/0x4c0 [ 2945.505502] ? __fget_light+0xea/0x290 [ 2945.505953] __sys_sendmsg+0xe5/0x1b0 [ 2945.506391] ? __sys_sendmsg_sock+0x40/0x40 [ 2945.506887] ? rcu_read_lock_any_held+0x75/0xa0 [ 2945.507440] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2945.508051] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2945.508647] ? trace_hardirqs_on+0x5b/0x180 [ 2945.509153] do_syscall_64+0x33/0x40 [ 2945.509579] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2945.510174] RIP: 0033:0x7fd0ea82fb19 [ 2945.510596] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2945.512717] RSP: 002b:00007fd0e7da5188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2945.513609] RAX: ffffffffffffffda RBX: 00007fd0ea942f60 RCX: 00007fd0ea82fb19 [ 2945.514438] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2945.515254] RBP: 00007fd0e7da51d0 R08: 0000000000000000 R09: 0000000000000000 [ 2945.516065] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2945.516881] R13: 00007ffedd9ef45f R14: 00007fd0e7da5300 R15: 0000000000022000 [ 2945.578645] FAULT_INJECTION: forcing a failure. [ 2945.578645] name failslab, interval 1, probability 0, space 0, times 0 [ 2945.580214] CPU: 0 PID: 16334 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 2945.580969] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2945.581864] Call Trace: [ 2945.582173] dump_stack+0x107/0x167 [ 2945.582573] should_fail.cold+0x5/0xa [ 2945.582990] should_failslab+0x5/0x20 [ 2945.583414] __kmalloc_track_caller+0x79/0x370 [ 2945.583906] ? kstrdup_const+0x53/0x80 [ 2945.584326] ? __lock_acquire+0x1657/0x5b00 10:10:38 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a540, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) [ 2945.584804] kstrdup+0x36/0x70 [ 2945.585276] kstrdup_const+0x53/0x80 [ 2945.585683] __kernfs_new_node+0x9d/0x860 [ 2945.586139] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 2945.586671] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2945.587240] ? SOFTIRQ_verbose+0x10/0x10 [ 2945.587691] kernfs_create_dir_ns+0x9c/0x230 [ 2945.588166] sysfs_create_dir_ns+0x127/0x290 [ 2945.588770] ? sysfs_create_mount_point+0xb0/0xb0 [ 2945.589301] ? rwlock_bug.part.0+0x90/0x90 [ 2945.589777] ? class_dir_child_ns_type+0x9/0x60 [ 2945.590290] kobject_add_internal+0x25e/0xa30 [ 2945.590774] kobject_add+0x150/0x1c0 [ 2945.591176] ? kset_create_and_add+0x1a0/0x1a0 [ 2945.591678] ? lockdep_init_map_type+0x2c7/0x780 [ 2945.592206] device_add+0x35a/0x1c50 [ 2945.592611] ? devlink_add_symlinks+0x970/0x970 [ 2945.593123] device_create_groups_vargs+0x207/0x280 [ 2945.593665] device_create+0xdc/0x120 [ 2945.594084] ? device_create_groups_vargs+0x280/0x280 [ 2945.594655] ? init_timer_key+0x12a/0x240 [ 2945.595108] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 2945.595632] mac80211_hwsim_new_radio+0x352/0x4250 [ 2945.596162] ? ____sys_sendmsg+0x70d/0x870 [ 2945.596619] ? ___sys_sendmsg+0xf3/0x170 [ 2945.597058] ? __sys_sendmsg+0xe5/0x1b0 [ 2945.597491] ? do_syscall_64+0x33/0x40 [ 2945.597912] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2945.598487] ? lock_acquire+0x197/0x470 10:10:38 executing program 2: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 91) r2 = creat(0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2945.598920] ? create_object.isra.0+0x3ad/0xa20 [ 2945.599484] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2945.599994] hwsim_new_radio_nl+0x991/0x1080 [ 2945.600471] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2945.601027] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2945.601737] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2945.602457] genl_family_rcv_msg_doit+0x22d/0x330 [ 2945.602974] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2945.603674] ? cap_capable+0x1cd/0x230 [ 2945.604103] ? ns_capable+0xe2/0x110 [ 2945.604511] genl_rcv_msg+0x33c/0x5a0 [ 2945.604912] ? genl_get_cmd+0x480/0x480 [ 2945.605333] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2945.605890] ? lock_release+0x680/0x680 [ 2945.606323] ? netlink_deliver_tap+0xf4/0xcd0 [ 2945.606802] netlink_rcv_skb+0x14b/0x430 [ 2945.607229] ? genl_get_cmd+0x480/0x480 [ 2945.607654] ? netlink_ack+0xab0/0xab0 [ 2945.608078] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2945.608567] ? is_vmalloc_addr+0x7b/0xb0 [ 2945.609011] genl_rcv+0x24/0x40 [ 2945.609369] netlink_unicast+0x549/0x7f0 [ 2945.609813] ? netlink_attachskb+0x870/0x870 [ 2945.610297] ? __virt_addr_valid+0x128/0x350 [ 2945.610768] netlink_sendmsg+0x90f/0xdf0 [ 2945.611213] ? netlink_unicast+0x7f0/0x7f0 [ 2945.611679] ? netlink_unicast+0x7f0/0x7f0 [ 2945.612139] __sock_sendmsg+0x154/0x190 [ 2945.612571] ____sys_sendmsg+0x70d/0x870 [ 2945.613015] ? sock_write_iter+0x3d0/0x3d0 [ 2945.613470] ? do_recvmmsg+0x6d0/0x6d0 [ 2945.613898] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2945.614474] ? lock_downgrade+0x6d0/0x6d0 [ 2945.614916] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2945.615476] ? SOFTIRQ_verbose+0x10/0x10 [ 2945.615927] ___sys_sendmsg+0xf3/0x170 [ 2945.616360] ? sendmsg_copy_msghdr+0x160/0x160 [ 2945.616859] ? lock_downgrade+0x6d0/0x6d0 [ 2945.617318] ? find_held_lock+0x2c/0x110 [ 2945.617766] ? __fget_files+0x296/0x4c0 [ 2945.618214] ? __fget_light+0xea/0x290 [ 2945.618643] __sys_sendmsg+0xe5/0x1b0 [ 2945.619057] ? __sys_sendmsg_sock+0x40/0x40 [ 2945.619530] ? rcu_read_lock_any_held+0x75/0xa0 [ 2945.620048] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2945.620615] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2945.621173] ? trace_hardirqs_on+0x5b/0x180 [ 2945.621643] do_syscall_64+0x33/0x40 [ 2945.622047] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2945.622603] RIP: 0033:0x7f46fba00b19 [ 2945.623000] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2945.624971] RSP: 002b:00007f46f8f76188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2945.625797] RAX: ffffffffffffffda RBX: 00007f46fbb13f60 RCX: 00007f46fba00b19 [ 2945.626583] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2945.627349] RBP: 00007f46f8f761d0 R08: 0000000000000000 R09: 0000000000000000 [ 2945.628122] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2945.628897] R13: 00007ffe81962e7f R14: 00007f46f8f76300 R15: 0000000000022000 [ 2945.630168] kobject_add_internal failed for hwsim1213 (error: -12 parent: mac80211_hwsim) 10:10:38 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1cd92e001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:10:38 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) (fail_nth: 100) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:10:38 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0358001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2945.734919] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 2945.737632] System zones: 0-7 [ 2945.757283] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 2945.793287] FAULT_INJECTION: forcing a failure. [ 2945.793287] name failslab, interval 1, probability 0, space 0, times 0 [ 2945.795066] CPU: 0 PID: 16336 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 2945.795816] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2945.796721] Call Trace: [ 2945.797008] dump_stack+0x107/0x167 [ 2945.797407] should_fail.cold+0x5/0xa [ 2945.797819] ? create_object.isra.0+0x3a/0xa20 [ 2945.798341] should_failslab+0x5/0x20 [ 2945.798749] kmem_cache_alloc+0x5b/0x310 [ 2945.799185] create_object.isra.0+0x3a/0xa20 [ 2945.799657] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2945.800220] __kmalloc_node_track_caller+0x1a6/0x3b0 [ 2945.800764] ? alloc_uevent_skb+0x7b/0x210 [ 2945.801236] __alloc_skb+0xb1/0x5b0 [ 2945.801634] alloc_uevent_skb+0x7b/0x210 [ 2945.802080] kobject_uevent_env+0x99a/0xf90 [ 2945.802586] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2945.803165] ? trace_hardirqs_on+0x5b/0x180 [ 2945.803645] __device_release_driver+0x5cd/0x770 [ 2945.804175] device_release_driver+0x26/0x40 [ 2945.804657] mac80211_hwsim_new_radio+0x29a2/0x4250 [ 2945.805205] ? mark_held_locks+0x9e/0xe0 [ 2945.805661] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2945.806186] hwsim_new_radio_nl+0x991/0x1080 [ 2945.806676] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2945.807261] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2945.807979] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2945.808688] genl_family_rcv_msg_doit+0x22d/0x330 [ 2945.809227] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2945.809949] ? cap_capable+0x1cd/0x230 [ 2945.810404] ? ns_capable+0xe2/0x110 [ 2945.810822] genl_rcv_msg+0x33c/0x5a0 [ 2945.811242] ? genl_get_cmd+0x480/0x480 [ 2945.811681] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2945.812253] ? lock_release+0x680/0x680 [ 2945.812690] ? netlink_deliver_tap+0xf4/0xcd0 [ 2945.813181] netlink_rcv_skb+0x14b/0x430 [ 2945.813631] ? genl_get_cmd+0x480/0x480 [ 2945.814065] ? netlink_ack+0xab0/0xab0 [ 2945.814516] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2945.815024] ? is_vmalloc_addr+0x7b/0xb0 [ 2945.815472] genl_rcv+0x24/0x40 [ 2945.815838] netlink_unicast+0x549/0x7f0 [ 2945.816294] ? netlink_attachskb+0x870/0x870 [ 2945.816779] ? __virt_addr_valid+0x128/0x350 [ 2945.817273] netlink_sendmsg+0x90f/0xdf0 [ 2945.817732] ? netlink_unicast+0x7f0/0x7f0 [ 2945.818213] ? netlink_unicast+0x7f0/0x7f0 [ 2945.818675] __sock_sendmsg+0x154/0x190 [ 2945.819113] ____sys_sendmsg+0x70d/0x870 [ 2945.819565] ? sock_write_iter+0x3d0/0x3d0 [ 2945.820033] ? do_recvmmsg+0x6d0/0x6d0 [ 2945.820459] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2945.821033] ? lock_downgrade+0x6d0/0x6d0 [ 2945.821494] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2945.822064] ? SOFTIRQ_verbose+0x10/0x10 [ 2945.822525] ___sys_sendmsg+0xf3/0x170 [ 2945.822960] ? sendmsg_copy_msghdr+0x160/0x160 [ 2945.823466] ? lock_downgrade+0x6d0/0x6d0 [ 2945.823921] ? find_held_lock+0x2c/0x110 [ 2945.824374] ? __fget_files+0x296/0x4c0 [ 2945.824818] ? __fget_light+0xea/0x290 [ 2945.825250] __sys_sendmsg+0xe5/0x1b0 [ 2945.825669] ? __sys_sendmsg_sock+0x40/0x40 [ 2945.826143] ? rcu_read_lock_any_held+0x75/0xa0 [ 2945.826690] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2945.827264] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2945.827828] ? trace_hardirqs_on+0x5b/0x180 [ 2945.828304] do_syscall_64+0x33/0x40 [ 2945.828723] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2945.829290] RIP: 0033:0x7fa741f89b19 [ 2945.829697] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2945.831740] RSP: 002b:00007fa73f4ff188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2945.832582] RAX: ffffffffffffffda RBX: 00007fa74209cf60 RCX: 00007fa741f89b19 [ 2945.833376] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2945.834164] RBP: 00007fa73f4ff1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2945.834954] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2945.835748] R13: 00007ffd248a3bcf R14: 00007fa73f4ff300 R15: 0000000000022000 [ 2945.857242] FAULT_INJECTION: forcing a failure. [ 2945.857242] name failslab, interval 1, probability 0, space 0, times 0 [ 2945.858620] CPU: 0 PID: 16351 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 2945.859392] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2945.860303] Call Trace: [ 2945.860602] dump_stack+0x107/0x167 [ 2945.861013] should_fail.cold+0x5/0xa [ 2945.861440] should_failslab+0x5/0x20 [ 2945.861872] __kmalloc_node_track_caller+0x74/0x3b0 [ 2945.862436] ? alloc_uevent_skb+0x7b/0x210 [ 2945.862915] __alloc_skb+0xb1/0x5b0 [ 2945.863321] alloc_uevent_skb+0x7b/0x210 [ 2945.863771] kobject_uevent_env+0x99a/0xf90 [ 2945.864249] ? software_node_notify+0xf8/0x2f0 [ 2945.864758] device_del+0xa8f/0x1180 [ 2945.865173] ? uevent_show+0x370/0x370 [ 2945.865604] ? wait_for_completion_io+0x270/0x270 [ 2945.866145] device_unregister+0x11/0x30 [ 2945.866603] mac80211_hwsim_new_radio+0x414/0x4250 [ 2945.867168] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2945.867692] hwsim_new_radio_nl+0x991/0x1080 [ 2945.868176] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2945.868765] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2945.869493] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2945.870235] genl_family_rcv_msg_doit+0x22d/0x330 [ 2945.870769] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2945.871494] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2945.872064] ? cap_capable+0x1cd/0x230 [ 2945.872505] ? ns_capable+0xe2/0x110 [ 2945.872915] genl_rcv_msg+0x33c/0x5a0 [ 2945.873338] ? genl_get_cmd+0x480/0x480 [ 2945.873778] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2945.874364] ? lock_release+0x680/0x680 [ 2945.874803] ? netlink_deliver_tap+0xf4/0xcd0 [ 2945.875299] netlink_rcv_skb+0x14b/0x430 [ 2945.875742] ? genl_get_cmd+0x480/0x480 [ 2945.876182] ? netlink_ack+0xab0/0xab0 [ 2945.876619] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2945.877123] ? is_vmalloc_addr+0x7b/0xb0 [ 2945.877576] genl_rcv+0x24/0x40 [ 2945.877948] netlink_unicast+0x549/0x7f0 [ 2945.878412] ? netlink_attachskb+0x870/0x870 [ 2945.878901] ? __virt_addr_valid+0x128/0x350 [ 2945.879397] netlink_sendmsg+0x90f/0xdf0 [ 2945.879854] ? netlink_unicast+0x7f0/0x7f0 [ 2945.880328] ? netlink_unicast+0x7f0/0x7f0 [ 2945.880797] __sock_sendmsg+0x154/0x190 [ 2945.881259] ____sys_sendmsg+0x70d/0x870 [ 2945.881704] ? sock_write_iter+0x3d0/0x3d0 [ 2945.882174] ? do_recvmmsg+0x6d0/0x6d0 [ 2945.882612] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2945.883193] ? lock_downgrade+0x6d0/0x6d0 [ 2945.883650] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2945.884225] ? SOFTIRQ_verbose+0x10/0x10 [ 2945.884677] ___sys_sendmsg+0xf3/0x170 [ 2945.885112] ? sendmsg_copy_msghdr+0x160/0x160 [ 2945.885618] ? lock_downgrade+0x6d0/0x6d0 [ 2945.886078] ? find_held_lock+0x2c/0x110 [ 2945.886534] ? __fget_files+0x296/0x4c0 [ 2945.886980] ? __fget_light+0xea/0x290 [ 2945.887416] __sys_sendmsg+0xe5/0x1b0 [ 2945.887830] ? __sys_sendmsg_sock+0x40/0x40 [ 2945.888311] ? rcu_read_lock_any_held+0x75/0xa0 [ 2945.888837] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2945.889415] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2945.889977] ? trace_hardirqs_on+0x5b/0x180 [ 2945.890474] do_syscall_64+0x33/0x40 [ 2945.890879] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2945.891440] RIP: 0033:0x7fd0ea82fb19 [ 2945.891857] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2945.893865] RSP: 002b:00007fd0e7da5188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2945.894706] RAX: ffffffffffffffda RBX: 00007fd0ea942f60 RCX: 00007fd0ea82fb19 [ 2945.895500] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2945.896284] RBP: 00007fd0e7da51d0 R08: 0000000000000000 R09: 0000000000000000 [ 2945.897072] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 2945.897868] R13: 00007ffedd9ef45f R14: 00007fd0e7da5300 R15: 0000000000022000 10:10:52 executing program 2: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 92) r2 = creat(0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:10:52 executing program 0: perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0x8f, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat2(0xffffffffffffffff, &(0x7f0000000200)='./file1\x00', &(0x7f0000000240)={0x180000, 0x40}, 0x18) perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x1f, 0x5, 0x8, 0x0, 0x0, 0x6, 0x0, 0x4, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000, 0x6, @perf_bp={&(0x7f0000000140), 0x4}, 0x1201, 0xfffffffffffffffa, 0x2, 0x5, 0x0, 0x9, 0x9, 0x0, 0x5, 0x0, 0xffe0000000000}, 0xffffffffffffffff, 0xd, r0, 0x8) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x100000001) 10:10:52 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:10:52 executing program 1: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)={0x1c, 0x5e, 0xc21, 0x0, 0x0, {0x0, 0x2}, [@generic='\x00\x00\x00\x00\x00']}, 0x1c}}, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]}) umount2(0x0, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000040), &(0x7f0000000080)=0xc) sendmsg$nl_xfrm(r0, &(0x7f0000002e00)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="3c010000160001000000000000000000fc010000000000000000000000000000fe80000000000000004906ec95aa6b67eadf3e000000000000bb000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000032000000ff02000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004c001200726663343130362867636d28616573292900"/244], 0x13c}}, 0x4004040) 10:10:52 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1cd92f001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:10:52 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0068001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:10:52 executing program 3: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 33) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:10:52 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a541, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) [ 2959.703551] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 2959.704736] System zones: 0-7 [ 2959.705370] FAULT_INJECTION: forcing a failure. [ 2959.705370] name failslab, interval 1, probability 0, space 0, times 0 [ 2959.708081] CPU: 0 PID: 16359 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 2959.709466] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2959.711139] Call Trace: [ 2959.711673] dump_stack+0x107/0x167 [ 2959.712407] should_fail.cold+0x5/0xa [ 2959.713179] ? create_object.isra.0+0x3a/0xa20 [ 2959.714113] should_failslab+0x5/0x20 [ 2959.714891] kmem_cache_alloc+0x5b/0x310 [ 2959.715714] ? __is_insn_slot_addr+0x123/0x290 [ 2959.716651] create_object.isra.0+0x3a/0xa20 [ 2959.717550] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2959.718606] __kmalloc_track_caller+0x177/0x370 [ 2959.719557] ? kstrdup_const+0x53/0x80 [ 2959.720354] kstrdup+0x36/0x70 [ 2959.721005] kstrdup_const+0x53/0x80 [ 2959.721765] __kernfs_new_node+0x9d/0x860 [ 2959.722632] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 2959.723593] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2959.724667] ? SOFTIRQ_verbose+0x10/0x10 [ 2959.725518] kernfs_create_dir_ns+0x9c/0x230 [ 2959.726446] sysfs_create_dir_ns+0x127/0x290 [ 2959.727348] ? sysfs_create_mount_point+0xb0/0xb0 [ 2959.728337] ? rwlock_bug.part.0+0x90/0x90 [ 2959.729203] ? class_dir_child_ns_type+0x9/0x60 [ 2959.730151] kobject_add_internal+0x25e/0xa30 [ 2959.730485] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 2959.731076] kobject_add+0x150/0x1c0 [ 2959.731099] ? kset_create_and_add+0x1a0/0x1a0 [ 2959.733724] ? lockdep_init_map_type+0x2c7/0x780 [ 2959.734706] device_add+0x35a/0x1c50 [ 2959.735472] ? devlink_add_symlinks+0x970/0x970 [ 2959.736432] device_create_groups_vargs+0x207/0x280 [ 2959.737454] device_create+0xdc/0x120 [ 2959.738248] ? device_create_groups_vargs+0x280/0x280 [ 2959.739301] ? init_timer_key+0x12a/0x240 [ 2959.740149] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 2959.741117] mac80211_hwsim_new_radio+0x352/0x4250 [ 2959.742091] ? ____sys_sendmsg+0x70d/0x870 [ 2959.742946] ? ___sys_sendmsg+0xf3/0x170 [ 2959.743758] ? __sys_sendmsg+0xe5/0x1b0 [ 2959.744558] ? do_syscall_64+0x33/0x40 [ 2959.745334] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2959.746421] ? lock_acquire+0x197/0x470 [ 2959.747228] ? create_object.isra.0+0x3ad/0xa20 [ 2959.748181] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2959.749126] hwsim_new_radio_nl+0x991/0x1080 [ 2959.750038] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2959.751122] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2959.752441] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2959.753743] genl_family_rcv_msg_doit+0x22d/0x330 [ 2959.754714] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2959.756038] ? cap_capable+0x1cd/0x230 [ 2959.756840] ? ns_capable+0xe2/0x110 [ 2959.757604] genl_rcv_msg+0x33c/0x5a0 [ 2959.758387] ? genl_get_cmd+0x480/0x480 [ 2959.759197] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2959.760245] ? lock_release+0x680/0x680 [ 2959.761058] ? netlink_deliver_tap+0xf4/0xcd0 [ 2959.761969] netlink_rcv_skb+0x14b/0x430 [ 2959.762808] ? genl_get_cmd+0x480/0x480 [ 2959.763609] ? netlink_ack+0xab0/0xab0 [ 2959.764411] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2959.765332] ? is_vmalloc_addr+0x7b/0xb0 [ 2959.766155] genl_rcv+0x24/0x40 [ 2959.766853] netlink_unicast+0x549/0x7f0 [ 2959.767686] ? netlink_attachskb+0x870/0x870 [ 2959.768582] ? __virt_addr_valid+0x128/0x350 [ 2959.769486] netlink_sendmsg+0x90f/0xdf0 [ 2959.770313] ? netlink_unicast+0x7f0/0x7f0 [ 2959.771207] ? netlink_unicast+0x7f0/0x7f0 [ 2959.772062] __sock_sendmsg+0x154/0x190 [ 2959.772881] ____sys_sendmsg+0x70d/0x870 [ 2959.773715] ? sock_write_iter+0x3d0/0x3d0 [ 2959.774577] ? do_recvmmsg+0x6d0/0x6d0 [ 2959.775374] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2959.776439] ? lock_downgrade+0x6d0/0x6d0 [ 2959.777302] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2959.778371] ? SOFTIRQ_verbose+0x10/0x10 [ 2959.779204] ___sys_sendmsg+0xf3/0x170 [ 2959.779996] ? sendmsg_copy_msghdr+0x160/0x160 [ 2959.780932] ? lock_downgrade+0x6d0/0x6d0 [ 2959.781783] ? find_held_lock+0x2c/0x110 [ 2959.782641] ? __fget_files+0x296/0x4c0 [ 2959.783463] ? __fget_light+0xea/0x290 [ 2959.784264] __sys_sendmsg+0xe5/0x1b0 [ 2959.785039] ? __sys_sendmsg_sock+0x40/0x40 [ 2959.785913] ? rcu_read_lock_any_held+0x75/0xa0 [ 2959.786902] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2959.787966] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2959.789017] ? trace_hardirqs_on+0x5b/0x180 [ 2959.789891] do_syscall_64+0x33/0x40 [ 2959.790856] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2959.791950] RIP: 0033:0x7f46fba00b19 [ 2959.792716] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2959.796403] RSP: 002b:00007f46f8f76188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2959.797958] RAX: ffffffffffffffda RBX: 00007f46fbb13f60 RCX: 00007f46fba00b19 [ 2959.799421] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2959.800884] RBP: 00007f46f8f761d0 R08: 0000000000000000 R09: 0000000000000000 [ 2959.802361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2959.803828] R13: 00007ffe81962e7f R14: 00007f46f8f76300 R15: 0000000000022000 10:10:52 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a542, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) [ 2959.862179] netlink: 68 bytes leftover after parsing attributes in process `syz-executor.1'. [ 2959.885290] FAULT_INJECTION: forcing a failure. [ 2959.885290] name failslab, interval 1, probability 0, space 0, times 0 [ 2959.886742] CPU: 1 PID: 16371 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 2959.887517] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2959.888582] Call Trace: [ 2959.888956] dump_stack+0x107/0x167 [ 2959.889367] should_fail.cold+0x5/0xa [ 2959.889779] ? create_object.isra.0+0x3a/0xa20 [ 2959.890284] should_failslab+0x5/0x20 [ 2959.890697] kmem_cache_alloc+0x5b/0x310 [ 2959.891149] create_object.isra.0+0x3a/0xa20 [ 2959.891623] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2959.892196] __kmalloc_node_track_caller+0x1a6/0x3b0 [ 2959.892734] ? alloc_uevent_skb+0x7b/0x210 [ 2959.893199] __alloc_skb+0xb1/0x5b0 [ 2959.893601] alloc_uevent_skb+0x7b/0x210 [ 2959.894055] kobject_uevent_env+0x99a/0xf90 [ 2959.894562] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2959.895128] ? trace_hardirqs_on+0x5b/0x180 [ 2959.895601] __device_release_driver+0x5cd/0x770 [ 2959.896123] device_release_driver+0x26/0x40 [ 2959.896609] mac80211_hwsim_new_radio+0x29a2/0x4250 [ 2959.897170] ? mark_held_locks+0x9e/0xe0 [ 2959.897622] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2959.898134] hwsim_new_radio_nl+0x991/0x1080 [ 2959.898623] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2959.899209] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2959.899935] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2959.900666] genl_family_rcv_msg_doit+0x22d/0x330 [ 2959.901201] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2959.901909] ? cap_capable+0x1cd/0x230 [ 2959.902357] ? ns_capable+0xe2/0x110 [ 2959.902783] genl_rcv_msg+0x33c/0x5a0 [ 2959.903207] ? genl_get_cmd+0x480/0x480 [ 2959.903642] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2959.904215] ? lock_release+0x680/0x680 [ 2959.904643] ? netlink_deliver_tap+0xf4/0xcd0 [ 2959.905125] netlink_rcv_skb+0x14b/0x430 [ 2959.905554] ? genl_get_cmd+0x480/0x480 [ 2959.905999] ? netlink_ack+0xab0/0xab0 [ 2959.906438] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2959.906937] ? is_vmalloc_addr+0x7b/0xb0 [ 2959.907383] genl_rcv+0x24/0x40 [ 2959.907732] netlink_unicast+0x549/0x7f0 [ 2959.908200] ? netlink_attachskb+0x870/0x870 [ 2959.908684] ? __virt_addr_valid+0x128/0x350 [ 2959.909167] netlink_sendmsg+0x90f/0xdf0 [ 2959.909619] ? netlink_unicast+0x7f0/0x7f0 [ 2959.910083] ? netlink_unicast+0x7f0/0x7f0 [ 2959.910566] __sock_sendmsg+0x154/0x190 [ 2959.911016] ____sys_sendmsg+0x70d/0x870 [ 2959.911465] ? sock_write_iter+0x3d0/0x3d0 [ 2959.911926] ? do_recvmmsg+0x6d0/0x6d0 [ 2959.912345] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2959.912941] ? lock_downgrade+0x6d0/0x6d0 [ 2959.913395] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2959.913971] ? SOFTIRQ_verbose+0x10/0x10 [ 2959.914425] ___sys_sendmsg+0xf3/0x170 [ 2959.914859] ? sendmsg_copy_msghdr+0x160/0x160 [ 2959.915369] ? lock_downgrade+0x6d0/0x6d0 [ 2959.915820] ? find_held_lock+0x2c/0x110 [ 2959.916292] ? __fget_files+0x296/0x4c0 [ 2959.916726] ? __fget_light+0xea/0x290 [ 2959.917170] __sys_sendmsg+0xe5/0x1b0 [ 2959.917589] ? __sys_sendmsg_sock+0x40/0x40 [ 2959.918050] ? rcu_read_lock_any_held+0x75/0xa0 [ 2959.918585] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2959.919178] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2959.919751] ? trace_hardirqs_on+0x5b/0x180 [ 2959.920228] do_syscall_64+0x33/0x40 [ 2959.920630] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2959.921186] RIP: 0033:0x7fa741f89b19 [ 2959.921591] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2959.923657] RSP: 002b:00007fa73f4ff188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2959.924488] RAX: ffffffffffffffda RBX: 00007fa74209cf60 RCX: 00007fa741f89b19 [ 2959.925259] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2959.926056] RBP: 00007fa73f4ff1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2959.926824] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2959.927590] R13: 00007ffd248a3bcf R14: 00007fa73f4ff300 R15: 0000000000022000 [ 2959.943541] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 2959.947120] System zones: 0-7 [ 2959.948837] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue 10:10:52 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1cd930001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:11:08 executing program 1: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/schedstat\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x3, 0x9, 0x3, 0x5d, 0x0, 0xa67e, 0x20000, 0xa, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x2, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, @perf_config_ext={0x3, 0x8}, 0x4400, 0xf245, 0x3, 0x9, 0x5, 0x9, 0x81, 0x0, 0x9, 0x0, 0x9}, 0xffffffffffffffff, 0xd, r2, 0x0) ioctl$BTRFS_IOC_BALANCE_V2(r2, 0xc4009420, &(0x7f0000000140)={0x0, 0x2, {0x1, @usage=0x2, 0x0, 0x5, 0x9, 0x800, 0x4, 0x9, 0x21, @struct={0x9, 0x72}, 0x0, 0x0, [0x2, 0x240000, 0x9, 0x6, 0x62c, 0x3ff]}, {0x3f, @struct={0x0, 0x4}, 0x0, 0x1, 0x9f, 0x8, 0x2e8a, 0x4, 0x13, @struct={0x4, 0xa71}, 0x800, 0xfff, [0x8, 0x3, 0x101, 0x3, 0x1, 0xe000000000000000]}, {0x1, @struct={0x3ff, 0x4}, 0x0, 0x2, 0xe603, 0xffffffffffffff4e, 0xfffffffffffffffb, 0x9b, 0x3, @usage=0xde, 0x1, 0x5e8f, [0x7fe00, 0x3f, 0xffffffff, 0x4, 0xb0ec, 0x80000000]}, {0x9, 0x7, 0xffffffffffffff7f}}) ioctl$BTRFS_IOC_DEV_INFO(r1, 0xd000941e, &(0x7f0000000540)={r3, "517f04be8c6b3e620ccc3ee5ba9f981f"}) sendfile(r0, r1, 0x0, 0x100000001) 10:11:08 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c006c001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:11:08 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1cd931001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:11:08 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a543, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) 10:11:08 executing program 2: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 93) r2 = creat(0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:11:08 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:11:08 executing program 3: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 34) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:11:08 executing program 0: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.net/cgroup.procs\x00', 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./cgroup.net/cgroup.procs\x00', 0x2, 0x0) sendfile(r1, r0, &(0x7f0000000000)=0x80, 0x6) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan0\x00', 0x0}) syz_mount_image$msdos(&(0x7f00000013c0), &(0x7f0000001400)='./file1\x00', 0x0, 0x0, &(0x7f0000001900), 0x50, &(0x7f0000000280)=ANY=[@ANYRES16=r3, @ANYRESDEC, @ANYBLOB="d2cc4c67822b08998de040ffc51f173291a59a045d062e7a1999a402000000001cc8c7cccdf6919db5ed7ff099e809bb02809c8476c1916f5c771266280c2cf41442432f7ab601b0d59b0900c19af659e94f5fdf085f43ec8600"]) r4 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x46e2, 0x0) perf_event_open(&(0x7f0000000400)={0x4, 0x80, 0x0, 0x80, 0x5b, 0x5, 0x0, 0x0, 0x20108, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0xfffff712, 0x2, @perf_bp={&(0x7f00000003c0), 0x5}, 0x13000, 0x40, 0xa0, 0x9, 0x80000000, 0x2, 0x1, 0x0, 0x9, 0x0, 0x7}, 0xffffffffffffffff, 0xa, 0xffffffffffffffff, 0x2) r5 = creat(&(0x7f0000000000)='./file2\x00', 0x0) fcntl$setlease(r5, 0x400, 0x1) fcntl$setown(r5, 0x8, 0xffffffffffffffff) fcntl$setsig(r5, 0xa, 0x2e) openat2$dir(0xffffffffffffff9c, &(0x7f0000000480)='./file1\x00', &(0x7f00000004c0)={0x68080, 0xa, 0x2}, 0x18) close(r5) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r5, 0x2405, r0) ioctl$FS_IOC_FSSETXATTR(r4, 0x40086602, &(0x7f0000000000)) r6 = creat(&(0x7f0000000040)='./file0\x00', 0x0) sendmsg$NL80211_CMD_GET_SCAN(r4, &(0x7f0000000380)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)={0x20, r2, 0x2, 0x70bd2c, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x25, 0xd}}}}, [""]}, 0x20}, 0x1, 0x0, 0x0, 0x20040805}, 0x4000000) write$binfmt_elf64(r6, &(0x7f0000000180)=ANY=[@ANYRESOCT, @ANYRES32, @ANYBLOB="c96f19de8c5d09002662090e02f6010ca2ecf8c44efb47a796d74f9d53502a56d410c7492a47e039fa8aaf04d1de88c2529cd64bce7706b565449daaa5d23d207e471fbadde1435500d083c6edad3927d1775624a43e07689f7bbd821174b429d5342d41e33fc112d74c3e764182076079a2acff4c925cb0226b60342c78ed0b70d0d4f855df68bdbbf88d82e7fb402597ac51c6a38eb00d27488eb840e0180918c5ffcd9033d31b4c9be2f636be2eb3c75bfa11f58d83003a61369e0000000000e5db78c606000001008a08f0db430b1ea94d5518f5e6e3786f427246c00688af3aa770851aba", @ANYRESHEX=r4, @ANYRESDEC, @ANYBLOB="a99c76d316149599336120081b4e5def127f6ae72dbce226cad6a9c0564ce5dbdba126b533307616c7bb70c85cfedb03a2cd0271fae7cee541"], 0xfdef) [ 2976.185879] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 2976.187179] System zones: 0-7 [ 2976.190145] FAULT_INJECTION: forcing a failure. [ 2976.190145] name failslab, interval 1, probability 0, space 0, times 0 [ 2976.193077] CPU: 0 PID: 16404 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 2976.194587] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2976.196264] Call Trace: [ 2976.196825] dump_stack+0x107/0x167 [ 2976.197575] should_fail.cold+0x5/0xa [ 2976.198350] ? __kernfs_new_node+0xd4/0x860 [ 2976.199233] should_failslab+0x5/0x20 [ 2976.200002] kmem_cache_alloc+0x5b/0x310 [ 2976.200846] __kernfs_new_node+0xd4/0x860 [ 2976.201694] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 2976.202702] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2976.203769] ? SOFTIRQ_verbose+0x10/0x10 [ 2976.204627] kernfs_create_dir_ns+0x9c/0x230 [ 2976.205541] sysfs_create_dir_ns+0x127/0x290 [ 2976.206449] ? sysfs_create_mount_point+0xb0/0xb0 [ 2976.207441] ? rwlock_bug.part.0+0x90/0x90 [ 2976.208319] ? class_dir_child_ns_type+0x9/0x60 [ 2976.209282] kobject_add_internal+0x25e/0xa30 [ 2976.210216] kobject_add+0x150/0x1c0 [ 2976.210996] ? kset_create_and_add+0x1a0/0x1a0 [ 2976.211935] ? lockdep_init_map_type+0x2c7/0x780 [ 2976.212945] device_add+0x35a/0x1c50 [ 2976.213714] ? devlink_add_symlinks+0x970/0x970 [ 2976.214683] device_create_groups_vargs+0x207/0x280 [ 2976.215705] device_create+0xdc/0x120 [ 2976.216484] ? device_create_groups_vargs+0x280/0x280 [ 2976.217531] ? init_timer_key+0x12a/0x240 [ 2976.218389] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 2976.219386] mac80211_hwsim_new_radio+0x352/0x4250 [ 2976.220377] ? ____sys_sendmsg+0x70d/0x870 [ 2976.221232] ? ___sys_sendmsg+0xf3/0x170 [ 2976.222057] ? __sys_sendmsg+0xe5/0x1b0 [ 2976.222736] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 2976.222878] ? do_syscall_64+0x33/0x40 [ 2976.224634] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2976.225714] ? lock_acquire+0x197/0x470 [ 2976.226533] ? create_object.isra.0+0x3ad/0xa20 [ 2976.227513] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2976.228487] hwsim_new_radio_nl+0x991/0x1080 [ 2976.229404] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2976.230493] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2976.231836] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2976.233168] genl_family_rcv_msg_doit+0x22d/0x330 [ 2976.234156] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2976.235509] ? cap_capable+0x1cd/0x230 [ 2976.236335] ? ns_capable+0xe2/0x110 [ 2976.237105] genl_rcv_msg+0x33c/0x5a0 [ 2976.237896] ? genl_get_cmd+0x480/0x480 [ 2976.238729] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2976.239808] ? lock_release+0x680/0x680 [ 2976.240627] ? netlink_deliver_tap+0xf4/0xcd0 [ 2976.241563] netlink_rcv_skb+0x14b/0x430 [ 2976.242384] ? genl_get_cmd+0x480/0x480 [ 2976.243210] ? netlink_ack+0xab0/0xab0 [ 2976.244030] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2976.244975] ? is_vmalloc_addr+0x7b/0xb0 [ 2976.245808] genl_rcv+0x24/0x40 [ 2976.246482] netlink_unicast+0x549/0x7f0 [ 2976.247331] ? netlink_attachskb+0x870/0x870 [ 2976.248214] ? __virt_addr_valid+0x128/0x350 [ 2976.249120] netlink_sendmsg+0x90f/0xdf0 [ 2976.249946] ? netlink_unicast+0x7f0/0x7f0 [ 2976.250843] ? netlink_unicast+0x7f0/0x7f0 [ 2976.251698] __sock_sendmsg+0x154/0x190 [ 2976.252526] ____sys_sendmsg+0x70d/0x870 [ 2976.253373] ? sock_write_iter+0x3d0/0x3d0 [ 2976.254248] ? do_recvmmsg+0x6d0/0x6d0 [ 2976.255059] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2976.256134] ? lock_downgrade+0x6d0/0x6d0 [ 2976.256988] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2976.258064] ? SOFTIRQ_verbose+0x10/0x10 [ 2976.258919] ___sys_sendmsg+0xf3/0x170 [ 2976.259727] ? sendmsg_copy_msghdr+0x160/0x160 [ 2976.260683] ? lock_downgrade+0x6d0/0x6d0 [ 2976.261537] ? find_held_lock+0x2c/0x110 [ 2976.262374] ? __fget_files+0x296/0x4c0 [ 2976.263189] ? __fget_light+0xea/0x290 [ 2976.263976] __sys_sendmsg+0xe5/0x1b0 [ 2976.264743] ? __sys_sendmsg_sock+0x40/0x40 [ 2976.265612] ? rcu_read_lock_any_held+0x75/0xa0 [ 2976.266601] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2976.267682] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2976.268745] ? trace_hardirqs_on+0x5b/0x180 [ 2976.269626] do_syscall_64+0x33/0x40 [ 2976.270385] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2976.271438] RIP: 0033:0x7f46fba00b19 [ 2976.272198] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2976.275964] RSP: 002b:00007f46f8f76188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2976.277504] RAX: ffffffffffffffda RBX: 00007f46fbb13f60 RCX: 00007f46fba00b19 [ 2976.278989] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2976.280449] RBP: 00007f46f8f761d0 R08: 0000000000000000 R09: 0000000000000000 [ 2976.281901] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2976.283359] R13: 00007ffe81962e7f R14: 00007f46f8f76300 R15: 0000000000022000 [ 2976.285387] kobject_add_internal failed for hwsim1220 (error: -12 parent: mac80211_hwsim) 10:11:08 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a544, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) [ 2976.364262] FAULT_INJECTION: forcing a failure. [ 2976.364262] name failslab, interval 1, probability 0, space 0, times 0 10:11:08 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0074001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2976.365948] CPU: 1 PID: 16418 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 2976.366873] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2976.367812] Call Trace: [ 2976.368120] dump_stack+0x107/0x167 [ 2976.368536] should_fail.cold+0x5/0xa [ 2976.368969] ? create_object.isra.0+0x3a/0xa20 [ 2976.369485] should_failslab+0x5/0x20 [ 2976.369911] kmem_cache_alloc+0x5b/0x310 [ 2976.370375] ? find_held_lock+0x2c/0x110 10:11:08 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1cd932001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2976.370846] create_object.isra.0+0x3a/0xa20 [ 2976.371435] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2976.372003] kmem_cache_alloc+0x159/0x310 [ 2976.372484] skb_clone+0x14f/0x3d0 [ 2976.372898] netlink_broadcast_filtered+0xa08/0xdc0 [ 2976.373475] netlink_broadcast+0x35/0x50 [ 2976.373937] kobject_uevent_env+0x93d/0xf90 [ 2976.374437] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2976.375033] ? trace_hardirqs_on+0x5b/0x180 [ 2976.375526] __device_release_driver+0x5cd/0x770 [ 2976.376069] device_release_driver+0x26/0x40 [ 2976.376576] mac80211_hwsim_new_radio+0x29a2/0x4250 [ 2976.377121] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2976.377654] hwsim_new_radio_nl+0x991/0x1080 [ 2976.378152] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2976.378765] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2976.379497] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2976.380216] genl_family_rcv_msg_doit+0x22d/0x330 [ 2976.380770] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2976.381514] ? cap_capable+0x1cd/0x230 [ 2976.381964] ? ns_capable+0xe2/0x110 [ 2976.382392] genl_rcv_msg+0x33c/0x5a0 [ 2976.382858] ? genl_get_cmd+0x480/0x480 [ 2976.383332] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2976.383948] ? lock_release+0x680/0x680 [ 2976.384428] ? netlink_deliver_tap+0xf4/0xcd0 [ 2976.384956] netlink_rcv_skb+0x14b/0x430 [ 2976.385439] ? genl_get_cmd+0x480/0x480 [ 2976.385857] ? netlink_ack+0xab0/0xab0 [ 2976.386327] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2976.386887] ? is_vmalloc_addr+0x7b/0xb0 [ 2976.387368] genl_rcv+0x24/0x40 [ 2976.387759] netlink_unicast+0x549/0x7f0 [ 2976.388193] ? netlink_attachskb+0x870/0x870 [ 2976.388716] ? __virt_addr_valid+0x128/0x350 [ 2976.389238] netlink_sendmsg+0x90f/0xdf0 [ 2976.389724] ? netlink_unicast+0x7f0/0x7f0 [ 2976.390230] ? netlink_unicast+0x7f0/0x7f0 [ 2976.390746] __sock_sendmsg+0x154/0x190 [ 2976.391215] ____sys_sendmsg+0x70d/0x870 [ 2976.391694] ? sock_write_iter+0x3d0/0x3d0 [ 2976.392189] ? do_recvmmsg+0x6d0/0x6d0 [ 2976.392650] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2976.393288] ___sys_sendmsg+0xf3/0x170 [ 2976.393754] ? sendmsg_copy_msghdr+0x160/0x160 [ 2976.394302] ? lock_downgrade+0x6d0/0x6d0 [ 2976.394805] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2976.395425] ? trace_hardirqs_on+0x5b/0x180 [ 2976.395884] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2976.396531] ? __fget_files+0x296/0x4c0 [ 2976.397012] ? __fget_light+0xea/0x290 [ 2976.397466] __sys_sendmsg+0xe5/0x1b0 [ 2976.397916] ? __sys_sendmsg_sock+0x40/0x40 [ 2976.398422] ? trace_hardirqs_on+0x5b/0x180 [ 2976.398960] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2976.399559] ? syscall_enter_from_user_mode+0x27/0x50 [ 2976.400169] do_syscall_64+0x33/0x40 [ 2976.400605] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2976.401206] RIP: 0033:0x7fa741f89b19 [ 2976.401661] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2976.403850] RSP: 002b:00007fa73f4ff188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2976.404766] RAX: ffffffffffffffda RBX: 00007fa74209cf60 RCX: 00007fa741f89b19 [ 2976.405622] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2976.406444] RBP: 00007fa73f4ff1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2976.407307] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2976.408168] R13: 00007ffd248a3bcf R14: 00007fa73f4ff300 R15: 0000000000022000 10:11:08 executing program 3: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 35) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2976.504065] FAULT_INJECTION: forcing a failure. [ 2976.504065] name failslab, interval 1, probability 0, space 0, times 0 [ 2976.505321] CPU: 1 PID: 16442 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 2976.506072] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2976.506922] Call Trace: [ 2976.507220] dump_stack+0x107/0x167 [ 2976.507628] should_fail.cold+0x5/0xa [ 2976.508049] ? create_object.isra.0+0x3a/0xa20 [ 2976.508548] should_failslab+0x5/0x20 [ 2976.508965] kmem_cache_alloc+0x5b/0x310 [ 2976.509414] create_object.isra.0+0x3a/0xa20 [ 2976.509890] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2976.510402] kmem_cache_alloc+0x159/0x310 [ 2976.510893] __kernfs_new_node+0xd4/0x860 [ 2976.511391] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 2976.511932] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2976.512501] ? SOFTIRQ_verbose+0x10/0x10 [ 2976.512964] kernfs_create_dir_ns+0x9c/0x230 [ 2976.513437] sysfs_create_dir_ns+0x127/0x290 [ 2976.513927] ? sysfs_create_mount_point+0xb0/0xb0 [ 2976.514454] ? rwlock_bug.part.0+0x90/0x90 [ 2976.514899] ? class_dir_child_ns_type+0x9/0x60 [ 2976.515412] kobject_add_internal+0x25e/0xa30 [ 2976.515910] kobject_add+0x150/0x1c0 [ 2976.516333] ? kset_create_and_add+0x1a0/0x1a0 [ 2976.516844] ? lockdep_init_map_type+0x2c7/0x780 [ 2976.517387] device_add+0x35a/0x1c50 [ 2976.517804] ? devlink_add_symlinks+0x970/0x970 [ 2976.518342] device_create_groups_vargs+0x207/0x280 [ 2976.518854] device_create+0xdc/0x120 [ 2976.519281] ? device_create_groups_vargs+0x280/0x280 [ 2976.519814] ? init_timer_key+0x12a/0x240 [ 2976.520280] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 2976.520771] mac80211_hwsim_new_radio+0x352/0x4250 [ 2976.521323] ? __nla_validate_parse+0x77a/0x2b10 [ 2976.521809] ? __sanitizer_cov_trace_switch+0x4b/0x80 [ 2976.522386] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2976.522921] hwsim_new_radio_nl+0x991/0x1080 [ 2976.523418] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2976.524007] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2976.524746] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2976.525485] genl_family_rcv_msg_doit+0x22d/0x330 [ 2976.526034] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2976.526788] ? cap_capable+0x1cd/0x230 [ 2976.527241] ? ns_capable+0xe2/0x110 [ 2976.527666] genl_rcv_msg+0x33c/0x5a0 [ 2976.528097] ? genl_get_cmd+0x480/0x480 [ 2976.528544] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2976.529138] ? lock_release+0x680/0x680 [ 2976.529588] ? netlink_deliver_tap+0xf4/0xcd0 [ 2976.530089] netlink_rcv_skb+0x14b/0x430 [ 2976.530557] ? genl_get_cmd+0x480/0x480 [ 2976.531008] ? netlink_ack+0xab0/0xab0 [ 2976.531461] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2976.531930] ? is_vmalloc_addr+0x7b/0xb0 [ 2976.532387] genl_rcv+0x24/0x40 [ 2976.532752] netlink_unicast+0x549/0x7f0 [ 2976.533219] ? netlink_attachskb+0x870/0x870 [ 2976.533713] ? __virt_addr_valid+0x128/0x350 [ 2976.534219] netlink_sendmsg+0x90f/0xdf0 [ 2976.534684] ? netlink_unicast+0x7f0/0x7f0 [ 2976.535170] ? netlink_unicast+0x7f0/0x7f0 [ 2976.535649] __sock_sendmsg+0x154/0x190 [ 2976.536097] ____sys_sendmsg+0x70d/0x870 [ 2976.536569] ? sock_write_iter+0x3d0/0x3d0 [ 2976.537041] ? do_recvmmsg+0x6d0/0x6d0 [ 2976.537483] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2976.538086] ? lock_downgrade+0x6d0/0x6d0 [ 2976.538573] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2976.539170] ? SOFTIRQ_verbose+0x10/0x10 [ 2976.539628] ___sys_sendmsg+0xf3/0x170 [ 2976.540023] ? sendmsg_copy_msghdr+0x160/0x160 [ 2976.540546] ? lock_downgrade+0x6d0/0x6d0 [ 2976.541021] ? find_held_lock+0x2c/0x110 [ 2976.541491] ? __fget_files+0x296/0x4c0 [ 2976.541952] ? __fget_light+0xea/0x290 [ 2976.542390] __sys_sendmsg+0xe5/0x1b0 [ 2976.542827] ? __sys_sendmsg_sock+0x40/0x40 [ 2976.543317] ? rcu_read_lock_any_held+0x75/0xa0 [ 2976.543859] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2976.544447] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2976.545023] ? trace_hardirqs_on+0x5b/0x180 [ 2976.545524] do_syscall_64+0x33/0x40 [ 2976.545945] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2976.546525] RIP: 0033:0x7f46fba00b19 [ 2976.546949] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2976.549008] RSP: 002b:00007f46f8f76188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2976.549858] RAX: ffffffffffffffda RBX: 00007f46fbb13f60 RCX: 00007f46fba00b19 [ 2976.550661] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2976.551461] RBP: 00007f46f8f761d0 R08: 0000000000000000 R09: 0000000000000000 [ 2976.552261] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2976.553063] R13: 00007ffe81962e7f R14: 00007f46f8f76300 R15: 0000000000022000 [ 2976.570817] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 2976.577727] System zones: 0-7 10:11:09 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x2, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2976.591057] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue 10:11:09 executing program 2: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 94) r2 = creat(0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:11:09 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0333001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:11:09 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c007a001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:11:09 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a545, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) 10:11:09 executing program 1: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0074001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2976.695612] FAULT_INJECTION: forcing a failure. 10:11:09 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/igmp\x00') perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000900), 0x0) ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r1, 0xc0145401, 0x0) memfd_create(0x0, 0x0) ioctl$sock_SIOCGPGRP(r0, 0x8904, &(0x7f0000004700)) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) fsmount(r0, 0x1, 0x8) sendmsg$nl_xfrm(r2, &(0x7f0000002e00)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f0000000600)=@updsa={0x184, 0x10, 0x1, 0x0, 0x0, {{@in6=@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0xd}}, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xee01}, {@in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x0, 0x32}, @in6=@private0, {}, {}, {}, 0x0, 0x0, 0xa, 0x4}, [@algo_crypt={0x58, 0x2, {{'cbc(aes)\x00'}, 0x80, "0f24aa6b13c2e62f3556b1cbcfeac2a0"}}, @extra_flags={0x8, 0x18, 0xfd}, @address_filter={0x28, 0x1a, {@in=@multicast1, @in=@remote, 0xa, 0x8, 0x80}}, @lastused={0xc}]}, 0x184}}, 0x0) [ 2976.695612] name failslab, interval 1, probability 0, space 0, times 0 [ 2976.697025] CPU: 1 PID: 16455 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 2976.697807] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2976.698724] Call Trace: [ 2976.699025] dump_stack+0x107/0x167 [ 2976.699436] should_fail.cold+0x5/0xa [ 2976.699861] ? kobject_uevent_env+0x22b/0xf90 [ 2976.700351] ? dev_uevent_filter+0xd0/0xd0 [ 2976.700823] should_failslab+0x5/0x20 [ 2976.701240] kmem_cache_alloc_trace+0x55/0x320 [ 2976.701745] ? dev_uevent_filter+0xd0/0xd0 [ 2976.702203] kobject_uevent_env+0x22b/0xf90 [ 2976.702694] ? software_node_notify+0xf8/0x2f0 [ 2976.703190] device_del+0xa8f/0x1180 [ 2976.703611] ? uevent_show+0x370/0x370 [ 2976.704026] ? wait_for_completion_io+0x270/0x270 [ 2976.704559] device_unregister+0x11/0x30 [ 2976.705012] mac80211_hwsim_new_radio+0x414/0x4250 [ 2976.705559] ? ____sys_sendmsg+0x70d/0x870 [ 2976.706045] ? ___sys_sendmsg+0xf3/0x170 [ 2976.706510] ? __sys_sendmsg+0xe5/0x1b0 [ 2976.706977] ? do_syscall_64+0x33/0x40 [ 2976.707412] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2976.708015] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2976.708561] hwsim_new_radio_nl+0x991/0x1080 [ 2976.709058] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2976.709672] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2976.710402] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2976.711170] genl_family_rcv_msg_doit+0x22d/0x330 [ 2976.711727] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2976.712463] ? cap_capable+0x1cd/0x230 [ 2976.712917] ? ns_capable+0xe2/0x110 [ 2976.713346] genl_rcv_msg+0x33c/0x5a0 [ 2976.713787] ? genl_get_cmd+0x480/0x480 [ 2976.714251] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2976.714839] ? lock_release+0x680/0x680 [ 2976.715285] ? netlink_deliver_tap+0xf4/0xcd0 [ 2976.715802] netlink_rcv_skb+0x14b/0x430 [ 2976.716261] ? genl_get_cmd+0x480/0x480 [ 2976.716713] ? netlink_ack+0xab0/0xab0 [ 2976.717175] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2976.717684] ? is_vmalloc_addr+0x7b/0xb0 [ 2976.718157] genl_rcv+0x24/0x40 [ 2976.718527] netlink_unicast+0x549/0x7f0 [ 2976.719012] ? netlink_attachskb+0x870/0x870 [ 2976.719506] ? __virt_addr_valid+0x128/0x350 [ 2976.720011] netlink_sendmsg+0x90f/0xdf0 [ 2976.720471] ? netlink_unicast+0x7f0/0x7f0 [ 2976.720971] ? netlink_unicast+0x7f0/0x7f0 [ 2976.721447] __sock_sendmsg+0x154/0x190 [ 2976.721892] ____sys_sendmsg+0x70d/0x870 [ 2976.722359] ? sock_write_iter+0x3d0/0x3d0 [ 2976.722839] ? do_recvmmsg+0x6d0/0x6d0 [ 2976.723280] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2976.723874] ? lock_downgrade+0x6d0/0x6d0 [ 2976.724343] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2976.724932] ? SOFTIRQ_verbose+0x10/0x10 [ 2976.725399] ___sys_sendmsg+0xf3/0x170 [ 2976.725833] ? sendmsg_copy_msghdr+0x160/0x160 [ 2976.726351] ? lock_downgrade+0x6d0/0x6d0 [ 2976.726827] ? find_held_lock+0x2c/0x110 [ 2976.727295] ? __fget_files+0x296/0x4c0 [ 2976.727751] ? __fget_light+0xea/0x290 [ 2976.728194] __sys_sendmsg+0xe5/0x1b0 [ 2976.728618] ? __sys_sendmsg_sock+0x40/0x40 [ 2976.729098] ? rcu_read_lock_any_held+0x75/0xa0 [ 2976.729641] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2976.730225] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2976.730815] ? trace_hardirqs_on+0x5b/0x180 [ 2976.731302] do_syscall_64+0x33/0x40 [ 2976.731717] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2976.732292] RIP: 0033:0x7fa741f89b19 [ 2976.732709] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2976.734816] RSP: 002b:00007fa73f4ff188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2976.735671] RAX: ffffffffffffffda RBX: 00007fa74209cf60 RCX: 00007fa741f89b19 [ 2976.736473] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2976.737272] RBP: 00007fa73f4ff1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2976.738085] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2976.738891] R13: 00007ffd248a3bcf R14: 00007fa73f4ff300 R15: 0000000000022000 [ 2976.789953] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 2976.790963] System zones: 0-7 [ 2976.792558] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue 10:11:23 executing program 3: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 36) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:11:23 executing program 2: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 95) r2 = creat(0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:11:23 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1cdf8d001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:11:23 executing program 0: ioctl$TIOCGISO7816(0xffffffffffffffff, 0x80285442, &(0x7f0000000440)) syz_mount_image$ext4(&(0x7f0000002a80)='ext4\x00', 0x0, 0x0, 0x0, 0x0, 0x880000, &(0x7f0000002bc0)={[{@orlov}, {@jqfmt_vfsv1}], [{@dont_measure}]}) stat(&(0x7f0000000580)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r0, 0x0) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000300)={{{@in=@loopback, @in=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@loopback}, 0x0, @in6=@local}}, &(0x7f0000000400)=0xe8) mount$9p_unix(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x2800820, &(0x7f0000000480)={'trans=unix,', {[{@dfltuid={'dfltuid', 0x3d, 0xee01}}, {@access_client}, {@cachetag={'cachetag', 0x3d, 'wg1\x00'}}, {@mmap}, {@posixacl}, {@dfltgid={'dfltgid', 0x3d, 0xee01}}], [{@appraise}, {@euid_eq={'euid', 0x3d, r0}}, {@uid_gt={'uid>', r1}}, {@dont_measure}, {@smackfsdef}, {@smackfstransmute={'smackfstransmute', 0x3d, '!^'}}, {@func={'func', 0x3d, 'PATH_CHECK'}}, {@subj_user={'subj_user', 0x3d, 'dont_measure'}}, {@fsuuid={'fsuuid', 0x3d, {[0x62, 0x65, 0x64, 0x66, 0x31, 0x64, 0x32, 0x31], 0x2d, [0x38, 0x39, 0x33, 0x66], 0x2d, [0x62, 0x0, 0x62, 0x64], 0x2d, [0x62, 0x63, 0x66, 0x36], 0x2d, [0x66, 0x1, 0x30, 0x0, 0x30, 0x33, 0x38, 0x66]}}}, {@fsuuid={'fsuuid', 0x3d, {[0x35, 0x66, 0x36, 0x35, 0x34, 0x31, 0x39, 0x36], 0x2d, [0x62, 0x37, 0x61], 0x2d, [0x65, 0x38, 0x62, 0xbfcffdb315e11a04], 0x2d, [0x31, 0x39, 0x31, 0x66], 0x2d, [0x66, 0x30, 0x37, 0x0, 0x36, 0x32, 0x38, 0x37]}}}]}}) ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000002d40)={'wg1\x00'}) 10:11:23 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1cd933001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:11:23 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:11:23 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a546, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) 10:11:23 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)={0x1c, 0x5e, 0xc21, 0x0, 0x0, {0x0, 0x2}, [@generic='\x00\x00\x00\x00\x00']}, 0x1c}}, 0x0) ioctl$F2FS_IOC_DEFRAGMENT(r1, 0xc010f508, &(0x7f0000000040)={0x3}) r2 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r2, 0x10e, 0xc, &(0x7f0000000000)=0x5, 0xff4d) r3 = fcntl$dupfd(r2, 0x0, r0) sendmsg$nl_generic(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x34, 0x12, 0xc21, 0x0, 0x0, {}, [@typed={0xc, 0x0, 0x0, 0x0, @u64}, @typed={0x14, 0x2f, 0x0, 0x0, @ipv6=@ipv4}]}, 0x34}}, 0x0) [ 2991.326738] netlink: 'syz-executor.1': attribute type 47 has an invalid length. [ 2991.374788] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 2991.375876] System zones: 0-7 [ 2991.379143] FAULT_INJECTION: forcing a failure. [ 2991.379143] name failslab, interval 1, probability 0, space 0, times 0 [ 2991.381742] CPU: 0 PID: 16494 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 2991.383168] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2991.384835] Call Trace: [ 2991.385370] dump_stack+0x107/0x167 [ 2991.386112] should_fail.cold+0x5/0xa [ 2991.386906] ? kobject_get_path+0xc5/0x1f0 [ 2991.387771] should_failslab+0x5/0x20 [ 2991.388539] __kmalloc+0x72/0x390 [ 2991.389245] ? trace_hardirqs_on+0x5b/0x180 [ 2991.390118] kobject_get_path+0xc5/0x1f0 [ 2991.390951] kobject_uevent_env+0x251/0xf90 [ 2991.391834] ? software_node_notify+0xf8/0x2f0 [ 2991.392759] device_del+0xa8f/0x1180 [ 2991.393520] ? uevent_show+0x370/0x370 [ 2991.394305] ? wait_for_completion_io+0x270/0x270 [ 2991.395301] device_unregister+0x11/0x30 [ 2991.396121] mac80211_hwsim_new_radio+0x414/0x4250 [ 2991.397103] ? ____sys_sendmsg+0x70d/0x870 [ 2991.397239] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 2991.397951] ? ___sys_sendmsg+0xf3/0x170 [ 2991.397968] ? __sys_sendmsg+0xe5/0x1b0 [ 2991.397987] ? do_syscall_64+0x33/0x40 [ 2991.398009] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2991.402488] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2991.403464] hwsim_new_radio_nl+0x991/0x1080 [ 2991.404359] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2991.405411] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2991.406744] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2991.408078] genl_family_rcv_msg_doit+0x22d/0x330 [ 2991.409064] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2991.410397] ? cap_capable+0x1cd/0x230 [ 2991.411207] ? ns_capable+0xe2/0x110 [ 2991.411969] genl_rcv_msg+0x33c/0x5a0 [ 2991.412737] ? genl_get_cmd+0x480/0x480 [ 2991.413536] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2991.414581] ? lock_release+0x680/0x680 [ 2991.415411] ? netlink_deliver_tap+0xf4/0xcd0 [ 2991.416319] netlink_rcv_skb+0x14b/0x430 [ 2991.417128] ? genl_get_cmd+0x480/0x480 [ 2991.417957] ? netlink_ack+0xab0/0xab0 [ 2991.418763] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2991.419700] ? is_vmalloc_addr+0x7b/0xb0 [ 2991.420526] genl_rcv+0x24/0x40 [ 2991.421190] netlink_unicast+0x549/0x7f0 [ 2991.422009] ? netlink_attachskb+0x870/0x870 [ 2991.422898] ? __virt_addr_valid+0x128/0x350 [ 2991.423792] netlink_sendmsg+0x90f/0xdf0 [ 2991.424611] ? netlink_unicast+0x7f0/0x7f0 [ 2991.425468] ? netlink_unicast+0x7f0/0x7f0 [ 2991.426325] __sock_sendmsg+0x154/0x190 [ 2991.427139] ____sys_sendmsg+0x70d/0x870 [ 2991.427958] ? sock_write_iter+0x3d0/0x3d0 [ 2991.428800] ? do_recvmmsg+0x6d0/0x6d0 [ 2991.429580] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2991.430639] ? lock_downgrade+0x6d0/0x6d0 [ 2991.431482] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2991.432525] ? SOFTIRQ_verbose+0x10/0x10 [ 2991.433344] ___sys_sendmsg+0xf3/0x170 [ 2991.434122] ? sendmsg_copy_msghdr+0x160/0x160 [ 2991.435063] ? lock_downgrade+0x6d0/0x6d0 [ 2991.435897] ? find_held_lock+0x2c/0x110 [ 2991.436729] ? __fget_files+0x296/0x4c0 [ 2991.437540] ? __fget_light+0xea/0x290 [ 2991.438330] __sys_sendmsg+0xe5/0x1b0 [ 2991.439104] ? __sys_sendmsg_sock+0x40/0x40 [ 2991.439968] ? rcu_read_lock_any_held+0x75/0xa0 [ 2991.440926] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2991.441972] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2991.443011] ? trace_hardirqs_on+0x5b/0x180 [ 2991.443880] do_syscall_64+0x33/0x40 [ 2991.444625] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2991.445651] RIP: 0033:0x7fa741f89b19 [ 2991.446401] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2991.450118] RSP: 002b:00007fa73f4ff188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2991.451650] RAX: ffffffffffffffda RBX: 00007fa74209cf60 RCX: 00007fa741f89b19 [ 2991.453080] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2991.454530] RBP: 00007fa73f4ff1d0 R08: 0000000000000000 R09: 0000000000000000 [ 2991.455974] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2991.457408] R13: 00007ffd248a3bcf R14: 00007fa73f4ff300 R15: 0000000000022000 10:11:23 executing program 0: r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(0xffffffffffffffff, 0xc08c5332, &(0x7f0000000200)={0x0, 0x0, 0x1, 'queue1\x00'}) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x20000000000}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140), 0x40001, 0x0) pread64(0xffffffffffffffff, &(0x7f00000001c0)=""/17, 0x11, 0x4bd3) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = dup2(r3, r2) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(0xffffffffffffffff, 0xc0189372, &(0x7f0000000080)={{0x1, 0x1, 0x18, r1, {0x1}}, './file0\x00'}) r6 = syz_genetlink_get_family_id$batadv(0x0, r4) sendmsg$BATADV_CMD_GET_BLA_BACKBONE(r5, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x80000000}, 0x8, &(0x7f00000003c0)={&(0x7f0000000380)={0x24, r6, 0x400, 0x70bd29, 0x25dfdbfb, {}, [@BATADV_ATTR_GW_BANDWIDTH_DOWN={0x8, 0x31, 0x1}, @BATADV_ATTR_ORIG_INTERVAL={0xfec6, 0x39, 0x2}]}, 0x24}, 0x1, 0x0, 0x0, 0x200000c0}, 0x14050884) r7 = socket$packet(0x11, 0x3, 0x300) getsockopt$packet_buf(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000580)=""/212, &(0x7f00000002c0)=0xd4) r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) setsockopt$packet_add_memb(r7, 0x107, 0x1, &(0x7f0000000100)={r9, 0x3, 0x6}, 0x10) setsockopt$packet_add_memb(r7, 0x107, 0x1, &(0x7f0000000080)={r9, 0x1, 0x6, @dev}, 0x10) sendmsg$BATADV_CMD_GET_BLA_CLAIM(r0, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x24, r6, 0x2, 0x70bd2a, 0x25dfdbfc, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r9}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x24040010}, 0x40040) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000500)={0x6, 0x80, 0x2, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000000}, 0x0, 0xfffffffffffffffc, 0xfffffffd, 0x0, 0x1000, 0x1, 0x22}, 0x0, 0x4, 0xffffffffffffffff, 0x1) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 10:11:23 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a547, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) [ 2991.471338] FAULT_INJECTION: forcing a failure. [ 2991.471338] name failslab, interval 1, probability 0, space 0, times 0 10:11:24 executing program 1: mknod$loop(&(0x7f0000000400)='./file0\x00', 0x6000, 0x0) r0 = creat(&(0x7f00000000c0)='./file0\x00', 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x46842, 0x0) io_setup(0x5, &(0x7f0000000080)) r2 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r2, 0x0, 0x0, 0x8800000) r3 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x2, 0x0, 0x5, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(0x0, 0x0, 0x5, r3, 0x0) ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x100, 0xb91}) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(r1, 0xc0189374, &(0x7f00000001c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x7}}, './file1\x00'}) ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0) syz_io_uring_setup(0x3de4, &(0x7f0000000080), &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000180), &(0x7f0000002a40)) ioctl$BLKTRACESTART(r4, 0x1274, 0x0) r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x882c2, 0x0) openat2$dir(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', &(0x7f0000000280)={0x10000, 0x2, 0x1c}, 0x18) fsync(r5) r6 = syz_open_dev$loop(&(0x7f00000002c0), 0x83b, 0x280002) ioctl$BTRFS_IOC_GET_DEV_STATS(r6, 0xc4089434, &(0x7f00000008c0)={0x0, 0xdd3, 0x0, [0x7, 0x7, 0x2, 0xfffffffffffffffc], [0x6, 0x8001, 0x100000000, 0x3, 0x1, 0x6, 0xffffffff, 0x9, 0xc71, 0x9, 0x9, 0xffffffffffffffe0, 0x2203, 0x9, 0xbd, 0x1, 0xffffffffffff7fff, 0xb79, 0xffffffff80000000, 0x8, 0x1, 0x7ff, 0xffffffffffffffff, 0xffffffff, 0xcd19, 0x20, 0x100000000, 0xee, 0x1c00000000000000, 0x7, 0x760, 0xfffffffffffffffa, 0x9, 0x200, 0x7, 0x9, 0xd3, 0x2, 0x7, 0x1, 0xffffffff, 0xc3, 0x8000, 0x7, 0x7f, 0xb4c, 0x9, 0x9, 0x0, 0x9, 0xfffffffffffffff7, 0x32af, 0x6, 0x401, 0x5, 0x3, 0x8, 0x3f, 0x8, 0x0, 0x9, 0x7, 0x4, 0xffff, 0x9, 0x5, 0x7ef, 0x8000, 0xfffffffffffff010, 0x34f, 0x8, 0xfffffffffffffffa, 0x2, 0x5, 0x9, 0x800, 0x2, 0x75439dbc, 0xffffffffffff7fff, 0x81, 0xffff, 0x2, 0x1, 0x1000, 0x7fffffff, 0x1000, 0x10001, 0xff, 0x8004, 0x80000000, 0xff, 0x5, 0x3ff, 0x6e4, 0x80000000, 0x9, 0x8001, 0x5, 0xdd6, 0x2, 0x7f, 0x800, 0xdb, 0x5, 0x3, 0x1f, 0x0, 0x80000001, 0x4c2b, 0x0, 0x0, 0x80000001, 0x800, 0x10000, 0x5, 0x1076272a, 0x5a, 0x0, 0xfffffffffffff705, 0x9, 0x5]}) creat(&(0x7f0000000140)='./file0\x00', 0x8) ioctl$FS_IOC_GETFSMAP(r5, 0xc0c0583b, &(0x7f0000000680)=ANY=[@ANYBLOB="000000000000000005000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000700851425222f0000ff7f00000500000000000000ffff00000000000008000000000000000104000000000000000000000000000000000000000000000000000000000000090000008100000000000000feff0000001000000000000002000000000000000000000000000000001500"/517]) [ 2991.472817] CPU: 1 PID: 16492 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 2991.473792] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 10:11:24 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x4, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2991.474778] Call Trace: [ 2991.475203] dump_stack+0x107/0x167 [ 2991.475665] should_fail.cold+0x5/0xa [ 2991.476117] ? __kernfs_new_node+0xd4/0x860 10:11:24 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1cdf8e001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 2991.476632] should_failslab+0x5/0x20 [ 2991.477190] kmem_cache_alloc+0x5b/0x310 [ 2991.477700] __kernfs_new_node+0xd4/0x860 [ 2991.478189] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 2991.478766] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2991.479375] ? SOFTIRQ_verbose+0x10/0x10 [ 2991.479852] ? kernfs_add_one+0x124/0x4d0 [ 2991.480349] kernfs_new_node+0x93/0x120 [ 2991.480812] __kernfs_create_file+0x51/0x350 [ 2991.481331] sysfs_add_file_mode_ns+0x221/0x560 [ 2991.481882] sysfs_create_file_ns+0x131/0x1d0 [ 2991.482430] ? sysfs_add_file_mode_ns+0x560/0x560 [ 2991.483037] ? is_acpi_device_node+0x6e/0x90 [ 2991.483587] device_create_file+0xea/0x1d0 [ 2991.484106] device_add+0x547/0x1c50 [ 2991.484570] ? devlink_add_symlinks+0x970/0x970 [ 2991.485161] device_create_groups_vargs+0x207/0x280 [ 2991.485777] device_create+0xdc/0x120 [ 2991.486248] ? device_create_groups_vargs+0x280/0x280 [ 2991.486887] ? init_timer_key+0x12a/0x240 [ 2991.487401] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 2991.488000] mac80211_hwsim_new_radio+0x352/0x4250 [ 2991.488597] ? ____sys_sendmsg+0x70d/0x870 [ 2991.489110] ? ___sys_sendmsg+0xf3/0x170 [ 2991.489606] ? __sys_sendmsg+0xe5/0x1b0 [ 2991.490086] ? do_syscall_64+0x33/0x40 [ 2991.490556] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2991.491228] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2991.491800] hwsim_new_radio_nl+0x991/0x1080 [ 2991.492333] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2991.492968] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2991.493783] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2991.494603] genl_family_rcv_msg_doit+0x22d/0x330 [ 2991.495202] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2991.496002] ? check_memory_region+0x68/0x1f0 [ 2991.496545] ? cap_capable+0x1cd/0x230 [ 2991.497028] ? ns_capable+0xe2/0x110 [ 2991.497478] genl_rcv_msg+0x33c/0x5a0 [ 2991.497936] ? genl_get_cmd+0x480/0x480 [ 2991.498429] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2991.499076] ? lock_release+0x680/0x680 [ 2991.499561] ? netlink_deliver_tap+0xf4/0xcd0 [ 2991.500119] netlink_rcv_skb+0x14b/0x430 [ 2991.500605] ? genl_get_cmd+0x480/0x480 [ 2991.501086] ? netlink_ack+0xab0/0xab0 [ 2991.501572] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2991.502131] ? is_vmalloc_addr+0x7b/0xb0 [ 2991.502629] genl_rcv+0x24/0x40 [ 2991.503051] netlink_unicast+0x549/0x7f0 [ 2991.503549] ? netlink_attachskb+0x870/0x870 [ 2991.504093] ? __virt_addr_valid+0x128/0x350 [ 2991.504624] netlink_sendmsg+0x90f/0xdf0 [ 2991.505115] ? netlink_unicast+0x7f0/0x7f0 [ 2991.505633] ? netlink_unicast+0x7f0/0x7f0 [ 2991.506144] __sock_sendmsg+0x154/0x190 [ 2991.506622] ____sys_sendmsg+0x70d/0x870 [ 2991.507106] ? sock_write_iter+0x3d0/0x3d0 [ 2991.507611] ? do_recvmmsg+0x6d0/0x6d0 [ 2991.508081] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2991.508711] ? lock_downgrade+0x6d0/0x6d0 [ 2991.509209] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 2991.509830] ? SOFTIRQ_verbose+0x10/0x10 [ 2991.510325] ___sys_sendmsg+0xf3/0x170 [ 2991.510813] ? sendmsg_copy_msghdr+0x160/0x160 [ 2991.511384] ? lock_downgrade+0x6d0/0x6d0 [ 2991.511896] ? __fget_files+0x296/0x4c0 [ 2991.512385] ? __fget_light+0xea/0x290 [ 2991.512861] __sys_sendmsg+0xe5/0x1b0 [ 2991.513316] ? __sys_sendmsg_sock+0x40/0x40 [ 2991.513837] ? rcu_read_lock_any_held+0x75/0xa0 [ 2991.514408] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2991.515050] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2991.515678] ? trace_hardirqs_on+0x5b/0x180 [ 2991.516200] do_syscall_64+0x33/0x40 [ 2991.516661] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2991.517272] RIP: 0033:0x7f46fba00b19 [ 2991.517725] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2991.519940] RSP: 002b:00007f46f8f76188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2991.520876] RAX: ffffffffffffffda RBX: 00007f46fbb13f60 RCX: 00007f46fba00b19 [ 2991.521690] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 2991.522508] RBP: 00007f46f8f761d0 R08: 0000000000000000 R09: 0000000000000000 [ 2991.523366] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2991.524224] R13: 00007ffe81962e7f R14: 00007f46f8f76300 R15: 0000000000022000 [ 2991.630349] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 2991.631385] System zones: 0-7 [ 2991.633623] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue 10:11:37 executing program 1: r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) fallocate(r1, 0x11, 0x0, 0x7fff) pwrite64(r0, &(0x7f00000000c0)="04", 0x1, 0x3ff03) lseek(r1, 0x0, 0x3) ioctl$SNDRV_SEQ_IOCTL_RUNNING_MODE(r0, 0xc0105303, &(0x7f0000000040)={0x0, 0x4, 0x3}) 10:11:37 executing program 0: r0 = syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470000000f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000580)) chdir(&(0x7f00000003c0)='./file0\x00') newfstatat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x2000) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000240)={{0x1, 0x1, 0x18, r0, @out_args}, './file0\x00'}) openat(r2, &(0x7f0000000280)='./file0\x00', 0x101001, 0x5) syz_mount_image$nfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x7, 0x1, &(0x7f00000000c0)=[{&(0x7f0000000180)="5ccb88917af8de1c8b9d6f525863651ce8a0fc24012b9f13a8bef8d95e96a9a4e73edcbe83769683f45a257bfb6896b9a6dfbc22edae3414a6cfccbc6e12d75e8bc7a850f213d24bdd92987224f2f640aaa24b4e0d8c29d2d852d0157ec08df4fb96b45cc278e2eba825", 0x6a, 0x4}], 0x88400, &(0x7f0000000380)={[{'/'}, {'vfat\x00'}], [{@fowner_eq={'fowner', 0x3d, r1}}]}) 10:11:37 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1cdf8f001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:11:37 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x5, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:11:37 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c003f001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:11:37 executing program 2: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 96) r2 = creat(0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:11:37 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a548, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) 10:11:37 executing program 3: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 37) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 3005.159438] FAULT_INJECTION: forcing a failure. [ 3005.159438] name failslab, interval 1, probability 0, space 0, times 0 [ 3005.162141] CPU: 0 PID: 16547 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 3005.163557] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3005.165212] Call Trace: [ 3005.165755] dump_stack+0x107/0x167 [ 3005.166489] should_fail.cold+0x5/0xa [ 3005.167288] ? kobject_get_path+0xc5/0x1f0 [ 3005.168147] should_failslab+0x5/0x20 [ 3005.168914] __kmalloc+0x72/0x390 [ 3005.169630] ? trace_hardirqs_on+0x5b/0x180 [ 3005.170512] kobject_get_path+0xc5/0x1f0 [ 3005.171339] kobject_uevent_env+0x251/0xf90 [ 3005.172232] ? software_node_notify+0xf8/0x2f0 [ 3005.173153] device_del+0xa8f/0x1180 [ 3005.173930] ? uevent_show+0x370/0x370 [ 3005.174718] ? wait_for_completion_io+0x270/0x270 [ 3005.175722] device_unregister+0x11/0x30 [ 3005.176534] mac80211_hwsim_new_radio+0x414/0x4250 [ 3005.177535] ? ____sys_sendmsg+0x70d/0x870 [ 3005.178382] ? ___sys_sendmsg+0xf3/0x170 [ 3005.179226] ? __sys_sendmsg+0xe5/0x1b0 [ 3005.180040] ? do_syscall_64+0x33/0x40 [ 3005.180827] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3005.181933] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 3005.182876] hwsim_new_radio_nl+0x991/0x1080 [ 3005.183787] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 3005.184847] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 3005.186184] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3005.187515] genl_family_rcv_msg_doit+0x22d/0x330 [ 3005.188503] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3005.189844] ? cap_capable+0x1cd/0x230 [ 3005.190651] ? ns_capable+0xe2/0x110 [ 3005.191420] genl_rcv_msg+0x33c/0x5a0 [ 3005.192199] ? genl_get_cmd+0x480/0x480 [ 3005.193005] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 3005.194063] ? lock_release+0x680/0x680 [ 3005.194871] ? netlink_deliver_tap+0xf4/0xcd0 [ 3005.195794] netlink_rcv_skb+0x14b/0x430 [ 3005.196620] ? genl_get_cmd+0x480/0x480 [ 3005.197438] ? netlink_ack+0xab0/0xab0 [ 3005.198244] ? netlink_deliver_tap+0x1c4/0xcd0 [ 3005.199185] ? is_vmalloc_addr+0x7b/0xb0 [ 3005.200014] genl_rcv+0x24/0x40 [ 3005.200680] netlink_unicast+0x549/0x7f0 [ 3005.201515] ? netlink_attachskb+0x870/0x870 [ 3005.202401] ? __virt_addr_valid+0x128/0x350 [ 3005.203314] netlink_sendmsg+0x90f/0xdf0 [ 3005.204139] ? netlink_unicast+0x7f0/0x7f0 [ 3005.205011] ? netlink_unicast+0x7f0/0x7f0 [ 3005.205869] __sock_sendmsg+0x154/0x190 [ 3005.206677] ____sys_sendmsg+0x70d/0x870 [ 3005.207508] ? sock_write_iter+0x3d0/0x3d0 [ 3005.208365] ? do_recvmmsg+0x6d0/0x6d0 [ 3005.209145] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3005.210216] ? lock_downgrade+0x6d0/0x6d0 [ 3005.211061] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3005.212130] ? SOFTIRQ_verbose+0x10/0x10 [ 3005.212957] ___sys_sendmsg+0xf3/0x170 [ 3005.213753] ? sendmsg_copy_msghdr+0x160/0x160 [ 3005.214689] ? lock_downgrade+0x6d0/0x6d0 [ 3005.215549] ? find_held_lock+0x2c/0x110 [ 3005.216387] ? __fget_files+0x296/0x4c0 [ 3005.217199] ? __fget_light+0xea/0x290 [ 3005.218011] __sys_sendmsg+0xe5/0x1b0 [ 3005.218775] ? __sys_sendmsg_sock+0x40/0x40 [ 3005.219659] ? rcu_read_lock_any_held+0x75/0xa0 [ 3005.220613] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3005.221691] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3005.222722] ? trace_hardirqs_on+0x5b/0x180 [ 3005.223624] do_syscall_64+0x33/0x40 [ 3005.224373] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3005.225416] RIP: 0033:0x7fa741f89b19 [ 3005.226168] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3005.229921] RSP: 002b:00007fa73f4ff188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3005.231490] RAX: ffffffffffffffda RBX: 00007fa74209cf60 RCX: 00007fa741f89b19 [ 3005.232953] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 3005.234411] RBP: 00007fa73f4ff1d0 R08: 0000000000000000 R09: 0000000000000000 [ 3005.235883] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3005.237334] R13: 00007ffd248a3bcf R14: 00007fa73f4ff300 R15: 0000000000022000 [ 3005.244767] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 3005.246633] System zones: 0-7 10:11:37 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000500), 0x9}, 0x40, 0x0, 0x400, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000001700)='net/ip_mr_vif\x00') preadv(r0, &(0x7f0000000400)=[{&(0x7f0000000200)=""/135, 0x87}], 0x1, 0x2, 0x0) r1 = getpgrp(0x0) pidfd_open(r1, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)={0x1c, 0x5e, 0xc21, 0x0, 0x0, {0x0, 0x2}, [@generic='\x00\x00\x00\x00\x00']}, 0x1c}}, 0x0) fsetxattr$security_capability(r2, &(0x7f0000000000), &(0x7f0000000080)=@v3={0x3000000, [{0x6, 0x3}, {0xffff0ed5, 0x5}], 0xffffffffffffffff}, 0x18, 0x1) r3 = syz_open_procfs(r1, &(0x7f0000000100)='net/ip_mr_cache\x00') preadv(r3, &(0x7f0000000400)=[{&(0x7f0000000540)=""/121, 0x79}], 0x1, 0xfffffffb, 0x4) getsockopt$inet6_opts(r3, 0x29, 0x39, &(0x7f0000000340)=""/230, &(0x7f0000000040)=0xe6) mmap$IORING_OFF_SQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, 0x13, 0xffffffffffffffff, 0x0) mknodat$loop(0xffffffffffffffff, &(0x7f0000000300)='./file0\x00', 0x0, 0x0) name_to_handle_at(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000140), 0x0) getdents64(0xffffffffffffffff, 0x0, 0x0) r4 = openat$vcsa(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat(r4, &(0x7f0000000440)='./file1\x00', 0x80100, 0x2cc) syz_io_uring_submit(0x0, 0x0, 0x0, 0xfffffffb) 10:11:37 executing program 1: ioctl$EVIOCGVERSION(0xffffffffffffffff, 0x80044501, &(0x7f0000000100)=""/138) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001200)={0x214, 0x19, 0x1, 0x0, 0x0, {0xa}, [@nested={0x200, 0x0, 0x0, 0x1, [@typed={0xc, 0x0, 0x0, 0x0, @u64}, @generic="2c7aab3d8c17aa579248648b3185a74d27189480f90a5a4e34147f5413524bd8922d9d17251b69175e65ab6ec1c8b0fdc90c6a78c1edd0fee31c3c7ec8c8777df35be0bd81aa8081fb10a44643f710eefd11e0c4597ad71e04ba4b618d2271139df87be886b607580b28b21e0d428a795caff8f277ae57974eca8ac3b80d64118f97907f5063593a8fcc44a1c232ba6ae625bb3380d2fee90586d059c42814e36fb7ba6bbc55800d4edff3a11bbaad67aa9ed9ae94ee8aefab1c33058a2ab1c7ae677ce1ffc93bfbe0a220b1eb5966f96ff8c0ac5bfbff2bd32dff15f2faef1b4a07a8acd8c77212a269b708b0f362", @typed={0x8, 0x0, 0x0, 0x0, @uid=0xffffffffffffffff}, @generic="64d6f48486b883216b497a638f72f59c97789b152f231497101be75332ce36639fc150f5c84222229d66a2843ee657d51bcdd93e96d943cd58a48ce7ebe377ff01f091f0a1c471280ff5317e40cbea555cf528ab8fba0a27d7e8f1135728762375d633c97ef5931b3e80659856083cf6e7eb66a1801a4f2140764d4c7b797e04027b8a9982ebe09dce0772235a5608cc755f6b264270c8b43e6d3d0def1eb28191b33fe8b4a3c5aa149e66656b1128d43dcca25c78fdea3866b1270a1425b204fe2a3532715a4a3b02abd8195ebc71d6fb8f4bf12588e2eb1a60c8b341200bd1ac180211f79d37b31f1131e4", @generic="3baa904b4bd60d759af2d06111"]}]}, 0x214}}, 0x0) [ 3005.267874] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 3005.276985] netlink: 504 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3005.284182] netlink: 504 bytes leftover after parsing attributes in process `syz-executor.1'. 10:11:37 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1cdf90001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:11:37 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a549, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) 10:11:37 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0048001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:11:37 executing program 0: r0 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r0, 0xc018937d, &(0x7f0000000080)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x3}}, './file1\x00'}) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r1, 0x2405, r0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) sendmsg$unix(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000000)="eb", 0x1}], 0x1, &(0x7f0000000040)=[@rights={{0x14, 0x1, 0x1, [r3]}}], 0x18}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) 10:11:37 executing program 1: r0 = perf_event_open(&(0x7f0000000040)={0x3, 0x80, 0x19, 0x2, 0x20, 0x7, 0x0, 0x4, 0x40082, 0x8, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x971, 0x1, @perf_bp={&(0x7f0000000000), 0x9}, 0x40000, 0x7fff, 0x3986, 0x5, 0x0, 0x3, 0x0, 0x0, 0x1000, 0x0, 0xd245}, 0x0, 0x2, 0xffffffffffffffff, 0x0) r1 = fcntl$getown(r0, 0x9) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000140)={{0x1, 0x1, 0x18, r0, {0xffffffffffffffff, 0xee01}}, './file0\x00'}) r3 = perf_event_open(&(0x7f00000000c0)={0x1, 0x80, 0x20, 0x1, 0x1, 0xbe, 0x0, 0x1, 0x20002, 0x6, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x7fd, 0x2, @perf_config_ext={0xffff, 0x6df}, 0x201, 0x7, 0x5, 0x8, 0x1b, 0x10001, 0x1, 0x0, 0xfffffffa, 0x0, 0x4e}, r1, 0xe, r2, 0x8) ioctl$BTRFS_IOC_BALANCE_V2(r2, 0xc4009420, &(0x7f0000000180)={0x12, 0x5, {0xe3, @usage=0x4, 0x0, 0x5, 0x800, 0xfff, 0x1f, 0xffff, 0x440, @usage=0x40, 0x7, 0x81, [0x7, 0x5, 0xffffffffffffffe0, 0x1f, 0x80, 0x100000001]}, {0x2a47, @usage, 0x0, 0xe7, 0x8, 0x4, 0x3, 0x1000, 0x6a, @struct, 0x2, 0x1, [0x47b, 0xfffffffffffffffa, 0x3, 0x8001, 0x7fffffff, 0x72]}, {0x3, @struct={0x4, 0x487bb301}, 0x0, 0x5, 0x3a0, 0xfffffffffffffffb, 0xb9e, 0x8, 0x20, @usage=0x2, 0x0, 0x401, [0x1, 0x3, 0x4, 0x1, 0x1, 0x7]}, {0x7fff, 0x9, 0x7}}) syz_open_procfs(r1, &(0x7f0000000580)='net/ip6_mr_cache\x00') r6 = syz_open_dev$vcsu(&(0x7f00000005c0), 0x38000000000000, 0x0) ioctl$EVIOCGVERSION(r6, 0x80044501, &(0x7f0000000600)=""/204) r7 = openat2(r2, &(0x7f0000000700)='./file0\x00', &(0x7f0000000740)={0x9946eaa294c85799, 0x0, 0x4}, 0x18) setsockopt$inet6_group_source_req(r7, 0x29, 0x2b, &(0x7f0000000780)={0x0, {{0xa, 0x4e23, 0x50, @empty, 0x9}}, {{0xa, 0x4e24, 0x4e9, @mcast2, 0x4}}}, 0x108) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f00000008c0)={r7, 0x3f, 0x8, 0x401}) ioctl$BTRFS_IOC_DEV_INFO(r8, 0xd000941e, &(0x7f0000000900)={r5, "e257429126dff711a764594ff6837185"}) ioctl$BTRFS_IOC_QUOTA_CTL(r3, 0xc0109428, &(0x7f0000001900)={0x2, 0x4}) dup(r7) r9 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4, 0x12, r6, 0x0) syz_io_uring_setup(0x2d3b, &(0x7f0000001940)={0x0, 0x820, 0x20, 0x1, 0x1a1, 0x0, r7}, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ff0000/0x10000)=nil, &(0x7f00000019c0), &(0x7f0000001a00)=0x0) syz_io_uring_submit(r9, r10, &(0x7f0000001a40)=@IORING_OP_READ_FIXED={0x4, 0x4, 0x4000, @fd=r8, 0x0, 0x3, 0x7f, 0x4, 0x1, {0x1}}, 0xffffff81) bind$bt_sco(0xffffffffffffffff, &(0x7f0000001a80), 0x8) ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r8, 0xc018937d, &(0x7f0000001ac0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x3}}, './file0\x00'}) ioctl$BTRFS_IOC_DEV_INFO(r11, 0xd000941e, &(0x7f0000001b00)={r4, "ff76b6e81301ea47fbe28bfef69c5db9"}) [ 3005.396177] FAULT_INJECTION: forcing a failure. [ 3005.396177] name failslab, interval 1, probability 0, space 0, times 0 [ 3005.399063] CPU: 0 PID: 16549 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 3005.400444] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3005.402079] Call Trace: [ 3005.402605] dump_stack+0x107/0x167 [ 3005.403363] should_fail.cold+0x5/0xa [ 3005.404117] ? create_object.isra.0+0x3a/0xa20 [ 3005.405026] should_failslab+0x5/0x20 [ 3005.405789] kmem_cache_alloc+0x5b/0x310 [ 3005.406583] create_object.isra.0+0x3a/0xa20 [ 3005.407439] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3005.408422] kmem_cache_alloc+0x159/0x310 [ 3005.409229] radix_tree_node_alloc.constprop.0+0x1e3/0x300 [ 3005.410285] idr_get_free+0x4b5/0x8f0 [ 3005.411042] idr_alloc_u32+0x170/0x2d0 [ 3005.411799] ? __fprop_inc_percpu_max+0x130/0x130 [ 3005.412735] ? lock_acquire+0x197/0x470 [ 3005.413501] ? __kernfs_new_node+0xff/0x860 [ 3005.414339] idr_alloc_cyclic+0x102/0x230 [ 3005.415158] ? idr_alloc+0x130/0x130 [ 3005.415873] ? rwlock_bug.part.0+0x90/0x90 [ 3005.416701] __kernfs_new_node+0x117/0x860 [ 3005.417519] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 3005.418432] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3005.419447] ? SOFTIRQ_verbose+0x10/0x10 [ 3005.420253] kernfs_create_dir_ns+0x9c/0x230 [ 3005.421101] sysfs_create_dir_ns+0x127/0x290 [ 3005.421949] ? sysfs_create_mount_point+0xb0/0xb0 [ 3005.422879] ? rwlock_bug.part.0+0x90/0x90 [ 3005.423710] ? class_dir_child_ns_type+0x9/0x60 [ 3005.424596] kobject_add_internal+0x25e/0xa30 [ 3005.425468] kobject_add+0x150/0x1c0 [ 3005.426177] ? kset_create_and_add+0x1a0/0x1a0 [ 3005.427060] ? lockdep_init_map_type+0x2c7/0x780 [ 3005.427981] device_add+0x35a/0x1c50 [ 3005.428699] ? devlink_add_symlinks+0x970/0x970 [ 3005.429602] device_create_groups_vargs+0x207/0x280 [ 3005.430554] device_create+0xdc/0x120 [ 3005.431304] ? device_create_groups_vargs+0x280/0x280 [ 3005.432287] ? init_timer_key+0x12a/0x240 [ 3005.433099] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 3005.434026] mac80211_hwsim_new_radio+0x352/0x4250 [ 3005.434966] ? ____sys_sendmsg+0x70d/0x870 [ 3005.435771] ? ___sys_sendmsg+0xf3/0x170 [ 3005.436549] ? __sys_sendmsg+0xe5/0x1b0 [ 3005.437313] ? do_syscall_64+0x33/0x40 [ 3005.438052] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3005.439075] ? lock_acquire+0x197/0x470 [ 3005.440113] ? create_object.isra.0+0x3ad/0xa20 [ 3005.440188] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 3005.440219] hwsim_new_radio_nl+0x991/0x1080 [ 3005.440243] ? mac80211_hwsim_new_radio+0x4250/0x4250 10:11:37 executing program 2: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 97) r2 = creat(0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 3005.440281] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 3005.440299] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3005.440324] genl_family_rcv_msg_doit+0x22d/0x330 [ 3005.440347] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 10:11:38 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1cdf91001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 3005.440365] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3005.440381] ? cap_capable+0x1cd/0x230 [ 3005.440415] ? ns_capable+0xe2/0x110 [ 3005.440438] genl_rcv_msg+0x33c/0x5a0 [ 3005.440460] ? genl_get_cmd+0x480/0x480 [ 3005.440479] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 3005.440504] ? lock_release+0x680/0x680 [ 3005.440523] ? netlink_deliver_tap+0xf4/0xcd0 [ 3005.440546] netlink_rcv_skb+0x14b/0x430 [ 3005.440564] ? genl_get_cmd+0x480/0x480 [ 3005.440583] ? netlink_ack+0xab0/0xab0 [ 3005.440614] ? netlink_deliver_tap+0x1c4/0xcd0 [ 3005.440633] ? is_vmalloc_addr+0x7b/0xb0 [ 3005.440654] genl_rcv+0x24/0x40 [ 3005.440669] netlink_unicast+0x549/0x7f0 [ 3005.440694] ? netlink_attachskb+0x870/0x870 [ 3005.440710] ? __virt_addr_valid+0x128/0x350 [ 3005.440740] netlink_sendmsg+0x90f/0xdf0 [ 3005.440765] ? netlink_unicast+0x7f0/0x7f0 [ 3005.440796] ? netlink_unicast+0x7f0/0x7f0 [ 3005.440813] __sock_sendmsg+0x154/0x190 [ 3005.440833] ____sys_sendmsg+0x70d/0x870 [ 3005.440854] ? sock_write_iter+0x3d0/0x3d0 [ 3005.440870] ? do_recvmmsg+0x6d0/0x6d0 [ 3005.440890] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3005.440911] ? lock_downgrade+0x6d0/0x6d0 [ 3005.440933] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3005.440950] ? SOFTIRQ_verbose+0x10/0x10 [ 3005.440973] ___sys_sendmsg+0xf3/0x170 [ 3005.440994] ? sendmsg_copy_msghdr+0x160/0x160 [ 3005.441018] ? lock_downgrade+0x6d0/0x6d0 [ 3005.441040] ? find_held_lock+0x2c/0x110 [ 3005.441070] ? __fget_files+0x296/0x4c0 [ 3005.441100] ? __fget_light+0xea/0x290 [ 3005.441128] __sys_sendmsg+0xe5/0x1b0 [ 3005.441146] ? __sys_sendmsg_sock+0x40/0x40 [ 3005.441163] ? rcu_read_lock_any_held+0x75/0xa0 [ 3005.441202] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3005.441219] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3005.441234] ? trace_hardirqs_on+0x5b/0x180 [ 3005.441257] do_syscall_64+0x33/0x40 [ 3005.441274] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3005.441286] RIP: 0033:0x7f46fba00b19 [ 3005.441307] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3005.441317] RSP: 002b:00007f46f8f76188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3005.441337] RAX: ffffffffffffffda RBX: 00007f46fbb13f60 RCX: 00007f46fba00b19 [ 3005.441348] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 3005.441360] RBP: 00007f46f8f761d0 R08: 0000000000000000 R09: 0000000000000000 [ 3005.441370] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3005.441382] R13: 00007ffe81962e7f R14: 00007f46f8f76300 R15: 0000000000022000 [ 3005.600141] FAULT_INJECTION: forcing a failure. [ 3005.600141] name failslab, interval 1, probability 0, space 0, times 0 [ 3005.639725] CPU: 1 PID: 16589 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 3005.641135] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3005.642826] Call Trace: [ 3005.643393] dump_stack+0x107/0x167 [ 3005.644155] should_fail.cold+0x5/0xa [ 3005.644935] ? kobject_get_path+0xc5/0x1f0 [ 3005.645816] should_failslab+0x5/0x20 [ 3005.646612] __kmalloc+0x72/0x390 [ 3005.647329] ? trace_hardirqs_on+0x5b/0x180 [ 3005.648224] kobject_get_path+0xc5/0x1f0 [ 3005.649048] kobject_uevent_env+0x251/0xf90 [ 3005.649944] ? software_node_notify+0xf8/0x2f0 [ 3005.650884] device_del+0xa8f/0x1180 [ 3005.651652] ? uevent_show+0x370/0x370 [ 3005.652468] ? wait_for_completion_io+0x270/0x270 [ 3005.653483] device_unregister+0x11/0x30 [ 3005.654322] mac80211_hwsim_new_radio+0x414/0x4250 [ 3005.655350] ? ____sys_sendmsg+0x70d/0x870 [ 3005.656223] ? ___sys_sendmsg+0xf3/0x170 [ 3005.657058] ? __sys_sendmsg+0xe5/0x1b0 [ 3005.657876] ? do_syscall_64+0x33/0x40 [ 3005.658680] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3005.659795] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 3005.660736] hwsim_new_radio_nl+0x991/0x1080 [ 3005.661621] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 3005.662666] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 3005.663996] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3005.665295] genl_family_rcv_msg_doit+0x22d/0x330 [ 3005.666261] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3005.667574] ? cap_capable+0x1cd/0x230 [ 3005.668376] ? ns_capable+0xe2/0x110 [ 3005.669139] genl_rcv_msg+0x33c/0x5a0 [ 3005.669919] ? genl_get_cmd+0x480/0x480 [ 3005.670725] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 3005.671783] ? lock_release+0x680/0x680 [ 3005.672587] ? netlink_deliver_tap+0xf4/0xcd0 [ 3005.673497] netlink_rcv_skb+0x14b/0x430 [ 3005.674321] ? genl_get_cmd+0x480/0x480 [ 3005.675141] ? netlink_ack+0xab0/0xab0 [ 3005.675931] ? netlink_deliver_tap+0x1c4/0xcd0 [ 3005.676859] ? is_vmalloc_addr+0x7b/0xb0 [ 3005.677683] genl_rcv+0x24/0x40 [ 3005.678348] netlink_unicast+0x549/0x7f0 [ 3005.679185] ? netlink_attachskb+0x870/0x870 [ 3005.680072] ? __virt_addr_valid+0x128/0x350 [ 3005.680974] netlink_sendmsg+0x90f/0xdf0 [ 3005.681803] ? netlink_unicast+0x7f0/0x7f0 [ 3005.682681] ? netlink_unicast+0x7f0/0x7f0 [ 3005.683551] __sock_sendmsg+0x154/0x190 [ 3005.684361] ____sys_sendmsg+0x70d/0x870 [ 3005.685188] ? sock_write_iter+0x3d0/0x3d0 [ 3005.686036] ? do_recvmmsg+0x6d0/0x6d0 [ 3005.686819] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3005.687887] ? lock_downgrade+0x6d0/0x6d0 [ 3005.688750] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3005.689791] ? SOFTIRQ_verbose+0x10/0x10 [ 3005.690633] ___sys_sendmsg+0xf3/0x170 [ 3005.691438] ? sendmsg_copy_msghdr+0x160/0x160 [ 3005.692386] ? lock_downgrade+0x6d0/0x6d0 [ 3005.693250] ? find_held_lock+0x2c/0x110 [ 3005.694069] ? __fget_files+0x296/0x4c0 [ 3005.694908] ? __fget_light+0xea/0x290 [ 3005.695703] __sys_sendmsg+0xe5/0x1b0 [ 3005.696493] ? __sys_sendmsg_sock+0x40/0x40 [ 3005.697356] ? rcu_read_lock_any_held+0x75/0xa0 [ 3005.698332] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3005.699404] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3005.700468] ? trace_hardirqs_on+0x5b/0x180 [ 3005.701361] do_syscall_64+0x33/0x40 [ 3005.702110] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3005.703175] RIP: 0033:0x7fa741f89b19 [ 3005.703927] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3005.707713] RSP: 002b:00007fa73f4ff188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3005.709225] RAX: ffffffffffffffda RBX: 00007fa74209cf60 RCX: 00007fa741f89b19 [ 3005.710677] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 3005.712160] RBP: 00007fa73f4ff1d0 R08: 0000000000000000 R09: 0000000000000000 [ 3005.713622] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3005.715097] R13: 00007ffd248a3bcf R14: 00007fa73f4ff300 R15: 0000000000022000 10:11:51 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a54a, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) 10:11:51 executing program 2: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 98) r2 = creat(0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:11:51 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c004c001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:11:51 executing program 3: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 38) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:11:51 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x6, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:11:51 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @perf_bp={0x0}}, 0x0, 0x9, 0xffffffffffffffff, 0x0) r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) r2 = socket(0x1a, 0xa, 0x7) ioctl$HCIINQUIRY(r2, 0x800448f0, &(0x7f0000000000)={0xffffffffffffffff, 0x7fff, "e7cb61", 0x1, 0x6}) bind$bt_hci(r1, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6) perf_event_open$cgroup(&(0x7f0000000100)={0x0, 0x80, 0x81, 0x20, 0x8, 0x2a, 0x0, 0x2, 0x42020, 0x8, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x3, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x4, 0x1, @perf_config_ext={0x7, 0x401}, 0x10, 0x100000001, 0x6, 0x8, 0xffff, 0x200, 0x8, 0x0, 0x800003f, 0x0, 0x4}, 0xffffffffffffffff, 0xf, r0, 0x0) 10:11:51 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1cdf92001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:11:51 executing program 1: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000280), r0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_MGMT_C_ADD(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=ANY=[@ANYBLOB="40f60000ff3199de9108d53b6b87a700ef6a09b9f8ef41acf38c1bf8a6b6bd5d868d1e673035bd1a540f9fc34744670b9c5ad850ccdb5e7ab62f77eb34cab21a3f100ef40afbeba6f08b7fc3c6f578d66969b23722813cb033e0acac2ea26269ccf49fcab2da6642e34fe6028cecc704f14bc0fe1adad4c85e7ba3237d7522d36e675ddb0369be949009b16c3bf619efe68386ac6bcac15d1495d400"/168, @ANYRES16=r1, @ANYBLOB="010000000000000000000100000008000700ac1414bb060008007f0000010800010029275c000800020005000000"], 0x34}}, 0x0) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000180), r4) sendmsg$IEEE802154_LLSEC_DEL_SECLEVEL(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)={0x38, r5, 0xc01, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5}, @IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_LLSEC_SECLEVELS={0x5}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}]}, 0x38}}, 0x0) sendmsg$NLBL_MGMT_C_ADD(r3, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, r1, 0x20, 0x70bd2d, 0x25dfdbff, {}, [@NLBL_MGMT_A_FAMILY={0x6, 0xb, 0xb}]}, 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x4000) [ 3018.597114] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 3018.598163] System zones: 0-7 [ 3018.614478] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 3018.642330] FAULT_INJECTION: forcing a failure. [ 3018.642330] name failslab, interval 1, probability 0, space 0, times 0 [ 3018.644071] CPU: 1 PID: 16619 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 3018.644869] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3018.645825] Call Trace: [ 3018.646138] dump_stack+0x107/0x167 [ 3018.646551] should_fail.cold+0x5/0xa [ 3018.646991] should_failslab+0x5/0x20 [ 3018.647442] __kmalloc_node_track_caller+0x74/0x3b0 [ 3018.647997] ? alloc_uevent_skb+0x7b/0x210 [ 3018.648486] __alloc_skb+0xb1/0x5b0 [ 3018.648905] alloc_uevent_skb+0x7b/0x210 [ 3018.649367] kobject_uevent_env+0x99a/0xf90 [ 3018.649856] ? software_node_notify+0xf8/0x2f0 [ 3018.650379] device_del+0xa8f/0x1180 [ 3018.650808] ? uevent_show+0x370/0x370 [ 3018.651261] ? wait_for_completion_io+0x270/0x270 [ 3018.651817] device_unregister+0x11/0x30 [ 3018.652289] mac80211_hwsim_new_radio+0x414/0x4250 [ 3018.652876] ? ____sys_sendmsg+0x70d/0x870 [ 3018.653376] ? ___sys_sendmsg+0xf3/0x170 [ 3018.653862] ? __sys_sendmsg+0xe5/0x1b0 [ 3018.654332] ? do_syscall_64+0x33/0x40 [ 3018.654797] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3018.655447] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 3018.656009] hwsim_new_radio_nl+0x991/0x1080 [ 3018.656536] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 3018.657172] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 3018.657943] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3018.658728] genl_family_rcv_msg_doit+0x22d/0x330 [ 3018.659315] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3018.660095] ? cap_capable+0x1cd/0x230 [ 3018.660578] ? ns_capable+0xe2/0x110 [ 3018.661030] genl_rcv_msg+0x33c/0x5a0 [ 3018.661497] ? genl_get_cmd+0x480/0x480 [ 3018.661971] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 3018.662592] ? lock_release+0x680/0x680 [ 3018.663049] ? netlink_deliver_tap+0xf4/0xcd0 [ 3018.663593] netlink_rcv_skb+0x14b/0x430 [ 3018.664072] ? genl_get_cmd+0x480/0x480 [ 3018.664546] ? netlink_ack+0xab0/0xab0 [ 3018.665016] ? netlink_deliver_tap+0x1c4/0xcd0 [ 3018.665555] ? is_vmalloc_addr+0x7b/0xb0 [ 3018.666037] genl_rcv+0x24/0x40 [ 3018.666433] netlink_unicast+0x549/0x7f0 [ 3018.666915] ? netlink_attachskb+0x870/0x870 [ 3018.667413] ? __virt_addr_valid+0x128/0x350 [ 3018.667939] netlink_sendmsg+0x90f/0xdf0 [ 3018.668407] ? netlink_unicast+0x7f0/0x7f0 [ 3018.668898] ? netlink_unicast+0x7f0/0x7f0 [ 3018.669390] __sock_sendmsg+0x154/0x190 [ 3018.669846] ____sys_sendmsg+0x70d/0x870 [ 3018.670323] ? sock_write_iter+0x3d0/0x3d0 [ 3018.670812] ? do_recvmmsg+0x6d0/0x6d0 [ 3018.671285] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3018.671913] ? lock_downgrade+0x6d0/0x6d0 [ 3018.672409] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3018.673022] ? SOFTIRQ_verbose+0x10/0x10 [ 3018.673513] ___sys_sendmsg+0xf3/0x170 [ 3018.673976] ? sendmsg_copy_msghdr+0x160/0x160 [ 3018.674514] ? lock_downgrade+0x6d0/0x6d0 [ 3018.675008] ? find_held_lock+0x2c/0x110 [ 3018.675511] ? __fget_files+0x296/0x4c0 [ 3018.675992] ? __fget_light+0xea/0x290 [ 3018.676457] __sys_sendmsg+0xe5/0x1b0 [ 3018.676904] ? __sys_sendmsg_sock+0x40/0x40 [ 3018.677412] ? rcu_read_lock_any_held+0x75/0xa0 [ 3018.677975] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3018.678587] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3018.679218] ? trace_hardirqs_on+0x5b/0x180 [ 3018.679733] do_syscall_64+0x33/0x40 [ 3018.680180] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3018.680785] RIP: 0033:0x7fa741f89b19 [ 3018.681226] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3018.683402] RSP: 002b:00007fa73f4ff188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3018.684295] RAX: ffffffffffffffda RBX: 00007fa74209cf60 RCX: 00007fa741f89b19 [ 3018.685126] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 3018.685969] RBP: 00007fa73f4ff1d0 R08: 0000000000000000 R09: 0000000000000000 [ 3018.686804] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3018.687645] R13: 00007ffd248a3bcf R14: 00007fa73f4ff300 R15: 0000000000022000 10:11:51 executing program 0: timer_create(0x3, &(0x7f0000000000)={0x0, 0x1c, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000040)=0x0) clock_gettime(0x0, 0x0) timer_settime(0x0, 0x0, &(0x7f00000000c0)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) timer_create(0x3, &(0x7f0000000080)={0x0, 0xb, 0x4, @thr={&(0x7f0000000180)="f5671eb304000e794d9437767c8e3b80a9f114137840a6b129daf69ae7a8117cbf27b184b0602589e9156ac2b5b6e98fc3883e8abcebd185ec4714b27ac1c726fd7ed8ecf40a908a4f00de843a95c312a966ecdaba1b593c32e64cfda54ec6f381a3485d7dc7291f32b4f1f1efadbdbac3906872581baf1f5f27b8d9b53918ea70f64f20bb5176c038080bd8a04a319b1ecd5f7ed20ed32b8bb319c2d084bdf7d1d8f100a202923442b57bad91b1ed135cc1cb02adeea55c1dca5ec55f5d7dac9803097d74d4a659b5b3313d270f2a4cf55a02bb3d5df9c6c11adb8e09efe0", &(0x7f0000000300)="6fcf6be73a98f756c8cbe3eebf34f5918ced17a8ad5448c2219c24d67d6d07c2c7ab6b33a478cf6c52924d681eabe70835367a8ea9adbfbf436cd288c1f31384a6bf557d14ff80a6e173b3a9c5f7b30e3d96c40583c5c87ccc75d34a9a57a1a94888cf47168be58864d3c12437cd766adf3a16060e991fa7e3a75f05a6f3770fa4bb36d70eaf72b3f0d4eaa14918b2795fe16682207cb7f676b7f015505d383b54de802fa0130a3b92db8945d450a5f7cf5596188ae9e1457cb4155826ece7356b1e1ad2d8c3babc33e8a0a383471b4747e99aa9970ebfed3848398ff334feaeccb3a67bc3388e31536abaca0a"}}, &(0x7f0000000440)=0x0) timer_settime(r0, 0x1, &(0x7f0000000500)={{}, {0x0, 0x989680}}, 0x0) timer_gettime(r1, &(0x7f0000000480)) timer_create(0x3, 0x0, &(0x7f0000000040)=0x0) timer_settime(r2, 0x0, &(0x7f0000000400)={{}, {0x77359400}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r3, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4) connect$inet6(r3, &(0x7f0000000100)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c) sendmsg$inet(r3, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x404c008) r4 = fcntl$dupfd(r3, 0x0, r3) sendmsg$inet6(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r5, &(0x7f0000000040), 0x6) getsockname(r5, 0x0, &(0x7f00000001c0)) fallocate(r5, 0x22, 0x5a3f, 0x2) clone3(&(0x7f0000000540)={0x40182300, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 10:11:51 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a54b, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) [ 3018.727372] FAULT_INJECTION: forcing a failure. [ 3018.727372] name failslab, interval 1, probability 0, space 0, times 0 [ 3018.730167] CPU: 0 PID: 16608 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 3018.731615] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3018.733341] Call Trace: [ 3018.733891] dump_stack+0x107/0x167 [ 3018.734639] should_fail.cold+0x5/0xa [ 3018.735430] ? __kernfs_new_node+0xd4/0x860 [ 3018.736327] should_failslab+0x5/0x20 [ 3018.737103] kmem_cache_alloc+0x5b/0x310 [ 3018.737937] ? addrconf_sysctl_disable+0x129/0x6e0 [ 3018.738948] __kernfs_new_node+0xd4/0x860 [ 3018.739828] ? SOFTIRQ_verbose+0x10/0x10 [ 3018.740672] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 3018.741657] ? lock_acquire+0x197/0x470 [ 3018.742475] ? find_held_lock+0x2c/0x110 [ 3018.743334] ? sysfs_do_create_link_sd+0x82/0x140 [ 3018.744329] kernfs_new_node+0x93/0x120 [ 3018.745151] kernfs_create_link+0xcb/0x230 [ 3018.746023] sysfs_do_create_link_sd+0x90/0x140 [ 3018.746977] sysfs_create_link+0x5f/0xc0 [ 3018.747818] device_add+0x5e1/0x1c50 [ 3018.748590] ? devlink_add_symlinks+0x970/0x970 [ 3018.749548] device_create_groups_vargs+0x207/0x280 [ 3018.750569] device_create+0xdc/0x120 [ 3018.751352] ? device_create_groups_vargs+0x280/0x280 [ 3018.752421] ? init_timer_key+0x12a/0x240 [ 3018.753271] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 10:11:51 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0068001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 3018.754274] mac80211_hwsim_new_radio+0x352/0x4250 [ 3018.755410] ? ____sys_sendmsg+0x70d/0x870 [ 3018.756283] ? ___sys_sendmsg+0xf3/0x170 [ 3018.757111] ? __sys_sendmsg+0xe5/0x1b0 [ 3018.757931] ? do_syscall_64+0x33/0x40 [ 3018.758730] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3018.759843] ? lock_acquire+0x197/0x470 [ 3018.760664] ? create_object.isra.0+0x3ad/0xa20 [ 3018.761627] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 3018.762604] hwsim_new_radio_nl+0x991/0x1080 [ 3018.763520] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 3018.764587] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 3018.765930] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3018.767291] genl_family_rcv_msg_doit+0x22d/0x330 [ 3018.768283] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3018.769633] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3018.770712] ? cap_capable+0x1cd/0x230 [ 3018.771536] ? ns_capable+0xe2/0x110 [ 3018.772313] genl_rcv_msg+0x33c/0x5a0 [ 3018.773101] ? genl_get_cmd+0x480/0x480 [ 3018.773916] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 3018.774976] ? lock_release+0x680/0x680 [ 3018.775811] ? netlink_deliver_tap+0xf4/0xcd0 [ 3018.776739] netlink_rcv_skb+0x14b/0x430 [ 3018.777569] ? genl_get_cmd+0x480/0x480 [ 3018.778387] ? netlink_ack+0xab0/0xab0 [ 3018.779214] ? netlink_deliver_tap+0x1c4/0xcd0 [ 3018.780148] ? is_vmalloc_addr+0x7b/0xb0 [ 3018.780985] genl_rcv+0x24/0x40 [ 3018.781668] netlink_unicast+0x549/0x7f0 [ 3018.782501] ? netlink_attachskb+0x870/0x870 [ 3018.783429] ? __virt_addr_valid+0x128/0x350 [ 3018.784343] netlink_sendmsg+0x90f/0xdf0 [ 3018.785183] ? netlink_unicast+0x7f0/0x7f0 [ 3018.786065] ? netlink_unicast+0x7f0/0x7f0 [ 3018.786933] __sock_sendmsg+0x154/0x190 [ 3018.787769] ____sys_sendmsg+0x70d/0x870 [ 3018.788608] ? sock_write_iter+0x3d0/0x3d0 [ 3018.789466] ? do_recvmmsg+0x6d0/0x6d0 [ 3018.790281] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3018.791363] ? lock_downgrade+0x6d0/0x6d0 [ 3018.792212] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3018.793289] ? SOFTIRQ_verbose+0x10/0x10 [ 3018.794123] ___sys_sendmsg+0xf3/0x170 [ 3018.794936] ? sendmsg_copy_msghdr+0x160/0x160 [ 3018.795888] ? lock_downgrade+0x6d0/0x6d0 [ 3018.796744] ? find_held_lock+0x2c/0x110 [ 3018.797584] ? __fget_files+0x296/0x4c0 [ 3018.798419] ? __fget_light+0xea/0x290 [ 3018.799229] __sys_sendmsg+0xe5/0x1b0 [ 3018.800016] ? __sys_sendmsg_sock+0x40/0x40 [ 3018.800893] ? rcu_read_lock_any_held+0x75/0xa0 [ 3018.801867] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3018.802932] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3018.804005] ? trace_hardirqs_on+0x5b/0x180 [ 3018.804887] do_syscall_64+0x33/0x40 [ 3018.805652] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3018.806697] RIP: 0033:0x7f46fba00b19 [ 3018.807469] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3018.811232] RSP: 002b:00007f46f8f76188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3018.812790] RAX: ffffffffffffffda RBX: 00007f46fbb13f60 RCX: 00007f46fba00b19 [ 3018.814243] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 3018.815711] RBP: 00007f46f8f761d0 R08: 0000000000000000 R09: 0000000000000000 [ 3018.817168] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3018.818629] R13: 00007ffe81962e7f R14: 00007f46f8f76300 R15: 0000000000022000 10:11:51 executing program 2: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 99) r2 = creat(0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:11:51 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1cdf93001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:11:51 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c006c001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:11:51 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1cdf94001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 3019.051217] FAULT_INJECTION: forcing a failure. [ 3019.051217] name failslab, interval 1, probability 0, space 0, times 0 [ 3019.052974] CPU: 1 PID: 16646 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 3019.053713] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3019.054611] Call Trace: [ 3019.054906] dump_stack+0x107/0x167 [ 3019.055310] should_fail.cold+0x5/0xa [ 3019.055725] should_failslab+0x5/0x20 [ 3019.056134] __kmalloc_node_track_caller+0x74/0x3b0 [ 3019.056670] ? alloc_uevent_skb+0x7b/0x210 [ 3019.057134] __alloc_skb+0xb1/0x5b0 [ 3019.057527] alloc_uevent_skb+0x7b/0x210 [ 3019.057962] kobject_uevent_env+0x99a/0xf90 [ 3019.058339] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 3019.058431] ? software_node_notify+0xf8/0x2f0 [ 3019.058455] device_del+0xa8f/0x1180 [ 3019.060093] System zones: [ 3019.060431] ? uevent_show+0x370/0x370 [ 3019.061197] 0-7 [ 3019.061469] ? wait_for_completion_io+0x270/0x270 [ 3019.061490] device_unregister+0x11/0x30 [ 3019.062282] [ 3019.062486] mac80211_hwsim_new_radio+0x414/0x4250 [ 3019.064595] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 3019.065104] hwsim_new_radio_nl+0x991/0x1080 [ 3019.065583] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 3019.066147] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 3019.066442] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 3019.066849] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3019.066866] genl_family_rcv_msg_doit+0x22d/0x330 [ 3019.066880] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3019.066900] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 3019.070996] ? cap_capable+0x1cd/0x230 [ 3019.071466] ? ns_capable+0xe2/0x110 [ 3019.071885] genl_rcv_msg+0x33c/0x5a0 [ 3019.072298] ? genl_get_cmd+0x480/0x480 [ 3019.072748] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 3019.073305] ? lock_release+0x680/0x680 [ 3019.073755] ? netlink_deliver_tap+0xf4/0xcd0 [ 3019.074237] netlink_rcv_skb+0x14b/0x430 [ 3019.074699] ? genl_get_cmd+0x480/0x480 [ 3019.075132] ? netlink_ack+0xab0/0xab0 [ 3019.075582] ? netlink_deliver_tap+0x1c4/0xcd0 [ 3019.076072] ? is_vmalloc_addr+0x7b/0xb0 [ 3019.076536] genl_rcv+0x24/0x40 [ 3019.076891] netlink_unicast+0x549/0x7f0 [ 3019.077352] ? netlink_attachskb+0x870/0x870 [ 3019.077828] ? __virt_addr_valid+0x128/0x350 [ 3019.078330] netlink_sendmsg+0x90f/0xdf0 [ 3019.078772] ? netlink_unicast+0x7f0/0x7f0 [ 3019.079271] ? netlink_unicast+0x7f0/0x7f0 [ 3019.079722] __sock_sendmsg+0x154/0x190 [ 3019.080170] ____sys_sendmsg+0x70d/0x870 [ 3019.080614] ? sock_write_iter+0x3d0/0x3d0 [ 3019.081092] ? do_recvmmsg+0x6d0/0x6d0 [ 3019.081510] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3019.082098] ? lock_downgrade+0x6d0/0x6d0 [ 3019.082544] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3019.083146] ? SOFTIRQ_verbose+0x10/0x10 [ 3019.083576] ___sys_sendmsg+0xf3/0x170 [ 3019.084017] ? sendmsg_copy_msghdr+0x160/0x160 [ 3019.084509] ? lock_downgrade+0x6d0/0x6d0 [ 3019.084990] ? find_held_lock+0x2c/0x110 [ 3019.085429] ? __fget_files+0x296/0x4c0 [ 3019.085887] ? __fget_light+0xea/0x290 [ 3019.086304] __sys_sendmsg+0xe5/0x1b0 [ 3019.086736] ? __sys_sendmsg_sock+0x40/0x40 [ 3019.087203] ? rcu_read_lock_any_held+0x75/0xa0 [ 3019.087750] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3019.088301] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3019.088885] ? trace_hardirqs_on+0x5b/0x180 [ 3019.089348] do_syscall_64+0x33/0x40 [ 3019.089775] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3019.090313] RIP: 0033:0x7fa741f89b19 [ 3019.090737] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3019.092695] RSP: 002b:00007fa73f4ff188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3019.093548] RAX: ffffffffffffffda RBX: 00007fa74209cf60 RCX: 00007fa741f89b19 [ 3019.094306] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 3019.095112] RBP: 00007fa73f4ff1d0 R08: 0000000000000000 R09: 0000000000000000 [ 3019.095857] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3019.096666] R13: 00007ffd248a3bcf R14: 00007fa73f4ff300 R15: 0000000000022000 10:11:51 executing program 0: timer_create(0x3, &(0x7f0000000000)={0x0, 0x1c, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000040)=0x0) clock_gettime(0x0, 0x0) timer_settime(0x0, 0x0, &(0x7f00000000c0)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) timer_create(0x3, &(0x7f0000000080)={0x0, 0xb, 0x4, @thr={&(0x7f0000000180)="f5671eb304000e794d9437767c8e3b80a9f114137840a6b129daf69ae7a8117cbf27b184b0602589e9156ac2b5b6e98fc3883e8abcebd185ec4714b27ac1c726fd7ed8ecf40a908a4f00de843a95c312a966ecdaba1b593c32e64cfda54ec6f381a3485d7dc7291f32b4f1f1efadbdbac3906872581baf1f5f27b8d9b53918ea70f64f20bb5176c038080bd8a04a319b1ecd5f7ed20ed32b8bb319c2d084bdf7d1d8f100a202923442b57bad91b1ed135cc1cb02adeea55c1dca5ec55f5d7dac9803097d74d4a659b5b3313d270f2a4cf55a02bb3d5df9c6c11adb8e09efe0", &(0x7f0000000300)="6fcf6be73a98f756c8cbe3eebf34f5918ced17a8ad5448c2219c24d67d6d07c2c7ab6b33a478cf6c52924d681eabe70835367a8ea9adbfbf436cd288c1f31384a6bf557d14ff80a6e173b3a9c5f7b30e3d96c40583c5c87ccc75d34a9a57a1a94888cf47168be58864d3c12437cd766adf3a16060e991fa7e3a75f05a6f3770fa4bb36d70eaf72b3f0d4eaa14918b2795fe16682207cb7f676b7f015505d383b54de802fa0130a3b92db8945d450a5f7cf5596188ae9e1457cb4155826ece7356b1e1ad2d8c3babc33e8a0a383471b4747e99aa9970ebfed3848398ff334feaeccb3a67bc3388e31536abaca0a"}}, &(0x7f0000000440)=0x0) timer_settime(r0, 0x1, &(0x7f0000000500)={{}, {0x0, 0x989680}}, 0x0) timer_gettime(r1, &(0x7f0000000480)) timer_create(0x3, 0x0, &(0x7f0000000040)=0x0) timer_settime(r2, 0x0, &(0x7f0000000400)={{}, {0x77359400}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(r3, 0x11, 0x67, &(0x7f0000000140)=0x7f, 0x4) connect$inet6(r3, &(0x7f0000000100)={0xa, 0x0, 0x0, @remote, 0x2}, 0x1c) sendmsg$inet(r3, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x404c008) r4 = fcntl$dupfd(r3, 0x0, r3) sendmsg$inet6(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000bc0)='+', 0x1fc0}], 0x1}, 0x0) r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r5, &(0x7f0000000040), 0x6) getsockname(r5, 0x0, &(0x7f00000001c0)) fallocate(r5, 0x22, 0x5a3f, 0x2) clone3(&(0x7f0000000540)={0x40182300, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 10:11:51 executing program 3: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 39) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 3019.201435] FAULT_INJECTION: forcing a failure. [ 3019.201435] name failslab, interval 1, probability 0, space 0, times 0 [ 3019.202773] CPU: 1 PID: 16668 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 3019.203524] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3019.204426] Call Trace: [ 3019.204713] dump_stack+0x107/0x167 [ 3019.205115] should_fail.cold+0x5/0xa [ 3019.205536] ? create_object.isra.0+0x3a/0xa20 [ 3019.206040] should_failslab+0x5/0x20 [ 3019.206452] kmem_cache_alloc+0x5b/0x310 [ 3019.206891] ? mutex_lock_io_nested+0xf30/0xf30 [ 3019.207399] create_object.isra.0+0x3a/0xa20 [ 3019.207866] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3019.208418] kmem_cache_alloc+0x159/0x310 [ 3019.208862] ? addrconf_sysctl_disable+0x129/0x6e0 [ 3019.209403] __kernfs_new_node+0xd4/0x860 [ 3019.209851] ? SOFTIRQ_verbose+0x10/0x10 [ 3019.210295] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 3019.210821] ? lock_acquire+0x197/0x470 [ 3019.211254] ? find_held_lock+0x2c/0x110 [ 3019.211710] ? sysfs_do_create_link_sd+0x82/0x140 [ 3019.212242] kernfs_new_node+0x93/0x120 [ 3019.212679] kernfs_create_link+0xcb/0x230 [ 3019.213145] sysfs_do_create_link_sd+0x90/0x140 [ 3019.213643] sysfs_create_link+0x5f/0xc0 [ 3019.214092] device_add+0x5e1/0x1c50 [ 3019.214510] ? devlink_add_symlinks+0x970/0x970 [ 3019.215037] device_create_groups_vargs+0x207/0x280 [ 3019.215583] device_create+0xdc/0x120 [ 3019.215996] ? device_create_groups_vargs+0x280/0x280 [ 3019.216563] ? init_timer_key+0x12a/0x240 [ 3019.217016] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 3019.217553] mac80211_hwsim_new_radio+0x352/0x4250 [ 3019.218070] ? ____sys_sendmsg+0x70d/0x870 [ 3019.218534] ? ___sys_sendmsg+0xf3/0x170 [ 3019.218973] ? __sys_sendmsg+0xe5/0x1b0 [ 3019.219414] ? do_syscall_64+0x33/0x40 [ 3019.219825] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3019.220413] ? lock_acquire+0x197/0x470 [ 3019.220840] ? create_object.isra.0+0x3ad/0xa20 [ 3019.221353] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 3019.221856] hwsim_new_radio_nl+0x991/0x1080 [ 3019.222339] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 3019.222908] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 3019.223619] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3019.224323] genl_family_rcv_msg_doit+0x22d/0x330 [ 3019.224847] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3019.225578] ? cap_capable+0x1cd/0x230 [ 3019.226005] ? ns_capable+0xe2/0x110 [ 3019.226419] genl_rcv_msg+0x33c/0x5a0 [ 3019.226855] ? genl_get_cmd+0x480/0x480 [ 3019.227309] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 3019.227884] ? lock_release+0x680/0x680 [ 3019.228312] ? netlink_deliver_tap+0xf4/0xcd0 [ 3019.228811] netlink_rcv_skb+0x14b/0x430 [ 3019.229248] ? genl_get_cmd+0x480/0x480 [ 3019.229688] ? netlink_ack+0xab0/0xab0 [ 3019.230125] ? netlink_deliver_tap+0x1c4/0xcd0 [ 3019.230636] ? is_vmalloc_addr+0x7b/0xb0 [ 3019.231076] genl_rcv+0x24/0x40 [ 3019.231453] netlink_unicast+0x549/0x7f0 [ 3019.231902] ? netlink_attachskb+0x870/0x870 [ 3019.232399] ? __virt_addr_valid+0x128/0x350 [ 3019.232884] netlink_sendmsg+0x90f/0xdf0 [ 3019.233340] ? netlink_unicast+0x7f0/0x7f0 [ 3019.233812] ? netlink_unicast+0x7f0/0x7f0 [ 3019.234278] __sock_sendmsg+0x154/0x190 [ 3019.234717] ____sys_sendmsg+0x70d/0x870 [ 3019.235188] ? sock_write_iter+0x3d0/0x3d0 [ 3019.235649] ? do_recvmmsg+0x6d0/0x6d0 [ 3019.236073] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3019.236648] ? lock_downgrade+0x6d0/0x6d0 [ 3019.237119] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3019.237688] ? SOFTIRQ_verbose+0x10/0x10 [ 3019.238143] ___sys_sendmsg+0xf3/0x170 [ 3019.238571] ? sendmsg_copy_msghdr+0x160/0x160 [ 3019.239091] ? lock_downgrade+0x6d0/0x6d0 [ 3019.239550] ? find_held_lock+0x2c/0x110 [ 3019.240010] ? __fget_files+0x296/0x4c0 [ 3019.240446] ? __fget_light+0xea/0x290 [ 3019.240886] __sys_sendmsg+0xe5/0x1b0 [ 3019.241304] ? __sys_sendmsg_sock+0x40/0x40 [ 3019.241786] ? rcu_read_lock_any_held+0x75/0xa0 [ 3019.242308] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3019.242890] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3019.243461] ? trace_hardirqs_on+0x5b/0x180 [ 3019.243938] do_syscall_64+0x33/0x40 [ 3019.244345] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3019.244887] RIP: 0033:0x7f46fba00b19 [ 3019.245290] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3019.247249] RSP: 002b:00007f46f8f76188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3019.248071] RAX: ffffffffffffffda RBX: 00007f46fbb13f60 RCX: 00007f46fba00b19 [ 3019.248860] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 3019.249648] RBP: 00007f46f8f761d0 R08: 0000000000000000 R09: 0000000000000000 [ 3019.250434] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3019.251219] R13: 00007ffe81962e7f R14: 00007f46f8f76300 R15: 0000000000022000 10:12:05 executing program 0: ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000080)=ANY=[@ANYBLOB="0100000001009db318000000", @ANYRES32, @ANYBLOB="00000000004000010001000000653000"]) r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000000)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/142, 0x8e}], 0x1}, 0x0) syz_io_uring_setup(0x9c0, &(0x7f0000000180)={0x0, 0xb1f5, 0x0, 0xfffffffd}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffc000/0x2000)=nil, 0x0, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000440)) pipe2(&(0x7f00000000c0), 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) ftruncate(r3, 0x1000004) r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000680)='net/arp\x00') setsockopt$inet6_tcp_TCP_ULP(r4, 0x6, 0x1f, &(0x7f00000006c0), 0x4) socketpair$unix(0x1, 0x0, 0x0, 0x0) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r6 = socket$inet6_udp(0xa, 0x2, 0x0) pread64(r6, &(0x7f0000000480)=""/183, 0xb7, 0x9) syz_io_uring_submit(r5, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) io_uring_enter(r0, 0x58ab, 0x0, 0x3, 0x0, 0x0) r7 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000240), 0x404200, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x0, 0x6013, r7, 0x8000000) 10:12:05 executing program 3: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 40) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:12:05 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1cdf95001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:12:05 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x7, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:12:05 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0074001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:12:05 executing program 2: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 100) r2 = creat(0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:12:05 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000a00)=ANY=[], 0x98a) r1 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r1, 0xc0c0583b, &(0x7f00000006c0)=ANY=[@ANYBLOB="00000000fffffdfd0201000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ef31bf5d6d5af9183e29ca2e22810d13a81162b0310cfeba2dfc7e3d98ede5f9a139833346e705cc3f12f5f6b753ceeba94af0caf072d98925fd269bfa1ac062a026439ecf3aa1eda221129c708de0cd594ef3ec34490e0aa11b7acb0c0d4792221c0201054b8bcd1ab76b5dbd"]) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x521882, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000001c0)={'macsec0\x00', &(0x7f0000000180)=ANY=[@ANYBLOB="3c0000000100000003000000030000000220000001000100060000000700000001000080"]}) ioctl$TUNSETPERSIST(r0, 0x400454cb, 0x1) dup(0xffffffffffffffff) ioctl$BTRFS_IOC_FS_INFO(r1, 0x8400941f, &(0x7f00000002c0)) ioctl$SCSI_IOCTL_STOP_UNIT(r0, 0x6) ioctl$BINDER_SET_CONTEXT_MGR(r1, 0x40046207, 0x0) unshare(0x48020200) 10:12:05 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a54c, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) [ 3033.432430] FAULT_INJECTION: forcing a failure. [ 3033.432430] name failslab, interval 1, probability 0, space 0, times 0 [ 3033.433929] CPU: 0 PID: 16685 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 3033.434753] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3033.435762] Call Trace: [ 3033.436098] dump_stack+0x107/0x167 [ 3033.436568] should_fail.cold+0x5/0xa [ 3033.437064] should_failslab+0x5/0x20 [ 3033.437548] __kmalloc_node_track_caller+0x74/0x3b0 [ 3033.438186] ? alloc_uevent_skb+0x7b/0x210 [ 3033.438730] __alloc_skb+0xb1/0x5b0 [ 3033.439200] alloc_uevent_skb+0x7b/0x210 [ 3033.439731] kobject_uevent_env+0x99a/0xf90 [ 3033.440284] ? software_node_notify+0xf8/0x2f0 [ 3033.440871] device_del+0xa8f/0x1180 [ 3033.441354] ? uevent_show+0x370/0x370 [ 3033.441845] ? wait_for_completion_io+0x270/0x270 [ 3033.442467] device_unregister+0x11/0x30 [ 3033.442985] mac80211_hwsim_new_radio+0x414/0x4250 [ 3033.443615] ? ____sys_sendmsg+0x70d/0x870 [ 3033.444143] ? ___sys_sendmsg+0xf3/0x170 [ 3033.444659] ? __sys_sendmsg+0xe5/0x1b0 [ 3033.445147] ? do_syscall_64+0x33/0x40 [ 3033.445642] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3033.446334] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 3033.446933] hwsim_new_radio_nl+0x991/0x1080 [ 3033.447503] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 3033.448166] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 3033.449001] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3033.449833] genl_family_rcv_msg_doit+0x22d/0x330 [ 3033.450437] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3033.451289] ? cap_capable+0x1cd/0x230 [ 3033.451793] ? ns_capable+0xe2/0x110 [ 3033.452267] genl_rcv_msg+0x33c/0x5a0 [ 3033.452747] ? genl_get_cmd+0x480/0x480 [ 3033.453245] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 3033.453899] ? lock_release+0x680/0x680 [ 3033.454397] ? netlink_deliver_tap+0xf4/0xcd0 [ 3033.454962] netlink_rcv_skb+0x14b/0x430 [ 3033.455474] ? genl_get_cmd+0x480/0x480 [ 3033.455973] ? netlink_ack+0xab0/0xab0 [ 3033.456470] ? netlink_deliver_tap+0x1c4/0xcd0 [ 3033.457048] ? is_vmalloc_addr+0x7b/0xb0 [ 3033.457551] genl_rcv+0x24/0x40 [ 3033.457966] netlink_unicast+0x549/0x7f0 [ 3033.458478] ? netlink_attachskb+0x870/0x870 [ 3033.459026] ? __virt_addr_valid+0x128/0x350 [ 3033.459597] netlink_sendmsg+0x90f/0xdf0 [ 3033.460111] ? netlink_unicast+0x7f0/0x7f0 [ 3033.460640] ? netlink_unicast+0x7f0/0x7f0 [ 3033.461171] __sock_sendmsg+0x154/0x190 [ 3033.461676] ____sys_sendmsg+0x70d/0x870 [ 3033.462185] ? sock_write_iter+0x3d0/0x3d0 [ 3033.462711] ? do_recvmmsg+0x6d0/0x6d0 [ 3033.463196] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3033.463858] ? lock_downgrade+0x6d0/0x6d0 [ 3033.464380] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3033.465044] ? SOFTIRQ_verbose+0x10/0x10 [ 3033.465553] ___sys_sendmsg+0xf3/0x170 [ 3033.466037] ? sendmsg_copy_msghdr+0x160/0x160 [ 3033.466611] ? lock_downgrade+0x6d0/0x6d0 [ 3033.467126] ? find_held_lock+0x2c/0x110 [ 3033.467648] ? __fget_files+0x296/0x4c0 [ 3033.468153] ? __fget_light+0xea/0x290 [ 3033.468644] __sys_sendmsg+0xe5/0x1b0 [ 3033.469109] ? __sys_sendmsg_sock+0x40/0x40 [ 3033.469643] ? rcu_read_lock_any_held+0x75/0xa0 [ 3033.470239] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3033.470890] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3033.471539] ? trace_hardirqs_on+0x5b/0x180 [ 3033.472082] do_syscall_64+0x33/0x40 [ 3033.472544] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3033.473177] RIP: 0033:0x7fa741f89b19 [ 3033.473634] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3033.475929] RSP: 002b:00007fa73f4ff188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3033.476884] RAX: ffffffffffffffda RBX: 00007fa74209cf60 RCX: 00007fa741f89b19 [ 3033.477757] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 3033.478586] RBP: 00007fa73f4ff1d0 R08: 0000000000000000 R09: 0000000000000000 [ 3033.479429] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 3033.480256] R13: 00007ffd248a3bcf R14: 00007fa73f4ff300 R15: 0000000000022000 10:12:06 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x13, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = signalfd4(r0, &(0x7f0000000000)={[0x2]}, 0x8, 0x800) perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x40, 0x80, 0x5, 0x0, 0x4, 0x40, 0x4, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1000, 0x0, @perf_config_ext={0x8, 0xfffffffffffffffa}, 0x8140, 0x7, 0x9, 0x0, 0xfffffffffffffffd, 0x8413, 0x7, 0x0, 0x6, 0x0, 0x2}, 0x0, 0x6, r1, 0x6) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) fallocate(r2, 0x0, 0x0, 0xfdef) creat(&(0x7f0000000040)='./file0\x00', 0x0) 10:12:06 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c007a001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:12:06 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1cdf96001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 3033.569412] FAULT_INJECTION: forcing a failure. [ 3033.569412] name failslab, interval 1, probability 0, space 0, times 0 [ 3033.572200] CPU: 1 PID: 16677 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 3033.573783] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3033.575724] Call Trace: [ 3033.576339] dump_stack+0x107/0x167 [ 3033.577188] should_fail.cold+0x5/0xa [ 3033.578068] should_failslab+0x5/0x20 [ 3033.578931] __kmalloc_track_caller+0x79/0x370 [ 3033.579980] ? kstrdup_const+0x53/0x80 [ 3033.580877] kstrdup+0x36/0x70 [ 3033.581614] kstrdup_const+0x53/0x80 [ 3033.582469] __kernfs_new_node+0x9d/0x860 [ 3033.583446] ? SOFTIRQ_verbose+0x10/0x10 [ 3033.584389] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 3033.585488] ? lock_acquire+0x197/0x470 [ 3033.586394] ? find_held_lock+0x2c/0x110 [ 3033.587355] ? sysfs_do_create_link_sd+0x82/0x140 [ 3033.588461] kernfs_new_node+0x93/0x120 [ 3033.589390] kernfs_create_link+0xcb/0x230 [ 3033.590361] sysfs_do_create_link_sd+0x90/0x140 [ 3033.591453] sysfs_create_link+0x5f/0xc0 [ 3033.592387] device_add+0x703/0x1c50 [ 3033.593247] ? devlink_add_symlinks+0x970/0x970 [ 3033.594327] device_create_groups_vargs+0x207/0x280 [ 3033.595459] device_create+0xdc/0x120 [ 3033.596345] ? device_create_groups_vargs+0x280/0x280 [ 3033.597505] ? init_timer_key+0x12a/0x240 [ 3033.598469] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 3033.599581] mac80211_hwsim_new_radio+0x352/0x4250 [ 3033.600699] ? ____sys_sendmsg+0x70d/0x870 [ 3033.601643] ? ___sys_sendmsg+0xf3/0x170 [ 3033.602576] ? __sys_sendmsg+0xe5/0x1b0 [ 3033.603478] ? do_syscall_64+0x33/0x40 [ 3033.604366] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3033.605567] ? lock_acquire+0x197/0x470 [ 3033.606472] ? create_object.isra.0+0x3ad/0xa20 [ 3033.607536] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 3033.608605] hwsim_new_radio_nl+0x991/0x1080 [ 3033.609592] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 3033.610785] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 3033.612245] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3033.613734] genl_family_rcv_msg_doit+0x22d/0x330 [ 3033.614807] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3033.616326] ? ns_capable+0x76/0x110 [ 3033.617155] ? ns_capable+0xe2/0x110 [ 3033.618000] genl_rcv_msg+0x33c/0x5a0 [ 3033.618861] ? genl_get_cmd+0x480/0x480 [ 3033.619781] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 3033.620945] ? lock_release+0x680/0x680 [ 3033.621833] ? netlink_deliver_tap+0xf4/0xcd0 [ 3033.622840] netlink_rcv_skb+0x14b/0x430 [ 3033.623760] ? genl_get_cmd+0x480/0x480 [ 3033.624647] ? netlink_ack+0xab0/0xab0 [ 3033.625534] ? netlink_deliver_tap+0x1c4/0xcd0 [ 3033.626548] ? is_vmalloc_addr+0x7b/0xb0 [ 3033.627475] genl_rcv+0x24/0x40 [ 3033.628215] netlink_unicast+0x549/0x7f0 [ 3033.629130] ? netlink_attachskb+0x870/0x870 [ 3033.630109] ? __virt_addr_valid+0x128/0x350 [ 3033.631101] netlink_sendmsg+0x90f/0xdf0 [ 3033.632022] ? netlink_unicast+0x7f0/0x7f0 [ 3033.632976] ? netlink_unicast+0x7f0/0x7f0 [ 3033.633927] __sock_sendmsg+0x154/0x190 [ 3033.634806] ____sys_sendmsg+0x70d/0x870 [ 3033.635727] ? sock_write_iter+0x3d0/0x3d0 [ 3033.636650] ? do_recvmmsg+0x6d0/0x6d0 [ 3033.637517] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3033.638657] ? lock_downgrade+0x6d0/0x6d0 [ 3033.639590] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3033.640722] ? SOFTIRQ_verbose+0x10/0x10 [ 3033.641631] ___sys_sendmsg+0xf3/0x170 [ 3033.642487] ? sendmsg_copy_msghdr+0x160/0x160 [ 3033.643525] ? lock_downgrade+0x6d0/0x6d0 [ 3033.644447] ? find_held_lock+0x2c/0x110 [ 3033.645374] ? __fget_files+0x296/0x4c0 10:12:06 executing program 2: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 3033.646276] ? __fget_light+0xea/0x290 [ 3033.647293] __sys_sendmsg+0xe5/0x1b0 [ 3033.648134] ? __sys_sendmsg_sock+0x40/0x40 [ 3033.649073] ? rcu_read_lock_any_held+0x75/0xa0 [ 3033.650098] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3033.651226] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3033.652343] ? trace_hardirqs_on+0x5b/0x180 [ 3033.653277] do_syscall_64+0x33/0x40 [ 3033.654089] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3033.655206] RIP: 0033:0x7f46fba00b19 [ 3033.656023] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3033.660025] RSP: 002b:00007f46f8f76188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3033.661698] RAX: ffffffffffffffda RBX: 00007f46fbb13f60 RCX: 00007f46fba00b19 [ 3033.663225] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 3033.664750] RBP: 00007f46f8f761d0 R08: 0000000000000000 R09: 0000000000000000 [ 3033.666259] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3033.667784] R13: 00007ffe81962e7f R14: 00007f46f8f76300 R15: 0000000000022000 [ 3033.694203] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 3033.695150] System zones: 0-7 10:12:06 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x8, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 3033.719220] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue 10:12:06 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1cdf97001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:12:06 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a54d, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) [ 3033.837274] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 3033.839751] System zones: 0-7 [ 3033.844886] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue 10:12:21 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c28d9001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:12:21 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1cdf98001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:12:21 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) openat$incfs(0xffffffffffffffff, 0x0, 0x0, 0x0) ftruncate(r0, 0x1000003) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)) read(r0, &(0x7f00000000c0)=""/78, 0x4e) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0) unlinkat(0xffffffffffffffff, 0x0, 0x0) fcntl$setown(0xffffffffffffffff, 0x8, 0xffffffffffffffff) close(0xffffffffffffffff) close(0xffffffffffffffff) perf_event_open(&(0x7f0000000240)={0x6, 0x80, 0xe5, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8, 0x0, @perf_bp={&(0x7f0000000200), 0x9}, 0x40008, 0x0, 0x0, 0x0, 0x0, 0x7, 0x9, 0x0, 0x2}, 0x0, 0xc, 0xffffffffffffffff, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x104, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000040)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) lseek(r1, 0x0, 0x2) r2 = openat$full(0xffffffffffffff9c, &(0x7f0000000140), 0xa75726fc0f25b2b2, 0x0) fcntl$notify(r2, 0x402, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x4000, 0x128) copy_file_range(r3, 0x0, r1, 0x0, 0x200f5ef, 0x0) 10:12:21 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a54e, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) 10:12:21 executing program 2: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x31400, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:12:21 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x9, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:12:21 executing program 3: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 41) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:12:21 executing program 0: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = gettid() timer_create(0x0, &(0x7f0000000240), 0x0) timer_settime(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000140), 0x119001, 0x0) perf_event_open(&(0x7f00000000c0)={0x5, 0x80, 0xff, 0x1, 0x40, 0x2, 0x0, 0x1, 0x80854, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x3, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1000, 0x0, @perf_config_ext={0x5, 0x3}, 0x10804, 0xb126, 0xffff, 0x6, 0x1b04, 0x1, 0x6, 0x0, 0x200, 0x0, 0x4}, r0, 0xf, r1, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0xfffffffffffffffc}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat2(0xffffffffffffffff, 0x0, 0x0, 0x0) [ 3049.429219] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 3049.438247] System zones: 0-7 [ 3049.463911] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 3049.494634] FAULT_INJECTION: forcing a failure. [ 3049.494634] name failslab, interval 1, probability 0, space 0, times 0 [ 3049.497411] CPU: 0 PID: 16750 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 3049.498881] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3049.500580] Call Trace: [ 3049.501125] dump_stack+0x107/0x167 [ 3049.501901] should_fail.cold+0x5/0xa [ 3049.502706] ? create_object.isra.0+0x3a/0xa20 [ 3049.503653] should_failslab+0x5/0x20 [ 3049.504429] kmem_cache_alloc+0x5b/0x310 [ 3049.505262] create_object.isra.0+0x3a/0xa20 [ 3049.506198] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3049.507239] __kmalloc_track_caller+0x177/0x370 [ 3049.508213] ? kstrdup_const+0x53/0x80 [ 3049.509053] kstrdup+0x36/0x70 [ 3049.509712] kstrdup_const+0x53/0x80 [ 3049.510469] __kernfs_new_node+0x9d/0x860 [ 3049.511310] ? SOFTIRQ_verbose+0x10/0x10 [ 3049.512158] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 3049.513175] ? lock_acquire+0x197/0x470 [ 3049.514012] ? find_held_lock+0x2c/0x110 [ 3049.514849] ? sysfs_do_create_link_sd+0x82/0x140 [ 3049.515844] kernfs_new_node+0x93/0x120 [ 3049.516658] kernfs_create_link+0xcb/0x230 [ 3049.517528] sysfs_do_create_link_sd+0x90/0x140 [ 3049.518480] sysfs_create_link+0x5f/0xc0 [ 3049.519316] device_add+0x703/0x1c50 [ 3049.520131] ? devlink_add_symlinks+0x970/0x970 [ 3049.521095] device_create_groups_vargs+0x207/0x280 [ 3049.522116] device_create+0xdc/0x120 [ 3049.522888] ? device_create_groups_vargs+0x280/0x280 [ 3049.523936] ? init_timer_key+0x12a/0x240 [ 3049.524788] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 3049.525817] mac80211_hwsim_new_radio+0x352/0x4250 [ 3049.526801] ? ____sys_sendmsg+0x70d/0x870 [ 3049.527677] ? ___sys_sendmsg+0xf3/0x170 [ 3049.528490] ? __sys_sendmsg+0xe5/0x1b0 [ 3049.529331] ? do_syscall_64+0x33/0x40 [ 3049.530173] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3049.531248] ? lock_acquire+0x197/0x470 [ 3049.532063] ? create_object.isra.0+0x3ad/0xa20 [ 3049.533006] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 3049.534004] hwsim_new_radio_nl+0x991/0x1080 [ 3049.534893] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 3049.535982] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 3049.537310] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3049.538664] genl_family_rcv_msg_doit+0x22d/0x330 [ 3049.539659] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3049.540983] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3049.542076] ? cap_capable+0x1cd/0x230 [ 3049.542897] ? ns_capable+0xe2/0x110 10:12:22 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c29d9001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 3049.543664] genl_rcv_msg+0x33c/0x5a0 [ 3049.544656] ? genl_get_cmd+0x480/0x480 [ 3049.545475] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 3049.546565] ? lock_release+0x680/0x680 [ 3049.547380] ? netlink_deliver_tap+0xf4/0xcd0 [ 3049.548340] netlink_rcv_skb+0x14b/0x430 [ 3049.549166] ? genl_get_cmd+0x480/0x480 [ 3049.549977] ? netlink_ack+0xab0/0xab0 [ 3049.550786] ? netlink_deliver_tap+0x1c4/0xcd0 [ 3049.551729] ? is_vmalloc_addr+0x7b/0xb0 [ 3049.552614] genl_rcv+0x24/0x40 [ 3049.553320] netlink_unicast+0x549/0x7f0 [ 3049.554150] ? netlink_attachskb+0x870/0x870 [ 3049.555029] ? __virt_addr_valid+0x128/0x350 [ 3049.555959] netlink_sendmsg+0x90f/0xdf0 [ 3049.556801] ? netlink_unicast+0x7f0/0x7f0 [ 3049.557703] ? netlink_unicast+0x7f0/0x7f0 [ 3049.558565] __sock_sendmsg+0x154/0x190 [ 3049.559372] ____sys_sendmsg+0x70d/0x870 [ 3049.560212] ? sock_write_iter+0x3d0/0x3d0 [ 3049.561103] ? do_recvmmsg+0x6d0/0x6d0 [ 3049.561897] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3049.562961] ? lock_downgrade+0x6d0/0x6d0 [ 3049.563827] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3049.564924] ? SOFTIRQ_verbose+0x10/0x10 [ 3049.565759] ___sys_sendmsg+0xf3/0x170 [ 3049.566578] ? sendmsg_copy_msghdr+0x160/0x160 [ 3049.567534] ? lock_downgrade+0x6d0/0x6d0 [ 3049.568383] ? find_held_lock+0x2c/0x110 [ 3049.569220] ? __fget_files+0x296/0x4c0 [ 3049.570078] ? __fget_light+0xea/0x290 [ 3049.570882] __sys_sendmsg+0xe5/0x1b0 [ 3049.571667] ? __sys_sendmsg_sock+0x40/0x40 [ 3049.572545] ? rcu_read_lock_any_held+0x75/0xa0 [ 3049.573517] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3049.574621] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3049.575674] ? trace_hardirqs_on+0x5b/0x180 [ 3049.576556] do_syscall_64+0x33/0x40 [ 3049.577314] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3049.578385] RIP: 0033:0x7f46fba00b19 [ 3049.579142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3049.582890] RSP: 002b:00007f46f8f76188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3049.584474] RAX: ffffffffffffffda RBX: 00007f46fbb13f60 RCX: 00007f46fba00b19 [ 3049.585913] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 3049.587358] RBP: 00007f46f8f761d0 R08: 0000000000000000 R09: 0000000000000000 [ 3049.588842] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3049.590280] R13: 00007ffe81962e7f R14: 00007f46f8f76300 R15: 0000000000022000 10:12:22 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a54f, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) 10:12:22 executing program 2: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x32500, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:12:22 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c8ddf001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:12:22 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0xf, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:12:22 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c2ad9001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:12:22 executing program 3: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 42) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:12:22 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a550, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) 10:12:22 executing program 1: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x58, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1001000a00}], 0x2800018, &(0x7f0000000240)=ANY=[]) stat(&(0x7f0000000100)='./file0\x00', &(0x7f00000001c0)) chdir(&(0x7f0000000040)='./file0\x00') ioctl$PERF_EVENT_IOC_REFRESH(0xffffffffffffffff, 0x2402, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x3}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(r0, 0x40086607, &(0x7f0000000240)=0x101) ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(0xffffffffffffffff, 0x8982, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x100000001) [ 3049.848332] FAULT_INJECTION: forcing a failure. [ 3049.848332] name failslab, interval 1, probability 0, space 0, times 0 [ 3049.850248] CPU: 1 PID: 16788 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 3049.851349] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3049.852680] Call Trace: [ 3049.853112] dump_stack+0x107/0x167 [ 3049.853706] should_fail.cold+0x5/0xa [ 3049.854336] should_failslab+0x5/0x20 [ 3049.854953] __kmalloc_track_caller+0x79/0x370 [ 3049.855691] ? kstrdup_const+0x53/0x80 [ 3049.856323] kstrdup+0x36/0x70 [ 3049.856843] kstrdup_const+0x53/0x80 [ 3049.857444] __kernfs_new_node+0x9d/0x860 [ 3049.858115] ? SOFTIRQ_verbose+0x10/0x10 [ 3049.858770] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 3049.859549] ? lock_acquire+0x197/0x470 [ 3049.860181] ? find_held_lock+0x2c/0x110 [ 3049.860834] ? sysfs_do_create_link_sd+0x82/0x140 [ 3049.861611] kernfs_new_node+0x93/0x120 [ 3049.862252] kernfs_create_link+0xcb/0x230 [ 3049.862932] sysfs_do_create_link_sd+0x90/0x140 [ 3049.863686] sysfs_create_link+0x5f/0xc0 [ 3049.864335] device_add+0x703/0x1c50 [ 3049.864937] ? devlink_add_symlinks+0x970/0x970 [ 3049.865685] device_create_groups_vargs+0x207/0x280 [ 3049.866476] device_create+0xdc/0x120 [ 3049.867086] ? device_create_groups_vargs+0x280/0x280 [ 3049.867914] ? init_timer_key+0x12a/0x240 [ 3049.868582] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 3049.869352] mac80211_hwsim_new_radio+0x352/0x4250 [ 3049.870123] ? ____sys_sendmsg+0x70d/0x870 [ 3049.870791] ? ___sys_sendmsg+0xf3/0x170 [ 3049.871431] ? __sys_sendmsg+0xe5/0x1b0 [ 3049.872087] ? do_syscall_64+0x33/0x40 [ 3049.872708] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3049.873564] ? lock_acquire+0x197/0x470 [ 3049.874200] ? create_object.isra.0+0x3ad/0xa20 [ 3049.874934] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 3049.875692] hwsim_new_radio_nl+0x991/0x1080 [ 3049.876388] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 3049.877212] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 3049.878237] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3049.879259] genl_family_rcv_msg_doit+0x22d/0x330 [ 3049.880027] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3049.881052] ? cap_capable+0x1cd/0x230 [ 3049.881675] ? ns_capable+0xe2/0x110 [ 3049.882265] genl_rcv_msg+0x33c/0x5a0 [ 3049.882866] ? genl_get_cmd+0x480/0x480 [ 3049.883509] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 3049.884320] ? lock_release+0x680/0x680 [ 3049.884947] ? netlink_deliver_tap+0xf4/0xcd0 [ 3049.885655] netlink_rcv_skb+0x14b/0x430 [ 3049.886292] ? genl_get_cmd+0x480/0x480 [ 3049.886950] ? netlink_ack+0xab0/0xab0 [ 3049.887583] ? netlink_deliver_tap+0x1c4/0xcd0 [ 3049.888295] ? is_vmalloc_addr+0x7b/0xb0 [ 3049.889042] genl_rcv+0x24/0x40 [ 3049.889560] netlink_unicast+0x549/0x7f0 [ 3049.890307] ? netlink_attachskb+0x870/0x870 [ 3049.890980] ? __virt_addr_valid+0x128/0x350 [ 3049.891798] netlink_sendmsg+0x90f/0xdf0 [ 3049.892427] ? netlink_unicast+0x7f0/0x7f0 [ 3049.893209] ? netlink_unicast+0x7f0/0x7f0 [ 3049.893861] __sock_sendmsg+0x154/0x190 [ 3049.894473] ____sys_sendmsg+0x70d/0x870 [ 3049.895092] ? sock_write_iter+0x3d0/0x3d0 [ 3049.895748] ? do_recvmmsg+0x6d0/0x6d0 [ 3049.896343] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3049.897151] ? lock_downgrade+0x6d0/0x6d0 [ 3049.897795] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3049.898581] ? SOFTIRQ_verbose+0x10/0x10 [ 3049.899201] ___sys_sendmsg+0xf3/0x170 [ 3049.899796] ? sendmsg_copy_msghdr+0x160/0x160 [ 3049.900482] ? lock_downgrade+0x6d0/0x6d0 [ 3049.901109] ? find_held_lock+0x2c/0x110 [ 3049.901721] ? __fget_files+0x296/0x4c0 [ 3049.902327] ? __fget_light+0xea/0x290 [ 3049.902909] __sys_sendmsg+0xe5/0x1b0 [ 3049.903482] ? __sys_sendmsg_sock+0x40/0x40 [ 3049.904124] ? rcu_read_lock_any_held+0x75/0xa0 [ 3049.904826] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3049.905604] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3049.906363] ? trace_hardirqs_on+0x5b/0x180 [ 3049.907008] do_syscall_64+0x33/0x40 [ 3049.907579] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3049.908332] RIP: 0033:0x7f46fba00b19 [ 3049.908886] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3049.911619] RSP: 002b:00007f46f8f76188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3049.912739] RAX: ffffffffffffffda RBX: 00007f46fbb13f60 RCX: 00007f46fba00b19 [ 3049.913802] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 3049.914863] RBP: 00007f46f8f761d0 R08: 0000000000000000 R09: 0000000000000000 [ 3049.915934] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3049.916997] R13: 00007ffe81962e7f R14: 00007f46f8f76300 R15: 0000000000022000 10:12:22 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c8edf001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:12:22 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x48, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:12:22 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a551, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) 10:12:22 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c2bd9001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:12:22 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a552, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) [ 3050.066687] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 3050.068195] System zones: 0-7 10:12:22 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c8fdf001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 3050.090547] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue 10:12:22 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c2cd9001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:12:36 executing program 1: sendmsg$NFNL_MSG_COMPAT_GET(0xffffffffffffffff, 0x0, 0x8000) syz_genetlink_get_family_id$ethtool(&(0x7f0000000500), 0xffffffffffffffff) r0 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000380), 0xffffffffffffffff) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_802154(r1, 0x8933, &(0x7f0000000080)={'wpan0\x00', 0x0}) sendmsg$NL802154_CMD_SET_PAN_ID(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x28, r3, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r4}]}, 0x28}}, 0x0) sendmsg$NL802154_CMD_NEW_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000400)={&(0x7f0000000480)={0x44, r0, 0x8, 0x70bd27, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r4}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x20000004) r5 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000380), 0xffffffffffffffff) r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_802154(r6, 0x8933, &(0x7f0000000080)={'wpan0\x00', 0x0}) sendmsg$NL802154_CMD_SET_PAN_ID(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x28, r8, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r9}]}, 0x28}}, 0x0) sendmsg$NL802154_CMD_NEW_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000400)={&(0x7f0000000480)={0x44, r5, 0x8, 0x70bd27, 0x25dfdbff, {}, [@NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x3}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x2}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r9}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x20000004) sendmsg$NL802154_CMD_SET_MAX_FRAME_RETRIES(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x48, r0, 0x200, 0x70bd2d, 0x25dfdbfb, {}, [@NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r9}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x300000000}, @NL802154_ATTR_WPAN_DEV={0xc, 0x6, 0x100000001}]}, 0x48}}, 0x4801) 10:12:36 executing program 3: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 43) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:12:36 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a553, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) 10:12:36 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x4c, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:12:36 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c90df001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:12:36 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c2dd9001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:12:36 executing program 2: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34002, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:12:36 executing program 0: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_usb_connect$cdc_ecm(0x0, 0x4d, 0x0, 0x0) timer_delete(0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) capset(&(0x7f0000000000)={0xc92bfb053a14a5a}, 0x0) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000000140)={0x0, [{}, {}, {0x0, 0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0}], 0x7f, "9656c75f04ba4d"}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000047680)={0x3ff, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}], 0x7, "e806f838d5d58b"}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000048680)={0x0, ""/256, 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000001300)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000001300)={0x0, ""/256, 0x0, 0x0}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000000140)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r6}, {}, {}, {}, {}, {}, {}, {}, {}, {r5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r7}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}, {}, {}, {}, {0x0, r6}], 0x7f, "9656c75f04ba4d"}) ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f0000048880)={0xffff, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r2}, {}, {}, {}, {0x0, r8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r3}, {r4}, {0x0, r7}], 0x1, "1c55aea85981c9"}) timer_settime(0x0, 0x0, &(0x7f0000000480)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0) r9 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r9, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={0x14, 0x16, 0xd01, 0x0, 0x0, {0xd}}, 0x14}}, 0x0) timer_delete(0x0) read(r9, &(0x7f0000000080)=""/65, 0x41) timer_gettime(0x0, &(0x7f0000000080)) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f00000002c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r0, @ANYRES32, @ANYBLOB="2000e5ff2e0e66693d96f32192972708c9db8f7698831d01e0d6fbaa60d51ce5a4defed5ed68f74c5d63f47d77c3cd9eb5900642b68607b58ff52db15b482244f5ab8f7d105aed64f715c51d38b7b6bc0a8ce0019491c6ae4dbc48d1527a1060fcef7e187fbfbe78561d999fe67c6d9755e58c71b6e05e6525d3ed41d5a94dc1b417dbc6fed55109c54add809ab47e664ab3780a31789fab2eff2eb9d654d6c20b7fba3d438abaec69e21df791f81d97416ed713c6ffb3d70448e569fa37ab99ec7ac8f2"]) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) [ 3064.363603] FAULT_INJECTION: forcing a failure. [ 3064.363603] name failslab, interval 1, probability 0, space 0, times 0 [ 3064.366196] CPU: 0 PID: 16837 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 3064.367638] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3064.369366] Call Trace: [ 3064.369960] dump_stack+0x107/0x167 [ 3064.370723] should_fail.cold+0x5/0xa [ 3064.371529] ? create_object.isra.0+0x3a/0xa20 [ 3064.372488] should_failslab+0x5/0x20 [ 3064.373273] kmem_cache_alloc+0x5b/0x310 [ 3064.374122] create_object.isra.0+0x3a/0xa20 [ 3064.375004] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3064.376049] kmem_cache_alloc+0x159/0x310 [ 3064.376891] __kernfs_new_node+0xd4/0x860 [ 3064.377735] ? SOFTIRQ_verbose+0x10/0x10 [ 3064.378565] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 3064.379523] ? lock_acquire+0x197/0x470 [ 3064.380332] ? find_held_lock+0x2c/0x110 [ 3064.381154] ? sysfs_do_create_link_sd+0x82/0x140 [ 3064.382126] kernfs_new_node+0x93/0x120 [ 3064.382930] kernfs_create_link+0xcb/0x230 [ 3064.383802] sysfs_do_create_link_sd+0x90/0x140 [ 3064.384737] sysfs_create_link+0x5f/0xc0 [ 3064.385563] device_add+0x703/0x1c50 [ 3064.386315] ? devlink_add_symlinks+0x970/0x970 [ 3064.387259] device_create_groups_vargs+0x207/0x280 [ 3064.388280] device_create+0xdc/0x120 [ 3064.389054] ? device_create_groups_vargs+0x280/0x280 [ 3064.390091] ? init_timer_key+0x12a/0x240 [ 3064.390951] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 3064.391941] mac80211_hwsim_new_radio+0x352/0x4250 [ 3064.392922] ? ____sys_sendmsg+0x70d/0x870 [ 3064.393763] ? ___sys_sendmsg+0xf3/0x170 [ 3064.394579] ? __sys_sendmsg+0xe5/0x1b0 [ 3064.395375] ? do_syscall_64+0x33/0x40 [ 3064.396175] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3064.397243] ? lock_acquire+0x197/0x470 [ 3064.398037] ? create_object.isra.0+0x3ad/0xa20 [ 3064.398975] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 3064.399944] hwsim_new_radio_nl+0x991/0x1080 [ 3064.400832] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 3064.401889] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 3064.403208] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3064.404547] genl_family_rcv_msg_doit+0x22d/0x330 [ 3064.405523] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3064.406849] ? cap_capable+0x1cd/0x230 [ 3064.407643] ? ns_capable+0xe2/0x110 [ 3064.408420] genl_rcv_msg+0x33c/0x5a0 [ 3064.409199] ? genl_get_cmd+0x480/0x480 [ 3064.409993] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 3064.411027] ? lock_release+0x680/0x680 [ 3064.411841] ? netlink_deliver_tap+0xf4/0xcd0 [ 3064.412743] netlink_rcv_skb+0x14b/0x430 [ 3064.413558] ? genl_get_cmd+0x480/0x480 [ 3064.414357] ? netlink_ack+0xab0/0xab0 [ 3064.415150] ? netlink_deliver_tap+0x1c4/0xcd0 [ 3064.416084] ? is_vmalloc_addr+0x7b/0xb0 [ 3064.416903] genl_rcv+0x24/0x40 [ 3064.417563] netlink_unicast+0x549/0x7f0 [ 3064.418384] ? netlink_attachskb+0x870/0x870 [ 3064.419262] ? __virt_addr_valid+0x128/0x350 [ 3064.420197] netlink_sendmsg+0x90f/0xdf0 [ 3064.421018] ? netlink_unicast+0x7f0/0x7f0 [ 3064.421888] ? netlink_unicast+0x7f0/0x7f0 [ 3064.422735] __sock_sendmsg+0x154/0x190 [ 3064.423545] ____sys_sendmsg+0x70d/0x870 [ 3064.424378] ? sock_write_iter+0x3d0/0x3d0 [ 3064.425228] ? do_recvmmsg+0x6d0/0x6d0 [ 3064.426022] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3064.427070] ? lock_downgrade+0x6d0/0x6d0 [ 3064.427952] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3064.429006] ? SOFTIRQ_verbose+0x10/0x10 [ 3064.429849] ___sys_sendmsg+0xf3/0x170 [ 3064.430644] ? sendmsg_copy_msghdr+0x160/0x160 [ 3064.431565] ? lock_downgrade+0x6d0/0x6d0 [ 3064.432411] ? find_held_lock+0x2c/0x110 [ 3064.433245] ? __fget_files+0x296/0x4c0 [ 3064.434060] ? __fget_light+0xea/0x290 [ 3064.434851] __sys_sendmsg+0xe5/0x1b0 [ 3064.435619] ? __sys_sendmsg_sock+0x40/0x40 [ 3064.436496] ? rcu_read_lock_any_held+0x75/0xa0 [ 3064.437450] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3064.438512] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3064.439536] ? trace_hardirqs_on+0x5b/0x180 [ 3064.440426] do_syscall_64+0x33/0x40 [ 3064.441170] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3064.442203] RIP: 0033:0x7f46fba00b19 [ 3064.442956] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3064.446632] RSP: 002b:00007f46f8f76188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3064.448161] RAX: ffffffffffffffda RBX: 00007f46fbb13f60 RCX: 00007f46fba00b19 [ 3064.449584] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 3064.451008] RBP: 00007f46f8f761d0 R08: 0000000000000000 R09: 0000000000000000 [ 3064.452449] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3064.453889] R13: 00007ffe81962e7f R14: 00007f46f8f76300 R15: 0000000000022000 10:12:37 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c2ed9001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 3064.482757] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 3064.484572] System zones: 0-7 [ 3064.508834] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue 10:12:37 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c91df001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:12:37 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x68, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:12:52 executing program 1: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x8010, &(0x7f00000004c0)=ANY=[@ANYBLOB="004eacec960ffb88f61a07b8c3f3c1aa396415dd0a7f001ad8f12a0550226bd1e28d879881662de6e6455c10101413dd1af65629c18457a48018181c0886b1f44bfb08b4ddcdc7e2fe379d5decb37f7b439736147bf79be0eb4803c5799422b638a525a1cb52d17f45d89e61b08b2c11cc305f4594694657ec2683dc024b53e71166a303b4824dd8940676954b9f387670b4913b3d203cf2f2bd754e3106bf"]) setxattr$security_selinux(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340), &(0x7f0000000380)='system_u:object_r:autofs_device_t:s0\x00', 0x25, 0x1) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) ftruncate(r0, 0x3) creat(&(0x7f00000000c0)='./file1\x00', 0x144) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000003c0), 0x181003, 0x0) ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(r1, 0x80089419, &(0x7f0000000400)) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc142, 0x8) r3 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x40) write(r3, &(0x7f0000000240)="01", 0x1) r4 = openat(r3, &(0x7f0000000180)='./file1\x00', 0x0, 0x12) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000140), 0xa}, 0x15100}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$P9_RREADLINK(r0, &(0x7f0000000140)=ANY=[], 0x10) sendfile(r0, r2, 0x0, 0x20d315) bind$unix(r4, &(0x7f0000000280)=@abs={0x1, 0x0, 0x4e23}, 0x6e) r5 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000001c0), 0x1, 0x0) ftruncate(r5, 0x0) ioctl$FS_IOC_GETFLAGS(r4, 0x80086601, 0x0) 10:12:52 executing program 0: clone3(&(0x7f0000000540)={0x58003b00, 0x0, 0x0, 0x0, {0x26}, 0x0, 0x0, 0x0, 0x0}, 0xfffffffffffffc31) 10:12:52 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a554, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) 10:12:52 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x6c, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:12:52 executing program 2: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34003, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:12:52 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c2fd9001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:12:52 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c92df001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:12:52 executing program 3: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 44) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:12:52 executing program 0: r0 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000300)='./file0\x00', 0x0, 0x0, &(0x7f0000000200), 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="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"]) r1 = creat(&(0x7f0000000000)='./file2\x00', 0x0) fcntl$setlease(r1, 0x400, 0x1) fcntl$setown(r1, 0x8, 0xffffffffffffffff) fcntl$setsig(r1, 0xa, 0x12) ioctl$EXT4_IOC_GROUP_EXTEND(r0, 0x40086607, &(0x7f00000000c0)=0x7) close(r1) openat(r1, &(0x7f0000000040)='./file0\x00', 0x218000, 0x100) [ 3079.826127] FAULT_INJECTION: forcing a failure. [ 3079.826127] name failslab, interval 1, probability 0, space 0, times 0 [ 3079.829015] CPU: 1 PID: 16890 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 3079.830474] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3079.832196] Call Trace: [ 3079.832760] dump_stack+0x107/0x167 [ 3079.833526] should_fail.cold+0x5/0xa [ 3079.834347] ? __kernfs_new_node+0xd4/0x860 [ 3079.835287] should_failslab+0x5/0x20 [ 3079.836092] kmem_cache_alloc+0x5b/0x310 [ 3079.836957] __kernfs_new_node+0xd4/0x860 [ 3079.837823] ? SOFTIRQ_verbose+0x10/0x10 [ 3079.838685] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 3079.839652] ? lock_acquire+0x197/0x470 [ 3079.840465] ? find_held_lock+0x2c/0x110 [ 3079.841304] ? sysfs_do_create_link_sd+0x82/0x140 [ 3079.842305] kernfs_new_node+0x93/0x120 [ 3079.843142] kernfs_create_link+0xcb/0x230 [ 3079.844024] sysfs_do_create_link_sd+0x90/0x140 [ 3079.844991] sysfs_create_link+0x5f/0xc0 [ 3079.845856] device_add+0x703/0x1c50 [ 3079.846625] ? devlink_add_symlinks+0x970/0x970 [ 3079.847587] device_create_groups_vargs+0x207/0x280 [ 3079.848639] device_create+0xdc/0x120 [ 3079.849423] ? device_create_groups_vargs+0x280/0x280 [ 3079.850538] ? init_timer_key+0x12a/0x240 [ 3079.851433] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 3079.852440] mac80211_hwsim_new_radio+0x352/0x4250 [ 3079.853255] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 3079.853453] ? ____sys_sendmsg+0x70d/0x870 [ 3079.855116] System zones: [ 3079.855732] ? ___sys_sendmsg+0xf3/0x170 [ 3079.855749] ? __sys_sendmsg+0xe5/0x1b0 [ 3079.855768] ? do_syscall_64+0x33/0x40 [ 3079.855791] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3079.856419] 0-7 [ 3079.857240] ? lock_acquire+0x197/0x470 [ 3079.857263] ? create_object.isra.0+0x3ad/0xa20 [ 3079.858051] [ 3079.858845] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 3079.858882] hwsim_new_radio_nl+0x991/0x1080 [ 3079.864198] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 3079.865273] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 3079.866670] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3079.868016] genl_family_rcv_msg_doit+0x22d/0x330 [ 3079.869479] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3079.870853] ? cap_capable+0x1cd/0x230 [ 3079.871658] ? ns_capable+0xe2/0x110 [ 3079.872439] genl_rcv_msg+0x33c/0x5a0 [ 3079.873220] ? genl_get_cmd+0x480/0x480 [ 3079.874065] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 3079.875128] ? lock_release+0x680/0x680 [ 3079.875975] ? netlink_deliver_tap+0xf4/0xcd0 [ 3079.876899] netlink_rcv_skb+0x14b/0x430 [ 3079.877764] ? genl_get_cmd+0x480/0x480 [ 3079.878602] ? netlink_ack+0xab0/0xab0 [ 3079.879408] ? netlink_deliver_tap+0x1c4/0xcd0 [ 3079.880348] ? is_vmalloc_addr+0x7b/0xb0 [ 3079.881183] genl_rcv+0x24/0x40 [ 3079.881895] netlink_unicast+0x549/0x7f0 [ 3079.882730] ? netlink_attachskb+0x870/0x870 [ 3079.883618] ? __virt_addr_valid+0x128/0x350 [ 3079.884591] netlink_sendmsg+0x90f/0xdf0 [ 3079.885438] ? netlink_unicast+0x7f0/0x7f0 [ 3079.886304] ? netlink_unicast+0x7f0/0x7f0 [ 3079.887153] __sock_sendmsg+0x154/0x190 [ 3079.887977] ____sys_sendmsg+0x70d/0x870 [ 3079.888848] ? sock_write_iter+0x3d0/0x3d0 [ 3079.889704] ? do_recvmmsg+0x6d0/0x6d0 [ 3079.890504] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3079.891567] ? lock_downgrade+0x6d0/0x6d0 [ 3079.892431] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3079.893525] ? SOFTIRQ_verbose+0x10/0x10 [ 3079.894358] ___sys_sendmsg+0xf3/0x170 [ 3079.895150] ? sendmsg_copy_msghdr+0x160/0x160 [ 3079.896111] ? lock_downgrade+0x6d0/0x6d0 [ 3079.896996] ? find_held_lock+0x2c/0x110 [ 3079.897867] ? __fget_files+0x296/0x4c0 [ 3079.898692] ? __fget_light+0xea/0x290 [ 3079.899491] __sys_sendmsg+0xe5/0x1b0 [ 3079.900280] ? __sys_sendmsg_sock+0x40/0x40 [ 3079.901164] ? rcu_read_lock_any_held+0x75/0xa0 [ 3079.902171] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3079.903237] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3079.904300] ? trace_hardirqs_on+0x5b/0x180 [ 3079.905181] do_syscall_64+0x33/0x40 [ 3079.905973] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3079.907014] RIP: 0033:0x7f46fba00b19 [ 3079.907771] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3079.911536] RSP: 002b:00007f46f8f76188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3079.913147] RAX: ffffffffffffffda RBX: 00007f46fbb13f60 RCX: 00007f46fba00b19 [ 3079.914598] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 3079.916074] RBP: 00007f46f8f761d0 R08: 0000000000000000 R09: 0000000000000000 [ 3079.917574] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3079.919041] R13: 00007ffe81962e7f R14: 00007f46f8f76300 R15: 0000000000022000 [ 3079.931079] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 3079.958462] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue 10:12:52 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c93df001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:12:52 executing program 0: syz_open_dev$usbmon(0x0, 0x0, 0x0) syz_io_uring_setup(0x8, &(0x7f0000000180), &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffb000/0x5000)=nil, 0x0, 0x0) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=ANY=[@ANYBLOB="240000001000010000000000000096000000000005000000ff7f000000000000040014"], 0x24}}, 0x0) r1 = creat(&(0x7f0000000000)='./file2\x00', 0x0) fcntl$setlease(r1, 0x400, 0x1) fcntl$setown(r1, 0x8, 0xffffffffffffffff) fcntl$setsig(r1, 0xa, 0x2e) close(r1) ioctl$LOOP_CHANGE_FD(r1, 0x4c06, r0) r2 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020101000240008000f801", 0x17}, {&(0x7f0000010300)="53595a4b414c4c45522020080000e680325132510000e680325100000000000041660069006c00650030000f00fc0000ffffffffffffffffffff0000ffffffff46494c45302020202020201000ace670325132510000e670325103000000000041660069006c00650031000f00100000ffffffffffffffffffff0000ffffffff46494c45312020202020202000ace670325132510000e670325107", 0x9b, 0x600}], 0x0, &(0x7f0000000080)=ANY=[]) io_setup(0x5, &(0x7f0000000000)) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0) sendmsg$BATADV_CMD_GET_BLA_CLAIM(r3, &(0x7f0000000300)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x2c, 0x0, 0x100, 0x70bd27, 0x25dfdbff, {}, [@BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x2}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20004815}, 0x4000004) openat(r2, &(0x7f00000000c0)='./file2\x00', 0x8040, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4150, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xdd}, 0x0, 0x0, 0xffffffffffffffff, 0x0) pselect6(0x40, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, &(0x7f00000001c0)={0x3fc}, 0x0, 0x0, 0x0) 10:12:52 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a555, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) 10:12:52 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x74, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:12:52 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c30d9001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 3080.169870] device wlan1 entered promiscuous mode [ 3080.222515] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 3080.224382] System zones: 0-7 [ 3080.241380] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue 10:13:08 executing program 3: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 45) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:13:08 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x7a, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:13:08 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c31d9001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:13:08 executing program 0: r0 = add_key$fscrypt_v1(0x0, 0x0, &(0x7f00000008c0)={0x0, "65a6cf5b9c07642a3340db90bee4874c94ec4fdd53be77d8d05520d91682233c045247ee072dddb4606017c18511ee7cc2005a83f5d5bbc07333a25fce3d1db4"}, 0x48, 0xfffffffffffffffb) request_key(0x0, 0x0, 0x0, r0) keyctl$get_security(0x11, r0, 0x0, 0x0) r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bind$802154_dgram(r1, &(0x7f0000000000)={0x24, @long={0x3, 0x0, {0xaaaaaaaaaaaa0002}}}, 0x14) add_key$user(&(0x7f00000001c0), 0x0, &(0x7f0000000240)="6c7e484b1533b57fb1120994f0", 0xd, r0) bind$802154_dgram(r1, &(0x7f0000000040)={0x24, @short={0x2, 0x1, 0xfffe}}, 0x14) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)={0x1c, 0x5e, 0xc21, 0x0, 0x0, {0x0, 0x2}, [@generic='\x00\x00\x00\x00\x00']}, 0x1c}}, 0x0) read(r2, &(0x7f00000000c0)=""/189, 0xbd) add_key$fscrypt_provisioning(0x0, &(0x7f0000000300)={'syz', 0x0}, &(0x7f0000000340)={0x0, 0x0, @a}, 0x48, 0xfffffffffffffffc) connect$802154_dgram(r1, &(0x7f0000000180)={0x24, @none={0x0, 0x2}}, 0x14) bind$802154_dgram(r1, 0x0, 0x0) connect$802154_dgram(r1, &(0x7f0000000080)={0x24, @long={0x3, 0xffff, {0xaaaaaaaaaaaa0102}}}, 0x14) sendmmsg$sock(r1, &(0x7f00000021c0)=[{{0x0, 0x0, 0x0}}], 0x324, 0x0) 10:13:08 executing program 1: r0 = openat(0xffffffffffffff9c, 0x0, 0x639d1876ab868171, 0x0) ftruncate(0xffffffffffffffff, 0xffff) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x9, 0x6, 0x40, 0x8, 0x1}) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) preadv(0xffffffffffffffff, &(0x7f0000000440)=[{&(0x7f00000001c0)=""/96, 0x60}, {&(0x7f00000002c0)=""/77, 0x4d}, {&(0x7f0000000240)=""/103, 0x67}, {&(0x7f00000004c0)=""/149, 0x95}, {0x0}], 0x5, 0x2, 0x0) fallocate(r2, 0x0, 0x0, 0x8800000) r3 = openat(0xffffffffffffff9c, 0x0, 0x105142, 0x0) ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f0000000040)={0x0, 0x0, 0x40, 0x4000007}) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x101}, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) write$P9_RSTATFS(r3, &(0x7f0000000140)={0x43, 0x9, 0x2, {0x2, 0x64, 0x7fffffff, 0x3f, 0x9, 0x6, 0x400, 0x3beb00000}}, 0x43) preadv(r2, &(0x7f00000008c0)=[{&(0x7f0000000340)=""/150, 0x96}, {&(0x7f0000000580)=""/147, 0x93}, {&(0x7f0000000640)=""/233, 0xe9}, {&(0x7f0000000740)=""/115, 0x73}, {&(0x7f00000000c0)}, {&(0x7f00000007c0)=""/255, 0xff}], 0x6, 0x800, 0x0) sendfile(r1, r4, 0x0, 0x100000001) 10:13:08 executing program 2: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34004, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:13:08 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c94df001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:13:08 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a556, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) [ 3096.035038] FAULT_INJECTION: forcing a failure. [ 3096.035038] name failslab, interval 1, probability 0, space 0, times 0 [ 3096.038023] CPU: 1 PID: 16944 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 3096.039471] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3096.041210] Call Trace: [ 3096.041769] dump_stack+0x107/0x167 [ 3096.042539] should_fail.cold+0x5/0xa [ 3096.043429] ? create_object.isra.0+0x3a/0xa20 [ 3096.044414] should_failslab+0x5/0x20 [ 3096.045231] kmem_cache_alloc+0x5b/0x310 [ 3096.046098] create_object.isra.0+0x3a/0xa20 [ 3096.047035] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3096.048267] __kmalloc_track_caller+0x177/0x370 [ 3096.049430] ? kstrdup_const+0x53/0x80 [ 3096.050269] kstrdup+0x36/0x70 [ 3096.050946] kstrdup_const+0x53/0x80 [ 3096.051741] __kernfs_new_node+0x9d/0x860 [ 3096.052635] ? SOFTIRQ_verbose+0x10/0x10 [ 3096.053568] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 3096.054580] ? lock_acquire+0x197/0x470 [ 3096.055420] ? find_held_lock+0x2c/0x110 [ 3096.056289] ? sysfs_do_create_link_sd+0x82/0x140 [ 3096.057307] kernfs_new_node+0x93/0x120 [ 3096.058221] kernfs_create_link+0xcb/0x230 [ 3096.059244] sysfs_do_create_link_sd+0x90/0x140 [ 3096.060231] sysfs_create_link+0x5f/0xc0 [ 3096.061082] device_add+0x703/0x1c50 [ 3096.061863] ? devlink_add_symlinks+0x970/0x970 [ 3096.062930] device_create_groups_vargs+0x207/0x280 [ 3096.063979] device_create+0xdc/0x120 [ 3096.064785] ? device_create_groups_vargs+0x280/0x280 [ 3096.065868] ? init_timer_key+0x12a/0x240 [ 3096.066819] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 3096.067885] mac80211_hwsim_new_radio+0x352/0x4250 [ 3096.069012] ? ____sys_sendmsg+0x70d/0x870 [ 3096.069891] ? ___sys_sendmsg+0xf3/0x170 [ 3096.070757] ? __sys_sendmsg+0xe5/0x1b0 [ 3096.071655] ? do_syscall_64+0x33/0x40 [ 3096.072474] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3096.073671] ? lock_acquire+0x197/0x470 [ 3096.074608] ? create_object.isra.0+0x3ad/0xa20 [ 3096.075591] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 3096.076595] hwsim_new_radio_nl+0x991/0x1080 [ 3096.077524] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 3096.078682] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 3096.080048] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3096.081554] genl_family_rcv_msg_doit+0x22d/0x330 [ 3096.082730] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3096.084163] ? cap_capable+0x1cd/0x230 [ 3096.084985] ? ns_capable+0xe2/0x110 [ 3096.085761] genl_rcv_msg+0x33c/0x5a0 [ 3096.086631] ? genl_get_cmd+0x480/0x480 [ 3096.087603] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 3096.088699] ? lock_release+0x680/0x680 [ 3096.089534] ? netlink_deliver_tap+0xf4/0xcd0 [ 3096.090454] netlink_rcv_skb+0x14b/0x430 [ 3096.091309] ? genl_get_cmd+0x480/0x480 [ 3096.092123] ? netlink_ack+0xab0/0xab0 [ 3096.092984] ? netlink_deliver_tap+0x1c4/0xcd0 [ 3096.093918] ? is_vmalloc_addr+0x7b/0xb0 [ 3096.094745] genl_rcv+0x24/0x40 [ 3096.095488] netlink_unicast+0x549/0x7f0 [ 3096.096451] ? netlink_attachskb+0x870/0x870 [ 3096.097341] ? __virt_addr_valid+0x128/0x350 [ 3096.098254] netlink_sendmsg+0x90f/0xdf0 [ 3096.099105] ? netlink_unicast+0x7f0/0x7f0 [ 3096.099984] ? netlink_unicast+0x7f0/0x7f0 [ 3096.100880] __sock_sendmsg+0x154/0x190 [ 3096.101699] ____sys_sendmsg+0x70d/0x870 [ 3096.102546] ? sock_write_iter+0x3d0/0x3d0 [ 3096.103449] ? do_recvmmsg+0x6d0/0x6d0 [ 3096.104262] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3096.105426] ? lock_downgrade+0x6d0/0x6d0 [ 3096.106373] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3096.107478] ? SOFTIRQ_verbose+0x10/0x10 [ 3096.108331] ___sys_sendmsg+0xf3/0x170 [ 3096.109116] ? sendmsg_copy_msghdr+0x160/0x160 [ 3096.110100] ? lock_downgrade+0x6d0/0x6d0 [ 3096.110981] ? find_held_lock+0x2c/0x110 [ 3096.111926] ? __fget_files+0x296/0x4c0 [ 3096.112896] ? __fget_light+0xea/0x290 [ 3096.113713] __sys_sendmsg+0xe5/0x1b0 [ 3096.114492] ? __sys_sendmsg_sock+0x40/0x40 [ 3096.115397] ? rcu_read_lock_any_held+0x75/0xa0 [ 3096.116414] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3096.117553] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3096.118652] ? trace_hardirqs_on+0x5b/0x180 [ 3096.119589] do_syscall_64+0x33/0x40 [ 3096.120370] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3096.121535] RIP: 0033:0x7f46fba00b19 [ 3096.122289] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3096.126348] RSP: 002b:00007f46f8f76188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3096.127918] RAX: ffffffffffffffda RBX: 00007f46fbb13f60 RCX: 00007f46fba00b19 [ 3096.129493] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 3096.130932] RBP: 00007f46f8f761d0 R08: 0000000000000000 R09: 0000000000000000 [ 3096.132476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3096.133960] R13: 00007ffe81962e7f R14: 00007f46f8f76300 R15: 0000000000022000 10:13:08 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c95df001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:13:08 executing program 0: syz_usb_connect$cdc_ecm(0x0, 0x4d, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x7a88, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000080)=0x0) r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x0, 0x0, @fd=r3}, 0x0) close(r3) r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) openat$sysfs(0xffffffffffffff9c, &(0x7f0000000a80)='/sys/kernel/notes', 0x0, 0x0) syz_io_uring_submit(r4, r2, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 3096.210591] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 3096.211744] System zones: 0-7 [ 3096.222880] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue 10:13:08 executing program 3: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 46) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:13:08 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c32d9001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:13:08 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0xf0, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:13:08 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a557, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) 10:13:08 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c96df001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:13:08 executing program 2: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34005, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 3096.376435] FAULT_INJECTION: forcing a failure. [ 3096.376435] name failslab, interval 1, probability 0, space 0, times 0 [ 3096.379157] CPU: 1 PID: 16980 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 3096.380575] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3096.382260] Call Trace: [ 3096.382809] dump_stack+0x107/0x167 [ 3096.383560] should_fail.cold+0x5/0xa [ 3096.384363] ? __kernfs_new_node+0xd4/0x860 [ 3096.385246] should_failslab+0x5/0x20 [ 3096.386039] kmem_cache_alloc+0x5b/0x310 [ 3096.386896] __kernfs_new_node+0xd4/0x860 [ 3096.387756] ? find_held_lock+0x2c/0x110 [ 3096.388614] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 3096.389592] ? kernfs_add_one+0x36e/0x4d0 [ 3096.390461] ? mutex_lock_io_nested+0xf30/0xf30 [ 3096.391424] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 3096.392421] kernfs_create_dir_ns+0x9c/0x230 [ 3096.393342] internal_create_group+0x793/0xb30 [ 3096.394290] ? sysfs_remove_group+0x170/0x170 [ 3096.395213] ? kernfs_put+0x31/0x50 [ 3096.395963] dpm_sysfs_add+0x82/0x290 [ 3096.396995] device_add+0xa06/0x1c50 [ 3096.397805] ? devlink_add_symlinks+0x970/0x970 [ 3096.398773] device_create_groups_vargs+0x207/0x280 [ 3096.399787] device_create+0xdc/0x120 [ 3096.400582] ? device_create_groups_vargs+0x280/0x280 [ 3096.401631] ? init_timer_key+0x12a/0x240 [ 3096.402487] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 3096.403475] mac80211_hwsim_new_radio+0x352/0x4250 [ 3096.404483] ? ____sys_sendmsg+0x70d/0x870 [ 3096.405337] ? ___sys_sendmsg+0xf3/0x170 [ 3096.406158] ? __sys_sendmsg+0xe5/0x1b0 [ 3096.406956] ? do_syscall_64+0x33/0x40 [ 3096.407754] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3096.408828] ? lock_acquire+0x197/0x470 [ 3096.409631] ? create_object.isra.0+0x3ad/0xa20 [ 3096.410575] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 3096.411520] hwsim_new_radio_nl+0x991/0x1080 [ 3096.412431] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 3096.413491] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 3096.414817] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3096.416139] genl_family_rcv_msg_doit+0x22d/0x330 [ 3096.417119] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3096.418441] ? cap_capable+0x1cd/0x230 [ 3096.419240] ? ns_capable+0xe2/0x110 [ 3096.419995] genl_rcv_msg+0x33c/0x5a0 [ 3096.420797] ? genl_get_cmd+0x480/0x480 [ 3096.421619] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 3096.422660] ? lock_release+0x680/0x680 [ 3096.423463] ? netlink_deliver_tap+0xf4/0xcd0 [ 3096.424382] netlink_rcv_skb+0x14b/0x430 [ 3096.425198] ? genl_get_cmd+0x480/0x480 [ 3096.426007] ? netlink_ack+0xab0/0xab0 [ 3096.426814] ? netlink_deliver_tap+0x1c4/0xcd0 [ 3096.427734] ? is_vmalloc_addr+0x7b/0xb0 [ 3096.428576] genl_rcv+0x24/0x40 [ 3096.429241] netlink_unicast+0x549/0x7f0 [ 3096.430070] ? netlink_attachskb+0x870/0x870 [ 3096.430961] ? __virt_addr_valid+0x128/0x350 [ 3096.431859] netlink_sendmsg+0x90f/0xdf0 [ 3096.432701] ? netlink_unicast+0x7f0/0x7f0 [ 3096.433666] ? netlink_unicast+0x7f0/0x7f0 [ 3096.434625] __sock_sendmsg+0x154/0x190 [ 3096.435515] ____sys_sendmsg+0x70d/0x870 [ 3096.436449] ? sock_write_iter+0x3d0/0x3d0 [ 3096.437405] ? do_recvmmsg+0x6d0/0x6d0 [ 3096.438279] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3096.439468] ? lock_downgrade+0x6d0/0x6d0 [ 3096.440444] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3096.441628] ? SOFTIRQ_verbose+0x10/0x10 [ 3096.442544] ___sys_sendmsg+0xf3/0x170 [ 3096.443429] ? sendmsg_copy_msghdr+0x160/0x160 [ 3096.444478] ? lock_downgrade+0x6d0/0x6d0 [ 3096.445422] ? find_held_lock+0x2c/0x110 [ 3096.446339] ? __fget_files+0x296/0x4c0 [ 3096.447250] ? __fget_light+0xea/0x290 [ 3096.448128] __sys_sendmsg+0xe5/0x1b0 [ 3096.448990] ? __sys_sendmsg_sock+0x40/0x40 [ 3096.449957] ? rcu_read_lock_any_held+0x75/0xa0 [ 3096.451029] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3096.452204] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3096.453377] ? trace_hardirqs_on+0x5b/0x180 [ 3096.454352] do_syscall_64+0x33/0x40 [ 3096.455179] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3096.456341] RIP: 0033:0x7f46fba00b19 [ 3096.457177] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3096.461267] RSP: 002b:00007f46f8f76188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3096.462939] RAX: ffffffffffffffda RBX: 00007f46fbb13f60 RCX: 00007f46fba00b19 [ 3096.464539] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 3096.466135] RBP: 00007f46f8f761d0 R08: 0000000000000000 R09: 0000000000000000 [ 3096.467721] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3096.469320] R13: 00007ffe81962e7f R14: 00007f46f8f76300 R15: 0000000000022000 10:13:08 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x300, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:13:08 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c33d9001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:13:09 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c00f0001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 3096.533970] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 3096.536123] System zones: 0-7 [ 3096.542154] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue 10:13:09 executing program 3: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 47) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:13:09 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c97df001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:13:09 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x3bf, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:13:09 executing program 1: mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x8}, 0x11010, 0x0, 0x0, 0x0, 0x0, 0x7fe}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x4000, 0x0, 0x0, 0x3) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$sock_int(r2, 0x1, 0x12, &(0x7f0000000200)=0x33e0, 0x4) setsockopt$inet6_tcp_int(r2, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) setsockopt$inet6_tcp_TCP_MD5SIG(r1, 0x6, 0xe, &(0x7f0000000240)={@in6={{0xa, 0x4e23, 0xfffffff8, @dev, 0x84}}, 0x0, 0x0, 0x41, 0x0, "1051078c010000dac842e1bf018e1f20fe9c4557840fdeda1d3d07f909e1f8af2a212bb5a9b8c81c1461d600895f29e19e933a66e6f7ed55abd1f153b123b0d9ac97801e0ebf139118971485f60ed303"}, 0xd8) ioctl$AUTOFS_DEV_IOCTL_FAIL(r0, 0xc0189377, &(0x7f0000000380)=ANY=[@ANYBLOB="0682621da13c0c84f82a9010eb34010000000100000018000000", @ANYRES32=r2, @ANYBLOB="ffffff7fd30000002e2f66696c653100"]) fsconfig$FSCONFIG_SET_FD(r3, 0x5, &(0x7f0000000340)='\x00', 0x0, r0) sendfile(r2, r1, 0x0, 0x9bbb) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) getsockopt$SO_TIMESTAMP(r4, 0x1, 0x0, 0x0, &(0x7f0000000100)) mbind(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x8000, &(0x7f0000000180)=0x401, 0x8, 0x1) stat(&(0x7f0000001cc0)='.\x00', 0x0) setresuid(0x0, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000500)=ANY=[]) 10:13:09 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a558, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) 10:13:09 executing program 2: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34006, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 3096.647272] FAULT_INJECTION: forcing a failure. [ 3096.647272] name failslab, interval 1, probability 0, space 0, times 0 [ 3096.650411] CPU: 1 PID: 17012 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 3096.651869] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3096.653640] Call Trace: [ 3096.654210] dump_stack+0x107/0x167 [ 3096.654988] should_fail.cold+0x5/0xa [ 3096.655800] ? __kernfs_new_node+0xd4/0x860 [ 3096.656722] should_failslab+0x5/0x20 [ 3096.657525] kmem_cache_alloc+0x5b/0x310 [ 3096.658394] __kernfs_new_node+0xd4/0x860 [ 3096.659269] ? find_held_lock+0x2c/0x110 [ 3096.660142] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 3096.661154] ? kernfs_add_one+0x36e/0x4d0 [ 3096.662046] ? mutex_lock_io_nested+0xf30/0xf30 [ 3096.663030] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 3096.664043] kernfs_create_dir_ns+0x9c/0x230 [ 3096.665007] internal_create_group+0x793/0xb30 [ 3096.665987] ? sysfs_remove_group+0x170/0x170 [ 3096.666946] ? kernfs_put+0x31/0x50 [ 3096.667729] dpm_sysfs_add+0x82/0x290 [ 3096.668543] device_add+0xa06/0x1c50 [ 3096.669344] ? devlink_add_symlinks+0x970/0x970 [ 3096.670342] device_create_groups_vargs+0x207/0x280 [ 3096.671406] device_create+0xdc/0x120 [ 3096.672231] ? device_create_groups_vargs+0x280/0x280 [ 3096.673326] ? init_timer_key+0x12a/0x240 [ 3096.674221] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 3096.675251] mac80211_hwsim_new_radio+0x352/0x4250 [ 3096.676318] ? ____sys_sendmsg+0x70d/0x870 [ 3096.677212] ? ___sys_sendmsg+0xf3/0x170 [ 3096.678091] ? __sys_sendmsg+0xe5/0x1b0 [ 3096.678936] ? do_syscall_64+0x33/0x40 [ 3096.679777] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3096.680910] ? lock_acquire+0x197/0x470 [ 3096.681775] ? create_object.isra.0+0x3ad/0xa20 [ 3096.682806] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 3096.683806] hwsim_new_radio_nl+0x991/0x1080 [ 3096.684764] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 3096.685876] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 3096.687271] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3096.688659] genl_family_rcv_msg_doit+0x22d/0x330 [ 3096.689693] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3096.691106] ? cap_capable+0x1cd/0x230 [ 3096.691950] ? ns_capable+0xe2/0x110 [ 3096.692756] genl_rcv_msg+0x33c/0x5a0 [ 3096.693573] ? genl_get_cmd+0x480/0x480 [ 3096.694418] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 3096.695528] ? lock_release+0x680/0x680 [ 3096.696393] ? netlink_deliver_tap+0xf4/0xcd0 [ 3096.697350] netlink_rcv_skb+0x14b/0x430 [ 3096.698215] ? genl_get_cmd+0x480/0x480 [ 3096.699063] ? netlink_ack+0xab0/0xab0 [ 3096.699910] ? netlink_deliver_tap+0x1c4/0xcd0 [ 3096.700899] ? is_vmalloc_addr+0x7b/0xb0 [ 3096.701784] genl_rcv+0x24/0x40 [ 3096.702498] netlink_unicast+0x549/0x7f0 [ 3096.703387] ? netlink_attachskb+0x870/0x870 [ 3096.704355] ? __virt_addr_valid+0x128/0x350 [ 3096.705320] netlink_sendmsg+0x90f/0xdf0 [ 3096.706210] ? netlink_unicast+0x7f0/0x7f0 [ 3096.707138] ? netlink_unicast+0x7f0/0x7f0 [ 3096.708056] __sock_sendmsg+0x154/0x190 [ 3096.708936] ____sys_sendmsg+0x70d/0x870 [ 3096.709821] ? sock_write_iter+0x3d0/0x3d0 [ 3096.710733] ? do_recvmmsg+0x6d0/0x6d0 [ 3096.711601] ___sys_sendmsg+0xf3/0x170 [ 3096.712459] ? sendmsg_copy_msghdr+0x160/0x160 [ 3096.713454] ? lock_downgrade+0x6d0/0x6d0 [ 3096.714346] ? find_held_lock+0x2c/0x110 [ 3096.715236] ? clockevents_program_event+0x14b/0x360 [ 3096.716396] ? __fget_files+0x296/0x4c0 [ 3096.717271] ? __fget_light+0xea/0x290 [ 3096.718129] __sys_sendmsg+0xe5/0x1b0 [ 3096.718966] ? __sys_sendmsg_sock+0x40/0x40 [ 3096.719901] ? trace_hardirqs_on+0x5b/0x180 [ 3096.720869] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3096.721985] ? syscall_enter_from_user_mode+0x27/0x50 [ 3096.723110] do_syscall_64+0x33/0x40 [ 3096.723915] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3096.725027] RIP: 0033:0x7f46fba00b19 [ 3096.725867] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3096.730004] RSP: 002b:00007f46f8f76188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3096.731710] RAX: ffffffffffffffda RBX: 00007f46fbb13f60 RCX: 00007f46fba00b19 [ 3096.733313] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 3096.734908] RBP: 00007f46f8f761d0 R08: 0000000000000000 R09: 0000000000000000 [ 3096.736526] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3096.738122] R13: 00007ffe81962e7f R14: 00007f46f8f76300 R15: 0000000000022000 [ 3096.785688] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 3096.786588] System zones: 0-7 [ 3096.794364] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue 10:13:24 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c98df001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:13:24 executing program 2: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34007, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:13:24 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a559, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) 10:13:24 executing program 1: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c96df001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:13:24 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000003f00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:13:24 executing program 3: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 48) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:13:24 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x500, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) [ 3111.840580] FAULT_INJECTION: forcing a failure. [ 3111.840580] name failslab, interval 1, probability 0, space 0, times 0 [ 3111.841931] CPU: 0 PID: 17051 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 3111.842675] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3111.843571] Call Trace: [ 3111.843870] dump_stack+0x107/0x167 [ 3111.844279] should_fail.cold+0x5/0xa [ 3111.844694] ? __kernfs_new_node+0xd4/0x860 [ 3111.845160] should_failslab+0x5/0x20 10:13:24 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) openat$incfs(0xffffffffffffffff, &(0x7f0000000140)='.pending_reads\x00', 0x0, 0x0) ftruncate(r0, 0x1000003) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x105142, 0x0) r2 = syz_mount_image$nfs(&(0x7f0000000200), &(0x7f0000000240)='./file0\x00', 0x80000000, 0x3, &(0x7f0000000400)=[{&(0x7f0000000280)="7c09760e0b170e81100a23459d1edee1e45ab342b3207e43ff542fe9c0afd7e9f748811093b23945de46c8ef6d5b53f7db26efc9196a40b26e04ac4934e3c1312d7d59524b21f65afe55e69bfe0ced8c93be20d0bc1b8057931ad003649c1d990467d89a4bd9a379d1a63144af1317273963d20f5ada708ba498614308d44dab11", 0x81, 0x6}, {&(0x7f0000000340), 0x0, 0x63}, {&(0x7f0000000380)="6fbb6f9167a176bb6aedad58656ef36be900258738dd95c42128a41823a5ded2afbdfaa924fa99d21aa4801dac44dd8ab37ada5efe1c2a587efbbbba12f549cd1a", 0x41, 0x5}], 0x4000000, &(0x7f0000000580)=ANY=[@ANYBLOB="2c2c3e2c7d7bfe27252d21282d5b24775d5d7d2e2c213a255e402c002c2f6465762f68706574002c2f6465762f68706574002c7375626a5f726f6c653d2d7d5b27402b2c6f626a5f747970653d002c646f6e745f6d6561737572652c6f626a5f747970653d2c6f626a5f747970653d2f6465762f68706574002c657569643c65ad19de3d4063d0b827498b644c985833da023c15e0d1d5c5efb2aedfe6c94b599f11784c7035561f23fc54443ad42767cd2e6e0042dbda649a330d16b5f45f4341d5d3594a59a9832e8ea3395e7dc3a3da9276e1f4d65a3a5f68b986840b", @ANYRESDEC, @ANYBLOB=',\x00']) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f0000000540)={{0x1, 0x1, 0x18, r2, {0x6}}, './file0\x00'}) unlinkat(0xffffffffffffffff, 0x0, 0x0) r3 = openat$hpet(0xffffffffffffff9c, &(0x7f0000000100), 0x80000, 0x0) fcntl$setown(0xffffffffffffffff, 0x8, 0xffffffffffffffff) close(r3) perf_event_open(0x0, 0x0, 0xc, 0xffffffffffffffff, 0x3) signalfd(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_bp={&(0x7f0000000340)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) lseek(r1, 0x0, 0x2) r4 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x4000, 0x128) copy_file_range(r4, 0x0, r1, 0x0, 0x200f5ef, 0x0) rt_sigprocmask(0x1, &(0x7f00000000c0)={[0x9]}, &(0x7f0000000180), 0x8) [ 3111.845569] kmem_cache_alloc+0x5b/0x310 [ 3111.846221] __kernfs_new_node+0xd4/0x860 [ 3111.846701] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 3111.847253] ? __mutex_unlock_slowpath+0xe1/0x600 [ 3111.847812] ? wait_for_completion_io+0x270/0x270 [ 3111.848379] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 3111.848991] kernfs_new_node+0x93/0x120 [ 3111.849456] __kernfs_create_file+0x51/0x350 [ 3111.849962] sysfs_add_file_mode_ns+0x221/0x560 [ 3111.850482] sysfs_merge_group+0x198/0x320 [ 3111.850974] ? sysfs_update_group+0x30/0x30 [ 3111.851448] ? kernfs_put+0x31/0x50 [ 3111.851890] dpm_sysfs_add+0x249/0x290 [ 3111.852328] device_add+0xa06/0x1c50 [ 3111.852762] ? devlink_add_symlinks+0x970/0x970 [ 3111.853293] device_create_groups_vargs+0x207/0x280 [ 3111.853864] device_create+0xdc/0x120 [ 3111.854307] ? device_create_groups_vargs+0x280/0x280 [ 3111.854891] ? init_timer_key+0x12a/0x240 [ 3111.855459] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 3111.856082] mac80211_hwsim_new_radio+0x352/0x4250 [ 3111.856650] ? ____sys_sendmsg+0x70d/0x870 [ 3111.857126] ? ___sys_sendmsg+0xf3/0x170 [ 3111.857583] ? __sys_sendmsg+0xe5/0x1b0 [ 3111.858040] ? do_syscall_64+0x33/0x40 [ 3111.858475] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3111.859085] ? lock_acquire+0x197/0x470 [ 3111.859529] ? create_object.isra.0+0x3ad/0xa20 [ 3111.860057] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 3111.860598] hwsim_new_radio_nl+0x991/0x1080 [ 3111.861096] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 3111.861689] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 3111.862456] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3111.863227] genl_family_rcv_msg_doit+0x22d/0x330 [ 3111.863798] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3111.864580] ? cap_capable+0x1cd/0x230 [ 3111.865053] ? ns_capable+0xe2/0x110 [ 3111.865489] genl_rcv_msg+0x33c/0x5a0 [ 3111.865938] ? genl_get_cmd+0x480/0x480 [ 3111.866405] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 3111.867013] ? lock_release+0x680/0x680 [ 3111.867487] netlink_rcv_skb+0x14b/0x430 [ 3111.867971] ? genl_get_cmd+0x480/0x480 [ 3111.868459] ? netlink_ack+0xab0/0xab0 [ 3111.868930] ? netlink_deliver_tap+0x1c4/0xcd0 [ 3111.869470] genl_rcv+0x24/0x40 [ 3111.869860] netlink_unicast+0x549/0x7f0 [ 3111.870348] ? netlink_attachskb+0x870/0x870 [ 3111.870871] ? __virt_addr_valid+0x128/0x350 [ 3111.871415] netlink_sendmsg+0x90f/0xdf0 [ 3111.871887] ? netlink_unicast+0x7f0/0x7f0 [ 3111.872354] ? netlink_unicast+0x7f0/0x7f0 [ 3111.872799] __sock_sendmsg+0x154/0x190 [ 3111.873224] ____sys_sendmsg+0x70d/0x870 [ 3111.873664] ? sock_write_iter+0x3d0/0x3d0 [ 3111.874109] ? do_recvmmsg+0x6d0/0x6d0 [ 3111.874521] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3111.875084] ? lock_downgrade+0x6d0/0x6d0 [ 3111.875524] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3111.876078] ? SOFTIRQ_verbose+0x10/0x10 [ 3111.876551] ___sys_sendmsg+0xf3/0x170 [ 3111.876968] ? sendmsg_copy_msghdr+0x160/0x160 [ 3111.877453] ? lock_downgrade+0x6d0/0x6d0 [ 3111.877896] ? find_held_lock+0x2c/0x110 [ 3111.878333] ? __fget_files+0x296/0x4c0 [ 3111.878761] ? __fget_light+0xea/0x290 [ 3111.879175] __sys_sendmsg+0xe5/0x1b0 [ 3111.879577] ? __sys_sendmsg_sock+0x40/0x40 [ 3111.880063] ? rcu_read_lock_any_held+0x75/0xa0 [ 3111.880625] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3111.881221] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3111.881806] ? trace_hardirqs_on+0x5b/0x180 [ 3111.882296] do_syscall_64+0x33/0x40 [ 3111.882720] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3111.883298] RIP: 0033:0x7f46fba00b19 [ 3111.883727] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3111.885826] RSP: 002b:00007f46f8f76188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3111.886706] RAX: ffffffffffffffda RBX: 00007f46fbb13f60 RCX: 00007f46fba00b19 [ 3111.887515] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 3111.888324] RBP: 00007f46f8f761d0 R08: 0000000000000000 R09: 0000000000000000 [ 3111.889142] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3111.889963] R13: 00007ffe81962e7f R14: 00007f46f8f76300 R15: 0000000000022000 [ 3111.905970] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 3111.908073] System zones: 0-7 [ 3111.935546] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue 10:13:24 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0002001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:13:40 executing program 1: msgctl$IPC_SET(0x0, 0x1, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x80200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x4, @perf_config_ext={0x20, 0xffffffff80000001}, 0x10208, 0x1, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/ipc\x00') ioctl$NS_GET_USERNS(r1, 0xb701, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2, 0x5}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)}], 0x1}}], 0x1, 0x0) 10:13:40 executing program 7: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c00f0001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:13:40 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0003001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:13:40 executing program 3: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) (fail_nth: 49) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) r3 = openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x4c0a00, 0x0) sendmsg$TIPC_CMD_SET_NETID(r3, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8, 0x2, 0x10001}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:13:40 executing program 2: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x78, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) close(0xffffffffffffffff) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x34008, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb650e5531d6315236ac07d62b2d05a92"], 0x1c}}, 0x40000) r2 = creat(0x0, 0x0) openat$zero(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:13:40 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x0) writev(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0) r0 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r0, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x600, &(0x7f0000000480)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c0000001d00210c000000000000000004000200080017000000000034ce68d67e30ef35101502b804a07df3e221ecb6"], 0x1c}}, 0x40000) r2 = creat(&(0x7f0000000000)='./file2\x00', 0x0) mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f00000004c0)=""/4096) sendmsg$TIPC_CMD_SET_NETID(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x24, 0x0, 0x800, 0x70bd2d, 0x25dfdbfd, {{}, {}, {0x8}}, ["", "", "", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20040880}, 0x20008080) fcntl$setlease(r2, 0x400, 0x1) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$setsig(r2, 0xa, 0x2e) close(r2) syz_io_uring_setup(0x20f6, &(0x7f00000000c0)={0x0, 0x9fb7, 0x4, 0x1, 0x1e7, 0x0, r2}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000140), &(0x7f0000000180)) 10:13:40 executing program 0: r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f00000002c0), 0x20002, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x3) write$rfkill(r0, &(0x7f00000000c0)={0x0, 0x0, 0x3, 0x1}, 0x8) pwritev(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000300)="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", 0x1000}], 0x1, 0xffffffe1, 0x3) r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r2 = clone3(&(0x7f0000000200)={0x104120000, &(0x7f0000000040), &(0x7f0000000080), &(0x7f0000000100), {0x2e}, &(0x7f0000000140)=""/56, 0x38, &(0x7f0000000180)=""/9, &(0x7f00000001c0)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x5}, 0x58) fcntl$lock(r1, 0x26, &(0x7f0000000280)={0x0, 0x2, 0x79343053, 0x4, r2}) 10:13:40 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x4a603, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="200000004000000003000000300000000f000000000000000200000002000000008000000080000020000000d5f4655fd5f4655f0100ffff53ef010001000000d4f4655f000000000000000001000000000000000b0000000002", 0x5a, 0x400}, {&(0x7f0000010100)="000000000000000000000000da61426b81ed44a9ac5d6d8d66d52a0c010000e40b09", 0x22, 0x4e0}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1000}, {&(0x7f0000012600)="ed41000000100000d4f4655fd5f4655fd5f4655f000000000000040008", 0x1d, 0x4200}], 0x0, &(0x7f0000013a00)) [ 3127.947582] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a040c01c, mo2=0002] [ 3127.949397] System zones: 0-7 [ 3127.956862] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 3127.982539] [ 3127.982955] ====================================================== [ 3127.984225] WARNING: possible circular locking dependency detected [ 3127.985523] 5.10.205 #1 Not tainted [ 3127.986259] ------------------------------------------------------ [ 3127.987559] syz-executor.0/17091 is trying to acquire lock: [ 3127.988742] ffff88800eab0b78 ((work_completion)(&hdev->bg_scan_update)){+.+.}-{0:0}, at: __flush_work+0xdd/0xa90 [ 3127.990873] [ 3127.990873] but task is already holding lock: [ 3127.992081] ffffffff85619628 (rfkill_global_mutex){+.+.}-{3:3}, at: rfkill_fop_write+0xff/0x4b0 [ 3127.993897] [ 3127.993897] which lock already depends on the new lock. [ 3127.993897] [ 3127.995542] [ 3127.995542] the existing dependency chain (in reverse order) is: [ 3127.997061] [ 3127.997061] -> #4 (rfkill_global_mutex){+.+.}-{3:3}: [ 3128.001504] __mutex_lock+0x13d/0x10b0 [ 3128.002394] rfkill_register+0x36/0xa10 [ 3128.003302] hci_register_dev+0x42e/0xc00 [ 3128.004248] __vhci_create_device+0x2c8/0x5c0 [ 3128.005270] vhci_open_timeout+0x38/0x50 [ 3128.006195] process_one_work+0x9a9/0x14b0 [ 3128.007149] worker_thread+0x61d/0x1310 [ 3128.008056] kthread+0x38f/0x470 [ 3128.008852] ret_from_fork+0x22/0x30 [ 3128.009696] [ 3128.009696] -> #3 (&data->open_mutex){+.+.}-{3:3}: [ 3128.011010] __mutex_lock+0x13d/0x10b0 [ 3128.011900] vhci_send_frame+0x63/0xa0 [ 3128.012817] hci_send_frame+0x1b9/0x320 [ 3128.013718] hci_tx_work+0x10af/0x1660 [ 3128.014608] process_one_work+0x9a9/0x14b0 [ 3128.015558] worker_thread+0x61d/0x1310 [ 3128.016468] kthread+0x38f/0x470 [ 3128.017252] ret_from_fork+0x22/0x30 [ 3128.018095] [ 3128.018095] -> #2 ((work_completion)(&hdev->tx_work)){+.+.}-{0:0}: [ 3128.019676] __flush_work+0x105/0xa90 [ 3128.020561] hci_dev_do_close+0x131/0x1240 [ 3128.021515] hci_unregister_dev+0x149/0x430 [ 3128.022486] vhci_release+0x70/0xf0 [ 3128.023325] __fput+0x285/0x980 [ 3128.024093] task_work_run+0xe2/0x1a0 [ 3128.024970] do_exit+0xb6f/0x2600 [ 3128.025771] do_group_exit+0x125/0x310 [ 3128.026661] get_signal+0x4bc/0x22e0 [ 3128.027515] arch_do_signal_or_restart+0x2b7/0x1990 [ 3128.028634] exit_to_user_mode_prepare+0x10f/0x190 [ 3128.029725] syscall_exit_to_user_mode+0x38/0x1e0 [ 3128.030800] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3128.031931] [ 3128.031931] -> #1 (&hdev->req_lock){+.+.}-{3:3}: [ 3128.033232] __mutex_lock+0x13d/0x10b0 [ 3128.034122] bg_scan_update+0x82/0x500 [ 3128.035019] process_one_work+0x9a9/0x14b0 [ 3128.035975] worker_thread+0x61d/0x1310 [ 3128.036886] kthread+0x38f/0x470 [ 3128.037662] ret_from_fork+0x22/0x30 [ 3128.038495] [ 3128.038495] -> #0 ((work_completion)(&hdev->bg_scan_update)){+.+.}-{0:0}: [ 3128.040179] __lock_acquire+0x29e7/0x5b00 [ 3128.041121] lock_acquire+0x197/0x470 [ 3128.041982] __flush_work+0x105/0xa90 [ 3128.042845] __cancel_work_timer+0x368/0x4c0 [ 3128.043828] hci_request_cancel_all+0x73/0x230 [ 3128.044856] hci_dev_do_close+0xd9/0x1240 [ 3128.045781] hci_rfkill_set_block+0x166/0x1a0 [ 3128.046772] rfkill_set_block+0x1fd/0x540 [ 3128.047693] rfkill_fop_write+0x253/0x4b0 [ 3128.048623] vfs_write+0x29a/0xa70 [ 3128.049440] ksys_write+0x1f6/0x260 [ 3128.050266] do_syscall_64+0x33/0x40 [ 3128.051106] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3128.052221] [ 3128.052221] other info that might help us debug this: [ 3128.052221] [ 3128.053837] Chain exists of: [ 3128.053837] (work_completion)(&hdev->bg_scan_update) --> &data->open_mutex --> rfkill_global_mutex [ 3128.053837] [ 3128.056564] Possible unsafe locking scenario: [ 3128.056564] [ 3128.057774] CPU0 CPU1 [ 3128.058687] ---- ---- [ 3128.059611] lock(rfkill_global_mutex); [ 3128.060418] lock(&data->open_mutex); [ 3128.061696] lock(rfkill_global_mutex); [ 3128.062991] lock((work_completion)(&hdev->bg_scan_update)); [ 3128.064156] [ 3128.064156] *** DEADLOCK *** [ 3128.064156] [ 3128.065360] 1 lock held by syz-executor.0/17091: [ 3128.066292] #0: ffffffff85619628 (rfkill_global_mutex){+.+.}-{3:3}, at: rfkill_fop_write+0xff/0x4b0 [ 3128.068141] [ 3128.068141] stack backtrace: [ 3128.069076] CPU: 1 PID: 17091 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 3128.070504] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3128.072207] Call Trace: [ 3128.072766] dump_stack+0x107/0x167 [ 3128.073514] check_noncircular+0x263/0x2e0 [ 3128.074380] ? register_lock_class+0xbb/0x17b0 [ 3128.075317] ? print_circular_bug+0x470/0x470 [ 3128.076240] ? find_first_zero_bit+0x94/0xb0 [ 3128.077152] ? alloc_chain_hlocks+0x342/0x5a0 [ 3128.078062] __lock_acquire+0x29e7/0x5b00 [ 3128.078909] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3128.079962] ? SOFTIRQ_verbose+0x10/0x10 [ 3128.080801] ? lock_chain_count+0x20/0x20 [ 3128.081634] ? mark_lock+0xf5/0x2df0 [ 3128.082388] lock_acquire+0x197/0x470 [ 3128.083158] ? __flush_work+0xdd/0xa90 [ 3128.083954] ? lock_release+0x680/0x680 [ 3128.084790] ? __flush_work+0x78c/0xa90 [ 3128.085609] ? lock_downgrade+0x6d0/0x6d0 [ 3128.086462] __flush_work+0x105/0xa90 [ 3128.087247] ? __flush_work+0xdd/0xa90 [ 3128.088055] ? lock_chain_count+0x20/0x20 [ 3128.088921] ? queue_delayed_work_on+0xe0/0xe0 [ 3128.089842] ? mark_lock+0xf5/0x2df0 [ 3128.090611] ? mark_lock+0xf5/0x2df0 [ 3128.091367] ? lock_chain_count+0x20/0x20 [ 3128.092210] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3128.093292] ? lock_chain_count+0x20/0x20 [ 3128.094147] ? lock_acquire+0x197/0x470 [ 3128.094948] ? rfkill_send_events+0x1e8/0x390 [ 3128.095856] ? mark_held_locks+0x9e/0xe0 [ 3128.096693] __cancel_work_timer+0x368/0x4c0 [ 3128.097583] ? cancel_delayed_work+0x20/0x20 [ 3128.098474] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3128.099528] ? __cancel_work+0x250/0x2b0 [ 3128.100346] ? trace_hardirqs_on+0x5b/0x180 [ 3128.101233] ? __cancel_work+0x1bb/0x2b0 [ 3128.102051] ? try_to_grab_pending+0xe0/0xe0 [ 3128.102943] hci_request_cancel_all+0x73/0x230 [ 3128.103865] hci_dev_do_close+0xd9/0x1240 [ 3128.104708] ? rfkill_set_block+0x18f/0x540 [ 3128.105576] ? hci_dev_open+0x350/0x350 [ 3128.106383] ? mark_held_locks+0x9e/0xe0 [ 3128.107205] hci_rfkill_set_block+0x166/0x1a0 [ 3128.108107] ? hci_power_off+0x20/0x20 [ 3128.108902] rfkill_set_block+0x1fd/0x540 [ 3128.109740] rfkill_fop_write+0x253/0x4b0 [ 3128.110575] ? rfkill_sync_work+0xa0/0xa0 [ 3128.111413] ? security_file_permission+0x24e/0x570 [ 3128.112424] ? rfkill_sync_work+0xa0/0xa0 [ 3128.113274] vfs_write+0x29a/0xa70 [ 3128.114004] ksys_write+0x1f6/0x260 [ 3128.114739] ? __ia32_sys_read+0xb0/0xb0 [ 3128.115569] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3128.116636] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3128.117680] do_syscall_64+0x33/0x40 [ 3128.118431] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3128.119465] RIP: 0033:0x7f88e00a8b19 [ 3128.120216] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3128.123940] RSP: 002b:00007f88dd61e188 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 3128.125483] RAX: ffffffffffffffda RBX: 00007f88e01bbf60 RCX: 00007f88e00a8b19 [ 3128.126927] RDX: 0000000000000008 RSI: 00000000200000c0 RDI: 0000000000000003 [ 3128.128368] RBP: 00007f88e0102f6d R08: 0000000000000000 R09: 0000000000000000 [ 3128.129814] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 3128.131253] R13: 00007ffe18f92b3f R14: 00007f88dd61e300 R15: 0000000000022000 [ 3128.168429] FAULT_INJECTION: forcing a failure. [ 3128.168429] name failslab, interval 1, probability 0, space 0, times 0 [ 3128.171034] CPU: 1 PID: 17078 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 3128.172492] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 3128.174190] Call Trace: [ 3128.174742] dump_stack+0x107/0x167 [ 3128.175502] should_fail.cold+0x5/0xa [ 3128.176295] ? create_object.isra.0+0x3a/0xa20 [ 3128.177243] should_failslab+0x5/0x20 [ 3128.178029] kmem_cache_alloc+0x5b/0x310 [ 3128.178858] create_object.isra.0+0x3a/0xa20 [ 3128.179753] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 3128.180790] kmem_cache_alloc+0x159/0x310 [ 3128.181645] __kernfs_new_node+0xd4/0x860 [ 3128.182484] ? kernfs_add_one+0x36e/0x4d0 [ 3128.183333] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 3128.184302] ? lock_release+0x4d1/0x680 [ 3128.185126] ? kernfs_find_and_get_ns+0x55/0x70 [ 3128.186063] ? lock_downgrade+0x6d0/0x6d0 [ 3128.186928] ? kernfs_find_and_get_ns+0x21/0x70 [ 3128.187884] kernfs_new_node+0x93/0x120 [ 3128.188728] __kernfs_create_file+0x51/0x350 [ 3128.189647] sysfs_add_file_mode_ns+0x221/0x560 [ 3128.190606] sysfs_merge_group+0x198/0x320 [ 3128.191470] ? sysfs_update_group+0x30/0x30 [ 3128.192347] ? kernfs_put+0x31/0x50 [ 3128.193106] dpm_sysfs_add+0x249/0x290 [ 3128.193897] device_add+0xa06/0x1c50 [ 3128.194676] ? devlink_add_symlinks+0x970/0x970 [ 3128.195633] device_create_groups_vargs+0x207/0x280 [ 3128.196665] device_create+0xdc/0x120 [ 3128.197445] ? device_create_groups_vargs+0x280/0x280 [ 3128.198501] ? init_timer_key+0x12a/0x240 [ 3128.199359] ? ieee80211_alloc_hw_nm+0x1e5/0x2320 [ 3128.200347] mac80211_hwsim_new_radio+0x352/0x4250 [ 3128.201354] ? ____sys_sendmsg+0x70d/0x870 [ 3128.202218] ? ___sys_sendmsg+0xf3/0x170 [ 3128.203048] ? __sys_sendmsg+0xe5/0x1b0 [ 3128.203862] ? do_syscall_64+0x33/0x40 [ 3128.204662] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3128.205744] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 3128.206693] hwsim_new_radio_nl+0x991/0x1080 [ 3128.207582] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 3128.208659] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 3128.209995] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 3128.211318] genl_family_rcv_msg_doit+0x22d/0x330 [ 3128.212296] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 3128.213635] ? cap_capable+0x1cd/0x230 [ 3128.214431] ? ns_capable+0xe2/0x110 [ 3128.215185] genl_rcv_msg+0x33c/0x5a0 [ 3128.215956] ? genl_get_cmd+0x480/0x480 [ 3128.216781] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 3128.217842] ? lock_release+0x680/0x680 [ 3128.218649] ? netlink_deliver_tap+0xf4/0xcd0 [ 3128.219554] netlink_rcv_skb+0x14b/0x430 [ 3128.220402] ? genl_get_cmd+0x480/0x480 [ 3128.221262] ? netlink_ack+0xab0/0xab0 [ 3128.222062] ? netlink_deliver_tap+0x1c4/0xcd0 [ 3128.222997] ? is_vmalloc_addr+0x7b/0xb0 [ 3128.223819] genl_rcv+0x24/0x40 [ 3128.224503] netlink_unicast+0x549/0x7f0 [ 3128.225356] ? netlink_attachskb+0x870/0x870 [ 3128.226259] ? __virt_addr_valid+0x128/0x350 [ 3128.227160] netlink_sendmsg+0x90f/0xdf0 [ 3128.228000] ? netlink_unicast+0x7f0/0x7f0 [ 3128.228887] ? netlink_unicast+0x7f0/0x7f0 [ 3128.229745] __sock_sendmsg+0x154/0x190 [ 3128.230553] ____sys_sendmsg+0x70d/0x870 [ 3128.231382] ? sock_write_iter+0x3d0/0x3d0 [ 3128.232240] ? do_recvmmsg+0x6d0/0x6d0 [ 3128.233058] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 3128.234224] ___sys_sendmsg+0xf3/0x170 [ 3128.235063] ? sendmsg_copy_msghdr+0x160/0x160 [ 3128.236054] ? lock_downgrade+0x6d0/0x6d0 [ 3128.236934] ? find_held_lock+0x2c/0x110 [ 3128.237764] ? clockevents_program_event+0x14b/0x360 [ 3128.238798] ? __fget_files+0x296/0x4c0 [ 3128.239611] ? __fget_light+0xea/0x290 [ 3128.240402] __sys_sendmsg+0xe5/0x1b0 [ 3128.241205] ? __sys_sendmsg_sock+0x40/0x40 [ 3128.242097] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 3128.243165] ? syscall_enter_from_user_mode+0x1d/0x50 [ 3128.244207] ? trace_hardirqs_on+0x5b/0x180 [ 3128.245111] do_syscall_64+0x33/0x40 [ 3128.245872] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 3128.246927] RIP: 0033:0x7f46fba00b19 [ 3128.247694] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3128.251491] RSP: 002b:00007f46f8f76188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3128.253058] RAX: ffffffffffffffda RBX: 00007f46fbb13f60 RCX: 00007f46fba00b19 [ 3128.254511] RDX: 0000000000040000 RSI: 0000000020000000 RDI: 0000000000000006 [ 3128.255960] RBP: 00007f46f8f761d0 R08: 0000000000000000 R09: 0000000000000000 [ 3128.257417] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3128.258867] R13: 00007ffe81962e7f R14: 00007f46f8f76300 R15: 0000000000022000 VM DIAGNOSIS: 10:13:40 Registers: info registers vcpu 0 RAX=ffff8880083f8140 RBX=ffff88804dd5f380 RCX=ffff88804dd5f380 RDX=dffffc0000000000 RSI=ffff88804dd5f6d8 RDI=ffff88804dd5f6d8 RBP=ffff88804dd5f6d8 RSP=ffff88804dd5f238 R8 =0000000000000001 R9 =0000000000000001 R10=0000000000032042 R11=1ffff11009babe55 R12=ffff88804dd5f340 R13=ffff88804dd58000 R14=1ffff11009babe55 R15=ffffffff85a0e0de RIP=ffffffff811070e2 RFL=00000283 [--S---C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f9f4006b8c0 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0300000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055c060d652e0 CR3=000000000c89e000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=25252525252525252525252525252525 XMM01=00000000000000ff0000000000ff0000 XMM02=00000000000000ff0000000000ff0000 XMM03=696e656420737365636341002f737973 XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=000055c060d7f870000055c060d8e190 XMM06=000055c060d7f1d00000000000000003 XMM07=00000000000000000000000000000000 XMM08=732f636f72702f006b63616d7300632e XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd RSI=ffffffff822cb55c RDI=ffffffff879e8240 RBP=ffffffff879e8200 RSP=ffff88804c6e7188 R8 =0000000000000001 R9 =0000000000000003 R10=000000000000000a R11=0000000000000001 R12=0000000000000020 R13=fffffbfff0f3d094 R14=fffffbfff0f3d04a R15=dffffc0000000000 RIP=ffffffff822cb5b0 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f88dd61e700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe0600000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fa73f4de718 CR3=00000000496a6000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007fd0ea9167c000007fd0ea9167c8 XMM02=00007fd0ea9167e000007fd0ea9167c0 XMM03=00007fd0ea9167c800007fd0ea9167c0 XMM04=ffffffffffffffffffffffff00000000 XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000