x40 [ 1313.184445] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1313.185021] RIP: 0033:0x7f76b700cb19 [ 1313.185451] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1313.187547] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1313.188396] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1313.189190] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1313.189977] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1313.190769] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1313.191569] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 15:33:28 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) (fail_nth: 55) [ 1334.506350] FAULT_INJECTION: forcing a failure. [ 1334.506350] name failslab, interval 1, probability 0, space 0, times 0 [ 1334.508635] CPU: 0 PID: 10322 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1334.510046] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1334.511744] Call Trace: [ 1334.512282] dump_stack+0x107/0x167 [ 1334.513023] should_fail.cold+0x5/0xa [ 1334.513794] ? create_object.isra.0+0x3a/0xa20 [ 1334.514720] should_failslab+0x5/0x20 [ 1334.515491] kmem_cache_alloc+0x5b/0x310 [ 1334.516324] ? mark_held_locks+0x9e/0xe0 [ 1334.517152] create_object.isra.0+0x3a/0xa20 [ 1334.518050] kmemleak_alloc_percpu+0xa0/0x100 [ 1334.518962] pcpu_alloc+0x4e2/0x1240 [ 1334.519759] __kmem_cache_create+0x35a/0x520 [ 1334.520658] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1334.521669] p9_client_create+0xc2b/0x11c0 [ 1334.522539] ? p9_client_flush+0x430/0x430 [ 1334.523398] ? trace_hardirqs_on+0x5b/0x180 [ 1334.524279] ? lockdep_init_map_type+0x2c7/0x780 [ 1334.525249] ? __raw_spin_lock_init+0x36/0x110 [ 1334.526181] v9fs_session_init+0x1dd/0x1680 [ 1334.527053] ? lock_release+0x680/0x680 [ 1334.527890] ? kmem_cache_alloc_trace+0x151/0x320 [ 1334.528866] ? v9fs_show_options+0x690/0x690 [ 1334.529770] ? trace_hardirqs_on+0x5b/0x180 [ 1334.530651] ? kasan_unpoison_shadow+0x33/0x50 [ 1334.531577] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1334.532629] v9fs_mount+0x79/0x8f0 [ 1334.533365] ? v9fs_write_inode+0x60/0x60 [ 1334.534216] legacy_get_tree+0x105/0x220 [ 1334.535056] vfs_get_tree+0x8e/0x300 [ 1334.535848] path_mount+0x13be/0x20b0 [ 1334.536638] ? strncpy_from_user+0x9e/0x470 [ 1334.537529] ? finish_automount+0xa90/0xa90 [ 1334.538418] ? getname_flags.part.0+0x1dd/0x4f0 [ 1334.539371] ? _copy_from_user+0xfb/0x1b0 [ 1334.540293] __x64_sys_mount+0x282/0x300 [ 1334.541143] ? copy_mnt_ns+0xa00/0xa00 [ 1334.541953] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1334.543047] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1334.544184] do_syscall_64+0x33/0x40 [ 1334.544949] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1334.546002] RIP: 0033:0x7f76b700cb19 [ 1334.546774] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1334.550580] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1334.552145] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1334.553592] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1334.555041] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1334.556511] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1334.557962] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 [ 1334.586039] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1334.587742] CPU: 1 PID: 10332 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1334.588741] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1334.589976] Call Trace: [ 1334.590380] dump_stack+0x107/0x167 [ 1334.590940] sysfs_warn_dup.cold+0x1c/0x29 [ 1334.591562] sysfs_do_create_link_sd+0x122/0x140 [ 1334.592291] sysfs_create_link+0x5f/0xc0 [ 1334.592907] device_add+0x703/0x1c50 [ 1334.593479] ? devlink_add_symlinks+0x970/0x970 [ 1334.594159] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1334.594926] wiphy_register+0x1da6/0x2850 [ 1334.595542] ? wiphy_unregister+0xb90/0xb90 [ 1334.596219] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1334.597023] ieee80211_register_hw+0x23c5/0x38b0 [ 1334.597769] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1334.598489] ? net_generic+0xdb/0x2b0 [ 1334.599075] ? lockdep_init_map_type+0x2c7/0x780 [ 1334.599805] ? memset+0x20/0x50 [ 1334.600309] ? __hrtimer_init+0x12c/0x270 [ 1334.600929] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1334.601699] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1334.602398] ? hwsim_new_radio_nl+0x967/0x1080 [ 1334.603084] ? memcpy+0x39/0x60 [ 1334.603586] hwsim_new_radio_nl+0x991/0x1080 [ 1334.604277] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1334.605066] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1334.606046] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1334.607019] genl_family_rcv_msg_doit+0x22d/0x330 [ 1334.607750] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1334.608728] ? cap_capable+0x1cd/0x230 [ 1334.609323] ? ns_capable+0xe2/0x110 [ 1334.609882] genl_rcv_msg+0x33c/0x5a0 [ 1334.610456] ? genl_get_cmd+0x480/0x480 [ 1334.611052] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1334.611841] ? lock_release+0x680/0x680 [ 1334.612440] ? __lockdep_reset_lock+0x180/0x180 [ 1334.613146] netlink_rcv_skb+0x14b/0x430 [ 1334.613769] ? genl_get_cmd+0x480/0x480 [ 1334.614370] ? netlink_ack+0xab0/0xab0 [ 1334.614968] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1334.615670] ? is_vmalloc_addr+0x7b/0xb0 [ 1334.616282] genl_rcv+0x24/0x40 [ 1334.616775] netlink_unicast+0x549/0x7f0 [ 1334.617384] ? netlink_attachskb+0x870/0x870 [ 1334.618053] netlink_sendmsg+0x90f/0xdf0 [ 1334.618666] ? netlink_unicast+0x7f0/0x7f0 [ 1334.619307] ? netlink_unicast+0x7f0/0x7f0 [ 1334.619946] __sock_sendmsg+0x154/0x190 [ 1334.620542] ____sys_sendmsg+0x70d/0x870 [ 1334.621154] ? sock_write_iter+0x3d0/0x3d0 [ 1334.621785] ? do_recvmmsg+0x6d0/0x6d0 [ 1334.622368] ? perf_trace_lock+0xac/0x490 [ 1334.622993] ? __lockdep_reset_lock+0x180/0x180 [ 1334.623712] ___sys_sendmsg+0xf3/0x170 [ 1334.624297] ? sendmsg_copy_msghdr+0x160/0x160 [ 1334.624986] ? lock_downgrade+0x6d0/0x6d0 [ 1334.625612] ? __fget_files+0x325/0x4c0 [ 1334.626209] ? __fget_files+0x8f/0x4c0 [ 1334.626797] ? __fget_files+0x296/0x4c0 [ 1334.627405] ? __fget_light+0xea/0x290 [ 1334.628000] __sys_sendmsg+0xe5/0x1b0 [ 1334.628566] ? __sys_sendmsg_sock+0x40/0x40 [ 1334.629223] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1334.629999] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1334.630753] ? trace_hardirqs_on+0x5b/0x180 [ 1334.631398] do_syscall_64+0x33/0x40 [ 1334.631957] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1334.632703] RIP: 0033:0x7f07e63f4b19 [ 1334.633253] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1334.635955] RSP: 002b:00007f07e396a188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1334.637074] RAX: ffffffffffffffda RBX: 00007f07e6507f60 RCX: 00007f07e63f4b19 [ 1334.638125] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1334.639174] RBP: 00007f07e644ef6d R08: 0000000000000000 R09: 0000000000000000 [ 1334.640229] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1334.641275] R13: 00007fff1f25f23f R14: 00007f07e396a300 R15: 0000000000022000 15:33:28 executing program 4: mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x8}, 0x11010, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x4000, 0x0, 0x0, 0x3) mlock2(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$sock_int(r1, 0x1, 0x12, &(0x7f0000000200)=0x33e0, 0x4) mremap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x4000, 0x2, &(0x7f0000ffc000/0x4000)=nil) mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, &(0x7f00000001c0)=0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=ANY=[@ANYBLOB="980000002000210c0010000000000000020000006c009680080022000a010101acd2b2c7e98b6167be6b59663e303cbc6ca0f888bb3730e2fda717c5c05458903eebf4f98129b521ac995853622f691db5a3bc250ecd3e8cadf086a4042a461095362e1a7f5dcd1783eb255cc953405e0ba35a380c00ff00c8990000000000001800ff800a0015002c5c282d9700000008002d00", @ANYRES32=0x0, @ANYBLOB="a44d943dd297af3f04cd8b6570cdcb14c9f175e10f52bdf091277af741d5d8d44042d90cd41c326840628efd0d2d28a02d10507f8eb0a1d572823cd3af260eda6bded9d99f9054371b8af4a856f21e1fb2092beb6ea3c2b7e2ae4a73aeb26c48675338970ecfd110b3b887351fe4973d88"], 0x98}, 0x1, 0x0, 0x0, 0x4000}, 0x20004004) madvise(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2) setsockopt$inet6_tcp_int(r1, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) mbind(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x3, &(0x7f0000000140)=0x5, 0x5, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x8, 0xffffffffffffffff) sendfile(r1, r0, 0x0, 0x9bbb) 15:33:28 executing program 5: r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000080)={0x0}, &(0x7f00000000c0)=0xc) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000980)={&(0x7f0000000100)=@abs, 0x6e, &(0x7f00000008c0)=[{&(0x7f0000000180)=""/116, 0x74}, {&(0x7f0000000200)=""/174, 0xae}, {&(0x7f00000002c0)=""/116, 0x74}, {&(0x7f0000000500)=""/151, 0x97}, {&(0x7f00000005c0)=""/226, 0xe2}, {&(0x7f0000000340)=""/51, 0x33}, {&(0x7f0000000400)=""/36, 0x24}, {&(0x7f00000006c0)=""/195, 0xc3}, {&(0x7f00000007c0)=""/65, 0x41}, {&(0x7f0000000840)=""/117, 0x75}], 0xa, &(0x7f0000000440)=[@cred={{0x1c, 0x1, 0x2, {0x0}}}], 0x20}, 0x44) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000d40)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000d00)={&(0x7f0000000d80)=ANY=[@ANYBLOB="080300003c0000002dbd7000ffdbdf2519000000b0013d80b28edaf48319f683844d7d3db6b1758f06f8f9fc12a7e6dbc90b742125d73c93f91d33085c036008000200", @ANYRES32=r0, @ANYBLOB="08009100e000000208006800", @ANYRES32=r1, @ANYBLOB="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", @ANYRES32=r2, @ANYBLOB="0c0065000180000000000000b4562e0b7671fdeb64198f80c67f297fd81e49325208008600", @ANYRES32, @ANYBLOB="04007900080081000000000088fe357801ba49b3567dbb4ef268618079f74d20584dbdc6bb679ec65f9da31281e67862a58a7780f1ce4fe8b0bfaa4e00744bba284255eee49bcdced4132fb8c1adde6da280e48d0dadd5beb08288ab434c0718dc17a6f6a81fd9b945ce7690db4e63609917b69d85d59f0edd00005a00938089cf914c4358c72512588cfb3d4808006e00", @ANYRES32=r0, @ANYBLOB="1154c65e470c37dd2737797063e27b0b9d0fb1dd42a7d7a2e75dc5768a57bc96a8edaf980f350211eef5abf3328fdb8e7d7ea538705cd690d41895e5961f5a5b47ea050e7862ba910000"], 0x308}, 0x1, 0x0, 0x0, 0xc801}, 0x48080) syz_emit_ethernet(0x3e, &(0x7f00000003c0)={@link_local, @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "96153f", 0x8, 0x2c, 0x0, @rand_addr=' \x01\x00', @mcast2, {[], @mlv2_report}}}}}, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c) r3 = fork() ptrace(0x10, r3) ptrace$getsig(0x4202, r3, 0x0, &(0x7f0000000380)) 15:33:28 executing program 6: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) openat(r2, &(0x7f00000000c0)='./file0\x00', 0x200000, 0x6b) sendmsg$TIPC_CMD_GET_NETID(r2, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x1c, 0x0, 0x8, 0x70bd28, 0x25dfdbfd, {}, ["", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0xc0c4}, 0x401) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000440)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_SET_NOACK_MAP(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000340)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000000000004000000008000300", @ANYRES32=r4, @ANYBLOB="0600950000000000"], 0x24}}, 0x0) 15:33:28 executing program 2: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x16, 0x0, 0x0) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r2, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd=r1, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:33:28 executing program 3: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:33:28 executing program 7: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x40a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NL80211_CMD_STOP_AP(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4c801}, 0x4004) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x94, 0x1, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}, 0x10088, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = getpid() r2 = getpgid(0x0) r3 = epoll_create(0x1) kcmp$KCMP_EPOLL_TFD(r1, r2, 0x7, r3, &(0x7f0000000040)={r3}) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b\x00\x00\x00', @ANYRES32=r1, @ANYBLOB="0800000200000000d3018756"], 0x28}}, 0x0) 15:33:28 executing program 0: r0 = socket$inet(0x2, 0x1, 0x0) sendto$inet(r0, 0x0, 0x0, 0x200400d4, &(0x7f0000000380)={0x2, 0x0, @local}, 0x10) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, r0}, 0x0) io_uring_enter(0xffffffffffffffff, 0x76d3, 0x0, 0x0, 0x0, 0x0) 15:33:28 executing program 4: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x16, 0x0, 0x0) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r2, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd=r1, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:33:28 executing program 0: r0 = syz_io_uring_setup(0x2130, &(0x7f00000000c0)={0x0, 0x0, 0x30, 0x0, 0xfffffffc}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000000)=0x0, &(0x7f0000000080)=0x0) r3 = creat(&(0x7f0000000140)='./file0\x00', 0x2e) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000380)={0x2, 0x0, @local}, 0x10) r4 = openat$cgroup_procs(r3, &(0x7f0000000180)='cgroup.procs\x00', 0x2, 0x0) ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f00000001c0)={r4, 0xffffffff, 0x9331, 0xffffffffffff7fff}) fsmount(r5, 0x1, 0x80) r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r7 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x111000, 0x0) copy_file_range(r7, 0x0, r6, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) dup2(r3, r7) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_RECV=@use_registered_buffer, 0x0) fstat(r0, &(0x7f00000015c0)={0x0, 0x0, 0x0, 0x0, 0x0}) openat(0xffffffffffffffff, &(0x7f0000001700)='./file0\x00', 0x282000, 0x40) stat(&(0x7f00000001c0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r9, 0x0) syz_mount_image$vfat(&(0x7f0000000300), &(0x7f0000000340)='./file0\x00', 0x6, 0x2, &(0x7f0000001580)=[{&(0x7f0000001500)="50cfd5de56315361daa0e9ba5b87eeac17b80de7d08d315114a835d59361aee3e44a9c05800d", 0x26, 0x4}, {&(0x7f0000001540)="0e985a895d771751b375cd47c6f1a8b688ff30e136fa8032634a67b2b6ee44774dab9d8acc6becc81b41489e6bf8", 0x2e, 0x5}], 0x1072203, &(0x7f0000001640)={[{@rodir}], [{@uid_gt={'uid>', r8}}, {@subj_role={'subj_role', 0x3d, '\xbc'}}, {@appraise}, {@subj_user={'subj_user', 0x3d, '\x00'}}, {@subj_type={'subj_type', 0x3d, 'cgroup.procs\x00'}}, {@uid_lt={'uid<', 0xffffffffffffffff}}, {@euid_eq={'euid', 0x3d, r9}}, {@obj_role={'obj_role', 0x3d, '-\'*\\'}}]}) io_uring_enter(r0, 0x76d3, 0x0, 0x0, 0x0, 0x0) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r3, &(0x7f0000000280)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f00000003c0)={0x1120, 0x0, 0x20, 0x70bd25, 0x25dfdbfc, {}, [@ETHTOOL_A_LINKMODES_OURS={0x110c, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_BITS={0x38, 0x3, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_NAME={0x5, 0x2, '\x00'}, @ETHTOOL_A_BITSET_BIT_NAME={0x11, 0x2, 'cgroup.procs\x00'}, @ETHTOOL_A_BITSET_BIT_VALUE={0x4}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x5}, @ETHTOOL_A_BITSET_BIT_INDEX={0x8, 0x1, 0x52a}]}]}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x101}, @ETHTOOL_A_BITSET_NOMASK={0x4}, @ETHTOOL_A_BITSET_MASK={0x8f, 0x5, "d687b473f30d5449151a6bcd1c5420738acea8e1cdeff5ea1348dbc90e8ba54bb45a6ef155874e95f214088afb33cbef5c9a273b14ffccb20e81a54a9031bc1a4d45188b1acdd6ea6807521fa0ae943b7bb1244bb03da00b9e823fcb93a0e34495630e0ff0de4fe3adcd44781372591b04a0e698df53d1d72a0951f041dd390fa3c2f9cd136480d573404f"}, @ETHTOOL_A_BITSET_VALUE={0x2c, 0x4, "a50aa3d1b9343935f624b1e9ce215eaaa0c15fbb9b8ffcaa6571b4c1458a5b6964da5dcb0101091a"}, @ETHTOOL_A_BITSET_MASK={0x1004, 0x5, "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"}]}]}, 0x1120}, 0x1, 0x0, 0x0, 0x1}, 0x4c000) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x3000002, 0x50, r3, 0x8000000) 15:33:28 executing program 7: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x40a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NL80211_CMD_STOP_AP(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4c801}, 0x4004) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x94, 0x1, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}, 0x10088, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = getpid() getpgid(0x0) epoll_create(0x1) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b\x00\x00\x00', @ANYRES32=r1, @ANYBLOB="0800000200000000d3018756"], 0x28}}, 0x0) 15:33:28 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x105142, 0x0) ftruncate(r0, 0xffff) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) setsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000040)={0x0, @loopback, @loopback}, 0xc) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r2 = fcntl$dupfd(r0, 0x0, r1) lseek(r1, 0x800, 0x0) fsetxattr$trusted_overlay_nlink(r2, &(0x7f0000000080), &(0x7f00000000c0)={'L-', 0x8}, 0x16, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = accept4$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @private1}, &(0x7f0000000140)=0x1c, 0x80000) r4 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) name_to_handle_at(r4, &(0x7f0000000400)='./file0\x00', &(0x7f0000000440)=ANY=[@ANYBLOB="0000004e0000000800000000000000020000000000000006000000faffffffffffffff"], &(0x7f0000000480), 0x1c00) fcntl$dupfd(r2, 0x406, r4) r5 = accept4$bt_l2cap(r0, 0x0, &(0x7f0000000180), 0x80000) sendfile(r3, r5, &(0x7f0000000200)=0x8001, 0x1) r6 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) openat(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x101803, 0x1) write(0xffffffffffffffff, &(0x7f0000000240)="01", 0x1) io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, &(0x7f00000003c0)=[{&(0x7f00000002c0)=""/144, 0x90}, {&(0x7f0000000380)}], 0x2) sendfile(r1, r6, 0x0, 0x100000001) [ 1334.856831] debugfs: Directory '€˜§°ÇÛ ”uòQÇC !' with parent 'ieee80211' already present! 15:33:28 executing program 3: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:33:28 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) (fail_nth: 56) [ 1335.006008] FAULT_INJECTION: forcing a failure. [ 1335.006008] name failslab, interval 1, probability 0, space 0, times 0 [ 1335.010544] CPU: 0 PID: 10359 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1335.011975] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1335.013656] Call Trace: [ 1335.014208] dump_stack+0x107/0x167 [ 1335.014962] should_fail.cold+0x5/0xa [ 1335.015797] ? create_object.isra.0+0x3a/0xa20 [ 1335.016730] should_failslab+0x5/0x20 [ 1335.017504] kmem_cache_alloc+0x5b/0x310 [ 1335.018343] create_object.isra.0+0x3a/0xa20 [ 1335.019255] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1335.020296] kmem_cache_alloc+0x159/0x310 [ 1335.020932] __kernfs_new_node+0xd4/0x860 [ 1335.021778] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1335.022722] ? kernfs_next_descendant_post+0x1a7/0x2a0 15:33:29 executing program 2: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) [ 1335.023944] ? kernfs_add_one+0x124/0x4d0 [ 1335.024807] ? kernfs_create_dir_ns+0x19f/0x230 [ 1335.025742] kernfs_new_node+0x93/0x120 [ 1335.026554] __kernfs_create_file+0x51/0x350 [ 1335.027443] sysfs_add_file_mode_ns+0x221/0x560 [ 1335.028437] internal_create_group+0x324/0xb30 [ 1335.029379] ? sysfs_remove_group+0x170/0x170 [ 1335.030288] ? kernfs_name_hash+0xe7/0x110 [ 1335.031149] ? kernfs_find_ns+0x256/0x380 [ 1335.032030] sysfs_slab_add+0x188/0x200 [ 1335.032866] __kmem_cache_create+0x3db/0x520 [ 1335.033766] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1335.033954] debugfs: Directory '€˜§°ÇÛ ”uòQÇC !' with parent 'ieee80211' already present! [ 1335.034785] p9_client_create+0xc2b/0x11c0 [ 1335.034820] ? p9_client_flush+0x430/0x430 [ 1335.034844] ? trace_hardirqs_on+0x5b/0x180 [ 1335.038550] ? lockdep_init_map_type+0x2c7/0x780 [ 1335.039517] ? __raw_spin_lock_init+0x36/0x110 [ 1335.040456] v9fs_session_init+0x1dd/0x1680 [ 1335.041334] ? lock_release+0x680/0x680 [ 1335.042161] ? kmem_cache_alloc_trace+0x151/0x320 [ 1335.043152] ? v9fs_show_options+0x690/0x690 [ 1335.044091] ? trace_hardirqs_on+0x5b/0x180 [ 1335.044982] ? kasan_unpoison_shadow+0x33/0x50 [ 1335.045924] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1335.046973] v9fs_mount+0x79/0x8f0 [ 1335.047716] ? v9fs_write_inode+0x60/0x60 [ 1335.048574] legacy_get_tree+0x105/0x220 [ 1335.049423] vfs_get_tree+0x8e/0x300 [ 1335.050185] path_mount+0x13be/0x20b0 [ 1335.050972] ? strncpy_from_user+0x9e/0x470 [ 1335.051867] ? finish_automount+0xa90/0xa90 [ 1335.052758] ? getname_flags.part.0+0x1dd/0x4f0 [ 1335.053698] ? _copy_from_user+0xfb/0x1b0 [ 1335.054549] __x64_sys_mount+0x282/0x300 [ 1335.055379] ? copy_mnt_ns+0xa00/0xa00 [ 1335.056183] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1335.057242] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1335.058289] do_syscall_64+0x33/0x40 [ 1335.059037] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1335.060080] RIP: 0033:0x7f76b700cb19 [ 1335.060833] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1335.064570] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1335.066105] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1335.067558] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1335.069010] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1335.070464] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1335.071919] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 15:33:29 executing program 7: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x40a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NL80211_CMD_STOP_AP(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4c801}, 0x4004) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x94, 0x1, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}, 0x10088, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = getpid() getpgid(0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b\x00\x00\x00', @ANYRES32=r1, @ANYBLOB="0800000200000000d3018756"], 0x28}}, 0x0) 15:33:29 executing program 6: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x2}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000000c0)='/proc/self/exe\x00', 0x0, 0x0) r2 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) sendfile(r2, r1, 0x0, 0x6) ioctl$BTRFS_IOC_QGROUP_LIMIT(r1, 0x8030942b, &(0x7f0000000040)={0x40, {0xc, 0xffffffff80000001, 0x0, 0x0, 0xbc}}) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00') readv(r3, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1) r4 = syz_open_procfs(0x0, &(0x7f0000000280)='fd/4\x00') ioctl$FIONREAD(r4, 0x6801, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_SET_MESH(r5, &(0x7f0000000440)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x2c, 0x0, 0x800, 0x70bd28, 0x25dfdbfb, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x4}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20008084}, 0xd0) mkdir(&(0x7f0000000300)='./file0/file0\x00', 0x0) mount$bind(&(0x7f00000000c0)='./file0/file0\x00', &(0x7f0000000340)='./file0/../file0\x00', 0x0, 0x17810, 0x0) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) unshare(0x48020200) syz_io_uring_setup(0x132, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) mount$bind(&(0x7f0000000080)='./file0/file0\x00', &(0x7f0000000240)='./file0\x00', &(0x7f00000002c0), 0x2014000, 0x0) 15:33:29 executing program 4: perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0xfc, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x401}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0xc02, 0x0) write$eventfd(0xffffffffffffffff, &(0x7f0000000140)=0xfff, 0x8) ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x0) write$binfmt_elf64(r0, &(0x7f0000000040)=ANY=[], 0x98a) readv(r0, &(0x7f0000000100)=[{&(0x7f0000001340)=""/4096, 0x1000}], 0x1) unshare(0x4a060400) [ 1335.306663] ieee802154 phy0 wpan0: encryption failed: -22 [ 1335.329432] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue [ 1335.332072] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1335.333144] CPU: 1 PID: 10363 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 1335.333962] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1335.334956] Call Trace: [ 1335.335281] dump_stack+0x107/0x167 [ 1335.335734] sysfs_warn_dup.cold+0x1c/0x29 [ 1335.336249] sysfs_do_create_link_sd+0x122/0x140 [ 1335.336810] sysfs_create_link+0x5f/0xc0 [ 1335.337293] device_add+0x703/0x1c50 [ 1335.337737] ? devlink_add_symlinks+0x970/0x970 [ 1335.338284] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1335.338918] wiphy_register+0x1da6/0x2850 [ 1335.339464] ? wiphy_unregister+0xb90/0xb90 [ 1335.340034] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1335.340720] ieee80211_register_hw+0x23c5/0x38b0 [ 1335.341337] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1335.341956] ? net_generic+0xdb/0x2b0 [ 1335.342439] ? lockdep_init_map_type+0x2c7/0x780 [ 1335.343047] ? memset+0x20/0x50 [ 1335.343470] ? __hrtimer_init+0x12c/0x270 [ 1335.344028] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1335.344701] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1335.345312] ? hwsim_new_radio_nl+0x967/0x1080 [ 1335.345927] ? memcpy+0x39/0x60 [ 1335.346376] hwsim_new_radio_nl+0x991/0x1080 [ 1335.346963] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1335.347633] ? __nla_validate_parse+0x2d8/0x2b10 [ 1335.348237] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1335.349095] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1335.349971] genl_family_rcv_msg_doit+0x22d/0x330 [ 1335.350620] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1335.351492] genl_rcv_msg+0x33c/0x5a0 [ 1335.351988] ? genl_get_cmd+0x480/0x480 [ 1335.352499] ? lock_acquire+0x1b9/0x470 [ 1335.353002] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1335.353673] ? lock_release+0x680/0x680 [ 1335.354192] ? __lockdep_reset_lock+0x180/0x180 [ 1335.354808] netlink_rcv_skb+0x14b/0x430 [ 1335.355324] ? genl_get_cmd+0x480/0x480 [ 1335.355839] ? netlink_ack+0xab0/0xab0 [ 1335.356341] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1335.356923] genl_rcv+0x24/0x40 [ 1335.357357] netlink_unicast+0x549/0x7f0 [ 1335.357895] ? netlink_attachskb+0x870/0x870 [ 1335.358461] ? __virt_addr_valid+0x128/0x350 [ 1335.359043] netlink_sendmsg+0x90f/0xdf0 [ 1335.359586] ? netlink_unicast+0x7f0/0x7f0 [ 1335.360144] ? netlink_unicast+0x7f0/0x7f0 [ 1335.360696] __sock_sendmsg+0x154/0x190 [ 1335.361213] ____sys_sendmsg+0x70d/0x870 [ 1335.361745] ? trace_hardirqs_on+0x5b/0x180 [ 1335.362311] ? sock_write_iter+0x3d0/0x3d0 [ 1335.362871] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1335.363586] ? ___sys_sendmsg+0xdc/0x170 [ 1335.364120] ___sys_sendmsg+0xf3/0x170 [ 1335.364637] ? sendmsg_copy_msghdr+0x160/0x160 [ 1335.365232] ? lock_downgrade+0x6d0/0x6d0 [ 1335.365762] ? __fget_files+0x296/0x4c0 [ 1335.366277] ? __fget_light+0xea/0x290 [ 1335.366798] __sys_sendmsg+0xe5/0x1b0 [ 1335.367300] ? __sys_sendmsg_sock+0x40/0x40 [ 1335.367868] ? trace_hardirqs_on+0x5b/0x180 [ 1335.368448] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1335.369169] ? __x64_sys_sendmsg+0xd/0xb0 [ 1335.369720] ? __sanitizer_cov_trace_pc+0x3c/0x60 [ 1335.370352] do_syscall_64+0x33/0x40 [ 1335.370821] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1335.371425] RIP: 0033:0x7f1fb3078b19 [ 1335.371886] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1335.374066] RSP: 002b:00007f1fb05ee188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1335.375021] RAX: ffffffffffffffda RBX: 00007f1fb318bf60 RCX: 00007f1fb3078b19 [ 1335.375877] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1335.376746] RBP: 00007f1fb30d2f6d R08: 0000000000000000 R09: 0000000000000000 [ 1335.377578] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1335.378401] R13: 00007ffff99fd67f R14: 00007f1fb05ee300 R15: 0000000000022000 [ 1335.394099] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1335.395069] CPU: 1 PID: 10355 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1335.395910] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1335.396866] Call Trace: [ 1335.397199] dump_stack+0x107/0x167 [ 1335.397619] sysfs_warn_dup.cold+0x1c/0x29 [ 1335.398108] sysfs_do_create_link_sd+0x122/0x140 [ 1335.398659] sysfs_create_link+0x5f/0xc0 [ 1335.399134] device_add+0x703/0x1c50 [ 1335.399574] ? devlink_add_symlinks+0x970/0x970 [ 1335.400119] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1335.400722] wiphy_register+0x1da6/0x2850 [ 1335.401210] ? wiphy_unregister+0xb90/0xb90 [ 1335.401709] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1335.402337] ieee80211_register_hw+0x23c5/0x38b0 [ 1335.402906] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1335.403463] ? net_generic+0xdb/0x2b0 [ 1335.403924] ? lockdep_init_map_type+0x2c7/0x780 [ 1335.404480] ? memset+0x20/0x50 [ 1335.404868] ? __hrtimer_init+0x12c/0x270 [ 1335.405356] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1335.405952] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1335.406509] ? hwsim_new_radio_nl+0x967/0x1080 [ 1335.407066] ? memcpy+0x39/0x60 [ 1335.407472] hwsim_new_radio_nl+0x991/0x1080 [ 1335.407999] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1335.408608] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1335.409399] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1335.410169] genl_family_rcv_msg_doit+0x22d/0x330 [ 1335.410731] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1335.411494] ? cap_capable+0x1cd/0x230 [ 1335.411964] ? ns_capable+0xe2/0x110 [ 1335.412401] genl_rcv_msg+0x33c/0x5a0 [ 1335.412848] ? genl_get_cmd+0x480/0x480 [ 1335.413301] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1335.413898] ? lock_release+0x680/0x680 [ 1335.414364] netlink_rcv_skb+0x14b/0x430 [ 1335.414849] ? genl_get_cmd+0x480/0x480 [ 1335.415328] ? netlink_ack+0xab0/0xab0 [ 1335.415821] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1335.416350] ? is_vmalloc_addr+0x7b/0xb0 [ 1335.416819] genl_rcv+0x24/0x40 [ 1335.417192] netlink_unicast+0x549/0x7f0 [ 1335.417659] ? netlink_attachskb+0x870/0x870 [ 1335.418164] ? __virt_addr_valid+0x128/0x350 [ 1335.418678] netlink_sendmsg+0x90f/0xdf0 [ 1335.419147] ? netlink_unicast+0x7f0/0x7f0 [ 1335.419642] ? netlink_unicast+0x7f0/0x7f0 [ 1335.420130] __sock_sendmsg+0x154/0x190 [ 1335.420589] ____sys_sendmsg+0x70d/0x870 [ 1335.421056] ? trace_hardirqs_on+0x5b/0x180 [ 1335.421548] ? sock_write_iter+0x3d0/0x3d0 [ 1335.422032] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1335.422657] ? ___sys_sendmsg+0xd2/0x170 [ 1335.423122] ? ___sys_sendmsg+0xdc/0x170 [ 1335.423597] ___sys_sendmsg+0xf3/0x170 [ 1335.424064] ? sendmsg_copy_msghdr+0x160/0x160 [ 1335.424588] ? lock_downgrade+0x6d0/0x6d0 [ 1335.425067] ? finish_task_switch+0x126/0x5d0 [ 1335.425578] ? lock_downgrade+0x6d0/0x6d0 [ 1335.426101] ? __fget_files+0x296/0x4c0 [ 1335.426748] ? __fget_light+0xea/0x290 [ 1335.427218] __sys_sendmsg+0xe5/0x1b0 [ 1335.427667] ? __sys_sendmsg_sock+0x40/0x40 [ 1335.428157] ? io_schedule_timeout+0x140/0x140 [ 1335.428691] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1335.429322] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1335.429918] ? trace_hardirqs_on+0x5b/0x180 [ 1335.430404] do_syscall_64+0x33/0x40 [ 1335.430828] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1335.431405] RIP: 0033:0x7f07e63f4b19 [ 1335.431830] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1335.433906] RSP: 002b:00007f07e396a188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1335.434766] RAX: ffffffffffffffda RBX: 00007f07e6507f60 RCX: 00007f07e63f4b19 [ 1335.435593] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1335.436443] RBP: 00007f07e644ef6d R08: 0000000000000000 R09: 0000000000000000 [ 1335.437250] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1335.438056] R13: 00007fff1f25f23f R14: 00007f07e396a300 R15: 0000000000022000 [ 1335.927218] ieee802154 phy0 wpan0: encryption failed: -22 15:33:45 executing program 6: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x2}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f00000000c0)='/proc/self/exe\x00', 0x0, 0x0) r2 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0) sendfile(r2, r1, 0x0, 0x6) ioctl$BTRFS_IOC_QGROUP_LIMIT(r1, 0x8030942b, &(0x7f0000000040)={0x40, {0xc, 0xffffffff80000001, 0x0, 0x0, 0xbc}}) r3 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00') readv(r3, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1) r4 = syz_open_procfs(0x0, &(0x7f0000000280)='fd/4\x00') ioctl$FIONREAD(r4, 0x6801, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_SET_MESH(r5, &(0x7f0000000440)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x2c, 0x0, 0x800, 0x70bd28, 0x25dfdbfb, {}, [@BATADV_ATTR_TPMETER_TEST_TIME={0x8, 0xb, 0x4}, @BATADV_ATTR_FRAGMENTATION_ENABLED={0x5, 0x30, 0x1}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5, 0x2e, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20008084}, 0xd0) mkdir(&(0x7f0000000300)='./file0/file0\x00', 0x0) mount$bind(&(0x7f00000000c0)='./file0/file0\x00', &(0x7f0000000340)='./file0/../file0\x00', 0x0, 0x17810, 0x0) umount2(&(0x7f0000000200)='./file0/../file0\x00', 0x0) unshare(0x48020200) syz_io_uring_setup(0x132, &(0x7f0000000180), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, 0x0, 0x0) mount$bind(&(0x7f0000000080)='./file0/file0\x00', &(0x7f0000000240)='./file0\x00', &(0x7f00000002c0), 0x2014000, 0x0) 15:33:45 executing program 4: ftruncate(0xffffffffffffffff, 0x0) open(&(0x7f0000000140)='./file1\x00', 0x100, 0x38) statx(0xffffffffffffffff, &(0x7f0000000180)='./file1\x00', 0x100, 0x0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0}) r1 = syz_open_dev$vcsn(0x0, 0x4, 0x0) ioctl$SNDRV_TIMER_IOCTL_CONTINUE(0xffffffffffffffff, 0x54a2) socket$nl_generic(0x10, 0x3, 0x10) r2 = open(&(0x7f0000000140)='./file1\x00', 0x100, 0x38) lstat(&(0x7f00000002c0)='./file1\x00', &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000240)={r2, 0x5, 0x8, 0x3}) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000500)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@posixacl}, {@loose}, {@version_u}, {@dfltgid={'dfltgid', 0x3d, r3}}, {@version_9p2000}], [{@fowner_eq}, {@dont_hash}, {@defcontext={'defcontext', 0x3d, 'unconfined_u'}}, {@measure}, {@smackfshat={'smackfshat', 0x3d, '\',\'A'}}, {@seclabel}, {@pcr={'pcr', 0x3d, 0x33}}, {@defcontext={'defcontext', 0x3d, 'user_u'}}, {@appraise}]}}) setfsgid(r3) fchownat(0xffffffffffffffff, &(0x7f00000000c0)='./file1\x00', r0, r3, 0x100) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0xfffffffc}, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)) r4 = openat$full(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) getsockopt$inet_IP_XFRM_POLICY(r4, 0x0, 0x11, &(0x7f00000005c0)={{{@in, @in6=@mcast2}}, {{@in=@multicast1}, 0x0, @in6=@loopback}}, 0x0) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r5, &(0x7f0000000000)={0x0, 0xc, &(0x7f0000000480)={&(0x7f00000004c0)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x0, 0x26, 0x0, 0x1, [@typed={0x0, 0x0, 0x0, 0x0, @fd=r1}]}]}, 0x1c}}, 0x0) 15:33:45 executing program 2: ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'}) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) io_uring_setup(0x0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x1cf}) r1 = socket$inet(0x2, 0xa, 0x0) ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x2) ioctl$sock_inet_SIOCGIFNETMASK(r1, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x0) 15:33:45 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) (fail_nth: 57) 15:33:45 executing program 5: r0 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x800}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) renameat2(r0, &(0x7f00000001c0)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000280)='./file1/file0\x00', 0x2) pwrite64(r0, &(0x7f0000000340), 0x0, 0x0) flock(r0, 0x1) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r4, 0x0, r3, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(r0, 0xc0189371, &(0x7f0000002480)={{0x1, 0x1, 0x18, r2}, './file1\x00'}) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000002580)=[{{&(0x7f0000000600)=@file={0x0, './file1\x00'}, 0x6e, &(0x7f0000000a40)=[{&(0x7f00000007c0)="6c02e96c0355005ad473658458a5e67dc4190774453e40b49eb4b054374512dc755ed1e6264d271a4e7907826c7c45db4e14f04faa62c4106ed18d90bc73e90f192705169c2cba33fab86939247f52cb85eb3e337a90142524d9e5d3dfcb0cce1446a72561615633115a92500824270570fa45ba38d00e2467c01254dc87be6e660d80c7a7e97c02491c095cd6b8ead2f49e22bd0fe332348791ee9e71ca86fcc273117636807191bc6c645d1930069470c8d495f972ac0ee20f4e31b50270cec3389692eca7ecc9d48c0bd2abbb1da242dd177fecfd0f8d0e891a8b4c08", 0xde}, {&(0x7f00000008c0)="542cd11c2d0fc51b837ac6177d8976c2b163b9738bebb652ab0196a16f0e2043ddef7b4d89fc3527c7e85b5ebed43597a92ad37ae1b8ba1be2552ea7d67da1155779fa580f22bc396702476248d804aa9e49ffd73ddff711a22152570a6d696352ee75aa427c94f97e99d9d43efdc3aff338be7a1ffa43445a8b2b9dffdcb841255b41849863b4a5a29067b2503db89e6e8e0c47f2e426243729d8ba0fc4e02bb3fff70fe0a90fb3d45249", 0xab}, {&(0x7f0000000980)="3c58df867c9cdc054822820bb6c1ad8f345dbeaaa0db028acae234288a545f6a200a9318042c312faabd0f1169b0876da9fd95094e2c3ab127f18292f1182f98242b6ff133ba5f93688a2b250429906a84e6f0d7adcdc304d65fec3e052144bb06a6509f88d913e31a7ded558182cec64e194556ceb0b0bdb4979f533b3466a47d19c8", 0x83}], 0x3, &(0x7f00000020c0)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee01}}}, @rights={{0x38, 0x1, 0x1, [r0, 0xffffffffffffffff, r0, 0xffffffffffffffff, r0, r1, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [r0]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0xee01, 0xee01}}}], 0x118, 0x20000000}}, {{&(0x7f0000002200)=@abs={0x0, 0x0, 0x4e23}, 0x6e, &(0x7f0000002300)=[{&(0x7f0000002280)="23eeb5c96e4e2ae4f6edbf2747653b6b82dfdd71abbda5b47daa60cf1ff014e86adc987befdbdccf75b8a2d56d462848ac6515867afce148", 0x38}, {&(0x7f00000022c0)="d762", 0x2}], 0x2, &(0x7f00000024c0)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r1, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r0]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r1]}}, @rights={{0x14, 0x1, 0x1, [r2]}}, @rights={{0x14, 0x1, 0x1, [r0]}}, @rights={{0x18, 0x1, 0x1, [r3, r5]}}], 0x98, 0x14040048}}], 0x2, 0x20000000) r6 = syz_mount_image$vfat(&(0x7f0000000340), &(0x7f0000000380)='./file0\x00', 0x1000, 0x2, &(0x7f00000005c0)=[{&(0x7f00000003c0)="326b03b2018cdee70589cba9155c9d36dad4ae5bca0ca5b16f6895d0fe232a3c1bd81ea91b9d2330e5fedeec490135d2edf4aea1b3686e12f6327d413725482f56e074ac9854bd6ea038632166fd631fd4983457dc96f75678e229452fb55ae3d7f3d059221bee4d548f5da049043dbf92ed4536de0f154de45d80cb1cc1bcdff0040fec61d1ec24699a0661ac8b472a49dd280330125406b6d1b1466ce40dc8d1098ec89d0e30cf3baf02d29910d877891c767f25eaf48bba34cd030d5350dbe4c7", 0xc2, 0x85}, {&(0x7f00000004c0)="25128a066d362505ffb385e05b380d34125408a5d914b19ab6c939b817277c6c70b5b0e99efb99b83d27e90ede62b9c10ee1c8237ed8ba97935ff2e3cae47c85c94d960d1093f2ce28eb2ef11792cff753a74ad59ef1248804d9855b9819d0e90fc84b44828ad99fd911b96483cd89115fd3c163da5d6575a07003501ed2a0807eb682df7172accf594865229182d0f125ce456a069fb8254205b155a7d9008e6c9137ce36fb7dea7979fcd4341bcb1f38efac65d7d6498aca0c7e1df3a697aead969bb5ed9f990ed0a4f2b5faae392b52a505536d3ca269244179", 0xdb, 0x100000001}], 0x804000, &(0x7f0000000700)=ANY=[@ANYBLOB='shortname=winnt,utf8=1,uid>', @ANYRESDEC=0xee00, @ANYBLOB=',pcr=00000000000000000006,euid=', @ANYRESDEC, @ANYBLOB="2c7375626adf747970653d2c6f626a5f757365723d2c00555940850d38fb2c9a2e63ce47537c3416"]) openat(r6, &(0x7f0000000680)='./file1/file0\x00', 0x101080, 0x100) ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000180)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x7fffffff}}, './file0\x00'}) r7 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) openat(0xffffffffffffffff, &(0x7f0000000300)='./file0\x00', 0x101000, 0x4) accept4$unix(r7, &(0x7f0000000200)=@abs, &(0x7f00000002c0)=0x6e, 0x0) ioctl$FS_IOC_GETFSMAP(r2, 0xc0c0583b, &(0x7f0000000080)=ANY=[@ANYBLOB="00000000fffffdfd0201000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000400"/256]) unshare(0x48020200) rmdir(&(0x7f00000006c0)='./file1/file0\x00') 15:33:45 executing program 7: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x40a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NL80211_CMD_STOP_AP(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4c801}, 0x4004) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x94, 0x1, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}, 0x10088, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = getpid() sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b\x00\x00\x00', @ANYRES32=r1, @ANYBLOB="0800000200000000d3018756"], 0x28}}, 0x0) 15:33:45 executing program 3: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) [ 1351.449966] device veth0_vlan entered promiscuous mode 15:33:45 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x105142, 0x0) ftruncate(r0, 0xffff) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) setsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000040)={0x0, @loopback, @loopback}, 0xc) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r2 = fcntl$dupfd(r0, 0x0, r1) lseek(r1, 0x800, 0x0) fsetxattr$trusted_overlay_nlink(r2, &(0x7f0000000080), &(0x7f00000000c0)={'L-', 0x8}, 0x16, 0x3) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = accept4$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @private1}, &(0x7f0000000140)=0x1c, 0x80000) r4 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) name_to_handle_at(r4, &(0x7f0000000400)='./file0\x00', &(0x7f0000000440)=ANY=[@ANYBLOB="0000004e0000000800000000000000020000000000000006000000faffffffffffffff"], &(0x7f0000000480), 0x1c00) fcntl$dupfd(r2, 0x406, r4) r5 = accept4$bt_l2cap(r0, 0x0, &(0x7f0000000180), 0x80000) sendfile(r3, r5, &(0x7f0000000200)=0x8001, 0x1) r6 = openat(0xffffffffffffffff, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) openat(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x101803, 0x1) write(0xffffffffffffffff, &(0x7f0000000240)="01", 0x1) io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, &(0x7f00000003c0)=[{&(0x7f00000002c0)=""/144, 0x90}, {&(0x7f0000000380)}], 0x2) sendfile(r1, r6, 0x0, 0x100000001) [ 1351.473268] FAULT_INJECTION: forcing a failure. [ 1351.473268] name failslab, interval 1, probability 0, space 0, times 0 [ 1351.475745] CPU: 0 PID: 10392 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1351.476447] ieee802154 phy0 wpan0: encryption failed: -22 [ 1351.477192] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1351.477200] Call Trace: [ 1351.477224] dump_stack+0x107/0x167 [ 1351.477255] should_fail.cold+0x5/0xa [ 1351.481663] ? __kernfs_new_node+0xd4/0x860 [ 1351.482571] should_failslab+0x5/0x20 [ 1351.483357] kmem_cache_alloc+0x5b/0x310 [ 1351.484219] __kernfs_new_node+0xd4/0x860 [ 1351.485091] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1351.486080] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1351.487163] ? kernfs_add_one+0x124/0x4d0 [ 1351.488040] ? kernfs_create_dir_ns+0x19f/0x230 [ 1351.489014] kernfs_new_node+0x93/0x120 [ 1351.489848] __kernfs_create_file+0x51/0x350 [ 1351.490765] sysfs_add_file_mode_ns+0x221/0x560 [ 1351.491741] internal_create_group+0x324/0xb30 [ 1351.492707] ? sysfs_remove_group+0x170/0x170 [ 1351.493626] ? kernfs_name_hash+0xe7/0x110 [ 1351.494500] ? kernfs_find_ns+0x256/0x380 [ 1351.495377] sysfs_slab_add+0x188/0x200 [ 1351.496217] __kmem_cache_create+0x3db/0x520 [ 1351.497128] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1351.498162] p9_client_create+0xc2b/0x11c0 [ 1351.499055] ? p9_client_flush+0x430/0x430 [ 1351.499944] ? trace_hardirqs_on+0x5b/0x180 [ 1351.500842] ? lockdep_init_map_type+0x2c7/0x780 [ 1351.501830] ? __raw_spin_lock_init+0x36/0x110 [ 1351.502786] v9fs_session_init+0x1dd/0x1680 [ 1351.503680] ? lock_release+0x680/0x680 [ 1351.504531] ? kmem_cache_alloc_trace+0x151/0x320 [ 1351.505508] ? v9fs_show_options+0x690/0x690 [ 1351.506432] ? trace_hardirqs_on+0x5b/0x180 [ 1351.507355] ? kasan_unpoison_shadow+0x33/0x50 [ 1351.508292] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1351.509322] v9fs_mount+0x79/0x8f0 [ 1351.510062] ? v9fs_write_inode+0x60/0x60 [ 1351.510915] legacy_get_tree+0x105/0x220 [ 1351.511754] vfs_get_tree+0x8e/0x300 [ 1351.512524] path_mount+0x13be/0x20b0 [ 1351.513318] ? strncpy_from_user+0x9e/0x470 [ 1351.514193] ? finish_automount+0xa90/0xa90 [ 1351.515073] ? getname_flags.part.0+0x1dd/0x4f0 [ 1351.516038] ? _copy_from_user+0xfb/0x1b0 [ 1351.516904] __x64_sys_mount+0x282/0x300 [ 1351.517750] ? copy_mnt_ns+0xa00/0xa00 [ 1351.518557] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1351.519638] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1351.520724] do_syscall_64+0x33/0x40 [ 1351.521496] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1351.522540] RIP: 0033:0x7f76b700cb19 [ 1351.523305] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1351.527136] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1351.528720] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1351.530193] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1351.531649] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1351.533139] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1351.534612] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 [ 1351.557678] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1351.568799] kmem_cache_create(9p-fcall-cache) failed with error -12 [ 1351.569593] CPU: 1 PID: 10392 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1351.570432] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1351.571430] Call Trace: [ 1351.571743] dump_stack+0x107/0x167 [ 1351.572191] kmem_cache_create_usercopy.cold+0x17/0x65 [ 1351.572829] p9_client_create+0xc2b/0x11c0 [ 1351.573340] ? p9_client_flush+0x430/0x430 [ 1351.573843] ? trace_hardirqs_on+0x5b/0x180 [ 1351.574365] ? lockdep_init_map_type+0x2c7/0x780 [ 1351.574934] ? __raw_spin_lock_init+0x36/0x110 [ 1351.575494] v9fs_session_init+0x1dd/0x1680 [ 1351.576002] ? lock_release+0x680/0x680 [ 1351.576483] ? kmem_cache_alloc_trace+0x151/0x320 [ 1351.577055] ? v9fs_show_options+0x690/0x690 [ 1351.577588] ? trace_hardirqs_on+0x5b/0x180 [ 1351.578110] ? kasan_unpoison_shadow+0x33/0x50 [ 1351.578619] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1351.578644] v9fs_mount+0x79/0x8f0 [ 1351.579915] ? v9fs_write_inode+0x60/0x60 [ 1351.580426] legacy_get_tree+0x105/0x220 [ 1351.580930] vfs_get_tree+0x8e/0x300 [ 1351.581395] path_mount+0x13be/0x20b0 [ 1351.581864] ? strncpy_from_user+0x9e/0x470 [ 1351.582348] ? finish_automount+0xa90/0xa90 [ 1351.582882] ? getname_flags.part.0+0x1dd/0x4f0 [ 1351.583456] ? _copy_from_user+0xfb/0x1b0 [ 1351.583976] __x64_sys_mount+0x282/0x300 [ 1351.584479] ? copy_mnt_ns+0xa00/0xa00 [ 1351.584966] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1351.585615] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1351.586256] do_syscall_64+0x33/0x40 [ 1351.586718] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1351.587352] RIP: 0033:0x7f76b700cb19 [ 1351.587809] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1351.590074] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1351.591009] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1351.591889] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1351.592763] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1351.593638] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1351.594514] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 [ 1351.603539] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue 15:33:45 executing program 7: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x40a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NL80211_CMD_STOP_AP(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4c801}, 0x4004) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x94, 0x1, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}, 0x10088, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b\x00\x00\x00', @ANYRES32, @ANYBLOB="0800000200000000d3018756"], 0x28}}, 0x0) 15:33:45 executing program 2: openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000040)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x0, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r1, 0x0, r0, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) openat(r2, &(0x7f00000000c0)='./file0\x00', 0x200000, 0x6b) r3 = openat$sr(0xffffffffffffff9c, &(0x7f0000000140), 0x200200, 0x0) syz_genetlink_get_family_id$SEG6(&(0x7f00000000c0), r3) r4 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) openat(r4, &(0x7f0000000180)='./file0\x00', 0x101803, 0x1) write(r4, &(0x7f00000002c0)="0148bf460e2bde31b6037184ef7787e1e32c74ed766cf6c1ef284bb9c96585ca902ebb994c70ce8103e1944749bc3f3782ed07a4ed9f24df414ddf5c21446bf401734f", 0x43) syz_genetlink_get_family_id$SEG6(&(0x7f0000000000), r4) [ 1351.855420] FAT-fs (loop5): Unrecognized mount option "uid>00000000000000060928" or missing value [ 1351.977430] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1351.978824] CPU: 0 PID: 10408 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1351.979883] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1351.981158] Call Trace: [ 1351.981568] dump_stack+0x107/0x167 [ 1351.982126] sysfs_warn_dup.cold+0x1c/0x29 [ 1351.982766] sysfs_do_create_link_sd+0x122/0x140 [ 1351.983474] sysfs_create_link+0x5f/0xc0 [ 1351.984091] device_add+0x703/0x1c50 [ 1351.984656] ? devlink_add_symlinks+0x970/0x970 [ 1351.985362] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1351.986157] wiphy_register+0x1da6/0x2850 [ 1351.986784] ? wiphy_unregister+0xb90/0xb90 [ 1351.987487] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1351.988370] ieee80211_register_hw+0x23c5/0x38b0 [ 1351.989131] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1351.989892] ? net_generic+0xdb/0x2b0 [ 1351.990496] ? lockdep_init_map_type+0x2c7/0x780 [ 1351.991272] ? memset+0x20/0x50 [ 1351.991798] ? __hrtimer_init+0x12c/0x270 [ 1351.992472] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1351.993290] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1351.994017] ? hwsim_new_radio_nl+0x967/0x1080 [ 1351.994759] ? memcpy+0x39/0x60 [ 1351.995290] hwsim_new_radio_nl+0x991/0x1080 [ 1351.996001] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1351.996847] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1351.997906] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1351.998964] genl_family_rcv_msg_doit+0x22d/0x330 [ 1351.999742] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1352.000803] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1352.001634] ? cap_capable+0x1cd/0x230 [ 1352.002272] ? ns_capable+0xe2/0x110 [ 1352.002864] genl_rcv_msg+0x33c/0x5a0 [ 1352.003482] ? genl_get_cmd+0x480/0x480 [ 1352.004144] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1352.004979] ? lock_release+0x680/0x680 [ 1352.005623] ? __lockdep_reset_lock+0x180/0x180 [ 1352.006336] netlink_rcv_skb+0x14b/0x430 [ 1352.006972] ? genl_get_cmd+0x480/0x480 [ 1352.007617] ? netlink_ack+0xab0/0xab0 [ 1352.008263] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1352.009009] genl_rcv+0x24/0x40 [ 1352.009537] netlink_unicast+0x549/0x7f0 [ 1352.010193] ? netlink_attachskb+0x870/0x870 [ 1352.010902] ? __virt_addr_valid+0x128/0x350 [ 1352.011617] netlink_sendmsg+0x90f/0xdf0 [ 1352.012294] ? netlink_unicast+0x7f0/0x7f0 [ 1352.012989] ? netlink_unicast+0x7f0/0x7f0 [ 1352.013664] __sock_sendmsg+0x154/0x190 [ 1352.014304] ____sys_sendmsg+0x70d/0x870 [ 1352.014958] ? sock_write_iter+0x3d0/0x3d0 [ 1352.015640] ? do_recvmmsg+0x6d0/0x6d0 [ 1352.016264] ? perf_trace_lock+0xac/0x490 [ 1352.016942] ? __lockdep_reset_lock+0x180/0x180 [ 1352.017696] ___sys_sendmsg+0xf3/0x170 [ 1352.018284] ? sendmsg_copy_msghdr+0x160/0x160 [ 1352.019020] ? lock_downgrade+0x6d0/0x6d0 [ 1352.019699] ? __fget_files+0xe4/0x4c0 [ 1352.020340] ? __fget_files+0x296/0x4c0 [ 1352.020999] ? __fget_light+0xea/0x290 [ 1352.021631] __sys_sendmsg+0xe5/0x1b0 [ 1352.022243] ? __sys_sendmsg_sock+0x40/0x40 [ 1352.022961] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1352.023810] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1352.024645] ? trace_hardirqs_on+0x5b/0x180 [ 1352.025343] do_syscall_64+0x33/0x40 [ 1352.025907] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1352.026719] RIP: 0033:0x7f07e63f4b19 [ 1352.027310] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1352.030276] RSP: 002b:00007f07e396a188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1352.031511] RAX: ffffffffffffffda RBX: 00007f07e6507f60 RCX: 00007f07e63f4b19 [ 1352.032698] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1352.033852] RBP: 00007f07e644ef6d R08: 0000000000000000 R09: 0000000000000000 [ 1352.035015] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1352.036184] R13: 00007fff1f25f23f R14: 00007f07e396a300 R15: 0000000000022000 [ 1352.096265] FAT-fs (loop5): Unrecognized mount option "uid>00000000000000060928" or missing value 15:34:03 executing program 2: ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000340)={{0x1, 0x1, 0x18}, './file0\x00'}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x248e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x3}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x80080, 0x0) renameat2(r0, &(0x7f00000000c0)='./file0\x00', r0, &(0x7f0000000140)='./file0\x00', 0x0) r1 = openat2(0xffffffffffffffff, &(0x7f0000000200)='./file0\x00', 0x0, 0x0) mount$cgroup(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f00000001c0)={[{@subsystem='freezer'}]}) r2 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r2, &(0x7f0000000040)={0xa, 0x0, 0x0, @empty}, 0x1c) sendmsg$inet6(r2, &(0x7f00000017c0)={&(0x7f0000000000)={0xa, 0x4e21, 0x0, @loopback}, 0x1c, 0x0}, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, &(0x7f0000000380)=ANY=[@ANYBLOB="010600000000001c180000000c085280c02740b99f6ffafa", @ANYRES32=r2, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0\x00']) fsmount(0xffffffffffffffff, 0x1, 0x71) ioctl$SNAPSHOT_PREF_IMAGE_SIZE(0xffffffffffffffff, 0x3312, 0x8) 15:34:03 executing program 0: mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0) r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_elf64(r0, &(0x7f0000000280)=ANY=[], 0xfdef) r1 = getpid() r2 = getpgid(0x0) r3 = epoll_create(0x1) kcmp$KCMP_EPOLL_TFD(r1, r2, 0x7, r3, &(0x7f0000000040)={r3}) perf_event_open(&(0x7f0000000280)={0x0, 0x80, 0x40, 0x9, 0x6, 0x80, 0x0, 0x20, 0x20820, 0xc, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x28, 0x1, @perf_bp={&(0x7f00000000c0), 0x8}, 0x400, 0xffffffffffffffff, 0x0, 0x6, 0x0, 0x9, 0x4, 0x0, 0x8, 0x0, 0x8}, r2, 0xc, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x100}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = creat(&(0x7f0000000040)='./file0\x00', 0x0) ioctl$LOOP_SET_STATUS(r4, 0x4c02, &(0x7f0000000140)={0x0, {}, 0x0, {}, 0x0, 0x1, 0x0, 0x0, "4fa2f8201eed6e500c32342a227989f18a88ab65bad4c23a441d66f462f1df77bc777d160562da8c50431b2a204f36c6ed27b00215909d75417aa68c9029c5fd", "176764fe8c2ff71a1633d53dafbecd823af97cf5831be9a6fed5449e9f77dd92"}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000140)={[{@delalloc}]}) 15:34:03 executing program 6: r0 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000040)=[{0x0, 0x0, 0xffff}, {&(0x7f0000000180)="bb787aa2417a00dd29548d02b56a267478802d16e34e4e8da600"/41, 0xfffffffffffffe1d}], 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='@']) ioctl$F2FS_IOC_MOVE_RANGE(r0, 0xc020f509, &(0x7f0000000080)={0xffffffffffffffff, 0xce, 0x1, 0x9}) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r3, 0x0, r2, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) ioctl$AUTOFS_DEV_IOCTL_READY(r1, 0xc0189376, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r2, {0x7fff}}, './file0\x00'}) 15:34:03 executing program 5: mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mlock(&(0x7f0000ffc000/0x3000)=nil, 0x3000) r0 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) ioctl$CDROMRESET(r0, 0x5312) perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$thread_pidfd(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$CDROM_DISC_STATUS(r0, 0x5327) mlock2(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0) openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x802, 0x4) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r0, 0xc0189378, &(0x7f00000000c0)=ANY=[@ANYBLOB="010000000100000018000000", @ANYRES32=r1, @ANYRES32=r0, @ANYBLOB="ee01000000001000e88f911915732e6d800b27588c00"/38]) read$eventfd(r2, &(0x7f0000000100), 0x8) write$P9_RUNLINKAT(0xffffffffffffffff, &(0x7f0000000040)={0x7}, 0x7) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8af, 0x0, @perf_config_ext}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0) 15:34:03 executing program 7: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x40a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$NL80211_CMD_STOP_AP(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4c801}, 0x4004) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b\x00\x00\x00', @ANYRES32, @ANYBLOB="0800000200000000d3018756"], 0x28}}, 0x0) 15:34:03 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) openat(r0, &(0x7f00000000c0)='./file0\x00', 0x200000, 0x6b) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000000), 0x1}, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, r0, 0x0) r1 = memfd_create(&(0x7f0000000100)='[O%R\x19\xae\xdd\xbb\x94\xa3\xac\xc1\v\xc5x\xfe\xfb|\x00\x00=)\xeeY\x8e\xc0\xe7P$\x86y\x1c\xbc\x88\xfc\xbe\xcf\\[\x15\xef\x15\xfb\x12\\0\r\x9f\xc0\x7f\xd8\xbb\xd1\x15z+m\xd3\b\xdcl\xba\xa0B\xee\x98\xc3\x1f\xbc\xa7\x8a\x99 \x8f\x12b\xc7\x06\xdc\xdd\x12\xf2\x87\xcd\xd2\x9a|\x90\xa5\xf2\x92\x8b\xd6lG\x9d\xf5\xc1\xcf\xdbr\x1eF\xd9\x19\x84\xf5\xab\xfb.\xac\x00\x00\x00\x00\x00\x00', 0x9) write(r1, &(0x7f0000000180)="f5", 0x1) ftruncate(0xffffffffffffffff, 0x601) r2 = dup(r1) sendfile(r2, r2, &(0x7f0000000040), 0x3fffc000000000) 15:34:03 executing program 3: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:34:03 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) (fail_nth: 58) [ 1369.529493] FAULT_INJECTION: forcing a failure. [ 1369.529493] name failslab, interval 1, probability 0, space 0, times 0 [ 1369.531107] CPU: 1 PID: 10449 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1369.532060] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1369.533201] Call Trace: [ 1369.533564] dump_stack+0x107/0x167 [ 1369.534080] should_fail.cold+0x5/0xa [ 1369.534599] ? create_object.isra.0+0x3a/0xa20 [ 1369.535223] should_failslab+0x5/0x20 [ 1369.535746] kmem_cache_alloc+0x5b/0x310 [ 1369.536316] create_object.isra.0+0x3a/0xa20 [ 1369.536899] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1369.537584] kmem_cache_alloc+0x159/0x310 [ 1369.538159] __kernfs_new_node+0xd4/0x860 [ 1369.538720] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1369.539367] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1369.540163] ? kernfs_add_one+0x124/0x4d0 [ 1369.540744] ? kernfs_create_dir_ns+0x19f/0x230 [ 1369.541389] kernfs_new_node+0x93/0x120 [ 1369.541933] __kernfs_create_file+0x51/0x350 [ 1369.542548] sysfs_add_file_mode_ns+0x221/0x560 [ 1369.543202] internal_create_group+0x324/0xb30 [ 1369.543840] ? sysfs_remove_group+0x170/0x170 [ 1369.544471] ? kernfs_name_hash+0xe7/0x110 [ 1369.545063] ? kernfs_find_ns+0x256/0x380 [ 1369.545615] sysfs_slab_add+0x188/0x200 [ 1369.546163] __kmem_cache_create+0x3db/0x520 [ 1369.546761] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1369.547453] p9_client_create+0xc2b/0x11c0 [ 1369.548069] ? p9_client_flush+0x430/0x430 [ 1369.548656] ? trace_hardirqs_on+0x5b/0x180 [ 1369.549255] ? lockdep_init_map_type+0x2c7/0x780 [ 1369.549914] ? __raw_spin_lock_init+0x36/0x110 [ 1369.550552] v9fs_session_init+0x1dd/0x1680 [ 1369.551147] ? lock_release+0x680/0x680 [ 1369.551706] ? kmem_cache_alloc_trace+0x151/0x320 [ 1369.552336] ? v9fs_show_options+0x690/0x690 [ 1369.552933] ? trace_hardirqs_on+0x5b/0x180 [ 1369.553507] ? kasan_unpoison_shadow+0x33/0x50 [ 1369.554123] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1369.554811] v9fs_mount+0x79/0x8f0 [ 1369.555290] ? v9fs_write_inode+0x60/0x60 [ 1369.555842] legacy_get_tree+0x105/0x220 [ 1369.556398] vfs_get_tree+0x8e/0x300 [ 1369.556907] path_mount+0x13be/0x20b0 [ 1369.557427] ? strncpy_from_user+0x9e/0x470 [ 1369.558000] ? finish_automount+0xa90/0xa90 [ 1369.558583] ? getname_flags.part.0+0x1dd/0x4f0 [ 1369.559219] ? _copy_from_user+0xfb/0x1b0 [ 1369.559788] __x64_sys_mount+0x282/0x300 [ 1369.560365] ? copy_mnt_ns+0xa00/0xa00 [ 1369.560880] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1369.561588] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1369.562295] do_syscall_64+0x33/0x40 [ 1369.562794] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1369.563500] RIP: 0033:0x7f76b700cb19 [ 1369.564012] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1369.566528] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1369.567562] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1369.568565] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1369.569547] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1369.570515] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1369.571493] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 15:34:03 executing program 2: ftruncate(0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) setsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000040)={0x0, @loopback, @loopback}, 0xc) preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) r2 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x402, 0x0) r3 = fcntl$dupfd(r2, 0x0, r1) r4 = fsmount(0xffffffffffffffff, 0x0, 0x4) r5 = syz_io_uring_complete(0x0) lseek(r5, 0x7, 0x0) lseek(r0, 0x226, 0x0) r6 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffff000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r7 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x200000, 0x0) lseek(r7, 0x2, 0x1) mknodat$null(r7, &(0x7f0000000000)='./file1\x00', 0x2000, 0x103) dup3(r3, r6, 0x80000) ioctl$EXT4_IOC_MOVE_EXT(r6, 0xc028660f, &(0x7f0000000200)={0x0, 0xffffffffffffffff, 0x8001, 0x3, 0xb2d, 0x3f}) pwrite64(0xffffffffffffffff, &(0x7f0000000140)="ddab82767945917c8ef3f5746d491210d833b106c3b096db35ebf09b6462e50b2b8eeb7aee50a6985ddf758b8742e2902f8019cf036e7487a36e06f264a072e7302aabf620d1f1648240b03068de42f99aa07f3421d6085fabf737fc80322ea9d302704a0cbf904db23225acdbfef5115d2e6eb74068796e15571d147e0a5ee081510e087b17fdf56a880289eeec6f4c848969", 0x93, 0x20) r8 = openat(r4, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) sendfile(r0, r8, 0x0, 0x100000001) 15:34:03 executing program 4: syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000240)=[{&(0x7f0000000480)="01434430303101004c494e55582020202020202020202020202020202020202020202020202020204344524f4d2020202020202020202020202020202020202020202020202020200000000000000000b8000000000000b8000000000000000000000000000000000000000000000000000000000000000001000001010000010008080018000000000000181300000000000000000000150000000022001797", 0xa0, 0x8000}, {&(0x7f0000010600)="ff4344303031", 0x6, 0x8800}, {&(0x7f0000000040)="9d3a90c5ba7eeb83a3a9c7ec7cdc3538fcfdbc70bf945c9b963ab9e1259802eb64fd3654b2265c7dc1ae62f7db1e8e79d78ad5c939fd41850ee7125fd1431c44d895d6660c8a855e6c6722c9bd8be1ff261b7d3eb2affa6eeddc13db8e3b930b483d18b633d9bb83d8", 0x69, 0x3}, {&(0x7f0000000140)="ff2de7581c3ebc06d8ea6546b59138d9a82901421217c15549397236bec60db3c1ea8527ffa413a44578d5ad617bf6ca4211f4d5cb3b108ea34c233ee30bd755d427f48b6e442aa6380297e71a77469e27eefb0a3eec1e94dc39818e7883bf649629a39c", 0x64, 0x8}], 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="00e92f799f2b7c91f6ba1d2c7d03cc04b0fe3bbace60b1c016e6b71bd0249716e749ad34c261cd7cef7c4575a9f2459de40d898a9f6ce046669fce2a0c68563b8e2bbc10921613e73eab63664a5434a9e2ff4d9e036c09e34e02a0d35f49bce1e117"]) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r1, 0x0, r0, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) openat(r0, &(0x7f0000000400)='./file0\x00', 0x440000, 0x2) setxattr$trusted_overlay_upper(&(0x7f00000000c0)='./file0\x00', &(0x7f00000002c0), &(0x7f0000000300)=ANY=[@ANYBLOB="00fbcd05005343eb4eee0f1a45f2debfb53e35600abc5dee71587c9d805cf464e42575b65a5ed6d66a3f5cafb47c44a13f9d92db16382be0d4053fb6ce9e0053800b2fc89a1b6ef5dab2329d84d00599e8dad25886f09fcb2a3f3746c6697f1010368692d506a8bce796e37310d17ee96cfd2890e3577554e3ff3c3eb9334c049c8432bd5cd4da8477d6cec62fcfc8bf76bb9783f61c2981a2ce8c7e681966516f582001967e32bc7876162a948b4c6ca3eadbfb41a26684dd24cb5f42e9ea788300"/205], 0xcd, 0x2) 15:34:03 executing program 7: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x40a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b\x00\x00\x00', @ANYRES32, @ANYBLOB="0800000200000000d3018756"], 0x28}}, 0x0) [ 1369.739324] FAT-fs (loop6): Unrecognized mount option "@" or missing value 15:34:03 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) (fail_nth: 59) 15:34:03 executing program 5: perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x45, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00') ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000080)={0x0, 0x0, 0x1, 0xba}) readv(r0, &(0x7f0000000280)=[{&(0x7f0000001e00)=""/4098, 0x1002}], 0x1) 15:34:03 executing program 4: r0 = syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0xfffffffffffffffd, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="01434430303101004c494e55582020202020202020202020202020202020202020202020202020204344524f4d2020202020202020202020202020202020202020202020202020200000000000000000b8000000000000b80000000000000000000000000000000000000000000000000000000000000000010000010100000100080800180000000000001813000000000000000000001500000000220017", 0x9f, 0x8000}, {&(0x7f0000010900)="8800170000000000001700080000000008007809140b2a3a0802000001000001010053500701beef005252050181505824", 0x31, 0xb800}], 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="004dd7e5f43e33e606f210543b624edde8bfddc32a2af03b81dfe60c4524f8b921fa5643b47df7920e82b74fd2a5dcd9d3b2b008aef0470107ea4093f8f922d0499ed006c3048b2a8204445d1711941f303efa2f948ac90ab97ce1296bae0e67542d28660300000018dc939367e9d82880b3b82b6b92ceefa13feb9f9f8bc3dd1a5a13d230d20bf0a56fc93f8853c5e5783bdc6acb0093701655ad"]) name_to_handle_at(r0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=@FILEID_UDF_WITH_PARENT={0x14, 0x52, {{0x3, 0xd8, 0x6, 0x7}, 0x241e922, 0x5}}, &(0x7f00000000c0), 0x1000) newfstatat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', &(0x7f0000000240), 0x100) [ 1369.859270] FAULT_INJECTION: forcing a failure. [ 1369.859270] name failslab, interval 1, probability 0, space 0, times 0 [ 1369.860772] CPU: 1 PID: 10475 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1369.861559] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1369.862469] Call Trace: [ 1369.862795] dump_stack+0x107/0x167 [ 1369.863215] should_fail.cold+0x5/0xa [ 1369.863645] ? create_object.isra.0+0x3a/0xa20 [ 1369.864163] should_failslab+0x5/0x20 [ 1369.864575] kmem_cache_alloc+0x5b/0x310 [ 1369.865039] create_object.isra.0+0x3a/0xa20 [ 1369.865521] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1369.866082] kmem_cache_alloc+0x159/0x310 [ 1369.866547] __kernfs_new_node+0xd4/0x860 [ 1369.867007] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1369.867527] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1369.868074] ? wait_for_completion_io+0x270/0x270 [ 1369.868597] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1369.869185] kernfs_new_node+0x93/0x120 [ 1369.869623] __kernfs_create_file+0x51/0x350 [ 1369.870111] sysfs_add_file_mode_ns+0x221/0x560 [ 1369.870653] internal_create_group+0x324/0xb30 [ 1369.871168] ? sysfs_remove_group+0x170/0x170 [ 1369.871653] ? kernfs_name_hash+0xe7/0x110 [ 1369.872139] ? kernfs_find_ns+0x256/0x380 [ 1369.872595] sysfs_slab_add+0x188/0x200 [ 1369.873028] __kmem_cache_create+0x3db/0x520 [ 1369.873515] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1369.874098] p9_client_create+0xc2b/0x11c0 [ 1369.874592] ? p9_client_flush+0x430/0x430 [ 1369.875073] ? trace_hardirqs_on+0x5b/0x180 [ 1369.875563] ? lockdep_init_map_type+0x2c7/0x780 [ 1369.876116] ? __raw_spin_lock_init+0x36/0x110 [ 1369.876636] v9fs_session_init+0x1dd/0x1680 [ 1369.877124] ? lock_release+0x680/0x680 [ 1369.877587] ? kmem_cache_alloc_trace+0x151/0x320 [ 1369.878133] ? v9fs_show_options+0x690/0x690 [ 1369.878639] ? trace_hardirqs_on+0x5b/0x180 [ 1369.879114] ? kasan_unpoison_shadow+0x33/0x50 [ 1369.879635] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1369.880231] v9fs_mount+0x79/0x8f0 [ 1369.880635] ? v9fs_write_inode+0x60/0x60 [ 1369.881110] legacy_get_tree+0x105/0x220 [ 1369.881570] vfs_get_tree+0x8e/0x300 [ 1369.881992] path_mount+0x13be/0x20b0 [ 1369.882431] ? strncpy_from_user+0x9e/0x470 [ 1369.882918] ? finish_automount+0xa90/0xa90 [ 1369.883420] ? getname_flags.part.0+0x1dd/0x4f0 [ 1369.883946] ? _copy_from_user+0xfb/0x1b0 [ 1369.884419] __x64_sys_mount+0x282/0x300 [ 1369.884879] ? copy_mnt_ns+0xa00/0xa00 [ 1369.885332] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1369.885925] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1369.886503] do_syscall_64+0x33/0x40 [ 1369.886925] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1369.887487] RIP: 0033:0x7f76b700cb19 [ 1369.887915] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1369.889993] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1369.890858] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1369.891631] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1369.892443] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1369.893226] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1369.894033] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 [ 1369.896571] EXT4-fs (loop0): mounted filesystem without journal. Opts: delalloc,,errors=continue [ 1369.953877] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1369.955803] CPU: 0 PID: 10451 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1369.957235] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1369.958904] Call Trace: [ 1369.959450] dump_stack+0x107/0x167 [ 1369.960210] sysfs_warn_dup.cold+0x1c/0x29 [ 1369.961077] sysfs_do_create_link_sd+0x122/0x140 [ 1369.962043] sysfs_create_link+0x5f/0xc0 [ 1369.962868] device_add+0x703/0x1c50 [ 1369.963637] ? devlink_add_symlinks+0x970/0x970 [ 1369.964614] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1369.965696] wiphy_register+0x1da6/0x2850 [ 1369.966564] ? wiphy_unregister+0xb90/0xb90 [ 1369.967446] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1369.968573] ? ieee80211_register_hw+0x239f/0x38b0 [ 1369.969581] ieee80211_register_hw+0x23c5/0x38b0 [ 1369.970578] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1369.971585] ? trace_hardirqs_on+0x5b/0x180 [ 1369.972493] ? __hrtimer_init+0x12c/0x270 [ 1369.973351] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1369.974389] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1369.975333] ? hwsim_new_radio_nl+0x967/0x1080 [ 1369.976284] ? memcpy+0x39/0x60 [ 1369.976966] hwsim_new_radio_nl+0x991/0x1080 [ 1369.977866] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1369.978912] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1369.980008] ? trace_hardirqs_on+0x5b/0x180 [ 1369.980931] genl_family_rcv_msg_doit+0x22d/0x330 [ 1369.981915] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1369.983248] ? cap_capable+0x1cd/0x230 [ 1369.984071] ? ns_capable+0xe2/0x110 [ 1369.984830] genl_rcv_msg+0x33c/0x5a0 [ 1369.985607] ? genl_get_cmd+0x480/0x480 [ 1369.986417] ? lock_acquire+0x1b9/0x470 [ 1369.987225] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1369.988287] ? lock_release+0x680/0x680 [ 1369.989092] ? __lockdep_reset_lock+0x180/0x180 [ 1369.990037] netlink_rcv_skb+0x14b/0x430 [ 1369.990857] ? genl_get_cmd+0x480/0x480 [ 1369.991661] ? netlink_ack+0xab0/0xab0 [ 1369.992473] ? genl_pernet_exit+0x80/0x80 [ 1369.993318] ? netlink_unicast+0x51f/0x7f0 [ 1369.994176] genl_rcv+0x24/0x40 [ 1369.994840] netlink_unicast+0x549/0x7f0 [ 1369.995669] ? netlink_attachskb+0x870/0x870 [ 1369.996596] netlink_sendmsg+0x90f/0xdf0 [ 1369.997429] ? netlink_unicast+0x7f0/0x7f0 [ 1369.998284] ? netlink_unicast+0x7f0/0x7f0 [ 1369.999154] ? netlink_unicast+0x7f0/0x7f0 [ 1370.000015] __sock_sendmsg+0x154/0x190 [ 1370.000840] ____sys_sendmsg+0x70d/0x870 [ 1370.001665] ? sock_write_iter+0x3d0/0x3d0 [ 1370.002521] ? do_recvmmsg+0x6d0/0x6d0 [ 1370.003327] ? ___sys_sendmsg+0x8b/0x170 [ 1370.004171] ___sys_sendmsg+0xf3/0x170 [ 1370.004961] ? sendmsg_copy_msghdr+0x160/0x160 [ 1370.005891] ? lock_downgrade+0x6d0/0x6d0 [ 1370.006722] ? find_held_lock+0x2c/0x110 [ 1370.007558] ? clockevents_program_event+0x14b/0x360 [ 1370.008606] ? __fget_files+0x296/0x4c0 [ 1370.009433] ? __fget_light+0xea/0x290 [ 1370.010236] __sys_sendmsg+0xe5/0x1b0 [ 1370.011004] ? __sys_sendmsg_sock+0x40/0x40 [ 1370.011876] ? trace_hardirqs_on+0x5b/0x180 [ 1370.012784] ? __sys_sendmsg+0x1b0/0x1b0 [ 1370.013619] do_syscall_64+0x33/0x40 [ 1370.014379] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1370.015415] RIP: 0033:0x7f07e63f4b19 [ 1370.016180] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1370.019877] RSP: 002b:00007f07e396a188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1370.021424] RAX: ffffffffffffffda RBX: 00007f07e6507f60 RCX: 00007f07e63f4b19 [ 1370.022858] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1370.024320] RBP: 00007f07e644ef6d R08: 0000000000000000 R09: 0000000000000000 [ 1370.025749] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1370.027188] R13: 00007fff1f25f23f R14: 00007f07e396a300 R15: 0000000000022000 15:34:04 executing program 7: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x40a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b\x00\x00\x00', @ANYRES32, @ANYBLOB="0800000200000000d3018756"], 0x28}}, 0x0) 15:34:04 executing program 7: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x40a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b\x00\x00\x00', @ANYRES32, @ANYBLOB="0800000200000000d3018756"], 0x28}}, 0x0) 15:34:04 executing program 4: getxattr(&(0x7f0000000040)='./file0\x00', &(0x7f0000000700)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)=""/106, 0x6a) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0xbe66f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x8}, 0x2030}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_open_procfs(0x0, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x4, 0x1}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)) syz_io_uring_setup(0x3b70, &(0x7f00000002c0)={0x0, 0x0, 0x4}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) recvmmsg(r0, 0x0, 0x0, 0x16060, 0x0) copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) pread64(0xffffffffffffffff, &(0x7f0000000180)=""/63, 0x3f, 0x5) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x1001, 0x5, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c0000040101030000000000b77e8d000000000000000006001240000000008da75ab1b4ad0680aac6aa89c9a7f6b3631e03de492994a48f0b32a7ba6f45929820e9e6d2260df12208d014282cad2cccfe5d8dd9006e4fbb90c8d8df85413a0958c9ce14be3f02d2dbde6181f0fa3663bc522120"], 0x1c}}, 0x0) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendmsg$inet6(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000001c0)="cf", 0xfffffdef}], 0x1}, 0x10044001) recvmmsg(r1, &(0x7f0000000000), 0x5ac, 0x0, 0x0) r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000100), 0x81, 0x0) ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, &(0x7f0000000140)={0x401}) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) [ 1370.218249] EXT4-fs: failed to create workqueue [ 1370.218898] EXT4-fs (loop0): mount failed 15:34:19 executing program 7: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x40a}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b\x00\x00\x00', @ANYRES32, @ANYBLOB="0800000200000000d3018756"], 0x28}}, 0x0) 15:34:19 executing program 4: r0 = fsopen(&(0x7f0000000040)='proc\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0) fsmount(r1, 0x0, 0x7ea5284a912addba) fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0) 15:34:19 executing program 0: syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0xff, 0x0, 0x0, 0x0, 0x0, 0x3, 0x8448, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x400}, 0xf5c31900115ae4aa, 0x0, 0x3, 0x0, 0x0, 0x3, 0x0, 0x0, 0x7ff, 0x0, 0x100000001}, 0x0, 0xa, 0xffffffffffffffff, 0x0) shmctl$SHM_LOCK(0x0, 0xb) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz1\x00', 0x1ff) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000080)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) shmctl$SHM_INFO(0x0, 0xe, &(0x7f00000001c0)=""/224) shmctl$IPC_RMID(0x0, 0x0) r0 = syz_genetlink_get_family_id$nbd(&(0x7f00000000c0), 0xffffffffffffffff) sendmsg$NBD_CMD_RECONFIGURE(0xffffffffffffffff, &(0x7f0000001380)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000001340)={&(0x7f0000001400)=ANY=[@ANYBLOB="38000000b2771385ffc9a155d7d00fb3495088bf6cbb02706293978f79907a122586c873428dd4accde4de89573faee6de1f664052660a90ce30185fff43217a990baaa9383e5a0778ba36c48512bf735ac93fa369396a0f861f98956da8e44cf12b10989afb5e760e67bbfb5389c5504023aff2640deea2d671495f2414b35c79dfd7e782b3b2c2236e71e23bdcca9556b54b00"/157, @ANYRES16=r0, @ANYBLOB="000228bd7000ffdbdf25030000000c00040001540000000000000c00050004000400000000000c000600020000000000179f"], 0x38}, 0x1, 0x0, 0x0, 0x40d0}, 0x880) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f00000012c0)='./cgroup.cpu/syz0\x00', 0x1ff) r1 = shmget$private(0x0, 0x3000, 0x78000000, &(0x7f0000ffc000/0x3000)=nil) r2 = shmget$private(0x0, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil) shmat(r2, &(0x7f0000ffe000/0x2000)=nil, 0x4000) shmctl$SHM_LOCK(r2, 0xb) shmctl$SHM_UNLOCK(r1, 0xc) shmat(r1, &(0x7f0000ffb000/0x2000)=nil, 0x2000) shmctl$SHM_INFO(r1, 0xe, &(0x7f000001ae00)=""/4079) shmctl$SHM_UNLOCK(r1, 0xc) shmctl$SHM_INFO(r1, 0xe, &(0x7f0000000100)=""/182) 15:34:19 executing program 5: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x2}, 0x0, 0x0, 0xfffffffe, 0x3, 0x1, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000000c0)={0x0, 0x0}) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00') readv(r2, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1) r3 = syz_open_procfs(0x0, &(0x7f0000000280)='fd/4\x00') syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x3000004, 0x110, 0xffffffffffffffff, 0x0) r6 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x4, 0x80010, r3, 0x10000000) syz_io_uring_submit(r5, r6, &(0x7f0000000440)=@IORING_OP_WRITE={0x17, 0x3, 0x0, @fd=r4, 0x80000000, &(0x7f00000014c0)="4dd0350a27044d0fc279e84f1732bdf0f5dd616b543efdf257d979f2dedaf795dfd5e2b9e4ba9946d2a264ec1269ea56cc3c9e7747e121e4d91ad31c4a75a976baa2035d3b02d216529c9f554c1b3f2641603397e3439bdfa42281f46383c0436797a9e11c0fd69066d512f19c4e266dd398ec4dc88c88efc336ce445c71ceb93d18fde30145d01bd10e6e7efa59524f93e91c3de4d479c90b98a1c730f8572d24020d7eb659245035844f3c88e96e537a3b1b573a5400ffe37071fac25eed197f7d34e9c1f823728e54ba953b233f42cad75fb41620610e71cdb7fae5c7240250b3b1046deaba052f", 0xe9, 0x5}, 0x6) writev(r4, &(0x7f00000000c0)=[{&(0x7f0000000200)="af", 0x1}], 0x1) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r4, 0xc0502100, &(0x7f00000002c0)={0x0}) r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x404040, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r4, 0x40182103, &(0x7f0000000400)={r7, 0x0, r8, 0x200, 0x80000}) perf_event_open(&(0x7f0000000380)={0x2, 0x80, 0x6, 0x20, 0x0, 0x5, 0x0, 0x1, 0x10, 0x2, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x64bb, 0x4, @perf_bp={&(0x7f0000000180), 0xb}, 0x6307defed897a6f3, 0x10000, 0x4, 0x7, 0x3f, 0x8, 0x2, 0x0, 0x81, 0x0, 0x7}, r1, 0x5, r4, 0xf) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x100000, &(0x7f0000000440)=ANY=[]) mount$bind(&(0x7f00000000c0)='./file0/file0\x00', &(0x7f0000000340)='./file0/../file0\x00', 0x0, 0x17810, 0x0) unshare(0x48020200) 15:34:19 executing program 6: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) openat(r0, &(0x7f0000000180)='./file0\x00', 0x101803, 0x1) write(r0, &(0x7f0000000240)="01", 0x1) ioctl$int_out(r0, 0x0, &(0x7f00000000c0)) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) ftruncate(r1, 0x4206) r2 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000080), 0x2002, 0x0) write$binfmt_elf64(r2, 0x0, 0x72) write$P9_RREADLINK(r2, &(0x7f0000000040)={0x10, 0x17, 0x2, {0x7, './file0'}}, 0x10) ioctl$FS_IOC_FSSETXATTR(r1, 0x40086602, &(0x7f0000000000)) write$binfmt_elf64(r1, &(0x7f00000001c0)=ANY=[], 0xfdef) 15:34:19 executing program 2: connect$inet(0xffffffffffffffff, 0x0, 0x0) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x20000854, 0x0, 0x0) r0 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000140)=@broute={'broute\x00', 0x20, 0x5, 0x68e, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000280], 0x0, &(0x7f0000000040), &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x706) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x2000, 0x0) copy_file_range(r2, 0x0, r1, 0x0, 0x10001, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}, 0x0, 0x31d, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendfile(r1, r3, 0x0, 0x20d315) 15:34:19 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) (fail_nth: 60) 15:34:19 executing program 3: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) [ 1385.674838] FAULT_INJECTION: forcing a failure. [ 1385.674838] name failslab, interval 1, probability 0, space 0, times 0 [ 1385.677291] CPU: 1 PID: 10515 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1385.678727] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1385.680456] Call Trace: [ 1385.681003] dump_stack+0x107/0x167 [ 1385.681760] should_fail.cold+0x5/0xa [ 1385.682546] ? create_object.isra.0+0x3a/0xa20 [ 1385.683485] should_failslab+0x5/0x20 [ 1385.684272] kmem_cache_alloc+0x5b/0x310 [ 1385.685121] create_object.isra.0+0x3a/0xa20 [ 1385.686037] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1385.687067] kmem_cache_alloc+0x159/0x310 [ 1385.687916] __kernfs_new_node+0xd4/0x860 [ 1385.688798] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1385.689772] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1385.690770] ? wait_for_completion_io+0x270/0x270 [ 1385.691775] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1385.692887] kernfs_new_node+0x93/0x120 [ 1385.693714] __kernfs_create_file+0x51/0x350 [ 1385.694629] sysfs_add_file_mode_ns+0x221/0x560 [ 1385.695605] internal_create_group+0x324/0xb30 [ 1385.696564] ? sysfs_remove_group+0x170/0x170 [ 1385.697466] ? kernfs_name_hash+0xe7/0x110 [ 1385.698332] ? kernfs_find_ns+0x256/0x380 [ 1385.699180] sysfs_slab_add+0x188/0x200 [ 1385.700003] __kmem_cache_create+0x3db/0x520 [ 1385.700931] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1385.701981] p9_client_create+0xc2b/0x11c0 [ 1385.702860] ? p9_client_flush+0x430/0x430 [ 1385.703713] ? trace_hardirqs_on+0x5b/0x180 [ 1385.704612] ? lockdep_init_map_type+0x2c7/0x780 [ 1385.705583] ? __raw_spin_lock_init+0x36/0x110 [ 1385.706526] v9fs_session_init+0x1dd/0x1680 [ 1385.707415] ? lock_release+0x680/0x680 [ 1385.708269] ? kmem_cache_alloc_trace+0x151/0x320 [ 1385.709246] ? v9fs_show_options+0x690/0x690 [ 1385.710171] ? trace_hardirqs_on+0x5b/0x180 [ 1385.711062] ? kasan_unpoison_shadow+0x33/0x50 [ 1385.712012] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1385.713054] v9fs_mount+0x79/0x8f0 [ 1385.713786] ? v9fs_write_inode+0x60/0x60 [ 1385.714640] legacy_get_tree+0x105/0x220 [ 1385.715489] vfs_get_tree+0x8e/0x300 [ 1385.716277] path_mount+0x13be/0x20b0 [ 1385.717078] ? strncpy_from_user+0x9e/0x470 [ 1385.717951] ? finish_automount+0xa90/0xa90 [ 1385.718838] ? getname_flags.part.0+0x1dd/0x4f0 [ 1385.719772] ? _copy_from_user+0xfb/0x1b0 [ 1385.720645] __x64_sys_mount+0x282/0x300 [ 1385.721488] ? copy_mnt_ns+0xa00/0xa00 [ 1385.722306] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1385.723376] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1385.724461] do_syscall_64+0x33/0x40 [ 1385.725227] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1385.726272] RIP: 0033:0x7f76b700cb19 [ 1385.727037] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1385.730750] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1385.732311] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1385.733776] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1385.735248] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1385.736728] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1385.738196] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 15:34:19 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b\x00\x00\x00', @ANYRES32, @ANYBLOB="0800000200000000d3018756"], 0x28}}, 0x0) [ 1385.863559] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1385.866565] CPU: 0 PID: 10511 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1385.868109] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1385.869765] Call Trace: [ 1385.870333] dump_stack+0x107/0x167 [ 1385.871073] sysfs_warn_dup.cold+0x1c/0x29 [ 1385.871961] sysfs_do_create_link_sd+0x122/0x140 [ 1385.872924] sysfs_create_link+0x5f/0xc0 [ 1385.873775] device_add+0x703/0x1c50 [ 1385.874529] ? devlink_add_symlinks+0x970/0x970 [ 1385.875520] ? wiphy_register+0x1d5b/0x2850 [ 1385.876412] wiphy_register+0x1da6/0x2850 [ 1385.877277] ? wiphy_unregister+0xb90/0xb90 [ 1385.878182] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1385.879279] ieee80211_register_hw+0x23c5/0x38b0 [ 1385.880280] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1385.881272] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1385.882396] ? memset+0x20/0x50 [ 1385.883074] ? __hrtimer_init+0x12c/0x270 [ 1385.883929] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1385.884995] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1385.885941] ? hwsim_new_radio_nl+0x967/0x1080 [ 1385.886881] ? memcpy+0x39/0x60 [ 1385.887565] hwsim_new_radio_nl+0x991/0x1080 [ 1385.888484] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1385.889561] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1385.890902] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1385.892237] genl_family_rcv_msg_doit+0x22d/0x330 [ 1385.893250] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1385.894618] ? __sanitizer_cov_trace_pc+0x4/0x60 [ 1385.895599] ? ns_capable+0xe2/0x110 [ 1385.896387] genl_rcv_msg+0x33c/0x5a0 [ 1385.897177] ? genl_get_cmd+0x480/0x480 [ 1385.898000] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1385.899066] ? netlink_rcv_skb+0x260/0x430 [ 1385.899943] ? memset+0x20/0x50 [ 1385.900637] netlink_rcv_skb+0x14b/0x430 [ 1385.901464] ? genl_get_cmd+0x480/0x480 [ 1385.902278] ? netlink_ack+0xab0/0xab0 [ 1385.903086] ? genl_pernet_exit+0x80/0x80 [ 1385.903928] ? netlink_unicast+0x51f/0x7f0 [ 1385.904814] genl_rcv+0x24/0x40 [ 1385.905485] netlink_unicast+0x549/0x7f0 [ 1385.906320] ? netlink_attachskb+0x870/0x870 [ 1385.907233] netlink_sendmsg+0x90f/0xdf0 [ 1385.908075] ? netlink_unicast+0x7f0/0x7f0 [ 1385.908992] ? netlink_unicast+0x7f0/0x7f0 [ 1385.909870] __sock_sendmsg+0x154/0x190 [ 1385.910685] ____sys_sendmsg+0x70d/0x870 [ 1385.911520] ? sock_write_iter+0x3d0/0x3d0 [ 1385.912397] ? do_recvmmsg+0x6d0/0x6d0 [ 1385.913226] ___sys_sendmsg+0xf3/0x170 [ 1385.914029] ? sendmsg_copy_msghdr+0x160/0x160 [ 1385.914974] ? lock_downgrade+0x6d0/0x6d0 [ 1385.915821] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1385.916932] ? trace_hardirqs_on+0x5b/0x180 [ 1385.917817] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1385.918939] ? __fget_files+0x296/0x4c0 [ 1385.919770] ? __fget_light+0xea/0x290 [ 1385.920594] __sys_sendmsg+0xe5/0x1b0 [ 1385.921376] ? __sys_sendmsg_sock+0x40/0x40 [ 1385.922293] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1385.923364] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1385.924421] ? trace_hardirqs_on+0x5b/0x180 [ 1385.925316] do_syscall_64+0x33/0x40 [ 1385.926077] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1385.927120] RIP: 0033:0x7f07e63f4b19 [ 1385.927884] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1385.931661] RSP: 002b:00007f07e396a188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1385.933238] RAX: ffffffffffffffda RBX: 00007f07e6507f60 RCX: 00007f07e63f4b19 [ 1385.934690] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1385.936147] RBP: 00007f07e644ef6d R08: 0000000000000000 R09: 0000000000000000 [ 1385.937608] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1385.939061] R13: 00007fff1f25f23f R14: 00007f07e396a300 R15: 0000000000022000 15:34:19 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r0) r1 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000140), 0x40, 0x0) bind$inet6(r1, &(0x7f0000000180)={0xa, 0x4e20, 0x6, @dev={0xfe, 0x80, '\x00', 0xf}, 0x5}, 0x1c) syz_mount_image$ext4(0x0, 0x0, 0x0, 0x1, &(0x7f0000000440)=[{&(0x7f0000000040)=' ', 0x1}], 0x0, 0x0) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='environ\x00') readv(r2, &(0x7f0000000280), 0x1000000000000048) [ 1385.959752] audit: type=1400 audit(1704555259.961:68): avc: denied { map } for pid=10501 comm="syz-executor.5" path="/proc/10501/mounts" dev="proc" ino=34635 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=file permissive=1 [ 1385.969845] audit: type=1400 audit(1704555259.962:69): avc: denied { execute } for pid=10501 comm="syz-executor.5" path="/proc/10501/mounts" dev="proc" ino=34635 scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=file permissive=1 15:34:20 executing program 6: r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ftruncate(r0, 0x1000003) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)={0x0, 0x0, 0x2, 0x80000007, 0xffff7ff9}) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0xc02, 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x5, &(0x7f0000000080)=0x1088, 0x4) sendmmsg$inet6(r2, &(0x7f0000004540)=[{{&(0x7f0000000000)={0x2, 0x4e23, 0x0, @private0}, 0x1c, 0x0}}], 0x1, 0x0) ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000140)={0x2, 0x7, 0x4, 0x52f, 0x8001}) write$binfmt_elf64(r1, &(0x7f0000000a00)=ANY=[], 0x98a) ioctl$F2FS_IOC_DEFRAGMENT(r0, 0xc010f508, &(0x7f0000000180)={0x3, 0x5}) readv(r1, &(0x7f0000000340)=[{&(0x7f0000002340)=""/4101, 0x1005}, {&(0x7f0000000380)=""/99}], 0x1000000000000009) pwrite64(r1, &(0x7f0000000240)="3e5b16e900afd16fff57ff37b1597593f59e2cec1ddc23874c6abd139a13b96debd198", 0x23, 0x3) readv(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000001340)=""/4096, 0x1000}], 0x1) getsockopt$IP6T_SO_GET_INFO(r2, 0x29, 0x40, &(0x7f00000001c0)={'filter\x00', 0x0, [0x8000, 0x4, 0x3, 0x1]}, &(0x7f00000000c0)=0x54) unshare(0x48020200) syz_open_dev$sg(&(0x7f0000000080), 0x80000001, 0x39b341) 15:34:20 executing program 7: socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b\x00\x00\x00', @ANYRES32, @ANYBLOB="0800000200000000d3018756"], 0x28}}, 0x0) 15:34:20 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) (fail_nth: 61) 15:34:20 executing program 4: r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0x0, &(0x7f00000030c0)='net/udp6\x00') ioctl$AUTOFS_DEV_IOCTL_READY(r1, 0xc0189376, &(0x7f00000002c0)={{0x1, 0x1, 0x18, r0, {0x2}}, './file0\x00'}) ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r2) readv(r0, &(0x7f00000000c0)=[{&(0x7f0000000000)=""/7, 0x7}, {&(0x7f0000000040)=""/109, 0x6d}], 0x2) preadv(r1, &(0x7f0000002400)=[{&(0x7f0000000140)=""/203, 0xcb}], 0x1, 0x0, 0x0) perf_event_open(&(0x7f0000000240)={0x2, 0x80, 0xec, 0x3, 0x2, 0xf9, 0x0, 0x2, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x0, @perf_bp={&(0x7f0000000100), 0x3}, 0x100, 0x400, 0x5, 0x5, 0x5, 0xd9, 0x1726, 0x0, 0x40, 0x0, 0x7ff}, 0xffffffffffffffff, 0xf, r1, 0x9) 15:34:20 executing program 7: socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b\x00\x00\x00', @ANYRES32, @ANYBLOB="0800000200000000d3018756"], 0x28}}, 0x0) [ 1386.324458] FAULT_INJECTION: forcing a failure. [ 1386.324458] name failslab, interval 1, probability 0, space 0, times 0 [ 1386.326891] CPU: 1 PID: 10539 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1386.328330] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1386.330053] Call Trace: [ 1386.330619] dump_stack+0x107/0x167 [ 1386.331420] should_fail.cold+0x5/0xa [ 1386.332220] ? __kernfs_new_node+0xd4/0x860 [ 1386.333169] should_failslab+0x5/0x20 [ 1386.333940] kmem_cache_alloc+0x5b/0x310 [ 1386.334770] __kernfs_new_node+0xd4/0x860 [ 1386.335595] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1386.336576] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1386.337590] ? wait_for_completion_io+0x270/0x270 [ 1386.338596] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1386.339690] kernfs_new_node+0x93/0x120 [ 1386.340541] __kernfs_create_file+0x51/0x350 [ 1386.341440] sysfs_add_file_mode_ns+0x221/0x560 [ 1386.342393] internal_create_group+0x324/0xb30 [ 1386.343348] ? sysfs_remove_group+0x170/0x170 [ 1386.344231] ? kernfs_name_hash+0xe7/0x110 [ 1386.345119] ? kernfs_find_ns+0x256/0x380 [ 1386.345956] sysfs_slab_add+0x188/0x200 [ 1386.346777] __kmem_cache_create+0x3db/0x520 [ 1386.347701] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1386.348755] p9_client_create+0xc2b/0x11c0 [ 1386.349600] ? p9_client_flush+0x430/0x430 [ 1386.350461] ? trace_hardirqs_on+0x5b/0x180 [ 1386.351336] ? lockdep_init_map_type+0x2c7/0x780 [ 1386.352322] ? __raw_spin_lock_init+0x36/0x110 [ 1386.353234] v9fs_session_init+0x1dd/0x1680 [ 1386.354121] ? lock_release+0x680/0x680 [ 1386.354918] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1386.356035] ? trace_hardirqs_on+0x5b/0x180 [ 1386.356935] ? v9fs_show_options+0x690/0x690 [ 1386.357849] ? _raw_spin_unlock_irqrestore+0x25/0x40 [ 1386.358890] ? kasan_unpoison_shadow+0x33/0x50 [ 1386.359834] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1386.360893] v9fs_mount+0x79/0x8f0 [ 1386.361624] ? v9fs_write_inode+0x60/0x60 [ 1386.362469] legacy_get_tree+0x105/0x220 [ 1386.363296] vfs_get_tree+0x8e/0x300 [ 1386.364036] path_mount+0x13be/0x20b0 [ 1386.364841] ? strncpy_from_user+0x9e/0x470 [ 1386.365701] ? finish_automount+0xa90/0xa90 [ 1386.366584] ? getname_flags.part.0+0x1dd/0x4f0 [ 1386.367521] ? _copy_from_user+0xfb/0x1b0 [ 1386.368391] __x64_sys_mount+0x282/0x300 [ 1386.369206] ? copy_mnt_ns+0xa00/0xa00 [ 1386.370009] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1386.371072] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1386.372128] do_syscall_64+0x33/0x40 [ 1386.372897] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1386.373940] RIP: 0033:0x7f76b700cb19 [ 1386.374698] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1386.378485] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1386.380033] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1386.381501] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1386.382952] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1386.384419] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1386.385886] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 15:34:20 executing program 3: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:34:20 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x882c2, 0x0) r1 = open(&(0x7f0000000040)='./file0\x00', 0x1a18c1, 0x0) write$binfmt_elf64(r1, &(0x7f0000000180)=ANY=[], 0xffffffffffffff12) fallocate(r0, 0x0, 0x0, 0x2) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(r1, 0xc0189375, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0}, './file1\x00'}) r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) openat(r3, &(0x7f00000000c0)='./file0\x00', 0x200000, 0x6b) openat$random(0xffffffffffffff9c, &(0x7f0000000100), 0xe4881, 0x0) r4 = syz_mount_image$tmpfs(&(0x7f0000000140), &(0x7f0000000180)='./file0/file0\x00', 0xd920, 0x5, &(0x7f0000001340)=[{&(0x7f00000001c0)="e774b95839284ad1d33f8c69f3f61b72c57569a79b255a06586633c5f536bb396479f305f14c01558dfa2de53e2baed2dca275fc6bff9cc01095da35f72e935926aecdd9e1a2e8e43db801b5f8cdde8decbdbb2add2e231281f077b580ec921191321ed0c8edee95799f799e5313839e9b28c2cf39c644574ed5681750005658e8c692ca8c28aae3c05bb9f615b6d5fddbb5ddad924ae51c56903cad308f9a46fe0e8d6f4e", 0xa5, 0x9}, {&(0x7f0000000280)="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", 0x1000, 0x2}, {&(0x7f0000001280)="da24ad5d51ee1a78f0cf1bd81dd957c82e8020a9bd394cff4cd166f11a47f64b26f7a6faf000ec20b0e67a85f2a64e", 0x2f, 0x400}, {&(0x7f00000012c0)="7df2f471a173d13746c0da", 0xb, 0x101}, {&(0x7f0000001300)="f8a4b877840eec8e", 0x8, 0x100}], 0x1010014, &(0x7f00000013c0)=ANY=[@ANYBLOB='huge=never,obj_type=,smackfsfloor=/dev/random\x00,uid>', @ANYRESDEC, @ANYBLOB="2c16"]) ioctl$EXT4_IOC_MOVE_EXT(r4, 0xc028660f, &(0x7f0000001440)={0x0, r2, 0x20000000010001, 0x6, 0xc, 0x2}) [ 1386.527539] kmem_cache_create(9p-fcall-cache) failed with error -12 [ 1386.528918] CPU: 1 PID: 10539 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1386.530312] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1386.531957] Call Trace: [ 1386.532504] dump_stack+0x107/0x167 [ 1386.533301] kmem_cache_create_usercopy.cold+0x17/0x65 [ 1386.534357] p9_client_create+0xc2b/0x11c0 [ 1386.535214] ? p9_client_flush+0x430/0x430 [ 1386.536067] ? trace_hardirqs_on+0x5b/0x180 [ 1386.536941] ? lockdep_init_map_type+0x2c7/0x780 [ 1386.537897] ? __raw_spin_lock_init+0x36/0x110 [ 1386.538814] v9fs_session_init+0x1dd/0x1680 [ 1386.539667] ? lock_release+0x680/0x680 [ 1386.540481] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1386.541553] ? trace_hardirqs_on+0x5b/0x180 [ 1386.542442] ? v9fs_show_options+0x690/0x690 [ 1386.543355] ? _raw_spin_unlock_irqrestore+0x25/0x40 [ 1386.544403] ? kasan_unpoison_shadow+0x33/0x50 [ 1386.545306] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1386.546334] v9fs_mount+0x79/0x8f0 [ 1386.547060] ? v9fs_write_inode+0x60/0x60 [ 1386.547892] legacy_get_tree+0x105/0x220 [ 1386.548709] vfs_get_tree+0x8e/0x300 [ 1386.549458] path_mount+0x13be/0x20b0 [ 1386.550236] ? strncpy_from_user+0x9e/0x470 [ 1386.551095] ? finish_automount+0xa90/0xa90 [ 1386.551955] ? getname_flags.part.0+0x1dd/0x4f0 [ 1386.552896] ? _copy_from_user+0xfb/0x1b0 [ 1386.553729] __x64_sys_mount+0x282/0x300 [ 1386.554543] ? copy_mnt_ns+0xa00/0xa00 [ 1386.555343] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1386.556439] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1386.557499] do_syscall_64+0x33/0x40 [ 1386.558241] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1386.559293] RIP: 0033:0x7f76b700cb19 [ 1386.560036] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1386.563823] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1386.565391] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1386.566835] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1386.568286] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1386.569734] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1386.571180] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 [ 1386.726421] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1386.728313] CPU: 1 PID: 10557 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1386.729721] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1386.731417] Call Trace: [ 1386.731966] dump_stack+0x107/0x167 [ 1386.732730] sysfs_warn_dup.cold+0x1c/0x29 [ 1386.733606] sysfs_do_create_link_sd+0x122/0x140 [ 1386.734577] sysfs_create_link+0x5f/0xc0 [ 1386.735413] device_add+0x703/0x1c50 [ 1386.736169] ? devlink_add_symlinks+0x970/0x970 [ 1386.737148] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1386.738196] wiphy_register+0x1da6/0x2850 [ 1386.739061] ? wiphy_unregister+0xb90/0xb90 [ 1386.739935] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1386.741071] ? ieee80211_register_hw+0x190a/0x38b0 [ 1386.742075] ieee80211_register_hw+0x23c5/0x38b0 [ 1386.743058] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1386.744034] ? net_generic+0xdb/0x2b0 [ 1386.744820] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1386.745923] ? memset+0x20/0x50 [ 1386.746597] ? __hrtimer_init+0x12c/0x270 [ 1386.747444] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1386.748502] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1386.749442] ? hwsim_new_radio_nl+0x967/0x1080 [ 1386.750372] ? memcpy+0x39/0x60 [ 1386.751049] hwsim_new_radio_nl+0x991/0x1080 [ 1386.751947] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1386.753027] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1386.754359] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1386.755690] genl_family_rcv_msg_doit+0x22d/0x330 [ 1386.756687] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1386.758020] ? cap_capable+0x1cd/0x230 [ 1386.758826] ? ns_capable+0xe2/0x110 [ 1386.759588] genl_rcv_msg+0x33c/0x5a0 [ 1386.760375] ? genl_get_cmd+0x480/0x480 [ 1386.761183] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1386.762248] ? lock_release+0x680/0x680 [ 1386.763038] ? __lockdep_reset_lock+0x180/0x180 [ 1386.763983] netlink_rcv_skb+0x14b/0x430 [ 1386.764806] ? genl_get_cmd+0x480/0x480 [ 1386.765621] ? netlink_ack+0xab0/0xab0 [ 1386.766405] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1386.767343] ? is_vmalloc_addr+0x7b/0xb0 [ 1386.768140] genl_rcv+0x24/0x40 [ 1386.768805] netlink_unicast+0x549/0x7f0 [ 1386.769629] ? netlink_attachskb+0x870/0x870 [ 1386.770493] ? __virt_addr_valid+0x128/0x350 [ 1386.771385] netlink_sendmsg+0x90f/0xdf0 [ 1386.772196] ? netlink_unicast+0x7f0/0x7f0 [ 1386.773076] ? netlink_unicast+0x7f0/0x7f0 [ 1386.773918] __sock_sendmsg+0x154/0x190 [ 1386.774711] ____sys_sendmsg+0x70d/0x870 [ 1386.775522] ? sock_write_iter+0x3d0/0x3d0 [ 1386.776367] ? do_recvmmsg+0x6d0/0x6d0 [ 1386.777142] ? perf_trace_lock+0xac/0x490 [ 1386.777976] ? __lockdep_reset_lock+0x180/0x180 [ 1386.778912] ___sys_sendmsg+0xf3/0x170 [ 1386.779692] ? sendmsg_copy_msghdr+0x160/0x160 [ 1386.780621] ? lock_downgrade+0x6d0/0x6d0 [ 1386.781468] ? find_held_lock+0x2c/0x110 [ 1386.782271] ? clockevents_program_event+0x14b/0x360 [ 1386.783325] ? __fget_files+0x296/0x4c0 [ 1386.784127] ? __fget_light+0xea/0x290 [ 1386.784934] __sys_sendmsg+0xe5/0x1b0 [ 1386.785721] ? __sys_sendmsg_sock+0x40/0x40 [ 1386.786619] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1386.787688] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1386.788729] ? trace_hardirqs_on+0x5b/0x180 [ 1386.789606] do_syscall_64+0x33/0x40 [ 1386.790353] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1386.791382] RIP: 0033:0x7f07e63f4b19 [ 1386.792130] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1386.795822] RSP: 002b:00007f07e396a188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1386.797354] RAX: ffffffffffffffda RBX: 00007f07e6507f60 RCX: 00007f07e63f4b19 [ 1386.798801] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1386.800221] RBP: 00007f07e644ef6d R08: 0000000000000000 R09: 0000000000000000 [ 1386.801668] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1386.803098] R13: 00007fff1f25f23f R14: 00007f07e396a300 R15: 0000000000022000 15:34:34 executing program 2: r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./mnt\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f00000004c0)='mnt/encrypted_dir\x00', 0x0) rename(&(0x7f0000000180)='mnt/encrypted_dir\x00', &(0x7f00000001c0)='./file0\x00') stat(&(0x7f00000003c0)='./file0\x00', &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r1, 0x0) r2 = dup3(r0, r0, 0x0) openat(r2, &(0x7f0000000000)='./file0\x00', 0x200, 0x28) r3 = getpgrp(0x0) sched_setaffinity(r3, 0x0, 0x0) 15:34:34 executing program 7: socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b\x00\x00\x00', @ANYRES32, @ANYBLOB="0800000200000000d3018756"], 0x28}}, 0x0) 15:34:34 executing program 3: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:34:34 executing program 5: ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x1a1001, 0x0) setsockopt$inet6_IPV6_PKTINFO(r1, 0x29, 0x32, &(0x7f0000000040)={@private0, r0}, 0x14) socket$netlink(0x10, 0x3, 0x0) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f0000002e00)={0x0, 0x0, &(0x7f0000002dc0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="440109000000000000000000e0000002000000000000000000000000ac1414bb000000000000000000de00000000000000000000001200"/64, @ANYRES32=0x0, @ANYRES32=0xee01, @ANYBLOB="e00000010000000000000000000000000000000033000000ac1414bb00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c00140073686132353600000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008001d0000000000"], 0x144}}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x406e2, 0x0) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8914, &(0x7f0000000140)={'lo\x00', 0x0}) openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x1a1001, 0x0) ioctl$sock_ipv6_tunnel_SIOCADD6RD(r3, 0x89f9, &(0x7f0000000100)={'syztnl0\x00', &(0x7f0000000080)={'sit0\x00', r5, 0x4, 0x85, 0x52, 0x0, 0x24, @empty, @mcast2, 0x1, 0x80, 0x402, 0xa273}}) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) 15:34:34 executing program 6: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) pidfd_send_signal(0xffffffffffffffff, 0x10, &(0x7f0000000100)={0x28}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000200), 0x1}, 0x52081, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000240)={0x5, 0x80, 0xff, 0xc9, 0xe4, 0x1, 0x0, 0x5, 0x628, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x3, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x3, 0x4, @perf_config_ext={0x400, 0x6}, 0x10000, 0x7fffffff, 0x3f, 0x2, 0x3, 0xab04, 0x3ae, 0x0, 0x6, 0x0, 0x80}, 0x0, 0xf, 0xffffffffffffffff, 0x1) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000080)={0x0, 0x2}) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) stat(&(0x7f0000000440)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000001540), 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_SCAN(r2, &(0x7f0000001600)={0x0, 0x0, &(0x7f00000015c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="0103000000000000000100000000ac0e0300", @ANYRES32=0x0, @ANYBLOB], 0x1c}}, 0x0) sendmsg$NL80211_CMD_ABORT_SCAN(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB="c30112389f6e735c32a4116b4b257c67abd14bfe1b0b8935df2017fe8123208e7487d05300e405c92e5eac", @ANYBLOB="00032bbd7000fcdbca25720000000800", @ANYRES16, @ANYRESDEC=r1], 0x1c}, 0x1, 0x0, 0x0, 0x41}, 0x20000080) ioctl$sock_bt_hci(r0, 0x800448d4, &(0x7f0000000080)) r4 = syz_open_dev$tty1(0xc, 0x4, 0x1) write(r4, &(0x7f0000000500)="348d5ed85cdd15381c62a174ab7f0433ffaf2744e150ac76a031ef8424b53abfbf20d1a2967a3f862eb1c61efe7762e4b8619b5d", 0x34) syz_io_uring_complete(0x0) timerfd_settime(0xffffffffffffffff, 0x3, &(0x7f00000000c0), 0x0) ioctl$SG_IO(0xffffffffffffffff, 0x401070cd, 0x0) unshare(0x48020200) 15:34:34 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x802c2, 0x0) execveat(r0, &(0x7f00000000c0)='./file1\x00', &(0x7f0000000700)=[&(0x7f0000000300)='\xfe.@/)\x00', &(0x7f00000005c0)='&\x00', &(0x7f0000000680)='@#\\\xce\x18}\xd5xc\xbc\xf1[]\x00', &(0x7f00000006c0)='.\x00'], &(0x7f0000000600)=[0x0, 0x0, 0x0, &(0x7f00000002c0)='\x00', &(0x7f0000000580)='@#\\\xce\x18}\xd5xc\xbc\xf1[]\x00', &(0x7f0000000340)='\x00', &(0x7f0000000400)='&\x00', &(0x7f0000000440)='\x00', &(0x7f0000000480)='\x00', &(0x7f00000004c0)='\x00', &(0x7f0000000500)='*@\'@\'\x00', &(0x7f0000000540)='!:\\\x00'], 0x400) r1 = open(&(0x7f0000000040)='./file0\x00', 0x1810c1, 0x0) r2 = creat(&(0x7f0000000040)='./file0\x00', 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) dup2(r4, r3) recvmsg(0xffffffffffffffff, 0x0, 0x2) r5 = openat(0xffffffffffffffff, &(0x7f0000000100)='./file1\x00', 0x107142, 0x4) openat$cgroup_pressure(0xffffffffffffffff, 0x0, 0x2, 0x0) creat(&(0x7f0000000080)='./file0\x00', 0xa0) signalfd(r1, 0x0, 0x0) io_uring_setup(0x5cb9, &(0x7f0000000380)={0x0, 0x3a3f, 0x10, 0x1, 0xcf}) sendfile(r5, r3, 0x0, 0x7ffffff9) fallocate(r2, 0x0, 0x0, 0x8004) r6 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) sendmsg$nl_generic(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="300000001c00210c00000000000000000a000000050000ffff7f000000000000000000000001917bd940e76ff95d0b1e2dc71002b67bf46c893cc389e536d20092506e24a2952ee88dd2485c60295499f29ba721705316d9c1b6544110b77ef2e59d67f5f535541a00"/114], 0x30}}, 0x0) fallocate(r6, 0x30, 0x7fff, 0x5) perf_event_open(&(0x7f0000000140)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x9}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0x0, r1}) 15:34:34 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) (fail_nth: 62) 15:34:34 executing program 4: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x2a, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000ce0000000f000000010000000000000000000000002000000020000020000000d2f4655fd2f4655f0100ffff53ef010001000000d1f4655f000000000000000001000000000000000b000000800000000800000052470000620100000000000000000000000000000000000073797a6b616c6c6572000000000000002f746d702f73797a2d696d61676567656e33313930313834363600"/192, 0xc0, 0x400}, {&(0x7f0000010100)="0000000000000000000000005566cbb705fc4d7ea1c5dfc95b00bfe3010000000c00000000000000d1f4655f00"/64, 0x40, 0x4de}, {&(0x7f0000010200)="0100000000000500110000000000000000000000040000003c00000000000000", 0x20, 0x560}, {&(0x7f0000010300)="030000000400"/32, 0x20, 0x640}, {&(0x7f0000010400)="030000001300000023000000ce000f0003000400"/32, 0x20, 0x800}, {&(0x7f0000010500)="fffffffffcff0700000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff020000000c0001022e000000020000000c0002022e2e00000b00000014000a026c6f73742b666f756e6400000c0000001000050266696c65300000000f0000001000050166696c6531000000100000001000050166696c6532000000100000001000050166696c6533000000110000009403090166696c652e636f6c64000000", 0x480, 0xc00}, {&(0x7f0000010a00)="0b0000000c0001022e00000002000000f40302022e2e00"/32, 0x20, 0x1400}, {&(0x7f0000010b00)="00000000000400"/32, 0x20, 0x1800}, {&(0x7f0000010c00)="00000000000400"/32, 0x20, 0x1c00}, {&(0x7f0000010d00)="00000000000400"/32, 0x20, 0x2000}, {&(0x7f0000010e00)="00000000000400"/32, 0x20, 0x7}, {&(0x7f0000010f00)="00000000000400"/32, 0x20, 0x2800}, {&(0x7f0000011000)="00000000000400"/32, 0x20, 0x2c00}, {&(0x7f0000011100)="00000000000400"/32, 0x20, 0x3000}, {&(0x7f0000011200)="00000000000400"/32, 0x20, 0x3400}, {&(0x7f0000011300)="00000000000400"/32, 0x20, 0x3800}, {&(0x7f0000011400)="00000000000400"/32, 0x20, 0x3c00}, {&(0x7f0000011500)="00000000000400"/32, 0x20, 0x4000}, {&(0x7f0000011600)="504d4d00504d4dffd2f4655f00000000647679756b6f762d676c6170746f70320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006c6f6f7033300075782f746573742f73797a5f6d6f756e745f696d6167655f650500"/128, 0x80, 0x4400}, {&(0x7f0000011700)="111fc0d901000000803a0900803a090000000000060000000000000005000000", 0x20, 0x4800}, {&(0x7f0000011800)="ffff0100ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0300"/1056, 0x420, 0x80000000}, {&(0x7f0000000040)="0400"/32, 0x20, 0x5400}, {&(0x7f0000011e00)="0500"/32, 0x20, 0x5800}, {&(0x7f0000011f00)="00000000000000000100000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000007000"/96, 0x60, 0x5c00}, {&(0x7f0000012000)="0200"/32, 0x20, 0x6000}, {&(0x7f0000012100)="2719c0d901000000803a0900803a090000000000060000000000000005000000", 0x20, 0x6400}, {&(0x7f0000012200)="0300"/32, 0x20, 0x6800}, {&(0x7f0000012300)="0400"/24, 0x18, 0x6c00}, {&(0x7f0000012400)="0500"/32, 0x20, 0x7000}, {&(0x7f0000012500)="00000000000000000100000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000007000"/96, 0x60, 0x7400}, {&(0x7f0000012600)="0200"/32, 0x20, 0x7800}, {&(0x7f0000012700)="0c0000000c0001022e000000020000000c0002022e2e00000d0000001000050166696c65300000000e000000d803050766696c653100"/64, 0x40, 0x7c00}, {&(0x7f0000012800)="000002ea0100000001000000270f240c000000000000000000000000000000000601f8030000000006000000779b539778617474723100000601f00300000000060000007498539778617474723200"/96, 0x60, 0x8000}, {&(0x7f0000012900)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00xattr2\x00\x00xattr1\x00\x00', 0x20, 0x83e0}, {&(0x7f0000012a00)="0000000000000000d1f4655fd1f4655fd1f4655f00"/32, 0x20, 0x8c00}, {&(0x7f0000012b00)="ed41000000040000d1f4655fd2f4655fd2f4655f00000000000004000200000000000800050000000af301000400000000000000000000000100000004000000", 0x40, 0x8c80}, {&(0x7f0000012c00)="8081000000180000d1f4655fd1f4655fd1f4655f00000000000001000c00000010000800000000000af303000400000000000000000000000100000012000000010000000100000018000000020000000400000014000000000000000000000000000000000000000000000000000000000000000000000000000000000000008081000000180000d1f4655fd1f4655fd1f4655f00000000000001000c00000010000800000000000af30300040000000000000000000000010000001900000001000000010000001e00000002000000040000001a00"/224, 0xe0, 0x8d00}, {&(0x7f0000012d00)="c041000000300000d1f4655fd1f4655fd1f4655f00000000000002001800000000000800000000000af301000400000000000000000000000c00000005000000", 0x40, 0x9100}, {&(0x7f0000012e00)="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"/768, 0x300, 0x9180}, {&(0x7f0000013100)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x9c00}, {&(0x7f0000013600)='syzkallers\x00'/32, 0x20, 0xa400}, {&(0x7f0000013700)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallers\x00'/128, 0x80, 0xcc00}], 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="eff3949a78b0755c79004e46afddd7ec51e8999b3d14155b33f2957bfb5c18d85ba89a629b45"]) [ 1400.397112] FAULT_INJECTION: forcing a failure. [ 1400.397112] name failslab, interval 1, probability 0, space 0, times 0 [ 1400.399812] CPU: 1 PID: 10581 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1400.399824] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1400.399830] Call Trace: [ 1400.399855] dump_stack+0x107/0x167 [ 1400.399881] should_fail.cold+0x5/0xa [ 1400.399903] ? create_object.isra.0+0x3a/0xa20 [ 1400.399926] should_failslab+0x5/0x20 [ 1400.399944] kmem_cache_alloc+0x5b/0x310 [ 1400.399971] create_object.isra.0+0x3a/0xa20 [ 1400.399990] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1400.400017] kmem_cache_alloc+0x159/0x310 [ 1400.400047] __kernfs_new_node+0xd4/0x860 15:34:34 executing program 4: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x10, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000000c0)=0x0) perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x9, 0x2, 0x7, 0x1, 0x0, 0x5, 0x82040, 0xe, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0xfffffff9, 0x4, @perf_config_ext={0x2d486472, 0xfff}, 0x41200, 0x6, 0x7, 0x8, 0x1, 0x33, 0xc60c, 0x0, 0x10000, 0x0, 0x6}, r0, 0x0, 0xffffffffffffffff, 0x9) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001280)={0x34, 0x10, 0x1, 0x0, 0x0, {}, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x12'}, @nested={0x18, 0x0, 0x0, 0x1, [@typed={0x14, 0x1, 0x0, 0x0, @ipv6=@mcast1}]}]}, 0x34}}, 0x0) [ 1400.400074] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1400.400103] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1400.400128] ? wait_for_completion_io+0x270/0x270 [ 1400.400153] ? kernfs_next_descendant_post+0x1a7/0x2a0 15:34:34 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, 0x0, 0x0) [ 1400.400185] kernfs_new_node+0x93/0x120 [ 1400.400210] __kernfs_create_file+0x51/0x350 [ 1400.400235] sysfs_add_file_mode_ns+0x221/0x560 [ 1400.400268] internal_create_group+0x324/0xb30 15:34:34 executing program 2: syz_mount_image$vfat(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) renameat2(r0, &(0x7f0000000240)='./file0\x00', r0, &(0x7f0000000280)='./file1\x00', 0x0) r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) renameat2(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', r1, &(0x7f0000000080)='./file0\x00', 0x5) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r3, 0x0, r2, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) ioctl$FS_IOC_RESVSP(r3, 0x40305828, &(0x7f00000000c0)={0x0, 0x4, 0x247, 0x100}) [ 1400.400298] ? sysfs_remove_group+0x170/0x170 [ 1400.400315] ? kernfs_name_hash+0xe7/0x110 [ 1400.400340] ? kernfs_find_ns+0x256/0x380 [ 1400.400372] sysfs_slab_add+0x188/0x200 [ 1400.400396] __kmem_cache_create+0x3db/0x520 [ 1400.400424] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1400.400469] p9_client_create+0xc2b/0x11c0 [ 1400.400502] ? p9_client_flush+0x430/0x430 [ 1400.400524] ? trace_hardirqs_on+0x5b/0x180 [ 1400.400547] ? lockdep_init_map_type+0x2c7/0x780 15:34:34 executing program 0: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = dup2(r0, r0) connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0xfffffc00, @ipv4={'\x00', '\xff\xff', @remote}, 0x2}, 0x1c) sendmsg$inet(r1, &(0x7f0000000200)={&(0x7f0000000040)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x24}}, 0x10, &(0x7f0000000000), 0x0, &(0x7f0000000080)=[@ip_retopts={{0xa4, 0x0, 0x7, {[@lsrr={0x83, 0x13, 0x40, [@multicast1, @multicast2, @local, @loopback]}, @rr={0x7, 0x27, 0x17, [@loopback, @local, @broadcast, @empty, @rand_addr=0x64010100, @multicast2, @local, @empty, @empty]}, @rr={0x7, 0x23, 0x6e, [@initdev={0xac, 0x1e, 0x0, 0x0}, @local, @local, @local, @multicast2, @multicast1, @multicast2, @dev={0xac, 0x14, 0x14, 0x2a}]}, @cipso={0x86, 0x8, 0xffffffffffffffff, [{0x1, 0x2}]}, @cipso={0x86, 0x6, 0xffffffffffffffff}, @end, @timestamp_addr={0x44, 0x24, 0xc6, 0x1, 0x9, [{@loopback, 0xfff}, {@broadcast, 0x6d}, {@dev={0xac, 0x14, 0x14, 0x33}, 0x5}, {@loopback, 0x2}]}, @noop]}}}], 0xa8}, 0x20000000) [ 1400.400576] ? __raw_spin_lock_init+0x36/0x110 [ 1400.400604] v9fs_session_init+0x1dd/0x1680 [ 1400.400640] ? kmem_cache_alloc_trace+0x151/0x320 [ 1400.400664] ? v9fs_show_options+0x690/0x690 [ 1400.400697] ? trace_hardirqs_on+0x5b/0x180 [ 1400.400723] ? kasan_unpoison_shadow+0x33/0x50 [ 1400.400745] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1400.400772] v9fs_mount+0x79/0x8f0 [ 1400.400796] ? v9fs_write_inode+0x60/0x60 [ 1400.400817] legacy_get_tree+0x105/0x220 [ 1400.400839] vfs_get_tree+0x8e/0x300 [ 1400.400862] path_mount+0x13be/0x20b0 [ 1400.400888] ? strncpy_from_user+0x9e/0x470 [ 1400.400911] ? finish_automount+0xa90/0xa90 [ 1400.400931] ? getname_flags.part.0+0x1dd/0x4f0 [ 1400.400950] ? _copy_from_user+0xfb/0x1b0 [ 1400.400981] __x64_sys_mount+0x282/0x300 [ 1400.401003] ? copy_mnt_ns+0xa00/0xa00 [ 1400.401028] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1400.401046] ? syscall_enter_from_user_mode+0x1d/0x50 15:34:34 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) (fail_nth: 63) [ 1400.401073] do_syscall_64+0x33/0x40 [ 1400.401091] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1400.401105] RIP: 0033:0x7f76b700cb19 [ 1400.401125] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 15:34:34 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, 0x0, 0x0) [ 1400.401136] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1400.401158] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1400.401170] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 15:34:34 executing program 0: syz_mount_image$ext4(0x0, &(0x7f0000000200)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000500)='ramfs\x00', 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x7}, 0x0, 0x200, 0x0, 0x9}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mount$bind(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000240)='./file0\x00', &(0x7f0000000280), 0x2, 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x300b4e2, 0x0) r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r0, 0x8914, &(0x7f0000000140)={'lo\x00'}) r1 = socket$inet6_udplite(0xa, 0x2, 0x88) setxattr$incfs_size(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), &(0x7f0000000340)=0x1, 0x8, 0x5) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000180)={@loopback, 0x0, r3}) pivot_root(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='./file0\x00') bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e24, 0x5, @private2, 0xfffffc01}, 0x1c) ioctl$sock_inet_SIOCGIFPFLAGS(0xffffffffffffffff, 0x8935, &(0x7f0000000000)={'wlan0\x00'}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext={0x560, 0x2000000000004}, 0x0, 0x0, 0x1004, 0x0, 0x0, 0x1, 0x0, 0x0, 0xffffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) [ 1400.401181] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 15:34:34 executing program 2: mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x62, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x2000000000000008}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pkey_alloc(0x0, 0x0) r1 = pkey_alloc(0x0, 0x2) pkey_mprotect(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, r1) pkey_mprotect(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x2, r1) perf_event_open(0x0, 0x0, 0x4, 0xffffffffffffffff, 0x0) mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, &(0x7f0000000180), 0x8, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) creat(&(0x7f0000000100)='./file0\x00', 0x26) kcmp(0xffffffffffffffff, 0x0, 0x6, r0, 0xffffffffffffffff) setsockopt$sock_int(r3, 0x1, 0x12, &(0x7f0000000200)=0x33e0, 0x4) setsockopt$inet6_tcp_int(r3, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) perf_event_open(&(0x7f0000000240)={0x1, 0x80, 0xd4, 0x5, 0x8, 0x8b, 0x0, 0x7, 0x8020, 0x4, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2d, 0x0, @perf_config_ext={0x6, 0x1f}, 0x42988, 0x4, 0x30000, 0x4, 0x9, 0x0, 0x8, 0x0, 0x101, 0x0, 0x4}, 0x0, 0x3, 0xffffffffffffffff, 0x2) shmget$private(0x0, 0x4000, 0x200, &(0x7f0000ffc000/0x4000)=nil) bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r3, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) sendfile(r3, r2, 0x0, 0x9bbb) perf_event_open(&(0x7f00000002c0)={0x0, 0x80, 0x4, 0x2, 0x9, 0x3f, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x8, 0x0, @perf_bp={&(0x7f0000000140), 0x2}, 0x1000, 0x9, 0x9, 0x0, 0xffffffffffff4369, 0x3, 0x7, 0x0, 0x3, 0x0, 0x4}, 0x0, 0xf, 0xffffffffffffffff, 0x2) [ 1400.401192] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1400.401203] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 [ 1400.771139] FAULT_INJECTION: forcing a failure. [ 1400.771139] name failslab, interval 1, probability 0, space 0, times 0 [ 1400.771168] CPU: 0 PID: 10610 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1400.771179] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1400.771185] Call Trace: [ 1400.771209] dump_stack+0x107/0x167 [ 1400.771237] should_fail.cold+0x5/0xa [ 1400.771261] ? __kernfs_new_node+0xd4/0x860 [ 1400.771284] should_failslab+0x5/0x20 [ 1400.771303] kmem_cache_alloc+0x5b/0x310 [ 1400.771334] __kernfs_new_node+0xd4/0x860 [ 1400.771371] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1400.771400] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1400.771425] ? wait_for_completion_io+0x270/0x270 [ 1400.771450] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1400.771483] kernfs_new_node+0x93/0x120 [ 1400.771509] __kernfs_create_file+0x51/0x350 [ 1400.771534] sysfs_add_file_mode_ns+0x221/0x560 [ 1400.771570] internal_create_group+0x324/0xb30 [ 1400.771600] ? sysfs_remove_group+0x170/0x170 [ 1400.771619] ? kernfs_name_hash+0xe7/0x110 [ 1400.771645] ? kernfs_find_ns+0x256/0x380 [ 1400.771678] sysfs_slab_add+0x188/0x200 [ 1400.771703] __kmem_cache_create+0x3db/0x520 [ 1400.771731] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1400.771761] p9_client_create+0xc2b/0x11c0 [ 1400.771794] ? p9_client_flush+0x430/0x430 [ 1400.771817] ? trace_hardirqs_on+0x5b/0x180 [ 1400.771840] ? lockdep_init_map_type+0x2c7/0x780 [ 1400.771868] ? __raw_spin_lock_init+0x36/0x110 [ 1400.771897] v9fs_session_init+0x1dd/0x1680 [ 1400.771918] ? lock_release+0x680/0x680 [ 1400.771949] ? kmem_cache_alloc_trace+0x151/0x320 [ 1400.771969] ? v9fs_show_options+0x690/0x690 [ 1400.772002] ? trace_hardirqs_on+0x5b/0x180 [ 1400.772027] ? kasan_unpoison_shadow+0x33/0x50 [ 1400.772049] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1400.772076] v9fs_mount+0x79/0x8f0 [ 1400.772101] ? v9fs_write_inode+0x60/0x60 [ 1400.772123] legacy_get_tree+0x105/0x220 [ 1400.772145] vfs_get_tree+0x8e/0x300 [ 1400.772169] path_mount+0x13be/0x20b0 [ 1400.772194] ? strncpy_from_user+0x9e/0x470 [ 1400.772218] ? finish_automount+0xa90/0xa90 [ 1400.772239] ? getname_flags.part.0+0x1dd/0x4f0 [ 1400.772258] ? _copy_from_user+0xfb/0x1b0 [ 1400.772288] __x64_sys_mount+0x282/0x300 [ 1400.772310] ? copy_mnt_ns+0xa00/0xa00 [ 1400.772336] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1400.772354] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1400.772381] do_syscall_64+0x33/0x40 [ 1400.772399] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1400.772412] RIP: 0033:0x7f76b700cb19 [ 1400.772433] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1400.772468] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1400.772490] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1400.772501] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1400.772513] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1400.772524] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1400.772535] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 [ 1400.772925] kmem_cache_create(9p-fcall-cache) failed with error -12 [ 1400.772943] CPU: 0 PID: 10610 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1400.772952] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1400.772958] Call Trace: [ 1400.772974] dump_stack+0x107/0x167 [ 1400.772999] kmem_cache_create_usercopy.cold+0x17/0x65 [ 1400.773026] p9_client_create+0xc2b/0x11c0 [ 1400.773057] ? p9_client_flush+0x430/0x430 [ 1400.773077] ? trace_hardirqs_on+0x5b/0x180 [ 1400.773098] ? lockdep_init_map_type+0x2c7/0x780 [ 1400.773125] ? __raw_spin_lock_init+0x36/0x110 [ 1400.773151] v9fs_session_init+0x1dd/0x1680 [ 1400.773171] ? lock_release+0x680/0x680 [ 1400.773200] ? kmem_cache_alloc_trace+0x151/0x320 [ 1400.773219] ? v9fs_show_options+0x690/0x690 [ 1400.773249] ? trace_hardirqs_on+0x5b/0x180 [ 1400.773274] ? kasan_unpoison_shadow+0x33/0x50 [ 1400.773295] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1400.773321] v9fs_mount+0x79/0x8f0 [ 1400.773344] ? v9fs_write_inode+0x60/0x60 [ 1400.773364] legacy_get_tree+0x105/0x220 [ 1400.773384] vfs_get_tree+0x8e/0x300 [ 1400.773406] path_mount+0x13be/0x20b0 [ 1400.773432] ? strncpy_from_user+0x9e/0x470 [ 1400.773454] ? finish_automount+0xa90/0xa90 [ 1400.773474] ? getname_flags.part.0+0x1dd/0x4f0 [ 1400.773492] ? _copy_from_user+0xfb/0x1b0 [ 1400.773521] __x64_sys_mount+0x282/0x300 [ 1400.773542] ? copy_mnt_ns+0xa00/0xa00 [ 1400.773567] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1400.773585] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1400.773612] do_syscall_64+0x33/0x40 [ 1400.773630] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1400.773641] RIP: 0033:0x7f76b700cb19 [ 1400.773665] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1400.773676] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1400.773696] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1400.773707] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1400.773720] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1400.773732] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1400.773743] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 [ 1400.801953] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1400.802007] CPU: 0 PID: 10583 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1400.802018] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1400.802024] Call Trace: [ 1400.802043] dump_stack+0x107/0x167 [ 1400.802069] sysfs_warn_dup.cold+0x1c/0x29 [ 1400.802090] sysfs_do_create_link_sd+0x122/0x140 [ 1400.802112] sysfs_create_link+0x5f/0xc0 [ 1400.802135] device_add+0x703/0x1c50 [ 1400.802162] ? devlink_add_symlinks+0x970/0x970 [ 1400.802186] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1400.802219] wiphy_register+0x1da6/0x2850 [ 1400.802255] ? wiphy_unregister+0xb90/0xb90 [ 1400.802273] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1400.802311] ? ieee80211_register_hw+0x17da/0x38b0 [ 1400.802339] ieee80211_register_hw+0x23c5/0x38b0 [ 1400.802383] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1400.802408] ? check_memory_region+0x18c/0x1f0 [ 1400.802434] ? memset+0x20/0x50 [ 1400.802455] ? __hrtimer_init+0x12c/0x270 [ 1400.802482] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1400.802525] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1400.802540] ? hwsim_new_radio_nl+0x967/0x1080 [ 1400.802564] ? memcpy+0x39/0x60 [ 1400.802589] hwsim_new_radio_nl+0x991/0x1080 [ 1400.802615] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1400.802657] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1400.802676] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1400.802705] genl_family_rcv_msg_doit+0x22d/0x330 [ 1400.802730] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1400.802748] ? cap_capable+0x1cd/0x230 [ 1400.802786] ? ns_capable+0xe2/0x110 [ 1400.802812] genl_rcv_msg+0x33c/0x5a0 [ 1400.802836] ? genl_get_cmd+0x480/0x480 [ 1400.802856] ? lock_acquire+0x1b9/0x470 [ 1400.802872] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1400.802900] ? lock_release+0x680/0x680 [ 1400.802919] ? __lockdep_reset_lock+0x180/0x180 [ 1400.802945] netlink_rcv_skb+0x14b/0x430 [ 1400.802964] ? genl_get_cmd+0x480/0x480 [ 1400.802984] ? netlink_ack+0xab0/0xab0 [ 1400.803020] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1400.803039] ? is_vmalloc_addr+0x7b/0xb0 [ 1400.803063] genl_rcv+0x24/0x40 [ 1400.803079] netlink_unicast+0x549/0x7f0 [ 1400.803106] ? netlink_attachskb+0x870/0x870 [ 1400.803125] ? __sanitizer_cov_trace_pc+0x42/0x60 [ 1400.803158] netlink_sendmsg+0x90f/0xdf0 [ 1400.803186] ? netlink_unicast+0x7f0/0x7f0 [ 1400.803220] ? netlink_unicast+0x7f0/0x7f0 [ 1400.803241] __sock_sendmsg+0x154/0x190 [ 1400.803262] ____sys_sendmsg+0x70d/0x870 [ 1400.803286] ? sock_write_iter+0x3d0/0x3d0 [ 1400.803302] ? do_recvmmsg+0x6d0/0x6d0 [ 1400.803322] ? perf_trace_lock+0xac/0x490 [ 1400.803350] ? __lockdep_reset_lock+0x180/0x180 [ 1400.803380] ___sys_sendmsg+0xf3/0x170 [ 1400.803403] ? sendmsg_copy_msghdr+0x160/0x160 [ 1400.803431] ? lock_downgrade+0x6d0/0x6d0 [ 1400.803447] ? find_held_lock+0x2c/0x110 [ 1400.803477] ? clockevents_program_event+0x14b/0x360 [ 1400.803505] ? __fget_files+0x296/0x4c0 [ 1400.803539] ? __fget_light+0xea/0x290 [ 1400.803570] __sys_sendmsg+0xe5/0x1b0 [ 1400.803590] ? __sys_sendmsg_sock+0x40/0x40 [ 1400.803645] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1400.803663] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1400.803678] ? trace_hardirqs_on+0x5b/0x180 [ 1400.803703] do_syscall_64+0x33/0x40 [ 1400.803720] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1400.803733] RIP: 0033:0x7f07e63f4b19 [ 1400.803752] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1400.803763] RSP: 002b:00007f07e396a188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1400.803784] RAX: ffffffffffffffda RBX: 00007f07e6507f60 RCX: 00007f07e63f4b19 [ 1400.803795] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1400.803806] RBP: 00007f07e644ef6d R08: 0000000000000000 R09: 0000000000000000 [ 1400.803817] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1400.803829] R13: 00007fff1f25f23f R14: 00007f07e396a300 R15: 0000000000022000 [ 1416.859734] Bluetooth: hci1: command 0x0406 tx timeout 15:34:51 executing program 5: syz_open_dev$sg(&(0x7f0000003bc0), 0x0, 0x0) r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/module/suspend', 0x703000, 0x80) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) dup2(r2, r0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000080)={0x5000001a}) ioctl$SG_SET_COMMAND_Q(r0, 0x2271, &(0x7f0000000040)=0x1) 15:34:51 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) (fail_nth: 64) 15:34:51 executing program 2: set_mempolicy(0x1, &(0x7f00000000c0)=0x6c0e, 0x7ffb) syz_80211_join_ibss(&(0x7f0000000340)='wlan0\x00', &(0x7f0000000000)=@default_ap_ssid, 0x6, 0x0) copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x200f5ef, 0x0) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'wlan1\x00'}) set_mempolicy(0x4003, &(0x7f0000000040)=0x2, 0x1f) getpgid(0x0) fork() tkill(0x0, 0x3f) fork() tkill(0x0, 0x22) getpid() fork() ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000440)) fork() r0 = fcntl$getown(0xffffffffffffffff, 0x9) tkill(r0, 0x28003e) r1 = fork() tkill(r1, 0x14) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x1, @perf_config_ext={0x400000000}, 0xa300, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone3(&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) 15:34:51 executing program 4: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000580)={0x18, 0x68, 0x1, 0x0, 0x0, {0x0, 0x2}, [@generic='{']}, 0x18}}, 0x0) syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x4}, 0x0) r3 = mmap$IORING_OFF_SQES(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1, 0x30, 0xffffffffffffffff, 0x10000000) r4 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) openat(r4, &(0x7f00000000c0)='./file0\x00', 0x200000, 0x6b) r5 = syz_open_procfs(0x0, &(0x7f0000000140)='sessionid\x00') setsockopt$netlink_NETLINK_BROADCAST_ERROR(r5, 0x10e, 0x4, &(0x7f0000000180)=0x1f, 0x4) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x2000002, 0x20010, r4, 0x8000000) r6 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./cgroup.cpu/cpuset.cpus\x00', 0x0, 0x0) r7 = io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000280)=@IORING_OP_EPOLL_CTL=@del={0x1d, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x2, 0x0, 0x1, {0x0, r7}}, 0x6) syz_io_uring_submit(r1, r3, &(0x7f0000000040)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x100, 0x1, {0x2, r7}}, 0x8000) [ 1417.678784] FAULT_INJECTION: forcing a failure. [ 1417.678784] name failslab, interval 1, probability 0, space 0, times 0 [ 1417.681154] CPU: 1 PID: 10636 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1417.682578] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1417.684288] Call Trace: [ 1417.684864] dump_stack+0x107/0x167 [ 1417.685614] should_fail.cold+0x5/0xa [ 1417.686409] ? __kernfs_new_node+0xd4/0x860 [ 1417.687299] should_failslab+0x5/0x20 [ 1417.688085] kmem_cache_alloc+0x5b/0x310 [ 1417.688928] __kernfs_new_node+0xd4/0x860 [ 1417.689784] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1417.690765] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1417.691752] ? wait_for_completion_io+0x270/0x270 [ 1417.692763] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1417.693855] kernfs_new_node+0x93/0x120 [ 1417.694685] __kernfs_create_file+0x51/0x350 [ 1417.695605] sysfs_add_file_mode_ns+0x221/0x560 [ 1417.696577] internal_create_group+0x324/0xb30 [ 1417.697524] ? sysfs_remove_group+0x170/0x170 [ 1417.698433] ? kernfs_name_hash+0xe7/0x110 15:34:51 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, 0x0, 0x0) 15:34:51 executing program 3: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:34:51 executing program 0: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:34:51 executing program 6: openat(0xffffffffffffff9c, 0x0, 0x105142, 0x0) r0 = perf_event_open(&(0x7f0000000280)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000100), 0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x80100, 0x0) dup2(r0, r4) r5 = pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0) r6 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x4000, 0x0) r7 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x0) ioctl$SG_EMULATED_HOST(0xffffffffffffffff, 0x127c, &(0x7f00000001c0)) sendfile(r7, r4, 0x0, 0x3ff) sendfile(r7, r2, &(0x7f00000000c0)=0x5, 0xd17) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x12, r6, 0x0) ioctl$AUTOFS_DEV_IOCTL_READY(r5, 0xc0189376, 0x0) fallocate(r5, 0x2e, 0x6b95, 0xffff) bind$packet(r1, &(0x7f0000000240)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) setresuid(0xffffffffffffffff, 0x0, 0x0) [ 1417.699458] ? kernfs_find_ns+0x256/0x380 [ 1417.700418] sysfs_slab_add+0x188/0x200 [ 1417.701257] __kmem_cache_create+0x3db/0x520 [ 1417.702192] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1417.703223] p9_client_create+0xc2b/0x11c0 [ 1417.704115] ? p9_client_flush+0x430/0x430 [ 1417.704987] ? trace_hardirqs_on+0x5b/0x180 [ 1417.705912] ? lockdep_init_map_type+0x2c7/0x780 [ 1417.706899] ? __raw_spin_lock_init+0x36/0x110 [ 1417.707848] v9fs_session_init+0x1dd/0x1680 [ 1417.708754] ? lock_release+0x680/0x680 [ 1417.709586] ? kmem_cache_alloc_trace+0x151/0x320 [ 1417.710580] ? v9fs_show_options+0x690/0x690 [ 1417.711502] ? trace_hardirqs_on+0x5b/0x180 [ 1417.712405] ? kasan_unpoison_shadow+0x33/0x50 [ 1417.713378] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1417.714436] v9fs_mount+0x79/0x8f0 [ 1417.715191] ? v9fs_write_inode+0x60/0x60 [ 1417.716047] legacy_get_tree+0x105/0x220 [ 1417.716883] vfs_get_tree+0x8e/0x300 [ 1417.717663] path_mount+0x13be/0x20b0 [ 1417.718466] ? strncpy_from_user+0x9e/0x470 [ 1417.719357] ? finish_automount+0xa90/0xa90 [ 1417.720263] ? getname_flags.part.0+0x1dd/0x4f0 [ 1417.721221] ? _copy_from_user+0xfb/0x1b0 [ 1417.722079] __x64_sys_mount+0x282/0x300 [ 1417.722910] ? copy_mnt_ns+0xa00/0xa00 [ 1417.723727] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1417.724826] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1417.725895] do_syscall_64+0x33/0x40 [ 1417.726652] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1417.727705] RIP: 0033:0x7f76b700cb19 [ 1417.728498] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1417.732271] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1417.733829] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1417.735306] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1417.736770] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1417.738256] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1417.739701] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 [ 1417.753832] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 1417.755362] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 15:34:51 executing program 5: r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0xc02, 0x0) write$eventfd(0xffffffffffffffff, &(0x7f0000000140)=0xfff, 0x8) r2 = ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x0) write$binfmt_elf64(r1, &(0x7f0000000180)=ANY=[@ANYRES16=r0, @ANYRES64, @ANYRES64=r0, @ANYRESOCT=r2, @ANYRESOCT=r0, @ANYRES16, @ANYBLOB="4844d9869228fc9ccaf03ba5b875c51c26c45a60dcc45b5d7a55870119ff6fdec7222b4a93c81a7dfa5115492000c01eb2e9c5673a7847e761fa", @ANYRES16, @ANYBLOB="c607901ba3abb50fc311f3959b823422b86c7d155a11a383edbcb909bf6c0f7350609892aada4264d5eff3e5ee10d4a2f0592f9915"], 0x98a) ioctl$BTRFS_IOC_QGROUP_ASSIGN(r0, 0x40189429, &(0x7f0000000040)={0x0, 0xffffffffffffffe0, 0xffffffffffffffff}) unshare(0x4a060400) 15:34:51 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) 15:34:51 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x4, 0xffffffffffffffff, 0x0) openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x1, 0x0) fstat(r0, &(0x7f0000000180)) socket$nl_generic(0x10, 0x3, 0x10) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r2 = eventfd(0x7) sendfile(r1, r2, &(0x7f0000000140)=0x4, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r3, 0x0, r1, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) tee(r3, 0xffffffffffffffff, 0x5, 0x2) syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r1) creat(&(0x7f0000000040)='./file1\x00', 0x41) ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x40082406, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_rmem\x00') [ 1417.853562] kmem_cache_create(9p-fcall-cache) failed with error -12 [ 1417.854947] CPU: 0 PID: 10636 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1417.856376] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1417.858105] Call Trace: [ 1417.858656] dump_stack+0x107/0x167 [ 1417.859395] kmem_cache_create_usercopy.cold+0x17/0x65 [ 1417.860469] p9_client_create+0xc2b/0x11c0 [ 1417.861362] ? p9_client_flush+0x430/0x430 [ 1417.862231] ? trace_hardirqs_on+0x5b/0x180 [ 1417.863125] ? lockdep_init_map_type+0x2c7/0x780 [ 1417.864095] ? __raw_spin_lock_init+0x36/0x110 [ 1417.865068] v9fs_session_init+0x1dd/0x1680 [ 1417.865942] ? lock_release+0x680/0x680 [ 1417.866767] ? kmem_cache_alloc_trace+0x151/0x320 [ 1417.867760] ? v9fs_show_options+0x690/0x690 [ 1417.868700] ? trace_hardirqs_on+0x5b/0x180 [ 1417.869604] ? kasan_unpoison_shadow+0x33/0x50 [ 1417.870555] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1417.870581] v9fs_mount+0x79/0x8f0 [ 1417.870605] ? v9fs_write_inode+0x60/0x60 [ 1417.870626] legacy_get_tree+0x105/0x220 [ 1417.870648] vfs_get_tree+0x8e/0x300 [ 1417.870669] path_mount+0x13be/0x20b0 [ 1417.870694] ? strncpy_from_user+0x9e/0x470 [ 1417.870717] ? finish_automount+0xa90/0xa90 [ 1417.870737] ? getname_flags.part.0+0x1dd/0x4f0 [ 1417.870766] ? _copy_from_user+0xfb/0x1b0 [ 1417.879315] __x64_sys_mount+0x282/0x300 [ 1417.880198] ? copy_mnt_ns+0xa00/0xa00 [ 1417.881027] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1417.882144] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1417.883238] do_syscall_64+0x33/0x40 [ 1417.883999] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1417.885060] RIP: 0033:0x7f76b700cb19 [ 1417.885822] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1417.889602] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1417.891184] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1417.892632] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1417.894094] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1417.895556] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1417.897016] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 15:34:51 executing program 4: r0 = perf_event_open(&(0x7f0000000080)={0x2, 0x80, 0xe, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='net/ip6_tables_names\x00') ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) ioctl$BTRFS_IOC_RESIZE(r2, 0x50009403, &(0x7f0000000040)={{r1}, {@void, @actul_num={@void, 0x2, 0x50}}}) 15:34:51 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) 15:34:52 executing program 6: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet_int(r0, 0x0, 0x8, &(0x7f0000000040)=0x3, 0x4) r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000080), 0x2) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f00000000c0)={0x0, r1, 0x180, 0x9, 0x10000, 0xffffffffffffffff}) [ 1418.100095] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1418.102003] CPU: 1 PID: 10644 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1418.103447] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1418.105208] Call Trace: [ 1418.105772] dump_stack+0x107/0x167 [ 1418.106543] sysfs_warn_dup.cold+0x1c/0x29 [ 1418.107433] sysfs_do_create_link_sd+0x122/0x140 [ 1418.108420] sysfs_create_link+0x5f/0xc0 [ 1418.109288] device_add+0x703/0x1c50 [ 1418.110056] ? ieee80211_set_bitrate_flags+0x153/0x620 [ 1418.111124] ? devlink_add_symlinks+0x970/0x970 [ 1418.112071] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1418.113166] wiphy_register+0x1da6/0x2850 [ 1418.114031] ? wiphy_unregister+0xb90/0xb90 [ 1418.114916] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1418.116050] ? ieee80211_register_hw+0x237a/0x38b0 [ 1418.117087] ieee80211_register_hw+0x23c5/0x38b0 [ 1418.118076] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1418.119068] ? trace_hardirqs_on+0x5b/0x180 [ 1418.119962] ? memset+0x20/0x50 [ 1418.120640] ? __hrtimer_init+0x12c/0x270 [ 1418.121504] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1418.122561] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1418.123523] ? hwsim_new_radio_nl+0x967/0x1080 [ 1418.124457] ? memcpy+0x39/0x60 [ 1418.125152] hwsim_new_radio_nl+0x991/0x1080 [ 1418.126057] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1418.127148] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1418.128525] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1418.129878] genl_family_rcv_msg_doit+0x22d/0x330 [ 1418.130863] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1418.132220] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1418.133341] ? netlink_ns_capable+0xfd/0x130 [ 1418.134251] ? __sanitizer_cov_trace_pc+0x52/0x60 [ 1418.135259] genl_rcv_msg+0x33c/0x5a0 [ 1418.136042] ? genl_get_cmd+0x480/0x480 [ 1418.136846] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1418.137943] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1418.139000] ? netlink_rcv_skb+0xa7/0x430 [ 1418.139871] netlink_rcv_skb+0x14b/0x430 [ 1418.140700] ? genl_get_cmd+0x480/0x480 [ 1418.141494] ? netlink_ack+0xab0/0xab0 [ 1418.142306] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1418.143219] ? netlink_unicast+0x28a/0x7f0 [ 1418.144068] genl_rcv+0x24/0x40 [ 1418.144736] netlink_unicast+0x549/0x7f0 [ 1418.145563] ? netlink_attachskb+0x870/0x870 [ 1418.146441] ? __virt_addr_valid+0x128/0x350 [ 1418.147334] netlink_sendmsg+0x90f/0xdf0 [ 1418.148158] ? netlink_unicast+0x7f0/0x7f0 [ 1418.149084] ? netlink_unicast+0x7f0/0x7f0 [ 1418.149938] __sock_sendmsg+0x154/0x190 [ 1418.150771] ____sys_sendmsg+0x70d/0x870 [ 1418.151599] ? sock_write_iter+0x3d0/0x3d0 [ 1418.152485] ? do_recvmmsg+0x6d0/0x6d0 [ 1418.153291] ? perf_trace_lock+0xac/0x490 [ 1418.154140] ? __lockdep_reset_lock+0x180/0x180 [ 1418.155077] ? perf_trace_lock+0xac/0x490 [ 1418.155923] ___sys_sendmsg+0xf3/0x170 [ 1418.156718] ? sendmsg_copy_msghdr+0x160/0x160 [ 1418.157661] ? lock_downgrade+0x6d0/0x6d0 [ 1418.158508] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1418.159569] ? trace_hardirqs_on+0x5b/0x180 [ 1418.160476] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1418.161621] ? __fget_files+0x296/0x4c0 [ 1418.162449] ? __fget_light+0xea/0x290 [ 1418.163266] __sys_sendmsg+0xe5/0x1b0 [ 1418.164049] ? __sys_sendmsg_sock+0x40/0x40 [ 1418.164954] ? io_schedule_timeout+0x140/0x140 [ 1418.165904] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1418.167008] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1418.168067] ? trace_hardirqs_on+0x5b/0x180 [ 1418.169008] do_syscall_64+0x33/0x40 [ 1418.169769] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1418.170817] RIP: 0033:0x7f07e63f4b19 [ 1418.171564] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1418.175320] RSP: 002b:00007f07e396a188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1418.176873] RAX: ffffffffffffffda RBX: 00007f07e6507f60 RCX: 00007f07e63f4b19 [ 1418.178323] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1418.179777] RBP: 00007f07e644ef6d R08: 0000000000000000 R09: 0000000000000000 [ 1418.181277] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1418.182756] R13: 00007fff1f25f23f R14: 00007f07e396a300 R15: 0000000000022000 15:34:52 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0) 15:34:52 executing program 4: ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'wpan4\x00', 0x0}) sendmsg$NL802154_CMD_SET_PAN_ID(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x28, r2, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_DEV={0xc}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r3}]}, 0x28}}, 0x0) sendmsg$NL802154_CMD_NEW_SEC_LEVEL(0xffffffffffffffff, 0xffffffffffffffff, 0xc) syz_genetlink_get_family_id$nl802154(&(0x7f0000000380), 0xffffffffffffffff) r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_802154(r4, 0x8933, &(0x7f0000000080)={'wpan0\x00', 0x0}) sendmsg$NL802154_CMD_SET_PAN_ID(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010000000000000000000a0000000c00060000000000001b000008000300", @ANYRES32=r7, @ANYBLOB], 0x28}}, 0x0) sendmmsg(0xffffffffffffffff, &(0x7f0000001780)=[{{&(0x7f0000000040)=@caif=@dbg, 0x80, 0x0}}, {{&(0x7f0000000700)=@in6={0xa, 0x0, 0x80000000, @mcast1}, 0x80, 0x0}}], 0x2, 0x0) r8 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0) sendmsg$NL802154_CMD_NEW_SEC_LEVEL(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000140)={&(0x7f0000000b80)=ANY=[@ANYRESDEC=r4, @ANYRESDEC=r0, @ANYBLOB="4d09c407b88b4002491bb3e7f2edef9ae5e16592ddeaebdb84bbf8dd34ea9cc94768f9f856e20313d266b645cf792485fae987a1be0a9d32dbd366f687f767606c0190f8745ad85292303aa1be37b9d32199814b066c747e909ef11694d1980d53cf5d79bce0e75558585563a3ad51a97ea37615960981f717789c39baa1d89757bcb908a52451f3184117743590aee9ff21c0ba447594512b9c27095445ce7c0062b4bd0f0354bdb63132b08be88b8c51742d6bd8a934fc4d7f616bb9b8fdcdeac0ba1eb8de6579ca3351abf242a0845f6170e6261c3deb5d5ad93bc72ca9a51ac8efb3a75028ed3c12", @ANYRES32=0x0, @ANYBLOB="5fd532d851ba6db79ab8b32654ab21fdb69c54764c8b4f97d7ba9c07965b04f4c2139939cd23467222282cc05dddb5da6eec5bfb6a22a1486d68cc33fc30ca24cfe9d0a1b920213a102ee92efa9705f66238bf62516494079585fafe2f862c06ed9e4f168b2df01c", @ANYRES64=r8, @ANYRESDEC=r5, @ANYRESDEC, @ANYBLOB="b030f0cd89960c49f48b3175d4d104450bc13724cc61dbcb81a7d54a4ff22c9c9508b8e36b275c2f3094843fd3a5f3cd20e16f9639566b20923f79beaa32436fc7138829486d0a74c57c332ede6d1745b324ba83b960793dd7c0cd3c6c8696c7d87934c5d9592e577b05bd4392c92f511c1ddc83d289570632a7b2fb3b10be0fad30b377c9980b6600"], 0x44}}, 0x24040004) syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x800}, 0x18400, 0x0, 0x0, 0x0, 0x0, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x8880, 0x0) mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='rpc_pipefs\x00', 0x0, 0x0) [ 1418.538558] debugfs: Directory '€˜§°ÇÛ ”uòQÇC !' with parent 'ieee80211' already present! 15:35:08 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) (fail_nth: 65) 15:35:08 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x28}}, 0x0) 15:35:08 executing program 5: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) ioctl$AUTOFS_DEV_IOCTL_EXPIRE(0xffffffffffffffff, 0xc018937c, &(0x7f0000000600)={{0x1, 0x1, 0x18, r0, {0x1}}, './file0\x00'}) sendmmsg$inet6(r0, &(0x7f00000014c0)=[{{&(0x7f0000000240)={0xa, 0x4e24, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c, 0x0}}, {{&(0x7f0000000580)={0xa, 0x4e23, 0x0, @loopback}, 0x1c, 0x0, 0x0, &(0x7f0000000840)=[@pktinfo={{0x24, 0x29, 0x32, {@remote, r2}}}], 0x28}}], 0x2, 0x0) setsockopt$packet_add_memb(r3, 0x107, 0x1, &(0x7f0000000080)={r2, 0x1, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1b}}, 0x10) ioctl$sock_inet6_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000140)={@local, @private2={0xfc, 0x2, '\x00', 0xfc}, @private1={0xfc, 0x1, '\x00', 0x1}, 0x0, 0x0, 0x2000, 0x0, 0x101, 0x0, r2}) r4 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r4, 0x10e, 0xc, &(0x7f0000000000)=0x5, 0xff4d) clone3(&(0x7f0000000880)={0x300119640, &(0x7f0000000640)=0xffffffffffffffff, &(0x7f0000000680), &(0x7f00000006c0), {0x1d}, &(0x7f0000000700)=""/60, 0x3c, &(0x7f0000000740)=""/101, &(0x7f00000007c0)=[0xffffffffffffffff, 0xffffffffffffffff, 0x0], 0x3, {r3}}, 0x58) sendmsg$nl_generic(r4, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000000c0)={&(0x7f0000000900)={0x14c, 0x2a, 0x400, 0x70bd25, 0x25dfdbfe, {0x9}, [@nested={0x116, 0x15, 0x0, 0x1, [@generic, @typed={0x5, 0x8a, 0x0, 0x0, @str='\x00'}, @typed={0x8, 0x87, 0x0, 0x0, @fd=r5}, @generic="8d09a36253602ee508e0252b25d7e68e1d9d4b9abe1a13c4971d060bf0451c169d06676740edeb38b3d666e8c4a0fef47183f0175946e188e03f7b98f0b33081445107d6c886013be481aead5e428c3d27b3dc3b024f16bf874f09dae3e58fc2ab45d85b71bd982fd00e9cd8", @generic="507fdb53932e3293a1da99422126a252beb25bc43aa5b5372a42aa9dbd20", @typed={0x78, 0x9, 0x0, 0x0, @binary="f44ee452e998087a492c7b6f8c4b132748c14d2fbe0697782b955d0fbecec80424e8e7e1885f2412a05c31d6320a2248083822a24f78e911d0c9b5566bb37e7e1554a89a47e7c0b0d390d095c5675339381a5bc65832161d0d1587ab2eb0fe62ab0f852cf3a3263cec6fe80d720ae22f5c394bda"}]}, @nested={0x10, 0x34, 0x0, 0x1, [@typed={0xc, 0x26, 0x0, 0x0, @u64=0x80000000}]}, @nested={0x10, 0x6, 0x0, 0x1, [@typed={0xc, 0x64, 0x0, 0x0, @u64=0x4b1}]}]}, 0x14c}, 0x1, 0x0, 0x0, 0x440c0}, 0x20008800) sendmsg$nl_generic(r4, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000280)=ANY=[@ANYBLOB="20000000120011cd00000000000000008000"], 0x20}}, 0x0) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f00000001c0)=@abs, 0x6e, &(0x7f0000000440)=[{&(0x7f00000002c0)=""/12, 0xc}, {&(0x7f0000000300)=""/204, 0xcc}, {&(0x7f0000001540)=""/4096, 0x1000}, {&(0x7f0000000400)=""/41, 0x29}], 0x4, &(0x7f0000000480)=[@cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xc0}, 0x40000020) setsockopt$inet6_int(r6, 0x29, 0xcb, &(0x7f00000005c0)=0x8, 0x4) 15:35:08 executing program 2: r0 = syz_mount_image$ext4(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) mount$9p_fd(0x0, &(0x7f00000003c0)='./file0/../file0\x00', &(0x7f0000000400), 0x402, &(0x7f0000000440)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@nodevmap}, {@noextend}, {@cachetag={'cachetag', 0x3d, '/dev/vcs#\x00'}}, {@aname={'aname', 0x3d, 'ext4\x00'}}, {@cache_mmap}], [{@measure}, {@audit}, {@audit}, {@smackfstransmute={'smackfstransmute', 0x3d, '('}}, {@rootcontext={'rootcontext', 0x3d, 'sysadm_u'}}]}}) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r2, 0xc0189372, &(0x7f0000000040)={{0x1, 0x1, 0x18, r0, {0x4}}, './file1\x00'}) r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) openat(r3, &(0x7f00000000c0)='./file0\x00', 0x200000, 0x6b) getsockopt$bt_BT_DEFER_SETUP(r3, 0x112, 0x7, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f0000002f00)='./file0/../file0\x00', 0x0, 0x21000, 0x0) openat(r1, &(0x7f0000000240)='./file0\x00', 0x80000, 0x180) r4 = syz_open_dev$vcsn(&(0x7f00000001c0), 0x0, 0x4200) fallocate(r4, 0x2, 0x8, 0x7f) syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f00000002c0)='./file0/../file0\x00', 0x0, 0x0, 0x0, 0x2044034, &(0x7f0000000300)=ANY=[@ANYBLOB="6c617a7974696d652c00364c28d72ea9ab2b63e6f532857f09eca7f1fdca73caac8d31169babb4384617ed260700000001aae2ca6bad59614e88517efdae57a1da9c0d16cf8024151386dbc8507f10420b7b5759d5c779bdb9513c63686d8419808b5c4fba6cb476ed65af361b75bd81afcf7745380dbb94f5924c99a35c8a82beb3fdda366de5145023ad071250b75ed7cc9d47cfa11e468f4482555ad0546f087489e1885ab9e611532d17000000"]) r5 = open$dir(&(0x7f0000000180)='./file1\x00', 0x2, 0x81) openat(r5, &(0x7f0000000200)='./file0\x00', 0x101001, 0x1b0) 15:35:08 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:35:08 executing program 0: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:35:08 executing program 4: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:35:08 executing program 6: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext}, 0x0, 0xffffdfffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000140)='net/route\x00') ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, {0x1}}, './file0\x00'}) perf_event_open(&(0x7f0000000000)={0x4, 0x80, 0x0, 0x7, 0x4, 0x1f, 0x0, 0x5ce9, 0x38, 0xd, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x9, 0x2, @perf_config_ext={0xffffffff80000000, 0x8905}, 0x4000, 0x80, 0x4, 0x9, 0xdd, 0x3c1, 0x40, 0x0, 0x6, 0x0, 0x80000001}, 0xffffffffffffffff, 0x8, r2, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) readv(r1, &(0x7f0000002a80)=[{&(0x7f0000000740)=""/216, 0xd8}, {0x0, 0x7fffef28}], 0x2) [ 1434.827067] FAULT_INJECTION: forcing a failure. [ 1434.827067] name failslab, interval 1, probability 0, space 0, times 0 [ 1434.829416] CPU: 0 PID: 10717 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1434.830811] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1434.832542] Call Trace: [ 1434.833093] dump_stack+0x107/0x167 [ 1434.833868] should_fail.cold+0x5/0xa [ 1434.834653] ? __kernfs_new_node+0xd4/0x860 [ 1434.835473] EXT4-fs (sda): re-mounted. Opts: lazytime,,errors=continue [ 1434.835555] should_failslab+0x5/0x20 [ 1434.837758] kmem_cache_alloc+0x5b/0x310 [ 1434.838696] __kernfs_new_node+0xd4/0x860 [ 1434.839656] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1434.840744] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1434.841867] ? wait_for_completion_io+0x270/0x270 [ 1434.842984] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1434.844203] kernfs_new_node+0x93/0x120 [ 1434.845139] __kernfs_create_file+0x51/0x350 [ 1434.846157] sysfs_add_file_mode_ns+0x221/0x560 [ 1434.847248] internal_create_group+0x324/0xb30 [ 1434.848313] ? sysfs_remove_group+0x170/0x170 [ 1434.849362] ? kernfs_name_hash+0xe7/0x110 [ 1434.850338] ? kernfs_find_ns+0x256/0x380 [ 1434.851308] sysfs_slab_add+0x188/0x200 [ 1434.852231] __kmem_cache_create+0x3db/0x520 [ 1434.853263] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1434.854419] p9_client_create+0xc2b/0x11c0 [ 1434.855406] ? p9_client_flush+0x430/0x430 [ 1434.856372] ? trace_hardirqs_on+0x5b/0x180 [ 1434.857370] ? lockdep_init_map_type+0x2c7/0x780 [ 1434.858448] ? __raw_spin_lock_init+0x36/0x110 [ 1434.859487] v9fs_session_init+0x1dd/0x1680 [ 1434.860480] ? lock_release+0x680/0x680 [ 1434.861411] ? kmem_cache_alloc_trace+0x151/0x320 [ 1434.862509] ? v9fs_show_options+0x690/0x690 [ 1434.863523] ? trace_hardirqs_on+0x5b/0x180 [ 1434.864521] ? kasan_unpoison_shadow+0x33/0x50 [ 1434.865572] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1434.866748] v9fs_mount+0x79/0x8f0 [ 1434.867571] ? v9fs_write_inode+0x60/0x60 [ 1434.868533] legacy_get_tree+0x105/0x220 [ 1434.869482] vfs_get_tree+0x8e/0x300 [ 1434.870330] path_mount+0x13be/0x20b0 [ 1434.871215] ? strncpy_from_user+0x9e/0x470 [ 1434.872215] ? finish_automount+0xa90/0xa90 [ 1434.873217] ? getname_flags.part.0+0x1dd/0x4f0 [ 1434.874274] ? _copy_from_user+0xfb/0x1b0 [ 1434.875226] __x64_sys_mount+0x282/0x300 [ 1434.876153] ? copy_mnt_ns+0xa00/0xa00 [ 1434.877070] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1434.878247] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1434.879438] do_syscall_64+0x33/0x40 [ 1434.880279] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1434.881452] RIP: 0033:0x7f76b700cb19 [ 1434.882313] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1434.886487] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1434.888208] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1434.889851] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1434.891466] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1434.893070] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1434.894698] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 15:35:08 executing program 6: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext}, 0x0, 0xffffdfffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000140)='net/route\x00') ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, {0x1}}, './file0\x00'}) perf_event_open(&(0x7f0000000000)={0x4, 0x80, 0x0, 0x7, 0x4, 0x1f, 0x0, 0x5ce9, 0x38, 0xd, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x9, 0x2, @perf_config_ext={0xffffffff80000000, 0x8905}, 0x4000, 0x80, 0x4, 0x9, 0xdd, 0x3c1, 0x40, 0x0, 0x6, 0x0, 0x80000001}, 0xffffffffffffffff, 0x8, r2, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) readv(r1, &(0x7f0000002a80)=[{&(0x7f0000000740)=""/216, 0xd8}, {0x0, 0x7fffef28}], 0x2) [ 1434.929527] EXT4-fs (sda): re-mounted. Opts: lazytime,,errors=continue [ 1434.932017] kmem_cache_create(9p-fcall-cache) failed with error -12 [ 1434.933398] CPU: 1 PID: 10717 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1434.934797] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1434.936473] Call Trace: [ 1434.937039] dump_stack+0x107/0x167 [ 1434.937783] kmem_cache_create_usercopy.cold+0x17/0x65 [ 1434.938855] p9_client_create+0xc2b/0x11c0 [ 1434.939727] ? p9_client_flush+0x430/0x430 [ 1434.940755] ? trace_hardirqs_on+0x5b/0x180 [ 1434.941860] ? lockdep_init_map_type+0x2c7/0x780 [ 1434.942944] ? __raw_spin_lock_init+0x36/0x110 [ 1434.943977] v9fs_session_init+0x1dd/0x1680 [ 1434.944985] ? lock_release+0x680/0x680 [ 1434.945950] ? kmem_cache_alloc_trace+0x151/0x320 [ 1434.947064] ? v9fs_show_options+0x690/0x690 [ 1434.948114] ? trace_hardirqs_on+0x5b/0x180 [ 1434.949181] ? kasan_unpoison_shadow+0x33/0x50 [ 1434.950111] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1434.951241] v9fs_mount+0x79/0x8f0 [ 1434.951978] ? v9fs_write_inode+0x60/0x60 [ 1434.952826] legacy_get_tree+0x105/0x220 [ 1434.953676] vfs_get_tree+0x8e/0x300 [ 1434.954541] path_mount+0x13be/0x20b0 [ 1434.955329] ? strncpy_from_user+0x9e/0x470 [ 1434.956247] ? finish_automount+0xa90/0xa90 [ 1434.957296] ? getname_flags.part.0+0x1dd/0x4f0 [ 1434.958465] ? _copy_from_user+0xfb/0x1b0 [ 1434.959418] __x64_sys_mount+0x282/0x300 [ 1434.960363] ? copy_mnt_ns+0xa00/0xa00 [ 1434.961269] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1434.962670] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1434.964083] do_syscall_64+0x33/0x40 [ 1434.965146] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1434.966453] RIP: 0033:0x7f76b700cb19 [ 1434.967372] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1434.972340] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1434.974037] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1434.975751] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1434.977219] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1434.978668] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1434.980120] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 15:35:08 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x28}}, 0x0) [ 1435.029594] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1435.033254] CPU: 1 PID: 10713 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1435.034662] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1435.036373] Call Trace: [ 1435.036924] dump_stack+0x107/0x167 [ 1435.037688] sysfs_warn_dup.cold+0x1c/0x29 [ 1435.038576] sysfs_do_create_link_sd+0x122/0x140 [ 1435.039555] sysfs_create_link+0x5f/0xc0 [ 1435.040382] device_add+0x703/0x1c50 [ 1435.041157] ? devlink_add_symlinks+0x970/0x970 [ 1435.042112] ? __mutex_lock+0x4fe/0x10b0 [ 1435.042949] wiphy_register+0x1da6/0x2850 [ 1435.043808] ? wiphy_unregister+0xb90/0xb90 [ 1435.044688] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1435.045828] ? ieee80211_register_hw+0x193c/0x38b0 [ 1435.046838] ieee80211_register_hw+0x23c5/0x38b0 [ 1435.047829] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1435.048806] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1435.049931] ? memset+0x20/0x50 [ 1435.050605] ? __hrtimer_init+0x12c/0x270 [ 1435.051457] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1435.052491] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1435.053449] ? hwsim_new_radio_nl+0x967/0x1080 [ 1435.054380] ? memcpy+0x39/0x60 [ 1435.055058] hwsim_new_radio_nl+0x991/0x1080 [ 1435.055955] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1435.057009] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1435.058115] ? trace_hardirqs_on+0x5b/0x180 [ 1435.059048] genl_family_rcv_msg_doit+0x22d/0x330 [ 1435.060034] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1435.061429] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1435.062526] ? trace_hardirqs_on+0x5b/0x180 [ 1435.063440] ? cap_capable+0x1cd/0x230 [ 1435.064254] ? ns_capable+0xe2/0x110 [ 1435.065071] genl_rcv_msg+0x33c/0x5a0 [ 1435.065852] ? genl_get_cmd+0x480/0x480 [ 1435.066696] ? lock_acquire+0x1b9/0x470 [ 1435.067513] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1435.068600] ? lock_release+0x680/0x680 [ 1435.069431] ? __lockdep_reset_lock+0x180/0x180 [ 1435.070390] netlink_rcv_skb+0x14b/0x430 [ 1435.071214] ? genl_get_cmd+0x480/0x480 [ 1435.072031] ? netlink_ack+0xab0/0xab0 [ 1435.072856] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1435.073804] ? netlink_unicast+0x512/0x7f0 [ 1435.074685] genl_rcv+0x24/0x40 [ 1435.075368] netlink_unicast+0x549/0x7f0 [ 1435.076216] ? netlink_attachskb+0x870/0x870 [ 1435.077125] ? __virt_addr_valid+0x128/0x350 [ 1435.078030] netlink_sendmsg+0x90f/0xdf0 [ 1435.078862] ? netlink_unicast+0x7f0/0x7f0 [ 1435.079745] ? netlink_unicast+0x7f0/0x7f0 [ 1435.080604] __sock_sendmsg+0x154/0x190 [ 1435.081431] ____sys_sendmsg+0x70d/0x870 [ 1435.082265] ? sock_write_iter+0x3d0/0x3d0 [ 1435.083126] ? do_recvmmsg+0x6d0/0x6d0 [ 1435.083946] ___sys_sendmsg+0xf3/0x170 [ 1435.084746] ? sendmsg_copy_msghdr+0x160/0x160 [ 1435.085700] ? lock_downgrade+0x6d0/0x6d0 [ 1435.086556] ? __fget_files+0xe4/0x4c0 [ 1435.087356] ? __fget_files+0x296/0x4c0 [ 1435.088186] ? __fget_light+0xea/0x290 [ 1435.088994] __sys_sendmsg+0xe5/0x1b0 [ 1435.089766] ? __sys_sendmsg_sock+0x40/0x40 [ 1435.090637] ? trace_hardirqs_on+0x5b/0x180 [ 1435.091529] ? __sys_sendmsg+0x1b0/0x1b0 [ 1435.092366] ? __x64_sys_sendmsg+0x1/0xb0 [ 1435.093239] do_syscall_64+0x33/0x40 [ 1435.093994] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1435.095033] RIP: 0033:0x7f07e63f4b19 [ 1435.095790] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1435.099514] RSP: 002b:00007f07e396a188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1435.101060] RAX: ffffffffffffffda RBX: 00007f07e6507f60 RCX: 00007f07e63f4b19 [ 1435.102495] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1435.103939] RBP: 00007f07e644ef6d R08: 0000000000000000 R09: 0000000000000000 [ 1435.105400] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1435.106851] R13: 00007fff1f25f23f R14: 00007f07e396a300 R15: 0000000000022000 15:35:09 executing program 2: r0 = creat(&(0x7f0000000100)='./file1\x00', 0x85) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, @perf_config_ext={0x0, 0x100000001}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCVHANGUP(0xffffffffffffffff, 0x5437, 0x0) ioctl$VT_RESIZE(r1, 0x5609, &(0x7f00000000c0)={0x9, 0x204, 0x402}) open$dir(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) r2 = creat(&(0x7f0000000080)='./file0/file0\x00', 0x0) ioctl$VT_RESIZE(r1, 0x5609, &(0x7f00000001c0)={0x1ff, 0x9}) r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r4 = syz_io_uring_setup(0x4d4f, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000180)='./file1\x00', &(0x7f0000000340), 0x4, &(0x7f0000001300)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@privport}, {@loose}, {@uname={'uname', 0x3d, '\x00'}}, {@cache_mmap}, {@uname={'uname', 0x3d, '\x00'}}, {@afid={'afid', 0x3d, 0x8}}, {@fscache}]}}) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) io_uring_enter(r4, 0x58ab, 0x0, 0x0, 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r2, 0xc0189378, &(0x7f00000002c0)=ANY=[@ANYBLOB="dec40435055d563240e91cbe2ec52bf52c3a9b19a717eb2bd800010000000000004086ca41ac9ff07767a3f450872989000000000000000000", @ANYRES32, @ANYRES32=r4, @ANYBLOB="000009eb00ec65696c65302f66696c65302f66696c653000"]) r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0/file0\x00', 0x400000, 0x98) copy_file_range(r5, 0x0, r3, 0x0, 0x10001, 0x0) copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) sendmmsg$sock(0xffffffffffffffff, &(0x7f0000001200)=[{{&(0x7f0000000400)=@in={0x2, 0x4e21, @rand_addr=0x64010102}, 0x80, &(0x7f0000001540)=[{&(0x7f0000000480)="447add144972145402ff815871e19ff423a72e3ff803eb7c818a980cb2980a9eb67a4de48a0975a0fc3de209ce8fe942fcf5c24acfc47a2e6b9d4a23ac76699e4d7e8c41c6314409", 0x48}, {&(0x7f0000000500)="10bbc0acea9dba910378cdacd3492637e74a21491f54416711dc894714915f308543eebb2b1b2980c862246732eeaf8a3427670b90355de619110069dad6ee4b2291ebbbab29fe6d00f335455d759f0ab0a147c53f4dc238155809482e43d106b1082e4d55c5c4da44bc12946b193523b509434f524e5775ad6f033ae4f5251edb4658b882cb575ff1aa0c7224164344882ba36f4ec415d3e00c4d59554a18b88aaf31906c", 0xa5}, {&(0x7f00000005c0)="15db3a6c4494eecae045b82a12db7b29b65ba1dc23bbe9d48d05a0d33f20e6d87bf4922a3729adb236037c14cd54d595d8a2222990e2fa8e2527795f83ea159d682c0fb4398d06cf22b4636e61cb5a66167c31d54daf04daa99702cbb7b2d038d274e700053dd33f899d9ee57e22bd943dd4a82135cc627c3e105ab63704ce3a8ab616b63b2c6519b70844b66dfaf593c1565bd091439fff787287d3e8c87470d626a4cd1cabc0e4af093d20428665818e09b2d8e1ff3ad67a21645c08b2ae0cae3a", 0xc2}, {&(0x7f00000006c0)="666206782dc749e04af05b5d4b1822c8c05a63faa3e1b97dba864870e4a20634c75af5f9b0d12c2a0cb19dfc903ef141febf5c96f06e4b9dc74e9c2a9b889c8bb177ca48f5d0190ef207d4945e8c415742407f4d885f27e7b59f629d72aabe95b131b1b0f3f601dce7aea150eb11615316ed6ce1a3395113a89c32eb4d720d803dcb8df61645e65a138a0739721a9f82ae6085c8b1596a98c6eaab757ba7dadb6b9c4a956ed44a0f3290e58145893c0205bf2bb16b3d920926", 0xb9}, {&(0x7f0000000780)="40bf24a3bf656e2fd71bf86cb251b3c4942cb7b2780f6ee747f287b263bc3f6285d0893c2f8ec3acefdc25206754b636076bad8e9250d0a070b628befd1769fa5cb58622083722209c6b83b1491ac0e83781d6691897e84a66e9f3640acbb8be81b24a10774a8e8b62af72eedaa1a05a714d7ddd23137d87e46b7d562979b19132d69c66e10870fdddb5ad995f", 0x8d}, {&(0x7f0000000840)="33e4b6df5db728d2764226dfd2cd4c91a6f2f75a8c65f68891d8b2763e2a4dd2a1ac8eb3bacf0df808ac78cc34479f4c5c5e3677965a769785128816287b7c3e38a6c85799f6563c27a7b10396d59fe373df5e34717941cb81dc6b4614f0a0061757cb96c54029503642136bf50a0bd91470c165b0b8f62f2e800ae6dfbb289faf6a4f069e4d8a95a8369ee2814fbae0d4486544b84832224ab654520dc9d3bc945b1d394109385aaeba94d8f19f262b1e0771eb61d1da6e3e56344a7c92543da27eea52848575327a52a2878084a477ffedbd03ce314ff18e1c57ed5a9d8d0f1952448eaf76c3011235983a634b77c6fe3f6a289d", 0xf5}, {&(0x7f0000000940)="c505ae03bcab08ba430ab89ba1b78391623abd5f486cae9eb70b9d1d42642f569ac02270cf2e2a98a9c9bab8b5f0609a6a4b556dfc879a3275a8e1560db0c9bdc935d6857ed143308a4d9f3437f2f16605d1af4f64c5a518c7d5327acf643e4b0c41b5a40b6b6afd70b436a175f1c6ca2aa9c320e5778e13b1d5ec7cc877f01d47371ffa1997", 0x86}, {&(0x7f00000013c0)="80baa043b287faf094b97693cb3cf34a6c5b6b90c33eac15976ae087dc207801a6ce85a2f58f03fb45bf070189a8ac53115c87531524c8b2afb33af7a2e3b4e5e3105c7e373ae3c1bc98f881dc8be8e715c718963ba19c5806a0705ec854a82df07f3c25cf3727ce693a8bab87a022eac414ff5d84531972e709a251b238f0e53e2ef50aeecdf5fd70bb4d49e476025f3e6e28e296d12d05adddc6fb172c59182f1c7097dcb6f2d92c06cd91e8e064e737bb5ed4a36e604a76865c7f", 0xbc}, {&(0x7f0000001480)="e696d894805cfb9e8e392448b5e76e9bebc021b7c2d4d19a4fb68d5dc5dd0e6452d4a7626cac3a26b7638f9b37553de0ab24da1aa9a810a846cb1c3d85eb4ebf2132d87aa3e01c4d3dd0cd81b22e338c7695ca034c4a9d2e7aaf560eb054038ffc247f0ee78e29b091b03361d5e92af1eeb14abf3c3ee634dda66684bb698f8c504b5c7812397ae4a0534549920c361de3862893810321a8e7b7", 0x9a}], 0x9, &(0x7f0000000a80)}}, {{&(0x7f0000000ac0)=@in={0x2, 0x4e23, @multicast1}, 0x80, &(0x7f0000000d80)=[{&(0x7f0000000b40)="12bceb8dd22b44a1da8f91b16c89882dfa74cb14a53e11e47cb54e1a3db83f4e636e3789d68b9ea62ef9c9c669d6216bb45a0a77ab8c8345abd05f5a9b781f95fdc722a9b7f2b54c4d73be54d9344938a3b6a035123d1896e315cfbaaa990012e0a38e731d7322b2de3855ff8f19817f32accdfc786e", 0x76}, {&(0x7f0000000bc0)="edc4ab1a25a56570ca2cc0d2c3d81ffce6ec077a0855e5208d74b6b52aae963f8d252d3c88ecab4bf4d93103447cc249dc39300e9ce20c80f285046a", 0x3c}, {&(0x7f0000000c00)="29468b00fe3062750626b4813da7f0ce1bb36a0f4fc8bad9fc7eb59032f837b58d3220877158fc11f0680fc3076b7958a2dd1f024a33492fc03f88a74bd56ff9c9bf045341b9e3b75521ed5933c8b31facf196bd2e0050df1ddb14848428676c488c9228870c6dfb0c59a83d8de60992c0e7fb630adebe56a62e05fccaffdcd5e94164bed174b035db76c0ba2fa1bbb1c6b6b73e16c418cf004ccdc0f742885d83ec5640a394141d8109fb597e", 0xad}, {&(0x7f0000000cc0)="4c3768dc847d55946efedccf7c55cdd06c7210469eb544a087a3972ece52dce68a7137403e6f6348e35a1cb14648f553719e6e6d8b1e7f55d3dd9042e7041b3db2967b7fcbc99705fe8f8289a8c7458ef7e2179d7b8663e04bea1b230c2d11fcb3d84a", 0x63}, {&(0x7f0000000d40)="eaa67fbec255", 0x6}], 0x5, &(0x7f0000000e00)=[@txtime={{0x18, 0x1, 0x3d, 0x5}}, @timestamping={{0x14, 0x1, 0x25, 0x8}}, @timestamping={{0x14, 0x1, 0x25, 0x80000000}}, @txtime={{0x18, 0x1, 0x3d, 0x2}}, @timestamping={{0x14, 0x1, 0x25, 0x2}}, @txtime={{0x18, 0x1, 0x3d, 0x81}}, @timestamping={{0x14, 0x1, 0x25, 0x400}}, @mark={{0x14, 0x1, 0x24, 0x1}}], 0xc0}}, {{&(0x7f0000000ec0)=@pppol2tpv3in6={0x18, 0x1, {0x0, r0, 0x3, 0x2, 0x2, 0x1, {0xa, 0x4e21, 0xffff8001, @local, 0x20}}}, 0x80, &(0x7f0000000fc0)=[{&(0x7f0000000f40)}, {&(0x7f0000000f80)="d7c93a24315a683a50bd3a2b8cebdaa0ec3ce4", 0x13}], 0x2, &(0x7f0000001000)=[@mark={{0x14}}, @txtime={{0x18, 0x1, 0x3d, 0x3}}, @txtime={{0x18}}, @txtime={{0x18, 0x1, 0x3d, 0x3}}, @txtime={{0x18, 0x1, 0x3d, 0xced1}}], 0x78}}, {{&(0x7f0000001080)=@ax25={{0x3, @null, 0x5}, [@default, @default, @bcast, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}]}, 0x80, &(0x7f0000001140)=[{&(0x7f0000001100)="0604d4a4fb9543c630f348a1d45723", 0xf}], 0x1, &(0x7f0000001180)=[@timestamping={{0x14, 0x1, 0x25, 0x6}}, @txtime={{0x18, 0x1, 0x3d, 0x81}}, @timestamping={{0x14}}, @mark={{0x14, 0x1, 0x24, 0x81}}, @timestamping={{0x14, 0x1, 0x25, 0x2}}], 0x78}}], 0x4, 0x90) shutdown(r2, 0x1) openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x600280, 0x0) 15:35:09 executing program 5: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000440)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400020101000270008000f801", 0x17}, {0x0, 0x0, 0x1e0}], 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="f422a1543ada5005"]) 15:35:09 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) (fail_nth: 66) 15:35:09 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x28}}, 0x0) 15:35:09 executing program 6: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext}, 0x0, 0xffffdfffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000140)='net/route\x00') ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, {0x1}}, './file0\x00'}) perf_event_open(&(0x7f0000000000)={0x4, 0x80, 0x0, 0x7, 0x4, 0x1f, 0x0, 0x5ce9, 0x38, 0xd, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x9, 0x2, @perf_config_ext={0xffffffff80000000, 0x8905}, 0x4000, 0x80, 0x4, 0x9, 0xdd, 0x3c1, 0x40, 0x0, 0x6, 0x0, 0x80000001}, 0xffffffffffffffff, 0x8, r2, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) readv(r1, &(0x7f0000002a80)=[{&(0x7f0000000740)=""/216, 0xd8}, {0x0, 0x7fffef28}], 0x2) [ 1435.421708] FAT-fs (loop5): Unrecognized mount option "ô"¡T:ÚP" or missing value 15:35:09 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) [ 1435.450491] FAT-fs (loop5): Unrecognized mount option "ô"¡T:ÚP" or missing value [ 1435.517495] FAULT_INJECTION: forcing a failure. [ 1435.517495] name failslab, interval 1, probability 0, space 0, times 0 [ 1435.520251] CPU: 1 PID: 10744 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1435.521874] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1435.523763] Call Trace: [ 1435.524365] dump_stack+0x107/0x167 [ 1435.525142] should_fail.cold+0x5/0xa [ 1435.525974] ? create_object.isra.0+0x3a/0xa20 [ 1435.527030] should_failslab+0x5/0x20 [ 1435.527916] kmem_cache_alloc+0x5b/0x310 [ 1435.528755] create_object.isra.0+0x3a/0xa20 [ 1435.529654] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1435.530688] kmem_cache_alloc+0x159/0x310 [ 1435.531545] __kernfs_new_node+0xd4/0x860 [ 1435.532399] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1435.533382] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1435.534366] ? wait_for_completion_io+0x270/0x270 [ 1435.535346] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1435.536421] kernfs_new_node+0x93/0x120 [ 1435.537259] __kernfs_create_file+0x51/0x350 [ 1435.538174] sysfs_add_file_mode_ns+0x221/0x560 [ 1435.539174] internal_create_group+0x324/0xb30 [ 1435.540145] ? sysfs_remove_group+0x170/0x170 [ 1435.541091] ? kernfs_name_hash+0xe7/0x110 15:35:09 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) [ 1435.541988] ? kernfs_find_ns+0x256/0x380 [ 1435.542021] sysfs_slab_add+0x188/0x200 [ 1435.542046] __kmem_cache_create+0x3db/0x520 [ 1435.542076] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1435.542105] p9_client_create+0xc2b/0x11c0 [ 1435.542139] ? p9_client_flush+0x430/0x430 [ 1435.542161] ? trace_hardirqs_on+0x5b/0x180 [ 1435.542185] ? lockdep_init_map_type+0x2c7/0x780 [ 1435.542214] ? __raw_spin_lock_init+0x36/0x110 [ 1435.542244] v9fs_session_init+0x1dd/0x1680 [ 1435.542264] ? lock_release+0x680/0x680 [ 1435.542297] ? kmem_cache_alloc_trace+0x151/0x320 [ 1435.542315] ? v9fs_show_options+0x690/0x690 [ 1435.542351] ? trace_hardirqs_on+0x5b/0x180 [ 1435.542377] ? kasan_unpoison_shadow+0x33/0x50 [ 1435.542399] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1435.542428] v9fs_mount+0x79/0x8f0 [ 1435.542452] ? v9fs_write_inode+0x60/0x60 [ 1435.542474] legacy_get_tree+0x105/0x220 [ 1435.542496] vfs_get_tree+0x8e/0x300 [ 1435.542519] path_mount+0x13be/0x20b0 [ 1435.542544] ? strncpy_from_user+0x9e/0x470 [ 1435.542568] ? finish_automount+0xa90/0xa90 [ 1435.542589] ? getname_flags.part.0+0x1dd/0x4f0 [ 1435.542607] ? _copy_from_user+0xfb/0x1b0 [ 1435.542638] __x64_sys_mount+0x282/0x300 [ 1435.542661] ? copy_mnt_ns+0xa00/0xa00 [ 1435.542686] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1435.542704] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1435.542732] do_syscall_64+0x33/0x40 [ 1435.542750] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1435.542764] RIP: 0033:0x7f76b700cb19 [ 1435.542784] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1435.542795] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1435.542817] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1435.542829] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1435.542841] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1435.542852] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1435.542864] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 [ 1435.774135] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1435.776252] CPU: 1 PID: 10715 Comm: syz-executor.4 Not tainted 5.10.205 #1 [ 1435.777677] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1435.779357] Call Trace: [ 1435.779902] dump_stack+0x107/0x167 [ 1435.780743] sysfs_warn_dup.cold+0x1c/0x29 [ 1435.781774] sysfs_do_create_link_sd+0x122/0x140 [ 1435.782743] sysfs_create_link+0x5f/0xc0 [ 1435.783577] device_add+0x703/0x1c50 [ 1435.784423] ? devlink_add_symlinks+0x970/0x970 [ 1435.785386] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1435.786465] wiphy_register+0x1da6/0x2850 [ 1435.787326] ? wiphy_unregister+0xb90/0xb90 [ 1435.788224] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1435.789321] ieee80211_register_hw+0x23c5/0x38b0 [ 1435.790317] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1435.791402] ? trace_hardirqs_on+0x5b/0x180 [ 1435.792398] ? __hrtimer_init+0x12c/0x270 [ 1435.793416] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1435.794465] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1435.795405] ? hwsim_new_radio_nl+0x967/0x1080 [ 1435.796334] ? memcpy+0x39/0x60 [ 1435.797023] hwsim_new_radio_nl+0x991/0x1080 [ 1435.797926] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1435.799161] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1435.800722] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1435.802068] genl_family_rcv_msg_doit+0x22d/0x330 [ 1435.803053] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1435.804396] ? cap_capable+0x1cd/0x230 [ 1435.805213] ? ns_capable+0xe2/0x110 [ 1435.806078] genl_rcv_msg+0x33c/0x5a0 [ 1435.807072] ? genl_get_cmd+0x480/0x480 [ 1435.807877] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1435.808956] ? lock_release+0x680/0x680 [ 1435.809771] ? __lockdep_reset_lock+0x180/0x180 [ 1435.810723] netlink_rcv_skb+0x14b/0x430 [ 1435.811545] ? genl_get_cmd+0x480/0x480 [ 1435.812464] ? netlink_ack+0xab0/0xab0 [ 1435.813353] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1435.814496] ? __sanitizer_cov_trace_pc+0x4/0x60 [ 1435.815460] ? is_vmalloc_addr+0x7b/0xb0 [ 1435.816297] genl_rcv+0x24/0x40 [ 1435.816982] netlink_unicast+0x549/0x7f0 [ 1435.817819] ? netlink_attachskb+0x870/0x870 [ 1435.818713] ? __virt_addr_valid+0x128/0x350 [ 1435.819737] netlink_sendmsg+0x90f/0xdf0 [ 1435.820782] ? netlink_unicast+0x7f0/0x7f0 [ 1435.821678] ? netlink_unicast+0x7f0/0x7f0 [ 1435.822549] __sock_sendmsg+0x154/0x190 [ 1435.823356] ____sys_sendmsg+0x70d/0x870 [ 1435.824191] ? sock_write_iter+0x3d0/0x3d0 [ 1435.825064] ? do_recvmmsg+0x6d0/0x6d0 [ 1435.825949] ? perf_trace_lock+0xac/0x490 [ 1435.826880] ? __lockdep_reset_lock+0x180/0x180 [ 1435.828064] ___sys_sendmsg+0xf3/0x170 [ 1435.828855] ? sendmsg_copy_msghdr+0x160/0x160 [ 1435.829811] ? lock_downgrade+0x6d0/0x6d0 [ 1435.830669] ? __fget_files+0x395/0x4c0 [ 1435.831492] ? __fget_files+0x296/0x4c0 [ 1435.832319] ? __fget_light+0xea/0x290 [ 1435.833282] __sys_sendmsg+0xe5/0x1b0 [ 1435.834220] ? __sys_sendmsg_sock+0x40/0x40 [ 1435.835221] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1435.836287] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1435.837341] ? trace_hardirqs_on+0x5b/0x180 [ 1435.838239] do_syscall_64+0x33/0x40 [ 1435.839002] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1435.840086] RIP: 0033:0x7fc2fd383b19 [ 1435.840918] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1435.844918] RSP: 002b:00007fc2fa8f9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1435.846475] RAX: ffffffffffffffda RBX: 00007fc2fd496f60 RCX: 00007fc2fd383b19 [ 1435.848045] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1435.849699] RBP: 00007fc2fd3ddf6d R08: 0000000000000000 R09: 0000000000000000 [ 1435.851142] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1435.852596] R13: 00007ffc59a8b65f R14: 00007fc2fa8f9300 R15: 0000000000022000 [ 1435.965623] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1435.967037] CPU: 0 PID: 10710 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1435.968189] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1435.969561] Call Trace: [ 1435.970001] dump_stack+0x107/0x167 [ 1435.970620] sysfs_warn_dup.cold+0x1c/0x29 [ 1435.971328] sysfs_do_create_link_sd+0x122/0x140 [ 1435.972118] sysfs_create_link+0x5f/0xc0 [ 1435.972798] device_add+0x703/0x1c50 [ 1435.973450] ? devlink_add_symlinks+0x970/0x970 [ 1435.974223] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1435.975094] wiphy_register+0x1da6/0x2850 [ 1435.975803] ? wiphy_unregister+0xb90/0xb90 [ 1435.976538] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1435.977439] ieee80211_register_hw+0x23c5/0x38b0 [ 1435.978247] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1435.979052] ? net_generic+0xdb/0x2b0 [ 1435.979707] ? lockdep_init_map_type+0x2c7/0x780 [ 1435.980502] ? memset+0x20/0x50 [ 1435.981103] ? __hrtimer_init+0x12c/0x270 [ 1435.981846] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1435.982700] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1435.983475] ? hwsim_new_radio_nl+0x967/0x1080 [ 1435.984238] ? memcpy+0x39/0x60 [ 1435.984798] hwsim_new_radio_nl+0x991/0x1080 [ 1435.985546] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1435.986470] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1435.987555] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1435.988627] genl_family_rcv_msg_doit+0x22d/0x330 [ 1435.989433] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1435.990511] ? cap_capable+0x1cd/0x230 [ 1435.991168] ? ns_capable+0xe2/0x110 [ 1435.991789] genl_rcv_msg+0x33c/0x5a0 [ 1435.992416] ? genl_get_cmd+0x480/0x480 [ 1435.993095] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1435.994032] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1435.994929] ? netlink_rcv_skb+0x2b5/0x430 [ 1435.995664] netlink_rcv_skb+0x14b/0x430 [ 1435.996365] ? genl_get_cmd+0x480/0x480 [ 1435.997064] ? netlink_ack+0xab0/0xab0 [ 1435.997748] ? genl_rcv+0x9/0x40 [ 1435.998337] genl_rcv+0x24/0x40 [ 1435.998904] netlink_unicast+0x549/0x7f0 [ 1435.999609] ? netlink_attachskb+0x870/0x870 [ 1436.000381] netlink_sendmsg+0x90f/0xdf0 [ 1436.001111] ? netlink_unicast+0x7f0/0x7f0 [ 1436.001853] ? netlink_unicast+0x7f0/0x7f0 [ 1436.002582] __sock_sendmsg+0x154/0x190 [ 1436.003271] ____sys_sendmsg+0x70d/0x870 [ 1436.003972] ? sock_write_iter+0x3d0/0x3d0 [ 1436.004697] ? do_recvmmsg+0x6d0/0x6d0 [ 1436.005376] ? perf_trace_lock+0xac/0x490 [ 1436.006096] ? __lockdep_reset_lock+0x180/0x180 [ 1436.006907] ___sys_sendmsg+0xf3/0x170 [ 1436.007581] ? sendmsg_copy_msghdr+0x160/0x160 [ 1436.008373] ? lock_downgrade+0x6d0/0x6d0 [ 1436.009117] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1436.010041] ? trace_hardirqs_on+0x5b/0x180 [ 1436.010795] ? __fget_files+0x296/0x4c0 [ 1436.011492] ? __fget_light+0xea/0x290 [ 1436.012166] __sys_sendmsg+0xe5/0x1b0 [ 1436.012818] ? __sys_sendmsg_sock+0x40/0x40 [ 1436.013596] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1436.014485] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1436.015356] ? trace_hardirqs_on+0x5b/0x180 [ 1436.016098] do_syscall_64+0x33/0x40 [ 1436.016730] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1436.017614] RIP: 0033:0x7eff88fa0b19 [ 1436.018255] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1436.021374] RSP: 002b:00007eff86516188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1436.022670] RAX: ffffffffffffffda RBX: 00007eff890b3f60 RCX: 00007eff88fa0b19 [ 1436.023878] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1436.025101] RBP: 00007eff88ffaf6d R08: 0000000000000000 R09: 0000000000000000 [ 1436.026322] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1436.027533] R13: 00007ffe20cbc2ff R14: 00007eff86516300 R15: 0000000000022000 [ 1436.086118] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1436.088149] CPU: 0 PID: 10750 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1436.089409] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1436.090768] Call Trace: [ 1436.091207] dump_stack+0x107/0x167 [ 1436.091814] sysfs_warn_dup.cold+0x1c/0x29 [ 1436.092512] sysfs_do_create_link_sd+0x122/0x140 [ 1436.093306] sysfs_create_link+0x5f/0xc0 [ 1436.093982] device_add+0x703/0x1c50 [ 1436.094606] ? devlink_add_symlinks+0x970/0x970 [ 1436.095376] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1436.096249] wiphy_register+0x1da6/0x2850 [ 1436.096970] ? wiphy_unregister+0xb90/0xb90 [ 1436.097695] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1436.098573] ieee80211_register_hw+0x23c5/0x38b0 [ 1436.099400] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1436.100196] ? net_generic+0xdb/0x2b0 [ 1436.100828] ? __mutex_init+0xac/0x120 [ 1436.101476] ? memset+0x20/0x50 [ 1436.102018] ? __hrtimer_init+0x12c/0x270 [ 1436.102698] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1436.103534] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1436.104292] ? hwsim_new_radio_nl+0x967/0x1080 [ 1436.105050] ? memcpy+0x39/0x60 [ 1436.105598] hwsim_new_radio_nl+0x991/0x1080 [ 1436.106324] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1436.107188] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1436.108266] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1436.109358] genl_family_rcv_msg_doit+0x22d/0x330 [ 1436.110159] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1436.111243] ? cap_capable+0x1cd/0x230 [ 1436.111929] ? ns_capable+0xe2/0x110 [ 1436.112568] genl_rcv_msg+0x33c/0x5a0 [ 1436.113200] ? genl_get_cmd+0x480/0x480 [ 1436.113847] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1436.114728] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1436.115581] ? netlink_rcv_skb+0x7b/0x430 [ 1436.116258] netlink_rcv_skb+0x14b/0x430 [ 1436.116931] ? genl_get_cmd+0x480/0x480 [ 1436.117571] ? netlink_ack+0xab0/0xab0 [ 1436.118210] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1436.118946] ? netlink_unicast+0x512/0x7f0 [ 1436.119663] genl_rcv+0x24/0x40 [ 1436.120198] netlink_unicast+0x549/0x7f0 [ 1436.120862] ? netlink_attachskb+0x870/0x870 [ 1436.121582] ? __virt_addr_valid+0x128/0x350 [ 1436.122305] netlink_sendmsg+0x90f/0xdf0 [ 1436.122982] ? netlink_unicast+0x7f0/0x7f0 [ 1436.123676] ? netlink_unicast+0x7f0/0x7f0 [ 1436.124364] __sock_sendmsg+0x154/0x190 [ 1436.125039] ____sys_sendmsg+0x70d/0x870 [ 1436.125699] ? sock_write_iter+0x3d0/0x3d0 [ 1436.126374] ? do_recvmmsg+0x6d0/0x6d0 [ 1436.127041] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1436.127887] ? trace_hardirqs_on+0x5b/0x180 [ 1436.128577] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1436.129469] ___sys_sendmsg+0xf3/0x170 [ 1436.130102] ? sendmsg_copy_msghdr+0x160/0x160 [ 1436.130845] ? lock_downgrade+0x6d0/0x6d0 [ 1436.131514] ? find_held_lock+0x2c/0x110 [ 1436.132183] ? clockevents_program_event+0x14b/0x360 [ 1436.133013] ? __fget_files+0x296/0x4c0 [ 1436.133670] ? __fget_light+0xea/0x290 [ 1436.134301] __sys_sendmsg+0xe5/0x1b0 [ 1436.134924] ? __sys_sendmsg_sock+0x40/0x40 [ 1436.135618] ? trace_hardirqs_on+0x5b/0x180 [ 1436.136339] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1436.137187] ? syscall_enter_from_user_mode+0x27/0x50 [ 1436.138014] do_syscall_64+0x33/0x40 [ 1436.138604] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1436.139419] RIP: 0033:0x7f07e63f4b19 [ 1436.140005] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1436.142912] RSP: 002b:00007f07e396a188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1436.144117] RAX: ffffffffffffffda RBX: 00007f07e6507f60 RCX: 00007f07e63f4b19 [ 1436.145262] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1436.146391] RBP: 00007f07e644ef6d R08: 0000000000000000 R09: 0000000000000000 [ 1436.147519] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1436.148646] R13: 00007fff1f25f23f R14: 00007f07e396a300 R15: 0000000000022000 [ 1436.206976] debugfs: Directory '€˜§°ÇÛ ”uòQÇC !' with parent 'ieee80211' already present! 15:35:24 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b\x00\x00\x00', @ANYRES32], 0x28}}, 0x0) 15:35:24 executing program 6: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext}, 0x0, 0xffffdfffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000140)='net/route\x00') ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r1, 0xc0189373, &(0x7f0000000080)={{0x1, 0x1, 0x18, r0, {0x1}}, './file0\x00'}) perf_event_open(&(0x7f0000000000)={0x4, 0x80, 0x0, 0x7, 0x4, 0x1f, 0x0, 0x5ce9, 0x38, 0xd, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x9, 0x2, @perf_config_ext={0xffffffff80000000, 0x8905}, 0x4000, 0x80, 0x4, 0x9, 0xdd, 0x3c1, 0x40, 0x0, 0x6, 0x0, 0x80000001}, 0xffffffffffffffff, 0x8, r2, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) readv(r1, &(0x7f0000002a80)=[{&(0x7f0000000740)=""/216, 0xd8}, {0x0, 0x7fffef28}], 0x2) 15:35:24 executing program 5: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:35:24 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:35:24 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) (fail_nth: 67) 15:35:24 executing program 4: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:35:25 executing program 0: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:35:25 executing program 2: r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000980)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) fstatfs(r1, &(0x7f0000000440)=""/246) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x1de) truncate(&(0x7f0000000300)='./file1\x00', 0xfff) r3 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x1000, 0x0, 0x0, 0x3, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendfile(r0, r2, &(0x7f00000002c0)=0x4, 0x5) openat$hpet(0xffffffffffffff9c, &(0x7f0000000280), 0x802, 0x0) r4 = getegid() keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, &(0x7f0000000080)='rxrpc_s\x00', &(0x7f0000000300)=@keyring) keyctl$chown(0x4, 0x0, 0xee01, r4) fsetxattr$system_posix_acl(0xffffffffffffffff, &(0x7f0000000040)='system.posix_acl_default\x00', &(0x7f0000000540)=ANY=[@ANYBLOB="020000000100010000000000040006000000000008000000", @ANYRES32=0x0, @ANYBLOB="08000400", @ANYRES32=r4, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="100002b910ce97d40a2c990000000000f6d9f576c244ef92d6150ccf5cfdee7aac4b375a68a19cbecf24121f9b33baa7a979a0d1fcb9f0887db338fc90462dcddf3ac39dc683274aa7642011bc7d838961f298702764f0fd39b89bf1c6641ccf51b1407ef599205367030680f752d58cf4701fd931a955ba6102c172512b82c7ef0441045e322b76331b38f03c342c74003274858851d3cebc3a4f6572866f137f31a1e6b2da57b76213688f8176"], 0x3c, 0x2) openat(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0xc000, 0x51) openat(0xffffffffffffffff, &(0x7f00000000c0)='./file1\x00', 0x0, 0x30) ioctl$FITRIM(r3, 0xc0185879, &(0x7f0000000140)={0xfffffffffffff0af, 0x7, 0x85}) sendfile(r1, r2, 0x0, 0x20d315) r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000340), 0x404200, 0x0) write(r5, &(0x7f0000000380)="da800b0b3ce2b0a2c2b264139d91ce90bbe90dae9bdcc6c011dc9f65a4b5e7ae0492e8f6106906f6dfd3079c8b3e6b3d56d3414043aeb3b179989029d7b019cb3bc416c6", 0x44) [ 1451.070404] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1451.071696] CPU: 1 PID: 10771 Comm: syz-executor.4 Not tainted 5.10.205 #1 [ 1451.072546] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1451.073604] Call Trace: [ 1451.073945] dump_stack+0x107/0x167 [ 1451.074421] sysfs_warn_dup.cold+0x1c/0x29 [ 1451.074963] sysfs_do_create_link_sd+0x122/0x140 [ 1451.075572] sysfs_create_link+0x5f/0xc0 [ 1451.076092] device_add+0x703/0x1c50 [ 1451.076555] ? devlink_add_symlinks+0x970/0x970 [ 1451.077136] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1451.077791] wiphy_register+0x1da6/0x2850 [ 1451.078328] ? wiphy_unregister+0xb90/0xb90 [ 1451.078898] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1451.079732] ieee80211_register_hw+0x23c5/0x38b0 [ 1451.080350] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1451.080951] ? net_generic+0xdb/0x2b0 [ 1451.081472] ? memset+0x20/0x50 [ 1451.081904] ? __hrtimer_init+0x12c/0x270 [ 1451.082432] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1451.083081] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1451.083679] ? hwsim_new_radio_nl+0x967/0x1080 [ 1451.084283] ? memcpy+0x39/0x60 [ 1451.084716] hwsim_new_radio_nl+0x991/0x1080 [ 1451.085286] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1451.085972] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1451.086779] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1451.087612] genl_family_rcv_msg_doit+0x22d/0x330 [ 1451.088234] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1451.089077] ? cap_capable+0x1cd/0x230 [ 1451.089592] ? ns_capable+0xe2/0x110 [ 1451.090061] genl_rcv_msg+0x33c/0x5a0 [ 1451.090551] ? genl_get_cmd+0x480/0x480 [ 1451.091062] ? lock_acquire+0x1b9/0x470 [ 1451.091549] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1451.092202] ? lock_release+0x680/0x680 [ 1451.092703] ? __lockdep_reset_lock+0x180/0x180 [ 1451.093307] netlink_rcv_skb+0x14b/0x430 [ 1451.093823] ? genl_get_cmd+0x480/0x480 [ 1451.094313] ? netlink_ack+0xab0/0xab0 [ 1451.094822] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1451.095386] ? is_vmalloc_addr+0x7b/0xb0 [ 1451.095898] genl_rcv+0x24/0x40 [ 1451.096321] netlink_unicast+0x549/0x7f0 [ 1451.096848] ? netlink_attachskb+0x870/0x870 [ 1451.097436] ? __sanitizer_cov_trace_pc+0x30/0x60 [ 1451.098033] netlink_sendmsg+0x90f/0xdf0 [ 1451.098539] ? netlink_unicast+0x7f0/0x7f0 [ 1451.099060] ? netlink_unicast+0x7f0/0x7f0 [ 1451.099594] ? netlink_unicast+0x7f0/0x7f0 [ 1451.100103] __sock_sendmsg+0x154/0x190 [ 1451.100589] ____sys_sendmsg+0x70d/0x870 [ 1451.101113] ? sock_write_iter+0x3d0/0x3d0 [ 1451.101632] ? do_recvmmsg+0x6d0/0x6d0 [ 1451.102106] ? perf_trace_lock+0xac/0x490 [ 1451.102616] ? __lockdep_reset_lock+0x180/0x180 [ 1451.103176] ___sys_sendmsg+0xf3/0x170 [ 1451.103635] ? sendmsg_copy_msghdr+0x160/0x160 [ 1451.104193] ? lock_downgrade+0x6d0/0x6d0 [ 1451.104696] ? find_held_lock+0x2c/0x110 [ 1451.105214] ? clockevents_program_event+0x14b/0x360 [ 1451.105835] ? __fget_files+0x296/0x4c0 [ 1451.106327] ? __fget_light+0xea/0x290 [ 1451.106820] __sys_sendmsg+0xe5/0x1b0 [ 1451.107283] ? __sys_sendmsg_sock+0x40/0x40 [ 1451.107826] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1451.108459] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1451.109084] ? trace_hardirqs_on+0x5b/0x180 [ 1451.109612] do_syscall_64+0x33/0x40 [ 1451.110065] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1451.110663] RIP: 0033:0x7fc2fd383b19 [ 1451.111099] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1451.113285] RSP: 002b:00007fc2fa8f9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1451.114206] RAX: ffffffffffffffda RBX: 00007fc2fd496f60 RCX: 00007fc2fd383b19 [ 1451.115077] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1451.115921] RBP: 00007fc2fd3ddf6d R08: 0000000000000000 R09: 0000000000000000 [ 1451.116771] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1451.117625] R13: 00007ffc59a8b65f R14: 00007fc2fa8f9300 R15: 0000000000022000 [ 1451.165202] FAULT_INJECTION: forcing a failure. [ 1451.165202] name failslab, interval 1, probability 0, space 0, times 0 [ 1451.167501] CPU: 0 PID: 10779 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1451.169039] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1451.170719] Call Trace: [ 1451.171252] dump_stack+0x107/0x167 [ 1451.171998] should_fail.cold+0x5/0xa [ 1451.172777] ? __kernfs_new_node+0xd4/0x860 [ 1451.173656] should_failslab+0x5/0x20 15:35:25 executing program 4: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) [ 1451.174423] kmem_cache_alloc+0x5b/0x310 [ 1451.175381] __kernfs_new_node+0xd4/0x860 [ 1451.176236] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1451.177222] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1451.178204] ? wait_for_completion_io+0x270/0x270 [ 1451.179186] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1451.180269] kernfs_new_node+0x93/0x120 [ 1451.181097] __kernfs_create_file+0x51/0x350 [ 1451.182000] sysfs_add_file_mode_ns+0x221/0x560 [ 1451.182955] internal_create_group+0x324/0xb30 [ 1451.183898] ? sysfs_remove_group+0x170/0x170 [ 1451.184805] ? kernfs_name_hash+0xe7/0x110 [ 1451.185683] ? kernfs_find_ns+0x256/0x380 [ 1451.186541] sysfs_slab_add+0x188/0x200 [ 1451.187363] __kmem_cache_create+0x3db/0x520 [ 1451.188266] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1451.189288] p9_client_create+0xc2b/0x11c0 [ 1451.190173] ? p9_client_flush+0x430/0x430 [ 1451.191038] ? trace_hardirqs_on+0x5b/0x180 [ 1451.191927] ? lockdep_init_map_type+0x2c7/0x780 [ 1451.192898] ? __raw_spin_lock_init+0x36/0x110 [ 1451.193856] v9fs_session_init+0x1dd/0x1680 [ 1451.194733] ? lock_release+0x680/0x680 [ 1451.195549] ? kmem_cache_alloc_trace+0x151/0x320 [ 1451.196538] ? v9fs_show_options+0x690/0x690 [ 1451.197449] ? trace_hardirqs_on+0x5b/0x180 [ 1451.198332] ? kasan_unpoison_shadow+0x33/0x50 [ 1451.199261] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1451.200295] v9fs_mount+0x79/0x8f0 [ 1451.201022] ? v9fs_write_inode+0x60/0x60 [ 1451.201868] legacy_get_tree+0x105/0x220 [ 1451.202693] vfs_get_tree+0x8e/0x300 [ 1451.203450] path_mount+0x13be/0x20b0 [ 1451.204233] ? strncpy_from_user+0x9e/0x470 [ 1451.205126] ? finish_automount+0xa90/0xa90 [ 1451.206006] ? getname_flags.part.0+0x1dd/0x4f0 [ 1451.206945] ? _copy_from_user+0xfb/0x1b0 [ 1451.207794] __x64_sys_mount+0x282/0x300 [ 1451.208644] ? copy_mnt_ns+0xa00/0xa00 [ 1451.209470] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1451.210547] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1451.211616] do_syscall_64+0x33/0x40 [ 1451.212386] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1451.213449] RIP: 0033:0x7f76b700cb19 [ 1451.214222] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1451.217958] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1451.219501] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1451.220951] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1451.222420] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1451.222432] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1451.222445] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 15:35:25 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b\x00\x00\x00'], 0x28}}, 0x0) [ 1451.229340] kmem_cache_create(9p-fcall-cache) failed with error -12 [ 1451.233271] CPU: 0 PID: 10779 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1451.234677] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1451.236353] Call Trace: [ 1451.236950] dump_stack+0x107/0x167 [ 1451.237713] kmem_cache_create_usercopy.cold+0x17/0x65 [ 1451.238784] p9_client_create+0xc2b/0x11c0 [ 1451.239651] ? p9_client_flush+0x430/0x430 [ 1451.240504] ? trace_hardirqs_on+0x5b/0x180 [ 1451.241393] ? lockdep_init_map_type+0x2c7/0x780 [ 1451.242357] ? __raw_spin_lock_init+0x36/0x110 [ 1451.243286] v9fs_session_init+0x1dd/0x1680 [ 1451.244157] ? lock_release+0x680/0x680 [ 1451.244968] ? kmem_cache_alloc_trace+0x151/0x320 [ 1451.245958] ? v9fs_show_options+0x690/0x690 [ 1451.246166] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1451.246862] ? trace_hardirqs_on+0x5b/0x180 [ 1451.246889] ? kasan_unpoison_shadow+0x33/0x50 [ 1451.249634] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1451.250691] v9fs_mount+0x79/0x8f0 [ 1451.251428] ? v9fs_write_inode+0x60/0x60 [ 1451.252283] legacy_get_tree+0x105/0x220 [ 1451.253135] vfs_get_tree+0x8e/0x300 [ 1451.253906] path_mount+0x13be/0x20b0 [ 1451.254698] ? strncpy_from_user+0x9e/0x470 [ 1451.255585] ? finish_automount+0xa90/0xa90 [ 1451.256473] ? getname_flags.part.0+0x1dd/0x4f0 [ 1451.257434] ? _copy_from_user+0xfb/0x1b0 [ 1451.258301] __x64_sys_mount+0x282/0x300 [ 1451.259142] ? copy_mnt_ns+0xa00/0xa00 [ 1451.259948] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1451.261034] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1451.262119] do_syscall_64+0x33/0x40 [ 1451.262887] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1451.263940] RIP: 0033:0x7f76b700cb19 [ 1451.264705] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1451.268491] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1451.270063] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1451.271531] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1451.272994] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1451.274476] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1451.275945] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 [ 1451.277447] CPU: 1 PID: 10775 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 1451.278281] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1451.279242] Call Trace: [ 1451.279559] dump_stack+0x107/0x167 [ 1451.279990] sysfs_warn_dup.cold+0x1c/0x29 [ 1451.280464] sysfs_do_create_link_sd+0x122/0x140 [ 1451.280987] sysfs_create_link+0x5f/0xc0 [ 1451.281467] device_add+0x703/0x1c50 [ 1451.281879] ? devlink_add_symlinks+0x970/0x970 [ 1451.282390] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1451.282977] wiphy_register+0x1da6/0x2850 [ 1451.283438] ? wiphy_unregister+0xb90/0xb90 [ 1451.283929] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1451.284514] ieee80211_register_hw+0x23c5/0x38b0 [ 1451.285072] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1451.285611] ? net_generic+0xdb/0x2b0 [ 1451.286035] ? __mutex_init+0xac/0x120 [ 1451.286464] ? memset+0x20/0x50 [ 1451.286837] ? __hrtimer_init+0x12c/0x270 [ 1451.287299] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1451.287865] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1451.288378] ? hwsim_new_radio_nl+0x967/0x1080 [ 1451.288884] ? memcpy+0x39/0x60 [ 1451.289266] hwsim_new_radio_nl+0x991/0x1080 [ 1451.289760] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1451.290394] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1451.291173] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1451.291892] genl_family_rcv_msg_doit+0x22d/0x330 [ 1451.292460] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1451.293195] ? cap_capable+0x1cd/0x230 [ 1451.293657] ? ns_capable+0xe2/0x110 [ 1451.294100] genl_rcv_msg+0x33c/0x5a0 [ 1451.294522] ? genl_get_cmd+0x480/0x480 [ 1451.294991] ? lock_acquire+0x1b9/0x470 [ 1451.295426] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1451.296054] ? lock_release+0x680/0x680 [ 1451.296496] ? __lockdep_reset_lock+0x180/0x180 [ 1451.297033] netlink_rcv_skb+0x14b/0x430 [ 1451.297484] ? genl_get_cmd+0x480/0x480 [ 1451.297938] ? netlink_ack+0xab0/0xab0 [ 1451.298369] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1451.298904] genl_rcv+0x24/0x40 [ 1451.299265] netlink_unicast+0x549/0x7f0 [ 1451.299751] ? netlink_attachskb+0x870/0x870 [ 1451.300231] ? __virt_addr_valid+0x128/0x350 [ 1451.300742] netlink_sendmsg+0x90f/0xdf0 [ 1451.301204] ? netlink_unicast+0x7f0/0x7f0 [ 1451.301694] ? netlink_unicast+0x7f0/0x7f0 [ 1451.302236] ? __sock_sendmsg+0x146/0x190 [ 1451.302810] ? netlink_unicast+0x7f0/0x7f0 [ 1451.303275] __sock_sendmsg+0x154/0x190 [ 1451.303737] ____sys_sendmsg+0x70d/0x870 [ 1451.304182] ? sock_write_iter+0x3d0/0x3d0 [ 1451.304667] ? do_recvmmsg+0x6d0/0x6d0 [ 1451.305103] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1451.305718] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1451.306306] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1451.306941] ___sys_sendmsg+0xf3/0x170 [ 1451.307366] ? sendmsg_copy_msghdr+0x160/0x160 [ 1451.307898] ? lock_downgrade+0x6d0/0x6d0 [ 1451.308346] ? find_held_lock+0x2c/0x110 [ 1451.308833] ? clockevents_program_event+0x14b/0x360 [ 1451.309412] ? __fget_files+0x296/0x4c0 [ 1451.309875] ? __fget_light+0xea/0x290 [ 1451.310312] __sys_sendmsg+0xe5/0x1b0 [ 1451.310767] ? __sys_sendmsg_sock+0x40/0x40 [ 1451.311259] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1451.311870] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1451.312431] ? trace_hardirqs_on+0x5b/0x180 [ 1451.312940] do_syscall_64+0x33/0x40 [ 1451.313348] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1451.313943] RIP: 0033:0x7f2e008a0b19 [ 1451.314348] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1451.316501] RSP: 002b:00007f2dfde16188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1451.317321] RAX: ffffffffffffffda RBX: 00007f2e009b3f60 RCX: 00007f2e008a0b19 [ 1451.318150] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1451.318980] RBP: 00007f2e008faf6d R08: 0000000000000000 R09: 0000000000000000 [ 1451.319815] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1451.320653] R13: 00007ffc98392b5f R14: 00007f2dfde16300 R15: 0000000000022000 15:35:25 executing program 6: syz_usb_connect$uac1(0x6, 0xac, &(0x7f0000000200)={{0x12, 0x1, 0x250, 0x0, 0x0, 0x0, 0x20, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x9a, 0x3, 0x1, 0x1, 0x10, 0x1, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0xfffc, 0x1}, [@mixer_unit={0x6, 0x24, 0x4, 0x2, 0x7, "eb"}, @selector_unit={0xa, 0x24, 0x5, 0x4, 0x7, "788c947047"}, @input_terminal={0xc, 0x24, 0x2, 0x6, 0x101, 0x1, 0x1, 0x4, 0x2, 0x80}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_i_discrete={0x11, 0x24, 0x2, 0x1, 0x80, 0x2, 0x81, 0x0, "fabcd901cd168b2e28"}]}, {{0x9, 0x5, 0x1, 0x9, 0x200, 0x0, 0x0, 0x53, {0x7, 0x25, 0x1, 0x0, 0x3, 0x2}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@as_header={0x7, 0x24, 0x1, 0x1, 0x23, 0x1}, @as_header={0x7, 0x24, 0x1, 0x81, 0x80}]}, {{0x9, 0x5, 0x82, 0x9, 0x10, 0x7, 0x3, 0x19, {0x7, 0x25, 0x1, 0x3, 0x40, 0x81}}}}}}}]}}, &(0x7f0000000580)={0xa, &(0x7f0000000080)={0xa, 0x6, 0x200, 0x80, 0x6, 0x81, 0x8, 0xc4}, 0x11, &(0x7f00000000c0)={0x5, 0xf, 0x11, 0x1, [@ssp_cap={0xc, 0x10, 0xa, 0x1f, 0x0, 0x1, 0x11000, 0x2}]}, 0x8, [{0x4, &(0x7f0000000300)=@lang_id={0x4, 0x3, 0x414}}, {0x5f, &(0x7f0000000340)=@string={0x5f, 0x3, "1d581bc3c07db9de57b616eef95db55b764afc5a186c9a65f2c65bfa85d34c6a980598c4af6548b1da2deb01f4cb1006ebde9d03f8f1b865433201b33625cc48b02c1b18c8237a18ceb2a4cc9317736b9bd6986ae24a2853d66102be11"}}, {0x65, &(0x7f00000003c0)=@string={0x65, 0x3, "36fba8ea82038bc706d8cdf07fc677315dd6cec3622ed8f141ba685a39e1f8f1ef14d6583b0d0241b30bbd4419279f574c49f42d4149980ec1185ef42bd0228b07fba38b2a744534cee4bea523b62fe1060f14b3d2f3cd3b26c4914694a70d3b2fefd5"}}, {0x4, &(0x7f0000000440)=@lang_id={0x4, 0x3, 0x1004}}, {0x4, &(0x7f0000000480)=@lang_id={0x4, 0x3, 0x2c63}}, {0x4, &(0x7f00000004c0)=@lang_id={0x4, 0x3, 0x1c0a}}, {0x4, &(0x7f0000000500)=@lang_id={0x4, 0x3, 0x445}}, {0x4, &(0x7f0000000540)=@lang_id={0x4, 0x3, 0x3401}}]}) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x20, 0x0, 0x0) r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000600), 0xc0040, 0x0) r1 = syz_io_uring_setup(0x132, &(0x7f0000000180)={0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, r0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000040)=0x0, &(0x7f0000000140)=0x0) accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x4007, @fd_index, 0x0, 0x0, 0x0, 0x10}, 0x0) r4 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0) bind$bt_l2cap(r5, &(0x7f0000000040)={0x1f, 0x0, @none}, 0xe) listen(r5, 0x0) accept4(r5, 0x0, 0x0, 0x0) fsconfig$FSCONFIG_SET_FD(0xffffffffffffffff, 0x5, &(0x7f00000002c0)=')\x00', 0x0, 0xffffffffffffffff) syz_io_uring_submit(r4, r3, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0) 15:35:25 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) (fail_nth: 68) [ 1451.388283] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1451.389245] CPU: 1 PID: 10772 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1451.390010] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1451.390901] Call Trace: [ 1451.391193] dump_stack+0x107/0x167 [ 1451.391593] sysfs_warn_dup.cold+0x1c/0x29 [ 1451.392054] sysfs_do_create_link_sd+0x122/0x140 [ 1451.392578] sysfs_create_link+0x5f/0xc0 [ 1451.393019] device_add+0x703/0x1c50 [ 1451.393431] ? devlink_add_symlinks+0x970/0x970 [ 1451.393940] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1451.394506] wiphy_register+0x1da6/0x2850 [ 1451.394967] ? wiphy_unregister+0xb90/0xb90 [ 1451.395451] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1451.396033] ieee80211_register_hw+0x23c5/0x38b0 [ 1451.396572] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1451.397112] ? net_generic+0xdb/0x2b0 [ 1451.397545] ? lockdep_init_map_type+0x2c7/0x780 [ 1451.398055] ? mac80211_hwsim_new_radio+0x170e/0x4250 [ 1451.398622] ? memset+0x20/0x50 [ 1451.398984] ? __hrtimer_init+0x12c/0x270 [ 1451.399437] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1451.399997] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1451.400530] ? hwsim_new_radio_nl+0x967/0x1080 [ 1451.401025] ? memcpy+0x39/0x60 [ 1451.401416] hwsim_new_radio_nl+0x991/0x1080 [ 1451.401907] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1451.402491] ? trace_hardirqs_on+0x5b/0x180 [ 1451.402970] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1451.403556] genl_family_rcv_msg_doit+0x22d/0x330 [ 1451.404081] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1451.404844] genl_rcv_msg+0x33c/0x5a0 [ 1451.405266] ? genl_get_cmd+0x480/0x480 [ 1451.405723] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1451.406307] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1451.406910] ? netlink_rcv_skb+0x7b/0x430 [ 1451.407350] netlink_rcv_skb+0x14b/0x430 [ 1451.407815] ? genl_get_cmd+0x480/0x480 [ 1451.408242] ? netlink_ack+0xab0/0xab0 [ 1451.408703] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1451.409218] genl_rcv+0x24/0x40 [ 1451.409593] netlink_unicast+0x549/0x7f0 [ 1451.410041] ? netlink_attachskb+0x870/0x870 [ 1451.410546] ? write_comp_data+0x2f/0x80 [ 1451.410998] netlink_sendmsg+0x90f/0xdf0 [ 1451.411462] ? netlink_unicast+0x7f0/0x7f0 [ 1451.411928] ? netlink_unicast+0x7f0/0x7f0 [ 1451.412412] __sock_sendmsg+0x154/0x190 [ 1451.412843] ____sys_sendmsg+0x70d/0x870 [ 1451.413312] ? sock_write_iter+0x3d0/0x3d0 [ 1451.413772] ? do_recvmmsg+0x6d0/0x6d0 [ 1451.414211] ? perf_trace_lock+0xac/0x490 [ 1451.414661] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1451.415271] ? __lockdep_reset_lock+0x180/0x180 [ 1451.415788] ___sys_sendmsg+0xf3/0x170 [ 1451.416231] ? sendmsg_copy_msghdr+0x160/0x160 [ 1451.416735] ? lock_downgrade+0x6d0/0x6d0 [ 1451.417236] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1451.417806] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1451.418415] ? trace_hardirqs_on+0x5b/0x180 [ 1451.418891] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1451.419517] ? __fget_light+0xea/0x290 [ 1451.419946] ? __sanitizer_cov_trace_pc+0x30/0x60 [ 1451.420489] ? __fget_light+0xea/0x290 [ 1451.420923] __sys_sendmsg+0xe5/0x1b0 [ 1451.421360] ? __sys_sendmsg_sock+0x40/0x40 [ 1451.421833] ? trace_hardirqs_on+0x5b/0x180 [ 1451.422343] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1451.422905] ? syscall_enter_from_user_mode+0x27/0x50 [ 1451.423483] do_syscall_64+0x33/0x40 [ 1451.423894] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1451.424481] RIP: 0033:0x7eff88fa0b19 [ 1451.424896] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1451.426987] RSP: 002b:00007eff86516188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1451.427852] RAX: ffffffffffffffda RBX: 00007eff890b3f60 RCX: 00007eff88fa0b19 [ 1451.428651] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1451.429460] RBP: 00007eff88ffaf6d R08: 0000000000000000 R09: 0000000000000000 [ 1451.430269] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1451.431061] R13: 00007ffe20cbc2ff R14: 00007eff86516300 R15: 0000000000022000 15:35:25 executing program 5: preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x2) r0 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x62) r2 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) fallocate(r2, 0x0, 0x0, 0x8800000) lseek(0xffffffffffffffff, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x20) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0) r3 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) name_to_handle_at(r3, &(0x7f0000000400)='./file0\x00', &(0x7f0000000440)=ANY=[@ANYBLOB="0000004e0000000800000000000000020000000000000006000000faffffffffffffff"], &(0x7f0000000480), 0x1c00) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc0189379, &(0x7f0000000040)={{0x1, 0x1, 0x18, r3}, './file0\x00'}) faccessat2(0xffffffffffffffff, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x1a340, 0x100) ioctl$LOOP_CTL_REMOVE(0xffffffffffffffff, 0x4c81, 0x0) r4 = fsmount(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = openat(r4, &(0x7f0000000000)='/proc/self/exe\x00', 0x4840, 0x2d) sendfile(r1, r5, 0x0, 0x100000001) 15:35:25 executing program 2: r0 = syz_mount_image$vfat(&(0x7f0000000680), 0x0, 0x0, 0x1, &(0x7f0000001840)=[{&(0x7f0000000700)="ed", 0x1}], 0x80041, &(0x7f0000000040)=ANY=[@ANYBLOB="00a687819955b135aee787d9166951bb88e460799a3e6f25b11865e162ac8be6bbf6200bfebe2872f8408a79f9c1b5400e4bf9e3851a1c25399540abb0fb06b0fbd23de41a3d29035960e64607e02980c569f2af72eb6c2fbdb2f62f0442fb809282e7e545b1e30f6d924febf18cd7049312da407e367c65556e9d4b7a09df35c1fe6f8b424cdfdf00000000000000"]) openat(r0, &(0x7f0000000000)='./file0\x00', 0x400000, 0x0) [ 1451.445042] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1451.446730] CPU: 1 PID: 10778 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1451.447466] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1451.448648] Call Trace: [ 1451.448976] dump_stack+0x107/0x167 [ 1451.449382] sysfs_warn_dup.cold+0x1c/0x29 [ 1451.449848] sysfs_do_create_link_sd+0x122/0x140 [ 1451.450365] sysfs_create_link+0x5f/0xc0 [ 1451.450800] device_add+0x703/0x1c50 [ 1451.451206] ? devlink_add_symlinks+0x970/0x970 [ 1451.451711] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1451.452284] wiphy_register+0x1da6/0x2850 [ 1451.452748] ? wiphy_unregister+0xb90/0xb90 [ 1451.453233] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1451.453818] ieee80211_register_hw+0x23c5/0x38b0 [ 1451.454357] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1451.454889] ? net_generic+0xdb/0x2b0 [ 1451.455335] ? lockdep_init_map_type+0x2c7/0x780 [ 1451.455868] ? memset+0x20/0x50 [ 1451.456234] ? __hrtimer_init+0x12c/0x270 [ 1451.456708] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1451.457298] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1451.457809] ? hwsim_new_radio_nl+0x967/0x1080 [ 1451.458337] ? memcpy+0x39/0x60 [ 1451.458712] hwsim_new_radio_nl+0x991/0x1080 [ 1451.459208] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1451.459801] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1451.460539] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1451.461278] genl_family_rcv_msg_doit+0x22d/0x330 [ 1451.461959] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1451.462789] ? cap_capable+0x1cd/0x230 [ 1451.463358] ? ns_capable+0xe2/0x110 [ 1451.463846] genl_rcv_msg+0x33c/0x5a0 [ 1451.464282] ? genl_get_cmd+0x480/0x480 [ 1451.464733] ? lock_acquire+0x1b9/0x470 [ 1451.465192] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1451.465777] ? lock_release+0x680/0x680 [ 1451.466221] ? __lockdep_reset_lock+0x180/0x180 [ 1451.466743] netlink_rcv_skb+0x14b/0x430 [ 1451.467197] ? genl_get_cmd+0x480/0x480 [ 1451.467635] ? netlink_ack+0xab0/0xab0 [ 1451.468082] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1451.468590] ? is_vmalloc_addr+0x7b/0xb0 [ 1451.469046] genl_rcv+0x24/0x40 [ 1451.469425] netlink_unicast+0x549/0x7f0 [ 1451.469884] ? netlink_attachskb+0x870/0x870 [ 1451.470370] ? __virt_addr_valid+0x128/0x350 [ 1451.470874] netlink_sendmsg+0x90f/0xdf0 [ 1451.471343] ? netlink_unicast+0x7f0/0x7f0 [ 1451.471829] ? netlink_unicast+0x7f0/0x7f0 [ 1451.472299] __sock_sendmsg+0x154/0x190 [ 1451.472753] ____sys_sendmsg+0x70d/0x870 [ 1451.473216] ? sock_write_iter+0x3d0/0x3d0 [ 1451.473694] ? do_recvmmsg+0x6d0/0x6d0 [ 1451.474138] ? perf_trace_lock+0xac/0x490 [ 1451.474613] ? __lockdep_reset_lock+0x180/0x180 [ 1451.475211] ___sys_sendmsg+0xf3/0x170 [ 1451.475745] ? sendmsg_copy_msghdr+0x160/0x160 [ 1451.476360] ? lock_downgrade+0x6d0/0x6d0 [ 1451.476965] ? find_held_lock+0x2c/0x110 [ 1451.477501] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1451.478100] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1451.478701] ? trace_hardirqs_on+0x5b/0x180 [ 1451.479181] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1451.479793] ? sockfd_lookup_light+0xe1/0x180 [ 1451.480290] ? sockfd_lookup_light+0x108/0x180 [ 1451.480813] __sys_sendmsg+0xe5/0x1b0 [ 1451.481252] ? __sys_sendmsg_sock+0x40/0x40 [ 1451.481741] ? __do_sys_futex+0x2bb/0x480 [ 1451.482215] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1451.482799] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1451.483372] ? trace_hardirqs_on+0x5b/0x180 [ 1451.483854] do_syscall_64+0x33/0x40 [ 1451.484272] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1451.484835] RIP: 0033:0x7f07e63f4b19 [ 1451.485272] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1451.487485] RSP: 002b:00007f07e396a188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1451.488437] RAX: ffffffffffffffda RBX: 00007f07e6507f60 RCX: 00007f07e63f4b19 [ 1451.489524] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1451.490398] RBP: 00007f07e644ef6d R08: 0000000000000000 R09: 0000000000000000 [ 1451.491197] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1451.491993] R13: 00007fff1f25f23f R14: 00007f07e396a300 R15: 0000000000022000 15:35:25 executing program 3: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:35:25 executing program 0: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x0, 0x0, 0x0) syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000180)="eb3c906d6b66732e66617400020801000470000000f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f00000000c0)=ANY=[]) chdir(&(0x7f0000000040)='./file2\x00') openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x0, 0x0) ioctl$FITRIM(r1, 0xc0185879, &(0x7f0000000140)={0x0, 0x100000000}) r2 = perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x7, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000000}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000000c0)=@IORING_OP_FALLOCATE={0x11, 0x2, 0x0, @fd=r0, 0x7ff, 0x0, 0xfff}, 0x400) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000140)='net/packet\x00') dup3(r3, r2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @private0}, 0x1c) [ 1451.672912] FAULT_INJECTION: forcing a failure. [ 1451.672912] name failslab, interval 1, probability 0, space 0, times 0 [ 1451.675492] CPU: 0 PID: 10805 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1451.676930] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1451.678595] Call Trace: [ 1451.679138] dump_stack+0x107/0x167 [ 1451.679881] should_fail.cold+0x5/0xa [ 1451.680673] ? create_object.isra.0+0x3a/0xa20 [ 1451.681608] should_failslab+0x5/0x20 [ 1451.682373] kmem_cache_alloc+0x5b/0x310 [ 1451.683202] create_object.isra.0+0x3a/0xa20 [ 1451.684090] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1451.685126] kmem_cache_alloc+0x159/0x310 [ 1451.685970] __kernfs_new_node+0xd4/0x860 [ 1451.686810] ? kernfs_dop_revalidate+0x3a0/0x3a0 15:35:25 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x28}}, 0x0) [ 1451.687780] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1451.688868] ? wait_for_completion_io+0x270/0x270 [ 1451.689868] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1451.690960] kernfs_new_node+0x93/0x120 [ 1451.691767] __kernfs_create_file+0x51/0x350 [ 1451.692659] sysfs_add_file_mode_ns+0x221/0x560 [ 1451.693641] internal_create_group+0x324/0xb30 [ 1451.694591] ? sysfs_remove_group+0x170/0x170 [ 1451.695511] ? kernfs_name_hash+0xe7/0x110 [ 1451.696385] ? kernfs_find_ns+0x256/0x380 [ 1451.697260] sysfs_slab_add+0x188/0x200 [ 1451.698082] __kmem_cache_create+0x3db/0x520 [ 1451.698992] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1451.700023] p9_client_create+0xc2b/0x11c0 [ 1451.700897] ? p9_client_flush+0x430/0x430 [ 1451.700921] ? trace_hardirqs_on+0x5b/0x180 [ 1451.700945] ? lockdep_init_map_type+0x2c7/0x780 [ 1451.700974] ? __raw_spin_lock_init+0x36/0x110 [ 1451.704371] v9fs_session_init+0x1dd/0x1680 [ 1451.705256] ? lock_release+0x680/0x680 [ 1451.706075] ? kmem_cache_alloc_trace+0x151/0x320 [ 1451.707046] ? v9fs_show_options+0x690/0x690 [ 1451.707942] ? trace_hardirqs_on+0x5b/0x180 [ 1451.708817] ? kasan_unpoison_shadow+0x33/0x50 [ 1451.709746] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1451.710814] v9fs_mount+0x79/0x8f0 [ 1451.711486] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1451.711535] ? v9fs_write_inode+0x60/0x60 [ 1451.711559] legacy_get_tree+0x105/0x220 [ 1451.714146] vfs_get_tree+0x8e/0x300 [ 1451.714917] path_mount+0x13be/0x20b0 [ 1451.715708] ? strncpy_from_user+0x9e/0x470 [ 1451.716598] ? finish_automount+0xa90/0xa90 [ 1451.717498] ? getname_flags.part.0+0x1dd/0x4f0 [ 1451.718457] ? _copy_from_user+0xfb/0x1b0 [ 1451.719320] __x64_sys_mount+0x282/0x300 [ 1451.720159] ? copy_mnt_ns+0xa00/0xa00 [ 1451.720974] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1451.722068] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1451.723132] do_syscall_64+0x33/0x40 [ 1451.723914] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1451.724946] RIP: 0033:0x7f76b700cb19 [ 1451.725717] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1451.729494] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1451.731053] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1451.732513] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1451.733996] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1451.735456] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1451.736918] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 [ 1451.738432] CPU: 1 PID: 10793 Comm: syz-executor.4 Not tainted 5.10.205 #1 [ 1451.739235] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1451.740105] Call Trace: [ 1451.740394] dump_stack+0x107/0x167 [ 1451.740785] sysfs_warn_dup.cold+0x1c/0x29 [ 1451.741252] sysfs_do_create_link_sd+0x122/0x140 [ 1451.741756] sysfs_create_link+0x5f/0xc0 [ 1451.742193] device_add+0x703/0x1c50 [ 1451.742596] ? devlink_add_symlinks+0x970/0x970 [ 1451.743092] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1451.743652] wiphy_register+0x1da6/0x2850 [ 1451.744100] ? wiphy_unregister+0xb90/0xb90 [ 1451.744567] ? dev_printk+0xd0/0x108 [ 1451.744979] ? ieee80211_init_rate_ctrl_alg+0x11c/0x500 [ 1451.745548] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1451.746118] ieee80211_register_hw+0x23c5/0x38b0 [ 1451.746627] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1451.747138] ? net_generic+0xdb/0x2b0 [ 1451.747553] ? memset+0x20/0x50 [ 1451.747908] ? __hrtimer_init+0x12c/0x270 [ 1451.748350] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1451.748938] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1451.749475] ? hwsim_new_radio_nl+0x967/0x1080 [ 1451.750002] ? memcpy+0x39/0x60 [ 1451.750387] hwsim_new_radio_nl+0x991/0x1080 [ 1451.750903] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1451.751507] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1451.752263] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1451.753009] genl_family_rcv_msg_doit+0x22d/0x330 [ 1451.753575] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1451.754327] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1451.754946] ? trace_hardirqs_on+0x5b/0x180 [ 1451.755449] ? genl_rcv_msg+0x2c3/0x5a0 [ 1451.755898] genl_rcv_msg+0x33c/0x5a0 [ 1451.756333] ? genl_get_cmd+0x480/0x480 [ 1451.756793] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1451.757422] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1451.758038] ? netlink_rcv_skb+0x2b5/0x430 [ 1451.758541] netlink_rcv_skb+0x14b/0x430 [ 1451.759010] ? genl_get_cmd+0x480/0x480 [ 1451.759465] ? netlink_ack+0xab0/0xab0 [ 1451.759923] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1451.760444] ? netlink_skb_set_owner_r+0xd3/0x1f0 [ 1451.761007] genl_rcv+0x24/0x40 [ 1451.761391] netlink_unicast+0x549/0x7f0 [ 1451.761860] ? netlink_attachskb+0x870/0x870 [ 1451.762359] ? netlink_sendmsg+0x8c2/0xdf0 [ 1451.762845] ? netlink_sendmsg+0x8d0/0xdf0 [ 1451.763330] netlink_sendmsg+0x90f/0xdf0 [ 1451.763795] ? netlink_unicast+0x7f0/0x7f0 [ 1451.764297] ? netlink_unicast+0x7f0/0x7f0 [ 1451.764783] __sock_sendmsg+0x154/0x190 [ 1451.765248] ____sys_sendmsg+0x70d/0x870 [ 1451.765713] ? sock_write_iter+0x3d0/0x3d0 [ 1451.766192] ? do_recvmmsg+0x6d0/0x6d0 [ 1451.766640] ? perf_trace_lock+0xac/0x490 [ 1451.767116] ? __lockdep_reset_lock+0x180/0x180 [ 1451.767643] ___sys_sendmsg+0xf3/0x170 [ 1451.768087] ? sendmsg_copy_msghdr+0x160/0x160 [ 1451.768621] ? lock_downgrade+0x6d0/0x6d0 [ 1451.769117] ? find_held_lock+0x2c/0x110 [ 1451.769598] ? clockevents_program_event+0x14b/0x360 [ 1451.770192] ? __fget_files+0x296/0x4c0 [ 1451.770646] ? __fget_light+0xea/0x290 [ 1451.771092] __sys_sendmsg+0xe5/0x1b0 [ 1451.771521] ? __sys_sendmsg_sock+0x40/0x40 [ 1451.772016] ? trace_hardirqs_on+0x5b/0x180 [ 1451.772530] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1451.773121] ? syscall_enter_from_user_mode+0x27/0x50 [ 1451.773714] do_syscall_64+0x33/0x40 [ 1451.774136] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1451.774717] RIP: 0033:0x7fc2fd383b19 [ 1451.775147] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1451.777271] RSP: 002b:00007fc2fa8f9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1451.778152] RAX: ffffffffffffffda RBX: 00007fc2fd496f60 RCX: 00007fc2fd383b19 [ 1451.778963] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1451.779783] RBP: 00007fc2fd3ddf6d R08: 0000000000000000 R09: 0000000000000000 [ 1451.780594] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1451.781426] R13: 00007ffc59a8b65f R14: 00007fc2fa8f9300 R15: 0000000000022000 15:35:25 executing program 2: ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x0, 0x5, '`\x00\x00\x00\x00\x00\x00@\x00'}) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) r1 = syz_open_dev$tty20(0xc, 0x4, 0x1) flock(r1, 0x2) preadv(r1, &(0x7f00000005c0)=[{&(0x7f0000000100)}, {&(0x7f0000000140)=""/49, 0x31}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f0000000240)=""/215, 0xd7}, {&(0x7f0000000340)=""/60, 0x3c}, {&(0x7f0000000380)=""/114, 0x72}, {&(0x7f0000000480)=""/141, 0x8d}], 0x7, 0x8, 0xffff) io_uring_setup(0x0, &(0x7f00000001c0)={0x0, 0x0, 0x20, 0x0, 0x1cf}) r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) bind$packet(r2, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000180)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) ioctl$FIONREAD(r1, 0x541b, &(0x7f0000000080)) syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_READV=@pass_iovec={0x1, 0x2, 0x2007, @fd=r2, 0x7, &(0x7f0000000940)=[{&(0x7f00000000c0)=""/5, 0x5}, {&(0x7f0000000640)=""/133, 0x85}, {&(0x7f0000000100)=""/53, 0x35}, {&(0x7f0000000400)=""/13, 0xd}, {&(0x7f0000000540)=""/114, 0x72}, {&(0x7f0000000740)=""/224, 0xe0}, {&(0x7f0000000440)=""/63, 0x3f}, {&(0x7f0000000840)=""/218, 0xda}], 0x8, 0x1c}, 0xfffffff9) r3 = socket$inet(0x2, 0x5, 0xfffffffe) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x6}, 0x80}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x9) dup3(r3, r0, 0x0) [ 1451.837009] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue [ 1452.119425] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1452.120785] CPU: 1 PID: 10814 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1452.121850] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1452.122749] Call Trace: [ 1452.123037] dump_stack+0x107/0x167 [ 1452.123440] sysfs_warn_dup.cold+0x1c/0x29 [ 1452.123902] sysfs_do_create_link_sd+0x122/0x140 [ 1452.124406] sysfs_create_link+0x5f/0xc0 [ 1452.124852] device_add+0x703/0x1c50 [ 1452.125269] ? devlink_add_symlinks+0x970/0x970 [ 1452.125773] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1452.126335] wiphy_register+0x1da6/0x2850 [ 1452.126795] ? wiphy_unregister+0xb90/0xb90 [ 1452.127271] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1452.127844] ieee80211_register_hw+0x23c5/0x38b0 [ 1452.128378] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1452.128900] ? __hrtimer_init+0xd4/0x270 [ 1452.129350] ? __hrtimer_init+0xe3/0x270 [ 1452.129794] ? __sanitizer_cov_trace_pc+0x4/0x60 [ 1452.130313] ? __hrtimer_init+0x12c/0x270 [ 1452.130770] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1452.131325] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1452.131819] ? hwsim_new_radio_nl+0x967/0x1080 [ 1452.132317] ? memcpy+0x39/0x60 [ 1452.132677] hwsim_new_radio_nl+0x991/0x1080 [ 1452.133168] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1452.133751] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1452.134462] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1452.135168] genl_family_rcv_msg_doit+0x22d/0x330 [ 1452.135687] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1452.136406] ? cap_capable+0x1cd/0x230 [ 1452.136841] ? ns_capable+0xe2/0x110 [ 1452.137248] genl_rcv_msg+0x33c/0x5a0 [ 1452.137659] ? genl_get_cmd+0x480/0x480 [ 1452.138091] ? lock_acquire+0x1b9/0x470 [ 1452.138522] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1452.139095] ? lock_release+0x680/0x680 [ 1452.139528] netlink_rcv_skb+0x14b/0x430 [ 1452.139970] ? genl_get_cmd+0x480/0x480 [ 1452.140403] ? netlink_ack+0xab0/0xab0 [ 1452.140838] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1452.141337] ? netlink_unicast+0xc5/0x7f0 [ 1452.141783] genl_rcv+0x24/0x40 [ 1452.142140] netlink_unicast+0x549/0x7f0 [ 1452.142591] ? netlink_attachskb+0x870/0x870 [ 1452.143066] ? __sanitizer_cov_trace_pc+0x45/0x60 [ 1452.143591] netlink_sendmsg+0x90f/0xdf0 [ 1452.144034] ? netlink_unicast+0x7f0/0x7f0 [ 1452.144499] ? netlink_unicast+0x7f0/0x7f0 [ 1452.144959] __sock_sendmsg+0x154/0x190 [ 1452.145404] ____sys_sendmsg+0x70d/0x870 [ 1452.145844] ? sock_write_iter+0x3d0/0x3d0 [ 1452.146307] ? do_recvmmsg+0x6d0/0x6d0 [ 1452.146748] ___sys_sendmsg+0xf3/0x170 [ 1452.147174] ? sendmsg_copy_msghdr+0x160/0x160 [ 1452.147675] ? lock_downgrade+0x6d0/0x6d0 [ 1452.148123] ? __fget_files+0x315/0x4c0 [ 1452.148556] ? __fget_files+0x296/0x4c0 [ 1452.148994] ? __fget_light+0xea/0x290 [ 1452.149441] __sys_sendmsg+0xe5/0x1b0 [ 1452.149850] ? __sys_sendmsg_sock+0x40/0x40 [ 1452.150309] ? trace_hardirqs_on+0x5b/0x180 [ 1452.150789] ? __sys_sendmsg+0x1b0/0x1b0 [ 1452.151230] ? __x64_sys_sendmsg+0x1/0xb0 [ 1452.151685] do_syscall_64+0x33/0x40 [ 1452.152095] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1452.152650] RIP: 0033:0x7f07e63f4b19 [ 1452.153046] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1452.155020] RSP: 002b:00007f07e396a188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1452.155831] RAX: ffffffffffffffda RBX: 00007f07e6507f60 RCX: 00007f07e63f4b19 [ 1452.156597] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1452.157367] RBP: 00007f07e644ef6d R08: 0000000000000000 R09: 0000000000000000 [ 1452.158134] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1452.158907] R13: 00007fff1f25f23f R14: 00007f07e396a300 R15: 0000000000022000 15:35:43 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x28}}, 0x0) 15:35:43 executing program 6: syz_mount_image$nfs(&(0x7f0000000000), 0x0, 0x0, 0x0, &(0x7f0000004740), 0x2000040, &(0x7f0000000140)={[{}, {'nfs\x00'}, {'7d\xf5k\t\r2\xa6\a.\xbd\xb2\xa1\xcb\b\xa2\xd9\x85\x13\xf3\xe6\xaa\xd3`\xa2\x94\xed\t9I\xf7\x93\x82\xa3\xa0\x81\xc4t\xcf\xfdYi\xaf\xb4\xd4\xad\x00\xb7a\xd8\xecr\xc2\xcd\xedR\xf0\xff\xff\xff\x7f\x19\xdfo\x9eI\xd3F\xd1\x15\x14\x0e\xd0X>:\xe6U\xee\xd93(\x13*)L\xd6+OH\xc8\x7f\x89b\xd6\xa7\xcf\xda\xc5\x05\xa2d\xf8\xd8\xe4\xee\xf3\xe2\xe6%\x91@j\xbc)uA\xa9U\xdcC\x19\x98\xb8j\x14\xe2\xccUS\xfa\x9c\x9f\xd2|P?\x03F\xb6\xf5x*\x16\xb3\xee\'z-\xa0\x91\b\xcd\xa0I\xde\x8f\xa4\xf8\x00\xe0\xb7*\xd8\x13\x7f\xe3=\x01\xf2\x9e\x8eQ\xa0_\x84\x91\\\x84\x03\x8a\\\xd5C5V\xa7\xa1\xa1l[0\x16\xc3\x98\xff8\x86pH\xfe\x86\xf4\xbd\x13\xf1q\x82W\'\x81\xc8}\xf3\t\xb9\xd2\x88\xad\x8a6\x13\x1a\xcc\x0f'}], [{@defcontext={'defcontext', 0x3d, 'root'}}, {@euid_eq}]}) 15:35:43 executing program 5: ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000000)={0x2b2b, 0x8000043, 0x2, 0x0, 0x5, "60100d0010006319000000f9ff00"}) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) r1 = io_uring_setup(0x39c1, &(0x7f00000002c0)={0x0, 0xfffffffa, 0x2, 0x7, 0x1cf}) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) socket$inet6_udplite(0xa, 0x2, 0x88) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r4 = dup3(r3, r2, 0x0) ioctl$TIOCSPTLCK(r4, 0x5423, &(0x7f0000000000)) r5 = fsmount(r4, 0x1, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x7fff) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000440)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x3, 0x0, 0x1737, 0x0, &(0x7f0000000240)="542e875f9ca38f38d439f64dc73abafc1f3ea8e10d61a2ed3d77289e80ae0cc2878d76038dc7743bf817db1ef807d0b7d789642966a1be8a9e3b9e3b4707aebbf736e406989562bdd483da586324279b168b7b96706bada782bfb23214", 0x0, 0x0, 0x1, {0x1}}, 0x0) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000080)={0x0, @loopback}, &(0x7f00000000c0)=0xc) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x5d9201, 0x0) r6 = socket$inet(0x2, 0x800, 0x5) perf_event_open(&(0x7f0000001d80)={0x5, 0x80, 0xfd, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x2, 0x7f}, 0x4000, 0x3, 0x0, 0x9, 0x0, 0x0, 0x40}, 0x0, 0x4, r5, 0x2) dup3(r6, r0, 0x0) 15:35:43 executing program 0: perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$unix(0x1, 0x5, 0x0) bind$unix(r0, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x113100, 0x0) r2 = openat(r1, &(0x7f0000000040)='./file0\x00', 0x20000, 0xd) listen(r0, 0x0) shutdown(r2, 0x0) listen(r0, 0x0) r3 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x94, 0x1, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}, 0x10088, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = getpid() r5 = getpgid(0x0) r6 = epoll_create(0x1) recvmmsg(r1, &(0x7f0000000740)=[{{&(0x7f0000000200)=@un=@abs, 0x80, &(0x7f0000000480)=[{&(0x7f0000000280)=""/49, 0x31}, {&(0x7f00000002c0)=""/204, 0xcc}, {&(0x7f00000003c0)=""/179, 0xb3}], 0x3, &(0x7f00000004c0)=""/30, 0x1e}}, {{&(0x7f0000000500)=@l2tp={0x2, 0x0, @private}, 0x80, &(0x7f0000000700)=[{&(0x7f0000000580)=""/95, 0x5f}, {&(0x7f0000000600)=""/45, 0x2d}, {&(0x7f0000000640)=""/177, 0xb1}], 0x3}, 0x9}], 0x2, 0x1, &(0x7f00000007c0)) kcmp$KCMP_EPOLL_TFD(r4, r5, 0x7, r6, &(0x7f0000000040)={r6}) r7 = syz_io_uring_complete(0x0) perf_event_open(&(0x7f0000000800)={0x3, 0x80, 0xe1, 0x9, 0x3, 0x6, 0x0, 0x74158857, 0xa1000, 0x4, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x5, 0x4, @perf_config_ext={0x5, 0x3}, 0x42082, 0xffff, 0x42bd, 0x2, 0x105, 0x0, 0x401, 0x0, 0x0, 0x0, 0x10001}, 0x0, 0xb, r7, 0x0) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x6, 0x7f, 0xe7, 0x5, 0x0, 0x401, 0x48000, 0x11, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x7, @perf_bp, 0x2040, 0x5, 0x3ff, 0x2, 0x3, 0x8, 0x1, 0x0, 0xfff, 0x0, 0x4e77}, r4, 0x2, r3, 0x0) r8 = syz_open_dev$vcsu(&(0x7f00000001c0), 0x8, 0x80) perf_event_open(&(0x7f0000000140)={0x3, 0x80, 0x7, 0x6, 0x3, 0x1f, 0x0, 0x80, 0x2080, 0x8, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x1000, 0x101}, 0x100, 0x7fff, 0x8, 0xd, 0x3, 0x2, 0xedc3, 0x0, 0x1, 0x0, 0x100}, r4, 0x3, r8, 0x9) sendfile(r1, 0xffffffffffffffff, &(0x7f0000000100)=0x800, 0x2d) 15:35:43 executing program 3: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:35:43 executing program 2: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x4040004, 0x3, &(0x7f0000000200)=[{&(0x7f0000010000)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000000100)="ed4100000093b200dff4655fe0f4655fe0f4655f0000080000000400045539545cee", 0x22, 0x2100}], 0x1010809, &(0x7f0000000140)=ANY=[]) r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0) r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) umount2(&(0x7f00000000c0)='./file0\x00', 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000280)={'wlan1\x00', 0x0}) r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r7 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r7, 0x0, r6, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) sendmsg$DEVLINK_CMD_PORT_SET(r7, &(0x7f0000000440)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000400)={&(0x7f0000000300)={0x44, 0x0, 0x300, 0x70bd27, 0x25dfdbfd, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x3, 0x2}}, {0x6, 0x4, 0x1}}]}, 0x44}, 0x1, 0x0, 0x0, 0xc0c1}, 0x20008000) sendmsg$NL80211_CMD_JOIN_MESH(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)={0x54, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_MESH_SETUP={0x2c, 0x70, [@NL80211_MESH_SETUP_USERSPACE_AUTH={0x4}, @NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC={0x5}, @NL80211_MESH_SETUP_USERSPACE_MPM={0x4}, @NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC={0x5, 0x2, 0x1}, @NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL={0x5, 0x1, 0x1}, @NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC={0x5, 0x2, 0x1}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x8004}, 0x0) sendmsg$NL80211_CMD_SET_QOS_MAP(r0, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f00000001c0)={&(0x7f0000000140)={0x74, r1, 0x4, 0x70bd28, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r5}, @val={0xc, 0x99, {0x5, 0x4}}}}, [@NL80211_ATTR_QOS_MAP={0x1e, 0xc7, {[{0x0, 0xb9}, {0x20}, {0x0, 0x7}, {0x0, 0x7}, {0xf0, 0x1}, {0x9, 0x4}, {0x7f, 0x5}, {0xef, 0x7}, {0x0, 0x1}], "7e285227695baf47"}}, @NL80211_ATTR_QOS_MAP={0x16, 0xc7, {[{0x80}, {0xff, 0x1}, {0x8f, 0x7}, {0x3, 0x3}, {0x4, 0x2}], "b64bc4c97ec6211d"}}, @NL80211_ATTR_QOS_MAP={0x14, 0xc7, {[{0x4, 0x3}, {0x3, 0x4}, {0x4, 0x5}, {0x1, 0x6}], "5221bc45dcfdae78"}}]}, 0x74}, 0x1, 0x0, 0x0, 0x4000004}, 0x4008011) 15:35:43 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) (fail_nth: 69) 15:35:43 executing program 4: syz_emit_ethernet(0x15, &(0x7f0000000d80)=ANY=[@ANYBLOB="aaaaaaaaaaaa006c00"/21], 0x0) syz_emit_ethernet(0x3c, &(0x7f0000000080)={@multicast, @random="42b91a526c1c", @val={@val={0x9100, 0x6, 0x1, 0x4}, {0x8100, 0x0, 0x1, 0x3}}, {@x25={0x805, {0x0, 0x20, 0x0, "c2fe1eaae50ce488777bedd1bf967469e96b65348e6b69b0239107621f550c9235c4cc"}}}}, &(0x7f00000000c0)={0x1, 0x4, [0xa, 0xec2, 0x278, 0x426]}) write$tun(0xffffffffffffffff, &(0x7f0000000000)={@void, @void, @llc={@snap={0xaa, 0x1, "a4ad", "686bc0", 0x4305, "2a4c083d0a3fa7bee3ffbdfeac9e8c7e4f57c7144ddc1564c0fe9446459ef81b2c6642846a9bc20ccad77e86e7844ea1f465df216eafdbe5b8a53624b0af2b91d8bfc36b9d47e8bd5d14e597b7f678c56b3a0fede8"}}}, 0x5e) [ 1469.426858] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1469.427975] CPU: 1 PID: 10845 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1469.428837] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1469.429890] Call Trace: [ 1469.430219] dump_stack+0x107/0x167 [ 1469.430701] sysfs_warn_dup.cold+0x1c/0x29 [ 1469.431220] sysfs_do_create_link_sd+0x122/0x140 [ 1469.431813] sysfs_create_link+0x5f/0xc0 [ 1469.432313] device_add+0x703/0x1c50 [ 1469.432778] ? devlink_add_symlinks+0x970/0x970 [ 1469.433366] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1469.434018] wiphy_register+0x1da6/0x2850 [ 1469.434541] ? wiphy_unregister+0xb90/0xb90 [ 1469.435096] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1469.435761] ieee80211_register_hw+0x23c5/0x38b0 [ 1469.436370] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1469.436980] ? __memset+0x24/0x40 [ 1469.437432] ? __hrtimer_init+0x12c/0x270 [ 1469.437942] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1469.438569] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1469.439132] ? hwsim_new_radio_nl+0x967/0x1080 [ 1469.439694] ? memcpy+0x39/0x60 [ 1469.440112] hwsim_new_radio_nl+0x991/0x1080 [ 1469.440657] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1469.441329] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1469.442145] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1469.442956] genl_family_rcv_msg_doit+0x22d/0x330 [ 1469.443560] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1469.444488] ? cap_capable+0x1cd/0x230 [ 1469.444983] ? ns_capable+0xe2/0x110 [ 1469.445455] genl_rcv_msg+0x33c/0x5a0 [ 1469.445922] ? genl_get_cmd+0x480/0x480 [ 1469.446412] ? lock_acquire+0x1b9/0x470 [ 1469.446893] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1469.447642] ? lock_release+0x680/0x680 [ 1469.448174] ? __lockdep_reset_lock+0x180/0x180 [ 1469.448740] netlink_rcv_skb+0x14b/0x430 [ 1469.449278] ? genl_get_cmd+0x480/0x480 [ 1469.449908] ? netlink_ack+0xab0/0xab0 [ 1469.450445] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1469.451068] ? is_vmalloc_addr+0x7b/0xb0 [ 1469.451706] genl_rcv+0x24/0x40 [ 1469.452182] netlink_unicast+0x549/0x7f0 [ 1469.452725] ? netlink_attachskb+0x870/0x870 [ 1469.453330] ? __virt_addr_valid+0x128/0x350 [ 1469.453944] netlink_sendmsg+0x90f/0xdf0 [ 1469.454498] ? netlink_unicast+0x7f0/0x7f0 [ 1469.455072] ? netlink_unicast+0x7f0/0x7f0 [ 1469.455669] __sock_sendmsg+0x154/0x190 [ 1469.456191] ____sys_sendmsg+0x70d/0x870 [ 1469.456728] ? sock_write_iter+0x3d0/0x3d0 [ 1469.457288] ? do_recvmmsg+0x6d0/0x6d0 [ 1469.457831] ___sys_sendmsg+0xf3/0x170 [ 1469.458348] ? sendmsg_copy_msghdr+0x160/0x160 [ 1469.458962] ? lock_downgrade+0x6d0/0x6d0 [ 1469.459521] ? finish_task_switch+0x126/0x5d0 [ 1469.460117] ? lock_downgrade+0x6d0/0x6d0 [ 1469.460645] ? __fget_files+0x296/0x4c0 [ 1469.461166] ? __fget_light+0xea/0x290 [ 1469.461667] __sys_sendmsg+0xe5/0x1b0 [ 1469.462142] ? __sys_sendmsg_sock+0x40/0x40 [ 1469.462717] ? io_schedule_timeout+0x140/0x140 [ 1469.463337] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1469.464018] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1469.464695] ? trace_hardirqs_on+0x5b/0x180 [ 1469.465265] do_syscall_64+0x33/0x40 15:35:43 executing program 6: setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000000)=0x5, 0xff4d) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)={0x14, 0x5a, 0x69844ea0a6ddcd11}, 0x14}}, 0x0) [ 1469.465766] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1469.466530] RIP: 0033:0x7f07e63f4b19 [ 1469.467018] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1469.469518] RSP: 002b:00007f07e396a188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1469.470656] RAX: ffffffffffffffda RBX: 00007f07e6507f60 RCX: 00007f07e63f4b19 [ 1469.471610] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1469.472626] RBP: 00007f07e644ef6d R08: 0000000000000000 R09: 0000000000000000 [ 1469.473693] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1469.474659] R13: 00007fff1f25f23f R14: 00007f07e396a300 R15: 0000000000022000 [ 1469.492489] FAULT_INJECTION: forcing a failure. [ 1469.492489] name failslab, interval 1, probability 0, space 0, times 0 [ 1469.493913] CPU: 1 PID: 10851 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1469.494698] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1469.495644] Call Trace: [ 1469.495953] dump_stack+0x107/0x167 [ 1469.496381] should_fail.cold+0x5/0xa [ 1469.496827] ? create_object.isra.0+0x3a/0xa20 [ 1469.497371] should_failslab+0x5/0x20 [ 1469.497820] kmem_cache_alloc+0x5b/0x310 [ 1469.498296] create_object.isra.0+0x3a/0xa20 [ 1469.498854] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1469.499528] kmem_cache_alloc+0x159/0x310 [ 1469.500070] __kernfs_new_node+0xd4/0x860 [ 1469.500603] ? trace_hardirqs_on+0x5b/0x180 [ 1469.501180] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1469.501824] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1469.502476] ? wait_for_completion_io+0x270/0x270 [ 1469.503122] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1469.503836] kernfs_new_node+0x93/0x120 [ 1469.504369] __kernfs_create_file+0x51/0x350 [ 1469.504963] sysfs_add_file_mode_ns+0x221/0x560 [ 1469.505595] internal_create_group+0x324/0xb30 [ 1469.506219] ? sysfs_remove_group+0x170/0x170 [ 1469.506818] ? kernfs_name_hash+0xe7/0x110 [ 1469.507391] ? kernfs_find_ns+0x256/0x380 [ 1469.507952] sysfs_slab_add+0x188/0x200 [ 1469.508456] __kmem_cache_create+0x3db/0x520 [ 1469.509010] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1469.509659] p9_client_create+0xc2b/0x11c0 [ 1469.510199] ? p9_client_flush+0x430/0x430 [ 1469.510737] ? trace_hardirqs_on+0x5b/0x180 [ 1469.511264] ? lockdep_init_map_type+0x2c7/0x780 [ 1469.511839] ? __raw_spin_lock_init+0x36/0x110 [ 1469.512399] v9fs_session_init+0x1dd/0x1680 [ 1469.512924] ? lock_release+0x680/0x680 15:35:43 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x28}}, 0x0) [ 1469.513409] ? kmem_cache_alloc_trace+0x151/0x320 [ 1469.514103] ? v9fs_show_options+0x690/0x690 [ 1469.514615] ? trace_hardirqs_on+0x5b/0x180 [ 1469.515113] ? kasan_unpoison_shadow+0x33/0x50 [ 1469.515646] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1469.516234] v9fs_mount+0x79/0x8f0 [ 1469.516647] ? v9fs_write_inode+0x60/0x60 [ 1469.517123] legacy_get_tree+0x105/0x220 [ 1469.517601] vfs_get_tree+0x8e/0x300 [ 1469.518030] path_mount+0x13be/0x20b0 [ 1469.518485] ? strncpy_from_user+0x9e/0x470 [ 1469.518981] ? finish_automount+0xa90/0xa90 [ 1469.519473] ? getname_flags.part.0+0x1dd/0x4f0 [ 1469.520008] ? _copy_from_user+0xfb/0x1b0 [ 1469.520492] __x64_sys_mount+0x282/0x300 [ 1469.520955] ? copy_mnt_ns+0xa00/0xa00 [ 1469.521412] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1469.522016] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1469.522609] do_syscall_64+0x33/0x40 [ 1469.523034] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1469.523625] RIP: 0033:0x7f76b700cb19 [ 1469.524056] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1469.526193] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1469.527068] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1469.527895] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1469.528727] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1469.529583] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1469.530419] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 15:35:43 executing program 4: r0 = openat(0xffffffffffffff9c, 0x0, 0x46e2, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0xde, 0x0, 0x0, 0x5e, 0x10081, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0xfffffffffffffff3, 0x10}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0xa) ioctl$AUTOFS_IOC_EXPIRE_MULTI(r1, 0x40049366, &(0x7f0000000140)=0x1) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/keys\x00', 0x0, 0x0) r3 = socket$unix(0x1, 0x5, 0x0) bind$unix(r3, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) r4 = openat$sr(0xffffffffffffff9c, &(0x7f00000035c0), 0xe8b02, 0x4) ioctl$CDROM_SELECT_SPEED(r4, 0x125d, 0x20000000) copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(0xffffffffffffffff, 0x40042409, 0x0) read$hidraw(r4, &(0x7f0000002600)=""/4096, 0x1000) listen(r3, 0x0) ioctl$sock_TIOCINQ(r3, 0x541b, 0x0) writev(r3, &(0x7f0000000180)=[{&(0x7f00000012c0)="dac08af07dc6a1e38d05fba3f9bfaa2be390bfa27e4b14402b8301ab7d26415faa1b7dac2b83504238a6e75796f3fb52dc445293357f8351cfd3d79b2b3ec4e5a25cf67ad747e1875eb1c0887a1e2ad1fe4bdbf9ee31ef220b74dfa41293acf4402f6f248ef9dde143658e7fe0c88017b40e3550ba51e0f52db658aabe2ed4ea571e7608d4bc072ed5247ba6327920c7ff70de884418420e85a13a83ca1dfb47bfd25cf5599d6238454ca0e1cd4648f41c13d862b984bedfcdd3a32475b67752f3f4eddf19cadd0e28e80aa64e22", 0xce}, {&(0x7f00000013c0)="d22f07a74c9a9662ee40c2cfe16e1209017af9ca4600bc0939588a173e9b873a2cc46350cab7db81971996f735f2a8cc51f4e0a58da6647c48c2a78e9f4ddb9287da5a7526a8865f49ee56366ce90c93ef343861df3fc9ce5ccab9b967cc4b26d2a0184214e45c24566c35c3925214c893e5a270ddd7226b65dc57a0ac833628965c5fb5a43c5dca50e4d971f43214d77b17a49e0b189ee1586630186a1f01a63abe1a3b14a5f6dba79e8fd6545dc062bbc1f80f5b24eb5913fa667010f8cd05cb33f7964a9e9b3f88a1b0f307ec066747fcb1132e2d1eebb170f80252750b21b589fe0d48f8c1544bab3cb98a64b6f8002cb3483bc8a03c33", 0xf9}], 0x2) r5 = dup2(0xffffffffffffffff, r2) fallocate(r5, 0x5c, 0x1ff, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f00000001c0)={'veth1_to_bridge\x00'}) preadv(r2, &(0x7f0000001580)=[{&(0x7f00000015c0)=""/4106, 0x100a}], 0x1, 0x0, 0x0) fallocate(0xffffffffffffffff, 0x42, 0x5, 0x6) openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000100)='blkio.bfq.time\x00', 0x0, 0x0) 15:35:43 executing program 0: sendmsg$NL80211_CMD_REGISTER_FRAME(0xffffffffffffffff, 0x0, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff) connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x3, @dev, 0x2}, 0x1c) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), r2) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) socket$packet(0x11, 0x3, 0x300) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x9030, 0xd0}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) recvfrom$inet6(0xffffffffffffffff, &(0x7f0000000380)=""/231, 0xe7, 0x0, &(0x7f0000000040)={0xa, 0x4e23, 0x4, @loopback}, 0x1c) 15:35:43 executing program 6: r0 = syz_open_procfs$namespace(0x0, &(0x7f0000000000)='ns/time\x00') ioctl$NS_GET_USERNS(r0, 0xb701, 0x0) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = syz_open_dev$ttys(0xc, 0x2, 0x1) ioctl$NS_GET_PARENT(r1, 0xb702, 0x0) close_range(r2, r1, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000240)={0x0, 0x200, 0x5, 0x40}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x10012, 0x0, 0x2, 0x0, 0x8, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {0x0, 0x0, 0x4e0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="64656c616c6c6f632c00081562ec06d36b3a9dcebb77374586fe4290ad14dde63578e5ad8b08c3a711cc5decad75f6af416731b0f60afde42f0c17345583dd2cc9a960885a59bc1000000000000000006bd36e"]) pkey_mprotect(&(0x7f0000ff4000/0x4000)=nil, 0x4000, 0x0, 0xffffffffffffffff) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$BTRFS_IOC_QGROUP_LIMIT(r3, 0x8030942b, &(0x7f0000000140)={0xaf, {0x2b, 0x1, 0x6, 0x800000000010001, 0x7}}) listen(0xffffffffffffffff, 0x0) r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000040), 0x400000, 0x0) ioctl$NS_GET_USERNS(r4, 0xb701, 0x0) openat(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x101803, 0x1) write(0xffffffffffffffff, &(0x7f0000000240)="01", 0x1) ioctl$sock_SIOCGIFVLAN_SET_VLAN_INGRESS_PRIORITY_CMD(0xffffffffffffffff, 0x8982, &(0x7f00000000c0)={0x2, 'team0\x00', {0x18a}, 0x4}) 15:35:43 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r1, 0x0, r0, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) ioctl$VT_RESIZEX(r1, 0x560a, &(0x7f0000000080)={0x9, 0x0, 0x9, 0x9, 0x401, 0xfff}) r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6}]}) open_tree(0xffffffffffffffff, 0x0, 0x0) close_range(r2, 0xffffffffffffffff, 0x0) fork() 15:35:43 executing program 2: sendmsg$NL80211_CMD_TRIGGER_SCAN(0xffffffffffffffff, 0x0, 0x0) r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x10, 0xffffffffffffffff, 0x8000000) syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd, 0x0, 0x0}, 0x80000001) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='smaps_rollup\x00') pread64(r0, &(0x7f0000000140)=""/95, 0x5f, 0xe5) syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000100)=0x0) r3 = socket$inet6_udplite(0xa, 0x2, 0x88) syz_io_uring_submit(0x0, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r3, 0x0, &(0x7f0000000440)={0x0, 0x0, 0x0}}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) io_uring_enter(r1, 0x6189, 0xb189, 0x0, &(0x7f0000000040)={[0x6]}, 0x8) r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) dup2(r4, r3) io_uring_enter(0xffffffffffffffff, 0x58ab, 0x0, 0x0, 0x0, 0x0) 15:35:43 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB], 0x28}}, 0x0) 15:35:43 executing program 3: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) [ 1469.869956] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1469.871922] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1469.873337] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1469.874702] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 08 00 [ 1469.876279] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 4 prio class 0 [ 1469.879220] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1469.880801] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1469.883628] Buffer I/O error on dev sr0, logical block 0, async page read [ 1469.888751] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1469.890146] blk_update_request: I/O error, dev sr0, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1469.892192] Buffer I/O error on dev sr0, logical block 1, async page read [ 1469.893801] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1469.894947] blk_update_request: I/O error, dev sr0, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1469.896964] Buffer I/O error on dev sr0, logical block 2, async page read [ 1469.898563] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1469.899887] blk_update_request: I/O error, dev sr0, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1469.902251] Buffer I/O error on dev sr0, logical block 3, async page read [ 1469.905183] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1469.906350] blk_update_request: I/O error, dev sr0, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1469.908360] Buffer I/O error on dev sr0, logical block 4, async page read [ 1469.910300] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1469.911466] blk_update_request: I/O error, dev sr0, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1469.913992] Buffer I/O error on dev sr0, logical block 5, async page read [ 1469.915597] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1469.916749] blk_update_request: I/O error, dev sr0, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1469.918803] Buffer I/O error on dev sr0, logical block 6, async page read [ 1469.924021] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1469.925181] blk_update_request: I/O error, dev sr0, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 1469.927282] Buffer I/O error on dev sr0, logical block 7, async page read 15:35:44 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) (fail_nth: 70) [ 1470.009644] sr 1:0:0:0: [sr0] tag#0 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_SENSE cmd_age=0s [ 1470.012054] sr 1:0:0:0: [sr0] tag#0 Sense Key : Not Ready [current] [ 1470.013674] sr 1:0:0:0: [sr0] tag#0 Add. Sense: Medium not present [ 1470.015211] sr 1:0:0:0: [sr0] tag#0 CDB: Read(10) 28 00 00 00 00 00 00 00 08 00 [ 1470.016909] blk_update_request: I/O error, dev sr0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 4 prio class 0 [ 1470.019641] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1470.020969] Buffer I/O error on dev sr0, logical block 0, async page read [ 1470.022716] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1470.024112] Buffer I/O error on dev sr0, logical block 1, async page read [ 1470.025805] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1470.027280] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1470.028754] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1470.030219] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1470.031678] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1470.033140] sr 1:0:0:0: [sr0] tag#0 unaligned transfer [ 1470.126050] FAULT_INJECTION: forcing a failure. [ 1470.126050] name failslab, interval 1, probability 0, space 0, times 0 [ 1470.128333] CPU: 0 PID: 10887 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1470.129755] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1470.131431] Call Trace: [ 1470.132035] dump_stack+0x107/0x167 [ 1470.132781] should_fail.cold+0x5/0xa [ 1470.133565] ? create_object.isra.0+0x3a/0xa20 [ 1470.134493] should_failslab+0x5/0x20 [ 1470.135263] kmem_cache_alloc+0x5b/0x310 [ 1470.136092] create_object.isra.0+0x3a/0xa20 [ 1470.136985] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1470.138039] kmem_cache_alloc+0x159/0x310 [ 1470.138890] __kernfs_new_node+0xd4/0x860 [ 1470.139730] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1470.140689] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1470.141677] ? wait_for_completion_io+0x270/0x270 [ 1470.142655] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1470.143739] kernfs_new_node+0x93/0x120 [ 1470.144551] __kernfs_create_file+0x51/0x350 [ 1470.145463] sysfs_add_file_mode_ns+0x221/0x560 [ 1470.146425] internal_create_group+0x324/0xb30 [ 1470.147367] ? sysfs_remove_group+0x170/0x170 [ 1470.148286] ? kernfs_name_hash+0xe7/0x110 [ 1470.149157] ? kernfs_find_ns+0x256/0x380 [ 1470.150039] sysfs_slab_add+0x188/0x200 [ 1470.150853] __kmem_cache_create+0x3db/0x520 [ 1470.151757] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1470.152771] p9_client_create+0xc2b/0x11c0 [ 1470.153647] ? p9_client_flush+0x430/0x430 [ 1470.154507] ? trace_hardirqs_on+0x5b/0x180 [ 1470.155400] ? lockdep_init_map_type+0x2c7/0x780 [ 1470.156378] ? __raw_spin_lock_init+0x36/0x110 [ 1470.157335] v9fs_session_init+0x1dd/0x1680 [ 1470.158222] ? lock_release+0x680/0x680 [ 1470.159038] ? kmem_cache_alloc_trace+0x151/0x320 [ 1470.160040] ? v9fs_show_options+0x690/0x690 [ 1470.160948] ? trace_hardirqs_on+0x5b/0x180 [ 1470.161860] ? kasan_unpoison_shadow+0x33/0x50 [ 1470.162780] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1470.163815] v9fs_mount+0x79/0x8f0 [ 1470.164533] ? v9fs_write_inode+0x60/0x60 [ 1470.165376] legacy_get_tree+0x105/0x220 [ 1470.166196] vfs_get_tree+0x8e/0x300 [ 1470.166949] path_mount+0x13be/0x20b0 [ 1470.167722] ? strncpy_from_user+0x9e/0x470 [ 1470.168594] ? finish_automount+0xa90/0xa90 [ 1470.169476] ? getname_flags.part.0+0x1dd/0x4f0 [ 1470.170410] ? _copy_from_user+0xfb/0x1b0 [ 1470.171255] __x64_sys_mount+0x282/0x300 [ 1470.172075] ? copy_mnt_ns+0xa00/0xa00 [ 1470.172864] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1470.173923] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1470.174968] do_syscall_64+0x33/0x40 [ 1470.175717] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1470.176745] RIP: 0033:0x7f76b700cb19 [ 1470.177502] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1470.181185] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1470.182729] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1470.184159] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1470.185597] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1470.187028] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1470.188461] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 [ 1470.195891] audit: type=1326 audit(1704555344.199:70): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=10879 comm="syz-executor.5" exe="/syz-executor.5" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2e008a0b19 code=0x0 [ 1470.307163] audit: type=1326 audit(1704555344.311:71): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=10879 comm="syz-executor.5" exe="/syz-executor.5" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f2e008a0b19 code=0x0 [ 1470.472299] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1470.473694] CPU: 0 PID: 10893 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1470.474765] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1470.476051] Call Trace: [ 1470.476458] dump_stack+0x107/0x167 [ 1470.477031] sysfs_warn_dup.cold+0x1c/0x29 [ 1470.477702] sysfs_do_create_link_sd+0x122/0x140 [ 1470.478437] sysfs_create_link+0x5f/0xc0 [ 1470.479052] device_add+0x703/0x1c50 [ 1470.479626] ? devlink_add_symlinks+0x970/0x970 [ 1470.480336] ? rtnl_lock+0x5/0x20 [ 1470.480875] wiphy_register+0x1da6/0x2850 [ 1470.481519] ? wiphy_unregister+0xb90/0xb90 [ 1470.482171] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1470.482985] ? ieee80211_register_hw+0x239f/0x38b0 [ 1470.483727] ieee80211_register_hw+0x23c5/0x38b0 [ 1470.484450] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1470.485169] ? net_generic+0xdb/0x2b0 [ 1470.485758] ? lockdep_init_map_type+0x2c7/0x780 [ 1470.486466] ? memset+0x20/0x50 [ 1470.486964] ? __hrtimer_init+0x12c/0x270 [ 1470.487586] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1470.488347] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1470.489038] ? hwsim_new_radio_nl+0x967/0x1080 [ 1470.489748] ? memcpy+0x39/0x60 [ 1470.490246] hwsim_new_radio_nl+0x991/0x1080 [ 1470.490913] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1470.491691] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1470.492677] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1470.493674] genl_family_rcv_msg_doit+0x22d/0x330 [ 1470.494401] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1470.495390] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1470.496191] ? trace_hardirqs_on+0x5b/0x180 [ 1470.496851] ? genl_rcv_msg+0x31f/0x5a0 [ 1470.497471] genl_rcv_msg+0x33c/0x5a0 [ 1470.498049] ? genl_get_cmd+0x480/0x480 [ 1470.498649] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1470.499414] ? genl_get_cmd+0x480/0x480 [ 1470.500025] netlink_rcv_skb+0x14b/0x430 [ 1470.500632] ? genl_get_cmd+0x480/0x480 [ 1470.501240] ? netlink_ack+0xab0/0xab0 [ 1470.501858] ? genl_rcv+0x9/0x40 [ 1470.502387] genl_rcv+0x24/0x40 [ 1470.502881] netlink_unicast+0x549/0x7f0 [ 1470.503503] ? netlink_attachskb+0x870/0x870 [ 1470.504172] ? netlink_sendmsg+0x8d0/0xdf0 [ 1470.504815] netlink_sendmsg+0x90f/0xdf0 [ 1470.505464] ? netlink_unicast+0x7f0/0x7f0 [ 1470.506111] ? netlink_unicast+0x7f0/0x7f0 [ 1470.506746] __sock_sendmsg+0x154/0x190 [ 1470.507344] ____sys_sendmsg+0x70d/0x870 [ 1470.508049] ? sock_write_iter+0x3d0/0x3d0 [ 1470.508725] ? do_recvmmsg+0x6d0/0x6d0 [ 1470.509318] ? perf_trace_lock+0xac/0x490 [ 1470.509947] ? trace_hardirqs_on+0x5b/0x180 [ 1470.510592] ? __lockdep_reset_lock+0x180/0x180 [ 1470.511300] ___sys_sendmsg+0xf3/0x170 [ 1470.511892] ? sendmsg_copy_msghdr+0x160/0x160 [ 1470.512593] ? lock_downgrade+0x6d0/0x6d0 [ 1470.513210] ? find_held_lock+0x2c/0x110 [ 1470.513842] ? clockevents_program_event+0x14b/0x360 [ 1470.514615] ? __fget_files+0x296/0x4c0 [ 1470.515230] ? __fget_light+0xea/0x290 [ 1470.515827] __sys_sendmsg+0xe5/0x1b0 [ 1470.516409] ? __sys_sendmsg_sock+0x40/0x40 [ 1470.517071] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1470.517863] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1470.518637] ? trace_hardirqs_on+0x5b/0x180 [ 1470.519292] do_syscall_64+0x33/0x40 [ 1470.519855] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1470.520622] RIP: 0033:0x7f07e63f4b19 [ 1470.521179] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1470.523963] RSP: 002b:00007f07e396a188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1470.525103] RAX: ffffffffffffffda RBX: 00007f07e6507f60 RCX: 00007f07e63f4b19 [ 1470.526200] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1470.527264] RBP: 00007f07e644ef6d R08: 0000000000000000 R09: 0000000000000000 [ 1470.528330] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1470.529403] R13: 00007fff1f25f23f R14: 00007f07e396a300 R15: 0000000000022000 [ 1470.669514] EXT4-fs (loop6): mounted filesystem without journal. Opts: delalloc,,errors=continue 15:36:01 executing program 5: r0 = syz_io_uring_setup(0x498b, &(0x7f0000000400), &(0x7f00000a0000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f00000003c0)=0x0, &(0x7f0000000000)=0x0) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) syz_io_uring_submit(r1, r2, &(0x7f0000000340)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r3, 0x0, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0, 0xc6da2cc48da8a1c7}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x20000000}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index, 0x0, 0x0}, 0x0) sendmsg$NL80211_CMD_GET_WIPHY(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000002c0)={0x0}}, 0x0) ioctl$FIONCLEX(r0, 0x5450) io_uring_enter(r0, 0x76d3, 0x0, 0x0, 0x0, 0x0) 15:36:01 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000440)={@dev={0xfe, 0x80, '\x00', 0xc}, 0x0, 0x0, 0x0, 0x3, 0x0, 0xfffb}, 0x20) socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$inet_opts(r1, 0x21, 0x0, 0x0, 0x0) recvmmsg(r1, 0x0, 0x0, 0x10200, &(0x7f0000000b00)={0x77359400}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = accept4$packet(0xffffffffffffffff, &(0x7f0000000140)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000000200)=0x14, 0x0) fcntl$setstatus(r2, 0x4, 0x2000) sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(0xffffffffffffffff, &(0x7f0000000280)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x3e3cb8ee0c7e11ee}, 0xc, &(0x7f0000000240)={0x0}, 0x1, 0x0, 0x0, 0x4000}, 0xc004) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f00000002c0)='./file0/../file0\x00', &(0x7f0000000300)='./file0\x00', &(0x7f0000000340), 0x1001000, &(0x7f0000000380)=ANY=[@ANYBLOB="7472616e733d0000ec3a79c7ae0c61c9532cc05b830000000000653d6c6f6f73652c613aecb90100cebd2aa15069b3f4b7032b2c2c736d61636b66736465663d706970656e73002c7050723d3030", @ANYRESDEC=0x0, @ANYBLOB=',fsname=p']) setsockopt$inet6_tcp_int(r0, 0x6, 0x1, &(0x7f0000000480), 0x4) perf_event_open(&(0x7f0000000500)={0x0, 0x80, 0x5, 0x6, 0x7f, 0x3, 0x0, 0x9, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x2, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x7fffffff, 0x4, @perf_bp={&(0x7f00000004c0), 0xe}, 0x8, 0x6, 0x1f, 0xd, 0x3, 0x8, 0xfff, 0x0, 0x0, 0x0, 0x1}, 0x0, 0xd, 0xffffffffffffffff, 0x2) mount$9p_unix(0x0, &(0x7f0000002f00)='./file0/../file0\x00', 0x0, 0x1f3000, 0x0) mkdirat(0xffffffffffffffff, &(0x7f0000000b40)='./file0/../file0\x00', 0x42) perf_event_open(0x0, 0x0, 0xc, 0xffffffffffffffff, 0x8) mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180), 0x20, 0x0) mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000400), 0x14, 0x0) 15:36:01 executing program 6: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:36:01 executing program 3: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:36:01 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) (fail_nth: 71) 15:36:01 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x2}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) ioctl$BTRFS_IOC_INO_LOOKUP(0xffffffffffffffff, 0xd0009412, &(0x7f0000000480)) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0xa, 0x1a4098a6b4c09535, 0xffffffffffffffff, 0x0) r2 = socket$inet6(0xa, 0x5, 0x8) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000440)={'team0\x00'}) recvmsg$unix(r0, &(0x7f00000003c0)={&(0x7f0000000080), 0x6e, &(0x7f0000000340)=[{&(0x7f0000000100)=""/22, 0x16}, {&(0x7f0000000140)=""/177, 0xb1}, {&(0x7f0000000200)=""/31, 0x1f}, {&(0x7f0000000240)=""/31, 0x1f}, {&(0x7f0000000280)=""/143, 0x8f}], 0x5, &(0x7f0000001480)=[@cred={{0x1c}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xe8}, 0x20) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r4, 0xc018937a, &(0x7f0000001580)={{0x1, 0x1, 0x18, r6, {0xfff}}, './file0\x00'}) connect$inet6(r7, &(0x7f00000015c0)={0xa, 0x4e24, 0x5, @private0, 0x2}, 0x1c) setsockopt$inet6_icmp_ICMP_FILTER(r3, 0x1, 0x1, &(0x7f0000000400)={0xf9}, 0x4) sendmsg$inet6(r5, &(0x7f0000001980)={&(0x7f0000001600)={0xa, 0x4e22, 0x7, @private1, 0x20}, 0x1c, &(0x7f00000018c0)=[{&(0x7f0000001640)="aaaf0ec8050c8b1142c76afd25797fcd8344d1c15fafd9f4ac372ac95c6dbc153929d972dbb4bb8b99046dbe1ab692f5263551813194432b5f81a20e2c8c84b33f43b948aa9f61617d892e8577d9734ae2fd5fc17c5365c78416921839a7cbd37d848473d4b41671b2972e1d33efa402ecc3306f914db00356fe39a4", 0x7c}, {&(0x7f00000016c0)="1c823ce602b3008db4c4e5393cddd18573785710c5575240f59f6575eaf3c7584135b528189b97833254e1a9cb01894797d7df3c50007a8f6a3a83d0e8bf170834dcca006b7e512cf45d4bb09c12f45c853eb12735b2a5d5f6cdfe33df31bd659f5ec0157590bc567c4e6d9948a2c83b486b6215a6255f3b2bf848402c615dbb", 0x80}, {&(0x7f0000001740)="40c1678dab2b29e638910f28f8e0f0dffc3039db0603327367619405072cb27ad71a5135fdbbf1bf7bc6bee06f3751dd1d00a51355378e53b1e536ae257f8a99813a03cf910482272163da5d43b25fbb0871084af954209ef694051ef7b430fc96d335b984476131", 0x68}, {&(0x7f00000017c0)="0754a51a1b7f29ca372172008ceb86ed47b78c821929694ea81f92d738a2f7d6c41db6dc6b72073a1d52d0541f05e4f6cd5d63a3acdd283b737d98591a496201eee4090f72d488d4ba3581c1b9d800646dc4c2f978c0b6f51869a91b0045bb759f21ad2b29dceae11d35ee1c1a3679fc17df91cde3253948472963ea054b162e7e0827dab1182b7d335108b8c52c146381917696", 0x94}, {&(0x7f0000001880)="c598037c3983c71d26bf713fd19c8f113e10c4fa8e22ee15b840", 0x1a}], 0x5, &(0x7f0000001940)=[@flowinfo={{0x14, 0x29, 0xb, 0xe65}}, @dontfrag={{0x14, 0x29, 0x3e, 0x5}}], 0x30}, 0x45) sendfile(r1, r0, 0x0, 0xf88c) 15:36:01 executing program 0: openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x840, 0x124) mount(&(0x7f00000000c0)=@filename='\x00', &(0x7f0000000040)='./file1\x00', &(0x7f0000000080)='nfs\x00', 0x0, 0x0) 15:36:01 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB], 0x28}}, 0x0) [ 1487.306813] nfs: Bad value for 'source' 15:36:01 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB], 0x28}}, 0x0) [ 1487.322408] FAULT_INJECTION: forcing a failure. [ 1487.322408] name failslab, interval 1, probability 0, space 0, times 0 [ 1487.324028] CPU: 0 PID: 10926 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1487.325031] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1487.326134] Call Trace: [ 1487.326490] dump_stack+0x107/0x167 [ 1487.326969] should_fail.cold+0x5/0xa [ 1487.327467] ? create_object.isra.0+0x3a/0xa20 [ 1487.328072] should_failslab+0x5/0x20 [ 1487.328556] kmem_cache_alloc+0x5b/0x310 [ 1487.329082] create_object.isra.0+0x3a/0xa20 [ 1487.329640] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1487.330255] kmem_cache_alloc+0x159/0x310 [ 1487.330768] __kernfs_new_node+0xd4/0x860 [ 1487.331301] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1487.331895] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1487.332491] ? wait_for_completion_io+0x270/0x270 [ 1487.333090] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1487.333757] kernfs_new_node+0x93/0x120 [ 1487.334256] __kernfs_create_file+0x51/0x350 [ 1487.334816] sysfs_add_file_mode_ns+0x221/0x560 [ 1487.335427] internal_create_group+0x324/0xb30 [ 1487.336007] ? sysfs_remove_group+0x170/0x170 [ 1487.336552] ? kernfs_name_hash+0xe7/0x110 [ 1487.337079] ? kernfs_find_ns+0x256/0x380 [ 1487.337618] sysfs_slab_add+0x188/0x200 [ 1487.338133] __kmem_cache_create+0x3db/0x520 [ 1487.338696] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1487.339320] p9_client_create+0xc2b/0x11c0 [ 1487.339868] ? p9_client_flush+0x430/0x430 [ 1487.340415] ? trace_hardirqs_on+0x5b/0x180 [ 1487.340957] ? lockdep_init_map_type+0x2c7/0x780 [ 1487.341579] ? __raw_spin_lock_init+0x36/0x110 [ 1487.342172] v9fs_session_init+0x1dd/0x1680 [ 1487.342702] ? lock_release+0x680/0x680 [ 1487.343191] ? kmem_cache_alloc_trace+0x151/0x320 [ 1487.343786] ? v9fs_show_options+0x690/0x690 [ 1487.344332] ? trace_hardirqs_on+0x5b/0x180 [ 1487.344873] ? kasan_unpoison_shadow+0x33/0x50 [ 1487.345432] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1487.346077] v9fs_mount+0x79/0x8f0 [ 1487.346507] ? v9fs_write_inode+0x60/0x60 [ 1487.347017] legacy_get_tree+0x105/0x220 [ 1487.347537] vfs_get_tree+0x8e/0x300 [ 1487.348016] path_mount+0x13be/0x20b0 [ 1487.348518] ? strncpy_from_user+0x9e/0x470 [ 1487.349100] ? finish_automount+0xa90/0xa90 [ 1487.349684] ? getname_flags.part.0+0x1dd/0x4f0 [ 1487.350304] ? _copy_from_user+0xfb/0x1b0 [ 1487.350849] __x64_sys_mount+0x282/0x300 [ 1487.351360] ? copy_mnt_ns+0xa00/0xa00 [ 1487.351863] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1487.352528] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1487.353178] do_syscall_64+0x33/0x40 [ 1487.353662] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1487.354322] RIP: 0033:0x7f76b700cb19 [ 1487.354807] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1487.357061] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1487.358034] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1487.358909] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1487.359754] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1487.360657] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1487.361591] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 15:36:01 executing program 0: syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000", 0x5c, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000010500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f0000012900)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file1\x00', 0x4080, 0x48) r2 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x84802, 0xa0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) write(r2, &(0x7f0000000240)="01", 0x1) open(&(0x7f00000000c0)='./file0\x00', 0x80206, 0x40) write$P9_RREADLINK(0xffffffffffffffff, 0x0, 0x10) r3 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x105142, 0x0) ftruncate(r3, 0xffff) sendfile(0xffffffffffffffff, r3, &(0x7f0000000140)=0x240000000, 0x0) sendfile(r0, r1, 0x0, 0x20d315) r4 = socket$netlink(0x10, 0x3, 0x0) write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYRES64=r0, @ANYRES16, @ANYRES64=r1, @ANYRESDEC=r4], 0xfdef) getpgid(0x0) 15:36:01 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) execveat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000440)=[0x0], 0x1000) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0) ftruncate(r0, 0x1000003) socket$inet6(0xa, 0x0, 0x6c) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r1 = openat$full(0xffffffffffffff9c, 0x0, 0x0, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)={0x0, 0x8}) bind$unix(r0, &(0x7f0000000100)=@abs={0x1, 0x0, 0x4e23}, 0x6e) getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000480)={{{@in6=@empty}}, {{@in=@broadcast}, 0x0, @in=@local}}, 0x0) fsetxattr$security_capability(r0, &(0x7f0000000040), &(0x7f0000000080)=@v2={0x2000000, [{}, {0x4, 0x3}]}, 0x14, 0x0) ioctl$FAT_IOCTL_GET_VOLUME_ID(0xffffffffffffffff, 0x80047213, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5b, 0x1, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, @perf_config_ext={0xed14, 0xffffffff80000000}, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, r1, 0x0) write$binfmt_elf64(r0, &(0x7f00000001c0)=ANY=[], 0xfdef) r2 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) openat(r2, &(0x7f0000000180)='./file0\x00', 0x101803, 0x1) write(r2, &(0x7f0000000240)="01", 0x1) getsockopt$inet6_int(r2, 0x29, 0x4a, &(0x7f00000002c0), &(0x7f0000000300)=0x4) [ 1487.421419] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1487.424923] CPU: 1 PID: 10920 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1487.426378] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1487.428046] Call Trace: [ 1487.428610] dump_stack+0x107/0x167 [ 1487.429364] sysfs_warn_dup.cold+0x1c/0x29 [ 1487.430254] sysfs_do_create_link_sd+0x122/0x140 [ 1487.431226] sysfs_create_link+0x5f/0xc0 [ 1487.432060] device_add+0x703/0x1c50 [ 1487.432826] ? devlink_add_symlinks+0x970/0x970 [ 1487.433777] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1487.434891] wiphy_register+0x1da6/0x2850 [ 1487.435757] ? wiphy_unregister+0xb90/0xb90 [ 1487.436668] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1487.437772] ieee80211_register_hw+0x23c5/0x38b0 [ 1487.438756] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1487.439759] ? net_generic+0xdb/0x2b0 [ 1487.440553] ? lockdep_init_map_type+0x2c7/0x780 [ 1487.441503] ? memset+0x20/0x50 [ 1487.442178] ? __hrtimer_init+0x12c/0x270 [ 1487.443031] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1487.444115] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1487.445044] ? hwsim_new_radio_nl+0x967/0x1080 [ 1487.445988] ? memcpy+0x39/0x60 [ 1487.446665] hwsim_new_radio_nl+0x991/0x1080 [ 1487.447417] EXT4-fs (sda): re-mounted. Opts: (null) [ 1487.447563] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1487.449230] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1487.450556] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1487.451880] genl_family_rcv_msg_doit+0x22d/0x330 [ 1487.452876] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1487.454222] ? cap_capable+0x1cd/0x230 [ 1487.455023] ? ns_capable+0xe2/0x110 [ 1487.455771] genl_rcv_msg+0x33c/0x5a0 [ 1487.456543] ? genl_get_cmd+0x480/0x480 [ 1487.457352] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1487.458420] ? genl_get_cmd+0x480/0x480 [ 1487.459229] netlink_rcv_skb+0x14b/0x430 [ 1487.460058] ? genl_get_cmd+0x480/0x480 [ 1487.460871] ? netlink_ack+0xab0/0xab0 [ 1487.461704] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1487.462642] ? __sanitizer_cov_trace_pc+0x14/0x60 [ 1487.463619] ? is_vmalloc_addr+0x7b/0xb0 [ 1487.464453] genl_rcv+0x24/0x40 [ 1487.465123] netlink_unicast+0x549/0x7f0 [ 1487.465970] ? netlink_attachskb+0x870/0x870 [ 1487.466876] netlink_sendmsg+0x90f/0xdf0 [ 1487.467721] ? netlink_unicast+0x7f0/0x7f0 [ 1487.468608] ? netlink_unicast+0x7f0/0x7f0 [ 1487.469479] __sock_sendmsg+0x154/0x190 [ 1487.470302] ____sys_sendmsg+0x70d/0x870 [ 1487.471128] ? sock_write_iter+0x3d0/0x3d0 [ 1487.471989] ? do_recvmmsg+0x6d0/0x6d0 [ 1487.472772] ? perf_trace_lock+0xac/0x490 [ 1487.473654] ? __lockdep_reset_lock+0x180/0x180 [ 1487.474601] ? perf_trace_lock+0xac/0x490 [ 1487.475454] ___sys_sendmsg+0xf3/0x170 [ 1487.476247] ? sendmsg_copy_msghdr+0x160/0x160 [ 1487.477190] ? lock_downgrade+0x6d0/0x6d0 [ 1487.478047] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1487.479104] ? trace_hardirqs_on+0x5b/0x180 [ 1487.479991] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1487.481126] ? __fget_files+0x296/0x4c0 [ 1487.481997] ? __fget_light+0xea/0x290 [ 1487.482875] __sys_sendmsg+0xe5/0x1b0 [ 1487.483657] ? __sys_sendmsg_sock+0x40/0x40 [ 1487.484651] ? io_schedule_timeout+0x140/0x140 [ 1487.485778] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1487.486872] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1487.488116] ? trace_hardirqs_on+0x5b/0x180 [ 1487.489030] do_syscall_64+0x33/0x40 [ 1487.489873] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1487.490953] RIP: 0033:0x7fc533f18b19 [ 1487.491779] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1487.495568] RSP: 002b:00007fc53148e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1487.497130] RAX: ffffffffffffffda RBX: 00007fc53402bf60 RCX: 00007fc533f18b19 [ 1487.498714] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1487.500182] RBP: 00007fc533f72f6d R08: 0000000000000000 R09: 0000000000000000 [ 1487.501646] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1487.503098] R13: 00007fff9313d64f R14: 00007fc53148e300 R15: 0000000000022000 [ 1487.540955] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1487.542241] CPU: 0 PID: 10921 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1487.543023] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1487.543980] Call Trace: [ 1487.544297] dump_stack+0x107/0x167 [ 1487.544717] sysfs_warn_dup.cold+0x1c/0x29 [ 1487.545208] sysfs_do_create_link_sd+0x122/0x140 [ 1487.545769] sysfs_create_link+0x5f/0xc0 [ 1487.546239] device_add+0x703/0x1c50 [ 1487.546668] ? devlink_add_symlinks+0x970/0x970 [ 1487.547220] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1487.547833] wiphy_register+0x1da6/0x2850 [ 1487.548320] ? wiphy_unregister+0xb90/0xb90 [ 1487.548842] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1487.549455] ieee80211_register_hw+0x23c5/0x38b0 [ 1487.550023] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1487.550581] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1487.551213] ? memset+0x20/0x50 [ 1487.551596] ? __hrtimer_init+0x12c/0x270 [ 1487.552077] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1487.552669] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1487.553194] ? hwsim_new_radio_nl+0x967/0x1080 [ 1487.553746] ? memcpy+0x39/0x60 [ 1487.554129] hwsim_new_radio_nl+0x991/0x1080 [ 1487.554633] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1487.555245] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1487.555999] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1487.556751] genl_family_rcv_msg_doit+0x22d/0x330 [ 1487.557314] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1487.558078] ? cap_capable+0x1cd/0x230 [ 1487.558553] ? ns_capable+0xe2/0x110 [ 1487.558979] genl_rcv_msg+0x33c/0x5a0 [ 1487.559424] ? genl_get_cmd+0x480/0x480 [ 1487.559902] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1487.560528] ? lock_release+0x680/0x680 [ 1487.560999] ? __lockdep_reset_lock+0x180/0x180 [ 1487.561573] netlink_rcv_skb+0x14b/0x430 [ 1487.562066] ? genl_get_cmd+0x480/0x480 [ 1487.562539] ? netlink_ack+0xab0/0xab0 [ 1487.562992] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1487.563514] ? __sanitizer_cov_trace_const_cmp1+0x4/0x20 [ 1487.564131] genl_rcv+0x24/0x40 [ 1487.564515] netlink_unicast+0x549/0x7f0 [ 1487.564987] ? netlink_attachskb+0x870/0x870 [ 1487.565479] ? __virt_addr_valid+0x128/0x350 [ 1487.565997] netlink_sendmsg+0x90f/0xdf0 [ 1487.566459] ? netlink_unicast+0x7f0/0x7f0 [ 1487.566940] ? netlink_unicast+0x7f0/0x7f0 [ 1487.567424] __sock_sendmsg+0x154/0x190 [ 1487.567879] ____sys_sendmsg+0x70d/0x870 [ 1487.568338] ? sock_write_iter+0x3d0/0x3d0 [ 1487.568812] ? do_recvmmsg+0x6d0/0x6d0 [ 1487.569246] ? perf_trace_lock+0xac/0x490 [ 1487.569733] ? __lockdep_reset_lock+0x180/0x180 [ 1487.570253] ? perf_trace_lock+0xac/0x490 [ 1487.570722] ___sys_sendmsg+0xf3/0x170 [ 1487.571162] ? sendmsg_copy_msghdr+0x160/0x160 [ 1487.571703] ? lock_downgrade+0x6d0/0x6d0 [ 1487.572170] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1487.572753] ? trace_hardirqs_on+0x5b/0x180 [ 1487.573240] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1487.573865] ? __fget_files+0x296/0x4c0 [ 1487.574336] ? __fget_light+0xea/0x290 [ 1487.574815] __sys_sendmsg+0xe5/0x1b0 [ 1487.575238] ? __sys_sendmsg_sock+0x40/0x40 [ 1487.575749] ? io_schedule_timeout+0x140/0x140 [ 1487.576312] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1487.576948] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1487.577559] ? trace_hardirqs_on+0x5b/0x180 [ 1487.578062] do_syscall_64+0x33/0x40 [ 1487.578500] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1487.579099] RIP: 0033:0x7f07e63f4b19 [ 1487.579517] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1487.581709] RSP: 002b:00007f07e396a188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1487.582584] RAX: ffffffffffffffda RBX: 00007f07e6507f60 RCX: 00007f07e63f4b19 [ 1487.583402] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1487.584245] RBP: 00007f07e644ef6d R08: 0000000000000000 R09: 0000000000000000 [ 1487.585041] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1487.585903] R13: 00007fff1f25f23f R14: 00007f07e396a300 R15: 0000000000022000 [ 1487.647797] EXT4-fs (sda): re-mounted. Opts: (null) 15:36:16 executing program 6: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:36:16 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00'], 0x28}}, 0x0) 15:36:16 executing program 5: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:36:16 executing program 3: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:36:16 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) (fail_nth: 72) 15:36:16 executing program 4: ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, &(0x7f0000000000)={0xffffffffffffffff, 0x1, 0x7, 0x1}) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) sendmsg$NL80211_CMD_PROBE_CLIENT(r0, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x50, r1, 0x300, 0x70bd2b, 0x25dfdc01, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x50}}, 0x44008) msgget(0x2, 0x100) r2 = msgget$private(0x0, 0x8) msgsnd(r2, &(0x7f00000001c0)={0x1, "6df0b60b191a0431c9dc3250f88b418808539684a094362db61503ed4a6d201912dc6dd86d4b6ffd5dad56106a7ad2ff07f8ecd486b06949f508ee6e1f96721adb9c4992fc04ee374abfc9d6a77cbf888040473a8a4c02c2b4f4709131a4a21eda376f6e60e244b9e3f9bc954e5864a0350224166ae35ef82c41b0b863df7b3973c1dad2c2b6431e0ac1d76e86c5d9d621593125a956201b56eab340bd8066f00f3ad654992178dbd165142e69b4"}, 0xb6, 0x800) 15:36:16 executing program 0: socket$netlink(0x10, 0x3, 0x10) 15:36:16 executing program 2: mount$9p_unix(&(0x7f00000002c0)='./file0\x00', &(0x7f0000000300)='./file0\x00', &(0x7f0000000340), 0x20004, &(0x7f0000000380)={'trans=unix,', {[{@privport}, {@access_client}, {@dfltuid={'dfltuid', 0x3d, 0xffffffffffffffff}}], [{@uid_lt={'uid<', 0xffffffffffffffff}}, {@seclabel}]}}) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x69, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_io_uring_setup(0x4d4f, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000200), &(0x7f0000000140)) pivot_root(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)='./file0\x00') io_uring_enter(r0, 0x58ab, 0x0, 0x0, 0x0, 0x0) creat(&(0x7f0000000400)='./file0/file0\x00', 0x110) mkdir(&(0x7f00000000c0)='./file0\x00', 0x61) r1 = ioctl$TUNGETDEVNETNS(0xffffffffffffffff, 0x54e3, 0x0) openat2(0xffffffffffffff9c, &(0x7f0000000240)='./file0/file0\x00', &(0x7f0000000280)={0x800, 0xac, 0x13}, 0x18) dup3(r1, 0xffffffffffffffff, 0x80000) fchown(r0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$SOCK_DIAG_BY_FAMILY(0xffffffffffffffff, &(0x7f00000007c0)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000780)={&(0x7f0000000800)=ANY=[@ANYBLOB="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"], 0x250}, 0x1, 0x0, 0x0, 0x8000}, 0x1) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000140)={[{@delalloc}]}) [ 1502.716451] FAULT_INJECTION: forcing a failure. [ 1502.716451] name failslab, interval 1, probability 0, space 0, times 0 [ 1502.718932] CPU: 0 PID: 10974 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1502.720370] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1502.722124] Call Trace: [ 1502.722669] dump_stack+0x107/0x167 [ 1502.723427] should_fail.cold+0x5/0xa [ 1502.724211] ? create_object.isra.0+0x3a/0xa20 [ 1502.725167] should_failslab+0x5/0x20 [ 1502.725946] kmem_cache_alloc+0x5b/0x310 [ 1502.726808] create_object.isra.0+0x3a/0xa20 [ 1502.727735] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1502.728802] kmem_cache_alloc+0x159/0x310 [ 1502.729685] __kernfs_new_node+0xd4/0x860 [ 1502.730582] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1502.731580] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1502.732583] ? wait_for_completion_io+0x270/0x270 [ 1502.733575] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1502.734692] kernfs_new_node+0x93/0x120 [ 1502.735506] __kernfs_create_file+0x51/0x350 [ 1502.736406] sysfs_add_file_mode_ns+0x221/0x560 [ 1502.737370] internal_create_group+0x324/0xb30 [ 1502.738348] ? sysfs_remove_group+0x170/0x170 [ 1502.739288] ? kernfs_name_hash+0xe7/0x110 [ 1502.740178] ? kernfs_find_ns+0x256/0x380 [ 1502.741065] sysfs_slab_add+0x188/0x200 [ 1502.741913] __kmem_cache_create+0x3db/0x520 [ 1502.742842] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1502.743905] p9_client_create+0xc2b/0x11c0 [ 1502.744805] ? p9_client_flush+0x430/0x430 [ 1502.745694] ? trace_hardirqs_on+0x5b/0x180 [ 1502.746615] ? lockdep_init_map_type+0x2c7/0x780 [ 1502.747612] ? __raw_spin_lock_init+0x36/0x110 [ 1502.748569] v9fs_session_init+0x1dd/0x1680 [ 1502.749482] ? lock_release+0x680/0x680 [ 1502.750324] ? kmem_cache_alloc_trace+0x151/0x320 [ 1502.751319] ? v9fs_show_options+0x690/0x690 [ 1502.752224] ? trace_hardirqs_on+0x5b/0x180 [ 1502.753128] ? kasan_unpoison_shadow+0x33/0x50 [ 1502.754113] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1502.755168] v9fs_mount+0x79/0x8f0 [ 1502.755898] ? v9fs_write_inode+0x60/0x60 [ 1502.756747] legacy_get_tree+0x105/0x220 [ 1502.757572] vfs_get_tree+0x8e/0x300 [ 1502.758351] path_mount+0x13be/0x20b0 [ 1502.759143] ? strncpy_from_user+0x9e/0x470 [ 1502.760028] ? finish_automount+0xa90/0xa90 [ 1502.760901] ? getname_flags.part.0+0x1dd/0x4f0 [ 1502.761863] ? _copy_from_user+0xfb/0x1b0 [ 1502.762722] __x64_sys_mount+0x282/0x300 [ 1502.763551] ? copy_mnt_ns+0xa00/0xa00 [ 1502.764354] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1502.765429] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1502.766530] do_syscall_64+0x33/0x40 [ 1502.767303] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1502.768358] RIP: 0033:0x7f76b700cb19 [ 1502.769131] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1502.772915] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1502.774484] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1502.775948] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1502.777399] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1502.778868] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1502.780311] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 15:36:16 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ftruncate(r0, 0x1000003) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)={0x0, 0x0, 0x2, 0x80000007, 0xffff7ff9}) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0xc02, 0x0) r2 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x5, &(0x7f0000000080)=0x1088, 0x4) sendmmsg$inet6(r2, &(0x7f0000004540)=[{{&(0x7f0000000000)={0x2, 0x4e23, 0x0, @private0}, 0x1c, 0x0}}], 0x1, 0x0) ioctl$FS_IOC_FSSETXATTR(r2, 0x401c5820, &(0x7f0000000140)={0x2, 0x7, 0x4, 0x52f, 0x8001}) write$binfmt_elf64(r1, &(0x7f0000000a00)=ANY=[], 0x98a) ioctl$F2FS_IOC_DEFRAGMENT(r0, 0xc010f508, &(0x7f0000000180)={0x3, 0x5}) fcntl$dupfd(r0, 0x406, r2) readv(r1, &(0x7f0000000340)=[{&(0x7f0000002340)=""/4101, 0x1005}, {&(0x7f0000000380)=""/99}], 0x1000000000000009) pwrite64(r1, &(0x7f0000000240)="3e5b16e900afd16fff57ff37b1597593f59e2cec1ddc23874c6abd139a13b96debd198", 0x23, 0x3) readv(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000001340)=""/4096, 0x1000}], 0x1) getsockopt$IP6T_SO_GET_INFO(r2, 0x29, 0x40, &(0x7f00000001c0)={'filter\x00', 0x0, [0x8000, 0x4, 0x3, 0x1]}, &(0x7f00000000c0)=0x54) unshare(0x48020200) syz_open_dev$sg(&(0x7f0000000080), 0x80000001, 0x39b341) 15:36:16 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00'], 0x28}}, 0x0) 15:36:16 executing program 4: r0 = socket$inet6_udp(0xa, 0x2, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'lo\x00'}) ioctl$BTRFS_IOC_START_SYNC(0xffffffffffffffff, 0x80089418, 0x0) ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, r1) sendmsg$ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=0x0, @ANYBLOB="20000000000000000000030000001800018014000264a572696467655f736c6176655f30000020000180140002006d61637674617030000000000000000008000300010000000500050022000000"], 0x54}, 0x1, 0x0, 0x0, 0x40000}, 0x0) r2 = dup(0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000080)={'wlan1\x00'}) fsetxattr$security_evm(r2, &(0x7f0000000180), &(0x7f00000003c0)=@sha1={0x1, "0a6238b1a80517bd26b18a91e5aa109aca267bf1"}, 0x15, 0x2) sendmsg$NL80211_CMD_PROBE_MESH_LINK(0xffffffffffffffff, &(0x7f0000000a80)={0x0, 0x0, 0x0}, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r4, 0x0, r3, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) openat(0xffffffffffffffff, &(0x7f0000000140)='./file1\x00', 0x300, 0x104) sendmsg$inet6(r3, &(0x7f00000000c0)={&(0x7f0000000000)={0xa, 0x4e20, 0x392c, @loopback, 0x530}, 0x1c, &(0x7f0000000040)=[{&(0x7f00000002c0)="9189214d441c9d72729ac1846db4ea94ecbfec081820ea63cb2ab7f8a3e6bd3175be219c877f53c9b3d3c5f7f685ce93269f4aa0b3f6b54cafc1eb2113bac4896f38878ca57a81db3eb12f64de2cceacc4ef74ff97d2e2ed36ab732012dd12c79ca8609ca69e65b8d7afa521ca3eaced70494eb6ca3fb502dd6d54d7928c1cbcf8d219d1defc43f82813c1991e2d67cf2f55f9ffcbb2f61a94e0eca5756bf38449ce7f3b38ec123dce032a5c4db8e6b98a085281a440b64eca289e3bd4a9916afc74d54d8bc903064434f9e33ab4c5b25da177667adc4e142a9f2a49f11c3e53", 0xe0}, {&(0x7f0000000ac0)="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", 0x1000}], 0x2, &(0x7f0000000640)=[@dstopts={{0xf8, 0x29, 0x37, {0x5e, 0x1b, '\x00', [@generic={0x1, 0xcc, "391bff9e2f30e33067ff6600c691f10bc11d74e79039a931afc734ed14925e3bdb3bda141cfd909220418f0fb3fc66d1f352c92d1f4b383ca28b1cf1d37da4cbd2ebecb714b5f4d5c688dd239d9b48f26952d6bb8f818eb50f8ed58fabc05294a6c120e9b98d8acd21315656599f239a6c0e03743e6d0ce09b842e2549d467605ae85cf697cb5bece4a4a529d5fc5f0cc38e7e2be258e99f6736406a8d1ed6fa019d910f4c56e54a5a04dfa6795ab41ec3cc4b61d4fa9bf5a3e2f492384fd75c2e592851c7afb1d73c135681"}, @padn={0x1, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @enc_lim={0x4, 0x1, 0x1}, @enc_lim={0x4, 0x1, 0x7}]}}}, @dstopts={{0x28, 0x29, 0x37, {0x3c, 0x1, '\x00', [@pad1, @enc_lim={0x4, 0x1, 0x8}, @enc_lim={0x4, 0x1, 0x5}]}}}, @hopopts={{0x138, 0x29, 0x36, {0xc, 0x23, '\x00', [@generic={0x1f, 0x32, "b8ef9deef8c0754da1c7bbe8bb3bf1821af01adc4efbb5552cada2ecd4820c496678635d6dacdb63b8b8091bf1e12bd9e6b6"}, @generic={0x7f, 0xde, "42a4018ce55022fda8743cd7490877759a36a911c94a1f853df85db45ec31b6ce85afc594c840779d601db5da0397f853d417890c33fedcc5d44e3ee02ddf2c00a8effcd996cf51d1e30b2ad5df43de7131b564b986afc232a116f2bc1b0b51785bdfbf10a18cf48af064e5c4a8c683606b88422a3244a439d979a4d4ef1ced8048049985652843c1a07647c60cd23241d82a495f88d13ab6ec7fb3d6e6eb53f1600cc418ed9f92c42529ead06210af0acb1f1851a94bb6e563b4031660c222eeaa1115a5f7b91b706ee40f3120ada8a3a9a4140bf6796fb9032aafb97dc"}, @ra={0x5, 0x2, 0x5997}, @enc_lim]}}}, @rthdrdstopts={{0x100, 0x29, 0x37, {0x3a, 0x1c, '\x00', [@pad1, @jumbo={0xc2, 0x4, 0xfffffaa8}, @generic={0x1, 0x92, "c335161182e7c59a3369ee03489c2bdedee5cdc51e8de42635280633b8b15bcd6fadc40a3278b4fdf24c5019c1fcc04d4b986be2c2f9d288c9b82e6ef13fc4b154802b991f1fc816faef509caf415da820f184f02405778b1489204fbde167893e79c8f6e45b1779c56b0b5a8383cf2eb66b91a16fa132051be9c4bcc812f733d00b95323e5c6d37aa5c62d2a27aeeacab23"}, @generic={0x4, 0xc, "9031fe1d29c41ed7e812cf22"}, @ra={0x5, 0x2, 0x2a17}, @hao={0xc9, 0x10, @empty}, @hao={0xc9, 0x10, @mcast1}, @hao={0xc9, 0x10, @rand_addr=' \x01\x00'}]}}}], 0x358}, 0x80) setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x65, 0x0, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x1}, 0x1c) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffdfffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(r2, &(0x7f0000004d00)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000080)='K', 0x1}], 0x1}}], 0x1, 0x0) 15:36:16 executing program 6: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:36:16 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00'], 0x28}}, 0x0) 15:36:17 executing program 2: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x40c44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x0, 0x3, 0xffffffffffffffff, 0x0) ioctl$sock_FIOGETOWN(0xffffffffffffffff, 0x8903, &(0x7f0000000280)) ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) openat(r0, &(0x7f0000000000)='./file0\x00', 0x0, 0x100) sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)={0x1c, 0x1, 0x4, 0x3, 0x0, 0x0, {}, [@NFULA_CFG_FLAGS={0x6, 0x6, 0x1, 0x0, 0x7}]}, 0x1c}}, 0x0) setsockopt$IP_VS_SO_SET_ZERO(0xffffffffffffffff, 0x0, 0x48f, 0x0, 0x0) 15:36:17 executing program 4: r0 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x94, 0x1, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x1}, 0x10088, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = getpid() r2 = getpgid(0x0) r3 = epoll_create(0x1) kcmp$KCMP_EPOLL_TFD(r1, r2, 0x7, r3, &(0x7f0000000040)={r3}) perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x6, 0x7f, 0xe7, 0x7, 0x0, 0x401, 0x48000, 0x11, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x3, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x7, @perf_bp, 0x2040, 0x5, 0x3ff, 0x2, 0x3, 0x8, 0x1, 0x0, 0xfff, 0x0, 0x4e77}, r1, 0x2, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000000c0), 0xa}, 0x0, 0x0, 0x0, 0x7}, r1, 0x0, 0xffffffffffffffff, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_TCP_REPAIR(r4, 0x6, 0x13, &(0x7f0000000140)=0x1, 0x4) connect$inet6(r4, &(0x7f0000000040)={0xa, 0x0, 0x0, @loopback={0x0, 0x7}}, 0x1c) setsockopt$inet6_tcp_TCP_REPAIR(r4, 0x6, 0x13, &(0x7f0000000080), 0x4) [ 1503.047593] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1503.050686] CPU: 1 PID: 10968 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 1503.052124] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1503.053851] Call Trace: [ 1503.054404] dump_stack+0x107/0x167 [ 1503.055168] sysfs_warn_dup.cold+0x1c/0x29 [ 1503.056057] sysfs_do_create_link_sd+0x122/0x140 [ 1503.057037] sysfs_create_link+0x5f/0xc0 [ 1503.057885] device_add+0x703/0x1c50 [ 1503.058644] ? devlink_add_symlinks+0x970/0x970 [ 1503.059607] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1503.060685] wiphy_register+0x1da6/0x2850 [ 1503.061544] ? wiphy_unregister+0xb90/0xb90 [ 1503.062460] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1503.063549] ieee80211_register_hw+0x23c5/0x38b0 [ 1503.064534] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1503.065508] ? net_generic+0xdb/0x2b0 [ 1503.066297] ? lockdep_init_map_type+0x2c7/0x780 [ 1503.067264] ? memset+0x20/0x50 [ 1503.067936] ? __hrtimer_init+0x12c/0x270 [ 1503.068779] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1503.069825] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1503.070760] ? hwsim_new_radio_nl+0x967/0x1080 [ 1503.071686] ? memcpy+0x39/0x60 [ 1503.072367] hwsim_new_radio_nl+0x991/0x1080 [ 1503.073258] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1503.074332] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1503.075655] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1503.076981] genl_family_rcv_msg_doit+0x22d/0x330 [ 1503.077982] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1503.079333] ? ns_capable+0xe2/0x110 [ 1503.080095] genl_rcv_msg+0x33c/0x5a0 [ 1503.080868] ? genl_get_cmd+0x480/0x480 [ 1503.081673] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1503.082724] ? lock_release+0x680/0x680 [ 1503.083525] ? __lockdep_reset_lock+0x180/0x180 [ 1503.084468] netlink_rcv_skb+0x14b/0x430 [ 1503.085304] ? genl_get_cmd+0x480/0x480 [ 1503.086117] ? netlink_ack+0xab0/0xab0 [ 1503.086918] ? genl_pernet_exit+0x80/0x80 [ 1503.087757] ? netlink_unicast+0x51f/0x7f0 [ 1503.088623] genl_rcv+0x24/0x40 [ 1503.089287] netlink_unicast+0x549/0x7f0 [ 1503.090149] ? netlink_attachskb+0x870/0x870 [ 1503.091054] netlink_sendmsg+0x90f/0xdf0 [ 1503.091903] ? netlink_unicast+0x7f0/0x7f0 [ 1503.092776] ? netlink_unicast+0x7f0/0x7f0 [ 1503.093647] __sock_sendmsg+0x154/0x190 [ 1503.094491] ____sys_sendmsg+0x70d/0x870 [ 1503.095333] ? sock_write_iter+0x3d0/0x3d0 [ 1503.096201] ? do_recvmmsg+0x6d0/0x6d0 [ 1503.097010] ? perf_trace_lock+0xac/0x490 [ 1503.097878] ? __lockdep_reset_lock+0x180/0x180 [ 1503.098828] ___sys_sendmsg+0xf3/0x170 [ 1503.099634] ? sendmsg_copy_msghdr+0x160/0x160 [ 1503.100577] ? lock_downgrade+0x6d0/0x6d0 [ 1503.101429] ? find_held_lock+0x2c/0x110 [ 1503.102268] ? clockevents_program_event+0x14b/0x360 [ 1503.103329] ? __fget_files+0x296/0x4c0 [ 1503.104181] ? __fget_light+0xea/0x290 [ 1503.104994] __sys_sendmsg+0xe5/0x1b0 [ 1503.105796] ? __sys_sendmsg_sock+0x40/0x40 [ 1503.106684] ? trace_hardirqs_on+0x5b/0x180 [ 1503.107613] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1503.108686] ? syscall_enter_from_user_mode+0x27/0x50 [ 1503.109775] do_syscall_64+0x33/0x40 [ 1503.110537] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1503.111599] RIP: 0033:0x7f2e008a0b19 [ 1503.112370] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1503.116171] RSP: 002b:00007f2dfde16188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1503.117740] RAX: ffffffffffffffda RBX: 00007f2e009b3f60 RCX: 00007f2e008a0b19 [ 1503.119208] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1503.120668] RBP: 00007f2e008faf6d R08: 0000000000000000 R09: 0000000000000000 [ 1503.122140] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1503.123620] R13: 00007ffc98392b5f R14: 00007f2dfde16300 R15: 0000000000022000 15:36:17 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) (fail_nth: 73) [ 1503.251168] FAULT_INJECTION: forcing a failure. [ 1503.251168] name failslab, interval 1, probability 0, space 0, times 0 [ 1503.253557] CPU: 1 PID: 11004 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1503.254981] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1503.256678] Call Trace: [ 1503.257227] dump_stack+0x107/0x167 [ 1503.258020] should_fail.cold+0x5/0xa [ 1503.258802] ? __kernfs_new_node+0xd4/0x860 [ 1503.259684] should_failslab+0x5/0x20 [ 1503.260467] kmem_cache_alloc+0x5b/0x310 [ 1503.261296] __kernfs_new_node+0xd4/0x860 [ 1503.262163] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1503.263140] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1503.264138] ? wait_for_completion_io+0x270/0x270 [ 1503.265139] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1503.266249] kernfs_new_node+0x93/0x120 [ 1503.267083] __kernfs_create_file+0x51/0x350 [ 1503.267994] sysfs_add_file_mode_ns+0x221/0x560 [ 1503.268967] internal_create_group+0x324/0xb30 [ 1503.269929] ? sysfs_remove_group+0x170/0x170 [ 1503.270843] ? kernfs_name_hash+0xe7/0x110 [ 1503.271727] ? kernfs_find_ns+0x256/0x380 [ 1503.272594] sysfs_slab_add+0x188/0x200 [ 1503.273422] __kmem_cache_create+0x3db/0x520 [ 1503.274324] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1503.275356] p9_client_create+0xc2b/0x11c0 [ 1503.276235] ? p9_client_flush+0x430/0x430 [ 1503.277107] ? trace_hardirqs_on+0x5b/0x180 [ 1503.278012] ? lockdep_init_map_type+0x2c7/0x780 [ 1503.278990] ? __raw_spin_lock_init+0x36/0x110 [ 1503.279941] v9fs_session_init+0x1dd/0x1680 [ 1503.280827] ? lock_release+0x680/0x680 [ 1503.281634] ? kmem_cache_alloc_trace+0x151/0x320 [ 1503.282632] ? v9fs_show_options+0x690/0x690 [ 1503.283560] ? trace_hardirqs_on+0x5b/0x180 [ 1503.284445] ? kasan_unpoison_shadow+0x33/0x50 [ 1503.285383] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1503.286446] v9fs_mount+0x79/0x8f0 [ 1503.287196] ? v9fs_write_inode+0x60/0x60 [ 1503.288052] legacy_get_tree+0x105/0x220 [ 1503.288886] vfs_get_tree+0x8e/0x300 [ 1503.289653] path_mount+0x13be/0x20b0 [ 1503.290449] ? strncpy_from_user+0x9e/0x470 [ 1503.291334] ? finish_automount+0xa90/0xa90 [ 1503.292214] ? getname_flags.part.0+0x1dd/0x4f0 [ 1503.293160] ? _copy_from_user+0xfb/0x1b0 [ 1503.294040] __x64_sys_mount+0x282/0x300 [ 1503.294880] ? copy_mnt_ns+0xa00/0xa00 [ 1503.295678] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1503.296743] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1503.297815] do_syscall_64+0x33/0x40 [ 1503.298586] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1503.299657] RIP: 0033:0x7f76b700cb19 [ 1503.300432] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1503.304172] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1503.305730] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1503.307191] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1503.308644] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1503.310108] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1503.311569] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 [ 1503.395085] kmem_cache_create(9p-fcall-cache) failed with error -12 [ 1503.396607] CPU: 0 PID: 11004 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1503.398044] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1503.399803] Call Trace: [ 1503.400366] dump_stack+0x107/0x167 [ 1503.401161] kmem_cache_create_usercopy.cold+0x17/0x65 [ 1503.402254] p9_client_create+0xc2b/0x11c0 [ 1503.403158] ? p9_client_flush+0x430/0x430 [ 1503.404030] ? trace_hardirqs_on+0x5b/0x180 [ 1503.404961] ? lockdep_init_map_type+0x2c7/0x780 [ 1503.405933] ? __raw_spin_lock_init+0x36/0x110 [ 1503.406919] v9fs_session_init+0x1dd/0x1680 [ 1503.407824] ? lock_release+0x680/0x680 [ 1503.408652] ? kmem_cache_alloc_trace+0x151/0x320 [ 1503.409644] ? v9fs_show_options+0x690/0x690 [ 1503.410578] ? trace_hardirqs_on+0x5b/0x180 [ 1503.411466] ? kasan_unpoison_shadow+0x33/0x50 [ 1503.412390] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1503.413425] v9fs_mount+0x79/0x8f0 [ 1503.414165] ? v9fs_write_inode+0x60/0x60 [ 1503.415009] legacy_get_tree+0x105/0x220 [ 1503.415834] vfs_get_tree+0x8e/0x300 [ 1503.416604] path_mount+0x13be/0x20b0 [ 1503.417395] ? strncpy_from_user+0x9e/0x470 [ 1503.418307] ? finish_automount+0xa90/0xa90 [ 1503.419194] ? getname_flags.part.0+0x1dd/0x4f0 [ 1503.420141] ? _copy_from_user+0xfb/0x1b0 [ 1503.420987] __x64_sys_mount+0x282/0x300 [ 1503.421815] ? copy_mnt_ns+0xa00/0xa00 [ 1503.422618] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1503.423674] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1503.424743] do_syscall_64+0x33/0x40 [ 1503.425512] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1503.426594] RIP: 0033:0x7f76b700cb19 [ 1503.427363] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1503.431103] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1503.432624] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1503.434123] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1503.435581] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1503.436988] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1503.438467] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 [ 1503.549334] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1503.551213] CPU: 1 PID: 10972 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1503.552644] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1503.554413] Call Trace: [ 1503.554972] dump_stack+0x107/0x167 [ 1503.555733] sysfs_warn_dup.cold+0x1c/0x29 [ 1503.556613] sysfs_do_create_link_sd+0x122/0x140 [ 1503.557598] sysfs_create_link+0x5f/0xc0 [ 1503.558433] device_add+0x703/0x1c50 [ 1503.559197] ? devlink_add_symlinks+0x970/0x970 [ 1503.560156] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1503.561227] wiphy_register+0x1da6/0x2850 [ 1503.562097] ? wiphy_unregister+0xb90/0xb90 [ 1503.562975] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1503.564086] ? ieee80211_register_hw+0x193c/0x38b0 [ 1503.565088] ieee80211_register_hw+0x23c5/0x38b0 [ 1503.566106] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1503.567092] ? check_memory_region+0x198/0x1f0 [ 1503.568027] ? memset+0x20/0x50 [ 1503.568698] ? __hrtimer_init+0x12c/0x270 [ 1503.569554] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1503.570601] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1503.571545] ? hwsim_new_radio_nl+0x967/0x1080 [ 1503.572475] ? memcpy+0x39/0x60 [ 1503.573154] hwsim_new_radio_nl+0x991/0x1080 [ 1503.574069] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1503.575116] ? trace_hardirqs_on+0x5b/0x180 [ 1503.576006] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1503.577085] genl_family_rcv_msg_doit+0x22d/0x330 [ 1503.578080] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1503.579413] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1503.580519] ? trace_hardirqs_on+0x5b/0x180 [ 1503.581407] ? genl_rcv_msg+0x30c/0x5a0 [ 1503.582240] ? genl_rcv_msg+0x31f/0x5a0 [ 1503.583050] genl_rcv_msg+0x33c/0x5a0 [ 1503.583825] ? genl_get_cmd+0x480/0x480 [ 1503.584637] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1503.585700] ? lock_release+0x680/0x680 [ 1503.586514] ? __lockdep_reset_lock+0x180/0x180 [ 1503.587475] netlink_rcv_skb+0x14b/0x430 [ 1503.588296] ? genl_get_cmd+0x480/0x480 [ 1503.589107] ? netlink_ack+0xab0/0xab0 [ 1503.589921] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1503.590853] ? __sanitizer_cov_trace_pc+0x30/0x60 [ 1503.591835] genl_rcv+0x24/0x40 [ 1503.592510] netlink_unicast+0x549/0x7f0 [ 1503.593336] ? netlink_attachskb+0x870/0x870 [ 1503.594258] ? __virt_addr_valid+0x128/0x350 [ 1503.595157] netlink_sendmsg+0x90f/0xdf0 [ 1503.595992] ? netlink_unicast+0x7f0/0x7f0 [ 1503.596862] ? netlink_unicast+0x7f0/0x7f0 [ 1503.597750] __sock_sendmsg+0x154/0x190 [ 1503.598561] ____sys_sendmsg+0x70d/0x870 [ 1503.599396] ? sock_write_iter+0x3d0/0x3d0 [ 1503.600268] ? do_recvmmsg+0x6d0/0x6d0 [ 1503.601067] ? __lockdep_reset_lock+0x180/0x180 [ 1503.602033] ___sys_sendmsg+0xf3/0x170 [ 1503.602832] ? sendmsg_copy_msghdr+0x160/0x160 [ 1503.603777] ? lock_downgrade+0x6d0/0x6d0 [ 1503.604628] ? find_held_lock+0x2c/0x110 [ 1503.605464] ? clockevents_program_event+0x14b/0x360 [ 1503.606520] ? __fget_files+0x296/0x4c0 [ 1503.607345] ? __fget_light+0xea/0x290 [ 1503.608175] __sys_sendmsg+0xe5/0x1b0 [ 1503.608952] ? __sys_sendmsg_sock+0x40/0x40 [ 1503.609872] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1503.610939] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1503.611989] ? trace_hardirqs_on+0x5b/0x180 [ 1503.612871] do_syscall_64+0x33/0x40 [ 1503.613634] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1503.614690] RIP: 0033:0x7f07e63f4b19 [ 1503.615445] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1503.619173] RSP: 002b:00007f07e396a188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1503.620741] RAX: ffffffffffffffda RBX: 00007f07e6507f60 RCX: 00007f07e63f4b19 [ 1503.622187] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1503.623639] RBP: 00007f07e644ef6d R08: 0000000000000000 R09: 0000000000000000 [ 1503.625086] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1503.626566] R13: 00007fff1f25f23f R14: 00007f07e396a300 R15: 0000000000022000 [ 1503.771336] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1503.773143] CPU: 1 PID: 10988 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1503.774560] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1503.776245] Call Trace: [ 1503.776785] dump_stack+0x107/0x167 [ 1503.777530] sysfs_warn_dup.cold+0x1c/0x29 [ 1503.778437] sysfs_do_create_link_sd+0x122/0x140 [ 1503.779400] sysfs_create_link+0x5f/0xc0 [ 1503.780229] device_add+0x703/0x1c50 [ 1503.780990] ? devlink_add_symlinks+0x970/0x970 [ 1503.781944] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1503.783016] wiphy_register+0x1da6/0x2850 [ 1503.783876] ? wiphy_unregister+0xb90/0xb90 [ 1503.784751] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1503.785878] ? ieee80211_register_hw+0x238b/0x38b0 [ 1503.786876] ? ieee80211_register_hw+0x1897/0x38b0 [ 1503.787887] ieee80211_register_hw+0x23c5/0x38b0 [ 1503.788870] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1503.789863] ? net_generic+0xdb/0x2b0 [ 1503.790650] ? memset+0x20/0x50 [ 1503.791325] ? __hrtimer_init+0x12c/0x270 [ 1503.792172] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1503.793207] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1503.794162] ? hwsim_new_radio_nl+0x967/0x1080 [ 1503.795092] ? memcpy+0x39/0x60 [ 1503.795779] hwsim_new_radio_nl+0x991/0x1080 [ 1503.796668] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1503.797744] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1503.799077] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1503.800415] genl_family_rcv_msg_doit+0x22d/0x330 [ 1503.801401] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1503.802741] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1503.803848] ? trace_hardirqs_on+0x5b/0x180 [ 1503.804723] ? cap_capable+0x1cd/0x230 [ 1503.805540] ? ns_capable+0xe2/0x110 [ 1503.806323] genl_rcv_msg+0x33c/0x5a0 [ 1503.807106] ? genl_get_cmd+0x480/0x480 [ 1503.807926] ? lock_acquire+0x1b9/0x470 [ 1503.808728] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1503.809796] ? lock_release+0x680/0x680 [ 1503.810607] ? __lockdep_reset_lock+0x180/0x180 [ 1503.811559] netlink_rcv_skb+0x14b/0x430 [ 1503.812395] ? genl_get_cmd+0x480/0x480 [ 1503.813200] ? netlink_ack+0xab0/0xab0 [ 1503.814006] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1503.814937] ? is_vmalloc_addr+0x7b/0xb0 [ 1503.815761] genl_rcv+0x24/0x40 [ 1503.816427] netlink_unicast+0x549/0x7f0 [ 1503.817266] ? netlink_attachskb+0x870/0x870 [ 1503.818198] netlink_sendmsg+0x90f/0xdf0 [ 1503.819034] ? netlink_unicast+0x7f0/0x7f0 [ 1503.819908] ? netlink_unicast+0x7f0/0x7f0 [ 1503.820771] __sock_sendmsg+0x154/0x190 [ 1503.821587] ____sys_sendmsg+0x70d/0x870 [ 1503.822438] ? sock_write_iter+0x3d0/0x3d0 [ 1503.823302] ? do_recvmmsg+0x6d0/0x6d0 [ 1503.824129] ? ___sys_sendmsg+0x8b/0x170 [ 1503.824965] ___sys_sendmsg+0xf3/0x170 [ 1503.825761] ? sendmsg_copy_msghdr+0x160/0x160 [ 1503.826709] ? lock_downgrade+0x6d0/0x6d0 [ 1503.827557] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1503.828623] ? trace_hardirqs_on+0x5b/0x180 [ 1503.829508] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1503.830629] ? __fget_files+0x296/0x4c0 [ 1503.831452] ? __fget_light+0xea/0x290 [ 1503.832262] __sys_sendmsg+0xe5/0x1b0 [ 1503.833045] ? __sys_sendmsg_sock+0x40/0x40 [ 1503.833939] ? io_schedule_timeout+0x140/0x140 [ 1503.834903] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1503.835984] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1503.837034] ? trace_hardirqs_on+0x5b/0x180 [ 1503.837948] do_syscall_64+0x33/0x40 [ 1503.838719] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1503.839762] RIP: 0033:0x7fc533f18b19 [ 1503.840516] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1503.844238] RSP: 002b:00007fc53148e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1503.845785] RAX: ffffffffffffffda RBX: 00007fc53402bf60 RCX: 00007fc533f18b19 [ 1503.847238] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1503.848677] RBP: 00007fc533f72f6d R08: 0000000000000000 R09: 0000000000000000 [ 1503.850145] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1503.851599] R13: 00007fff9313d64f R14: 00007fc53148e300 R15: 0000000000022000 15:36:31 executing program 6: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 15:36:31 executing program 3: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:36:31 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) (fail_nth: 74) 15:36:31 executing program 4: r0 = openat(0xffffffffffffffff, &(0x7f00000000c0)='/proc/self/exe\x00', 0x0, 0x0) r1 = syz_mount_image$iso9660(&(0x7f0000000180), &(0x7f0000000440)='./file0\x00', 0x3, 0x1, &(0x7f0000000500)=[{&(0x7f0000000480)="94ca7cb26a09c5eb6d0146f43f5fa70c8002163b5833a4b877c01e3aff4fd419e8fd66ddff5efe1ee9b6a420262919605b7362ea8212406535a6c2f619cfe52a8ab6fc09b1660751ffc240ec8711698d0203835d6e6f0f23aa31c4ed6c0633", 0x5f, 0x6}], 0x1100000, 0x0) openat(r1, &(0x7f0000000600)='./file0\x00', 0x0, 0x20) r2 = socket$netlink(0x10, 0x3, 0x9) connect$netlink(r2, &(0x7f0000000080)=@kern={0x10, 0x0, 0x0, 0x2000}, 0xc) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000240)) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r4, 0x0, r3, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) flock(r3, 0x2) openat$incfs(r0, &(0x7f0000000100)='.log\x00', 0x331100, 0x0) r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x1, 0x0) getdents64(r5, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3b10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendfile(r2, r0, 0x0, 0x4000007ffffffc) 15:36:31 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00'/18], 0x28}}, 0x0) 15:36:31 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x7}, 0x840, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x0, 0x6, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) getpid() unshare(0x42000000) unshare(0x10400) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$AUTOFS_IOC_FAIL(r0, 0x9361, 0x7) clone3(0x0, 0x0) socket$inet_udp(0x2, 0x2, 0x0) pread64(0xffffffffffffffff, &(0x7f0000000480)=""/7, 0x7, 0x0) ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000280)=ANY=[@ANYBLOB="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", @ANYRES32=r0, @ANYBLOB="00800000000000002e2f66696c653000"]) openat$cgroup_int(r1, &(0x7f0000000100)='memory.high\x00', 0x2, 0x0) 15:36:31 executing program 0: r0 = syz_open_procfs$userns(0xffffffffffffffff, &(0x7f0000000080)) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0}, './file0\x00'}) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1ff) write$binfmt_elf64(r1, &(0x7f0000000280)=ANY=[@ANYBLOB="7f454c4600000047000000000000000003003e0000"], 0xaf2) r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) openat(r2, &(0x7f00000000c0)='./file0\x00', 0x200000, 0x6b) connect$inet6(r2, &(0x7f0000000100)={0xa, 0x4e23, 0x8, @private0={0xfc, 0x0, '\x00', 0x1}, 0xdf5}, 0x1c) close(r1) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) execveat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0, 0x1000) [ 1517.342472] FAULT_INJECTION: forcing a failure. [ 1517.342472] name failslab, interval 1, probability 0, space 0, times 0 [ 1517.344304] CPU: 1 PID: 11017 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1517.345398] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1517.346722] Call Trace: [ 1517.347137] dump_stack+0x107/0x167 [ 1517.347708] should_fail.cold+0x5/0xa [ 1517.348307] ? create_object.isra.0+0x3a/0xa20 [ 1517.349023] should_failslab+0x5/0x20 [ 1517.349624] kmem_cache_alloc+0x5b/0x310 [ 1517.350280] create_object.isra.0+0x3a/0xa20 [ 1517.350964] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1517.351760] kmem_cache_alloc+0x159/0x310 [ 1517.352421] __kernfs_new_node+0xd4/0x860 [ 1517.353077] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1517.353819] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1517.354580] ? wait_for_completion_io+0x270/0x270 [ 1517.355334] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1517.356164] kernfs_new_node+0x93/0x120 [ 1517.356791] __kernfs_create_file+0x51/0x350 [ 1517.357477] sysfs_add_file_mode_ns+0x221/0x560 [ 1517.358223] internal_create_group+0x324/0xb30 [ 1517.358944] ? sysfs_remove_group+0x170/0x170 [ 1517.359635] ? kernfs_name_hash+0xe7/0x110 [ 1517.360298] ? kernfs_find_ns+0x256/0x380 [ 1517.360952] sysfs_slab_add+0x188/0x200 [ 1517.361573] __kmem_cache_create+0x3db/0x520 [ 1517.362266] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1517.363053] p9_client_create+0xc2b/0x11c0 [ 1517.363737] ? p9_client_flush+0x430/0x430 [ 1517.364413] ? trace_hardirqs_on+0x5b/0x180 [ 1517.365099] ? lockdep_init_map_type+0x2c7/0x780 [ 1517.365858] ? __raw_spin_lock_init+0x36/0x110 [ 1517.366610] v9fs_session_init+0x1dd/0x1680 [ 1517.367298] ? lock_release+0x680/0x680 [ 1517.367923] ? kmem_cache_alloc_trace+0x151/0x320 [ 1517.367947] ? v9fs_show_options+0x690/0x690 [ 1517.369290] ? trace_hardirqs_on+0x5b/0x180 [ 1517.369976] ? kasan_unpoison_shadow+0x33/0x50 [ 1517.370704] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1517.370722] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1517.371490] v9fs_mount+0x79/0x8f0 [ 1517.371510] ? v9fs_write_inode+0x60/0x60 [ 1517.371529] legacy_get_tree+0x105/0x220 [ 1517.374294] vfs_get_tree+0x8e/0x300 [ 1517.374863] path_mount+0x13be/0x20b0 [ 1517.375474] ? strncpy_from_user+0x9e/0x470 [ 1517.376158] ? finish_automount+0xa90/0xa90 [ 1517.376848] ? getname_flags.part.0+0x1dd/0x4f0 [ 1517.377594] ? _copy_from_user+0xfb/0x1b0 [ 1517.378263] __x64_sys_mount+0x282/0x300 [ 1517.378910] ? copy_mnt_ns+0xa00/0xa00 [ 1517.379534] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1517.380357] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1517.381200] do_syscall_64+0x33/0x40 [ 1517.381809] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1517.382656] RIP: 0033:0x7f76b700cb19 [ 1517.383272] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1517.386351] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1517.387636] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1517.388821] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1517.390025] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1517.391233] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1517.392423] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 [ 1517.393630] CPU: 0 PID: 11015 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1517.394525] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1517.395522] Call Trace: [ 1517.395863] dump_stack+0x107/0x167 [ 1517.396329] sysfs_warn_dup.cold+0x1c/0x29 [ 1517.396868] sysfs_do_create_link_sd+0x122/0x140 [ 1517.397470] sysfs_create_link+0x5f/0xc0 [ 1517.397989] device_add+0x703/0x1c50 [ 1517.398466] ? devlink_add_symlinks+0x970/0x970 [ 1517.399080] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1517.399774] wiphy_register+0x1da6/0x2850 [ 1517.400327] ? wiphy_unregister+0xb90/0xb90 [ 1517.400910] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1517.401610] ieee80211_register_hw+0x23c5/0x38b0 [ 1517.402237] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1517.402843] ? net_generic+0xdb/0x2b0 [ 1517.403348] ? memset+0x20/0x50 [ 1517.403765] ? __hrtimer_init+0x12c/0x270 [ 1517.404296] mac80211_hwsim_new_radio+0x1ce0/0x4250 15:36:31 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00'/18], 0x28}}, 0x0) [ 1517.404941] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1517.405644] ? hwsim_new_radio_nl+0x967/0x1080 [ 1517.406220] ? memcpy+0x39/0x60 [ 1517.406636] hwsim_new_radio_nl+0x991/0x1080 [ 1517.407195] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1517.407861] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1517.408696] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1517.409514] genl_family_rcv_msg_doit+0x22d/0x330 [ 1517.410123] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1517.410948] ? cap_capable+0x1cd/0x230 [ 1517.411455] ? ns_capable+0xe2/0x110 [ 1517.411929] genl_rcv_msg+0x33c/0x5a0 [ 1517.412407] ? genl_get_cmd+0x480/0x480 [ 1517.412898] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1517.413545] ? lock_release+0x680/0x680 [ 1517.414049] ? __lockdep_reset_lock+0x180/0x180 15:36:31 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000000c0)={'lo\x00', 0x0}) perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80080, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r3 = syz_open_dev$vcsu(&(0x7f0000000180), 0x3, 0x101000) setsockopt$inet6_tcp_int(r3, 0x6, 0x10, &(0x7f00000002c0)=0x5, 0x4) setsockopt$inet6_IPV6_PKTINFO(0xffffffffffffffff, 0x29, 0x32, &(0x7f0000000040)={@private1, r2}, 0x14) r4 = socket$inet(0x2, 0x3, 0xff) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000140)={'syz_tun\x00', 0x0}) r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r8 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) r9 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) openat(r9, &(0x7f0000000180)='./file0\x00', 0x101803, 0x1) write(r9, &(0x7f0000000240)="01", 0x1) connect$inet6(r9, &(0x7f0000000300)={0xa, 0x4e22, 0x8, @private0, 0xfcaa}, 0x1c) copy_file_range(r8, 0x0, r7, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'veth0\x00'}) sendmsg$inet(r4, &(0x7f0000000240)={&(0x7f00000000c0)={0x2, 0x0, @multicast1}, 0x10, &(0x7f00000001c0)=[{&(0x7f0000000000)="b683ae40f3fdac402b01fa055e4299bd37dddcc878d124b8", 0x18}], 0x1, &(0x7f0000000200)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r6, @local}}}, @ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @dev, @dev={0xac, 0x14, 0x14, 0x1c}}}}], 0x40}, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8937, &(0x7f0000000040)={'syz_tun\x00'}) [ 1517.414633] netlink_rcv_skb+0x14b/0x430 [ 1517.415157] ? genl_get_cmd+0x480/0x480 [ 1517.415653] ? netlink_ack+0xab0/0xab0 [ 1517.416146] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1517.416715] ? is_vmalloc_addr+0x7b/0xb0 [ 1517.417224] genl_rcv+0x24/0x40 [ 1517.417630] netlink_unicast+0x549/0x7f0 [ 1517.418147] ? netlink_attachskb+0x870/0x870 [ 1517.418697] ? __virt_addr_valid+0x128/0x350 [ 1517.419250] netlink_sendmsg+0x90f/0xdf0 [ 1517.419761] ? netlink_unicast+0x7f0/0x7f0 [ 1517.420302] ? netlink_unicast+0x7f0/0x7f0 [ 1517.420827] __sock_sendmsg+0x154/0x190 [ 1517.421321] ____sys_sendmsg+0x70d/0x870 [ 1517.421815] ? sock_write_iter+0x3d0/0x3d0 [ 1517.422338] ? do_recvmmsg+0x6d0/0x6d0 [ 1517.422817] ? perf_trace_lock+0xac/0x490 [ 1517.423334] ? __lockdep_reset_lock+0x180/0x180 [ 1517.423908] ___sys_sendmsg+0xf3/0x170 [ 1517.424390] ? sendmsg_copy_msghdr+0x160/0x160 [ 1517.424957] ? lock_downgrade+0x6d0/0x6d0 [ 1517.425464] ? find_held_lock+0x2c/0x110 [ 1517.425974] ? clockevents_program_event+0x14b/0x360 [ 1517.426573] ? __fget_files+0x296/0x4c0 [ 1517.427078] ? __fget_light+0xea/0x290 [ 1517.427561] __sys_sendmsg+0xe5/0x1b0 [ 1517.428024] ? __sys_sendmsg_sock+0x40/0x40 [ 1517.428567] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1517.429196] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1517.429828] ? trace_hardirqs_on+0x5b/0x180 [ 1517.430351] do_syscall_64+0x33/0x40 [ 1517.430806] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1517.431414] RIP: 0033:0x7f07e63f4b19 [ 1517.431867] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1517.434115] RSP: 002b:00007f07e396a188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1517.435036] RAX: ffffffffffffffda RBX: 00007f07e6507f60 RCX: 00007f07e63f4b19 [ 1517.435885] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1517.436738] RBP: 00007f07e644ef6d R08: 0000000000000000 R09: 0000000000000000 [ 1517.437603] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1517.438467] R13: 00007fff1f25f23f R14: 00007f07e396a300 R15: 0000000000022000 15:36:31 executing program 0: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan0\x00', 0x0}) getsockopt$IPT_SO_GET_REVISION_TARGET(0xffffffffffffffff, 0x0, 0x43, &(0x7f0000000140)={'ipvs\x00'}, &(0x7f0000000180)=0x1e) sendmsg$NL80211_CMD_SET_TID_CONFIG(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000380)=ANY=[@ANYBLOB='4\x00\x00', @ANYRES16, @ANYRES32=r0, @ANYBLOB="18001d801400008005000c000100000006000500c1000000"], 0x34}}, 0x0) r1 = openat$null(0xffffffffffffff9c, &(0x7f00000001c0), 0xc0040, 0x0) sendto$inet(r1, &(0x7f00000002c0)="93e07d5d79c0c252ee4bb48e9ab6bf8d2ed2159f64164e8f1b524f50ac2b62c48b9d80a680d15b58df27f33177d754fdb3ec376e6d84df6256ac6f6f242bb8a5cb0acfd253133bcf78b412bb82fb72dc62061c2f61549c3dbc569aa81e62542a050a51d3a4e76a62a1a76cd0b16315214e8c0cf98989dbf5e2374a8719a4f1a24fde32f3aad01be9d21f7687c8fae19ca4f719c7e719f4d54ac72e8152d8d2ea6a33a47cfe122c961decd059a55ae7d34f2396057b", 0xb5, 0x40, &(0x7f0000000200)={0x2, 0x4e22, @multicast1}, 0x10) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r3 = socket$packet(0x11, 0x2, 0x300) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) bind$packet(r3, &(0x7f0000000240)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) sendfile(r3, r2, 0x0, 0x500000001) fallocate(0xffffffffffffffff, 0x4b, 0xfffffffffffffc01, 0xc5ef) getresgid(&(0x7f0000000240), &(0x7f0000000280), 0x0) unlinkat(0xffffffffffffffff, &(0x7f0000000400)='./file1\x00', 0x200) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x4, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x800}, {&(0x7f0000011600)="ed41000000080000dff46552e0e4655fe0f46500000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f00000000c0)={[{@nouser_xattr}]}) 15:36:31 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00'/18], 0x28}}, 0x0) 15:36:31 executing program 3: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) [ 1517.559547] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1517.561340] CPU: 1 PID: 11024 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1517.562449] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1517.563733] Call Trace: [ 1517.564146] dump_stack+0x107/0x167 [ 1517.564717] sysfs_warn_dup.cold+0x1c/0x29 [ 1517.565372] sysfs_do_create_link_sd+0x122/0x140 [ 1517.566113] sysfs_create_link+0x5f/0xc0 [ 1517.566737] device_add+0x703/0x1c50 [ 1517.567317] ? devlink_add_symlinks+0x970/0x970 [ 1517.568035] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1517.568852] wiphy_register+0x1da6/0x2850 [ 1517.569506] ? wiphy_unregister+0xb90/0xb90 [ 1517.570199] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1517.571065] ieee80211_register_hw+0x23c5/0x38b0 [ 1517.571829] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1517.572606] ? net_generic+0xdb/0x2b0 [ 1517.573231] ? memset+0x20/0x50 [ 1517.573763] ? __hrtimer_init+0x12c/0x270 [ 1517.574440] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1517.575249] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1517.575985] ? hwsim_new_radio_nl+0x967/0x1080 [ 1517.576710] ? memcpy+0x39/0x60 [ 1517.577235] hwsim_new_radio_nl+0x991/0x1080 [ 1517.577941] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1517.578790] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1517.579836] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1517.580865] genl_family_rcv_msg_doit+0x22d/0x330 [ 1517.581627] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1517.582668] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1517.583491] ? cap_capable+0x1cd/0x230 [ 1517.584119] ? ns_capable+0xe2/0x110 [ 1517.584711] genl_rcv_msg+0x33c/0x5a0 [ 1517.585320] ? genl_get_cmd+0x480/0x480 [ 1517.585957] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1517.586769] ? lock_release+0x680/0x680 [ 1517.587395] ? __lockdep_reset_lock+0x180/0x180 [ 1517.588129] netlink_rcv_skb+0x14b/0x430 [ 1517.588755] ? genl_get_cmd+0x480/0x480 [ 1517.589380] ? netlink_ack+0xab0/0xab0 [ 1517.590005] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1517.590719] ? is_vmalloc_addr+0x7b/0xb0 [ 1517.591351] genl_rcv+0x24/0x40 [ 1517.591868] netlink_unicast+0x549/0x7f0 [ 1517.592508] ? netlink_attachskb+0x870/0x870 [ 1517.593191] ? write_comp_data+0xa/0x80 [ 1517.593817] netlink_sendmsg+0x90f/0xdf0 [ 1517.594485] ? netlink_unicast+0x7f0/0x7f0 [ 1517.595166] ? netlink_unicast+0x7f0/0x7f0 [ 1517.595842] __sock_sendmsg+0x154/0x190 [ 1517.596462] ____sys_sendmsg+0x70d/0x870 [ 1517.597104] ? sock_write_iter+0x3d0/0x3d0 [ 1517.597766] ? do_recvmmsg+0x6d0/0x6d0 [ 1517.598409] ? perf_trace_lock+0xac/0x490 [ 1517.599088] ? __lockdep_reset_lock+0x180/0x180 [ 1517.599821] ? perf_trace_lock+0xac/0x490 [ 1517.600487] ___sys_sendmsg+0xf3/0x170 [ 1517.601116] ? sendmsg_copy_msghdr+0x160/0x160 [ 1517.601848] ? lock_downgrade+0x6d0/0x6d0 [ 1517.602550] ? __fget_files+0xe4/0x4c0 [ 1517.603188] ? __fget_files+0x296/0x4c0 [ 1517.603844] ? __fget_light+0xea/0x290 [ 1517.604473] __sys_sendmsg+0xe5/0x1b0 [ 1517.605079] ? __sys_sendmsg_sock+0x40/0x40 [ 1517.605778] ? io_schedule_timeout+0x140/0x140 [ 1517.606543] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1517.607387] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1517.608211] ? trace_hardirqs_on+0x5b/0x180 [ 1517.608906] do_syscall_64+0x33/0x40 [ 1517.609488] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1517.610328] RIP: 0033:0x7fc533f18b19 [ 1517.610918] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1517.613752] RSP: 002b:00007fc53148e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1517.614937] RAX: ffffffffffffffda RBX: 00007fc53402bf60 RCX: 00007fc533f18b19 [ 1517.616013] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1517.617099] RBP: 00007fc533f72f6d R08: 0000000000000000 R09: 0000000000000000 [ 1517.618196] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1517.619271] R13: 00007fff9313d64f R14: 00007fc53148e300 R15: 0000000000022000 15:36:31 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) [ 1517.633613] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=35144 sclass=netlink_audit_socket pid=11019 comm=syz-executor.4 [ 1517.652543] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=34247 sclass=netlink_audit_socket pid=11019 comm=syz-executor.4 [ 1517.656750] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=53893 sclass=netlink_audit_socket pid=11019 comm=syz-executor.4 [ 1517.660164] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=53481 sclass=netlink_audit_socket pid=11019 comm=syz-executor.4 15:36:31 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x2}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x840}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000000c0)) syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00') r1 = syz_open_procfs(0x0, &(0x7f0000000280)='fd/4\x00') ioctl$FIONREAD(r1, 0x6801, 0x0) getdents(0xffffffffffffffff, &(0x7f0000000240)=""/72, 0x48) fsetxattr$trusted_overlay_nlink(0xffffffffffffffff, &(0x7f0000000040), &(0x7f0000000180)={'U-', 0x7fffffff}, 0x16, 0x2) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) mkdir(&(0x7f0000000300)='./file0/file0\x00', 0x0) mount$bind(&(0x7f0000000080)='./file0/file0\x00', &(0x7f0000000200)='./file0/file0\x00', &(0x7f00000002c0), 0x2000001, 0x0) mount$bind(&(0x7f00000000c0)='./file0/file0\x00', &(0x7f0000000340)='./file0/../file0\x00', 0x0, 0x17810, 0x0) unshare(0x48020200) 15:36:31 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00'/18], 0x28}}, 0x0) 15:36:31 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) (fail_nth: 75) [ 1517.772414] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1517.773586] CPU: 0 PID: 11047 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1517.774350] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1517.775260] Call Trace: [ 1517.775563] dump_stack+0x107/0x167 [ 1517.775981] sysfs_warn_dup.cold+0x1c/0x29 [ 1517.776465] sysfs_do_create_link_sd+0x122/0x140 [ 1517.776981] sysfs_create_link+0x5f/0xc0 [ 1517.777425] device_add+0x703/0x1c50 [ 1517.777840] ? devlink_add_symlinks+0x970/0x970 [ 1517.778362] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1517.778951] wiphy_register+0x1da6/0x2850 [ 1517.779406] ? wiphy_unregister+0xb90/0xb90 [ 1517.779883] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1517.780479] ieee80211_register_hw+0x23c5/0x38b0 [ 1517.781014] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1517.781528] ? net_generic+0xdb/0x2b0 [ 1517.781977] ? lockdep_init_map_type+0x2c7/0x780 [ 1517.782517] ? memset+0x20/0x50 [ 1517.782901] ? __hrtimer_init+0x12c/0x270 [ 1517.783380] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1517.783949] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1517.784454] ? hwsim_new_radio_nl+0x967/0x1080 [ 1517.784964] ? memcpy+0x39/0x60 [ 1517.785329] hwsim_new_radio_nl+0x991/0x1080 [ 1517.785798] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1517.786388] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1517.787155] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1517.787900] genl_family_rcv_msg_doit+0x22d/0x330 [ 1517.788435] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1517.789160] ? cap_capable+0x1cd/0x230 [ 1517.789607] ? ns_capable+0xe2/0x110 [ 1517.790044] genl_rcv_msg+0x33c/0x5a0 [ 1517.790467] ? genl_get_cmd+0x480/0x480 [ 1517.790908] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1517.791471] ? lock_release+0x680/0x680 [ 1517.791916] ? __lockdep_reset_lock+0x180/0x180 [ 1517.792423] netlink_rcv_skb+0x14b/0x430 [ 1517.792876] ? genl_get_cmd+0x480/0x480 [ 1517.793318] ? netlink_ack+0xab0/0xab0 [ 1517.793751] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1517.794250] ? is_vmalloc_addr+0x7b/0xb0 [ 1517.794688] genl_rcv+0x24/0x40 [ 1517.795062] netlink_unicast+0x549/0x7f0 [ 1517.795532] ? netlink_attachskb+0x870/0x870 [ 1517.796034] ? __virt_addr_valid+0x128/0x350 [ 1517.796528] netlink_sendmsg+0x90f/0xdf0 [ 1517.796992] ? netlink_unicast+0x7f0/0x7f0 [ 1517.797464] ? netlink_unicast+0x7f0/0x7f0 [ 1517.797928] __sock_sendmsg+0x154/0x190 [ 1517.798363] ____sys_sendmsg+0x70d/0x870 [ 1517.798813] ? sock_write_iter+0x3d0/0x3d0 [ 1517.799276] ? do_recvmmsg+0x6d0/0x6d0 [ 1517.799702] ? perf_trace_lock+0xac/0x490 [ 1517.800171] ? __lockdep_reset_lock+0x180/0x180 [ 1517.800718] ___sys_sendmsg+0xf3/0x170 [ 1517.801172] ? sendmsg_copy_msghdr+0x160/0x160 [ 1517.801680] ? lock_downgrade+0x6d0/0x6d0 [ 1517.802142] ? find_held_lock+0x2c/0x110 [ 1517.802601] ? clockevents_program_event+0x14b/0x360 [ 1517.803161] ? __fget_files+0x296/0x4c0 [ 1517.803609] ? __fget_light+0xea/0x290 [ 1517.804041] __sys_sendmsg+0xe5/0x1b0 [ 1517.804457] ? __sys_sendmsg_sock+0x40/0x40 [ 1517.804946] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1517.805513] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1517.806087] ? trace_hardirqs_on+0x5b/0x180 [ 1517.806559] do_syscall_64+0x33/0x40 [ 1517.806973] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1517.807517] RIP: 0033:0x7f07e63f4b19 [ 1517.807950] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1517.809986] RSP: 002b:00007f07e396a188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1517.810844] RAX: ffffffffffffffda RBX: 00007f07e6507f60 RCX: 00007f07e63f4b19 [ 1517.811602] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1517.812387] RBP: 00007f07e644ef6d R08: 0000000000000000 R09: 0000000000000000 [ 1517.813172] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1517.813958] R13: 00007fff1f25f23f R14: 00007f07e396a300 R15: 0000000000022000 [ 1517.827576] FAULT_INJECTION: forcing a failure. [ 1517.827576] name failslab, interval 1, probability 0, space 0, times 0 [ 1517.828873] CPU: 0 PID: 11059 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1517.829603] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1517.830509] Call Trace: [ 1517.830797] dump_stack+0x107/0x167 [ 1517.831207] should_fail.cold+0x5/0xa [ 1517.831626] ? __kernfs_new_node+0xd4/0x860 [ 1517.832101] should_failslab+0x5/0x20 [ 1517.832517] kmem_cache_alloc+0x5b/0x310 [ 1517.832960] __kernfs_new_node+0xd4/0x860 [ 1517.833416] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1517.833947] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1517.834460] ? wait_for_completion_io+0x270/0x270 [ 1517.834991] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1517.835565] kernfs_new_node+0x93/0x120 [ 1517.836012] __kernfs_create_file+0x51/0x350 [ 1517.836486] sysfs_add_file_mode_ns+0x221/0x560 [ 1517.837009] internal_create_group+0x324/0xb30 [ 1517.837509] ? sysfs_remove_group+0x170/0x170 [ 1517.838008] ? kernfs_name_hash+0xe7/0x110 [ 1517.838473] ? kernfs_find_ns+0x256/0x380 [ 1517.838927] sysfs_slab_add+0x188/0x200 [ 1517.839369] __kmem_cache_create+0x3db/0x520 [ 1517.839850] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1517.840403] p9_client_create+0xc2b/0x11c0 [ 1517.840866] ? p9_client_flush+0x430/0x430 [ 1517.841333] ? trace_hardirqs_on+0x5b/0x180 [ 1517.841797] ? lockdep_init_map_type+0x2c7/0x780 [ 1517.842337] ? __raw_spin_lock_init+0x36/0x110 [ 1517.842839] v9fs_session_init+0x1dd/0x1680 [ 1517.843344] ? lock_release+0x680/0x680 [ 1517.843661] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=35656 sclass=netlink_audit_socket pid=11019 comm=syz-executor.4 [ 1517.843795] ? kmem_cache_alloc_trace+0x151/0x320 [ 1517.843811] ? v9fs_show_options+0x690/0x690 [ 1517.846817] ? trace_hardirqs_on+0x5b/0x180 [ 1517.847274] ? kasan_unpoison_shadow+0x33/0x50 [ 1517.847775] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1517.848322] v9fs_mount+0x79/0x8f0 [ 1517.848722] ? v9fs_write_inode+0x60/0x60 [ 1517.849163] legacy_get_tree+0x105/0x220 [ 1517.849605] vfs_get_tree+0x8e/0x300 [ 1517.850013] path_mount+0x13be/0x20b0 [ 1517.850435] ? strncpy_from_user+0x9e/0x470 [ 1517.850894] ? finish_automount+0xa90/0xa90 [ 1517.851375] ? getname_flags.part.0+0x1dd/0x4f0 [ 1517.851876] ? _copy_from_user+0xfb/0x1b0 [ 1517.852336] __x64_sys_mount+0x282/0x300 [ 1517.852772] ? copy_mnt_ns+0xa00/0xa00 [ 1517.853188] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1517.853763] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1517.854323] do_syscall_64+0x33/0x40 [ 1517.854741] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1517.855289] RIP: 0033:0x7f76b700cb19 [ 1517.855680] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1517.857683] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1517.858509] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1517.859302] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1517.860107] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1517.860896] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1517.861654] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 15:36:31 executing program 6: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 15:36:31 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00'/18], 0x28}}, 0x0) [ 1517.908127] kmem_cache_create(9p-fcall-cache) failed with error -12 [ 1517.908869] CPU: 0 PID: 11059 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1517.909642] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1517.910594] Call Trace: [ 1517.910878] dump_stack+0x107/0x167 [ 1517.911282] kmem_cache_create_usercopy.cold+0x17/0x65 [ 1517.911850] p9_client_create+0xc2b/0x11c0 [ 1517.912320] ? p9_client_flush+0x430/0x430 [ 1517.912774] ? trace_hardirqs_on+0x5b/0x180 [ 1517.913246] ? lockdep_init_map_type+0x2c7/0x780 [ 1517.913560] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=11019 comm=syz-executor.4 [ 1517.913777] ? __raw_spin_lock_init+0x36/0x110 [ 1517.913800] v9fs_session_init+0x1dd/0x1680 [ 1517.916579] ? lock_release+0x680/0x680 [ 1517.917019] ? kmem_cache_alloc_trace+0x151/0x320 [ 1517.917532] ? v9fs_show_options+0x690/0x690 [ 1517.918033] ? trace_hardirqs_on+0x5b/0x180 [ 1517.918497] ? kasan_unpoison_shadow+0x33/0x50 [ 1517.918983] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1517.919542] v9fs_mount+0x79/0x8f0 [ 1517.919921] ? v9fs_write_inode+0x60/0x60 [ 1517.920359] legacy_get_tree+0x105/0x220 [ 1517.920803] vfs_get_tree+0x8e/0x300 [ 1517.921198] path_mount+0x13be/0x20b0 [ 1517.921609] ? strncpy_from_user+0x9e/0x470 [ 1517.922079] ? finish_automount+0xa90/0xa90 [ 1517.922539] ? getname_flags.part.0+0x1dd/0x4f0 [ 1517.923051] ? _copy_from_user+0xfb/0x1b0 [ 1517.923493] __x64_sys_mount+0x282/0x300 [ 1517.923942] ? copy_mnt_ns+0xa00/0xa00 [ 1517.924361] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1517.924930] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1517.925482] do_syscall_64+0x33/0x40 [ 1517.925874] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1517.926439] RIP: 0033:0x7f76b700cb19 [ 1517.926837] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1517.928799] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1517.929592] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1517.930334] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1517.931082] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1517.931831] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1517.932573] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 [ 1517.940476] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1517.941477] CPU: 0 PID: 11063 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1517.942219] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1517.943101] Call Trace: [ 1517.943383] dump_stack+0x107/0x167 [ 1517.943778] sysfs_warn_dup.cold+0x1c/0x29 [ 1517.944231] sysfs_do_create_link_sd+0x122/0x140 [ 1517.944738] sysfs_create_link+0x5f/0xc0 [ 1517.945170] device_add+0x703/0x1c50 [ 1517.945568] ? devlink_add_symlinks+0x970/0x970 [ 1517.946086] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1517.946669] wiphy_register+0x1da6/0x2850 [ 1517.947123] ? wiphy_unregister+0xb90/0xb90 [ 1517.947602] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1517.948185] ieee80211_register_hw+0x23c5/0x38b0 [ 1517.948709] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1517.949240] ? net_generic+0xdb/0x2b0 [ 1517.949660] ? lockdep_init_map_type+0x2c7/0x780 [ 1517.950179] ? memset+0x20/0x50 [ 1517.950541] ? __hrtimer_init+0x12c/0x270 [ 1517.951011] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1517.951555] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1517.952050] ? hwsim_new_radio_nl+0x967/0x1080 [ 1517.952538] ? memcpy+0x39/0x60 [ 1517.952898] hwsim_new_radio_nl+0x991/0x1080 [ 1517.953370] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1517.953954] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1517.954646] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1517.955347] genl_family_rcv_msg_doit+0x22d/0x330 [ 1517.955863] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1517.956569] ? cap_capable+0x1cd/0x230 [ 1517.956998] ? ns_capable+0xe2/0x110 [ 1517.957399] genl_rcv_msg+0x33c/0x5a0 [ 1517.957809] ? genl_get_cmd+0x480/0x480 [ 1517.958240] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1517.958789] ? lock_release+0x680/0x680 [ 1517.959213] ? __lockdep_reset_lock+0x180/0x180 [ 1517.959705] netlink_rcv_skb+0x14b/0x430 [ 1517.960134] ? genl_get_cmd+0x480/0x480 [ 1517.960564] ? netlink_ack+0xab0/0xab0 [ 1517.960990] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1517.961476] ? is_vmalloc_addr+0x7b/0xb0 [ 1517.961937] genl_rcv+0x24/0x40 [ 1517.962293] netlink_unicast+0x549/0x7f0 [ 1517.962731] ? netlink_attachskb+0x870/0x870 [ 1517.963200] ? __virt_addr_valid+0x128/0x350 [ 1517.963683] netlink_sendmsg+0x90f/0xdf0 [ 1517.964128] ? netlink_unicast+0x7f0/0x7f0 [ 1517.964587] ? netlink_unicast+0x7f0/0x7f0 [ 1517.965042] __sock_sendmsg+0x154/0x190 [ 1517.965464] ____sys_sendmsg+0x70d/0x870 [ 1517.965903] ? sock_write_iter+0x3d0/0x3d0 [ 1517.966370] ? do_recvmmsg+0x6d0/0x6d0 [ 1517.966792] ? perf_trace_lock+0xac/0x490 [ 1517.967242] ? __lockdep_reset_lock+0x180/0x180 [ 1517.967751] ___sys_sendmsg+0xf3/0x170 [ 1517.968185] ? sendmsg_copy_msghdr+0x160/0x160 [ 1517.968671] ? lock_downgrade+0x6d0/0x6d0 [ 1517.969127] ? find_held_lock+0x2c/0x110 [ 1517.969566] ? clockevents_program_event+0x14b/0x360 [ 1517.970124] ? __fget_files+0x296/0x4c0 [ 1517.970558] ? __fget_light+0xea/0x290 [ 1517.970977] __sys_sendmsg+0xe5/0x1b0 [ 1517.971380] ? __sys_sendmsg_sock+0x40/0x40 [ 1517.971851] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1517.972405] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1517.972953] ? trace_hardirqs_on+0x5b/0x180 [ 1517.973406] do_syscall_64+0x33/0x40 [ 1517.973804] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1517.974369] RIP: 0033:0x7fc533f18b19 [ 1517.974780] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1517.976705] RSP: 002b:00007fc53148e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1517.977517] RAX: ffffffffffffffda RBX: 00007fc53402bf60 RCX: 00007fc533f18b19 [ 1517.978272] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1517.979022] RBP: 00007fc533f72f6d R08: 0000000000000000 R09: 0000000000000000 [ 1517.979773] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1517.980535] R13: 00007fff9313d64f R14: 00007fc53148e300 R15: 0000000000022000 15:36:31 executing program 5: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x2200, 0x145) r0 = socket$netlink(0x10, 0x3, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3b10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0x7}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) signalfd4(r0, &(0x7f0000000080)={[0x1]}, 0x8, 0x800) r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000180), 0x180, 0x0) open(&(0x7f0000000040)='./file0\x00', 0xa00, 0x1a2) ioctl$LOOP_CTL_ADD(r1, 0x4c80, 0x0) ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, 0x0) r2 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000180), 0x180, 0x0) ioctl$LOOP_CTL_ADD(r2, 0x4c80, 0x0) [ 1518.045598] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=33608 sclass=netlink_audit_socket pid=11019 comm=syz-executor.4 [ 1518.056355] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=35140 sclass=netlink_audit_socket pid=11019 comm=syz-executor.4 [ 1518.125255] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=11019 comm=syz-executor.4 [ 1518.127248] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=21 sclass=netlink_audit_socket pid=11019 comm=syz-executor.4 15:36:45 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00'/18], 0x28}}, 0x0) 15:36:45 executing program 3: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:36:45 executing program 6: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 15:36:45 executing program 0: ioctl$AUTOFS_IOC_SETTIMEOUT(0xffffffffffffffff, 0x80049367, &(0x7f0000000080)=0x100000000) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000440)="200000008000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef0000", 0xffffffffffffffeb, 0x4000400}, {&(0x7f0000000240)="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", 0x9, 0x800}], 0x0, &(0x7f0000000140)=ANY=[]) 15:36:45 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) (fail_nth: 76) 15:36:45 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0xa}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000480)={0x5, 0x80, 0x1, 0x40, 0x3, 0x2, 0x0, 0x180000, 0x40, 0x6, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x3, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1ff, 0x0, @perf_bp={&(0x7f0000000100), 0x5}, 0x0, 0xb19e, 0x8000, 0x3, 0x9c5, 0x7ff, 0x5, 0x0, 0xff, 0x0, 0x80}, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) openat(r1, &(0x7f00000000c0)='./file0\x00', 0x200000, 0x6b) perf_event_open(&(0x7f0000000740)={0x4, 0x80, 0x40, 0x81, 0xff, 0x7, 0x0, 0xffffffff, 0x10000, 0x5, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x2, @perf_bp={&(0x7f0000000180)}, 0x9602, 0x9, 0x80, 0x2, 0x101, 0x0, 0x0, 0x0, 0x112, 0x0, 0x7}, 0xffffffffffffffff, 0xa, r1, 0x0) ftruncate(r0, 0x6) readv(0xffffffffffffffff, &(0x7f0000001840)=[{0x0}, {&(0x7f0000000140)=""/31, 0x1f}, {&(0x7f0000000540)=""/118, 0x76}, {0x0}, {0x0}, {0x0}, {&(0x7f00000001c0)=""/21, 0x15}], 0x7) socket$netlink(0x10, 0x3, 0x6) syz_io_uring_setup(0x0, &(0x7f00000002c0), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000140)=0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r4, 0x0, r3, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) syz_io_uring_submit(0x0, r2, &(0x7f0000000000)=@IORING_OP_FILES_UPDATE={0x14, 0x1, 0x0, 0x0, 0xf7, &(0x7f0000000240)=[0xffffffffffffffff, 0xffffffffffffffff], 0x2, 0x0, 0x1}, 0x0) stat(0x0, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r5, 0x0) fstat(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0}) mount$9p_tcp(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', &(0x7f0000000280), 0x900002, &(0x7f00000005c0)=ANY=[@ANYBLOB='trans=tcp,port=0x0000000000004e21,uname=^^&,dfltuid=', @ANYRESHEX=r5, @ANYBLOB="ec94a02e6aba10c6733d7573e5722c64666c747569643d", @ANYRESHEX=r6, @ANYBLOB=',access=any,cache=none,appraise,appraise_type=imasig,audit,smackfsdef=&,\x00']) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000340)=ANY=[@ANYBLOB="0100ce4202ff078df405b98051df04632b4d00000100000013680000455d6a491b903bef68112bcaa7d1d354b83e1071f96a9c9fbf51018f5678d3ed16b90b874b0000a26401b3def946f1b66367bbc21faa04e7008f49984d719cfe969e7cff7a4ff6f2bbb2e8ce9647ffeb", @ANYRES32=0xffffffffffffffff, @ANYRES32=0xee01, @ANYRES32=0x0, @ANYBLOB='./file0\x00']) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(r7, 0xc0189378, &(0x7f00000003c0)=ANY=[@ANYBLOB="090000000100000018002000", @ANYRES32, @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00./file0\x00']) open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) 15:36:45 executing program 4: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) fcntl$setstatus(r0, 0x4, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e21, 0x9, @dev={0xfe, 0x80, '\x00', 0x34}, 0x4}, 0x1c) sendfile(r0, r1, 0x0, 0x100000001) 15:36:45 executing program 5: syz_mount_image$ext4(0x0, &(0x7f0000000340)='./file0\x00', 0x0, 0x0, 0x0, 0x8000, 0x0) mount(0x0, &(0x7f00000004c0)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0) mkdirat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x0) unlinkat(0xffffffffffffffff, &(0x7f00000004c0)='./file0\x00', 0x200) mount(&(0x7f0000000040)=@filename='./file0\x00', &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='devtmpfs\x00', 0x800000, &(0x7f00000002c0)='vfat\x00') r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f00000003c0)}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000080)=ANY=[@ANYBLOB="0900000000000200f2da0000", @ANYRES32=r0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00./file0/file0\x00']) mkdirat(r1, &(0x7f0000000100)='./file0/file0\x00', 0x88) r2 = open(&(0x7f0000000180)='./file0\x00', 0x240880, 0x0) ioctl$AUTOFS_DEV_IOCTL_PROTOVER(r2, 0xc0189372, &(0x7f0000000140)={{0x1, 0x1, 0x18, r2, {0x10000}}, './file0\x00'}) mkdirat(r2, &(0x7f0000000200)='./file0\x00', 0x86) r3 = openat$vcs(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r3, 0x40106614, &(0x7f0000000180)) syz_mount_image$nfs4(&(0x7f0000000300), &(0x7f0000000480)='./file0/file0\x00', 0x418, 0x1, &(0x7f0000000600)=[{&(0x7f0000000500)="6175ed00212e9502793c30c41d0e58264b3e7339247b69b39e6fd301082a81225f16e7b624a3a4bca117953b114c8c563c89120ec30e5ba785012d93e1105991c62a3803b2f35edfa353a21e792d8e05a1f17121d5695f1beb41ac0363a7943523043e01365dc36fe525cf7096cd4153c5b1bd44a57095bc780fcf0263d9f3c633bc0c231e1163d814ff18ee4cd05ae0f91815a9b6c4d6248cf139d83ae0e1b02a84393c91a1af96f760174242a91483b4080cbe5903328ba5956838f6911f6259aa9462bfa330eec0945a38b999597a1726bd351b8744527b7cb5f6459c70cd78ca1b4449bc848522e17f0880d3c0", 0xef, 0x400}], 0x20a8000, &(0x7f00000006c0)={[{'vfat\x00'}, {'devtmpfs\x00'}, {'!#*%$'}, {'{)]-!^:.('}, {'*!\r.*%.'}], [{@obj_user={'obj_user', 0x3d, '.+\xea%@&\'#}{--.-:\'@\xbcC]{-]$@\x12{@'}}, {@uid_lt={'uid<', 0xffffffffffffffff}}, {@dont_hash}, {@fowner_gt={'fowner>', 0xee00}}, {@smackfstransmute={'smackfstransmute', 0x3d, 'devtmpfs\x00'}}]}) syz_mount_image$nfs(&(0x7f00000001c0), &(0x7f0000000400)='./file1\x00', 0x6f68, 0x1, &(0x7f00000007c0)=[{&(0x7f0000000440)="b6fb189127c920a75b8a", 0xa, 0x33}], 0x9020, &(0x7f0000000800)={[{'vfat\x00'}, {'fowner>'}, {'[\'[(^))'}, {'-}%,'}, {')'}, {'dont_hash'}, {'smackfstransmute'}, {'(^)-'}], [{@hash}, {@mask={'mask', 0x3d, '^MAY_WRITE'}}, {@subj_role={'subj_role', 0x3d, '\'!\f@'}}, {@uid_eq={'uid', 0x3d, 0xee00}}]}) write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000140)=ANY=[], 0x10) [ 1531.350407] devtmpfs: Unknown parameter 'vfat' 15:36:45 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n'], 0x28}}, 0x0) [ 1531.375623] FAULT_INJECTION: forcing a failure. [ 1531.375623] name failslab, interval 1, probability 0, space 0, times 0 [ 1531.378017] CPU: 0 PID: 11085 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1531.379460] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1531.381155] Call Trace: [ 1531.381705] dump_stack+0x107/0x167 [ 1531.382496] should_fail.cold+0x5/0xa [ 1531.383292] ? create_object.isra.0+0x3a/0xa20 [ 1531.384226] should_failslab+0x5/0x20 [ 1531.385013] kmem_cache_alloc+0x5b/0x310 [ 1531.385843] create_object.isra.0+0x3a/0xa20 [ 1531.386746] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1531.387791] kmem_cache_alloc+0x159/0x310 [ 1531.388657] __kernfs_new_node+0xd4/0x860 [ 1531.389517] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1531.390498] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1531.391497] ? wait_for_completion_io+0x270/0x270 [ 1531.392490] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1531.393563] kernfs_new_node+0x93/0x120 [ 1531.394392] __kernfs_create_file+0x51/0x350 [ 1531.395300] sysfs_add_file_mode_ns+0x221/0x560 [ 1531.396275] internal_create_group+0x324/0xb30 [ 1531.397228] ? sysfs_remove_group+0x170/0x170 [ 1531.398151] ? kernfs_name_hash+0xe7/0x110 [ 1531.399021] ? kernfs_find_ns+0x256/0x380 [ 1531.399901] sysfs_slab_add+0x188/0x200 [ 1531.400717] __kmem_cache_create+0x3db/0x520 [ 1531.401624] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1531.402660] p9_client_create+0xc2b/0x11c0 [ 1531.403530] ? p9_client_flush+0x430/0x430 [ 1531.404394] ? trace_hardirqs_on+0x5b/0x180 [ 1531.405273] ? lockdep_init_map_type+0x2c7/0x780 [ 1531.406271] ? __raw_spin_lock_init+0x36/0x110 [ 1531.407210] v9fs_session_init+0x1dd/0x1680 [ 1531.408093] ? lock_release+0x680/0x680 [ 1531.408918] ? kmem_cache_alloc_trace+0x151/0x320 [ 1531.409929] ? v9fs_show_options+0x690/0x690 [ 1531.410859] ? trace_hardirqs_on+0x5b/0x180 [ 1531.411756] ? kasan_unpoison_shadow+0x33/0x50 [ 1531.412695] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1531.413735] v9fs_mount+0x79/0x8f0 [ 1531.414485] ? v9fs_write_inode+0x60/0x60 [ 1531.415333] legacy_get_tree+0x105/0x220 [ 1531.416164] vfs_get_tree+0x8e/0x300 [ 1531.416927] path_mount+0x13be/0x20b0 [ 1531.417715] ? strncpy_from_user+0x9e/0x470 [ 1531.418635] ? finish_automount+0xa90/0xa90 [ 1531.419520] ? getname_flags.part.0+0x1dd/0x4f0 [ 1531.420488] ? _copy_from_user+0xfb/0x1b0 [ 1531.421359] __x64_sys_mount+0x282/0x300 [ 1531.422216] ? copy_mnt_ns+0xa00/0xa00 [ 1531.423018] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1531.424078] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1531.425131] do_syscall_64+0x33/0x40 [ 1531.425893] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1531.426937] RIP: 0033:0x7f76b700cb19 [ 1531.427691] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1531.431413] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1531.432948] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1531.434402] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1531.435842] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1531.437278] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1531.438724] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 15:36:45 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n'], 0x28}}, 0x0) 15:36:45 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, @perf_config_ext={0x2}, 0x0, 0x0, 0x0, 0x3, 0x1, 0x40}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000000c0)) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='mounts\x00') readv(r1, &(0x7f0000001600)=[{&(0x7f00000004c0)=""/4096, 0x1000}], 0x1) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_unix(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000001c0)='./file0\x00', 0x0, 0x173000, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) readv(r2, &(0x7f00000002c0)=[{&(0x7f0000000080)=""/2, 0x2}, {&(0x7f0000000380)=""/222, 0xde}, {&(0x7f00000014c0)=""/192, 0xc0}, {&(0x7f0000000200)=""/65, 0x41}], 0x4) copy_file_range(r3, 0x0, r2, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x440, 0x4) dup2(r3, r4) syz_open_procfs(0x0, &(0x7f0000000180)='attr/keycreate\x00') mkdir(&(0x7f0000000300)='./file0/file0\x00', 0x0) mount$bind(&(0x7f00000000c0)='./file0/file0\x00', &(0x7f0000000340)='./file0/../file0\x00', 0x0, 0x17810, 0x0) unshare(0x48020200) 15:36:45 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n'], 0x28}}, 0x0) [ 1531.527099] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1531.528350] CPU: 1 PID: 11092 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1531.529095] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1531.529990] Call Trace: [ 1531.530290] dump_stack+0x107/0x167 [ 1531.530691] sysfs_warn_dup.cold+0x1c/0x29 [ 1531.531150] sysfs_do_create_link_sd+0x122/0x140 [ 1531.531657] sysfs_create_link+0x5f/0xc0 [ 1531.532092] device_add+0x703/0x1c50 [ 1531.532499] ? devlink_add_symlinks+0x970/0x970 [ 1531.533008] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1531.533576] wiphy_register+0x1da6/0x2850 [ 1531.534029] ? wiphy_unregister+0xb90/0xb90 [ 1531.534608] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1531.535215] ieee80211_register_hw+0x23c5/0x38b0 [ 1531.535741] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1531.536262] ? net_generic+0xdb/0x2b0 [ 1531.536684] ? lockdep_init_map_type+0x2c7/0x780 [ 1531.537208] ? memset+0x20/0x50 [ 1531.537576] ? __hrtimer_init+0x12c/0x270 [ 1531.538038] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1531.538611] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1531.539111] ? hwsim_new_radio_nl+0x967/0x1080 [ 1531.539620] ? memcpy+0x39/0x60 [ 1531.539989] hwsim_new_radio_nl+0x991/0x1080 [ 1531.540467] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1531.541044] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1531.541749] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1531.542459] genl_family_rcv_msg_doit+0x22d/0x330 [ 1531.542994] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1531.543702] ? cap_capable+0x1cd/0x230 [ 1531.544136] ? ns_capable+0xe2/0x110 [ 1531.544543] genl_rcv_msg+0x33c/0x5a0 [ 1531.544963] ? genl_get_cmd+0x480/0x480 [ 1531.545391] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1531.545951] ? lock_release+0x680/0x680 [ 1531.546389] ? __lockdep_reset_lock+0x180/0x180 [ 1531.546896] netlink_rcv_skb+0x14b/0x430 [ 1531.547342] ? genl_get_cmd+0x480/0x480 [ 1531.547778] ? netlink_ack+0xab0/0xab0 [ 1531.548204] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1531.548691] ? is_vmalloc_addr+0x7b/0xb0 [ 1531.549136] genl_rcv+0x24/0x40 [ 1531.549490] netlink_unicast+0x549/0x7f0 [ 1531.549934] ? netlink_attachskb+0x870/0x870 [ 1531.550416] ? __virt_addr_valid+0x128/0x350 [ 1531.550908] netlink_sendmsg+0x90f/0xdf0 [ 1531.551347] ? netlink_unicast+0x7f0/0x7f0 [ 1531.551814] ? netlink_unicast+0x7f0/0x7f0 [ 1531.552274] __sock_sendmsg+0x154/0x190 [ 1531.552706] ____sys_sendmsg+0x70d/0x870 [ 1531.553170] ? sock_write_iter+0x3d0/0x3d0 [ 1531.553643] ? do_recvmmsg+0x6d0/0x6d0 [ 1531.554083] ? perf_trace_lock+0xac/0x490 [ 1531.554541] ? __lockdep_reset_lock+0x180/0x180 [ 1531.555065] ___sys_sendmsg+0xf3/0x170 [ 1531.555485] ? sendmsg_copy_msghdr+0x160/0x160 [ 1531.556029] ? lock_downgrade+0x6d0/0x6d0 [ 1531.556473] ? find_held_lock+0x2c/0x110 [ 1531.556922] ? clockevents_program_event+0x14b/0x360 [ 1531.557474] ? __fget_files+0x296/0x4c0 [ 1531.557914] ? __fget_light+0xea/0x290 [ 1531.558359] __sys_sendmsg+0xe5/0x1b0 [ 1531.558782] ? __sys_sendmsg_sock+0x40/0x40 [ 1531.559384] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1531.560045] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1531.560600] ? trace_hardirqs_on+0x5b/0x180 [ 1531.561088] do_syscall_64+0x33/0x40 [ 1531.561488] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1531.562038] RIP: 0033:0x7fc533f18b19 [ 1531.562451] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1531.564401] RSP: 002b:00007fc53148e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1531.565218] RAX: ffffffffffffffda RBX: 00007fc53402bf60 RCX: 00007fc533f18b19 [ 1531.566006] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1531.566778] RBP: 00007fc533f72f6d R08: 0000000000000000 R09: 0000000000000000 [ 1531.567575] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1531.568340] R13: 00007fff9313d64f R14: 00007fc53148e300 R15: 0000000000022000 [ 1531.584837] devtmpfs: Unknown parameter 'vfat' 15:36:45 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) (fail_nth: 77) 15:36:45 executing program 5: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL802154_CMD_NEW_INTERFACE(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x34, r1, 0x11, 0x0, 0x0, {}, [@NL802154_ATTR_IFNAME={0xa, 0x4, 'wpan3\x00'}, @NL802154_ATTR_EXTENDED_ADDR={0xc}, @NL802154_ATTR_WPAN_PHY={0x8}]}, 0x34}}, 0x0) 15:36:45 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) (fail_nth: 1) [ 1531.732513] FAULT_INJECTION: forcing a failure. [ 1531.732513] name failslab, interval 1, probability 0, space 0, times 0 [ 1531.735160] CPU: 0 PID: 11112 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1531.736605] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1531.738321] Call Trace: [ 1531.738856] dump_stack+0x107/0x167 [ 1531.739613] should_fail.cold+0x5/0xa [ 1531.740396] ? __kernfs_new_node+0xd4/0x860 [ 1531.740910] FAULT_INJECTION: forcing a failure. [ 1531.740910] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1531.741272] should_failslab+0x5/0x20 [ 1531.741292] kmem_cache_alloc+0x5b/0x310 [ 1531.741323] __kernfs_new_node+0xd4/0x860 [ 1531.744946] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1531.745913] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1531.746899] ? wait_for_completion_io+0x270/0x270 [ 1531.747880] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1531.748948] kernfs_new_node+0x93/0x120 [ 1531.749755] __kernfs_create_file+0x51/0x350 [ 1531.750675] sysfs_add_file_mode_ns+0x221/0x560 [ 1531.751627] internal_create_group+0x324/0xb30 [ 1531.752556] ? sysfs_remove_group+0x170/0x170 [ 1531.753466] ? kernfs_name_hash+0xe7/0x110 [ 1531.754340] ? kernfs_find_ns+0x256/0x380 [ 1531.755188] sysfs_slab_add+0x188/0x200 [ 1531.755995] __kmem_cache_create+0x3db/0x520 [ 1531.756892] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1531.757907] p9_client_create+0xc2b/0x11c0 [ 1531.758790] ? p9_client_flush+0x430/0x430 [ 1531.759645] ? trace_hardirqs_on+0x5b/0x180 [ 1531.760516] ? lockdep_init_map_type+0x2c7/0x780 [ 1531.761482] ? __raw_spin_lock_init+0x36/0x110 [ 1531.762433] v9fs_session_init+0x1dd/0x1680 [ 1531.763304] ? lock_release+0x680/0x680 [ 1531.764119] ? kmem_cache_alloc_trace+0x151/0x320 [ 1531.765091] ? v9fs_show_options+0x690/0x690 [ 1531.765992] ? trace_hardirqs_on+0x5b/0x180 [ 1531.766881] ? kasan_unpoison_shadow+0x33/0x50 [ 1531.767807] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1531.768837] v9fs_mount+0x79/0x8f0 [ 1531.769563] ? v9fs_write_inode+0x60/0x60 [ 1531.770412] legacy_get_tree+0x105/0x220 [ 1531.771233] vfs_get_tree+0x8e/0x300 [ 1531.771993] path_mount+0x13be/0x20b0 [ 1531.772770] ? strncpy_from_user+0x9e/0x470 [ 1531.773646] ? finish_automount+0xa90/0xa90 [ 1531.774538] ? getname_flags.part.0+0x1dd/0x4f0 [ 1531.775480] ? _copy_from_user+0xfb/0x1b0 [ 1531.776330] __x64_sys_mount+0x282/0x300 [ 1531.777156] ? copy_mnt_ns+0xa00/0xa00 [ 1531.777949] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1531.779013] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1531.780064] do_syscall_64+0x33/0x40 [ 1531.780816] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1531.781849] RIP: 0033:0x7f76b700cb19 [ 1531.782618] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1531.786326] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1531.787861] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1531.789296] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1531.790746] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1531.792182] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1531.793619] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 [ 1531.795100] CPU: 1 PID: 11115 Comm: syz-executor.7 Not tainted 5.10.205 #1 [ 1531.795853] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1531.796763] Call Trace: [ 1531.797070] dump_stack+0x107/0x167 [ 1531.797484] should_fail.cold+0x5/0xa [ 1531.797897] _copy_from_user+0x2e/0x1b0 [ 1531.798325] __copy_msghdr_from_user+0x91/0x4b0 [ 1531.798818] ? __ia32_sys_shutdown+0x80/0x80 [ 1531.799282] ? perf_trace_lock+0xac/0x490 [ 1531.799722] ? __lock_acquire+0xbb1/0x5b00 [ 1531.800187] sendmsg_copy_msghdr+0xa1/0x160 [ 1531.800639] ? do_recvmmsg+0x6d0/0x6d0 [ 1531.801069] ? perf_trace_lock+0xac/0x490 [ 1531.801526] ? SOFTIRQ_verbose+0x10/0x10 [ 1531.801989] ? __lockdep_reset_lock+0x180/0x180 [ 1531.802508] ? perf_trace_lock+0xac/0x490 [ 1531.802963] ? SOFTIRQ_verbose+0x10/0x10 [ 1531.803404] ___sys_sendmsg+0xc6/0x170 [ 1531.803820] ? sendmsg_copy_msghdr+0x160/0x160 [ 1531.804313] ? __fget_files+0x26d/0x4c0 [ 1531.804733] ? lock_downgrade+0x6d0/0x6d0 [ 1531.805170] ? find_held_lock+0x2c/0x110 [ 1531.805610] ? __fget_files+0x296/0x4c0 [ 1531.806779] ? __fget_light+0xea/0x290 [ 1531.807740] __sys_sendmsg+0xe5/0x1b0 [ 1531.808668] ? __sys_sendmsg_sock+0x40/0x40 [ 1531.809716] ? rcu_read_lock_any_held+0x75/0xa0 [ 1531.811146] ? fput_many+0x2f/0x1a0 [ 1531.812036] ? ksys_write+0x1a9/0x260 [ 1531.812966] ? __ia32_sys_read+0xb0/0xb0 [ 1531.813984] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1531.815261] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1531.816388] ? trace_hardirqs_on+0x5b/0x180 [ 1531.817334] do_syscall_64+0x33/0x40 [ 1531.818162] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1531.819289] RIP: 0033:0x7f0050660b19 [ 1531.820130] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1531.824084] RSP: 002b:00007f004dbd6188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1531.825734] RAX: ffffffffffffffda RBX: 00007f0050773f60 RCX: 00007f0050660b19 [ 1531.827272] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 1531.828810] RBP: 00007f004dbd61d0 R08: 0000000000000000 R09: 0000000000000000 [ 1531.830313] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1531.831885] R13: 00007ffe128db73f R14: 00007f004dbd6300 R15: 0000000000022000 [ 1531.853149] kmem_cache_create(9p-fcall-cache) failed with error -12 [ 1531.854813] CPU: 1 PID: 11112 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1531.856320] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1531.858139] Call Trace: [ 1531.858689] dump_stack+0x107/0x167 [ 1531.859471] kmem_cache_create_usercopy.cold+0x17/0x65 [ 1531.860652] p9_client_create+0xc2b/0x11c0 [ 1531.861592] ? p9_client_flush+0x430/0x430 [ 1531.862544] ? trace_hardirqs_on+0x5b/0x180 [ 1531.863490] ? lockdep_init_map_type+0x2c7/0x780 [ 1531.864544] ? __raw_spin_lock_init+0x36/0x110 [ 1531.865547] v9fs_session_init+0x1dd/0x1680 [ 1531.866521] ? lock_release+0x680/0x680 [ 1531.867406] ? kmem_cache_alloc_trace+0x151/0x320 [ 1531.868441] ? v9fs_show_options+0x690/0x690 [ 1531.869383] ? trace_hardirqs_on+0x5b/0x180 [ 1531.870363] ? kasan_unpoison_shadow+0x33/0x50 [ 1531.871357] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1531.872475] v9fs_mount+0x79/0x8f0 [ 1531.873215] ? v9fs_write_inode+0x60/0x60 [ 1531.874135] legacy_get_tree+0x105/0x220 [ 1531.875032] vfs_get_tree+0x8e/0x300 [ 1531.875866] path_mount+0x13be/0x20b0 [ 1531.876686] ? strncpy_from_user+0x9e/0x470 [ 1531.877611] ? finish_automount+0xa90/0xa90 [ 1531.878594] ? getname_flags.part.0+0x1dd/0x4f0 [ 1531.879616] ? _copy_from_user+0xfb/0x1b0 [ 1531.880543] __x64_sys_mount+0x282/0x300 [ 1531.881437] ? copy_mnt_ns+0xa00/0xa00 [ 1531.882260] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1531.883437] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1531.884578] do_syscall_64+0x33/0x40 [ 1531.885383] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1531.886478] RIP: 0033:0x7f76b700cb19 [ 1531.887304] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1531.891324] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1531.892948] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1531.894527] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1531.896077] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1531.897583] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1531.899183] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 15:36:46 executing program 6: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:36:46 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) (fail_nth: 2) [ 1532.161549] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1532.163416] CPU: 0 PID: 11079 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1532.164830] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1532.166524] Call Trace: [ 1532.167061] dump_stack+0x107/0x167 [ 1532.167816] sysfs_warn_dup.cold+0x1c/0x29 [ 1532.168684] sysfs_do_create_link_sd+0x122/0x140 [ 1532.169653] sysfs_create_link+0x5f/0xc0 [ 1532.170494] device_add+0x703/0x1c50 [ 1532.171270] ? devlink_add_symlinks+0x970/0x970 [ 1532.172236] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1532.173319] wiphy_register+0x1da6/0x2850 [ 1532.174215] ? wiphy_unregister+0xb90/0xb90 [ 1532.175128] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1532.176230] ieee80211_register_hw+0x23c5/0x38b0 [ 1532.177223] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1532.178224] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1532.179336] ? memset+0x20/0x50 [ 1532.180013] ? __hrtimer_init+0x12c/0x270 [ 1532.180870] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1532.181918] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1532.182881] ? hwsim_new_radio_nl+0x967/0x1080 [ 1532.183828] ? memcpy+0x39/0x60 [ 1532.184512] hwsim_new_radio_nl+0x991/0x1080 [ 1532.185420] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1532.186492] ? trace_hardirqs_on+0x5b/0x180 [ 1532.187394] ? genl_family_rcv_msg_doit+0x203/0x330 [ 1532.188421] genl_family_rcv_msg_doit+0x22d/0x330 [ 1532.189420] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1532.190783] ? cap_capable+0x1cd/0x230 [ 1532.191606] ? ns_capable+0xe2/0x110 [ 1532.192378] genl_rcv_msg+0x33c/0x5a0 [ 1532.193188] ? genl_get_cmd+0x480/0x480 [ 1532.194036] ? lock_acquire+0x1b9/0x470 [ 1532.194866] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1532.195972] ? lock_release+0x680/0x680 [ 1532.196801] netlink_rcv_skb+0x14b/0x430 [ 1532.197631] ? genl_get_cmd+0x480/0x480 [ 1532.198464] ? netlink_ack+0xab0/0xab0 [ 1532.199278] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1532.200221] genl_rcv+0x24/0x40 [ 1532.200897] netlink_unicast+0x549/0x7f0 [ 1532.201735] ? netlink_attachskb+0x870/0x870 [ 1532.202661] netlink_sendmsg+0x90f/0xdf0 [ 1532.203502] ? netlink_unicast+0x7f0/0x7f0 [ 1532.204398] ? netlink_unicast+0x7f0/0x7f0 [ 1532.205274] __sock_sendmsg+0x154/0x190 [ 1532.206113] ____sys_sendmsg+0x70d/0x870 [ 1532.206957] ? sock_write_iter+0x3d0/0x3d0 [ 1532.207815] ? do_recvmmsg+0x6d0/0x6d0 [ 1532.208619] ? perf_trace_lock+0xac/0x490 [ 1532.209463] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1532.210584] ? __lockdep_reset_lock+0x180/0x180 [ 1532.211547] ___sys_sendmsg+0xf3/0x170 [ 1532.212345] ? sendmsg_copy_msghdr+0x160/0x160 [ 1532.213289] ? lock_downgrade+0x6d0/0x6d0 [ 1532.214157] ? find_held_lock+0x2c/0x110 [ 1532.214995] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1532.216057] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1532.217158] ? trace_hardirqs_on+0x5b/0x180 [ 1532.218063] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1532.219213] ? sockfd_lookup_light+0x112/0x180 [ 1532.220186] ? __sanitizer_cov_trace_pc+0x4/0x60 [ 1532.221188] __sys_sendmsg+0xe5/0x1b0 [ 1532.221982] ? __sys_sendmsg_sock+0x40/0x40 [ 1532.222913] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1532.224027] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1532.225087] ? trace_hardirqs_on+0x5b/0x180 [ 1532.226003] do_syscall_64+0x33/0x40 [ 1532.226792] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1532.227834] RIP: 0033:0x7f07e63f4b19 [ 1532.228615] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1532.232407] RSP: 002b:00007f07e396a188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1532.233961] RAX: ffffffffffffffda RBX: 00007f07e6507f60 RCX: 00007f07e63f4b19 [ 1532.235443] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1532.236918] RBP: 00007f07e644ef6d R08: 0000000000000000 R09: 0000000000000000 [ 1532.238377] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1532.239847] R13: 00007fff1f25f23f R14: 00007f07e396a300 R15: 0000000000022000 [ 1532.263133] FAULT_INJECTION: forcing a failure. [ 1532.263133] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1532.266283] CPU: 0 PID: 11124 Comm: syz-executor.7 Not tainted 5.10.205 #1 [ 1532.267704] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1532.269421] Call Trace: [ 1532.269964] dump_stack+0x107/0x167 [ 1532.270733] should_fail.cold+0x5/0xa [ 1532.271523] _copy_from_user+0x2e/0x1b0 [ 1532.272344] iovec_from_user+0x141/0x400 [ 1532.273187] __import_iovec+0x67/0x590 [ 1532.273980] ? __ia32_sys_shutdown+0x80/0x80 [ 1532.274903] ? perf_trace_lock+0xac/0x490 [ 1532.275768] import_iovec+0x83/0xb0 [ 1532.276523] sendmsg_copy_msghdr+0x131/0x160 [ 1532.277439] ? do_recvmmsg+0x6d0/0x6d0 [ 1532.278260] ? perf_trace_lock+0xac/0x490 [ 1532.279130] ? __lockdep_reset_lock+0x180/0x180 [ 1532.280102] ? perf_trace_lock+0xac/0x490 [ 1532.280953] ? SOFTIRQ_verbose+0x10/0x10 [ 1532.281786] ___sys_sendmsg+0xc6/0x170 [ 1532.282620] ? sendmsg_copy_msghdr+0x160/0x160 [ 1532.283561] ? __fget_files+0x26d/0x4c0 [ 1532.284380] ? lock_downgrade+0x6d0/0x6d0 [ 1532.285243] ? find_held_lock+0x2c/0x110 [ 1532.286110] ? __fget_files+0x296/0x4c0 [ 1532.286942] ? __fget_light+0xea/0x290 [ 1532.287745] __sys_sendmsg+0xe5/0x1b0 [ 1532.288520] ? __sys_sendmsg_sock+0x40/0x40 [ 1532.289416] ? rcu_read_lock_any_held+0x75/0xa0 [ 1532.290399] ? fput_many+0x2f/0x1a0 [ 1532.291161] ? ksys_write+0x1a9/0x260 [ 1532.291958] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1532.293029] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1532.294099] ? trace_hardirqs_on+0x5b/0x180 [ 1532.295004] do_syscall_64+0x33/0x40 [ 1532.295778] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1532.296831] RIP: 0033:0x7f0050660b19 [ 1532.297592] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1532.301398] RSP: 002b:00007f004dbd6188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1532.302981] RAX: ffffffffffffffda RBX: 00007f0050773f60 RCX: 00007f0050660b19 [ 1532.304434] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 1532.305905] RBP: 00007f004dbd61d0 R08: 0000000000000000 R09: 0000000000000000 [ 1532.307401] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1532.308862] R13: 00007ffe128db73f R14: 00007f004dbd6300 R15: 0000000000022000 15:37:00 executing program 0: perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4304, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000600)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, &(0x7f0000000040)=ANY=[@ANYBLOB="06000000e39010890f00000000"], 0x8) bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e23, 0x8001, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x8}, 0x1c) sendmmsg$inet6(r0, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f00000001c0)="4bc702854e3954b59347985ccc868289d3fe483d2c0900a2a1d12e33a66529e1f276fef452632dfa3c004ce3be84a5f66c29cd4ec39ae5206562fbc9ea3c0dbbebc22e628e147b0e9631f19b0ce0a48e0e675b2da3442226b898f1ddf8eabf133ab4a9cb0999c2ee1d3bd36d089b0d8e97ea00d4c5f6ad14dce058d595aacba2d587ff5eacd81b71a73f53ed276d1f3b3384bb2bfba4e0f37302e690df9e7024378ac754ac0576f996f3ee53d1034c7720767ddf2625817532f7ae89103367b73a36152b84c38bc227ba9e9ff48bcfe027585cf14bff37a888", 0xff41}], 0x1}}], 0x1, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) perf_event_open(&(0x7f00000000c0)={0x3, 0x80, 0x2, 0x7f, 0x1, 0x8, 0x0, 0x81, 0x6580, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x3, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0xaa, 0x4, @perf_config_ext={0x88, 0x1}, 0x3612, 0x2, 0x7fff, 0x9, 0x5, 0x0, 0x2, 0x0, 0x100, 0x0, 0x4}, 0xffffffffffffffff, 0x10, r2, 0x1) 15:37:00 executing program 3: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r1, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:37:00 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x242e2, 0x0) r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0) writev(r1, &(0x7f0000000240)=[{&(0x7f0000000280)="c8", 0x1}], 0x1) perf_event_open(&(0x7f0000001d80)={0x7, 0x80, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xbc0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp, 0x0, 0x0, 0x0, 0x9}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r0, 0x0) madvise(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x2) mlock(&(0x7f0000ffc000/0x4000)=nil, 0x4000) madvise(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0) 15:37:00 executing program 4: r0 = openat(0xffffffffffffff9c, 0x0, 0x105142, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x0, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r2 = openat(r1, &(0x7f00000000c0)='./file0\x00', 0x200000, 0x6b) fallocate(r2, 0x0, 0x0, 0x1000002) ioctl$AUTOFS_IOC_PROTOVER(r0, 0x80049363, &(0x7f0000000040)) r3 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) openat(r3, &(0x7f0000000180)='./file0\x00', 0x101803, 0x1) r4 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4317, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xffffffffffffffff}, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000}, 0x0, 0x8, r3, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0) dup2(r0, r4) r5 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) r6 = socket$packet(0x11, 0x2, 0x300) r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ftruncate(r5, 0x3) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) r9 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080), 0x101400, 0x0) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r9, 0xc018937a, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r5, {0x6071}}, './file1\x00'}) bind$packet(r6, &(0x7f0000000240)={0x11, 0x0, r8, 0x1, 0x0, 0x6, @random="ca73da4133fc"}, 0x14) sendfile(r6, r5, 0x0, 0x500000001) 15:37:00 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) (fail_nth: 78) 15:37:00 executing program 6: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:37:00 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) (fail_nth: 3) 15:37:00 executing program 2: fsetxattr$security_selinux(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000040)='system_u:object_r:hald_log_t:s0\x00', 0x20, 0x1) syz_extract_tcp_res$synack(0x0, 0x1, 0x0) [ 1546.898249] FAULT_INJECTION: forcing a failure. [ 1546.898249] name failslab, interval 1, probability 0, space 0, times 0 [ 1546.900676] CPU: 0 PID: 11145 Comm: syz-executor.7 Not tainted 5.10.205 #1 [ 1546.902086] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1546.903766] Call Trace: [ 1546.904309] dump_stack+0x107/0x167 [ 1546.905060] should_fail.cold+0x5/0xa [ 1546.905835] ? __alloc_skb+0x6d/0x5b0 [ 1546.906624] should_failslab+0x5/0x20 [ 1546.907394] kmem_cache_alloc_node+0x55/0x330 [ 1546.908310] __alloc_skb+0x6d/0x5b0 [ 1546.908568] FAULT_INJECTION: forcing a failure. [ 1546.908568] name failslab, interval 1, probability 0, space 0, times 0 [ 1546.909080] netlink_sendmsg+0x998/0xdf0 [ 1546.909112] ? netlink_unicast+0x7f0/0x7f0 [ 1546.912972] ? netlink_unicast+0x7f0/0x7f0 [ 1546.913822] __sock_sendmsg+0x154/0x190 [ 1546.914648] ____sys_sendmsg+0x70d/0x870 [ 1546.915473] ? sock_write_iter+0x3d0/0x3d0 [ 1546.916321] ? do_recvmmsg+0x6d0/0x6d0 [ 1546.917110] ? perf_trace_lock+0xac/0x490 [ 1546.917944] ? __lockdep_reset_lock+0x180/0x180 [ 1546.918885] ? perf_trace_lock+0xac/0x490 [ 1546.919733] ? SOFTIRQ_verbose+0x10/0x10 [ 1546.920557] ___sys_sendmsg+0xf3/0x170 [ 1546.921352] ? sendmsg_copy_msghdr+0x160/0x160 [ 1546.922298] ? lock_downgrade+0x6d0/0x6d0 [ 1546.923143] ? find_held_lock+0x2c/0x110 [ 1546.923973] ? __fget_files+0x296/0x4c0 [ 1546.924795] ? __fget_light+0xea/0x290 [ 1546.925595] __sys_sendmsg+0xe5/0x1b0 [ 1546.926401] ? __sys_sendmsg_sock+0x40/0x40 [ 1546.927270] ? rcu_read_lock_any_held+0x75/0xa0 [ 1546.928239] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1546.929297] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1546.930342] ? trace_hardirqs_on+0x5b/0x180 [ 1546.931220] do_syscall_64+0x33/0x40 [ 1546.931971] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1546.933000] RIP: 0033:0x7f0050660b19 [ 1546.933753] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1546.937468] RSP: 002b:00007f004dbd6188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1546.939010] RAX: ffffffffffffffda RBX: 00007f0050773f60 RCX: 00007f0050660b19 [ 1546.940443] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 1546.941887] RBP: 00007f004dbd61d0 R08: 0000000000000000 R09: 0000000000000000 [ 1546.943328] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1546.944778] R13: 00007ffe128db73f R14: 00007f004dbd6300 R15: 0000000000022000 [ 1546.946250] CPU: 1 PID: 11147 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1546.947670] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1546.949348] Call Trace: [ 1546.949880] dump_stack+0x107/0x167 [ 1546.950633] should_fail.cold+0x5/0xa [ 1546.951403] ? create_object.isra.0+0x3a/0xa20 [ 1546.952322] should_failslab+0x5/0x20 [ 1546.953093] kmem_cache_alloc+0x5b/0x310 [ 1546.953922] create_object.isra.0+0x3a/0xa20 [ 1546.954820] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1546.955847] kmem_cache_alloc+0x159/0x310 [ 1546.956697] __kernfs_new_node+0xd4/0x860 [ 1546.957543] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1546.958520] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1546.959498] ? wait_for_completion_io+0x270/0x270 [ 1546.960476] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1546.961542] kernfs_new_node+0x93/0x120 [ 1546.962367] __kernfs_create_file+0x51/0x350 [ 1546.963258] sysfs_add_file_mode_ns+0x221/0x560 [ 1546.964217] internal_create_group+0x324/0xb30 [ 1546.965144] ? sysfs_remove_group+0x170/0x170 [ 1546.966044] ? kernfs_name_hash+0xe7/0x110 [ 1546.966914] ? kernfs_find_ns+0x256/0x380 [ 1546.967778] sysfs_slab_add+0x188/0x200 [ 1546.968585] __kmem_cache_create+0x3db/0x520 [ 1546.969474] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1546.970504] p9_client_create+0xc2b/0x11c0 [ 1546.971371] ? p9_client_flush+0x430/0x430 [ 1546.972228] ? trace_hardirqs_on+0x5b/0x180 [ 1546.973097] ? lockdep_init_map_type+0x2c7/0x780 [ 1546.974056] ? __raw_spin_lock_init+0x36/0x110 [ 1546.975002] v9fs_session_init+0x1dd/0x1680 [ 1546.975876] ? lock_release+0x680/0x680 [ 1546.976686] ? kmem_cache_alloc_trace+0x151/0x320 [ 1546.977654] ? v9fs_show_options+0x690/0x690 [ 1546.978567] ? trace_hardirqs_on+0x5b/0x180 [ 1546.979441] ? kasan_unpoison_shadow+0x33/0x50 [ 1546.980363] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1546.981389] v9fs_mount+0x79/0x8f0 [ 1546.982110] ? v9fs_write_inode+0x60/0x60 [ 1546.982992] legacy_get_tree+0x105/0x220 [ 1546.983815] vfs_get_tree+0x8e/0x300 [ 1546.984582] path_mount+0x13be/0x20b0 [ 1546.985369] ? strncpy_from_user+0x9e/0x470 [ 1546.986248] ? finish_automount+0xa90/0xa90 [ 1546.987152] ? getname_flags.part.0+0x1dd/0x4f0 [ 1546.988107] ? _copy_from_user+0xfb/0x1b0 [ 1546.988953] __x64_sys_mount+0x282/0x300 [ 1546.989794] ? copy_mnt_ns+0xa00/0xa00 [ 1546.990603] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1546.991681] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1546.992744] do_syscall_64+0x33/0x40 [ 1546.993510] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1546.994564] RIP: 0033:0x7f76b700cb19 [ 1546.995329] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1546.999109] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1547.000663] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1547.002121] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1547.003601] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1547.005065] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1547.006537] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 15:37:01 executing program 0: r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.cpu/syz0\x00', 0x200002, 0x0) openat$cgroup_netprio_ifpriomap(r0, &(0x7f0000000000), 0x2, 0x0) 15:37:01 executing program 5: mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext={0x10008}, 0x11010, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x4000, 0x0, 0x0, 0x3) r0 = pkey_alloc(0x0, 0x0) mlock2(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/exe\x00', 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$sock_int(r2, 0x1, 0x12, &(0x7f0000000200)=0x33e0, 0x4) mremap(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x4000, 0x2, &(0x7f0000ffc000/0x4000)=nil) mbind(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, &(0x7f00000001c0)=0xffffffffffffffff, 0x0, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)={0x78, 0x3a, 0xc21, 0x1000, 0x0, {0x2}, [@nested={0x5a, 0x96, 0x0, 0x1, [@typed={0x8, 0x5f, 0x0, 0x0, @ipv4=@private=0xa010101}, @generic="39c2762ff9ba46040893b659739bb5f96c60227a0b25e7c1f111044109bafde0897a78eb44338c0cbc86bf56293ee55fc2e0bb0b43645d2456c612cc7191a1cd49d9", @typed={0x4, 0x2c}, @typed={0x8, 0xff, 0x0, 0x0, @pid}]}, @typed={0x8, 0xf, 0x0, 0x0, @ipv4=@local}]}, 0x78}, 0x1, 0x0, 0x0, 0x4000}, 0x20004004) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) madvise(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x2) mlock2(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1) munmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000) setsockopt$inet6_tcp_int(r2, 0x6, 0x2, &(0x7f0000000040)=0x81, 0x4) bind$inet6(r2, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) pkey_mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x8, r0) sendfile(r2, r1, 0x0, 0x9bbb) 15:37:01 executing program 2: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$unix(r0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="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", @ANYRES32=r1, @ANYBLOB='\x00\x00\x00\x00'], 0x18}, 0x0) recvmmsg(r1, &(0x7f0000004400)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)=""/22, 0x16}}], 0x1, 0x0, 0x0) 15:37:01 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x2, &(0x7f0000000080)=0x90, 0x4) openat$incfs(0xffffffffffffff9c, &(0x7f0000000180)='.pending_reads\x00', 0x1c400, 0x0) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c) setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000002ec0), 0x4) setsockopt$sock_int(r0, 0x1, 0x12, &(0x7f0000000100)=0x61d4ecb5, 0x4) sendmsg$inet6(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f00000001c0)="e518361d3fa1c27ccc23a8e24e552c2bd4230667e3d30d851dbde5f35cbd03ea5d2ebdb8f0ec5f92291ce2d9cb7ea5eeec2c24c12402934b6130c21def0ccf31cbd2c5aa3d90038e53ee403b539af61632d60bf1db205713dd90387f9ef200d091301b47d97649340178c239ccfac6926c99119c876653980c58c10cefdb9dfe6c850701be9ef997f95d1f01", 0x8c}, {&(0x7f0000000400)="9bb5ad1a7a2fe675969bebbfab7c793418b856c0ef339065d0f4d486a1400296ecce7d674c07c24760c9913a541badefd83aeb8682d97fb8633150110bf3b20e5eaa350dbbb45a70abaf9a08651a4e0a5e41bfbd00a56f8a606b48fb6499e54f288c854fb32e584b5c59255f46dccaacfeb587eb7a7875878bd7f34723", 0x7d}, {&(0x7f0000000300)="02ea805273899bf5c197d5505afa16112b5b053a64a3f67ed677ab30a1500bf6168336b47995d6a46762f19f9c82ee9c0299f6939d5a12eebfa64894e253ea2b19c9dc89587c961a74f219d6680a88643f16d7399b280c3cad83b815bf17d94707ad01dcd9d83f43a4dee38001d97c502cac6d4afc2c8ed76ee53b0e848eae14f1490ce99216f1e03c7308e6ec5550dbf7338a9406cfa3c3b2356a6745316ff7d76e661306e514636879da97b0e488add99c941936f6839c08a90506e0944701b99b6b39", 0xc4}], 0x3}, 0x30064011) recvfrom$inet6(r0, &(0x7f0000001e00)=""/4096, 0x1000, 0xcd08, 0x0, 0x0) 15:37:01 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) (fail_nth: 4) 15:37:01 executing program 0: copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, &(0x7f0000000100), 0x4d76, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000080), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFCONF(0xffffffffffffffff, 0x8912, 0x0) sendto$unix(r1, &(0x7f0000000480)="d9325a0e15d4c4a0b53dc0332b9d22d050f88932b7a5f90ed244486fb03b9ff71658f0db895fe2ef740419d7cd0e14f48058f63b02e6f05ef8c4801469567176c0c840c37d58ec551d63bf2d499de71277d23824d0bde219eba33a0b0c39422190e3b0436423162bdbe8d99517bbc2d92674f79ab515c9bbb247a031f6cd375b8758b286296d6dc993521461595bbf81ae331c0bcfd40c6a03efa691efc3b90513fa89877e8579c62a6eaf0dfa8c3130d8e6f76bf7e4d4f22212c1de57dcd58eddec84dec8efe1fb2c1df98e1f36291c7c57338ee45921643c9569bc", 0x4995b5922abe4152, 0x840, 0x0, 0x0) setresuid(0xffffffffffffffff, 0x0, 0x0) semctl$IPC_SET(0x0, 0x0, 0x1, &(0x7f00000002c0)={{0x3, 0xee01, 0x0, 0xffffffffffffffff, 0xee01, 0xc8}, 0x5, 0x80000001, 0x0, 0x0, 0x0, 0x0, 0x6}) lchown(&(0x7f0000000200)='./file1\x00', 0x0, 0x0) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000340)=0x0) setsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f0000000380)={{{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in=@dev={0xac, 0x14, 0x14, 0x15}, 0x4e23, 0x6, 0x4e24, 0xfff7, 0x2, 0x80, 0x0, 0x73, 0x0, r2}, {0x9, 0x1, 0x400, 0x0, 0x0, 0x5, 0x9, 0x401}, {0x101, 0x2, 0x80000001, 0xfffffffffffffe00}, 0x1, 0x6e6bb3, 0x0, 0x1, 0x0, 0x2}, {{@in6=@mcast1, 0x4d6, 0x3c}, 0xa, @in=@empty, 0x3507, 0x0, 0x0, 0x83, 0x8, 0x5, 0x8}}, 0xe8) r3 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x101142, 0x0) ioctl$sock_ipv6_tunnel_SIOCDELPRL(r3, 0x89f6, &(0x7f00000001c0)={'syztnl1\x00', &(0x7f0000000140)={'syztnl2\x00', 0x0, 0x0, 0x5, 0x0, 0x2, 0x32, @loopback, @private1, 0x40, 0x8, 0x4001141, 0x1}}) stat(&(0x7f0000000180)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r5, 0x0) setsockopt$inet_IP_IPSEC_POLICY(r3, 0x0, 0x10, &(0x7f0000001180)={{{@in6=@private1={0xfc, 0x1, '\x00', 0x1}, @in=@local, 0x4e20, 0x7f, 0x4e22, 0x0, 0xa, 0x80, 0x20, 0x2b, r4, r5}, {0x3ff, 0x44, 0x1, 0x27e7, 0x4, 0x800, 0xfff, 0x5}, {0xfffffffffffff800, 0x81, 0x20, 0xa5}, 0xb41, 0x6e6bb4, 0x2, 0x0, 0x1, 0x2}, {{@in6=@private0={0xfc, 0x0, '\x00', 0x1}, 0x4d6, 0x3c}, 0xa, @in6=@mcast1, 0x0, 0x0, 0x4, 0x8, 0x7, 0x2, 0x8}}, 0xe8) sendto$unix(0xffffffffffffffff, &(0x7f0000000480)="d9325a0e15d4c4a0b53dc0332b9d22d050f88932b7a5f90ed244486fb03b9ff71658f0db895fe2ef740419d7cd0e14f48058f63b02e6f05ef8c4801469567176c0c840c37d58ec551d63bf2d499de71277d23824d0bde219eba33a0b0c39422190e3b0436423162bdbe8d99517bbc2d92674f79ab515c9bbb247a031f6cd375b8758b286296d6dc993521461595bbf81ae331c0bcfd40c6a03efa691efc3b90513fa89877e8579c62a6eaf0dfa8c3130d8e6f76bf7e4d4f22212c1de57dcd58eddec84dec8efe1fb2c1df98e1f36291c7c57338ee45921643c9569bc", 0x4995b5922abe4152, 0x840, 0x0, 0x0) stat(&(0x7f0000000040)='./file1\x00', &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) fchown(r0, r5, r6) getsockopt$sock_int(0xffffffffffffffff, 0x1, 0x4, 0x0, &(0x7f00000000c0)) 15:37:01 executing program 6: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) [ 1547.216225] FAULT_INJECTION: forcing a failure. [ 1547.216225] name failslab, interval 1, probability 0, space 0, times 0 [ 1547.218906] CPU: 0 PID: 11168 Comm: syz-executor.7 Not tainted 5.10.205 #1 [ 1547.220651] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1547.222704] Call Trace: [ 1547.223366] dump_stack+0x107/0x167 [ 1547.224288] should_fail.cold+0x5/0xa [ 1547.225232] ? create_object.isra.0+0x3a/0xa20 [ 1547.226410] should_failslab+0x5/0x20 [ 1547.227367] kmem_cache_alloc+0x5b/0x310 [ 1547.228378] create_object.isra.0+0x3a/0xa20 [ 1547.229482] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1547.230764] kmem_cache_alloc_node+0x169/0x330 [ 1547.231915] __alloc_skb+0x6d/0x5b0 [ 1547.232839] netlink_sendmsg+0x998/0xdf0 [ 1547.233875] ? netlink_unicast+0x7f0/0x7f0 [ 1547.234949] ? netlink_unicast+0x7f0/0x7f0 [ 1547.235828] __sock_sendmsg+0x154/0x190 [ 1547.236673] ____sys_sendmsg+0x70d/0x870 [ 1547.237562] ? sock_write_iter+0x3d0/0x3d0 [ 1547.238475] ? do_recvmmsg+0x6d0/0x6d0 [ 1547.239316] ? perf_trace_lock+0xac/0x490 [ 1547.240202] ? __lockdep_reset_lock+0x180/0x180 [ 1547.241164] ? perf_trace_lock+0xac/0x490 [ 1547.242052] ? SOFTIRQ_verbose+0x10/0x10 [ 1547.242954] ___sys_sendmsg+0xf3/0x170 [ 1547.243792] ? sendmsg_copy_msghdr+0x160/0x160 [ 1547.244769] ? lock_downgrade+0x6d0/0x6d0 [ 1547.245675] ? find_held_lock+0x2c/0x110 [ 1547.246559] ? __fget_files+0x296/0x4c0 [ 1547.247404] ? __fget_light+0xea/0x290 [ 1547.248254] __sys_sendmsg+0xe5/0x1b0 [ 1547.249060] ? __sys_sendmsg_sock+0x40/0x40 [ 1547.249988] ? rcu_read_lock_any_held+0x75/0xa0 [ 1547.251025] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1547.252140] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1547.253249] ? trace_hardirqs_on+0x5b/0x180 [ 1547.254159] do_syscall_64+0x33/0x40 [ 1547.254188] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1547.256041] RIP: 0033:0x7f0050660b19 [ 1547.256826] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1547.260694] RSP: 002b:00007f004dbd6188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1547.262338] RAX: ffffffffffffffda RBX: 00007f0050773f60 RCX: 00007f0050660b19 [ 1547.263842] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 1547.265378] RBP: 00007f004dbd61d0 R08: 0000000000000000 R09: 0000000000000000 [ 1547.266875] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1547.268400] R13: 00007ffe128db73f R14: 00007f004dbd6300 R15: 0000000000022000 [ 1547.296873] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1547.300085] CPU: 1 PID: 11137 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1547.301507] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1547.303218] Call Trace: [ 1547.303762] dump_stack+0x107/0x167 [ 1547.304521] sysfs_warn_dup.cold+0x1c/0x29 [ 1547.305402] sysfs_do_create_link_sd+0x122/0x140 [ 1547.306389] sysfs_create_link+0x5f/0xc0 [ 1547.307240] device_add+0x703/0x1c50 [ 1547.308025] ? devlink_add_symlinks+0x970/0x970 [ 1547.309010] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1547.310112] wiphy_register+0x1da6/0x2850 [ 1547.311002] ? wiphy_unregister+0xb90/0xb90 [ 1547.311909] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1547.313092] ? ieee80211_register_hw+0x239f/0x38b0 [ 1547.314123] ieee80211_register_hw+0x23c5/0x38b0 [ 1547.315154] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1547.316162] ? net_generic+0xdb/0x2b0 [ 1547.316964] ? lock_is_held_type+0xd2/0x110 [ 1547.317868] ? memset+0x20/0x50 [ 1547.318601] ? __hrtimer_init+0x12c/0x270 [ 1547.319486] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1547.320562] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1547.321535] ? hwsim_new_radio_nl+0x967/0x1080 [ 1547.322527] ? memcpy+0x39/0x60 [ 1547.323241] hwsim_new_radio_nl+0x991/0x1080 [ 1547.324166] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1547.325262] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1547.326663] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1547.328003] genl_family_rcv_msg_doit+0x22d/0x330 [ 1547.329034] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1547.330416] ? __sanitizer_cov_trace_pc+0x4e/0x60 [ 1547.331442] ? ns_capable+0xe2/0x110 [ 1547.332238] genl_rcv_msg+0x33c/0x5a0 [ 1547.333044] ? genl_get_cmd+0x480/0x480 [ 1547.333871] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1547.334998] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1547.336055] ? netlink_rcv_skb+0x128/0x430 [ 1547.336925] ? netlink_rcv_skb+0x138/0x430 [ 1547.337794] netlink_rcv_skb+0x14b/0x430 [ 1547.338637] ? genl_get_cmd+0x480/0x480 [ 1547.339480] ? netlink_ack+0xab0/0xab0 [ 1547.340314] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1547.341266] genl_rcv+0x24/0x40 [ 1547.341936] netlink_unicast+0x549/0x7f0 [ 1547.342789] ? netlink_attachskb+0x870/0x870 [ 1547.343724] ? __virt_addr_valid+0x128/0x350 [ 1547.344653] netlink_sendmsg+0x90f/0xdf0 [ 1547.345512] ? netlink_unicast+0x7f0/0x7f0 [ 1547.346412] ? netlink_unicast+0x7f0/0x7f0 [ 1547.347273] __sock_sendmsg+0x154/0x190 [ 1547.348097] ____sys_sendmsg+0x70d/0x870 [ 1547.348925] ? sock_write_iter+0x3d0/0x3d0 [ 1547.349800] ? do_recvmmsg+0x6d0/0x6d0 [ 1547.350608] ? perf_trace_lock+0xac/0x490 [ 1547.351465] ? __lockdep_reset_lock+0x180/0x180 [ 1547.352433] ___sys_sendmsg+0xf3/0x170 [ 1547.353238] ? sendmsg_copy_msghdr+0x160/0x160 [ 1547.354180] ? lock_downgrade+0x6d0/0x6d0 [ 1547.355054] ? find_held_lock+0x2c/0x110 [ 1547.355899] ? clockevents_program_event+0x14b/0x360 [ 1547.356969] ? __fget_files+0x296/0x4c0 [ 1547.357810] ? __fget_light+0xea/0x290 [ 1547.358636] __sys_sendmsg+0xe5/0x1b0 [ 1547.359421] ? __sys_sendmsg_sock+0x40/0x40 [ 1547.360333] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1547.361402] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1547.362457] ? trace_hardirqs_on+0x5b/0x180 [ 1547.363354] do_syscall_64+0x33/0x40 [ 1547.364112] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1547.365165] RIP: 0033:0x7f07e63f4b19 [ 1547.365927] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1547.369671] RSP: 002b:00007f07e396a188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1547.371235] RAX: ffffffffffffffda RBX: 00007f07e6507f60 RCX: 00007f07e63f4b19 [ 1547.372671] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1547.374109] RBP: 00007f07e644ef6d R08: 0000000000000000 R09: 0000000000000000 [ 1547.375574] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1547.377016] R13: 00007fff1f25f23f R14: 00007f07e396a300 R15: 0000000000022000 15:37:01 executing program 0: dup2(0xffffffffffffffff, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81007a7f}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 15:37:01 executing program 6: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) [ 1547.598050] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1547.599974] CPU: 0 PID: 11177 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1547.601394] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1547.603104] Call Trace: [ 1547.603659] dump_stack+0x107/0x167 [ 1547.604414] sysfs_warn_dup.cold+0x1c/0x29 [ 1547.605282] sysfs_do_create_link_sd+0x122/0x140 [ 1547.606249] sysfs_create_link+0x5f/0xc0 [ 1547.607131] device_add+0x703/0x1c50 [ 1547.607904] ? devlink_add_symlinks+0x970/0x970 [ 1547.608870] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1547.609957] wiphy_register+0x1da6/0x2850 [ 1547.610829] ? wiphy_unregister+0xb90/0xb90 [ 1547.611734] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1547.612840] ieee80211_register_hw+0x23c5/0x38b0 [ 1547.613837] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1547.614831] ? net_generic+0xdb/0x2b0 [ 1547.615622] ? lockdep_init_map_type+0x2c7/0x780 [ 1547.616605] ? memset+0x20/0x50 [ 1547.617279] ? __hrtimer_init+0x12c/0x270 [ 1547.618133] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1547.619191] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1547.620131] ? hwsim_new_radio_nl+0x967/0x1080 [ 1547.621068] ? memcpy+0x39/0x60 [ 1547.621760] hwsim_new_radio_nl+0x991/0x1080 [ 1547.622671] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1547.623740] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1547.625091] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1547.626444] genl_family_rcv_msg_doit+0x22d/0x330 [ 1547.627432] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1547.628769] ? cap_capable+0x1cd/0x230 [ 1547.629575] ? ns_capable+0xe2/0x110 [ 1547.630364] genl_rcv_msg+0x33c/0x5a0 [ 1547.631161] ? genl_get_cmd+0x480/0x480 [ 1547.631976] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1547.633036] ? lock_release+0x680/0x680 [ 1547.633848] ? __lockdep_reset_lock+0x180/0x180 [ 1547.634822] netlink_rcv_skb+0x14b/0x430 [ 1547.635659] ? genl_get_cmd+0x480/0x480 [ 1547.636479] ? netlink_ack+0xab0/0xab0 [ 1547.637295] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1547.638236] ? is_vmalloc_addr+0x7b/0xb0 [ 1547.639078] genl_rcv+0x24/0x40 [ 1547.639749] netlink_unicast+0x549/0x7f0 [ 1547.640577] ? netlink_attachskb+0x870/0x870 [ 1547.641469] ? __virt_addr_valid+0x128/0x350 [ 1547.642394] netlink_sendmsg+0x90f/0xdf0 [ 1547.643230] ? netlink_unicast+0x7f0/0x7f0 [ 1547.644118] ? netlink_unicast+0x7f0/0x7f0 [ 1547.644981] __sock_sendmsg+0x154/0x190 [ 1547.645790] ____sys_sendmsg+0x70d/0x870 [ 1547.646639] ? sock_write_iter+0x3d0/0x3d0 [ 1547.647500] ? do_recvmmsg+0x6d0/0x6d0 [ 1547.648288] ? perf_trace_lock+0xac/0x490 [ 1547.649140] ? __lockdep_reset_lock+0x180/0x180 [ 1547.650086] ? perf_trace_lock+0xac/0x490 [ 1547.650944] ___sys_sendmsg+0xf3/0x170 [ 1547.651752] ? sendmsg_copy_msghdr+0x160/0x160 [ 1547.652694] ? lock_downgrade+0x6d0/0x6d0 [ 1547.653556] ? finish_task_switch+0x126/0x5d0 [ 1547.654482] ? lock_downgrade+0x6d0/0x6d0 [ 1547.655355] ? __fget_files+0x296/0x4c0 [ 1547.656188] ? __fget_light+0xea/0x290 [ 1547.656990] __sys_sendmsg+0xe5/0x1b0 [ 1547.657772] ? __sys_sendmsg_sock+0x40/0x40 [ 1547.658667] ? io_schedule_timeout+0x140/0x140 [ 1547.659625] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1547.660711] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1547.661768] ? trace_hardirqs_on+0x5b/0x180 [ 1547.662666] do_syscall_64+0x33/0x40 [ 1547.663434] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1547.664491] RIP: 0033:0x7fc533f18b19 [ 1547.665263] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1547.669038] RSP: 002b:00007fc53148e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1547.670602] RAX: ffffffffffffffda RBX: 00007fc53402bf60 RCX: 00007fc533f18b19 [ 1547.672072] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1547.673531] RBP: 00007fc533f72f6d R08: 0000000000000000 R09: 0000000000000000 [ 1547.674996] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1547.676453] R13: 00007fff9313d64f R14: 00007fc53148e300 R15: 0000000000022000 15:37:01 executing program 3: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:37:01 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) (fail_nth: 79) 15:37:01 executing program 6: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:37:01 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) (fail_nth: 5) 15:37:01 executing program 0: unshare(0x2a040600) r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0xe64, @dev, 0x2}, 0x1c) bind$inet6(r0, &(0x7f00000002c0)={0xa, 0x4e20, 0x9, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x4}, 0x1c) sendmsg$inet6(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0), 0x0, &(0x7f0000001580)=[@pktinfo={{0x24, 0x29, 0x32, {@private1}}}, @hopopts={{0x78, 0x29, 0x36, {0x3b, 0xb, '\x00', [@pad1, @calipso={0x7, 0x50, {0x1, 0x12, 0x9, 0x200, [0x3, 0x9, 0x6, 0x0, 0x5, 0xe7c9, 0x8, 0x16, 0x8]}}, @enc_lim={0x4, 0x1, 0x65}, @pad1]}}}, @rthdr_2292={{0x68, 0x29, 0x39, {0x8, 0xa, 0x2, 0x8, 0x0, [@rand_addr=' \x01\x00', @local, @remote, @mcast1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02']}}}, @hopopts={{0x118, 0x29, 0x36, {0x3c, 0x1f, '\x00', [@generic={0x0, 0xb6, "97521fcd3949beeaec386898159954f848ad909c6b77827922111368ce6b972aca133bdb17d3863d435f7f7798efcdb0afbc737d393d51f7ebb253079357cb06f380f867442e08b7d2a9f585257d160895329d04e7d91b744da5e75375c1170cc0305adabeae087740e8a340b1bbd3a732f4a775f60a54c61ff22f2e748cf8f465f31614f168d8123fc5b02369c454a6a61a084183f8782f64ed718dbbdff14ec628ff5dc1daae3679485a940f76f7b92941bea114b3"}, @padn={0x1, 0x1, [0x0]}, @hao={0xc9, 0x10, @dev={0xfe, 0x80, '\x00', 0x25}}, @calipso={0x7, 0x28, {0x1, 0x8, 0x7, 0x4, [0x600000000000, 0x4, 0x2, 0x3]}}, @enc_lim={0x4, 0x1, 0x40}, @pad1]}}}, @hoplimit={{0x14, 0x29, 0x34, 0x4f620c76}}, @pktinfo={{0x24, 0x29, 0x32, {@private0={0xfc, 0x0, '\x00', 0x1}}}}], 0x260}, 0x0) sendmmsg$inet6(r0, &(0x7f0000000380)=[{{&(0x7f0000000000)={0xa, 0x4e21, 0xc91, @dev={0xfe, 0x80, '\x00', 0x1e}, 0xfffffc01}, 0x1c, &(0x7f00000003c0)=[{&(0x7f0000000040)="8301ef9523956a55056550fedba0d851f8c4faaedf7c7cfae4a5332bea7ff24dc949c96bf42b96214cef96de83a5c519aff6816e1ba8485fb1a48eb6cd29f3591c37cea546cde44520bc2452c19b555b59d4791a9841a55fc3a821", 0x5b}, {&(0x7f0000000580)="df1a098f50564ceed4f97b6f5f430b1d1f4d43fdc4405fde6cfa777b84a738da488fb7dd6f1f797f8b2330daf476ad58d5401aca62b8785f3344bd7f8dc1b97e8eeb45fe2c2bcf18aab51f59596b1f8665347ed5aa0d4359f859a9f12f88a1c430dbce205729f0eb1626df547b10078a1b08022a7f483661cf9fc113b64443684e20d5e6acf81d96e178656bb96e5d7124ba61baf83234da35aba6b2ac2bd923cbba52feb7df94e36c9d15d2e5b1e392a1c8b9872f41824add57983766d986d9ae227ccb27b8e3ed341507d0d85d26e49039f9e59dcbb8c7652a7132d902b737366b31245f20742f60a41589720f39534ea310188db4298cb0fdb55aef1e8c505e6e42290d7de807de4e6cc25306fc7a6b64cdf95110f2bf1b3bf814e09a212e9c2f2c82b45bfe17ccfede49aed8e73cd7f5d275e9a26dd0d8844056afe40fa77ce1642c9fd1bf311256de2e178c46bd3617e9aa09e3fbd81df7026f58ed01eac890207f7fd783f987ed97a1b1f70cb41d3ccaaef7468e1bc6e551d67d152aea691fc8b1da57d662da3f2c24846c79e93be3beffd5f07edfc01a8d778cb08b362c11bdfa47f0c7569b2f371dcbca45709bb0a61f70aeab1d70c4cf1398249b8f0ea7ae0b8de44e7bcdd154cfa25becbab72885635292453d6a9b0fa5737819f6a6b202b835887351db37cda7b0a0e020c4858021309c01c4fc86086ea825382bafd1a400aeb14a94e2b5620558cbbe64a156323dd7edfa6502c3f3a0ed3e85efc735ad9664463c88e0682b8ff26440e7474c26adf0d00347777ea36c007b02db96f42da11b306f5216f94065a8717f6403d6b5dd4737126491d6ffffd9bcc526d73fa73a0156d1cfd1996662b2630b21380b8de4c0dfb5f0f4ff681c49ead25544d51a3ace71c5193ff6c0454c2a6dff2a83e92b6a52b70aa697bebae53dea07d480e2ea2aa4082895e074e6e3ab37f16aaae767088b49bfaf442166a66c8e754b69d0fd48619ac14350184a239fafb69711d12e53c4451e1b8fe50b13e5c43adb8c0f325b702926b6d006c814d0ea3eb0086dfaeb6962a9fc82ea79d289c4abdb16843801c5806e621159ed1f8cb8d9f46859d44130fc28eb7bedc8dfdfa46c871e225af5bbda2e7a0993ccfd14231528c11a4a621d0da1b3529a0491aa9c7752787186cd650064ec8c08167b3acf517fa70dbb5645bc204fcb53308335c1ddd346ffc35b2f3ff0b3fd985305d636318aa439f84bf415ed0bcaad47fcd491a851648e4240bff782eed24917f53127aa4a164b04dc3b429e9d804d6f2a5cd2e9e08faf88fc2983c96184c6d6462bfb211fbe2bebce267d2620974fccd4e496ff818b2a663e8b84d1ad47e6d35eb221abb21618c844d77d60a7942696604e8a18d660c2ab862a261f5d48b36a778dcfff1e998be523da4fe940434793789f07174f6d02b5ebb2c0fdd9339fb54317f95f5b8135f5e6ace2f0323125f212bb1bc681a274e6b88facc9f9404b9024cc995c950d8175ec3bf844ca89af0644160ac9c82b794fd2d56ee9d980f94ba572cb60fcd29aa222cf29fdeaf4fbb13bb4657e2324a7bb6da0d99ed5b1d1abfb429a63340584d7b0559541b3a69e86918bc5fe66373b9e3f887df6563659a0ab3cbbd9f577127e1343076e01923e4a93f80cbe9f78b866344c8d5897dee6f6e0aac1d5bf966cf7c00f8d159f6083a0920c52d261c6f92d42a0f54fbf86f9022fe006cf0a0f70eb45f47b78d1166430be31076581cc50e6390af1bd5767da73c0cd4eb49cbf8b2cfe3d34ccb71c0298a76295a4800084b6892c03e4c9b42a2b3faf9172c136d50b4034717042fa9a4522d28d45c82c7f7e57816e26414b7c4992c172b3d853d1c7aafeaec759de4b5e76e90675e9a53fdde51561af15d051c3d72f54bbd1352565b9347e6a6bc3faccd4691da676800a9b67a23d8b0f44e21a3df48e59e77cf8e9ec69c8c51ac37ab08aa0ae2181575f79928a840f4a47739b9ab4a1eebf80829dbb4c2a3149f13aeb4a47b40d5266fde0e313a7f3fb09a8ba8462498c65ac340eacf06cdd24ea0e692ba188941bbf5ac726ff00401337b38977c93ddc779abf4521588e00196dcef6d7c18857339852b0aa3c766a4a1a2e5a61e5db527cccd12c227ba88f3ea4d705d092b72f434c488856820696507ef248c4a384b463acec52dc0752237c1981ff0fd5af13fdeb9c1496c4061fb828cef9f8437e3f5be0f4c355d4e115ba67e1dc971cda48139bff57f1d11d0b0f0d48c3ec46e9250e758a63b734fea2f35d64ca63de46a429d4eb11177a32579e0b783ee3cdc87928ac76f1484a936fbd3436f4d658ba0ffc5b62b1799833c20565539f7c24fc442e03cc4cb58bcf4e99fa4eb8b1a47e691939d05472293603b2433cdf5d16a8b0e0ec0920af0d1192e8f6bae46eeae16cb00d68a1af858f428ef596bd9a9f960a1dbb41b3e7b1be45153cc7a314b239fece9e4ee436730d7933929b7dce461765f3b2ab77fc8964c1526ea37bcb34330579afd43f6d249ab7af916877c5b0430997e497a6f6d41e85541775e57b5dd92ef3d25612aa761cb1df15a5b9226dd6e209123dd7361d598c2a00a9ff0cabc72ece4792387d95dba2a9e6d177089fc8fd94269dd52812a5f02581eb6a25922b148fbb18c8571d88a37af45008daffdf2b4589ea755238519b10701291a6a72bcd72b670d4bb397ec8b6480c9262cd230daf27608ca151c3c9888399e6e96ee0b161173ae41febbd25e706604f9f3f9e8a89f194a1c7ac0f10487bbd1e31ea8870c3ec9820d7ca11f8d8fd44c8e8a9f6540a784ba90509a621aa5ae78614f9192895a1cb8bfb5b4c58fab62b8724964ff44bf8cf98d5715f58c1e7a0ede4cc26fb799ba6a681a444e9249bfb0928ff43dff5e58df82a7c8dc6593825833620786a099725aadeaa5e954e91f3ed7f3ba3fa8681d2707f786cf373676dd952751d811f7f7c88f26477bb72065325cbddd8e9aa76d6d0dd559aab34611515c451281e7f9bbcee531a5a6a94a9364e1611e5081be2de94e2d91d987929074ef4761376f04ca8a39d21314ade8eb06e729b6b80a253cc2b3c9c1516e591901f2e622414decd337099ea14b00f72a8a85b73d198e560ba2d4183b620042eaa89238a50b504bc4932ad40ebf3de11f5e5cba8dbd0bb565c55550dbfe751930c40244b5a70ed3d3a510e58a82346a79f1589e046cfb365ef65854913fefd782044c0f4ebc21e81fc81db1250bd6e699881daededd5088a2e8e9c3c89b2d30508ab1690a0f36585271beec186398b5ef5bf23cd2a95264a4b0c5c9cef73d21635089fb83a7199d56609e38cf2a0860ee53c1f69db1133caf779115625ca2a15811e5afee251997eb643f4770c4a3c9cd8dbc5075ac0021641b2c372a0af810a8fb2acef40d9da72f4880aff8afcad1ee32abcca591c892d23dec0f7ad5c4a878dbc1939c939c7348c4ac1183ebefcb60999bff65fb93b7ca25b823fdb3931fadcce3b86876153fea08f567829114bca2631155536858803b5963fef319b6afedbfb63f1a39b8cf6754e862b2b188fd3d676305d266f0e47590a974dcadca2d22231a7df8d89846a92a8e6ee4a0e51436ffb055dc8bf835f7f75b4b223c32eea2399382b88ca6b635eb0c2a1ab0559ad3461b017cef1550de5ab6bb02e2c2494e2319473e409b93df6c037f2d64768a9f4e92afd9e5a9fefad8569696e3c7b43e5b38827fcc909456555adda70791e55404a66251faa1d9eddd8362677e0c0823d668262200ffb3e72635827c11f5d2108ef4175f70eed50eac75bade2730077f2fd641bf735a0d94c789c06b5154338b21f629dad5999f22274b09e05699f5bc3732011cccdeae714de54f76bf676ddaa6fe36749f2df218fa34332920cea68629f5b1da42afc9c7aa6e2e792cfbc9c48b98a135f1536f87717a2535768b4a4e9bc08c07d54d1335c38d8cbbd63c6b68232a34f88e8fc56027808a01b8c9107647429b0e6ec4ad4158331fde4d00319dd01ab2e105372473319071ff70012199586f4bc58f23cb07dd2e9a6013d85cdb728d833896ee9000ca92526575b907ba8f2624a425f4f8ab2cb0765ea494ecb00531d20a8d7b6f61a6ee0db680db5a70813506ed1353abe91425d5e4265a147bbc9c5772244dc25d499aea3341ebb4c95da05767e97c727c1849cc1b7c600f317790b4957169f7beb8043947fc76c6802dc35e4bb08577b43bbf366e1f9e1aba60010f8ec92d444a817f595aa2e68168c2b797219f6e21ffa691537bb9d0b756510be3f4860f555b903d305c653c66af8924117d0794f00313f4c2e9d1880f363e572115a3d4a31ec97b47b2640a2a1f0b42d7f1ec36f84b7567632b26756b83979ca60356fef006a547362984fcfde1541f34ec99d49e796ba45333786d4e990c5e31a2c673a96ba1520b382a30fa8fe5e0866bc0dd97ca8f2986f35a99fff76ad4f2a0ac6beceff667d2b2919347165397fa6eb143a14a7dd0f8be0c2baea09b82b1e602643206afdf38c8b67fa84784f3caa81db81d2e50b8b84ea9cc7b036c0d8a4d11d8775ad2bed0bfd3209e5a69fa10813605c05d0985ab30d9e1cacb36802548fd9a635547ae26a47a27b1e1228623007e7d047a8003eb7b507507006cda171810746cde65517f7abbc14fe72ca2bb574e83a42ce5509891b098b788a5b30ef71696c7274e1dd51983c74436683f73fde44255e10418e1f719d1d4c11d31c7772fee4fe28fa89093e9dd0b85894976e8a310b6aa64c3c063255eb17989f5553640095c0ff380d9c9bec2bbda59886606efd9a96ce93e1de16485992daa2ae904eb963dbf4b193b4fcc7b00374a05e3616549ad452316362fb2c321273106790f95d5c6d2daefc078cf3dc4f70fe7584119dd6c1f253a3f4c91034b2ac5183c5186bdb8e7c0b32e3e07b176fa2980a1a0320a83941b591d8544bfe0a39c4c04adfc9577773b073c3c0c24625c003d7d38aca983878b1d824d0e8e937e8d7a08575e40da4e057a373d57054e64b0b442008492f08518317cebeacaf2c777e1482cc146425c211ea895087728e55bf40ecf8c9e5af2e6848be4b79e81a44777be3d1b389cd7606d7394ed9b4a9788a46366e551edf673d3244a6491236c816d3dfba8086c46d7952025af8c0e4aad9b725cdb400c7ff4b66aab51bdf8ea318aae09db92f872d820e081eb9ea49460822cc53bd3e1b326ae3451b527fe97d3e0093a506540428c594fcb1ca0b4754665f312d4345f22773e2348e60dc6c155318a1eb4b3391d713062598d9b93310b5b73fd3f1e78481157a678c7f7b8e1df1c315e0c2eea8a0bfe0baf189bd6343b96aab5e19defe54833c54867bad4fdeec2237facdea02356b3e638bcb6d628724812161f7b7f2b06cdb8e0f9d218aa624b0153d8fbfdd333e8e1400c79255cc198627e3281935be1dc4f7286c3425f65714cfc69fff392910d38f61c697fa43a7a783cba1fb31cdb4bd8c409e4aba761afbc83db42205347e35dd00bb478400f3cb48c808c2541a77026d0ce6714a40dac9288f392675a9dd9dfee6295f46119a578824c2183fc8bca27fa53b06fb1d627f94cb38bb6616bb7322e2ec0ad77e14ac8bc5b070fb5165ccc6529de2a3e6a9bac431c304442a35107d20b91d82059bb4879f85e20125b8f11c6ef26b93d5bf4506f837cddb3514c9772f3d83ef2e7b27d9697a9640d90421dce7249b3074aa496409bb870cad518ac84762cb1d4d537033d4d1", 0x1000}, {&(0x7f00000000c0)="d9600774bf7d1ab30aea9a8c3d8533fee24fbb09270cc323b13fb336e6c90092c516e360fed1cb1a8c6365f13a9f8de632e085ba6e92f529ce2b9f995ed777eb0234a3784afe80d2e32c1d67d846db88702893fd94", 0x55}, {&(0x7f0000000140)="bb3a04116dbd73884c4df38aafe7bf031576985d2d2e8566040153f57e74c70a81c7c1f174e855ddf19ce878cf43a4bd8d7e283cad908e459ff5f0595ae57e866498ede9e91723a348ff1a6cf522d3ee51f47b0b4b74de75a36726bf12828c7d9ecf8779328a049091dfc5990048c19baf7b5241cf0c0f8433c00fd5583cb29bf88c99c436520045195ae5c9af27002d2f0ecde0be7fbf066e00d3a7f36cef97d4db77a74eadaf7f8f85182824cee07166f55b7f076366f05bfef9e12df38ecf6b49be8c73c1", 0xc6}, {&(0x7f0000000240)="4adc3b84b629b5e6c61f75248e6abf7380076c1d6215848538c27fcf38f4102286660067bd70e14b05256d84610de32966bf6fe5ad85a454058d141fcbf64764ff37311e1f2bbb76d07893d04af1b117614dbb1c05b3d9893c59c07762eda22afb29c02aa46b1e1f518d60f0ad1265b080fdaf10c9874b6511", 0x79}, {&(0x7f0000000340)="90c6eef9465a5bf238a015590ed5cc26b2664bdb545a151b8d57d17f9d68bcb93b3dd1d487a515d9bad37d50b9", 0x2d}], 0x6, &(0x7f0000000340)}}], 0x1, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x406, r0) [ 1547.757007] FAULT_INJECTION: forcing a failure. [ 1547.757007] name failslab, interval 1, probability 0, space 0, times 0 [ 1547.759445] CPU: 1 PID: 11184 Comm: syz-executor.7 Not tainted 5.10.205 #1 [ 1547.760862] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1547.762572] Call Trace: [ 1547.763111] dump_stack+0x107/0x167 [ 1547.763874] should_fail.cold+0x5/0xa [ 1547.764674] should_failslab+0x5/0x20 [ 1547.765462] __kmalloc_node_track_caller+0x74/0x3b0 [ 1547.766475] FAULT_INJECTION: forcing a failure. [ 1547.766475] name failslab, interval 1, probability 0, space 0, times 0 [ 1547.766514] ? netlink_sendmsg+0x998/0xdf0 [ 1547.766546] __alloc_skb+0xb1/0x5b0 [ 1547.770385] netlink_sendmsg+0x998/0xdf0 [ 1547.771223] ? netlink_unicast+0x7f0/0x7f0 [ 1547.772102] ? netlink_unicast+0x7f0/0x7f0 [ 1547.772961] __sock_sendmsg+0x154/0x190 [ 1547.773774] ____sys_sendmsg+0x70d/0x870 [ 1547.774621] ? sock_write_iter+0x3d0/0x3d0 [ 1547.775478] ? do_recvmmsg+0x6d0/0x6d0 [ 1547.776274] ? perf_trace_lock+0xac/0x490 [ 1547.777133] ? __lockdep_reset_lock+0x180/0x180 [ 1547.778082] ? perf_trace_lock+0xac/0x490 [ 1547.778939] ? SOFTIRQ_verbose+0x10/0x10 [ 1547.779769] ___sys_sendmsg+0xf3/0x170 [ 1547.780573] ? sendmsg_copy_msghdr+0x160/0x160 [ 1547.781503] ? lock_downgrade+0x6d0/0x6d0 [ 1547.782363] ? find_held_lock+0x2c/0x110 [ 1547.783195] ? __fget_files+0x296/0x4c0 [ 1547.784018] ? __fget_light+0xea/0x290 [ 1547.784819] __sys_sendmsg+0xe5/0x1b0 [ 1547.785598] ? __sys_sendmsg_sock+0x40/0x40 [ 1547.786505] ? rcu_read_lock_any_held+0x75/0xa0 [ 1547.787482] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1547.788559] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1547.789620] ? trace_hardirqs_on+0x5b/0x180 [ 1547.790519] do_syscall_64+0x33/0x40 [ 1547.791300] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1547.792341] RIP: 0033:0x7f0050660b19 [ 1547.793109] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1547.796864] RSP: 002b:00007f004dbd6188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1547.798412] RAX: ffffffffffffffda RBX: 00007f0050773f60 RCX: 00007f0050660b19 [ 1547.799853] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 1547.801287] RBP: 00007f004dbd61d0 R08: 0000000000000000 R09: 0000000000000000 [ 1547.802731] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1547.804166] R13: 00007ffe128db73f R14: 00007f004dbd6300 R15: 0000000000022000 [ 1547.805645] CPU: 0 PID: 11185 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1547.807092] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1547.808788] Call Trace: [ 1547.809336] dump_stack+0x107/0x167 [ 1547.810094] should_fail.cold+0x5/0xa [ 1547.810895] ? __kernfs_new_node+0xd4/0x860 [ 1547.811785] should_failslab+0x5/0x20 [ 1547.812572] kmem_cache_alloc+0x5b/0x310 [ 1547.813423] __kernfs_new_node+0xd4/0x860 [ 1547.814291] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1547.815273] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1547.816257] ? wait_for_completion_io+0x270/0x270 [ 1547.817241] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1547.818331] kernfs_new_node+0x93/0x120 [ 1547.819161] __kernfs_create_file+0x51/0x350 [ 1547.820070] sysfs_add_file_mode_ns+0x221/0x560 [ 1547.821034] internal_create_group+0x324/0xb30 [ 1547.821986] ? sysfs_remove_group+0x170/0x170 [ 1547.822932] ? kernfs_name_hash+0xe7/0x110 [ 1547.823809] ? kernfs_find_ns+0x256/0x380 [ 1547.824660] sysfs_slab_add+0x188/0x200 [ 1547.825486] __kmem_cache_create+0x3db/0x520 [ 1547.826407] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1547.827450] p9_client_create+0xc2b/0x11c0 [ 1547.828338] ? p9_client_flush+0x430/0x430 [ 1547.829228] ? trace_hardirqs_on+0x5b/0x180 [ 1547.830117] ? lockdep_init_map_type+0x2c7/0x780 [ 1547.831114] ? __raw_spin_lock_init+0x36/0x110 [ 1547.832069] v9fs_session_init+0x1dd/0x1680 [ 1547.832964] ? lock_release+0x680/0x680 [ 1547.833802] ? kmem_cache_alloc_trace+0x151/0x320 [ 1547.834821] ? v9fs_show_options+0x690/0x690 [ 1547.835731] ? trace_hardirqs_on+0x5b/0x180 [ 1547.836625] ? kasan_unpoison_shadow+0x33/0x50 [ 1547.837580] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1547.838648] v9fs_mount+0x79/0x8f0 [ 1547.839392] ? v9fs_write_inode+0x60/0x60 [ 1547.840254] legacy_get_tree+0x105/0x220 [ 1547.841105] vfs_get_tree+0x8e/0x300 [ 1547.841873] path_mount+0x13be/0x20b0 [ 1547.842679] ? strncpy_from_user+0x9e/0x470 [ 1547.843583] ? finish_automount+0xa90/0xa90 [ 1547.844481] ? getname_flags.part.0+0x1dd/0x4f0 [ 1547.845437] ? _copy_from_user+0xfb/0x1b0 [ 1547.846307] __x64_sys_mount+0x282/0x300 [ 1547.847147] ? copy_mnt_ns+0xa00/0xa00 [ 1547.847955] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1547.849029] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1547.850103] do_syscall_64+0x33/0x40 [ 1547.850881] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1547.851932] RIP: 0033:0x7f76b700cb19 [ 1547.852685] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1547.856469] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1547.858046] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1547.859537] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1547.861006] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1547.862481] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1547.863960] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 [ 1547.881540] kmem_cache_create(9p-fcall-cache) failed with error -12 [ 1547.882900] CPU: 1 PID: 11185 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1547.884275] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1547.885923] Call Trace: [ 1547.886466] dump_stack+0x107/0x167 [ 1547.887198] kmem_cache_create_usercopy.cold+0x17/0x65 [ 1547.888258] p9_client_create+0xc2b/0x11c0 [ 1547.889116] ? p9_client_flush+0x430/0x430 [ 1547.889958] ? trace_hardirqs_on+0x5b/0x180 [ 1547.890837] ? lockdep_init_map_type+0x2c7/0x780 [ 1547.891790] ? __raw_spin_lock_init+0x36/0x110 [ 1547.892701] v9fs_session_init+0x1dd/0x1680 [ 1547.893547] ? lock_release+0x680/0x680 [ 1547.894361] ? kmem_cache_alloc_trace+0x151/0x320 [ 1547.895307] ? v9fs_show_options+0x690/0x690 [ 1547.896197] ? trace_hardirqs_on+0x5b/0x180 [ 1547.897052] ? kasan_unpoison_shadow+0x33/0x50 [ 1547.897955] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1547.898999] v9fs_mount+0x79/0x8f0 [ 1547.899705] ? v9fs_write_inode+0x60/0x60 [ 1547.900536] legacy_get_tree+0x105/0x220 [ 1547.901363] vfs_get_tree+0x8e/0x300 [ 1547.902104] path_mount+0x13be/0x20b0 [ 1547.902880] ? strncpy_from_user+0x9e/0x470 [ 1547.903755] ? finish_automount+0xa90/0xa90 [ 1547.904610] ? getname_flags.part.0+0x1dd/0x4f0 [ 1547.905551] ? _copy_from_user+0xfb/0x1b0 [ 1547.906419] __x64_sys_mount+0x282/0x300 [ 1547.907233] ? copy_mnt_ns+0xa00/0xa00 [ 1547.908008] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1547.909030] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1547.910049] do_syscall_64+0x33/0x40 [ 1547.910788] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1547.911786] RIP: 0033:0x7f76b700cb19 15:37:01 executing program 0: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400020801000470008400f801", 0x17}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) r0 = memfd_create(&(0x7f0000000340)='\x00', 0x2) pwritev2(r0, &(0x7f0000000440)=[{&(0x7f00000002c0)="81", 0x1}], 0x1, 0x7ffd, 0x0, 0x0) fcntl$addseals(r0, 0x409, 0xe) fallocate(r0, 0x0, 0x0, 0x4) chdir(&(0x7f0000000040)='./file0\x00') mount$cgroup(0x0, 0x0, &(0x7f0000000100), 0x180010, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) rename(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000240)='./file2\x00') creat(&(0x7f0000000200)='./file1\x00', 0x2) chroot(&(0x7f0000000280)='./file2\x00') r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) write(r1, &(0x7f0000000380)="0249e99a7f0211ef77a2e6ddf80889819eecd945439d8a17fd966a028b5a0d7d6da10a8b16bf2bf2b67ed8b591", 0x2d) fcntl$dupfd(0xffffffffffffffff, 0x0, r1) sendfile(r1, r2, 0x0, 0x100000001) r3 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) openat(r3, &(0x7f0000000180)='./file0\x00', 0x101803, 0x1) write(0xffffffffffffffff, &(0x7f0000000240)="01", 0x1) fcntl$dupfd(r0, 0x406, r3) [ 1547.912520] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1547.916390] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1547.917871] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1547.919272] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1547.920673] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1547.922057] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1547.923459] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 [ 1547.969536] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1547.972440] CPU: 1 PID: 11189 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1547.973841] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1547.975475] Call Trace: [ 1547.976000] dump_stack+0x107/0x167 [ 1547.976730] sysfs_warn_dup.cold+0x1c/0x29 [ 1547.977577] sysfs_do_create_link_sd+0x122/0x140 [ 1547.978528] sysfs_create_link+0x5f/0xc0 [ 1547.979329] device_add+0x703/0x1c50 [ 1547.980059] ? ieee80211_set_bitrate_flags+0x378/0x620 [ 1547.981072] ? devlink_add_symlinks+0x970/0x970 [ 1547.981984] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1547.983025] wiphy_register+0x1da6/0x2850 [ 1547.983842] ? wiphy_unregister+0xb90/0xb90 [ 1547.984673] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 15:37:01 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) (fail_nth: 6) [ 1547.985728] ? ieee80211_register_hw+0x238b/0x38b0 [ 1547.986854] ieee80211_register_hw+0x23c5/0x38b0 [ 1547.987784] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1547.988711] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1547.989754] ? memset+0x20/0x50 [ 1547.990394] ? __hrtimer_init+0x12c/0x270 [ 1547.991190] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1547.992182] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1547.993060] ? hwsim_new_radio_nl+0x967/0x1080 [ 1547.993929] ? memcpy+0x39/0x60 [ 1547.994590] hwsim_new_radio_nl+0x991/0x1080 [ 1547.995450] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1547.996453] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1547.997696] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1547.998969] genl_family_rcv_msg_doit+0x22d/0x330 [ 1547.999916] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1548.001186] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1548.002251] ? netlink_ns_capable+0xfd/0x130 [ 1548.003114] ? __sanitizer_cov_trace_pc+0x4/0x60 [ 1548.004045] genl_rcv_msg+0x33c/0x5a0 [ 1548.004789] ? genl_get_cmd+0x480/0x480 [ 1548.005561] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1548.006613] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1548.007611] ? netlink_rcv_skb+0x2b5/0x430 [ 1548.008431] netlink_rcv_skb+0x14b/0x430 [ 1548.009211] ? genl_get_cmd+0x480/0x480 [ 1548.009975] ? netlink_ack+0xab0/0xab0 [ 1548.010744] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1548.011630] ? is_vmalloc_addr+0x7b/0xb0 [ 1548.012396] genl_rcv+0x24/0x40 [ 1548.013017] netlink_unicast+0x549/0x7f0 [ 1548.013792] ? netlink_attachskb+0x870/0x870 [ 1548.014633] ? __virt_addr_valid+0x128/0x350 [ 1548.015470] netlink_sendmsg+0x90f/0xdf0 [ 1548.016241] ? netlink_unicast+0x7f0/0x7f0 [ 1548.017050] ? netlink_unicast+0x7f0/0x7f0 [ 1548.017849] __sock_sendmsg+0x154/0x190 [ 1548.018609] ____sys_sendmsg+0x70d/0x870 [ 1548.019374] ? sock_write_iter+0x3d0/0x3d0 [ 1548.020168] ? do_recvmmsg+0x6d0/0x6d0 [ 1548.020912] ? perf_trace_lock+0xac/0x490 [ 1548.021704] ? __lockdep_reset_lock+0x180/0x180 [ 1548.022610] ___sys_sendmsg+0xf3/0x170 [ 1548.023343] ? sendmsg_copy_msghdr+0x160/0x160 [ 1548.024207] ? lock_downgrade+0x6d0/0x6d0 [ 1548.025011] ? __fget_files+0x296/0x4c0 [ 1548.025774] ? __fget_light+0xea/0x290 [ 1548.026533] __sys_sendmsg+0xe5/0x1b0 [ 1548.027238] ? __sys_sendmsg_sock+0x40/0x40 [ 1548.028074] ? trace_hardirqs_on+0x5b/0x180 [ 1548.028923] ? __sys_sendmsg+0x1b0/0x1b0 [ 1548.029699] ? __x64_sys_sendmsg+0x1/0xb0 [ 1548.030519] do_syscall_64+0x33/0x40 [ 1548.031237] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1548.032228] RIP: 0033:0x7f07e63f4b19 [ 1548.032950] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1548.036336] FAULT_INJECTION: forcing a failure. [ 1548.036336] name failslab, interval 1, probability 0, space 0, times 0 [ 1548.036517] RSP: 002b:00007f07e396a188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1548.040181] RAX: ffffffffffffffda RBX: 00007f07e6507f60 RCX: 00007f07e63f4b19 [ 1548.041506] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1548.042846] RBP: 00007f07e644ef6d R08: 0000000000000000 R09: 0000000000000000 [ 1548.044171] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1548.045504] R13: 00007fff1f25f23f R14: 00007f07e396a300 R15: 0000000000022000 [ 1548.046933] CPU: 0 PID: 11202 Comm: syz-executor.7 Not tainted 5.10.205 #1 [ 1548.048369] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1548.050087] Call Trace: [ 1548.050661] dump_stack+0x107/0x167 [ 1548.051431] should_fail.cold+0x5/0xa [ 1548.052226] ? create_object.isra.0+0x3a/0xa20 [ 1548.053169] should_failslab+0x5/0x20 [ 1548.053955] kmem_cache_alloc+0x5b/0x310 [ 1548.054798] create_object.isra.0+0x3a/0xa20 [ 1548.055691] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1548.056740] __kmalloc_node_track_caller+0x1a6/0x3b0 [ 1548.057771] ? netlink_sendmsg+0x998/0xdf0 [ 1548.058664] __alloc_skb+0xb1/0x5b0 [ 1548.059408] netlink_sendmsg+0x998/0xdf0 [ 1548.060253] ? netlink_unicast+0x7f0/0x7f0 [ 1548.061169] ? netlink_unicast+0x7f0/0x7f0 [ 1548.062074] __sock_sendmsg+0x154/0x190 [ 1548.062932] ____sys_sendmsg+0x70d/0x870 [ 1548.063808] ? sock_write_iter+0x3d0/0x3d0 [ 1548.064688] ? do_recvmmsg+0x6d0/0x6d0 [ 1548.065508] ? perf_trace_lock+0xac/0x490 [ 1548.066403] ? __lockdep_reset_lock+0x180/0x180 [ 1548.067382] ? perf_trace_lock+0xac/0x490 [ 1548.068215] ? SOFTIRQ_verbose+0x10/0x10 [ 1548.069060] ___sys_sendmsg+0xf3/0x170 [ 1548.069859] ? sendmsg_copy_msghdr+0x160/0x160 [ 1548.070806] ? lock_downgrade+0x6d0/0x6d0 [ 1548.071650] ? find_held_lock+0x2c/0x110 [ 1548.072478] ? __fget_files+0x296/0x4c0 [ 1548.073294] ? __fget_light+0xea/0x290 [ 1548.074096] __sys_sendmsg+0xe5/0x1b0 [ 1548.074891] ? __sys_sendmsg_sock+0x40/0x40 [ 1548.075782] ? rcu_read_lock_any_held+0x75/0xa0 [ 1548.076745] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1548.077800] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1548.078846] ? trace_hardirqs_on+0x5b/0x180 [ 1548.079736] do_syscall_64+0x33/0x40 [ 1548.080485] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1548.081537] RIP: 0033:0x7f0050660b19 [ 1548.082298] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1548.085990] RSP: 002b:00007f004dbd6188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1548.087562] RAX: ffffffffffffffda RBX: 00007f0050773f60 RCX: 00007f0050660b19 [ 1548.089033] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 1548.090529] RBP: 00007f004dbd61d0 R08: 0000000000000000 R09: 0000000000000000 [ 1548.091959] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1548.093387] R13: 00007ffe128db73f R14: 00007f004dbd6300 R15: 0000000000022000 [ 1548.229512] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1548.230941] CPU: 1 PID: 11190 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1548.232066] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1548.233422] Call Trace: [ 1548.233853] dump_stack+0x107/0x167 [ 1548.234486] sysfs_warn_dup.cold+0x1c/0x29 [ 1548.235180] sysfs_do_create_link_sd+0x122/0x140 [ 1548.235957] sysfs_create_link+0x5f/0xc0 [ 1548.236626] device_add+0x703/0x1c50 [ 1548.237252] ? devlink_add_symlinks+0x970/0x970 [ 1548.238008] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1548.238879] wiphy_register+0x1da6/0x2850 [ 1548.239628] ? wiphy_unregister+0xb90/0xb90 [ 1548.240381] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1548.241299] ieee80211_register_hw+0x23c5/0x38b0 [ 1548.242134] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1548.242986] ? net_generic+0xdb/0x2b0 [ 1548.243644] ? lockdep_init_map_type+0x2c7/0x780 [ 1548.244463] ? memset+0x20/0x50 [ 1548.245035] ? __hrtimer_init+0x12c/0x270 [ 1548.245757] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1548.246641] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1548.247438] ? hwsim_new_radio_nl+0x967/0x1080 [ 1548.248215] ? memcpy+0x39/0x60 [ 1548.248798] hwsim_new_radio_nl+0x991/0x1080 [ 1548.249570] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1548.250494] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1548.251626] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1548.252759] genl_family_rcv_msg_doit+0x22d/0x330 [ 1548.253597] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1548.254741] ? cap_capable+0x1cd/0x230 [ 1548.255438] ? ns_capable+0xe2/0x110 [ 1548.256091] genl_rcv_msg+0x33c/0x5a0 [ 1548.256755] ? genl_get_cmd+0x480/0x480 [ 1548.257442] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1548.258337] ? lock_release+0x680/0x680 [ 1548.259027] ? __lockdep_reset_lock+0x180/0x180 [ 1548.259825] netlink_rcv_skb+0x14b/0x430 [ 1548.260534] ? genl_get_cmd+0x480/0x480 [ 1548.261223] ? netlink_ack+0xab0/0xab0 [ 1548.261935] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1548.262733] ? is_vmalloc_addr+0x7b/0xb0 [ 1548.263448] genl_rcv+0x24/0x40 [ 1548.264006] netlink_unicast+0x549/0x7f0 [ 1548.264712] ? netlink_attachskb+0x870/0x870 [ 1548.265461] ? __virt_addr_valid+0x128/0x350 [ 1548.266241] netlink_sendmsg+0x90f/0xdf0 [ 1548.266989] ? netlink_unicast+0x7f0/0x7f0 [ 1548.267737] ? netlink_unicast+0x7f0/0x7f0 [ 1548.268461] __sock_sendmsg+0x154/0x190 [ 1548.269144] ____sys_sendmsg+0x70d/0x870 [ 1548.269849] ? sock_write_iter+0x3d0/0x3d0 [ 1548.270582] ? do_recvmmsg+0x6d0/0x6d0 [ 1548.271259] ? perf_trace_lock+0xac/0x490 [ 1548.271959] ? __lockdep_reset_lock+0x180/0x180 [ 1548.272698] ? __lock_acquire+0xbb1/0x5b00 [ 1548.273387] ___sys_sendmsg+0xf3/0x170 [ 1548.274021] ? sendmsg_copy_msghdr+0x160/0x160 [ 1548.274758] ? lock_downgrade+0x6d0/0x6d0 [ 1548.275419] ? __lockdep_reset_lock+0x180/0x180 [ 1548.276165] ? futex_exit_release+0x220/0x220 [ 1548.276891] ? __fget_files+0x296/0x4c0 [ 1548.277538] ? __fget_light+0xea/0x290 [ 1548.278180] __sys_sendmsg+0xe5/0x1b0 [ 1548.278801] ? __sys_sendmsg_sock+0x40/0x40 [ 1548.279489] ? __do_sys_futex+0x2bb/0x480 [ 1548.280170] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1548.281014] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1548.281890] ? trace_hardirqs_on+0x5b/0x180 [ 1548.282649] do_syscall_64+0x33/0x40 [ 1548.283287] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1548.284160] RIP: 0033:0x7fc533f18b19 [ 1548.284796] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1548.287929] RSP: 002b:00007fc53148e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1548.289220] RAX: ffffffffffffffda RBX: 00007fc53402bf60 RCX: 00007fc533f18b19 [ 1548.290428] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1548.291642] RBP: 00007fc533f72f6d R08: 0000000000000000 R09: 0000000000000000 [ 1548.292849] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1548.294050] R13: 00007fff9313d64f R14: 00007fc53148e300 R15: 0000000000022000 15:37:17 executing program 6: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:37:17 executing program 5: r0 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000480), 0x40001, 0x0) fcntl$notify(r0, 0x402, 0x2) perf_event_open(&(0x7f00000001c0)={0x1, 0x80, 0x18, 0x0, 0x1, 0xe7, 0x0, 0x5, 0x0, 0x3, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x3ff, 0x2, @perf_config_ext={0x3, 0x3}, 0x5c0, 0x3, 0x5, 0x7, 0x1f, 0x7, 0x6, 0x0, 0x5fd5, 0x0, 0x41}, 0x0, 0xa, 0xffffffffffffffff, 0x1) r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r2 = syz_open_dev$mouse(&(0x7f0000000000), 0x401, 0x412800) fcntl$dupfd(r1, 0x0, r2) readahead(0xffffffffffffffff, 0x8, 0x401) lseek(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x64, 0x0, 0x0, 0x80, 0x0, 0x800000002, 0x2040, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) openat2(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180)={0xc000, 0x10, 0x13}, 0x18) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040)}, 0xca0cc, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(r3, 0x40086607, &(0x7f00000004c0)) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r5 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r5, 0x0, r4, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) openat2(r5, &(0x7f0000000080)='./file1\x00', &(0x7f0000000140)={0x212100, 0x18, 0x2}, 0x18) 15:37:17 executing program 3: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:37:17 executing program 0: r0 = memfd_create(&(0x7f0000000040)='\x00\'\'x\xe0\x1c\xaa\x00d\x88\xc4p\xb0\x89`\xe4\xc6O\xca\x1d\b6\xdd\xda\xacQB\xa7\x8d\xb7\x01Q\xc6\x0fG/\xf9\n', 0x6) socketpair(0x2c, 0x5, 0x86, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$BTRFS_IOC_SET_FEATURES(r1, 0x40309439, &(0x7f00000000c0)={0x3, 0x3, 0xc}) set_mempolicy(0x3, &(0x7f0000000000)=0xffff, 0x4) mmap(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x2, 0x1f012, r0, 0x0) set_mempolicy(0x0, &(0x7f0000000100)=0xfffffffffffffff7, 0x8) [ 1563.903185] FAULT_INJECTION: forcing a failure. [ 1563.903185] name failslab, interval 1, probability 0, space 0, times 0 [ 1563.905544] CPU: 0 PID: 11215 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1563.906997] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1563.908701] Call Trace: [ 1563.909408] dump_stack+0x107/0x167 [ 1563.910195] should_fail.cold+0x5/0xa [ 1563.911016] ? create_object.isra.0+0x3a/0xa20 [ 1563.911944] should_failslab+0x5/0x20 [ 1563.912726] kmem_cache_alloc+0x5b/0x310 [ 1563.913564] create_object.isra.0+0x3a/0xa20 [ 1563.914461] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1563.915532] kmem_cache_alloc+0x159/0x310 [ 1563.916392] __kernfs_new_node+0xd4/0x860 [ 1563.916445] FAULT_INJECTION: forcing a failure. [ 1563.916445] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1563.917242] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1563.917280] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1563.921504] ? wait_for_completion_io+0x270/0x270 [ 1563.922511] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1563.923594] kernfs_new_node+0x93/0x120 [ 1563.924411] __kernfs_create_file+0x51/0x350 [ 1563.925312] sysfs_add_file_mode_ns+0x221/0x560 [ 1563.926271] internal_create_group+0x324/0xb30 [ 1563.927217] ? sysfs_remove_group+0x170/0x170 [ 1563.928141] ? kernfs_name_hash+0xe7/0x110 [ 1563.929010] ? kernfs_find_ns+0x256/0x380 [ 1563.929869] sysfs_slab_add+0x188/0x200 [ 1563.930703] __kmem_cache_create+0x3db/0x520 [ 1563.931605] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1563.932629] p9_client_create+0xc2b/0x11c0 [ 1563.933500] ? p9_client_flush+0x430/0x430 [ 1563.934364] ? trace_hardirqs_on+0x5b/0x180 [ 1563.935261] ? lockdep_init_map_type+0x2c7/0x780 [ 1563.936234] ? __raw_spin_lock_init+0x36/0x110 [ 1563.937168] v9fs_session_init+0x1dd/0x1680 [ 1563.938040] ? lock_release+0x680/0x680 [ 1563.938870] ? kmem_cache_alloc_trace+0x151/0x320 [ 1563.939846] ? v9fs_show_options+0x690/0x690 [ 1563.940751] ? trace_hardirqs_on+0x5b/0x180 [ 1563.941630] ? kasan_unpoison_shadow+0x33/0x50 [ 1563.942569] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1563.943603] v9fs_mount+0x79/0x8f0 [ 1563.944332] ? v9fs_write_inode+0x60/0x60 [ 1563.945176] legacy_get_tree+0x105/0x220 [ 1563.946003] vfs_get_tree+0x8e/0x300 [ 1563.946764] path_mount+0x13be/0x20b0 [ 1563.947547] ? strncpy_from_user+0x9e/0x470 [ 1563.948424] ? finish_automount+0xa90/0xa90 [ 1563.949300] ? getname_flags.part.0+0x1dd/0x4f0 [ 1563.950239] ? _copy_from_user+0xfb/0x1b0 [ 1563.951110] __x64_sys_mount+0x282/0x300 [ 1563.951935] ? copy_mnt_ns+0xa00/0xa00 [ 1563.952731] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1563.953795] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1563.954854] do_syscall_64+0x33/0x40 [ 1563.955607] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1563.956647] RIP: 0033:0x7f76b700cb19 [ 1563.957402] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1563.961128] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1563.962695] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1563.964137] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1563.965575] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1563.967038] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1563.968477] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 [ 1563.969957] CPU: 1 PID: 11224 Comm: syz-executor.7 Not tainted 5.10.205 #1 [ 1563.971400] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1563.973081] Call Trace: [ 1563.973616] dump_stack+0x107/0x167 15:37:17 executing program 2: close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_usb_connect$cdc_ecm(0x0, 0x4d, 0x0, 0x0) timer_delete(0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x800}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) timer_settime(0x0, 0x0, &(0x7f0000000480)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) syz_open_dev$tty20(0xc, 0x4, 0x0) timer_create(0x3, &(0x7f0000000000)={0x0, 0x0, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000040)=0x0) timer_settime(r1, 0x0, &(0x7f0000000480)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0) timer_gettime(r1, &(0x7f0000000140)) sendmsg$nl_generic(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={0x14, 0x16, 0xd01, 0x0, 0x0, {0xd}}, 0x14}}, 0x0) read(r0, &(0x7f0000000080)=""/65, 0x41) timer_gettime(0x0, &(0x7f0000000080)) ioctl$AUTOFS_DEV_IOCTL_SETPIPEFD(0xffffffffffffffff, 0xc0189378, 0x0) clone3(&(0x7f00000001c0)={0x40182300, 0x0, 0x0, 0x0, {0x34}, 0x0, 0x0, 0x0, 0x0}, 0x58) 15:37:17 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], 0x34}, 0x1, 0x0, 0x0, 0x20048884}, 0x0) ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x40086602, 0x0) ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, 0x0) r1 = syz_io_uring_setup(0x3167, &(0x7f0000000380)={0x0, 0x8, 0x0, 0x0, 0x151, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f00000002c0)=0x0, &(0x7f0000000340)=0x0) r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) r5 = dup2(r4, r4) r6 = io_uring_setup(0x3, &(0x7f00000008c0)={0x0, 0x0, 0x1, 0x7, 0xad, 0x0, r1}) syz_io_uring_submit(r2, r3, &(0x7f0000000300)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r5, 0x80, &(0x7f00000001c0)=@sco}, 0x0) r7 = eventfd2(0x8, 0x0) ioctl$F2FS_IOC_DEFRAGMENT(r7, 0xc010f508, &(0x7f0000000040)={0x3, 0x2}) io_uring_enter(r1, 0x76d3, 0x80, 0x1, 0x0, 0x0) r8 = fsmount(r5, 0x0, 0x8) execveat(r8, &(0x7f0000000180)='./file0\x00', &(0x7f00000005c0)=[&(0x7f0000000400)='\x00', &(0x7f0000000bc0)='\x00\x80C\x107\xa64\xee\xbd*\xd4o\x8a?[\x98\xf29\xee\xc7\x90\x97\xaa\xc3\xc8Zq\xf3\x91\x04[S\\B2m=V\x89\x99\x96Q\xcaA\x18\xaf\xaf:\xf1\xab\x80\"\x7f\xb3\x18\xfe\xd7\xbd\xcd\xcdIf\xae\xb5\x87\xb8#\xe1\xbe\xec\xf0\t\xa1\xf7\xa7\xb1\x9d\xc7\xc2\xf0\x02\xaf\xc4\xd0@\xc2\x12\'\xb9\x9a\xea\x90e%\xe6\xd2E\x19E/\xc6\x17gB0Qim\x82u\x0fZ\xa9\x14\xf5\xc7X\xa9\x00\xb7\xaf\xcfouN\xbd\xb2\t^\xbe&~\xa7l\xfa\x036\x1c\"\x80\xfc/\x9b\x95\xf1!K\xc5{\xe7\xfdB[\xca\x87\x9bc\x98dg\x1a\xa1\xaa\xb4\x19\x7f\xa7\x90y\x9fq\xf5\x8a\xa9 \xa6\xdd\xf0+gb\xa6g\\\xec\tz\x06\xdf\x1a\x9c\xc9\xf7\xcc\x85\xb4G\xe9\xd3D\xf4\x8c\n\x17\xd5\x00\xf18\xb3T', &(0x7f0000000480)='\x00', &(0x7f00000004c0)='\x00', &(0x7f0000000500)='\x00', &(0x7f0000000540)='\x00', &(0x7f0000000a00)='\x009\x1c\xaf\x14\xe6\xeb\xe9\xf1\xccO@\xbd\xfc\xbdN\xfa\x93Z\x94\xfd\xc6]\xc3\x81g\x95\'\xb7\xf2\xe8\xbf\xd3\xf3\"\xf0Z\x93T\xa1\xc6\x10\x01\xba\xf0\x11\x01 \x94X\x7fQ\xa6\v\xfa\xc2\\$\xad\x96A\xd6\xdf|\x0e,c\xc4\x13\xfb\x91\xc5|{\xde\'xb\xcd\xb2\x177\x83\'\xdb\xf6y_\x10\x87\x01\xd4\xb1\x9b\xe4\xac\xf0D4\xe6v\x86\x02^bt\xbf!b\xd4k\x11\xf5Nj\x97P\b\xf2\xdd\r\xaa,g\xfc\x8f*\bq\x10wl\xe0\x02HG)\xa0\xb9%\x12\x9fx]\xf8Gz`\xfd\x00l\xe9<\xa5\xbd\x9f\x80\xa5\x0f\xd3\xf7\xc8\x98'], &(0x7f0000000840)=[&(0x7f0000000600)='[*\x00', &(0x7f0000000000)='\xff\xb1\xc2k\xc9\xbf1Q\x9e^\x9a\x9dOW\xa5\x0el\xd2~\xa7%\xa5 \rZ\x81l\xa6\x97\xc6\xb90S\x04\x9b\xcb', &(0x7f0000000680)='\x00', &(0x7f0000000940)=']\xadt\xe0\r\xa3\xd7\xe8\x91\x90\n\x03_\x85\xa9\'E\xae\"\xeb]DE\xa3w\x8b\x94\xf7Yf\x03\x00\xd2:-\xab7\xd0\xf6\x0e\x903U\xe1\xe2\x8cS*HC\x17\xa0}@\xf4.\x87]\xed\x1f\x1e\xe8;\xfd\xee$\x8f\xba\xa5@\"\x93\xf7yR\x95z\x95\xc4\x03{\x11\xbe\xb3e\xb8B\x13\xa3uh\xcf\x11\xc7{Y\x0fp\x031\xb1/b_mq\x96\xccc\xa7\xbb\xb4T\x00J\xd7\xb8\n\xd4\xd9B\xa9\xec\xc5\xb5\x0e\xf1Q\x03\xbcX\x8d\xb2\xf6^\xb9\xc8\xa5\xdc\xa5\xcb\xde\xd3\xd03\xcc\xbe\xed\x9b\xbd\xcbb\x91\x98\x80\xe1X(t\xda\xd3F\x02\xa9\xa0\x81\xce;{\xfa\xba\xa3,{\xe87\xf6\x0f\xf9M\xb5mz', &(0x7f0000000700)='\x00', &(0x7f0000000740)='\x00', &(0x7f0000000100)='!\x00', &(0x7f00000007c0)='\x00', &(0x7f0000000800)='\x00'], 0x1000) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, &(0x7f0000000280)=0x2b8) r9 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x46e2, 0x0) r10 = dup2(r6, r5) openat(r10, &(0x7f00000000c0)='./file0\x00', 0x200040, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0xa, 0x13, r9, 0x0) 15:37:17 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) (fail_nth: 7) 15:37:17 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) (fail_nth: 80) [ 1563.974361] should_fail.cold+0x5/0xa [ 1563.975282] _copy_from_iter_full+0x201/0xa60 [ 1563.976275] ? __virt_addr_valid+0x128/0x350 [ 1563.977198] ? __check_object_size+0x319/0x440 [ 1563.978123] netlink_sendmsg+0x879/0xdf0 [ 1563.978964] ? netlink_unicast+0x7f0/0x7f0 [ 1563.979826] ? netlink_unicast+0x7f0/0x7f0 [ 1563.980672] __sock_sendmsg+0x154/0x190 [ 1563.981468] ____sys_sendmsg+0x70d/0x870 [ 1563.982285] ? sock_write_iter+0x3d0/0x3d0 [ 1563.983147] ? do_recvmmsg+0x6d0/0x6d0 [ 1563.983938] ? perf_trace_lock+0xac/0x490 [ 1563.984771] ? __lockdep_reset_lock+0x180/0x180 [ 1563.985719] ? perf_trace_lock+0xac/0x490 [ 1563.986555] ? SOFTIRQ_verbose+0x10/0x10 [ 1563.987406] ___sys_sendmsg+0xf3/0x170 [ 1563.988192] ? sendmsg_copy_msghdr+0x160/0x160 [ 1563.989111] ? lock_downgrade+0x6d0/0x6d0 [ 1563.989962] ? find_held_lock+0x2c/0x110 [ 1563.990814] ? __fget_files+0x296/0x4c0 [ 1563.991662] ? __fget_light+0xea/0x290 [ 1563.992469] __sys_sendmsg+0xe5/0x1b0 [ 1563.992494] ? __sys_sendmsg_sock+0x40/0x40 [ 1563.994157] ? rcu_read_lock_any_held+0x75/0xa0 [ 1563.995147] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1563.996231] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1563.997287] ? trace_hardirqs_on+0x5b/0x180 [ 1563.998175] do_syscall_64+0x33/0x40 [ 1563.998961] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1564.000024] RIP: 0033:0x7f0050660b19 [ 1564.000792] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1564.001940] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1564.004558] RSP: 002b:00007f004dbd6188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1564.004581] RAX: ffffffffffffffda RBX: 00007f0050773f60 RCX: 00007f0050660b19 [ 1564.004593] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 1564.004615] RBP: 00007f004dbd61d0 R08: 0000000000000000 R09: 0000000000000000 [ 1564.012133] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1564.013593] R13: 00007ffe128db73f R14: 00007f004dbd6300 R15: 0000000000022000 [ 1564.015089] CPU: 0 PID: 11216 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1564.016512] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1564.018206] Call Trace: [ 1564.018770] dump_stack+0x107/0x167 [ 1564.019525] sysfs_warn_dup.cold+0x1c/0x29 [ 1564.020395] sysfs_do_create_link_sd+0x122/0x140 [ 1564.021377] sysfs_create_link+0x5f/0xc0 [ 1564.022217] device_add+0x703/0x1c50 [ 1564.022998] ? devlink_add_symlinks+0x970/0x970 [ 1564.023959] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1564.025046] wiphy_register+0x1da6/0x2850 [ 1564.025913] ? wiphy_unregister+0xb90/0xb90 [ 1564.026833] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1564.027934] ieee80211_register_hw+0x23c5/0x38b0 [ 1564.028934] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1564.029923] ? net_generic+0xdb/0x2b0 [ 1564.030733] ? lockdep_init_map_type+0x2c7/0x780 [ 1564.031709] ? memset+0x20/0x50 [ 1564.032391] ? __hrtimer_init+0x12c/0x270 [ 1564.033245] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1564.034293] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1564.035266] ? hwsim_new_radio_nl+0x967/0x1080 [ 1564.036203] ? memcpy+0x39/0x60 [ 1564.036888] hwsim_new_radio_nl+0x991/0x1080 [ 1564.037800] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1564.038906] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1564.040250] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1564.041584] genl_family_rcv_msg_doit+0x22d/0x330 [ 1564.042583] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1564.043931] ? cap_capable+0x1cd/0x230 [ 1564.044745] ? ns_capable+0xe2/0x110 [ 1564.045508] genl_rcv_msg+0x33c/0x5a0 [ 1564.046295] ? genl_get_cmd+0x480/0x480 [ 1564.047122] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1564.048182] ? lock_release+0x680/0x680 [ 1564.048995] ? __lockdep_reset_lock+0x180/0x180 [ 1564.049951] netlink_rcv_skb+0x14b/0x430 [ 1564.050797] ? genl_get_cmd+0x480/0x480 [ 1564.051612] ? netlink_ack+0xab0/0xab0 [ 1564.052425] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1564.053366] ? is_vmalloc_addr+0x7b/0xb0 [ 1564.054193] genl_rcv+0x24/0x40 [ 1564.054868] netlink_unicast+0x549/0x7f0 [ 1564.055698] ? netlink_attachskb+0x870/0x870 [ 1564.056584] ? __virt_addr_valid+0x128/0x350 [ 1564.057487] netlink_sendmsg+0x90f/0xdf0 [ 1564.058317] ? netlink_unicast+0x7f0/0x7f0 [ 1564.059207] ? netlink_unicast+0x7f0/0x7f0 [ 1564.060064] __sock_sendmsg+0x154/0x190 [ 1564.060873] ____sys_sendmsg+0x70d/0x870 [ 1564.061700] ? sock_write_iter+0x3d0/0x3d0 [ 1564.062563] ? do_recvmmsg+0x6d0/0x6d0 [ 1564.063352] ? perf_trace_lock+0xac/0x490 [ 1564.064208] ? __lockdep_reset_lock+0x180/0x180 [ 1564.065145] ? perf_trace_lock+0xac/0x490 [ 1564.065992] ___sys_sendmsg+0xf3/0x170 [ 1564.066793] ? sendmsg_copy_msghdr+0x160/0x160 [ 1564.067732] ? lock_downgrade+0x6d0/0x6d0 [ 1564.068577] ? finish_task_switch+0x126/0x5d0 [ 1564.069483] ? lock_downgrade+0x6d0/0x6d0 [ 1564.070329] ? __fget_files+0x296/0x4c0 [ 1564.071170] ? __fget_light+0xea/0x290 [ 1564.071975] __sys_sendmsg+0xe5/0x1b0 [ 1564.072750] ? __sys_sendmsg_sock+0x40/0x40 [ 1564.073631] ? io_schedule_timeout+0x140/0x140 [ 1564.074582] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1564.075883] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1564.076920] ? trace_hardirqs_on+0x5b/0x180 [ 1564.077799] do_syscall_64+0x33/0x40 [ 1564.078578] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1564.079612] RIP: 0033:0x7fc533f18b19 [ 1564.080377] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1564.084083] RSP: 002b:00007fc53148e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1564.085617] RAX: ffffffffffffffda RBX: 00007fc53402bf60 RCX: 00007fc533f18b19 [ 1564.087075] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1564.088519] RBP: 00007fc533f72f6d R08: 0000000000000000 R09: 0000000000000000 [ 1564.089957] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1564.091411] R13: 00007fff9313d64f R14: 00007fc53148e300 R15: 0000000000022000 [ 1564.128324] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1564.263019] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1564.264896] CPU: 1 PID: 11230 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1564.266316] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1564.268158] Call Trace: [ 1564.268706] dump_stack+0x107/0x167 [ 1564.269469] sysfs_warn_dup.cold+0x1c/0x29 [ 1564.270410] sysfs_do_create_link_sd+0x122/0x140 [ 1564.271394] sysfs_create_link+0x5f/0xc0 [ 1564.272226] device_add+0x703/0x1c50 [ 1564.272994] ? devlink_add_symlinks+0x970/0x970 [ 1564.273954] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1564.275048] wiphy_register+0x1da6/0x2850 [ 1564.275917] ? wiphy_unregister+0xb90/0xb90 [ 1564.276824] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1564.277923] ieee80211_register_hw+0x23c5/0x38b0 [ 1564.278943] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1564.279933] ? net_generic+0xdb/0x2b0 [ 1564.280738] ? memset+0x20/0x50 [ 1564.281423] ? __hrtimer_init+0x12c/0x270 [ 1564.282277] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1564.283334] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1564.284280] ? hwsim_new_radio_nl+0x967/0x1080 [ 1564.285258] ? memcpy+0x39/0x60 [ 1564.286049] hwsim_new_radio_nl+0x991/0x1080 [ 1564.286992] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1564.288049] ? __nla_validate_parse+0x2d8/0x2b10 [ 1564.289057] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1564.290437] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1564.291956] genl_family_rcv_msg_doit+0x22d/0x330 [ 1564.292977] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1564.294349] ? cap_capable+0x1cd/0x230 [ 1564.295297] ? ns_capable+0xe2/0x110 [ 1564.296153] genl_rcv_msg+0x33c/0x5a0 [ 1564.296954] ? genl_get_cmd+0x480/0x480 [ 1564.297794] ? lock_acquire+0x1b9/0x470 [ 1564.298631] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1564.299691] ? lock_release+0x680/0x680 [ 1564.300524] ? __lockdep_reset_lock+0x180/0x180 [ 1564.301477] netlink_rcv_skb+0x14b/0x430 [ 1564.302320] ? genl_get_cmd+0x480/0x480 [ 1564.303144] ? netlink_ack+0xab0/0xab0 [ 1564.303955] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1564.304903] ? __sanitizer_cov_trace_pc+0x3c/0x60 [ 1564.305878] ? is_vmalloc_addr+0x7b/0xb0 [ 1564.306733] genl_rcv+0x24/0x40 [ 1564.307400] netlink_unicast+0x549/0x7f0 [ 1564.308263] ? netlink_attachskb+0x870/0x870 [ 1564.309147] ? __virt_addr_valid+0x128/0x350 [ 1564.310087] netlink_sendmsg+0x90f/0xdf0 [ 1564.310956] ? netlink_unicast+0x7f0/0x7f0 [ 1564.311867] ? netlink_unicast+0x7f0/0x7f0 [ 1564.312743] __sock_sendmsg+0x154/0x190 [ 1564.313585] ____sys_sendmsg+0x70d/0x870 [ 1564.314437] ? sock_write_iter+0x3d0/0x3d0 [ 1564.315329] ? do_recvmmsg+0x6d0/0x6d0 [ 1564.316122] ? perf_trace_lock+0xac/0x490 [ 1564.316992] ? __lockdep_reset_lock+0x180/0x180 [ 1564.317966] ___sys_sendmsg+0xf3/0x170 [ 1564.318778] ? sendmsg_copy_msghdr+0x160/0x160 [ 1564.319713] ? lock_downgrade+0x6d0/0x6d0 [ 1564.320602] ? __fget_files+0x395/0x4c0 [ 1564.321412] ? __fget_files+0x296/0x4c0 [ 1564.322265] ? __fget_light+0xea/0x290 [ 1564.323078] __sys_sendmsg+0xe5/0x1b0 [ 1564.323867] ? __sys_sendmsg_sock+0x40/0x40 [ 1564.324802] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1564.325985] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1564.327041] ? trace_hardirqs_on+0x5b/0x180 [ 1564.327935] do_syscall_64+0x33/0x40 [ 1564.328691] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1564.329790] RIP: 0033:0x7f07e63f4b19 [ 1564.330561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1564.334312] RSP: 002b:00007f07e396a188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1564.335921] RAX: ffffffffffffffda RBX: 00007f07e6507f60 RCX: 00007f07e63f4b19 [ 1564.337376] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1564.338842] RBP: 00007f07e644ef6d R08: 0000000000000000 R09: 0000000000000000 [ 1564.340296] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1564.341748] R13: 00007fff1f25f23f R14: 00007f07e396a300 R15: 0000000000022000 15:37:18 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) (fail_nth: 8) 15:37:18 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) (fail_nth: 81) [ 1564.452705] FAULT_INJECTION: forcing a failure. [ 1564.452705] name failslab, interval 1, probability 0, space 0, times 0 [ 1564.455169] CPU: 1 PID: 11242 Comm: syz-executor.7 Not tainted 5.10.205 #1 [ 1564.456630] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1564.458379] Call Trace: [ 1564.458954] dump_stack+0x107/0x167 [ 1564.459729] should_fail.cold+0x5/0xa [ 1564.460531] ? __alloc_skb+0x6d/0x5b0 [ 1564.461347] should_failslab+0x5/0x20 [ 1564.462155] kmem_cache_alloc_node+0x55/0x330 [ 1564.463158] __alloc_skb+0x6d/0x5b0 [ 1564.463939] netlink_dump+0x735/0x1050 [ 1564.464772] ? netlink_deliver_tap+0xcd0/0xcd0 [ 1564.465707] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1564.466725] ? lock_downgrade+0x6d0/0x6d0 [ 1564.467580] __netlink_dump_start+0x649/0x900 [ 1564.468528] rtnetlink_rcv_msg+0x749/0xbb0 [ 1564.469406] ? tc_dump_qdisc+0x760/0x760 [ 1564.470229] ? rtnl_fdb_dump+0x9d0/0x9d0 [ 1564.471078] ? tc_dump_qdisc+0x760/0x760 [ 1564.471923] ? __lockdep_reset_lock+0x180/0x180 [ 1564.472878] netlink_rcv_skb+0x14b/0x430 [ 1564.473737] ? rtnl_fdb_dump+0x9d0/0x9d0 [ 1564.474595] ? netlink_ack+0xab0/0xab0 [ 1564.475419] ? netlink_deliver_tap+0x1ae/0xcd0 [ 1564.476383] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1564.477338] ? is_vmalloc_addr+0x7b/0xb0 [ 1564.478193] netlink_unicast+0x549/0x7f0 [ 1564.479059] ? netlink_attachskb+0x870/0x870 [ 1564.479982] ? __virt_addr_valid+0x128/0x350 [ 1564.480913] netlink_sendmsg+0x90f/0xdf0 [ 1564.481749] ? netlink_unicast+0x7f0/0x7f0 [ 1564.482670] ? netlink_unicast+0x7f0/0x7f0 [ 1564.483550] __sock_sendmsg+0x154/0x190 [ 1564.484384] ____sys_sendmsg+0x70d/0x870 [ 1564.485217] ? sock_write_iter+0x3d0/0x3d0 [ 1564.486104] ? do_recvmmsg+0x6d0/0x6d0 [ 1564.486917] ? perf_trace_lock+0xac/0x490 [ 1564.487795] ? __lockdep_reset_lock+0x180/0x180 [ 1564.488738] ? perf_trace_lock+0xac/0x490 [ 1564.489615] ? SOFTIRQ_verbose+0x10/0x10 [ 1564.490456] ___sys_sendmsg+0xf3/0x170 [ 1564.491291] ? sendmsg_copy_msghdr+0x160/0x160 [ 1564.492229] ? lock_downgrade+0x6d0/0x6d0 [ 1564.493094] ? find_held_lock+0x2c/0x110 [ 1564.493941] ? __fget_files+0x296/0x4c0 [ 1564.494789] ? __fget_light+0xea/0x290 [ 1564.495612] __sys_sendmsg+0xe5/0x1b0 [ 1564.496412] ? __sys_sendmsg_sock+0x40/0x40 [ 1564.497309] ? rcu_read_lock_any_held+0x75/0xa0 [ 1564.498303] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1564.499379] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1564.500451] ? trace_hardirqs_on+0x5b/0x180 [ 1564.501337] do_syscall_64+0x33/0x40 [ 1564.502090] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1564.503183] RIP: 0033:0x7f0050660b19 [ 1564.503937] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1564.507699] RSP: 002b:00007f004dbd6188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1564.509245] RAX: ffffffffffffffda RBX: 00007f0050773f60 RCX: 00007f0050660b19 [ 1564.510728] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 1564.512207] RBP: 00007f004dbd61d0 R08: 0000000000000000 R09: 0000000000000000 [ 1564.513636] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1564.515079] R13: 00007ffe128db73f R14: 00007f004dbd6300 R15: 0000000000022000 [ 1564.515547] FAULT_INJECTION: forcing a failure. [ 1564.515547] name failslab, interval 1, probability 0, space 0, times 0 [ 1564.519001] CPU: 0 PID: 11244 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1564.520449] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1564.520688] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.4'. [ 1564.522142] Call Trace: [ 1564.522171] dump_stack+0x107/0x167 [ 1564.522204] should_fail.cold+0x5/0xa [ 1564.525930] ? __kernfs_new_node+0xd4/0x860 [ 1564.526845] should_failslab+0x5/0x20 [ 1564.527637] kmem_cache_alloc+0x5b/0x310 [ 1564.528491] __kernfs_new_node+0xd4/0x860 [ 1564.529381] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1564.530393] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1564.531435] ? wait_for_completion_io+0x270/0x270 [ 1564.532461] ? kernfs_next_descendant_post+0x1a7/0x2a0 15:37:18 executing program 6: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) [ 1564.533577] kernfs_new_node+0x93/0x120 [ 1564.534584] __kernfs_create_file+0x51/0x350 [ 1564.535502] sysfs_add_file_mode_ns+0x221/0x560 [ 1564.536472] internal_create_group+0x324/0xb30 [ 1564.537494] ? sysfs_remove_group+0x170/0x170 [ 1564.538419] ? kernfs_name_hash+0xe7/0x110 [ 1564.539314] ? kernfs_find_ns+0x256/0x380 [ 1564.540182] sysfs_slab_add+0x188/0x200 [ 1564.541019] __kmem_cache_create+0x3db/0x520 [ 1564.541941] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1564.543014] p9_client_create+0xc2b/0x11c0 [ 1564.543911] ? p9_client_flush+0x430/0x430 [ 1564.544797] ? trace_hardirqs_on+0x5b/0x180 [ 1564.545700] ? lockdep_init_map_type+0x2c7/0x780 [ 1564.546690] ? __raw_spin_lock_init+0x36/0x110 [ 1564.547633] v9fs_session_init+0x1dd/0x1680 [ 1564.548527] ? lock_release+0x680/0x680 [ 1564.549353] ? kmem_cache_alloc_trace+0x151/0x320 [ 1564.550358] ? v9fs_show_options+0x690/0x690 [ 1564.551305] ? trace_hardirqs_on+0x5b/0x180 [ 1564.552226] ? kasan_unpoison_shadow+0x33/0x50 [ 1564.553169] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1564.554218] v9fs_mount+0x79/0x8f0 [ 1564.554970] ? v9fs_write_inode+0x60/0x60 [ 1564.555832] legacy_get_tree+0x105/0x220 [ 1564.556665] vfs_get_tree+0x8e/0x300 [ 1564.557452] path_mount+0x13be/0x20b0 [ 1564.558267] ? strncpy_from_user+0x9e/0x470 [ 1564.559187] ? finish_automount+0xa90/0xa90 [ 1564.560080] ? getname_flags.part.0+0x1dd/0x4f0 [ 1564.561048] ? _copy_from_user+0xfb/0x1b0 [ 1564.561911] __x64_sys_mount+0x282/0x300 [ 1564.562761] ? copy_mnt_ns+0xa00/0xa00 [ 1564.563563] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1564.564653] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1564.565751] do_syscall_64+0x33/0x40 [ 1564.566552] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1564.567614] RIP: 0033:0x7f76b700cb19 [ 1564.568396] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1564.572176] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1564.573760] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1564.575283] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1564.576769] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1564.578288] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1564.579783] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 15:37:18 executing program 0: r0 = perf_event_open(&(0x7f0000000080)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext, 0x2041}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x7) r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0xc02, 0x0) write$eventfd(0xffffffffffffffff, &(0x7f0000000140)=0xfff, 0x8) r2 = ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0x0) write$binfmt_elf64(r1, &(0x7f0000000380)=ANY=[@ANYRES16=r0, @ANYRES64, @ANYRES64=r0, @ANYRESOCT=r2, @ANYRESOCT=r0, @ANYRES16, @ANYBLOB="4844d9869228fc9ccaf0e4ecb875c51c26c45a60dcc45b5d7a55870119ff6fdec7222b4a93c81a7dfa5115492000c01e9280cb220dde6636de7fd5b53fb2e9c5673a7847e761fa", @ANYRES16, @ANYBLOB="c607901ba3abb50fc311f3959b823422b8310fbe9f3985c794bcb909bf6c0f7350609892aada4264d5eff3e5ee10d4a2f0592f991521889398fa89bdafd62c9b6bab0ebf4eb890db8a423c007a038b53ffa60750beec47de10e6d0d97b9e01b3f571d1d3371bf52f85a9943bc45ebf986c76b961917bf122415ba1ced75f88532cd1657fbcf173b47623f18beae79a6ba448e897"], 0x98a) fallocate(0xffffffffffffffff, 0x2, 0xfffffffffffffc00, 0x6) r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r4 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) name_to_handle_at(r4, &(0x7f0000000400)='./file0\x00', &(0x7f0000000440)=ANY=[@ANYBLOB="0000004e0000000800000000000000020000000000000006000000faffffffffffffff"], &(0x7f0000000480), 0x1c00) dup2(r4, r2) openat(r3, &(0x7f00000000c0)='./file0\x00', 0x200000, 0x6b) ioctl$EXT4_IOC_GROUP_EXTEND(r3, 0x40086607, &(0x7f0000000180)=0x2000000000000000) write$binfmt_elf64(r3, &(0x7f00000006c0)=ANY=[@ANYBLOB="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"], 0x388) r5 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$AUTOFS_IOC_ASKUMOUNT(r5, 0x80049370, &(0x7f0000000040)) unshare(0x4a060400) [ 1564.709397] kmem_cache_create(9p-fcall-cache) failed with error -12 [ 1564.710939] CPU: 0 PID: 11244 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1564.712476] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1564.714205] Call Trace: [ 1564.714788] dump_stack+0x107/0x167 [ 1564.715551] kmem_cache_create_usercopy.cold+0x17/0x65 [ 1564.716653] p9_client_create+0xc2b/0x11c0 [ 1564.717555] ? p9_client_flush+0x430/0x430 [ 1564.718461] ? trace_hardirqs_on+0x5b/0x180 [ 1564.719370] ? lockdep_init_map_type+0x2c7/0x780 [ 1564.720355] ? __raw_spin_lock_init+0x36/0x110 [ 1564.721308] v9fs_session_init+0x1dd/0x1680 [ 1564.722227] ? lock_release+0x680/0x680 [ 1564.723065] ? kmem_cache_alloc_trace+0x151/0x320 [ 1564.724085] ? v9fs_show_options+0x690/0x690 [ 1564.724997] ? trace_hardirqs_on+0x5b/0x180 [ 1564.725921] ? kasan_unpoison_shadow+0x33/0x50 [ 1564.726881] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1564.727961] v9fs_mount+0x79/0x8f0 [ 1564.728698] ? v9fs_write_inode+0x60/0x60 [ 1564.729571] legacy_get_tree+0x105/0x220 [ 1564.730408] vfs_get_tree+0x8e/0x300 [ 1564.731209] path_mount+0x13be/0x20b0 [ 1564.732009] ? strncpy_from_user+0x9e/0x470 [ 1564.732926] ? finish_automount+0xa90/0xa90 [ 1564.733818] ? getname_flags.part.0+0x1dd/0x4f0 [ 1564.734812] ? _copy_from_user+0xfb/0x1b0 [ 1564.735676] __x64_sys_mount+0x282/0x300 [ 1564.736547] ? copy_mnt_ns+0xa00/0xa00 [ 1564.737358] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1564.738443] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1564.739522] do_syscall_64+0x33/0x40 [ 1564.740308] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1564.741357] RIP: 0033:0x7f76b700cb19 [ 1564.742157] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1564.745949] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1564.747528] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1564.748992] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1564.750463] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1564.751928] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1564.753432] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 [ 1564.800330] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1564.802325] CPU: 1 PID: 11247 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1564.803813] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1564.805578] Call Trace: [ 1564.806149] dump_stack+0x107/0x167 [ 1564.806960] sysfs_warn_dup.cold+0x1c/0x29 [ 1564.807860] sysfs_do_create_link_sd+0x122/0x140 [ 1564.808875] sysfs_create_link+0x5f/0xc0 [ 1564.809741] device_add+0x703/0x1c50 [ 1564.810547] ? devlink_add_symlinks+0x970/0x970 [ 1564.811530] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1564.812617] wiphy_register+0x1da6/0x2850 [ 1564.813516] ? wiphy_unregister+0xb90/0xb90 [ 1564.814424] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1564.815540] ieee80211_register_hw+0x23c5/0x38b0 [ 1564.816536] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1564.817540] ? net_generic+0xdb/0x2b0 [ 1564.818340] ? memset+0x20/0x50 [ 1564.819040] ? __hrtimer_init+0x12c/0x270 [ 1564.819895] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1564.820980] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1564.821927] ? hwsim_new_radio_nl+0x967/0x1080 [ 1564.822913] ? memcpy+0x39/0x60 [ 1564.823599] hwsim_new_radio_nl+0x991/0x1080 [ 1564.824550] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1564.825630] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1564.827019] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1564.828390] genl_family_rcv_msg_doit+0x22d/0x330 [ 1564.829402] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1564.830786] ? cap_capable+0x1cd/0x230 [ 1564.831598] ? ns_capable+0xe2/0x110 [ 1564.832368] genl_rcv_msg+0x33c/0x5a0 [ 1564.833145] ? genl_get_cmd+0x480/0x480 [ 1564.833969] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1564.835086] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1564.836163] ? netlink_rcv_skb+0x2a6/0x430 [ 1564.837033] ? netlink_rcv_skb+0x2b5/0x430 [ 1564.837917] netlink_rcv_skb+0x14b/0x430 [ 1564.838773] ? genl_get_cmd+0x480/0x480 [ 1564.839598] ? netlink_ack+0xab0/0xab0 [ 1564.840418] ? genl_pernet_exit+0x80/0x80 [ 1564.841294] ? netlink_unicast+0x51f/0x7f0 [ 1564.842175] genl_rcv+0x24/0x40 [ 1564.842871] netlink_unicast+0x549/0x7f0 [ 1564.843714] ? netlink_attachskb+0x870/0x870 [ 1564.844639] ? __sanitizer_cov_trace_cmp8+0x4/0x20 [ 1564.845667] netlink_sendmsg+0x90f/0xdf0 [ 1564.846532] ? netlink_unicast+0x7f0/0x7f0 [ 1564.847406] ? netlink_unicast+0x7f0/0x7f0 [ 1564.848280] __sock_sendmsg+0x154/0x190 [ 1564.849108] ____sys_sendmsg+0x70d/0x870 [ 1564.849973] ? sock_write_iter+0x3d0/0x3d0 [ 1564.850866] ? do_recvmmsg+0x6d0/0x6d0 [ 1564.851680] ? perf_trace_lock+0xac/0x490 [ 1564.852541] ? __lockdep_reset_lock+0x180/0x180 [ 1564.853519] ___sys_sendmsg+0xf3/0x170 [ 1564.854335] ? sendmsg_copy_msghdr+0x160/0x160 [ 1564.855314] ? lock_downgrade+0x6d0/0x6d0 [ 1564.856190] ? __fget_files+0x296/0x4c0 [ 1564.857035] ? __fget_light+0xea/0x290 [ 1564.857864] __sys_sendmsg+0xe5/0x1b0 [ 1564.858663] ? __sys_sendmsg_sock+0x40/0x40 [ 1564.859592] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1564.860679] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1564.861736] ? trace_hardirqs_on+0x5b/0x180 [ 1564.862666] do_syscall_64+0x33/0x40 [ 1564.863433] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1564.864502] RIP: 0033:0x7fc533f18b19 [ 1564.865259] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1564.869080] RSP: 002b:00007fc53148e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1564.870653] RAX: ffffffffffffffda RBX: 00007fc53402bf60 RCX: 00007fc533f18b19 [ 1564.872114] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1564.873590] RBP: 00007fc533f72f6d R08: 0000000000000000 R09: 0000000000000000 [ 1564.875064] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1564.876541] R13: 00007fff9313d64f R14: 00007fc53148e300 R15: 0000000000022000 [ 1566.463254] Bluetooth: hci1: command 0x0405 tx timeout 15:37:34 executing program 0: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:37:34 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r1, 0x0, r0, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000040)='veth0_macvtap\x00', 0x10) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r3, 0x0, r2, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) fcntl$getown(r2, 0x9) mknodat$loop(0xffffffffffffffff, &(0x7f00000000c0)='./file1\x00', 0xc000, 0x0) r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='environ\x00') prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0) fcntl$getown(r4, 0x9) syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='fd/3\x00') 15:37:34 executing program 2: r0 = openat(0xffffffffffffffff, &(0x7f00000001c0)='./file1\x00', 0x22800, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r2 = syz_open_procfs(0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r0, 0xc018937e, &(0x7f0000000480)={{0x1, 0x1, 0x18, 0xffffffffffffffff, @in_args={0x4}}, './file1/file0\x00'}) ioctl$AUTOFS_DEV_IOCTL_CATATONIC(0xffffffffffffffff, 0xc0189379, &(0x7f0000000540)=ANY=[@ANYRES32, @ANYRESOCT=r1, @ANYBLOB="00000009000000002e2f66696c653100f8b361cdec6799d0f636b44a5e2f879d5d6a6380df52c40cc3440b1724bf84b3758cf564dc14e8018f1650ab2ca0f8561dca7ea1210a1f376dd74c6c9ddf17809919939c707ef603157b7a96f4ec4cc5debf2b9d02d73a6e6aec3a522b243e2a59adde44c0af62ad7a6d02e7"]) r3 = fsmount(0xffffffffffffffff, 0x0, 0x88) syz_open_procfs(0x0, &(0x7f0000000040)='net/mcfilter6\x00') r4 = openat$vcsu(0xffffffffffffff9c, &(0x7f00000000c0), 0x101000, 0x0) sendmsg$nl_generic(r4, &(0x7f0000000440)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x74, 0x3e, 0x100, 0x70bd2b, 0x25dfdbfb, {0x1c}, [@nested={0x48, 0x77, 0x0, 0x1, [@typed={0x26, 0x53, 0x0, 0x0, @binary="c029f7241f3071bbb5384219adceeee253b813e84f2e70f898bc796838157c28a147"}, @typed={0x8, 0x13, 0x0, 0x0, @fd}, @typed={0x8, 0x40, 0x0, 0x0, @fd=r3}, @typed={0xc, 0x8f, 0x0, 0x0, @u64=0x431}]}, @typed={0x4, 0x20}, @generic="1bf40b4ae3312a97c539acb910d7f1fde0c2e8"]}, 0x74}, 0x1, 0x0, 0x0, 0x40800}, 0x1) sendmsg$NL80211_CMD_SET_NOACK_MAP(0xffffffffffffffff, &(0x7f0000001180)={&(0x7f0000001080)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000001140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="4c005c9f", @ANYRES16=0x0, @ANYBLOB="000127bd7000fcdbdf25570000000600950008000000060095001f10000006009500080000000600950000040000060095000000000006009500800000000600950000000000"], 0x4c}, 0x1, 0x0, 0x0, 0x1}, 0x4000) lseek(r1, 0x800, 0x4) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r5 = openat(r3, &(0x7f0000000280)='/proc/self/exe\x00', 0x0, 0x0) fstatfs(r1, &(0x7f0000000000)=""/46) epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000140)) r6 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) openat(r6, &(0x7f0000000180)='./file0\x00', 0x101803, 0x1) write(r6, &(0x7f0000000240)="01", 0x1) ioctl$INCFS_IOC_PERMIT_FILL(r6, 0x40046721, &(0x7f0000000080)={r2}) sendfile(r1, r5, 0x0, 0x100000001) 15:37:34 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) (fail_nth: 9) 15:37:34 executing program 3: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:37:34 executing program 4: syz_mount_image$vfat(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000180)=[{&(0x7f0000000140)="eb3c906d6b66732e66617400", 0xc}, {0x0, 0x0, 0x1000a00}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') mount$cgroup(0x0, 0x0, &(0x7f0000000100), 0x180010, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) stat(&(0x7f0000000340)='./file1\x00', &(0x7f0000000440)) rename(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000240)='./file2\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r1, 0x0, r0, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) write$P9_RREADLINK(r1, &(0x7f00000003c0)=ANY=[@ANYBLOB="10000040172e2f66696c653000000000"], 0x10) creat(&(0x7f0000000200)='./file1\x00', 0x2) chroot(&(0x7f0000000280)='./file2\x00') r2 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) write(r2, &(0x7f0000000380)="0249e99a7f0211ef77a2e6ddf80889819eecd945439d8a17fd966a028b5a0d7d6da10a8b16bf2bf2b67ed8b591", 0x2d) ioctl$NS_GET_OWNER_UID(r2, 0xb704, &(0x7f0000000400)) syz_open_dev$vcsn(&(0x7f0000000300), 0xa0, 0x40080) sendfile(r2, r3, 0x0, 0x100000001) 15:37:34 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) (fail_nth: 82) 15:37:34 executing program 6: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) [ 1580.712956] audit: type=1326 audit(1704555454.715:72): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=11265 comm="syz-executor.5" exe="/syz-executor.5" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2e008a0b19 code=0x0 [ 1580.713052] FAULT_INJECTION: forcing a failure. [ 1580.713052] name failslab, interval 1, probability 0, space 0, times 0 [ 1580.719642] CPU: 1 PID: 11274 Comm: syz-executor.7 Not tainted 5.10.205 #1 [ 1580.721069] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1580.722194] FAULT_INJECTION: forcing a failure. [ 1580.722194] name failslab, interval 1, probability 0, space 0, times 0 [ 1580.722759] Call Trace: [ 1580.722785] dump_stack+0x107/0x167 [ 1580.722812] should_fail.cold+0x5/0xa [ 1580.727057] ? create_object.isra.0+0x3a/0xa20 [ 1580.727992] should_failslab+0x5/0x20 [ 1580.728768] kmem_cache_alloc+0x5b/0x310 [ 1580.729606] create_object.isra.0+0x3a/0xa20 [ 1580.730518] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1580.731568] kmem_cache_alloc_node+0x169/0x330 [ 1580.732526] __alloc_skb+0x6d/0x5b0 [ 1580.733277] netlink_dump+0x735/0x1050 [ 1580.734102] ? netlink_deliver_tap+0xcd0/0xcd0 [ 1580.735054] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1580.736045] ? lock_downgrade+0x6d0/0x6d0 [ 1580.736896] __netlink_dump_start+0x649/0x900 [ 1580.737812] rtnetlink_rcv_msg+0x749/0xbb0 [ 1580.738701] ? tc_dump_qdisc+0x760/0x760 [ 1580.739531] ? rtnl_fdb_dump+0x9d0/0x9d0 [ 1580.740368] ? tc_dump_qdisc+0x760/0x760 [ 1580.741192] ? rtnl_fdb_dump+0x9d0/0x9d0 [ 1580.742031] netlink_rcv_skb+0x14b/0x430 [ 1580.742870] ? rtnl_fdb_dump+0x9d0/0x9d0 [ 1580.743699] ? netlink_ack+0xab0/0xab0 [ 1580.744490] ? netlink_deliver_tap+0x1ae/0xcd0 [ 1580.745436] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1580.746361] ? is_vmalloc_addr+0x7b/0xb0 [ 1580.747220] netlink_unicast+0x549/0x7f0 [ 1580.748055] ? netlink_attachskb+0x870/0x870 [ 1580.748946] ? __virt_addr_valid+0x128/0x350 [ 1580.749849] netlink_sendmsg+0x90f/0xdf0 [ 1580.750701] ? netlink_unicast+0x7f0/0x7f0 [ 1580.751580] ? netlink_unicast+0x7f0/0x7f0 [ 1580.752440] __sock_sendmsg+0x154/0x190 [ 1580.753248] ____sys_sendmsg+0x70d/0x870 [ 1580.754087] ? sock_write_iter+0x3d0/0x3d0 [ 1580.754955] ? do_recvmmsg+0x6d0/0x6d0 [ 1580.755773] ? perf_trace_lock+0xac/0x490 [ 1580.756622] ? __lockdep_reset_lock+0x180/0x180 [ 1580.757561] ? perf_trace_lock+0xac/0x490 [ 1580.758400] ? SOFTIRQ_verbose+0x10/0x10 [ 1580.759234] ___sys_sendmsg+0xf3/0x170 [ 1580.760031] ? sendmsg_copy_msghdr+0x160/0x160 [ 1580.760990] ? lock_downgrade+0x6d0/0x6d0 [ 1580.761838] ? find_held_lock+0x2c/0x110 [ 1580.762710] ? __fget_files+0x296/0x4c0 [ 1580.763534] ? __fget_light+0xea/0x290 [ 1580.764334] __sys_sendmsg+0xe5/0x1b0 [ 1580.765107] ? __sys_sendmsg_sock+0x40/0x40 [ 1580.765981] ? rcu_read_lock_any_held+0x75/0xa0 [ 1580.766993] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1580.768058] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1580.769100] ? trace_hardirqs_on+0x5b/0x180 [ 1580.769978] do_syscall_64+0x33/0x40 [ 1580.770754] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1580.771793] RIP: 0033:0x7f0050660b19 [ 1580.772552] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1580.776278] RSP: 002b:00007f004dbd6188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1580.777807] RAX: ffffffffffffffda RBX: 00007f0050773f60 RCX: 00007f0050660b19 [ 1580.779258] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 1580.780700] RBP: 00007f004dbd61d0 R08: 0000000000000000 R09: 0000000000000000 [ 1580.782139] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1580.783600] R13: 00007ffe128db73f R14: 00007f004dbd6300 R15: 0000000000022000 [ 1580.785078] CPU: 0 PID: 11271 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1580.786489] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1580.788150] Call Trace: [ 1580.788679] dump_stack+0x107/0x167 [ 1580.789417] should_fail.cold+0x5/0xa [ 1580.790194] ? create_object.isra.0+0x3a/0xa20 [ 1580.791134] should_failslab+0x5/0x20 [ 1580.791153] kmem_cache_alloc+0x5b/0x310 [ 1580.791181] create_object.isra.0+0x3a/0xa20 [ 1580.791202] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1580.791230] kmem_cache_alloc+0x159/0x310 [ 1580.791261] __kernfs_new_node+0xd4/0x860 [ 1580.791289] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1580.791317] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1580.791349] ? wait_for_completion_io+0x270/0x270 [ 1580.791375] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1580.791408] kernfs_new_node+0x93/0x120 [ 1580.791434] __kernfs_create_file+0x51/0x350 [ 1580.791460] sysfs_add_file_mode_ns+0x221/0x560 [ 1580.791494] internal_create_group+0x324/0xb30 [ 1580.791525] ? sysfs_remove_group+0x170/0x170 [ 1580.791544] ? kernfs_name_hash+0xe7/0x110 [ 1580.791570] ? kernfs_find_ns+0x256/0x380 [ 1580.791602] sysfs_slab_add+0x188/0x200 15:37:34 executing program 6: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) [ 1580.791628] __kmem_cache_create+0x3db/0x520 [ 1580.791657] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1580.791687] p9_client_create+0xc2b/0x11c0 [ 1580.791721] ? p9_client_flush+0x430/0x430 [ 1580.791743] ? trace_hardirqs_on+0x5b/0x180 [ 1580.791765] ? lockdep_init_map_type+0x2c7/0x780 15:37:34 executing program 3: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) [ 1580.791795] ? __raw_spin_lock_init+0x36/0x110 [ 1580.791824] v9fs_session_init+0x1dd/0x1680 [ 1580.791845] ? lock_release+0x680/0x680 15:37:34 executing program 0: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) [ 1580.791877] ? kmem_cache_alloc_trace+0x151/0x320 [ 1580.791897] ? v9fs_show_options+0x690/0x690 [ 1580.791930] ? trace_hardirqs_on+0x5b/0x180 [ 1580.791956] ? kasan_unpoison_shadow+0x33/0x50 [ 1580.791979] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1580.792007] v9fs_mount+0x79/0x8f0 [ 1580.792033] ? v9fs_write_inode+0x60/0x60 [ 1580.792054] legacy_get_tree+0x105/0x220 [ 1580.792077] vfs_get_tree+0x8e/0x300 [ 1580.792100] path_mount+0x13be/0x20b0 [ 1580.792127] ? strncpy_from_user+0x9e/0x470 [ 1580.792151] ? finish_automount+0xa90/0xa90 [ 1580.792172] ? getname_flags.part.0+0x1dd/0x4f0 [ 1580.792191] ? _copy_from_user+0xfb/0x1b0 [ 1580.792223] __x64_sys_mount+0x282/0x300 [ 1580.792246] ? copy_mnt_ns+0xa00/0xa00 [ 1580.792272] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1580.792290] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1580.792318] do_syscall_64+0x33/0x40 [ 1580.792336] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1580.792349] RIP: 0033:0x7f76b700cb19 [ 1580.792368] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1580.792380] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1580.792401] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1580.792413] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1580.792426] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1580.792437] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1580.792450] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 15:37:35 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) (fail_nth: 10) [ 1581.168205] FAULT_INJECTION: forcing a failure. [ 1581.168205] name failslab, interval 1, probability 0, space 0, times 0 [ 1581.170841] CPU: 0 PID: 11297 Comm: syz-executor.7 Not tainted 5.10.205 #1 [ 1581.172256] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1581.173956] Call Trace: [ 1581.174502] dump_stack+0x107/0x167 [ 1581.175252] should_fail.cold+0x5/0xa [ 1581.176037] should_failslab+0x5/0x20 [ 1581.176801] __kmalloc_node_track_caller+0x74/0x3b0 [ 1581.177828] ? netlink_dump+0x735/0x1050 [ 1581.178657] __alloc_skb+0xb1/0x5b0 [ 1581.179419] netlink_dump+0x735/0x1050 [ 1581.180214] ? netlink_deliver_tap+0xcd0/0xcd0 [ 1581.181150] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1581.182129] ? lock_downgrade+0x6d0/0x6d0 [ 1581.182997] __netlink_dump_start+0x649/0x900 [ 1581.183905] rtnetlink_rcv_msg+0x749/0xbb0 [ 1581.184765] ? tc_dump_qdisc+0x760/0x760 [ 1581.185580] ? rtnl_fdb_dump+0x9d0/0x9d0 [ 1581.186404] ? tc_dump_qdisc+0x760/0x760 [ 1581.187246] ? __lockdep_reset_lock+0x180/0x180 [ 1581.188203] netlink_rcv_skb+0x14b/0x430 [ 1581.189028] ? rtnl_fdb_dump+0x9d0/0x9d0 [ 1581.189853] ? netlink_ack+0xab0/0xab0 [ 1581.190642] ? netlink_deliver_tap+0x1ae/0xcd0 [ 1581.191596] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1581.192527] ? is_vmalloc_addr+0x7b/0xb0 [ 1581.193356] netlink_unicast+0x549/0x7f0 [ 1581.194193] ? netlink_attachskb+0x870/0x870 [ 1581.195091] ? __virt_addr_valid+0x128/0x350 [ 1581.195986] netlink_sendmsg+0x90f/0xdf0 [ 1581.196818] ? netlink_unicast+0x7f0/0x7f0 [ 1581.197689] ? netlink_unicast+0x7f0/0x7f0 [ 1581.198581] __sock_sendmsg+0x154/0x190 [ 1581.199393] ____sys_sendmsg+0x70d/0x870 [ 1581.200220] ? sock_write_iter+0x3d0/0x3d0 [ 1581.201069] ? do_recvmmsg+0x6d0/0x6d0 [ 1581.201863] ? perf_trace_lock+0xac/0x490 [ 1581.202730] ? __lockdep_reset_lock+0x180/0x180 [ 1581.203700] ? perf_trace_lock+0xac/0x490 [ 1581.204537] ? SOFTIRQ_verbose+0x10/0x10 [ 1581.205383] ___sys_sendmsg+0xf3/0x170 [ 1581.206173] ? sendmsg_copy_msghdr+0x160/0x160 [ 1581.207111] ? lock_downgrade+0x6d0/0x6d0 [ 1581.207960] ? find_held_lock+0x2c/0x110 [ 1581.208796] ? __fget_files+0x296/0x4c0 [ 1581.209617] ? __fget_light+0xea/0x290 [ 1581.210416] __sys_sendmsg+0xe5/0x1b0 [ 1581.211213] ? __sys_sendmsg_sock+0x40/0x40 [ 1581.212090] ? rcu_read_lock_any_held+0x75/0xa0 [ 1581.213052] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1581.214117] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1581.215164] ? trace_hardirqs_on+0x5b/0x180 [ 1581.216045] do_syscall_64+0x33/0x40 [ 1581.216802] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1581.217837] RIP: 0033:0x7f0050660b19 [ 1581.218593] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1581.222319] RSP: 002b:00007f004dbd6188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1581.223885] RAX: ffffffffffffffda RBX: 00007f0050773f60 RCX: 00007f0050660b19 [ 1581.225333] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 1581.226783] RBP: 00007f004dbd61d0 R08: 0000000000000000 R09: 0000000000000000 [ 1581.228225] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1581.229677] R13: 00007ffe128db73f R14: 00007f004dbd6300 R15: 0000000000022000 15:37:35 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) (fail_nth: 83) [ 1581.347342] FAULT_INJECTION: forcing a failure. [ 1581.347342] name failslab, interval 1, probability 0, space 0, times 0 [ 1581.349669] CPU: 0 PID: 11299 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1581.351058] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1581.352749] Call Trace: [ 1581.353284] dump_stack+0x107/0x167 [ 1581.354043] should_fail.cold+0x5/0xa [ 1581.354823] ? __kernfs_new_node+0xd4/0x860 [ 1581.355713] should_failslab+0x5/0x20 [ 1581.356481] kmem_cache_alloc+0x5b/0x310 [ 1581.357334] __kernfs_new_node+0xd4/0x860 [ 1581.358174] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1581.359168] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1581.360153] ? wait_for_completion_io+0x270/0x270 [ 1581.361132] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1581.362208] kernfs_new_node+0x93/0x120 [ 1581.363041] __kernfs_create_file+0x51/0x350 [ 1581.363941] sysfs_add_file_mode_ns+0x221/0x560 [ 1581.364907] internal_create_group+0x324/0xb30 [ 1581.365849] ? sysfs_remove_group+0x170/0x170 [ 1581.366783] ? kernfs_name_hash+0xe7/0x110 [ 1581.367656] ? kernfs_find_ns+0x256/0x380 [ 1581.368499] sysfs_slab_add+0x188/0x200 [ 1581.369312] __kmem_cache_create+0x3db/0x520 [ 1581.370213] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1581.371246] p9_client_create+0xc2b/0x11c0 [ 1581.372122] ? p9_client_flush+0x430/0x430 [ 1581.372991] ? trace_hardirqs_on+0x5b/0x180 [ 1581.373871] ? lockdep_init_map_type+0x2c7/0x780 [ 1581.374870] ? __raw_spin_lock_init+0x36/0x110 [ 1581.375811] v9fs_session_init+0x1dd/0x1680 [ 1581.376667] ? lock_release+0x680/0x680 [ 1581.377489] ? kmem_cache_alloc_trace+0x151/0x320 [ 1581.378441] ? v9fs_show_options+0x690/0x690 [ 1581.379363] ? trace_hardirqs_on+0x5b/0x180 [ 1581.380234] ? kasan_unpoison_shadow+0x33/0x50 [ 1581.381176] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1581.382196] v9fs_mount+0x79/0x8f0 [ 1581.382952] ? v9fs_write_inode+0x60/0x60 [ 1581.383788] legacy_get_tree+0x105/0x220 [ 1581.384607] vfs_get_tree+0x8e/0x300 [ 1581.385360] path_mount+0x13be/0x20b0 [ 1581.386137] ? strncpy_from_user+0x9e/0x470 [ 1581.387018] ? finish_automount+0xa90/0xa90 [ 1581.387888] ? getname_flags.part.0+0x1dd/0x4f0 [ 1581.388826] ? _copy_from_user+0xfb/0x1b0 [ 1581.389665] __x64_sys_mount+0x282/0x300 [ 1581.390485] ? copy_mnt_ns+0xa00/0xa00 [ 1581.391276] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1581.392333] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1581.393362] do_syscall_64+0x33/0x40 [ 1581.394108] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1581.395133] RIP: 0033:0x7f76b700cb19 [ 1581.395887] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1581.399580] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1581.401142] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1581.402575] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1581.404001] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1581.405426] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1581.406873] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 [ 1581.485973] kmem_cache_create(9p-fcall-cache) failed with error -12 [ 1581.486835] CPU: 1 PID: 11299 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1581.487645] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1581.488613] Call Trace: [ 1581.488928] dump_stack+0x107/0x167 [ 1581.489361] kmem_cache_create_usercopy.cold+0x17/0x65 [ 1581.489995] p9_client_create+0xc2b/0x11c0 [ 1581.490506] ? p9_client_flush+0x430/0x430 [ 1581.491019] ? trace_hardirqs_on+0x5b/0x180 [ 1581.491536] ? lockdep_init_map_type+0x2c7/0x780 [ 1581.492106] ? __raw_spin_lock_init+0x36/0x110 [ 1581.492659] v9fs_session_init+0x1dd/0x1680 [ 1581.493170] ? lock_release+0x680/0x680 [ 1581.493650] ? kmem_cache_alloc_trace+0x151/0x320 [ 1581.494229] ? v9fs_show_options+0x690/0x690 [ 1581.494766] ? trace_hardirqs_on+0x5b/0x180 [ 1581.495282] ? kasan_unpoison_shadow+0x33/0x50 [ 1581.495824] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1581.496431] v9fs_mount+0x79/0x8f0 [ 1581.496860] ? v9fs_write_inode+0x60/0x60 [ 1581.497352] legacy_get_tree+0x105/0x220 [ 1581.497830] vfs_get_tree+0x8e/0x300 [ 1581.498277] path_mount+0x13be/0x20b0 [ 1581.498744] ? strncpy_from_user+0x9e/0x470 [ 1581.499261] ? finish_automount+0xa90/0xa90 [ 1581.499760] ? getname_flags.part.0+0x1dd/0x4f0 [ 1581.500314] ? _copy_from_user+0xfb/0x1b0 [ 1581.500810] __x64_sys_mount+0x282/0x300 [ 1581.501289] ? copy_mnt_ns+0xa00/0xa00 [ 1581.501749] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1581.502361] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1581.502976] do_syscall_64+0x33/0x40 [ 1581.503417] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1581.504026] RIP: 0033:0x7f76b700cb19 [ 1581.504469] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1581.506641] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1581.507538] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1581.508372] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1581.509208] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1581.510052] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1581.510893] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 15:37:35 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) (fail_nth: 11) [ 1581.531093] audit: type=1326 audit(1704555455.535:73): auid=0 uid=0 gid=0 ses=4 subj=system_u:system_r:kernel_t:s0 pid=11265 comm="syz-executor.5" exe="/syz-executor.5" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2e008a0b19 code=0x0 [ 1581.607090] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1581.609031] CPU: 0 PID: 11285 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1581.610351] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1581.611972] Call Trace: [ 1581.612489] dump_stack+0x107/0x167 [ 1581.613205] sysfs_warn_dup.cold+0x1c/0x29 [ 1581.614032] sysfs_do_create_link_sd+0x122/0x140 [ 1581.614954] sysfs_create_link+0x5f/0xc0 [ 1581.615743] device_add+0x703/0x1c50 [ 1581.616466] ? devlink_add_symlinks+0x970/0x970 [ 1581.617338] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1581.618348] wiphy_register+0x1da6/0x2850 [ 1581.619147] ? wiphy_unregister+0xb90/0xb90 [ 1581.619949] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1581.621009] ? ieee80211_register_hw+0x239f/0x38b0 [ 1581.621939] ieee80211_register_hw+0x23c5/0x38b0 [ 1581.622876] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1581.623771] ? __hrtimer_init+0x12c/0x270 [ 1581.624540] ? __hrtimer_init+0x12c/0x270 [ 1581.625314] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1581.626280] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1581.627149] ? hwsim_new_radio_nl+0x967/0x1080 [ 1581.628025] ? memcpy+0x39/0x60 [ 1581.628652] hwsim_new_radio_nl+0x991/0x1080 [ 1581.629495] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1581.630446] ? trace_hardirqs_on+0x5b/0x180 [ 1581.631265] ? genl_family_rcv_msg_doit+0xec/0x330 [ 1581.632182] genl_family_rcv_msg_doit+0x22d/0x330 [ 1581.633075] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1581.634311] genl_rcv_msg+0x33c/0x5a0 [ 1581.635041] ? genl_get_cmd+0x480/0x480 [ 1581.635779] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1581.636723] ? genl_get_cmd+0x480/0x480 [ 1581.637468] netlink_rcv_skb+0x14b/0x430 [ 1581.638226] ? genl_get_cmd+0x480/0x480 [ 1581.638981] ? netlink_ack+0xab0/0xab0 [ 1581.639715] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1581.640569] genl_rcv+0x24/0x40 [ 1581.641180] netlink_unicast+0x549/0x7f0 [ 1581.641940] ? netlink_attachskb+0x870/0x870 [ 1581.642783] netlink_sendmsg+0x90f/0xdf0 [ 1581.643542] ? netlink_unicast+0x7f0/0x7f0 [ 1581.644331] ? netlink_unicast+0x7f0/0x7f0 [ 1581.645106] __sock_sendmsg+0x154/0x190 [ 1581.645834] ____sys_sendmsg+0x70d/0x870 [ 1581.646588] ? sock_write_iter+0x3d0/0x3d0 [ 1581.647371] ? do_recvmmsg+0x6d0/0x6d0 [ 1581.648088] ? perf_trace_lock+0xac/0x490 [ 1581.648834] ? __lockdep_reset_lock+0x180/0x180 [ 1581.649697] ___sys_sendmsg+0xf3/0x170 [ 1581.650413] ? sendmsg_copy_msghdr+0x160/0x160 [ 1581.651274] ? lock_downgrade+0x6d0/0x6d0 [ 1581.652045] ? __fget_files+0x272/0x4c0 [ 1581.652755] ? __fget_files+0x296/0x4c0 [ 1581.653509] ? __fget_light+0xea/0x290 [ 1581.654232] __sys_sendmsg+0xe5/0x1b0 [ 1581.654946] ? __sys_sendmsg_sock+0x40/0x40 [ 1581.655739] ? trace_hardirqs_on+0x5b/0x180 [ 1581.656560] do_syscall_64+0x33/0x40 [ 1581.657239] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1581.658180] RIP: 0033:0x7fc533f18b19 [ 1581.658871] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1581.662160] RSP: 002b:00007fc53148e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1581.663566] RAX: ffffffffffffffda RBX: 00007fc53402bf60 RCX: 00007fc533f18b19 [ 1581.664861] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1581.666157] RBP: 00007fc533f72f6d R08: 0000000000000000 R09: 0000000000000000 [ 1581.667444] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1581.668724] R13: 00007fff9313d64f R14: 00007fc53148e300 R15: 0000000000022000 [ 1581.731092] FAULT_INJECTION: forcing a failure. [ 1581.731092] name failslab, interval 1, probability 0, space 0, times 0 [ 1581.732450] CPU: 1 PID: 11304 Comm: syz-executor.7 Not tainted 5.10.205 #1 [ 1581.733229] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1581.734147] Call Trace: [ 1581.734448] dump_stack+0x107/0x167 [ 1581.734871] should_fail.cold+0x5/0xa [ 1581.735302] ? create_object.isra.0+0x3a/0xa20 [ 1581.735816] should_failslab+0x5/0x20 [ 1581.736254] kmem_cache_alloc+0x5b/0x310 [ 1581.736715] create_object.isra.0+0x3a/0xa20 [ 1581.737206] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1581.737784] __kmalloc_node_track_caller+0x1a6/0x3b0 [ 1581.738353] ? netlink_dump+0x735/0x1050 [ 1581.738823] __alloc_skb+0xb1/0x5b0 [ 1581.739238] netlink_dump+0x735/0x1050 [ 1581.739679] ? netlink_deliver_tap+0xcd0/0xcd0 [ 1581.740191] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1581.740742] ? lock_downgrade+0x6d0/0x6d0 [ 1581.741223] __netlink_dump_start+0x649/0x900 [ 1581.741754] rtnetlink_rcv_msg+0x749/0xbb0 [ 1581.742262] ? tc_dump_qdisc+0x760/0x760 [ 1581.742768] ? rtnl_fdb_dump+0x9d0/0x9d0 [ 1581.743244] ? tc_dump_qdisc+0x760/0x760 [ 1581.743722] ? __lockdep_reset_lock+0x180/0x180 [ 1581.744276] netlink_rcv_skb+0x14b/0x430 [ 1581.744751] ? rtnl_fdb_dump+0x9d0/0x9d0 [ 1581.745223] ? netlink_ack+0xab0/0xab0 [ 1581.745681] ? netlink_deliver_tap+0x1ae/0xcd0 [ 1581.746227] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1581.746769] ? is_vmalloc_addr+0x7b/0xb0 [ 1581.747255] netlink_unicast+0x549/0x7f0 [ 1581.747739] ? netlink_attachskb+0x870/0x870 [ 1581.748263] ? __virt_addr_valid+0x128/0x350 [ 1581.748786] netlink_sendmsg+0x90f/0xdf0 [ 1581.749275] ? netlink_unicast+0x7f0/0x7f0 [ 1581.749778] ? netlink_unicast+0x7f0/0x7f0 [ 1581.750280] __sock_sendmsg+0x154/0x190 [ 1581.750754] ____sys_sendmsg+0x70d/0x870 [ 1581.751237] ? sock_write_iter+0x3d0/0x3d0 [ 1581.751739] ? do_recvmmsg+0x6d0/0x6d0 [ 1581.752202] ? perf_trace_lock+0xac/0x490 [ 1581.752690] ? __lockdep_reset_lock+0x180/0x180 [ 1581.753232] ? perf_trace_lock+0xac/0x490 [ 1581.753717] ? SOFTIRQ_verbose+0x10/0x10 [ 1581.754195] ___sys_sendmsg+0xf3/0x170 [ 1581.754656] ? sendmsg_copy_msghdr+0x160/0x160 [ 1581.755217] ? lock_downgrade+0x6d0/0x6d0 [ 1581.755704] ? find_held_lock+0x2c/0x110 [ 1581.756200] ? __fget_files+0x296/0x4c0 [ 1581.756682] ? __fget_light+0xea/0x290 [ 1581.757149] __sys_sendmsg+0xe5/0x1b0 [ 1581.757597] ? __sys_sendmsg_sock+0x40/0x40 [ 1581.758112] ? rcu_read_lock_any_held+0x75/0xa0 [ 1581.758695] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1581.759318] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1581.759912] ? trace_hardirqs_on+0x5b/0x180 [ 1581.760432] do_syscall_64+0x33/0x40 [ 1581.760868] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1581.761473] RIP: 0033:0x7f0050660b19 [ 1581.761919] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1581.764061] RSP: 002b:00007f004dbd6188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1581.764899] RAX: ffffffffffffffda RBX: 00007f0050773f60 RCX: 00007f0050660b19 [ 1581.765694] RDX: 0000000000000000 RSI: 00000000200000c0 RDI: 0000000000000003 [ 1581.766487] RBP: 00007f004dbd61d0 R08: 0000000000000000 R09: 0000000000000000 [ 1581.767297] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1581.768087] R13: 00007ffe128db73f R14: 00007f004dbd6300 R15: 0000000000022000 [ 1581.813006] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1581.814516] CPU: 0 PID: 11288 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1581.815706] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1581.817092] Call Trace: [ 1581.817536] dump_stack+0x107/0x167 [ 1581.818158] sysfs_warn_dup.cold+0x1c/0x29 [ 1581.818873] sysfs_do_create_link_sd+0x122/0x140 [ 1581.819668] sysfs_create_link+0x5f/0xc0 [ 1581.820350] device_add+0x703/0x1c50 [ 1581.820972] ? devlink_add_symlinks+0x970/0x970 [ 1581.821754] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1581.822667] wiphy_register+0x1da6/0x2850 [ 1581.823407] ? wiphy_unregister+0xb90/0xb90 [ 1581.824144] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1581.825043] ieee80211_register_hw+0x23c5/0x38b0 [ 1581.825889] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1581.826700] ? net_generic+0xdb/0x2b0 [ 1581.827344] ? lockdep_init_map_type+0x2c7/0x780 [ 1581.828137] ? memset+0x20/0x50 [ 1581.828705] ? __hrtimer_init+0x12c/0x270 [ 1581.829416] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1581.830276] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1581.831063] ? hwsim_new_radio_nl+0x967/0x1080 [ 1581.831835] ? memcpy+0x39/0x60 [ 1581.832393] hwsim_new_radio_nl+0x991/0x1080 [ 1581.833158] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1581.834034] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1581.835153] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1581.836244] genl_family_rcv_msg_doit+0x22d/0x330 [ 1581.837061] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1581.838156] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1581.839044] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1581.839969] genl_rcv_msg+0x33c/0x5a0 [ 1581.840616] ? genl_get_cmd+0x480/0x480 [ 1581.841274] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1581.842191] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1581.843079] ? netlink_rcv_skb+0x2b5/0x430 [ 1581.843789] netlink_rcv_skb+0x14b/0x430 [ 1581.844460] ? genl_get_cmd+0x480/0x480 [ 1581.845132] ? netlink_ack+0xab0/0xab0 [ 1581.845794] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1581.846553] ? is_vmalloc_addr+0x7b/0xb0 [ 1581.847229] genl_rcv+0x24/0x40 [ 1581.847775] netlink_unicast+0x549/0x7f0 [ 1581.848461] ? netlink_attachskb+0x870/0x870 [ 1581.849216] netlink_sendmsg+0x90f/0xdf0 [ 1581.849900] ? netlink_unicast+0x7f0/0x7f0 [ 1581.850623] ? netlink_unicast+0x7f0/0x7f0 [ 1581.851349] __sock_sendmsg+0x154/0x190 [ 1581.852028] ____sys_sendmsg+0x70d/0x870 [ 1581.852696] ? sock_write_iter+0x3d0/0x3d0 [ 1581.853408] ? do_recvmmsg+0x6d0/0x6d0 [ 1581.854079] ? ___sys_sendmsg+0x8b/0x170 [ 1581.854774] ___sys_sendmsg+0xf3/0x170 [ 1581.855426] ? sendmsg_copy_msghdr+0x160/0x160 [ 1581.856191] ? lock_downgrade+0x6d0/0x6d0 [ 1581.856880] ? __fget_files+0xc9/0x4c0 [ 1581.857521] ? __fget_files+0xd7/0x4c0 [ 1581.858173] ? __fget_files+0x296/0x4c0 [ 1581.858934] ? __fget_light+0xea/0x290 [ 1581.859586] __sys_sendmsg+0xe5/0x1b0 [ 1581.860247] ? __sys_sendmsg_sock+0x40/0x40 [ 1581.860958] ? trace_hardirqs_on+0x5b/0x180 [ 1581.861700] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1581.862550] ? syscall_enter_from_user_mode+0x27/0x50 [ 1581.863423] do_syscall_64+0x33/0x40 [ 1581.864039] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1581.864894] RIP: 0033:0x7f07e63f4b19 [ 1581.865502] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1581.868537] RSP: 002b:00007f07e396a188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1581.869790] RAX: ffffffffffffffda RBX: 00007f07e6507f60 RCX: 00007f07e63f4b19 [ 1581.870986] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1581.872172] RBP: 00007f07e644ef6d R08: 0000000000000000 R09: 0000000000000000 [ 1581.873335] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1581.874549] R13: 00007fff1f25f23f R14: 00007f07e396a300 R15: 0000000000022000 [ 1581.886127] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1581.887123] CPU: 1 PID: 11292 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1581.887888] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1581.888806] Call Trace: [ 1581.889098] dump_stack+0x107/0x167 [ 1581.889514] sysfs_warn_dup.cold+0x1c/0x29 [ 1581.889983] sysfs_do_create_link_sd+0x122/0x140 [ 1581.890498] sysfs_create_link+0x5f/0xc0 [ 1581.890961] device_add+0x703/0x1c50 [ 1581.891380] ? devlink_add_symlinks+0x970/0x970 [ 1581.891889] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1581.892461] wiphy_register+0x1da6/0x2850 [ 1581.892927] ? wiphy_unregister+0xb90/0xb90 [ 1581.893405] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1581.893988] ieee80211_register_hw+0x23c5/0x38b0 [ 1581.894525] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1581.895065] ? net_generic+0xdb/0x2b0 [ 1581.895493] ? lockdep_init_map_type+0x2c7/0x780 [ 1581.896029] ? memset+0x20/0x50 [ 1581.896401] ? __hrtimer_init+0x12c/0x270 [ 1581.896867] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1581.897437] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1581.897953] ? hwsim_new_radio_nl+0x967/0x1080 [ 1581.898459] ? memcpy+0x39/0x60 [ 1581.898845] hwsim_new_radio_nl+0x991/0x1080 [ 1581.899341] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1581.899932] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1581.900676] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1581.901415] genl_family_rcv_msg_doit+0x22d/0x330 [ 1581.901954] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1581.902704] ? cap_capable+0x1cd/0x230 [ 1581.903157] ? ns_capable+0xe2/0x110 [ 1581.903577] genl_rcv_msg+0x33c/0x5a0 [ 1581.904005] ? genl_get_cmd+0x480/0x480 [ 1581.904448] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1581.905042] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1581.905621] ? down_read+0x10f/0x430 [ 1581.906042] ? netlink_rcv_skb+0x7b/0x430 [ 1581.906510] netlink_rcv_skb+0x14b/0x430 [ 1581.906977] ? genl_get_cmd+0x480/0x480 [ 1581.907430] ? netlink_ack+0xab0/0xab0 [ 1581.907882] genl_rcv+0x24/0x40 [ 1581.908254] netlink_unicast+0x549/0x7f0 [ 1581.908712] ? netlink_attachskb+0x870/0x870 [ 1581.909208] ? kcov_remote_stop+0x310/0x310 [ 1581.909703] netlink_sendmsg+0x90f/0xdf0 [ 1581.910168] ? netlink_unicast+0x7f0/0x7f0 [ 1581.910655] ? netlink_unicast+0x7f0/0x7f0 [ 1581.911143] __sock_sendmsg+0x154/0x190 [ 1581.911593] ____sys_sendmsg+0x70d/0x870 [ 1581.912059] ? sock_write_iter+0x3d0/0x3d0 [ 1581.912520] ? do_recvmmsg+0x6d0/0x6d0 [ 1581.912961] ? perf_trace_lock+0xac/0x490 [ 1581.913430] ? trace_hardirqs_on+0x5b/0x180 [ 1581.913921] ? __lockdep_reset_lock+0x180/0x180 [ 1581.914441] ___sys_sendmsg+0xf3/0x170 [ 1581.914897] ? sendmsg_copy_msghdr+0x160/0x160 [ 1581.915410] ? lock_downgrade+0x6d0/0x6d0 [ 1581.915872] ? find_held_lock+0x2c/0x110 [ 1581.916332] ? clockevents_program_event+0x14b/0x360 [ 1581.916913] ? __fget_files+0x296/0x4c0 [ 1581.917369] ? __fget_light+0xea/0x290 [ 1581.917815] __sys_sendmsg+0xe5/0x1b0 [ 1581.918237] ? __sys_sendmsg_sock+0x40/0x40 [ 1581.918725] ? trace_hardirqs_on+0x5b/0x180 [ 1581.919221] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1581.919808] ? syscall_enter_from_user_mode+0x27/0x50 [ 1581.920381] do_syscall_64+0x33/0x40 [ 1581.920799] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1581.921373] RIP: 0033:0x7eff88fa0b19 [ 1581.921789] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1581.923846] RSP: 002b:00007eff86516188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1581.924699] RAX: ffffffffffffffda RBX: 00007eff890b3f60 RCX: 00007eff88fa0b19 [ 1581.925493] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1581.926278] RBP: 00007eff88ffaf6d R08: 0000000000000000 R09: 0000000000000000 [ 1581.927081] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1581.927870] R13: 00007ffe20cbc2ff R14: 00007eff86516300 R15: 0000000000022000 15:37:48 executing program 0: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) [ 1595.020498] FAULT_INJECTION: forcing a failure. [ 1595.020498] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1595.021972] CPU: 1 PID: 11324 Comm: syz-executor.7 Not tainted 5.10.205 #1 [ 1595.022807] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1595.023821] Call Trace: [ 1595.024147] dump_stack+0x107/0x167 [ 1595.024605] should_fail.cold+0x5/0xa [ 1595.025082] _copy_to_user+0x2e/0x180 [ 1595.025562] simple_read_from_buffer+0xcc/0x160 [ 1595.026135] proc_fail_nth_read+0x198/0x230 [ 1595.026662] ? proc_sessionid_read+0x230/0x230 [ 1595.027419] ? security_file_permission+0x24e/0x570 [ 1595.028053] ? perf_trace_initcall_start+0x101/0x380 [ 1595.028671] ? proc_sessionid_read+0x230/0x230 [ 1595.029231] vfs_read+0x228/0x580 [ 1595.029658] ksys_read+0x12d/0x260 [ 1595.030082] ? vfs_write+0xa70/0xa70 [ 1595.030550] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1595.031197] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1595.031822] do_syscall_64+0x33/0x40 [ 1595.032273] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1595.032898] RIP: 0033:0x7f005061369c [ 1595.033352] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 1595.035596] RSP: 002b:00007f004dbd6170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1595.036516] RAX: ffffffffffffffda RBX: 0000000000000028 RCX: 00007f005061369c [ 1595.037371] RDX: 000000000000000f RSI: 00007f004dbd61e0 RDI: 0000000000000004 [ 1595.038227] RBP: 00007f004dbd61d0 R08: 0000000000000000 R09: 0000000000000000 15:37:48 executing program 3: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:37:48 executing program 4: openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) open$dir(&(0x7f00000000c0)='./file0\x00', 0x80040, 0x40) r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) write$binfmt_script(0xffffffffffffffff, 0x0, 0xb) fallocate(0xffffffffffffffff, 0x3, 0x0, 0x18000) r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x125342, 0x0) fallocate(0xffffffffffffffff, 0x40, 0x4, 0x100) r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0xce) r3 = dup2(r2, r1) syz_mount_image$iso9660(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x0, 0x0, &(0x7f0000001640), 0x10018c6, &(0x7f0000000340)=ANY=[@ANYBLOB="43e31f68a5ccc3ec69aa4806b01906076162f9ffffff7f25a5b9630f39230e9287790aa0db89f36cf6d04afe650d9546dcdbddc85e7781b3deb2bc7489758defa571b304c38b6d4200"/86, @ANYRES16]) fallocate(0xffffffffffffffff, 0x10, 0x0, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x351142, 0x0) syz_mount_image$vfat(0x0, 0x0, 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x10009ff}], 0x0, 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000003c0)=ANY=[@ANYBLOB="00000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000003f0000000900000000000000ff000000000000000104000000000000090000000000000000000000000000000000000000000000000000000000000005000000070000000900000000000000ff0f000000000000d60a00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000947cf5e4ce6bee2000"/448]) sendfile(r4, r3, 0x0, 0x7ffffff9) 15:37:48 executing program 5: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$FITRIM(r0, 0xc0185879, &(0x7f0000000080)={0xffff, 0x4, 0x6}) ioctl$KDGKBLED(r1, 0x4b64, &(0x7f0000000040)) writev(r0, &(0x7f0000001240)=[{&(0x7f0000001280)="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", 0x1a7}], 0x1) 15:37:49 executing program 2: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f0000000240)={0x0, 0x0, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}}) connect$inet6(0xffffffffffffffff, 0x0, 0x0) syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400028020000400000004f8000020004000030000000000000001", 0x25}, {&(0x7f0000010500)="f8ffff0fffffff0ff8ffff0f", 0xc, 0x4000}], 0x0, &(0x7f0000000140)={[{@fat=@errors_remount}, {@utf8}, {@shortname_winnt}, {@shortname_winnt}, {@rodir}, {@shortname_lower}]}) 15:37:49 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) (fail_nth: 84) 15:37:49 executing program 6: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:37:49 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) (fail_nth: 12) [ 1595.039084] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1595.040094] R13: 00007ffe128db73f R14: 00007f004dbd6300 R15: 0000000000022000 [ 1595.055276] FAULT_INJECTION: forcing a failure. [ 1595.055276] name failslab, interval 1, probability 0, space 0, times 0 [ 1595.055298] CPU: 0 PID: 11322 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1595.055310] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1595.055317] Call Trace: [ 1595.055337] dump_stack+0x107/0x167 [ 1595.055364] should_fail.cold+0x5/0xa [ 1595.055387] ? create_object.isra.0+0x3a/0xa20 [ 1595.055411] should_failslab+0x5/0x20 [ 1595.055431] kmem_cache_alloc+0x5b/0x310 [ 1595.055461] create_object.isra.0+0x3a/0xa20 [ 1595.055482] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1595.055511] kmem_cache_alloc+0x159/0x310 [ 1595.055543] __kernfs_new_node+0xd4/0x860 [ 1595.055573] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1595.055608] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1595.055639] ? wait_for_completion_io+0x270/0x270 [ 1595.055666] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1595.055701] kernfs_new_node+0x93/0x120 [ 1595.055729] __kernfs_create_file+0x51/0x350 [ 1595.055756] sysfs_add_file_mode_ns+0x221/0x560 [ 1595.055792] internal_create_group+0x324/0xb30 [ 1595.055825] ? sysfs_remove_group+0x170/0x170 [ 1595.055844] ? kernfs_name_hash+0xe7/0x110 [ 1595.055872] ? kernfs_find_ns+0x256/0x380 [ 1595.055906] sysfs_slab_add+0x188/0x200 [ 1595.055933] __kmem_cache_create+0x3db/0x520 [ 1595.055963] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1595.055994] p9_client_create+0xc2b/0x11c0 [ 1595.056030] ? p9_client_flush+0x430/0x430 [ 1595.056054] ? trace_hardirqs_on+0x5b/0x180 [ 1595.056078] ? lockdep_init_map_type+0x2c7/0x780 [ 1595.056109] ? __raw_spin_lock_init+0x36/0x110 [ 1595.056139] v9fs_session_init+0x1dd/0x1680 [ 1595.056162] ? lock_release+0x680/0x680 [ 1595.056195] ? kmem_cache_alloc_trace+0x151/0x320 15:37:49 executing program 2: syz_open_dev$evdev(0x0, 0x5, 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) write$P9_RREADLINK(r0, &(0x7f0000001180)=ANY=[@ANYBLOB="100000001701c763f3000700002f66696c6531"], 0x10) r1 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r1, 0x0, r0, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) ioctl$EVIOCGMASK(r1, 0x80104592, &(0x7f0000001100)={0x15, 0x1000, &(0x7f0000000100)="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"}) r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) openat(r1, &(0x7f00000000c0)='./file1\x00', 0x200000, 0x1a3) ioctl$EVIOCGSND(r2, 0x8040451a, &(0x7f0000000000)=""/216) openat$sr(0xffffffffffffff9c, &(0x7f0000001380), 0x0, 0x0) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c89425, 0x0) ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, 0x0) [ 1595.056216] ? v9fs_show_options+0x690/0x690 [ 1595.056251] ? trace_hardirqs_on+0x5b/0x180 [ 1595.056278] ? kasan_unpoison_shadow+0x33/0x50 [ 1595.056302] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1595.056332] v9fs_mount+0x79/0x8f0 [ 1595.056358] ? v9fs_write_inode+0x60/0x60 [ 1595.056381] legacy_get_tree+0x105/0x220 [ 1595.056405] vfs_get_tree+0x8e/0x300 [ 1595.056429] path_mount+0x13be/0x20b0 [ 1595.056457] ? strncpy_from_user+0x9e/0x470 [ 1595.056483] ? finish_automount+0xa90/0xa90 [ 1595.056505] ? getname_flags.part.0+0x1dd/0x4f0 [ 1595.056525] ? _copy_from_user+0xfb/0x1b0 [ 1595.056558] __x64_sys_mount+0x282/0x300 [ 1595.056582] ? copy_mnt_ns+0xa00/0xa00 [ 1595.056609] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1595.056629] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1595.056657] do_syscall_64+0x33/0x40 [ 1595.056677] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1595.056690] RIP: 0033:0x7f76b700cb19 [ 1595.056711] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1595.056723] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1595.056745] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1595.056758] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1595.056770] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1595.056783] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1595.056795] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 [ 1595.279207] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1595.281362] CPU: 0 PID: 11326 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1595.282907] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1595.284726] Call Trace: [ 1595.285320] dump_stack+0x107/0x167 [ 1595.286141] sysfs_warn_dup.cold+0x1c/0x29 [ 1595.287104] sysfs_do_create_link_sd+0x122/0x140 [ 1595.288146] sysfs_create_link+0x5f/0xc0 [ 1595.289043] device_add+0x703/0x1c50 [ 1595.289855] ? devlink_add_symlinks+0x970/0x970 [ 1595.290899] ? rtnl_lock+0x5/0x20 [ 1595.291684] wiphy_register+0x1da6/0x2850 [ 1595.292617] ? wiphy_unregister+0xb90/0xb90 [ 1595.293604] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1595.294788] ieee80211_register_hw+0x23c5/0x38b0 [ 1595.295871] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1595.296946] ? __hrtimer_init+0x32/0x270 [ 1595.297840] ? memset+0x20/0x50 [ 1595.298584] ? __hrtimer_init+0x12c/0x270 [ 1595.299518] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1595.300642] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1595.301656] ? hwsim_new_radio_nl+0x967/0x1080 [ 1595.302676] ? memcpy+0x39/0x60 [ 1595.303419] hwsim_new_radio_nl+0x991/0x1080 [ 1595.304384] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1595.305506] ? trace_hardirqs_on+0x5b/0x180 [ 1595.306472] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1595.307629] genl_family_rcv_msg_doit+0x22d/0x330 [ 1595.308694] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1595.310142] ? cap_capable+0x1cd/0x230 [ 1595.311027] ? ns_capable+0xe2/0x110 [ 1595.311862] genl_rcv_msg+0x33c/0x5a0 [ 1595.312718] ? genl_get_cmd+0x480/0x480 [ 1595.313597] ? lock_acquire+0x1b9/0x470 [ 1595.314475] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1595.315629] ? lock_release+0x680/0x680 [ 1595.316528] netlink_rcv_skb+0x14b/0x430 [ 1595.317418] ? genl_get_cmd+0x480/0x480 [ 1595.318281] ? netlink_ack+0xab0/0xab0 [ 1595.319166] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1595.320169] ? is_vmalloc_addr+0x7b/0xb0 [ 1595.321067] genl_rcv+0x24/0x40 [ 1595.321781] netlink_unicast+0x549/0x7f0 [ 1595.322678] ? netlink_attachskb+0x870/0x870 [ 1595.323686] netlink_sendmsg+0x90f/0xdf0 [ 1595.324597] ? netlink_unicast+0x7f0/0x7f0 [ 1595.325555] ? netlink_unicast+0x7f0/0x7f0 [ 1595.326491] __sock_sendmsg+0x154/0x190 [ 1595.327368] ____sys_sendmsg+0x70d/0x870 [ 1595.328261] ? sock_write_iter+0x3d0/0x3d0 [ 1595.329178] ? do_recvmmsg+0x6d0/0x6d0 [ 1595.330027] ? perf_trace_lock+0xac/0x490 [ 1595.330947] ? __lockdep_reset_lock+0x180/0x180 [ 1595.331975] ___sys_sendmsg+0xf3/0x170 [ 1595.332827] ? sendmsg_copy_msghdr+0x160/0x160 [ 1595.333831] ? lock_downgrade+0x6d0/0x6d0 [ 1595.334741] ? find_held_lock+0x2c/0x110 [ 1595.335661] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1595.336800] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1595.337978] ? trace_hardirqs_on+0x5b/0x180 [ 1595.338935] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1595.340135] ? sockfd_lookup_light+0xe1/0x180 [ 1595.341113] ? __sanitizer_cov_trace_pc+0x3c/0x60 [ 1595.342185] __sys_sendmsg+0xe5/0x1b0 [ 1595.343029] ? __sys_sendmsg_sock+0x40/0x40 [ 1595.344002] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1595.345165] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1595.346283] ? trace_hardirqs_on+0x5b/0x180 [ 1595.347274] do_syscall_64+0x33/0x40 [ 1595.348082] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1595.349200] RIP: 0033:0x7fc533f18b19 [ 1595.350020] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1595.354065] RSP: 002b:00007fc53148e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1595.355756] RAX: ffffffffffffffda RBX: 00007fc53402bf60 RCX: 00007fc533f18b19 [ 1595.357325] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1595.358895] RBP: 00007fc533f72f6d R08: 0000000000000000 R09: 0000000000000000 [ 1595.360334] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1595.361773] R13: 00007fff9313d64f R14: 00007fc53148e300 R15: 0000000000022000 [ 1595.516371] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1595.517391] CPU: 1 PID: 11316 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1595.518165] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1595.519107] Call Trace: [ 1595.519413] dump_stack+0x107/0x167 [ 1595.519834] sysfs_warn_dup.cold+0x1c/0x29 [ 1595.520313] sysfs_do_create_link_sd+0x122/0x140 [ 1595.520846] sysfs_create_link+0x5f/0xc0 [ 1595.521307] device_add+0x703/0x1c50 [ 1595.521736] ? devlink_add_symlinks+0x970/0x970 [ 1595.522268] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1595.522984] wiphy_register+0x1da6/0x2850 [ 1595.523469] ? wiphy_unregister+0xb90/0xb90 [ 1595.524049] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1595.524659] ieee80211_register_hw+0x23c5/0x38b0 [ 1595.525309] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1595.525941] ? net_generic+0xdb/0x2b0 [ 1595.526384] ? lockdep_init_map_type+0x2c7/0x780 [ 1595.526931] ? memset+0x20/0x50 [ 1595.527365] ? __hrtimer_init+0x12c/0x270 [ 1595.527843] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1595.528508] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1595.529036] ? hwsim_new_radio_nl+0x967/0x1080 [ 1595.529629] ? memcpy+0x39/0x60 [ 1595.530017] hwsim_new_radio_nl+0x991/0x1080 [ 1595.530612] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1595.531206] ? trace_hardirqs_on+0x5b/0x180 [ 1595.531783] ? genl_family_rcv_msg_doit+0xfe/0x330 [ 1595.532348] genl_family_rcv_msg_doit+0x22d/0x330 [ 1595.532977] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1595.533726] ? cap_capable+0x1cd/0x230 [ 1595.534249] ? ns_capable+0xe2/0x110 [ 1595.534688] genl_rcv_msg+0x33c/0x5a0 [ 1595.535151] ? genl_get_cmd+0x480/0x480 [ 1595.535604] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1595.536196] ? check_memory_region+0x68/0x1f0 [ 1595.536713] netlink_rcv_skb+0x14b/0x430 [ 1595.537245] ? genl_get_cmd+0x480/0x480 [ 1595.537691] ? netlink_ack+0xab0/0xab0 [ 1595.538204] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1595.538721] ? is_vmalloc_addr+0x7b/0xb0 [ 1595.539269] genl_rcv+0x24/0x40 [ 1595.539641] netlink_unicast+0x549/0x7f0 [ 1595.540173] ? netlink_attachskb+0x870/0x870 [ 1595.540683] ? __virt_addr_valid+0x128/0x350 [ 1595.541270] netlink_sendmsg+0x90f/0xdf0 [ 1595.541742] ? netlink_unicast+0x7f0/0x7f0 [ 1595.542298] ? __sanitizer_cov_trace_pc+0x45/0x60 [ 1595.542841] ? netlink_unicast+0x7f0/0x7f0 [ 1595.543339] __sock_sendmsg+0x154/0x190 [ 1595.543801] ____sys_sendmsg+0x70d/0x870 [ 1595.544264] ? sock_write_iter+0x3d0/0x3d0 [ 1595.544738] ? do_recvmmsg+0x6d0/0x6d0 [ 1595.545183] ? perf_trace_lock+0xac/0x490 [ 1595.545646] ? trace_hardirqs_on+0x5b/0x180 [ 1595.546134] ? __lockdep_reset_lock+0x180/0x180 [ 1595.546657] ___sys_sendmsg+0xf3/0x170 [ 1595.547192] ? sendmsg_copy_msghdr+0x160/0x160 [ 1595.547712] ? lock_downgrade+0x6d0/0x6d0 [ 1595.548245] ? find_held_lock+0x2c/0x110 [ 1595.548706] ? clockevents_program_event+0x14b/0x360 [ 1595.549371] ? __fget_files+0x296/0x4c0 [ 1595.549832] ? __fget_light+0xea/0x290 [ 1595.550352] __sys_sendmsg+0xe5/0x1b0 [ 1595.550877] ? __sys_sendmsg_sock+0x40/0x40 [ 1595.551385] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1595.552063] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1595.552643] ? trace_hardirqs_on+0x5b/0x180 [ 1595.553213] do_syscall_64+0x33/0x40 [ 1595.553637] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1595.554298] RIP: 0033:0x7f07e63f4b19 [ 1595.554721] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1595.557101] RSP: 002b:00007f07e396a188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1595.557957] RAX: ffffffffffffffda RBX: 00007f07e6507f60 RCX: 00007f07e63f4b19 [ 1595.558752] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1595.559574] RBP: 00007f07e644ef6d R08: 0000000000000000 R09: 0000000000000000 [ 1595.560372] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1595.561180] R13: 00007fff1f25f23f R14: 00007f07e396a300 R15: 0000000000022000 [ 1595.682960] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1595.685024] CPU: 0 PID: 11327 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1595.686595] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1595.688482] Call Trace: [ 1595.689086] dump_stack+0x107/0x167 [ 1595.689874] sysfs_warn_dup.cold+0x1c/0x29 [ 1595.690750] sysfs_do_create_link_sd+0x122/0x140 [ 1595.691730] sysfs_create_link+0x5f/0xc0 [ 1595.692568] device_add+0x703/0x1c50 [ 1595.693339] ? devlink_add_symlinks+0x970/0x970 [ 1595.694298] ? rtnl_lock+0x5/0x20 [ 1595.695038] wiphy_register+0x1da6/0x2850 [ 1595.695910] ? wiphy_unregister+0xb90/0xb90 [ 1595.696818] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1595.697911] ieee80211_register_hw+0x23c5/0x38b0 [ 1595.698916] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1595.699917] ? hrtimer_init+0x45/0x170 [ 1595.700718] ? memset+0x20/0x50 [ 1595.701397] ? __hrtimer_init+0x12c/0x270 [ 1595.702255] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1595.703313] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1595.704254] ? hwsim_new_radio_nl+0x967/0x1080 [ 1595.705189] ? memcpy+0x39/0x60 [ 1595.705875] hwsim_new_radio_nl+0x991/0x1080 [ 1595.706781] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1595.707870] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1595.709212] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1595.710550] genl_family_rcv_msg_doit+0x22d/0x330 [ 1595.711557] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1595.712902] ? cap_capable+0x1cd/0x230 [ 1595.713719] ? ns_capable+0xe2/0x110 [ 1595.714491] genl_rcv_msg+0x33c/0x5a0 [ 1595.715283] ? genl_get_cmd+0x480/0x480 [ 1595.716093] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1595.717157] ? lock_release+0x680/0x680 [ 1595.717968] ? __lockdep_reset_lock+0x180/0x180 [ 1595.718938] netlink_rcv_skb+0x14b/0x430 [ 1595.719769] ? genl_get_cmd+0x480/0x480 [ 1595.720582] ? netlink_ack+0xab0/0xab0 [ 1595.721393] ? genl_pernet_exit+0x80/0x80 [ 1595.722246] genl_rcv+0x24/0x40 [ 1595.722923] netlink_unicast+0x549/0x7f0 [ 1595.723760] ? netlink_attachskb+0x870/0x870 [ 1595.724676] netlink_sendmsg+0x90f/0xdf0 [ 1595.725513] ? netlink_unicast+0x7f0/0x7f0 [ 1595.726372] ? netlink_unicast+0x7f0/0x7f0 [ 1595.727257] ? __sock_sendmsg+0x146/0x190 [ 1595.728104] ? netlink_unicast+0x7f0/0x7f0 [ 1595.728970] __sock_sendmsg+0x154/0x190 [ 1595.729786] ____sys_sendmsg+0x70d/0x870 [ 1595.730623] ? sock_write_iter+0x3d0/0x3d0 [ 1595.731503] ? do_recvmmsg+0x6d0/0x6d0 [ 1595.732314] ? ___sys_sendmsg+0x8b/0x170 [ 1595.733151] ___sys_sendmsg+0xf3/0x170 [ 1595.733953] ? sendmsg_copy_msghdr+0x160/0x160 [ 1595.734903] ? lock_downgrade+0x6d0/0x6d0 [ 1595.735749] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1595.736820] ? trace_hardirqs_on+0x5b/0x180 [ 1595.737705] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1595.738825] ? __fget_files+0x296/0x4c0 [ 1595.739674] ? __fget_light+0xea/0x290 [ 1595.740487] __sys_sendmsg+0xe5/0x1b0 [ 1595.741267] ? __sys_sendmsg_sock+0x40/0x40 [ 1595.742174] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1595.743260] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1595.744305] ? trace_hardirqs_on+0x5b/0x180 [ 1595.745195] do_syscall_64+0x33/0x40 [ 1595.745954] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1595.747006] RIP: 0033:0x7eff88fa0b19 [ 1595.747770] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1595.751527] RSP: 002b:00007eff86516188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1595.753085] RAX: ffffffffffffffda RBX: 00007eff890b3f60 RCX: 00007eff88fa0b19 [ 1595.754540] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1595.755999] RBP: 00007eff88ffaf6d R08: 0000000000000000 R09: 0000000000000000 [ 1595.757452] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1595.758954] R13: 00007ffe20cbc2ff R14: 00007eff86516300 R15: 0000000000022000 15:38:03 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) 15:38:03 executing program 0: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 15:38:03 executing program 3: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:38:03 executing program 5: r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000100), 0x905001, 0x0) lseek(r0, 0x1, 0x3) r1 = socket$unix(0x1, 0x2, 0x0) bind$unix(r1, &(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e) memfd_create(&(0x7f0000000340)='\x00', 0x0) socket$inet_tcp(0x2, 0x1, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r3, 0x0, r2, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f0000000140)=0x1, 0x4) memfd_create(&(0x7f0000000340)='\x00', 0x2) sendmmsg$unix(r1, &(0x7f0000001880)=[{{&(0x7f0000000000)=@file={0x1, './file0\x00'}, 0x6e, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f0000001800)}}], 0x2, 0x800) 15:38:03 executing program 2: r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/power/resume_offset', 0x0, 0x0) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000240)='/sys/power/pm_async', 0x22902, 0x0) copy_file_range(r0, &(0x7f0000000000)=0x3, r1, &(0x7f0000000040)=0x3ff, 0x4, 0x0) copy_file_range(r0, 0x0, r1, 0x0, 0x1, 0x800800000000) 15:38:03 executing program 6: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:38:03 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="1400000000ffff00000000000000000007"], 0x14}}, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) io_uring_setup(0x0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x161}) dup2(0xffffffffffffffff, 0xffffffffffffffff) sendmsg$AUDIT_LIST_RULES(0xffffffffffffffff, 0x0, 0x8008000) syncfs(0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCADD6RD(0xffffffffffffffff, 0x89f9, &(0x7f0000000380)={'syztnl2\x00', &(0x7f0000000400)={'syztnl1\x00', 0x0, 0x4, 0xf8, 0x0, 0x7ef3, 0x42, @ipv4={'\x00', '\xff\xff', @remote}, @loopback, 0x10, 0x40, 0x1ff, 0x82ad}}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x308) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, 0x0, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) r1 = socket$inet(0x2, 0xa, 0x0) ioctl$BTRFS_IOC_TREE_SEARCH_V2(0xffffffffffffffff, 0xc0709411, &(0x7f0000000040)={{0x0, 0x1800000000000, 0x5, 0x2, 0x2, 0x0, 0xfffffffffffeffff, 0x1eb, 0x71, 0x9c, 0x80, 0x401, 0x4, 0xffff, 0x7}, 0x48, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x40000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_inet_SIOCGIFNETMASK(r1, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}}) 15:38:03 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) (fail_nth: 85) [ 1609.807224] device veth0_vlan entered promiscuous mode [ 1609.819864] FAULT_INJECTION: forcing a failure. [ 1609.819864] name failslab, interval 1, probability 0, space 0, times 0 [ 1609.821280] CPU: 0 PID: 11356 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1609.822130] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1609.823174] Call Trace: [ 1609.823507] dump_stack+0x107/0x167 [ 1609.823974] should_fail.cold+0x5/0xa [ 1609.824454] ? __kernfs_new_node+0xd4/0x860 [ 1609.824999] should_failslab+0x5/0x20 [ 1609.825466] kmem_cache_alloc+0x5b/0x310 [ 1609.825972] __kernfs_new_node+0xd4/0x860 [ 1609.826496] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1609.827116] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1609.827726] ? wait_for_completion_io+0x270/0x270 [ 1609.828343] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1609.829009] kernfs_new_node+0x93/0x120 [ 1609.829514] __kernfs_create_file+0x51/0x350 [ 1609.830066] sysfs_add_file_mode_ns+0x221/0x560 [ 1609.830647] internal_create_group+0x324/0xb30 [ 1609.831232] ? sysfs_remove_group+0x170/0x170 [ 1609.831784] ? kernfs_name_hash+0xe7/0x110 [ 1609.832312] ? kernfs_find_ns+0x256/0x380 [ 1609.832835] sysfs_slab_add+0x188/0x200 [ 1609.833339] __kmem_cache_create+0x3db/0x520 [ 1609.833896] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1609.834530] p9_client_create+0xc2b/0x11c0 [ 1609.835084] ? p9_client_flush+0x430/0x430 [ 1609.835619] ? trace_hardirqs_on+0x5b/0x180 [ 1609.836165] ? lockdep_init_map_type+0x2c7/0x780 [ 1609.836761] ? __raw_spin_lock_init+0x36/0x110 [ 1609.837339] v9fs_session_init+0x1dd/0x1680 [ 1609.837875] ? lock_release+0x680/0x680 [ 1609.838376] ? kmem_cache_alloc_trace+0x151/0x320 [ 1609.838975] ? v9fs_show_options+0x690/0x690 [ 1609.839540] ? trace_hardirqs_on+0x5b/0x180 [ 1609.840085] ? kasan_unpoison_shadow+0x33/0x50 [ 1609.840659] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1609.841289] v9fs_mount+0x79/0x8f0 [ 1609.841731] ? v9fs_write_inode+0x60/0x60 [ 1609.842246] legacy_get_tree+0x105/0x220 [ 1609.842749] vfs_get_tree+0x8e/0x300 [ 1609.843229] path_mount+0x13be/0x20b0 [ 1609.843711] ? strncpy_from_user+0x9e/0x470 [ 1609.844242] ? finish_automount+0xa90/0xa90 [ 1609.844777] ? getname_flags.part.0+0x1dd/0x4f0 [ 1609.845353] ? _copy_from_user+0xfb/0x1b0 [ 1609.845879] __x64_sys_mount+0x282/0x300 [ 1609.846386] ? copy_mnt_ns+0xa00/0xa00 [ 1609.846871] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1609.847535] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1609.848185] do_syscall_64+0x33/0x40 [ 1609.848650] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1609.849279] RIP: 0033:0x7f76b700cb19 [ 1609.849741] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1609.852013] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1609.852956] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1609.853855] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1609.854741] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1609.855645] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1609.856533] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 15:38:03 executing program 2: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) [ 1609.891178] kmem_cache_create(9p-fcall-cache) failed with error -12 [ 1609.892662] CPU: 1 PID: 11356 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1609.894099] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1609.895829] Call Trace: [ 1609.896400] dump_stack+0x107/0x167 [ 1609.897158] kmem_cache_create_usercopy.cold+0x17/0x65 15:38:03 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) [ 1609.898238] p9_client_create+0xc2b/0x11c0 [ 1609.899281] ? p9_client_flush+0x430/0x430 [ 1609.900149] ? trace_hardirqs_on+0x5b/0x180 [ 1609.901038] ? lockdep_init_map_type+0x2c7/0x780 [ 1609.902014] ? __raw_spin_lock_init+0x36/0x110 [ 1609.902957] v9fs_session_init+0x1dd/0x1680 [ 1609.903851] ? lock_release+0x680/0x680 [ 1609.904675] ? kmem_cache_alloc_trace+0x151/0x320 [ 1609.905660] ? v9fs_show_options+0x690/0x690 [ 1609.906572] ? trace_hardirqs_on+0x5b/0x180 [ 1609.907484] ? kasan_unpoison_shadow+0x33/0x50 [ 1609.908420] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1609.909495] v9fs_mount+0x79/0x8f0 [ 1609.910220] ? v9fs_write_inode+0x60/0x60 [ 1609.911073] legacy_get_tree+0x105/0x220 [ 1609.911901] vfs_get_tree+0x8e/0x300 [ 1609.912667] path_mount+0x13be/0x20b0 [ 1609.913448] ? strncpy_from_user+0x9e/0x470 [ 1609.914321] ? finish_automount+0xa90/0xa90 [ 1609.915203] ? getname_flags.part.0+0x1dd/0x4f0 [ 1609.916145] ? _copy_from_user+0xfb/0x1b0 [ 1609.916992] __x64_sys_mount+0x282/0x300 [ 1609.917816] ? copy_mnt_ns+0xa00/0xa00 [ 1609.918600] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1609.919665] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1609.920727] do_syscall_64+0x33/0x40 [ 1609.921494] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1609.922560] RIP: 0033:0x7f76b700cb19 [ 1609.923345] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1609.927151] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1609.928712] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1609.930206] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1609.931678] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1609.933160] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1609.934646] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 [ 1609.949098] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1609.950080] CPU: 0 PID: 11353 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1609.950862] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1609.951835] Call Trace: [ 1609.952132] dump_stack+0x107/0x167 [ 1609.952551] sysfs_warn_dup.cold+0x1c/0x29 [ 1609.953029] sysfs_do_create_link_sd+0x122/0x140 [ 1609.953563] sysfs_create_link+0x5f/0xc0 [ 1609.954026] device_add+0x703/0x1c50 [ 1609.954453] ? devlink_add_symlinks+0x970/0x970 [ 1609.954990] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1609.955597] wiphy_register+0x1da6/0x2850 [ 1609.956079] ? wiphy_unregister+0xb90/0xb90 [ 1609.956583] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1609.957185] ieee80211_register_hw+0x23c5/0x38b0 [ 1609.957729] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1609.958280] ? net_generic+0xdb/0x2b0 [ 1609.958720] ? lockdep_init_map_type+0x2c7/0x780 [ 1609.959265] ? memset+0x20/0x50 [ 1609.959644] ? __hrtimer_init+0x12c/0x270 [ 1609.960112] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1609.960505] FAT-fs (loop5): Unrecognized mount option "pcr=00000000000000000053" or missing value [ 1609.960690] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1609.960700] ? hwsim_new_radio_nl+0x967/0x1080 [ 1609.960714] ? memcpy+0x39/0x60 [ 1609.960729] hwsim_new_radio_nl+0x991/0x1080 [ 1609.960744] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1609.960763] ? trace_hardirqs_on+0x5b/0x180 [ 1609.960786] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1609.966457] genl_family_rcv_msg_doit+0x22d/0x330 [ 1609.966998] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1609.967779] genl_rcv_msg+0x33c/0x5a0 [ 1609.968211] ? genl_get_cmd+0x480/0x480 [ 1609.968655] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1609.969240] ? genl_get_cmd+0x480/0x480 [ 1609.969695] netlink_rcv_skb+0x14b/0x430 [ 1609.970146] ? genl_get_cmd+0x480/0x480 [ 1609.970605] ? netlink_ack+0xab0/0xab0 [ 1609.971072] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1609.971586] genl_rcv+0x24/0x40 [ 1609.971959] netlink_unicast+0x549/0x7f0 [ 1609.972426] ? netlink_attachskb+0x870/0x870 [ 1609.972930] netlink_sendmsg+0x90f/0xdf0 [ 1609.973395] ? netlink_unicast+0x7f0/0x7f0 [ 1609.973876] ? netlink_unicast+0x7f0/0x7f0 [ 1609.974360] __sock_sendmsg+0x154/0x190 [ 1609.974806] ____sys_sendmsg+0x70d/0x870 [ 1609.975278] ? sock_write_iter+0x3d0/0x3d0 [ 1609.975751] ? do_recvmmsg+0x6d0/0x6d0 [ 1609.976191] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1609.976784] ? trace_hardirqs_on+0x5b/0x180 [ 1609.977272] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1609.977887] ___sys_sendmsg+0xf3/0x170 [ 1609.978332] ? sendmsg_copy_msghdr+0x160/0x160 [ 1609.978850] ? lock_downgrade+0x6d0/0x6d0 [ 1609.979311] ? find_held_lock+0x2c/0x110 [ 1609.979777] ? clockevents_program_event+0x14b/0x360 [ 1609.980357] ? __fget_files+0x296/0x4c0 [ 1609.980814] ? __fget_light+0xea/0x290 [ 1609.981252] __sys_sendmsg+0xe5/0x1b0 [ 1609.981680] ? __sys_sendmsg_sock+0x40/0x40 [ 1609.982160] ? trace_hardirqs_on+0x5b/0x180 [ 1609.982663] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1609.983247] ? syscall_enter_from_user_mode+0x27/0x50 [ 1609.983822] do_syscall_64+0x33/0x40 [ 1609.984236] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1609.984801] RIP: 0033:0x7fc533f18b19 [ 1609.985214] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1609.987257] RSP: 002b:00007fc53148e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1609.988115] RAX: ffffffffffffffda RBX: 00007fc53402bf60 RCX: 00007fc533f18b19 [ 1609.988904] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1609.989702] RBP: 00007fc533f72f6d R08: 0000000000000000 R09: 0000000000000000 [ 1609.990498] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1609.991303] R13: 00007fff9313d64f R14: 00007fc53148e300 R15: 0000000000022000 15:38:03 executing program 5: ioctl$F2FS_IOC_START_ATOMIC_WRITE(0xffffffffffffffff, 0xf501, 0x0) creat(&(0x7f00000001c0)='./file0\x00', 0x24) r0 = syz_mount_image$msdos(&(0x7f00000000c0), &(0x7f0000000100)='./file0\x00', 0x1fe6, 0x4, &(0x7f00000004c0)=[{&(0x7f0000000140)="75daa193fea2091ff6bdbd6f59ee756c2e34a1464c2bbc1248ce06caecd7deaff1b0bd244ff6eee4e41bb2d723239a24733a0e83a506efd340f26b9907901fc5446d63a0b990ad343dabcd88d4a154d86a24b1c4bda9abce8ed23613a7ae31e54fdeae6ba6ffd529f9", 0x69, 0x4f73}, {&(0x7f0000000200), 0x0, 0x10001}, {&(0x7f00000002c0)="420d1f91e54d57ebea339ceebd51b26c23555a331ce6deaf29077b0872e6fd6c900203fb5cb8830faabae3399c4c921dce15f6a477652a7c415f6fb6a43d59ef05ceb60afa3c8a62b0d91143eb3099bf2beb56f7b6e595aa5d9f71dfed486bae3391c0dab17a27c8b49b1940698889418bf1d353ad9369a0c8a36cab605e072f7786bfe8bfa319bad2e3f92a6a2411", 0x8f, 0x9}, {&(0x7f0000000380)="88ea2179566f99307f47d77ae267abc1408d7e4eaa472f972af4fcb300ab38f42fb289c7b50644d0a4b5d3ae2a1ad8df07d20bfead698640411f3efeab1dcf4458459392e2b85c3f763fed3b734478073f6e9ed4e3805a5a120a1a0a79d1c4be839d94e71f33c5578519b53bc836dbecb11988576a5ebc6f5665ae8cd49f20d36d392d1d6f911ecca4f2dbccbea95d4db1859727da0651fe06239b8592ba09b3a6969681af43d5b51fe300da57954226f9c5dbe6b77556512ee5700ed90756f429c9f5d3fc75302d427e8b2046642d6e69e088485c00c7e070ddb06515879ac4f40600a1b066313d2cadde919d9683e2", 0xf0, 0x3}], 0x200000, &(0x7f0000000540)={[{@dots}, {@fat=@time_offset={'time_offset', 0x3d, 0x5}}, {@nodots}, {@fat=@nfs_nostale_ro}, {@dots}], [{@seclabel}, {@seclabel}, {@context={'context', 0x3d, 'staff_u'}}, {@pcr={'pcr', 0x3d, 0x35}}]}) pipe2(&(0x7f0000000200)={0xffffffffffffffff}, 0x4000) r2 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) openat(r2, &(0x7f0000000180)='./file0\x00', 0x101803, 0x1) write(r2, &(0x7f0000000240)="01", 0x1) renameat2(r1, &(0x7f00000005c0)='./file0\x00', r2, &(0x7f0000000600)='./file0\x00', 0x5) openat(r0, &(0x7f0000000240)='./file0\x00', 0x12000, 0x29) openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) r3 = perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r3, 0x2405, 0xffffffffffffffff) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={&(0x7f0000000040), 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x34000, &(0x7f0000000480)={&(0x7f0000000080)={0x1c, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@typed={0x8, 0x17, 0x0, 0x0, @u32}]}, 0x1c}}, 0x40000) 15:38:04 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x2, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) 15:38:04 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) (fail_nth: 86) 15:38:04 executing program 4: sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="1400000000ffff00000000000000000007"], 0x14}}, 0x0) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0) ioctl$TUNSETQUEUE(r0, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) io_uring_setup(0x0, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x161}) dup2(0xffffffffffffffff, 0xffffffffffffffff) sendmsg$AUDIT_LIST_RULES(0xffffffffffffffff, 0x0, 0x8008000) syncfs(0xffffffffffffffff) ioctl$sock_ipv6_tunnel_SIOCADD6RD(0xffffffffffffffff, 0x89f9, &(0x7f0000000380)={'syztnl2\x00', &(0x7f0000000400)={'syztnl1\x00', 0x0, 0x4, 0xf8, 0x0, 0x7ef3, 0x42, @ipv4={'\x00', '\xff\xff', @remote}, @loopback, 0x10, 0x40, 0x1ff, 0x82ad}}) ioctl$TUNSETLINK(r0, 0x400454cd, 0x308) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1b, 0x0, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) r1 = socket$inet(0x2, 0xa, 0x0) ioctl$BTRFS_IOC_TREE_SEARCH_V2(0xffffffffffffffff, 0xc0709411, &(0x7f0000000040)={{0x0, 0x1800000000000, 0x5, 0x2, 0x2, 0x0, 0xfffffffffffeffff, 0x1eb, 0x71, 0x9c, 0x80, 0x401, 0x4, 0xffff, 0x7}, 0x48, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x40000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_inet_SIOCGIFNETMASK(r1, 0x8914, &(0x7f00000001c0)={'veth0_vlan\x00', {0x2, 0x0, @empty}}) 15:38:04 executing program 6: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:38:04 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x8, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) [ 1610.152389] device veth0_vlan entered promiscuous mode [ 1610.165257] FAULT_INJECTION: forcing a failure. [ 1610.165257] name failslab, interval 1, probability 0, space 0, times 0 [ 1610.167743] CPU: 1 PID: 11385 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1610.169265] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1610.171104] Call Trace: [ 1610.171675] dump_stack+0x107/0x167 [ 1610.172484] should_fail.cold+0x5/0xa [ 1610.173340] ? create_object.isra.0+0x3a/0xa20 [ 1610.174358] should_failslab+0x5/0x20 [ 1610.175207] kmem_cache_alloc+0x5b/0x310 [ 1610.176089] create_object.isra.0+0x3a/0xa20 [ 1610.177043] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1610.178147] kmem_cache_alloc+0x159/0x310 [ 1610.179077] __kernfs_new_node+0xd4/0x860 [ 1610.179986] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1610.181025] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1610.182083] ? wait_for_completion_io+0x270/0x270 15:38:04 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0xf, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) [ 1610.183146] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1610.184416] kernfs_new_node+0x93/0x120 [ 1610.185283] __kernfs_create_file+0x51/0x350 [ 1610.186244] sysfs_add_file_mode_ns+0x221/0x560 [ 1610.187286] internal_create_group+0x324/0xb30 [ 1610.188285] ? sysfs_remove_group+0x170/0x170 [ 1610.189259] ? kernfs_name_hash+0xe7/0x110 [ 1610.190187] ? kernfs_find_ns+0x256/0x380 [ 1610.191108] sysfs_slab_add+0x188/0x200 [ 1610.191974] __kmem_cache_create+0x3db/0x520 [ 1610.192937] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1610.194028] p9_client_create+0xc2b/0x11c0 [ 1610.194963] ? p9_client_flush+0x430/0x430 [ 1610.195898] ? trace_hardirqs_on+0x5b/0x180 [ 1610.196838] ? lockdep_init_map_type+0x2c7/0x780 [ 1610.197872] ? __raw_spin_lock_init+0x36/0x110 [ 1610.198871] v9fs_session_init+0x1dd/0x1680 [ 1610.199838] ? lock_release+0x680/0x680 [ 1610.200714] ? kmem_cache_alloc_trace+0x151/0x320 [ 1610.201755] ? v9fs_show_options+0x690/0x690 [ 1610.202721] ? trace_hardirqs_on+0x5b/0x180 [ 1610.203666] ? kasan_unpoison_shadow+0x33/0x50 [ 1610.204658] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1610.205766] v9fs_mount+0x79/0x8f0 [ 1610.206544] ? v9fs_write_inode+0x60/0x60 [ 1610.207461] legacy_get_tree+0x105/0x220 [ 1610.208348] vfs_get_tree+0x8e/0x300 [ 1610.209157] path_mount+0x13be/0x20b0 [ 1610.209993] ? strncpy_from_user+0x9e/0x470 [ 1610.210935] ? finish_automount+0xa90/0xa90 [ 1610.211889] ? getname_flags.part.0+0x1dd/0x4f0 [ 1610.212897] ? _copy_from_user+0xfb/0x1b0 [ 1610.213810] __x64_sys_mount+0x282/0x300 [ 1610.214692] ? copy_mnt_ns+0xa00/0xa00 [ 1610.215557] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1610.216701] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1610.217823] do_syscall_64+0x33/0x40 [ 1610.218625] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1610.219743] RIP: 0033:0x7f76b700cb19 [ 1610.220548] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1610.224503] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1610.226141] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1610.227689] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1610.229224] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1610.230766] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1610.232319] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 15:38:04 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0xf0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) [ 1610.289881] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1610.291080] CPU: 0 PID: 11347 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1610.291860] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1610.292811] Call Trace: [ 1610.293114] dump_stack+0x107/0x167 [ 1610.293532] sysfs_warn_dup.cold+0x1c/0x29 [ 1610.294013] sysfs_do_create_link_sd+0x122/0x140 [ 1610.294551] sysfs_create_link+0x5f/0xc0 [ 1610.295019] device_add+0x703/0x1c50 [ 1610.295457] ? devlink_add_symlinks+0x970/0x970 [ 1610.295984] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1610.296581] wiphy_register+0x1da6/0x2850 [ 1610.297056] ? wiphy_unregister+0xb90/0xb90 [ 1610.297557] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1610.298157] ieee80211_register_hw+0x23c5/0x38b0 [ 1610.298706] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1610.299279] ? net_generic+0xdb/0x2b0 [ 1610.299715] ? lockdep_init_map_type+0x2c7/0x780 [ 1610.300249] ? memset+0x20/0x50 [ 1610.300622] ? __hrtimer_init+0x12c/0x270 [ 1610.301090] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1610.301667] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1610.302190] ? hwsim_new_radio_nl+0x967/0x1080 [ 1610.302713] ? memcpy+0x39/0x60 [ 1610.303098] hwsim_new_radio_nl+0x991/0x1080 [ 1610.303586] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1610.304152] ? trace_hardirqs_on+0x5b/0x180 [ 1610.304628] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1610.305207] genl_family_rcv_msg_doit+0x22d/0x330 [ 1610.305730] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1610.306448] ? cap_capable+0x1cd/0x230 [ 1610.306893] ? ns_capable+0xe2/0x110 [ 1610.307307] genl_rcv_msg+0x33c/0x5a0 [ 1610.307727] ? genl_get_cmd+0x480/0x480 [ 1610.308162] ? lock_acquire+0x1b9/0x470 [ 1610.308597] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1610.309181] ? lock_release+0x680/0x680 [ 1610.309624] ? __lockdep_reset_lock+0x180/0x180 [ 1610.310149] netlink_rcv_skb+0x14b/0x430 [ 1610.310586] ? genl_get_cmd+0x480/0x480 [ 1610.311035] ? netlink_ack+0xab0/0xab0 [ 1610.311497] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1610.312008] ? is_vmalloc_addr+0x7b/0xb0 [ 1610.312468] genl_rcv+0x24/0x40 [ 1610.312824] netlink_unicast+0x549/0x7f0 [ 1610.313278] ? netlink_attachskb+0x870/0x870 [ 1610.313766] ? __sanitizer_cov_trace_pc+0x4/0x60 [ 1610.314299] netlink_sendmsg+0x90f/0xdf0 [ 1610.314761] ? netlink_unicast+0x7f0/0x7f0 [ 1610.315247] ? netlink_unicast+0x7f0/0x7f0 [ 1610.315724] __sock_sendmsg+0x154/0x190 [ 1610.316167] ____sys_sendmsg+0x70d/0x870 [ 1610.316624] ? sock_write_iter+0x3d0/0x3d0 [ 1610.317094] ? do_recvmmsg+0x6d0/0x6d0 [ 1610.317522] ? perf_trace_lock+0xac/0x490 [ 1610.317984] ? __lockdep_reset_lock+0x180/0x180 [ 1610.318509] ___sys_sendmsg+0xf3/0x170 [ 1610.318946] ? sendmsg_copy_msghdr+0x160/0x160 [ 1610.319470] ? lock_downgrade+0x6d0/0x6d0 [ 1610.319941] ? __fget_files+0x325/0x4c0 [ 1610.320394] ? __fget_files+0x296/0x4c0 [ 1610.320844] ? __fget_light+0xea/0x290 [ 1610.321285] __sys_sendmsg+0xe5/0x1b0 [ 1610.321704] ? __sys_sendmsg_sock+0x40/0x40 [ 1610.322176] ? trace_hardirqs_on+0x5b/0x180 [ 1610.322663] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1610.323241] ? syscall_enter_from_user_mode+0x27/0x50 [ 1610.323818] do_syscall_64+0x33/0x40 [ 1610.324228] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1610.324803] RIP: 0033:0x7f07e63f4b19 [ 1610.325217] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1610.327232] RSP: 002b:00007f07e396a188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1610.328072] RAX: ffffffffffffffda RBX: 00007f07e6507f60 RCX: 00007f07e63f4b19 [ 1610.328868] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1610.329655] RBP: 00007f07e644ef6d R08: 0000000000000000 R09: 0000000000000000 [ 1610.330437] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1610.331239] R13: 00007fff1f25f23f R14: 00007f07e396a300 R15: 0000000000022000 [ 1610.458794] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1610.459794] CPU: 0 PID: 11361 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1610.460541] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1610.461429] Call Trace: [ 1610.461724] dump_stack+0x107/0x167 [ 1610.462139] sysfs_warn_dup.cold+0x1c/0x29 [ 1610.462596] sysfs_do_create_link_sd+0x122/0x140 [ 1610.463118] sysfs_create_link+0x5f/0xc0 [ 1610.463561] device_add+0x703/0x1c50 [ 1610.463976] ? devlink_add_symlinks+0x970/0x970 [ 1610.464486] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1610.465067] wiphy_register+0x1da6/0x2850 [ 1610.465534] ? wiphy_unregister+0xb90/0xb90 [ 1610.465998] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1610.466603] ? ieee80211_register_hw+0x239f/0x38b0 [ 1610.467162] ieee80211_register_hw+0x23c5/0x38b0 [ 1610.467696] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1610.468233] ? net_generic+0xdb/0x2b0 [ 1610.468669] ? memset+0x20/0x50 [ 1610.469037] ? __hrtimer_init+0x12c/0x270 [ 1610.469508] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1610.470058] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1610.470571] ? hwsim_new_radio_nl+0x967/0x1080 [ 1610.471080] ? memcpy+0x39/0x60 [ 1610.471447] hwsim_new_radio_nl+0x991/0x1080 [ 1610.471933] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1610.472522] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1610.473247] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1610.473975] genl_family_rcv_msg_doit+0x22d/0x330 [ 1610.474505] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1610.475255] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1610.475842] ? cap_capable+0x1cd/0x230 [ 1610.476289] ? ns_capable+0xe2/0x110 [ 1610.476709] genl_rcv_msg+0x33c/0x5a0 [ 1610.477138] ? genl_get_cmd+0x480/0x480 [ 1610.477574] ? mark_held_locks+0x9e/0xe0 [ 1610.478028] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1610.478606] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1610.479214] ? trace_hardirqs_on+0x5b/0x180 [ 1610.479698] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1610.480296] netlink_rcv_skb+0x14b/0x430 [ 1610.480745] ? genl_get_cmd+0x480/0x480 [ 1610.481200] ? netlink_ack+0xab0/0xab0 [ 1610.481645] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1610.482153] ? is_vmalloc_addr+0x7b/0xb0 [ 1610.482618] genl_rcv+0x24/0x40 [ 1610.482990] netlink_unicast+0x549/0x7f0 [ 1610.483449] ? netlink_attachskb+0x870/0x870 [ 1610.483926] ? __virt_addr_valid+0x128/0x350 [ 1610.484415] netlink_sendmsg+0x90f/0xdf0 [ 1610.484866] ? netlink_unicast+0x7f0/0x7f0 [ 1610.485348] ? netlink_unicast+0x7f0/0x7f0 [ 1610.485817] __sock_sendmsg+0x154/0x190 [ 1610.486263] ____sys_sendmsg+0x70d/0x870 [ 1610.486715] ? sock_write_iter+0x3d0/0x3d0 [ 1610.487180] ? do_recvmmsg+0x6d0/0x6d0 [ 1610.487602] ? perf_trace_lock+0xac/0x490 [ 1610.488067] ? __lockdep_reset_lock+0x180/0x180 [ 1610.488573] ? __lock_acquire+0xbb1/0x5b00 [ 1610.489057] ___sys_sendmsg+0xf3/0x170 [ 1610.489491] ? sendmsg_copy_msghdr+0x160/0x160 [ 1610.490005] ? lock_downgrade+0x6d0/0x6d0 [ 1610.490468] ? __lockdep_reset_lock+0x180/0x180 [ 1610.490986] ? futex_exit_release+0x220/0x220 [ 1610.491490] ? __fget_files+0x296/0x4c0 [ 1610.491938] ? __fget_light+0xea/0x290 [ 1610.492370] __sys_sendmsg+0xe5/0x1b0 [ 1610.492787] ? __sys_sendmsg_sock+0x40/0x40 [ 1610.493268] ? trace_hardirqs_on+0x5b/0x180 [ 1610.493766] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1610.494346] ? syscall_enter_from_user_mode+0x27/0x50 [ 1610.494921] do_syscall_64+0x33/0x40 [ 1610.495330] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1610.495900] RIP: 0033:0x7eff88fa0b19 [ 1610.496313] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1610.498330] RSP: 002b:00007eff86516188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1610.499167] RAX: ffffffffffffffda RBX: 00007eff890b3f60 RCX: 00007eff88fa0b19 [ 1610.499959] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1610.500744] RBP: 00007eff88ffaf6d R08: 0000000000000000 R09: 0000000000000000 [ 1610.501524] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1610.502301] R13: 00007ffe20cbc2ff R14: 00007eff86516300 R15: 0000000000022000 [ 1610.552161] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1610.553120] CPU: 0 PID: 11367 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 1610.553856] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1610.554737] Call Trace: [ 1610.555029] dump_stack+0x107/0x167 [ 1610.555440] sysfs_warn_dup.cold+0x1c/0x29 [ 1610.555894] sysfs_do_create_link_sd+0x122/0x140 [ 1610.556401] sysfs_create_link+0x5f/0xc0 [ 1610.556839] device_add+0x703/0x1c50 [ 1610.557242] ? devlink_add_symlinks+0x970/0x970 [ 1610.557744] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1610.558310] wiphy_register+0x1da6/0x2850 [ 1610.558771] ? wiphy_unregister+0xb90/0xb90 [ 1610.559255] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1610.559831] ieee80211_register_hw+0x23c5/0x38b0 [ 1610.560353] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1610.560866] ? net_generic+0xdb/0x2b0 [ 1610.561289] ? memset+0x20/0x50 [ 1610.561647] ? __hrtimer_init+0x12c/0x270 [ 1610.562096] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1610.562646] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1610.563156] ? hwsim_new_radio_nl+0x967/0x1080 [ 1610.563646] ? memcpy+0x39/0x60 [ 1610.564016] hwsim_new_radio_nl+0x991/0x1080 [ 1610.564491] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1610.565054] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1610.565754] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1610.566449] genl_family_rcv_msg_doit+0x22d/0x330 [ 1610.566968] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1610.567683] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1610.568260] ? cap_capable+0x1cd/0x230 [ 1610.568691] ? ns_capable+0xe2/0x110 [ 1610.569105] genl_rcv_msg+0x33c/0x5a0 [ 1610.569513] ? genl_get_cmd+0x480/0x480 [ 1610.569937] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1610.570494] ? lock_release+0x680/0x680 [ 1610.570925] netlink_rcv_skb+0x14b/0x430 [ 1610.571368] ? genl_get_cmd+0x480/0x480 [ 1610.571797] ? netlink_ack+0xab0/0xab0 [ 1610.572227] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1610.572720] ? is_vmalloc_addr+0x7b/0xb0 [ 1610.573160] genl_rcv+0x24/0x40 [ 1610.573511] netlink_unicast+0x549/0x7f0 [ 1610.573953] ? netlink_attachskb+0x870/0x870 [ 1610.574424] ? __virt_addr_valid+0x128/0x350 [ 1610.574906] netlink_sendmsg+0x90f/0xdf0 [ 1610.575354] ? netlink_unicast+0x7f0/0x7f0 [ 1610.575815] ? netlink_unicast+0x7f0/0x7f0 [ 1610.576269] __sock_sendmsg+0x154/0x190 [ 1610.576697] ____sys_sendmsg+0x70d/0x870 [ 1610.577137] ? sock_write_iter+0x3d0/0x3d0 [ 1610.577592] ? do_recvmmsg+0x6d0/0x6d0 [ 1610.578008] ? perf_trace_lock+0xac/0x490 [ 1610.578450] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1610.579028] ? __lockdep_reset_lock+0x180/0x180 [ 1610.579559] ___sys_sendmsg+0xf3/0x170 [ 1610.579976] ? sendmsg_copy_msghdr+0x160/0x160 [ 1610.580472] ? lock_downgrade+0x6d0/0x6d0 [ 1610.580921] ? finish_task_switch+0x126/0x5d0 [ 1610.581402] ? lock_downgrade+0x6d0/0x6d0 [ 1610.581857] ? __fget_files+0x296/0x4c0 [ 1610.582293] ? __fget_light+0xea/0x290 [ 1610.582715] __sys_sendmsg+0xe5/0x1b0 [ 1610.583128] ? __sys_sendmsg_sock+0x40/0x40 [ 1610.583600] ? io_schedule_timeout+0x140/0x140 [ 1610.584105] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1610.584663] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1610.585212] ? trace_hardirqs_on+0x5b/0x180 [ 1610.585681] do_syscall_64+0x33/0x40 [ 1610.586078] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1610.586627] RIP: 0033:0x7f1fb3078b19 [ 1610.587025] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1610.588988] RSP: 002b:00007f1fb05ee188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1610.589801] RAX: ffffffffffffffda RBX: 00007f1fb318bf60 RCX: 00007f1fb3078b19 [ 1610.590556] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1610.591319] RBP: 00007f1fb30d2f6d R08: 0000000000000000 R09: 0000000000000000 [ 1610.592077] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1610.592839] R13: 00007ffff99fd67f R14: 00007f1fb05ee300 R15: 0000000000022000 [ 1610.647145] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1610.648234] CPU: 0 PID: 11383 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1610.648966] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1610.649853] Call Trace: [ 1610.650139] dump_stack+0x107/0x167 [ 1610.650535] sysfs_warn_dup.cold+0x1c/0x29 [ 1610.650990] sysfs_do_create_link_sd+0x122/0x140 [ 1610.651509] sysfs_create_link+0x5f/0xc0 [ 1610.651962] device_add+0x703/0x1c50 [ 1610.652364] ? devlink_add_symlinks+0x970/0x970 [ 1610.652863] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1610.653436] wiphy_register+0x1da6/0x2850 [ 1610.653890] ? wiphy_unregister+0xb90/0xb90 [ 1610.654366] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1610.654942] ieee80211_register_hw+0x23c5/0x38b0 [ 1610.655471] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1610.655984] ? net_generic+0xdb/0x2b0 [ 1610.656403] ? lockdep_init_map_type+0x2c7/0x780 [ 1610.656922] ? memset+0x20/0x50 [ 1610.657275] ? __hrtimer_init+0x12c/0x270 [ 1610.657725] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1610.658273] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1610.658766] ? hwsim_new_radio_nl+0x967/0x1080 [ 1610.659265] ? memcpy+0x39/0x60 [ 1610.659627] hwsim_new_radio_nl+0x991/0x1080 [ 1610.660103] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1610.660669] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1610.661372] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1610.662070] genl_family_rcv_msg_doit+0x22d/0x330 [ 1610.662588] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1610.663305] ? cap_capable+0x1cd/0x230 [ 1610.663737] ? ns_capable+0xe2/0x110 [ 1610.664146] genl_rcv_msg+0x33c/0x5a0 [ 1610.664554] ? genl_get_cmd+0x480/0x480 [ 1610.664979] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1610.665544] netlink_rcv_skb+0x14b/0x430 [ 1610.665984] ? genl_get_cmd+0x480/0x480 [ 1610.666426] ? netlink_ack+0xab0/0xab0 [ 1610.666853] ? down_read+0x10f/0x430 [ 1610.667258] ? genl_get_cmd+0x480/0x480 [ 1610.667694] genl_rcv+0x24/0x40 [ 1610.668046] netlink_unicast+0x549/0x7f0 [ 1610.668488] ? netlink_attachskb+0x870/0x870 [ 1610.668966] ? __virt_addr_valid+0x128/0x350 [ 1610.669447] netlink_sendmsg+0x90f/0xdf0 [ 1610.669887] ? netlink_unicast+0x7f0/0x7f0 [ 1610.670351] ? netlink_unicast+0x7f0/0x7f0 [ 1610.670805] __sock_sendmsg+0x154/0x190 [ 1610.671238] ____sys_sendmsg+0x70d/0x870 [ 1610.671674] ? sock_write_iter+0x3d0/0x3d0 [ 1610.672121] ? do_recvmmsg+0x6d0/0x6d0 [ 1610.672537] ? perf_trace_lock+0xac/0x490 [ 1610.672989] ? __lockdep_reset_lock+0x180/0x180 [ 1610.673481] ? perf_trace_lock+0xac/0x490 [ 1610.673932] ___sys_sendmsg+0xf3/0x170 [ 1610.674351] ? sendmsg_copy_msghdr+0x160/0x160 [ 1610.674850] ? lock_downgrade+0x6d0/0x6d0 [ 1610.675343] ? finish_task_switch+0x126/0x5d0 [ 1610.675824] ? lock_downgrade+0x6d0/0x6d0 [ 1610.676277] ? __fget_files+0x296/0x4c0 [ 1610.676712] ? __fget_light+0xea/0x290 [ 1610.677135] __sys_sendmsg+0xe5/0x1b0 [ 1610.677544] ? __sys_sendmsg_sock+0x40/0x40 [ 1610.678012] ? io_schedule_timeout+0x140/0x140 [ 1610.678514] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1610.679079] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1610.679640] ? trace_hardirqs_on+0x5b/0x180 [ 1610.680107] do_syscall_64+0x33/0x40 [ 1610.680511] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1610.681056] RIP: 0033:0x7fc533f18b19 [ 1610.681454] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1610.683419] RSP: 002b:00007fc53148e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1610.684237] RAX: ffffffffffffffda RBX: 00007fc53402bf60 RCX: 00007fc533f18b19 [ 1610.684994] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1610.685750] RBP: 00007fc533f72f6d R08: 0000000000000000 R09: 0000000000000000 [ 1610.686509] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1610.687273] R13: 00007fff9313d64f R14: 00007fc53148e300 R15: 0000000000022000 15:38:04 executing program 0: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 15:38:04 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) (fail_nth: 87) [ 1610.706250] FAT-fs (loop5): Unrecognized mount option "pcr=00000000000000000053" or missing value [ 1610.716039] cgroup2: Unknown parameter 'DÅ#ùÄA*\U»ò®:dзáf#‘ÆQVÉÌE]z\Ý¡€Ó›r£Ãº' [ 1610.718009] FAULT_INJECTION: forcing a failure. [ 1610.718009] name failslab, interval 1, probability 0, space 0, times 0 [ 1610.719308] CPU: 0 PID: 11401 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1610.720061] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1610.720973] Call Trace: [ 1610.721269] dump_stack+0x107/0x167 [ 1610.721678] should_fail.cold+0x5/0xa [ 1610.722112] ? create_object.isra.0+0x3a/0xa20 [ 1610.722609] should_failslab+0x5/0x20 [ 1610.723038] kmem_cache_alloc+0x5b/0x310 [ 1610.723505] create_object.isra.0+0x3a/0xa20 [ 1610.724006] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1610.724572] kmem_cache_alloc+0x159/0x310 [ 1610.725043] __kernfs_new_node+0xd4/0x860 [ 1610.725503] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1610.726051] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1610.726575] ? wait_for_completion_io+0x270/0x270 [ 1610.727113] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1610.727690] kernfs_new_node+0x93/0x120 [ 1610.728139] __kernfs_create_file+0x51/0x350 [ 1610.728631] sysfs_add_file_mode_ns+0x221/0x560 [ 1610.729165] internal_create_group+0x324/0xb30 [ 1610.729680] ? sysfs_remove_group+0x170/0x170 [ 1610.730178] ? kernfs_name_hash+0xe7/0x110 [ 1610.730653] ? kernfs_find_ns+0x256/0x380 [ 1610.731129] sysfs_slab_add+0x188/0x200 [ 1610.731572] __kmem_cache_create+0x3db/0x520 [ 1610.732066] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1610.732628] p9_client_create+0xc2b/0x11c0 [ 1610.733102] ? p9_client_flush+0x430/0x430 [ 1610.733576] ? trace_hardirqs_on+0x5b/0x180 [ 1610.734064] ? lockdep_init_map_type+0x2c7/0x780 [ 1610.734603] ? __raw_spin_lock_init+0x36/0x110 [ 1610.735123] v9fs_session_init+0x1dd/0x1680 [ 1610.735603] ? lock_release+0x680/0x680 [ 1610.736058] ? kmem_cache_alloc_trace+0x151/0x320 [ 1610.736594] ? v9fs_show_options+0x690/0x690 [ 1610.737090] ? trace_hardirqs_on+0x5b/0x180 [ 1610.737573] ? kasan_unpoison_shadow+0x33/0x50 [ 1610.738086] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1610.738662] v9fs_mount+0x79/0x8f0 [ 1610.739067] ? v9fs_write_inode+0x60/0x60 [ 1610.739526] legacy_get_tree+0x105/0x220 [ 1610.739988] vfs_get_tree+0x8e/0x300 [ 1610.740401] path_mount+0x13be/0x20b0 [ 1610.740832] ? strncpy_from_user+0x9e/0x470 [ 1610.741318] ? finish_automount+0xa90/0xa90 [ 1610.741797] ? getname_flags.part.0+0x1dd/0x4f0 [ 1610.742324] ? _copy_from_user+0xfb/0x1b0 [ 1610.742791] __x64_sys_mount+0x282/0x300 [ 1610.743254] ? copy_mnt_ns+0xa00/0xa00 [ 1610.743687] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1610.744261] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1610.744848] do_syscall_64+0x33/0x40 [ 1610.745260] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1610.745826] RIP: 0033:0x7f76b700cb19 [ 1610.746237] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1610.748281] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1610.749125] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1610.749916] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1610.750713] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1610.751530] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1610.752330] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 [ 1610.765570] cgroup2: Unknown parameter 'DÅ#ùÄA*\U»ò®:dзáf#‘ÆQVÉÌE]z\Ý¡€Ó›r£Ãº' 15:38:04 executing program 3: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)) syz_io_uring_submit(0x0, 0x0, 0x0, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:38:04 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x27a, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) 15:38:04 executing program 4: r0 = syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, @perf_config_ext={0x0, 0xfffffffffffffffd}, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x2) ioctl$PERF_EVENT_IOC_PERIOD(r1, 0x40082404, &(0x7f0000000240)) clone3(&(0x7f0000000000)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) execveat(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x1100) perf_event_open(0x0, 0x0, 0x0, r1, 0x9) r2 = dup2(r1, r0) mknodat$loop(0xffffffffffffffff, 0x0, 0x0, 0x1) clone3(0x0, 0x0) r3 = accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x80000) setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, 0x0, 0x0) r4 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x4, 0x10, r2, 0x8000000) syz_io_uring_submit(r4, 0x0, &(0x7f0000000400)=@IORING_OP_WRITE={0x17, 0x1, 0x0, @fd_index=0xa, 0x44e, &(0x7f0000000340)="c8b63e72edf9ad0bf6af703333083230c7b95c4b2bc3c7da6b50668adf99b7ddd47c9e8e5eb63b82ac5d3dcf63dd15672ac9f617c5b7e449448b93fa065daf6968c92656fbbda4b7772bbf941ce45a03ba8780dfd42e34352d60cdca628a80f44a0244209546d05a510a0596aaa455b3d842f64490ca3ac97d308c01e412543425e8d94cfa0f0c1c70f2a3d27327e044a1", 0x91, 0x3}, 0x10000) mount$cgroup2(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000480), 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="44c523f9c44111082a5c55bbf2ae3a64d0b7e1662391c65156c9cc455d7a5cdda19080d39b72a3c31eba1207"]) stat(&(0x7f00000001c0)='.\x00', &(0x7f0000001c00)) setresuid(0xffffffffffffffff, 0x0, 0x0) llistxattr(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) 15:38:04 executing program 4: flock(0xffffffffffffffff, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(0xffffffffffffffff, 0x40086607, 0x0) r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x6, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x100, 0xfc, 0xa, 0x7fbc0000}]}) r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/tty/drivers\x00', 0x0, 0x0) preadv(r1, &(0x7f00000000c0)=[{&(0x7f0000000340)=""/146, 0x92}], 0x1, 0x7fffffff, 0x0) r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000580)='./binderfs/custom1\x00', 0x0, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r4 = openat(r3, &(0x7f00000000c0)='./file0\x00', 0x200000, 0x6b) r5 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x40000, 0x4, &(0x7f0000000200)=[{&(0x7f0000010000)="20000000000100000c000000d40000000f000000010000000000000000000000002000000020000020000000d7f4655fd7f4655f0100ffff53ef010001000000d7f4655f000000000000000001000000000000000b00000000020000280200000284", 0x62, 0x400}, {&(0x7f0000010400)="030000000400000005000000d4000f", 0xf, 0x800}, {&(0x7f0000000500)="ffffffffff070000000000000000000000000000000000000000000000000080ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x402, 0xc00}, {&(0x7f0000010e00)="ed41000000040000d7f4655fd7f4655fd7f4655f000000000000040002", 0x1d, 0x1600}], 0x0, &(0x7f00000003c0)=ANY=[]) name_to_handle_at(r5, &(0x7f0000000400)='./file0\x00', &(0x7f0000000440)=ANY=[@ANYBLOB="0000004e00000108000000000000000200000000000000060000001d000000ffffffff"], &(0x7f0000000480), 0x1c00) pread64(r5, &(0x7f00000004c0)=""/10, 0xa, 0x4) r6 = socket$netlink(0x10, 0x3, 0x0) write$binfmt_script(r6, &(0x7f0000000ac0)={'#! ', './file1', [{0x20, '-)&*\x1e&,]'}], 0xa, "3b34943236e0648f51305f4fa106b91e7e9ff1cdd7ba5e0d891a2aa45d04d716f646d5032092d94b5ae9e5617cef23dd067ae4be674c4fb8b117b4dbb1f21a08407dd98afa574381"}, 0x5c) setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000000400)={0x6, &(0x7f0000000240)=[{0x659, 0x5, 0xae, 0x7f}, {0x7, 0x7f, 0x0, 0x8f9}, {0x7ff, 0x3, 0x2, 0x200}, {0x7, 0x1f, 0x78, 0x2}, {0xff, 0x5, 0x1, 0xfff}, {0xa, 0x1, 0x3, 0x5}]}, 0x10) r7 = socket$inet6_udplite(0xa, 0x2, 0x88) vmsplice(r7, &(0x7f0000000780)=[{&(0x7f00000008c0)="9b4021f832e6b0237910e3918f81e72020bd1aec7449cef81011578e5eb6b19ea805106e4b4b8ee8c342d263577cf209c3002cf3f1ee3ee778cce978b0fd66701070c278a1f4764db78590f49b5f7b995bf379ebfb50f726070000002441eb11aa7c6bf6e5992ce23b4e6b94c35041356f9e270b60fb24466de7bc36c66c2bf3d79125b67c30da402a385d2c7af208e5ae42721ee43b26c10dda5de184279cf16da1c06044c1627cd094dcb56b0b985b15fca8c5bf43c5de79cbfe73ef3bfab014601587772c39427f", 0xc9}, {&(0x7f0000000280)="c2fa69cf47b8f487d7fb89c90b6e9d1b9dda3726b11627bacf16725007260643ce6ef2bfe7c3b5e17d521ce3d79a21a51c28dc5ee55d420d334796b0489280f1657c318c827b8faf5dba268aec7d5ddab3ea6badd8b50049324d144d149c1b7c0c451ca1716f83ec30c4204ec462cab97c306f2e0607dac8ecc5854bd199e79f3f82de99931cb4a1c4c05755d6e861e7cd8879f523403a2744c79b94d1d90104bdf2", 0xa2}, {&(0x7f00000009c0)="83752033739236850e4dc6c08a2d0bcab5db305135cdacde500a612d612cfdb2ece16b2f88d3ab6a032d8abf44a4bb268f95504bb2f918ee7c2e505b977ec023a9809013d0a97de4af2a5041ee256aea63304e04354595f499497465bbdcec25a248e5ed8aacdfb859f5608f4940549d6bb9b5e8db7fcf26488fb2e90217bf3141e747fe3f515455d3f28652856eccdb4b940baec8daec9281fd2dadd28ee8a9f51aa84d37e3a2dcba26abbbd9ad8189d0c45b69ab7b7005369b31eba4a552fc8f349e451f0d840dcd94bc3623808968c3920c04dc4fb558046406958505743432da9c37251ec99294c0", 0xdc}, {&(0x7f00000001c0)="9a4adae4880c7194b6b0b659a074e3ddcf19fee534434ad75522268547163ab1238dcbe97c2a0120e2d13ef4385cec29b6db520eb8ebce20d3479ab25d73c331bbc9f964d3b7854d2d0363626e84cfe314101c4e0300000000000000fbc810ff8d86de8806f38dce6ffbd17b9a921d09d8c7fca00157c4a0ec52963ad42b", 0xffffff7e}, {&(0x7f0000000800)="a1d2ad70237676982ac15aa95e28365401e42b11659b72b3aa2ce297f565135624ac16233d97194846427aa4daaa163bfe16c17eee07fd86d1017aa4717e508a98f1ed18e6cd8513ae86408b432c2012c8300401325c9ad9d48bbd68508ea9a0aba7cbe3e739a74438d9055c0c0356f9277257c57d48bb55b284f67f0fbf3e6fafbc9cc9bae5dd580e2c1ebcba2637a11bd5d10166595ec85b9f5acd3655b2fcd96fb3c3136624d7fe369077", 0xac}], 0x5, 0x1) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x5, &(0x7f0000000440)=[{&(0x7f0000000040)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b000000", 0x58, 0x400}, {0x0}, {0x0, 0x0, 0xffffffffdffffff8}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x1}, {&(0x7f0000011600)="ed41000000080000dff46552e0f4655fe0f4655f000000000000040004", 0x1d, 0x2100}], 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="76f0acc6fce4d9"]) ioctl$FICLONE(r0, 0x40049409, 0xffffffffffffffff) dup2(r2, r6) 15:38:04 executing program 5: pipe2(&(0x7f0000000000)={0x0, 0x0}, 0x0) read(r0, &(0x7f00000012c0)=""/4096, 0x1000) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r4, 0x0, r3, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) r5 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_submit(r6, r7, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x4}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r5, 0x0) r8 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r5, 0x8000000) syz_io_uring_submit(r8, r7, &(0x7f00000002c0)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x1, 0x4007}, 0x80000001) syz_io_uring_submit(0x0, r7, &(0x7f00000000c0)=@IORING_OP_READV=@use_registered_buffer={0x1, 0x5, 0x2000, @fd_index=0x6, 0x2, 0x0, 0x0, 0x2, 0x1, {0x1}}, 0x1000) copy_file_range(r2, &(0x7f0000000040)=0xfff, r3, &(0x7f0000000080)=0xc417, 0x3, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) [ 1610.860544] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1610.861805] CPU: 0 PID: 11412 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1610.862559] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1610.863485] Call Trace: [ 1610.863798] dump_stack+0x107/0x167 [ 1610.864201] sysfs_warn_dup.cold+0x1c/0x29 [ 1610.864664] sysfs_do_create_link_sd+0x122/0x140 [ 1610.865187] sysfs_create_link+0x5f/0xc0 [ 1610.865631] device_add+0x703/0x1c50 [ 1610.866046] ? devlink_add_symlinks+0x970/0x970 [ 1610.866555] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1610.867152] wiphy_register+0x1da6/0x2850 [ 1610.867611] ? wiphy_unregister+0xb90/0xb90 [ 1610.868079] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1610.868681] ? ieee80211_register_hw+0x239f/0x38b0 [ 1610.869213] ieee80211_register_hw+0x23c5/0x38b0 [ 1610.869745] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1610.870274] ? net_generic+0xdb/0x2b0 [ 1610.870703] ? memset+0x20/0x50 [ 1610.871115] ? __hrtimer_init+0x12c/0x270 [ 1610.871572] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1610.872154] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1610.872673] ? hwsim_new_radio_nl+0x967/0x1080 [ 1610.873184] ? memcpy+0x39/0x60 [ 1610.873545] hwsim_new_radio_nl+0x991/0x1080 [ 1610.874039] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1610.874621] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1610.875364] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1610.876243] genl_family_rcv_msg_doit+0x22d/0x330 [ 1610.876861] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1610.877596] ? cap_capable+0x1cd/0x230 [ 1610.878051] ? ns_capable+0xe2/0x110 [ 1610.878468] genl_rcv_msg+0x33c/0x5a0 [ 1610.878903] ? genl_get_cmd+0x480/0x480 [ 1610.879362] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1610.879942] ? lock_release+0x680/0x680 [ 1610.880381] ? __lockdep_reset_lock+0x180/0x180 [ 1610.880900] netlink_rcv_skb+0x14b/0x430 [ 1610.881357] ? genl_get_cmd+0x480/0x480 [ 1610.881801] ? netlink_ack+0xab0/0xab0 [ 1610.882253] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1610.882764] ? is_vmalloc_addr+0x7b/0xb0 [ 1610.883232] genl_rcv+0x24/0x40 [ 1610.883594] netlink_unicast+0x549/0x7f0 [ 1610.884061] ? netlink_attachskb+0x870/0x870 [ 1610.884557] ? __virt_addr_valid+0x128/0x350 [ 1610.885056] netlink_sendmsg+0x90f/0xdf0 [ 1610.885526] ? netlink_unicast+0x7f0/0x7f0 [ 1610.886010] ? netlink_unicast+0x7f0/0x7f0 [ 1610.886482] __sock_sendmsg+0x154/0x190 [ 1610.886925] ____sys_sendmsg+0x70d/0x870 [ 1610.887394] ? sock_write_iter+0x3d0/0x3d0 [ 1610.887864] ? do_recvmmsg+0x6d0/0x6d0 [ 1610.888300] ? perf_trace_lock+0xac/0x490 [ 1610.888774] ? __lockdep_reset_lock+0x180/0x180 [ 1610.889293] ? perf_trace_lock+0xac/0x490 [ 1610.889758] ___sys_sendmsg+0xf3/0x170 [ 1610.890195] ? sendmsg_copy_msghdr+0x160/0x160 [ 1610.890710] ? lock_downgrade+0x6d0/0x6d0 [ 1610.891177] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1610.891762] ? trace_hardirqs_on+0x5b/0x180 [ 1610.892243] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1610.892860] ? __fget_files+0x296/0x4c0 [ 1610.893311] ? __fget_light+0xea/0x290 [ 1610.893752] __sys_sendmsg+0xe5/0x1b0 [ 1610.894174] ? __sys_sendmsg_sock+0x40/0x40 [ 1610.894664] ? io_schedule_timeout+0x140/0x140 [ 1610.895234] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1610.895962] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1610.896552] ? trace_hardirqs_on+0x5b/0x180 [ 1610.897051] do_syscall_64+0x33/0x40 [ 1610.897457] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1610.898029] RIP: 0033:0x7f07e63f4b19 [ 1610.898441] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1610.900498] RSP: 002b:00007f07e396a188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1610.901331] RAX: ffffffffffffffda RBX: 00007f07e6507f60 RCX: 00007f07e63f4b19 [ 1610.902122] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1610.902905] RBP: 00007f07e644ef6d R08: 0000000000000000 R09: 0000000000000000 [ 1610.903716] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1610.904526] R13: 00007fff1f25f23f R14: 00007f07e396a300 R15: 0000000000022000 15:38:04 executing program 2: r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x2, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r1, 0x0) flock(r1, 0x2) poll(&(0x7f0000000000)=[{r1}, {0xffffffffffffffff, 0x9048}], 0x2, 0x0) dup2(0xffffffffffffffff, r0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r3, 0x0, r2, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) tee(0xffffffffffffffff, 0xffffffffffffffff, 0x800, 0x0) r4 = openat$sr(0xffffffffffffff9c, &(0x7f0000000040), 0x511340, 0x0) ioctl$SNDRV_SEQ_IOCTL_RUNNING_MODE(r4, 0xc0105303, &(0x7f0000000080)={0x18, 0x0, 0x85}) 15:38:04 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0xec0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) [ 1611.012405] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1611.013411] CPU: 0 PID: 11416 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1611.014162] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1611.015071] Call Trace: [ 1611.015363] dump_stack+0x107/0x167 [ 1611.015771] sysfs_warn_dup.cold+0x1c/0x29 [ 1611.016241] sysfs_do_create_link_sd+0x122/0x140 [ 1611.016758] sysfs_create_link+0x5f/0xc0 [ 1611.017203] device_add+0x703/0x1c50 [ 1611.017626] ? devlink_add_symlinks+0x970/0x970 [ 1611.018128] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1611.018712] wiphy_register+0x1da6/0x2850 [ 1611.019186] ? wiphy_unregister+0xb90/0xb90 [ 1611.019670] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1611.020258] ieee80211_register_hw+0x23c5/0x38b0 [ 1611.020798] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1611.021337] ? net_generic+0xdb/0x2b0 [ 1611.021771] ? lockdep_init_map_type+0x2c7/0x780 [ 1611.022294] ? memset+0x20/0x50 [ 1611.022663] ? __hrtimer_init+0x12c/0x270 [ 1611.023118] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1611.023686] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1611.024204] ? hwsim_new_radio_nl+0x967/0x1080 [ 1611.024718] ? memcpy+0x39/0x60 [ 1611.025089] hwsim_new_radio_nl+0x991/0x1080 [ 1611.025578] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1611.026168] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1611.026872] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1611.027614] genl_family_rcv_msg_doit+0x22d/0x330 [ 1611.028148] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1611.028867] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1611.029470] ? trace_hardirqs_on+0x5b/0x180 [ 1611.029958] ? genl_rcv_msg+0x2c3/0x5a0 [ 1611.030402] genl_rcv_msg+0x33c/0x5a0 [ 1611.030827] ? genl_get_cmd+0x480/0x480 [ 1611.031279] ? lock_acquire+0x1b9/0x470 [ 1611.031713] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1611.032286] ? lock_release+0x680/0x680 [ 1611.032731] netlink_rcv_skb+0x14b/0x430 [ 1611.033180] ? genl_get_cmd+0x480/0x480 [ 1611.033623] ? netlink_ack+0xab0/0xab0 [ 1611.034062] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1611.034566] ? kcov_remote_stop+0x310/0x310 [ 1611.035046] ? is_vmalloc_addr+0x7b/0xb0 [ 1611.035508] genl_rcv+0x24/0x40 [ 1611.035871] netlink_unicast+0x549/0x7f0 [ 1611.036329] ? netlink_attachskb+0x870/0x870 [ 1611.036827] netlink_sendmsg+0x90f/0xdf0 [ 1611.037282] ? netlink_unicast+0x7f0/0x7f0 [ 1611.037747] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1611.038354] ? netlink_unicast+0x7f0/0x7f0 [ 1611.038824] __sock_sendmsg+0x154/0x190 [ 1611.039290] ____sys_sendmsg+0x70d/0x870 [ 1611.039746] ? sock_write_iter+0x3d0/0x3d0 [ 1611.040211] ? do_recvmmsg+0x6d0/0x6d0 [ 1611.040641] ? perf_trace_lock+0xac/0x490 [ 1611.041103] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1611.041701] ? __lockdep_reset_lock+0x180/0x180 [ 1611.042227] ___sys_sendmsg+0xf3/0x170 [ 1611.042667] ? sendmsg_copy_msghdr+0x160/0x160 [ 1611.043193] ? lock_downgrade+0x6d0/0x6d0 [ 1611.043657] ? find_held_lock+0x2c/0x110 [ 1611.044117] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1611.044690] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1611.045279] ? trace_hardirqs_on+0x5b/0x180 [ 1611.045754] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1611.046361] ? sockfd_lookup_light+0xe1/0x180 [ 1611.046881] ? sockfd_lookup_light+0xfe/0x180 [ 1611.047405] __sys_sendmsg+0xe5/0x1b0 [ 1611.047828] ? __sys_sendmsg_sock+0x40/0x40 [ 1611.048301] ? trace_hardirqs_on+0x5b/0x180 [ 1611.048796] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1611.049372] do_syscall_64+0x33/0x40 [ 1611.049782] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1611.050347] RIP: 0033:0x7eff88fa0b19 [ 1611.050761] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1611.052771] RSP: 002b:00007eff86516188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1611.053607] RAX: ffffffffffffffda RBX: 00007eff890b3f60 RCX: 00007eff88fa0b19 [ 1611.054384] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1611.055172] RBP: 00007eff88ffaf6d R08: 0000000000000000 R09: 0000000000000000 [ 1611.055955] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1611.056740] R13: 00007ffe20cbc2ff R14: 00007eff86516300 R15: 0000000000022000 15:38:21 executing program 2: r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x2, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r1, 0x0) flock(r1, 0x2) poll(&(0x7f0000000000)=[{r1}, {0xffffffffffffffff, 0x9048}], 0x2, 0x0) dup2(0xffffffffffffffff, r0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r3, 0x0, r2, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) tee(0xffffffffffffffff, 0xffffffffffffffff, 0x800, 0x0) r4 = openat$sr(0xffffffffffffff9c, &(0x7f0000000040), 0x511340, 0x0) ioctl$SNDRV_SEQ_IOCTL_RUNNING_MODE(r4, 0xc0105303, &(0x7f0000000080)={0x18, 0x0, 0x85}) 15:38:21 executing program 6: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:38:21 executing program 0: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 15:38:21 executing program 3: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)) syz_io_uring_submit(0x0, 0x0, 0x0, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:38:21 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) (fail_nth: 88) 15:38:21 executing program 4: memfd_create(&(0x7f00000003c0)='\x00~(\x87P\x16}\x0e\x80\x1c\xadP:\x116\a\f\x16\xc7\r9cs\'C\x02\xd4\x16\b\xb5\xc6\xaaF\xedQ\b\x82\x82\xf1\xec\x96n0\a\x9c\x97\xdd\xd2\x95v\xe5\xcf\xa5\x87\xed\x9e\xc1\xaa[N\xc9[\xe3\x05R\x9ds`\xc0\xbbd\xc4_t;\xa1\xfb\xe3\x9a03\xe7<\xe4\x93{@\xa9\x06\x00\x94A\xe70gO\x82\xae\n\xac\xc3\xebz\xb5\"\xb7\x18\x01\xf5\xd0\xf9\xa4z/\x90\x14\xcfv\x1f\xe0\x82Z\xa9\xf2\xf8\xa3\xb5\xc6#w\xfc`\xd0\x86R\xb9\x03\xd8\x8c\x92\xb6\xd7E!P\xb8\xb1\xa6\x9c\x02.\x03Ls\r\xb6\xd8f\xa7\x0f\x9b\x87\x8d\x8d\x82|\x94\x10\xdaU', 0x0) ioctl$TUNSETQUEUE(0xffffffffffffffff, 0x400454ca, &(0x7f0000000000)={'veth0_vlan\x00'}) r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000180), 0x214500, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f00000001c0)='cpuset.effective_cpus\x00', 0x0, 0x0) ioctl$TUNSETLINK(r1, 0x400454cd, 0x17) socket$inet(0x2, 0xa, 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/timer\x00', 0x0, 0x0) sendto(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f00000000c0)=@nl=@unspec, 0x80) getsockopt$bt_sco_SCO_OPTIONS(0xffffffffffffffff, 0x11, 0x1, 0x0, &(0x7f0000000540)) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, 0x0) r2 = dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x80000) pipe2(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) readv(r3, 0x0, 0x0) perf_event_open(&(0x7f0000000200)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x2806, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x900, 0x0, 0x0, 0x0, 0x0, 0x3ba, 0x1f}, 0x0, 0x0, r2, 0x0) pipe(&(0x7f0000000140)={0xffffffffffffffff}) r5 = openat(r4, &(0x7f0000000080)='./file0\x00', 0x107100, 0x0) read(r5, &(0x7f0000000000), 0x1b4000) r6 = dup(r1) ioctl$KDFONTOP_SET(r6, 0x4b72, &(0x7f0000000040)={0x0, 0x0, 0x8, 0x5, 0x169, &(0x7f0000000740)="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"}) 15:38:21 executing program 5: r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f0000000540)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c) syz_io_uring_setup(0x0, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4ea0, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) ioctl$AUTOFS_DEV_IOCTL_VERSION(0xffffffffffffffff, 0xc0189371, &(0x7f0000000040)=ANY=[@ANYBLOB="010000000100000018", @ANYBLOB]) io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x3, 0x2000}, 0x4) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x20}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) 15:38:21 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0xf00, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) [ 1627.434905] FAULT_INJECTION: forcing a failure. [ 1627.434905] name failslab, interval 1, probability 0, space 0, times 0 [ 1627.437557] CPU: 1 PID: 11436 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1627.439138] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1627.441068] Call Trace: [ 1627.441687] dump_stack+0x107/0x167 [ 1627.442545] should_fail.cold+0x5/0xa [ 1627.443459] ? create_object.isra.0+0x3a/0xa20 [ 1627.444509] should_failslab+0x5/0x20 [ 1627.445377] kmem_cache_alloc+0x5b/0x310 [ 1627.446318] create_object.isra.0+0x3a/0xa20 [ 1627.447348] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1627.448534] kmem_cache_alloc+0x159/0x310 [ 1627.449505] __kernfs_new_node+0xd4/0x860 [ 1627.450461] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1627.451572] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1627.452690] ? wait_for_completion_io+0x270/0x270 [ 1627.453789] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1627.455013] kernfs_new_node+0x93/0x120 [ 1627.455939] __kernfs_create_file+0x51/0x350 [ 1627.456959] sysfs_add_file_mode_ns+0x221/0x560 [ 1627.458032] internal_create_group+0x324/0xb30 [ 1627.459106] ? sysfs_remove_group+0x170/0x170 [ 1627.460143] ? kernfs_name_hash+0xe7/0x110 [ 1627.461126] ? kernfs_find_ns+0x256/0x380 [ 1627.462091] sysfs_slab_add+0x188/0x200 [ 1627.463010] __kmem_cache_create+0x3db/0x520 [ 1627.464038] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1627.465191] p9_client_create+0xc2b/0x11c0 [ 1627.466175] ? p9_client_flush+0x430/0x430 [ 1627.467149] ? trace_hardirqs_on+0x5b/0x180 [ 1627.468144] ? lockdep_init_map_type+0x2c7/0x780 [ 1627.469239] ? __raw_spin_lock_init+0x36/0x110 [ 1627.470286] v9fs_session_init+0x1dd/0x1680 [ 1627.471284] ? lock_release+0x680/0x680 [ 1627.471334] ? kmem_cache_alloc_trace+0x151/0x320 [ 1627.473175] ? v9fs_show_options+0x690/0x690 [ 1627.474183] ? trace_hardirqs_on+0x5b/0x180 [ 1627.475162] ? kasan_unpoison_shadow+0x33/0x50 [ 1627.476208] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1627.477360] v9fs_mount+0x79/0x8f0 [ 1627.478171] ? v9fs_write_inode+0x60/0x60 [ 1627.479110] legacy_get_tree+0x105/0x220 [ 1627.480071] vfs_get_tree+0x8e/0x300 [ 1627.480914] path_mount+0x13be/0x20b0 [ 1627.481782] ? strncpy_from_user+0x9e/0x470 [ 1627.482758] ? finish_automount+0xa90/0xa90 [ 1627.483753] ? getname_flags.part.0+0x1dd/0x4f0 [ 1627.484801] ? _copy_from_user+0xfb/0x1b0 [ 1627.485750] __x64_sys_mount+0x282/0x300 [ 1627.486671] ? copy_mnt_ns+0xa00/0xa00 [ 1627.487549] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1627.489348] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1627.489370] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1627.489402] do_syscall_64+0x33/0x40 [ 1627.489427] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1627.493472] RIP: 0033:0x7f76b700cb19 [ 1627.494317] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1627.498402] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1627.500097] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1627.501679] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1627.503281] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1627.504865] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1627.506449] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 [ 1627.508092] CPU: 0 PID: 11434 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1627.509394] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1627.510953] Call Trace: [ 1627.511488] dump_stack+0x107/0x167 [ 1627.512178] sysfs_warn_dup.cold+0x1c/0x29 [ 1627.512965] sysfs_do_create_link_sd+0x122/0x140 [ 1627.513846] sysfs_create_link+0x5f/0xc0 [ 1627.514608] device_add+0x703/0x1c50 [ 1627.515316] ? ieee80211_set_bitrate_flags+0x378/0x620 [ 1627.516290] ? devlink_add_symlinks+0x970/0x970 [ 1627.517156] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1627.518137] wiphy_register+0x1da6/0x2850 [ 1627.518921] ? wiphy_unregister+0xb90/0xb90 [ 1627.519749] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1627.520743] ieee80211_register_hw+0x23c5/0x38b0 [ 1627.521643] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1627.522532] ? trace_hardirqs_on+0x5b/0x180 [ 1627.523362] ? __hrtimer_init+0x12c/0x270 [ 1627.524145] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1627.525091] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1627.525955] ? hwsim_new_radio_nl+0x967/0x1080 [ 1627.526805] ? memcpy+0x39/0x60 [ 1627.527439] hwsim_new_radio_nl+0x991/0x1080 [ 1627.528262] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1627.529243] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1627.530464] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1627.531692] genl_family_rcv_msg_doit+0x22d/0x330 [ 1627.532582] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1627.533807] ? genl_family_rcv_msg_doit+0x23/0x330 [ 1627.534727] genl_rcv_msg+0x33c/0x5a0 [ 1627.535443] ? genl_get_cmd+0x480/0x480 [ 1627.536176] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1627.537130] ? lock_release+0x680/0x680 [ 1627.537861] ? __lockdep_reset_lock+0x180/0x180 [ 1627.538721] netlink_rcv_skb+0x14b/0x430 [ 1627.539479] ? genl_get_cmd+0x480/0x480 [ 1627.540222] ? netlink_ack+0xab0/0xab0 [ 1627.540953] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1627.541793] ? is_vmalloc_addr+0x7b/0xb0 [ 1627.542547] genl_rcv+0x24/0x40 [ 1627.543151] netlink_unicast+0x549/0x7f0 [ 1627.543922] ? netlink_attachskb+0x870/0x870 [ 1627.544730] ? __virt_addr_valid+0x128/0x350 [ 1627.545553] netlink_sendmsg+0x90f/0xdf0 [ 1627.546309] ? netlink_unicast+0x7f0/0x7f0 [ 1627.547082] ? netlink_unicast+0x7f0/0x7f0 [ 1627.547879] ? netlink_unicast+0x7f0/0x7f0 [ 1627.548659] __sock_sendmsg+0x154/0x190 [ 1627.549393] ____sys_sendmsg+0x70d/0x870 [ 1627.550144] ? sock_write_iter+0x3d0/0x3d0 [ 1627.550912] ? do_recvmmsg+0x6d0/0x6d0 [ 1627.551640] ? perf_trace_lock+0xac/0x490 [ 1627.552403] ? __lockdep_reset_lock+0x180/0x180 [ 1627.553258] ___sys_sendmsg+0xf3/0x170 [ 1627.553971] ? sendmsg_copy_msghdr+0x160/0x160 [ 1627.554810] ? lock_downgrade+0x6d0/0x6d0 [ 1627.555568] ? find_held_lock+0x2c/0x110 [ 1627.556319] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1627.557280] ? __fget_files+0x296/0x4c0 [ 1627.558025] ? __fget_light+0xea/0x290 [ 1627.558763] __sys_sendmsg+0xe5/0x1b0 [ 1627.559472] ? __sys_sendmsg_sock+0x40/0x40 [ 1627.560282] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1627.561236] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1627.562176] ? trace_hardirqs_on+0x5b/0x180 [ 1627.562968] do_syscall_64+0x33/0x40 [ 1627.563655] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1627.564587] RIP: 0033:0x7eff88fa0b19 [ 1627.565268] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1627.568641] RSP: 002b:00007eff86516188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1627.570028] RAX: ffffffffffffffda RBX: 00007eff890b3f60 RCX: 00007eff88fa0b19 [ 1627.571332] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1627.572636] RBP: 00007eff88ffaf6d R08: 0000000000000000 R09: 0000000000000000 [ 1627.573921] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1627.575204] R13: 00007ffe20cbc2ff R14: 00007eff86516300 R15: 0000000000022000 15:38:38 executing program 6: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:38:38 executing program 2: r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000001d80)={0x2, 0x80, 0x70, 0x0, 0x0, 0x0, 0x0, 0x2, 0x80000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x7}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x13, r1, 0x0) flock(r1, 0x2) poll(&(0x7f0000000000)=[{r1}, {0xffffffffffffffff, 0x9048}], 0x2, 0x0) dup2(0xffffffffffffffff, r0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r3, 0x0, r2, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0) tee(0xffffffffffffffff, 0xffffffffffffffff, 0x800, 0x0) r4 = openat$sr(0xffffffffffffff9c, &(0x7f0000000040), 0x511340, 0x0) ioctl$SNDRV_SEQ_IOCTL_RUNNING_MODE(r4, 0xc0105303, &(0x7f0000000080)={0x18, 0x0, 0x85}) 15:38:38 executing program 4: r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0) r1 = syz_io_uring_complete(0x0) ioctl$SG_SET_FORCE_PACK_ID(r1, 0x227b, &(0x7f0000000000)) stat(&(0x7f0000000080)='./file0\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r2, 0x0) readv(r0, &(0x7f0000000680)=[{&(0x7f00000001c0)=""/227, 0xe3}], 0x1) 15:38:38 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x4000, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) 15:38:38 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) (fail_nth: 89) 15:38:38 executing program 0: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:38:38 executing program 5: r0 = creat(&(0x7f0000000040)='./file0\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000580)=ANY=[], 0xfdef) r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000140), 0x400000, 0x0) openat(r1, &(0x7f0000000180)='./file0\x00', 0x0, 0x106) r2 = socket$inet_udp(0x2, 0x2, 0x0) r3 = openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0) accept4$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @remote}, &(0x7f0000000200)=0x10, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xffe3) r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f00000000c0)=@tipc=@id={0x1e, 0x3, 0x0, {0x4e21, 0x3}}, 0x0, 0x0, 0x0, {0x0, r4}}, 0x10001) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffc}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) truncate(&(0x7f0000000080)='./file0\x00', 0x8) 15:38:38 executing program 3: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)) syz_io_uring_submit(0x0, 0x0, 0x0, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) [ 1644.135049] FAULT_INJECTION: forcing a failure. [ 1644.135049] name failslab, interval 1, probability 0, space 0, times 0 [ 1644.137533] CPU: 1 PID: 11473 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1644.138947] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1644.140642] Call Trace: [ 1644.141193] dump_stack+0x107/0x167 [ 1644.141952] should_fail.cold+0x5/0xa [ 1644.142743] ? __kernfs_new_node+0xd4/0x860 [ 1644.143666] should_failslab+0x5/0x20 [ 1644.144460] kmem_cache_alloc+0x5b/0x310 [ 1644.145301] __kernfs_new_node+0xd4/0x860 [ 1644.146158] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1644.147124] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1644.148127] ? wait_for_completion_io+0x270/0x270 [ 1644.149113] ? kernfs_next_descendant_post+0x1a7/0x2a0 [ 1644.150197] kernfs_new_node+0x93/0x120 [ 1644.151020] __kernfs_create_file+0x51/0x350 [ 1644.151931] sysfs_add_file_mode_ns+0x221/0x560 [ 1644.152889] internal_create_group+0x324/0xb30 [ 1644.153836] ? sysfs_remove_group+0x170/0x170 [ 1644.154750] ? kernfs_name_hash+0xe7/0x110 [ 1644.155636] ? kernfs_find_ns+0x256/0x380 [ 1644.156497] sysfs_slab_add+0x188/0x200 [ 1644.157321] __kmem_cache_create+0x3db/0x520 [ 1644.158233] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1644.159256] p9_client_create+0xc2b/0x11c0 [ 1644.160155] ? p9_client_flush+0x430/0x430 [ 1644.161018] ? trace_hardirqs_on+0x5b/0x180 [ 1644.161898] ? lockdep_init_map_type+0x2c7/0x780 [ 1644.162883] ? __raw_spin_lock_init+0x36/0x110 [ 1644.163854] v9fs_session_init+0x1dd/0x1680 [ 1644.164747] ? lock_release+0x680/0x680 [ 1644.165576] ? kmem_cache_alloc_trace+0x151/0x320 [ 1644.166575] ? v9fs_show_options+0x690/0x690 [ 1644.167512] ? trace_hardirqs_on+0x5b/0x180 [ 1644.168410] ? kasan_unpoison_shadow+0x33/0x50 [ 1644.169353] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1644.170405] v9fs_mount+0x79/0x8f0 [ 1644.171143] ? v9fs_write_inode+0x60/0x60 [ 1644.172023] legacy_get_tree+0x105/0x220 [ 1644.172862] vfs_get_tree+0x8e/0x300 [ 1644.173639] path_mount+0x13be/0x20b0 [ 1644.174433] ? strncpy_from_user+0x9e/0x470 [ 1644.175329] ? finish_automount+0xa90/0xa90 [ 1644.176227] ? getname_flags.part.0+0x1dd/0x4f0 [ 1644.177186] ? _copy_from_user+0xfb/0x1b0 [ 1644.178054] __x64_sys_mount+0x282/0x300 [ 1644.178901] ? copy_mnt_ns+0xa00/0xa00 [ 1644.179713] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1644.180784] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1644.181841] do_syscall_64+0x33/0x40 [ 1644.182611] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1644.183674] RIP: 0033:0x7f76b700cb19 [ 1644.184444] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1644.188164] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1644.189733] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1644.191185] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1644.192647] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1644.194090] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1644.195549] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 15:38:38 executing program 0: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:38:38 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x7a02, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) [ 1644.282829] kmem_cache_create(9p-fcall-cache) failed with error -12 [ 1644.284276] CPU: 0 PID: 11473 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1644.285702] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1644.287414] Call Trace: [ 1644.287975] dump_stack+0x107/0x167 [ 1644.288736] kmem_cache_create_usercopy.cold+0x17/0x65 [ 1644.289834] p9_client_create+0xc2b/0x11c0 [ 1644.290714] ? p9_client_flush+0x430/0x430 [ 1644.291606] ? trace_hardirqs_on+0x5b/0x180 [ 1644.292489] ? lockdep_init_map_type+0x2c7/0x780 [ 1644.293468] ? __raw_spin_lock_init+0x36/0x110 [ 1644.294410] v9fs_session_init+0x1dd/0x1680 [ 1644.295292] ? lock_release+0x680/0x680 [ 1644.296130] ? kmem_cache_alloc_trace+0x151/0x320 [ 1644.297113] ? v9fs_show_options+0x690/0x690 [ 1644.298021] ? trace_hardirqs_on+0x5b/0x180 [ 1644.298905] ? kasan_unpoison_shadow+0x33/0x50 [ 1644.299870] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1644.300908] v9fs_mount+0x79/0x8f0 [ 1644.301639] ? v9fs_write_inode+0x60/0x60 [ 1644.302488] legacy_get_tree+0x105/0x220 [ 1644.303322] vfs_get_tree+0x8e/0x300 [ 1644.304095] path_mount+0x13be/0x20b0 [ 1644.304876] ? strncpy_from_user+0x9e/0x470 [ 1644.305761] ? finish_automount+0xa90/0xa90 [ 1644.306640] ? getname_flags.part.0+0x1dd/0x4f0 [ 1644.307633] ? _copy_from_user+0xfb/0x1b0 [ 1644.308487] __x64_sys_mount+0x282/0x300 [ 1644.309320] ? copy_mnt_ns+0xa00/0xa00 [ 1644.310130] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1644.311194] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1644.312283] do_syscall_64+0x33/0x40 [ 1644.313045] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1644.314087] RIP: 0033:0x7f76b700cb19 [ 1644.314849] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1644.318612] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1644.320179] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1644.321633] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1644.323093] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1644.324548] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1644.325993] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 15:38:38 executing program 5: syz_open_dev$tty20(0xc, 0x4, 0x1) r0 = dup(0xffffffffffffffff) ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, &(0x7f0000000000)=0x96) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, 0x0) r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x10, 0xffffffffffffffff, 0x0) syz_io_uring_submit(r1, 0x0, &(0x7f0000000100)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, 0xffffffffffffffff, 0x0}, 0x8001) syz_io_uring_submit(r1, 0x0, &(0x7f00000005c0)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0xa, 0x8, &(0x7f0000000580)=[{&(0x7f00000003c0)=""/5, 0x5}, {&(0x7f0000000400)=""/66, 0x42}, {&(0x7f00000004c0)=""/157, 0x9d}], 0x3, 0x6, 0xe0755551d6643376}, 0x1) ioctl$SG_SET_FORCE_PACK_ID(0xffffffffffffffff, 0x227b, &(0x7f0000000280)) ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, 0x0) r2 = syz_io_uring_setup(0x4d4b, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x2}, &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000140)=0x0) ioctl$SG_GET_SCSI_ID(r0, 0x2276, 0x0) syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000240)="6623ed122eaa0e703c", 0x9, 0x0, 0x1}, 0x0) ioctl$SG_SET_FORCE_PACK_ID(r0, 0x227b, &(0x7f0000000040)=0x1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x80004, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x2, 0x8001, 0x0, 0x0, 0x400000, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r2, 0x58ab, 0x0, 0x0, 0x0, 0x0) 15:38:38 executing program 2: msgget$private(0x0, 0x0) r0 = socket$inet6_udp(0xa, 0x2, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000540)={0xa, 0x4e21, 0x2, @remote, 0x2}, 0x1c) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20, 0x10000, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c) connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x40, @private1, 0x1}, 0x1c) connect$inet6(0xffffffffffffffff, &(0x7f00000002c0)={0xa, 0x4e22, 0x8, @empty}, 0x1c) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f00000000c0)={0x1, 0xcd58d069aa0eebd7}, 0x4) setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000001c40), 0x4) setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000080)={0x0, 0x1, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}}, 0x10) msgsnd(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="00000000d155ab0000000000ea7b24d3b71c958e3b93b9868ef540276062b8a296dea6b5cae4a8ced3c770c6bd22411c926b750175c10c0205f628f142fdbdfe5696fa6f6ac71c3e75448cb9683a986d433b761b0fb09d46a692c4842b5f9ac25d4e9ce3d3d13551ea2fa219d13f65232dc038521724ea723f15cc16749d4c75dff4f921f5e6c3b29f632eb2c28a42a4722e86cf4e88ca8632"], 0x25, 0x800) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x4000, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, @perf_config_ext={0xffffffffffffffe0}, 0x0, 0x1782, 0x6, 0x0, 0x7ff, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = msgget(0x3, 0x290) msgctl$IPC_INFO(r2, 0x3, &(0x7f00000001c0)=""/174) msgsnd(r2, &(0x7f0000000280)={0x1}, 0x8, 0x0) sendmmsg$inet6(r0, &(0x7f0000004d00), 0x2f, 0x0) 15:38:38 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x8100, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) [ 1644.400654] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1644.402494] CPU: 1 PID: 11469 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1644.403975] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1644.405720] Call Trace: [ 1644.406293] dump_stack+0x107/0x167 [ 1644.407070] sysfs_warn_dup.cold+0x1c/0x29 [ 1644.407955] sysfs_do_create_link_sd+0x122/0x140 [ 1644.408933] sysfs_create_link+0x5f/0xc0 [ 1644.409761] device_add+0x703/0x1c50 [ 1644.410534] ? devlink_add_symlinks+0x970/0x970 [ 1644.411521] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1644.412618] wiphy_register+0x1da6/0x2850 [ 1644.413497] ? wiphy_unregister+0xb90/0xb90 [ 1644.414391] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1644.415534] ? ieee80211_register_hw+0x239f/0x38b0 [ 1644.416563] ieee80211_register_hw+0x23c5/0x38b0 [ 1644.417567] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1644.418573] ? __hrtimer_init+0x8a/0x270 [ 1644.419415] ? __hrtimer_init+0xc7/0x270 [ 1644.420257] ? __hrtimer_init+0x12c/0x270 [ 1644.421124] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1644.422181] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1644.423142] ? hwsim_new_radio_nl+0x967/0x1080 [ 1644.424101] ? memcpy+0x39/0x60 [ 1644.424794] hwsim_new_radio_nl+0x991/0x1080 [ 1644.425717] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1644.426811] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1644.428173] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1644.429529] genl_family_rcv_msg_doit+0x22d/0x330 [ 1644.430529] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1644.431905] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1644.433041] ? netlink_ns_capable+0xfd/0x130 [ 1644.433958] ? __sanitizer_cov_trace_pc+0x14/0x60 [ 1644.434966] genl_rcv_msg+0x33c/0x5a0 [ 1644.435790] ? genl_get_cmd+0x480/0x480 [ 1644.436621] ? lock_acquire+0x1b9/0x470 [ 1644.437443] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1644.438523] ? lock_release+0x680/0x680 [ 1644.439347] ? __lockdep_reset_lock+0x180/0x180 [ 1644.440329] netlink_rcv_skb+0x14b/0x430 [ 1644.441172] ? genl_get_cmd+0x480/0x480 [ 1644.442002] ? netlink_ack+0xab0/0xab0 [ 1644.442809] ? genl_pernet_exit+0x80/0x80 [ 1644.443676] ? netlink_unicast+0x51f/0x7f0 [ 1644.444540] genl_rcv+0x24/0x40 [ 1644.445208] netlink_unicast+0x549/0x7f0 [ 1644.446040] ? netlink_attachskb+0x870/0x870 [ 1644.446948] netlink_sendmsg+0x90f/0xdf0 [ 1644.447788] ? netlink_unicast+0x7f0/0x7f0 [ 1644.448663] ? netlink_unicast+0x7f0/0x7f0 [ 1644.449524] __sock_sendmsg+0x154/0x190 [ 1644.450332] ____sys_sendmsg+0x70d/0x870 [ 1644.451160] ? sock_write_iter+0x3d0/0x3d0 [ 1644.452022] ? do_recvmmsg+0x6d0/0x6d0 [ 1644.452810] ? perf_trace_lock+0xac/0x490 [ 1644.453662] ? __lockdep_reset_lock+0x180/0x180 [ 1644.454615] ___sys_sendmsg+0xf3/0x170 [ 1644.455409] ? sendmsg_copy_msghdr+0x160/0x160 [ 1644.456356] ? lock_downgrade+0x6d0/0x6d0 [ 1644.457224] ? __fget_files+0x296/0x4c0 [ 1644.458047] ? __fget_light+0xea/0x290 [ 1644.458847] __sys_sendmsg+0xe5/0x1b0 [ 1644.459628] ? __sys_sendmsg_sock+0x40/0x40 [ 1644.460502] ? trace_hardirqs_on+0x5b/0x180 [ 1644.461394] ? __sys_sendmsg+0x1b0/0x1b0 [ 1644.462221] ? __x64_sys_sendmsg+0x1/0xb0 [ 1644.463072] do_syscall_64+0x33/0x40 [ 1644.463838] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1644.464872] RIP: 0033:0x7f07e63f4b19 [ 1644.465627] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1644.469350] RSP: 002b:00007f07e396a188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1644.470886] RAX: ffffffffffffffda RBX: 00007f07e6507f60 RCX: 00007f07e63f4b19 [ 1644.472333] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1644.473774] RBP: 00007f07e644ef6d R08: 0000000000000000 R09: 0000000000000000 [ 1644.475217] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1644.476669] R13: 00007fff1f25f23f R14: 00007f07e396a300 R15: 0000000000022000 15:38:38 executing program 0: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:38:38 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) (fail_nth: 90) [ 1644.588326] FAULT_INJECTION: forcing a failure. [ 1644.588326] name failslab, interval 1, probability 0, space 0, times 0 [ 1644.590833] CPU: 1 PID: 11495 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1644.592274] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1644.593961] Call Trace: [ 1644.594502] dump_stack+0x107/0x167 [ 1644.595252] should_fail.cold+0x5/0xa [ 1644.596047] ? create_object.isra.0+0x3a/0xa20 [ 1644.596986] should_failslab+0x5/0x20 [ 1644.597760] kmem_cache_alloc+0x5b/0x310 [ 1644.598606] create_object.isra.0+0x3a/0xa20 [ 1644.599522] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1644.600582] kmem_cache_alloc+0x159/0x310 [ 1644.601452] __kernfs_new_node+0xd4/0x860 [ 1644.602320] ? kernfs_dop_revalidate+0x3a0/0x3a0 [ 1644.603310] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1644.604337] ? mark_held_locks+0x9e/0xe0 [ 1644.605184] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1644.606279] kernfs_new_node+0x93/0x120 [ 1644.607109] __kernfs_create_file+0x51/0x350 [ 1644.608033] sysfs_add_file_mode_ns+0x221/0x560 [ 1644.609013] internal_create_group+0x324/0xb30 [ 1644.609969] ? sysfs_remove_group+0x170/0x170 [ 1644.610890] ? kernfs_name_hash+0xe7/0x110 [ 1644.611791] ? kernfs_find_ns+0x256/0x380 [ 1644.612661] sysfs_slab_add+0x188/0x200 [ 1644.613490] __kmem_cache_create+0x3db/0x520 [ 1644.614409] kmem_cache_create_usercopy+0x1db/0x2f0 [ 1644.615450] p9_client_create+0xc2b/0x11c0 [ 1644.616347] ? p9_client_flush+0x430/0x430 [ 1644.617226] ? trace_hardirqs_on+0x5b/0x180 [ 1644.618120] ? lockdep_init_map_type+0x2c7/0x780 [ 1644.619108] ? __raw_spin_lock_init+0x36/0x110 [ 1644.620081] v9fs_session_init+0x1dd/0x1680 [ 1644.620979] ? lock_release+0x680/0x680 [ 1644.621813] ? kmem_cache_alloc_trace+0x151/0x320 [ 1644.622804] ? v9fs_show_options+0x690/0x690 [ 1644.623740] ? trace_hardirqs_on+0x5b/0x180 [ 1644.624632] ? kasan_unpoison_shadow+0x33/0x50 [ 1644.625577] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1644.626630] v9fs_mount+0x79/0x8f0 [ 1644.627372] ? v9fs_write_inode+0x60/0x60 [ 1644.628254] legacy_get_tree+0x105/0x220 [ 1644.629099] vfs_get_tree+0x8e/0x300 [ 1644.629876] path_mount+0x13be/0x20b0 [ 1644.630671] ? strncpy_from_user+0x9e/0x470 [ 1644.631585] ? finish_automount+0xa90/0xa90 [ 1644.632464] ? getname_flags.part.0+0x1dd/0x4f0 [ 1644.633411] ? _copy_from_user+0xfb/0x1b0 [ 1644.634266] __x64_sys_mount+0x282/0x300 [ 1644.635094] ? copy_mnt_ns+0xa00/0xa00 [ 1644.635911] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1644.636971] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1644.638025] do_syscall_64+0x33/0x40 [ 1644.638779] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1644.639851] RIP: 0033:0x7f76b700cb19 [ 1644.640606] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1644.644454] RSP: 002b:00007f76b4582188 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 1644.646049] RAX: ffffffffffffffda RBX: 00007f76b711ff60 RCX: 00007f76b700cb19 [ 1644.647553] RDX: 00000000200000c0 RSI: 0000000020000040 RDI: 0000000000000000 [ 1644.649044] RBP: 00007f76b45821d0 R08: 0000000020000100 R09: 0000000000000000 [ 1644.650517] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1644.651997] R13: 00007ffe4f430aef R14: 00007f76b4582300 R15: 0000000000022000 [ 1644.951668] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1644.953629] CPU: 0 PID: 11471 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1644.955187] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1644.957057] Call Trace: [ 1644.957653] dump_stack+0x107/0x167 [ 1644.958483] sysfs_warn_dup.cold+0x1c/0x29 [ 1644.959438] sysfs_do_create_link_sd+0x122/0x140 [ 1644.960512] sysfs_create_link+0x5f/0xc0 [ 1644.961382] device_add+0x703/0x1c50 [ 1644.962115] ? devlink_add_symlinks+0x970/0x970 [ 1644.963021] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1644.964038] wiphy_register+0x1da6/0x2850 [ 1644.964829] ? wiphy_unregister+0xb90/0xb90 [ 1644.965647] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1644.966681] ieee80211_register_hw+0x23c5/0x38b0 [ 1644.967583] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1644.968530] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1644.969588] ? __hrtimer_init+0x12c/0x270 [ 1644.970366] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1644.971367] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1644.972238] ? hwsim_new_radio_nl+0x967/0x1080 [ 1644.973087] ? memcpy+0x39/0x60 [ 1644.973707] hwsim_new_radio_nl+0x991/0x1080 [ 1644.974532] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1644.975532] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1644.976748] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1644.977964] genl_family_rcv_msg_doit+0x22d/0x330 [ 1644.978851] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1644.980072] ? cap_capable+0x1cd/0x230 [ 1644.980808] ? ns_capable+0xe2/0x110 [ 1644.981502] genl_rcv_msg+0x33c/0x5a0 [ 1644.982206] ? genl_get_cmd+0x480/0x480 [ 1644.982937] ? lock_acquire+0x1b9/0x470 [ 1644.983670] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1644.984620] ? lock_release+0x680/0x680 [ 1644.985348] ? __lockdep_reset_lock+0x180/0x180 [ 1644.986245] netlink_rcv_skb+0x14b/0x430 [ 1644.986990] ? genl_get_cmd+0x480/0x480 [ 1644.987772] ? netlink_ack+0xab0/0xab0 [ 1644.988510] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1644.989349] genl_rcv+0x24/0x40 [ 1644.989955] netlink_unicast+0x549/0x7f0 [ 1644.990710] ? netlink_attachskb+0x870/0x870 [ 1644.991518] ? __sanitizer_cov_trace_pc+0x3c/0x60 [ 1644.992418] netlink_sendmsg+0x90f/0xdf0 [ 1644.993170] ? netlink_unicast+0x7f0/0x7f0 [ 1644.993970] ? netlink_unicast+0x7f0/0x7f0 [ 1644.994752] __sock_sendmsg+0x154/0x190 [ 1644.995508] ____sys_sendmsg+0x70d/0x870 [ 1644.996267] ? sock_write_iter+0x3d0/0x3d0 [ 1644.997049] ? do_recvmmsg+0x6d0/0x6d0 [ 1644.997764] ? perf_trace_lock+0xac/0x490 [ 1644.998530] ? __lockdep_reset_lock+0x180/0x180 [ 1644.999428] ___sys_sendmsg+0xf3/0x170 [ 1645.000149] ? sendmsg_copy_msghdr+0x160/0x160 [ 1645.001037] ? lock_downgrade+0x6d0/0x6d0 [ 1645.001794] ? find_held_lock+0x2c/0x110 [ 1645.002592] ? clockevents_program_event+0x14b/0x360 [ 1645.003543] ? __fget_files+0x296/0x4c0 [ 1645.004328] ? __fget_light+0xea/0x290 [ 1645.005057] __sys_sendmsg+0xe5/0x1b0 [ 1645.005775] ? __sys_sendmsg_sock+0x40/0x40 [ 1645.006610] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1645.007587] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1645.008543] ? trace_hardirqs_on+0x5b/0x180 [ 1645.009341] do_syscall_64+0x33/0x40 [ 1645.010034] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1645.010972] RIP: 0033:0x7fc533f18b19 [ 1645.011678] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1645.015026] RSP: 002b:00007fc53148e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1645.016509] RAX: ffffffffffffffda RBX: 00007fc53402bf60 RCX: 00007fc533f18b19 [ 1645.017790] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1645.019084] RBP: 00007fc533f72f6d R08: 0000000000000000 R09: 0000000000000000 [ 1645.020381] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1645.021664] R13: 00007fff9313d64f R14: 00007fc53148e300 R15: 0000000000022000 15:38:53 executing program 6: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:38:53 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$inet(0x2, 0x1, 0x0) bind$inet(r1, &(0x7f0000000000)={0x2, 0x4e21, @multicast1}, 0x10) connect$inet(r1, &(0x7f0000000140)={0x2, 0x4e21, @local}, 0x10) ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(0xffffffffffffffff, 0xc0189373, &(0x7f00000005c0)=ANY=[@ANYBLOB="01a3600001000000a1389276553e4abb950c635b31180000009efe173938f1c0a7ee2a6f44aff35223b0b5a9401e1605376f083699568685e508a13484e302bfaf5703ea4b224c0f0bfe34f0e65d94f39c3e46c2c47d3c88b5f3cba0f97e325f0c0aa937cfa5c2b6ed0b08ed6be06bc213d7e70979bc50cf2cf2d6742e796b4957215377684587fd7b4e6458c5ae521a9173eff2a1e04584a49c669b8abac1217b9498e5c7119f1312238d75423e700a62aae9f99183d3790e04b8e05e167ffbc6eb39d479463f1b62fdab81dc319a6f3370fb42", @ANYRES32=r1, @ANYBLOB="00000000000000002e2f66696c653200f6b4371731cbf05440d1ed8ce5862d8576839f3ab27ecdae288750c957d70e33d59e95e09a"]) r3 = openat(r2, &(0x7f0000000280)='./file1\x00', 0x701f02, 0x2c) getsockopt$sock_buf(r1, 0x1, 0x1c, 0x0, &(0x7f0000000180)) recvmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x20, &(0x7f0000003700)={0x0, 0x989680}) dup(r0) openat(r3, &(0x7f00000001c0)='./file1\x00', 0x410002, 0x10) r4 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="eb58906d6b66732e66617400020820000400008000f8000020004000030000000000000001", 0x25}, {0x0, 0x0, 0x4000}], 0x0, &(0x7f00000005c0)=ANY=[]) mkdirat(r4, &(0x7f0000000340)='./file0\x00', 0x0) syz_mount_image$vfat(0x0, &(0x7f00000000c0)='./file0\x00', 0x2, 0x0, 0x0, 0x81800, &(0x7f00000001c0)=ANY=[]) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140), 0x40001, 0x0) socket$netlink(0x10, 0x3, 0x0) r5 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r6 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r6, 0x0, r5, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e24, @rand_addr=0x64010101}, 0x10) openat(r6, &(0x7f0000000040)='./file0\x00', 0x210000, 0x22) 15:38:53 executing program 4: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)) syz_io_uring_submit(0x0, 0x0, 0x0, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:38:53 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) (fail_nth: 91) 15:38:53 executing program 0: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:38:53 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0xc00e, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) 15:38:53 executing program 5: r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0) copy_file_range(r1, 0x0, r0, 0x0, 0x10001, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0) fadvise64(r2, 0x0, 0x0, 0x1) readv(r2, &(0x7f0000000340)=[{&(0x7f00000001c0)=""/21, 0x200001d5}], 0x1) ioctl$AUTOFS_DEV_IOCTL_READY(0xffffffffffffffff, 0xc0189376, &(0x7f0000000040)={{0x1, 0x1, 0x18, r2}, './file1\x00'}) sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f0000000200)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x38, 0x0, 0x1, 0x5, 0x0, 0x0, {0x3, 0x0, 0x9}, [@CTA_MARK={0x8, 0x8, 0x1, 0x0, 0x9}, @CTA_SEQ_ADJ_ORIG={0x1c, 0xf, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x8001}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x1}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x4}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x40100}, 0x4010) 15:38:53 executing program 3: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x0, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) [ 1659.729202] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1659.731032] CPU: 1 PID: 11520 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1659.732456] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1659.734123] Call Trace: [ 1659.734662] dump_stack+0x107/0x167 [ 1659.735408] sysfs_warn_dup.cold+0x1c/0x29 [ 1659.736289] sysfs_do_create_link_sd+0x122/0x140 [ 1659.737248] sysfs_create_link+0x5f/0xc0 [ 1659.738074] device_add+0x703/0x1c50 [ 1659.738836] ? devlink_add_symlinks+0x970/0x970 [ 1659.739799] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1659.740875] wiphy_register+0x1da6/0x2850 [ 1659.741763] ? wiphy_unregister+0xb90/0xb90 [ 1659.742901] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1659.743996] ieee80211_register_hw+0x23c5/0x38b0 [ 1659.744976] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1659.745945] ? net_generic+0xdb/0x2b0 [ 1659.746726] ? lockdep_init_map_type+0x2c7/0x780 [ 1659.747697] ? memset+0x20/0x50 [ 1659.748369] ? __hrtimer_init+0x12c/0x270 [ 1659.749212] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1659.750246] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1659.751176] ? hwsim_new_radio_nl+0x967/0x1080 [ 1659.752116] ? memcpy+0x39/0x60 [ 1659.752791] hwsim_new_radio_nl+0x991/0x1080 [ 1659.753682] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1659.754747] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1659.756074] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1659.757387] genl_family_rcv_msg_doit+0x22d/0x330 [ 1659.758364] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1659.759697] ? cap_capable+0x1cd/0x230 [ 1659.760548] ? ns_capable+0xe2/0x110 [ 1659.761323] genl_rcv_msg+0x33c/0x5a0 [ 1659.762118] ? genl_get_cmd+0x480/0x480 [ 1659.762928] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1659.764006] ? lock_release+0x680/0x680 [ 1659.764811] ? __lockdep_reset_lock+0x180/0x180 [ 1659.765773] netlink_rcv_skb+0x14b/0x430 [ 1659.766634] ? genl_get_cmd+0x480/0x480 [ 1659.767446] ? netlink_ack+0xab0/0xab0 [ 1659.768271] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1659.769216] ? is_vmalloc_addr+0x7b/0xb0 [ 1659.770043] genl_rcv+0x24/0x40 [ 1659.770708] netlink_unicast+0x549/0x7f0 [ 1659.771546] ? netlink_attachskb+0x870/0x870 [ 1659.772446] ? __virt_addr_valid+0x128/0x350 [ 1659.773358] netlink_sendmsg+0x90f/0xdf0 [ 1659.774199] ? netlink_unicast+0x7f0/0x7f0 [ 1659.775084] ? netlink_unicast+0x7f0/0x7f0 [ 1659.775967] __sock_sendmsg+0x154/0x190 [ 1659.776781] ____sys_sendmsg+0x70d/0x870 [ 1659.777629] ? sock_write_iter+0x3d0/0x3d0 [ 1659.778483] ? do_recvmmsg+0x6d0/0x6d0 [ 1659.779371] ? perf_trace_lock+0xac/0x490 [ 1659.780235] ? __lockdep_reset_lock+0x180/0x180 [ 1659.781178] ? __lock_acquire+0xbb1/0x5b00 [ 1659.782047] ___sys_sendmsg+0xf3/0x170 [ 1659.782867] ? sendmsg_copy_msghdr+0x160/0x160 [ 1659.783919] ? lock_downgrade+0x6d0/0x6d0 [ 1659.784809] ? __lockdep_reset_lock+0x180/0x180 [ 1659.785785] ? futex_exit_release+0x220/0x220 [ 1659.786718] ? __fget_files+0x296/0x4c0 [ 1659.787546] ? __fget_light+0xea/0x290 [ 1659.788370] __sys_sendmsg+0xe5/0x1b0 [ 1659.789162] ? __sys_sendmsg_sock+0x40/0x40 [ 1659.790032] ? __do_sys_futex+0x2bb/0x480 [ 1659.790896] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1659.791975] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1659.793027] ? trace_hardirqs_on+0x5b/0x180 [ 1659.793916] do_syscall_64+0x33/0x40 [ 1659.794675] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1659.795730] RIP: 0033:0x7eff88fa0b19 [ 1659.796494] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1659.800245] RSP: 002b:00007eff86516188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1659.801798] RAX: ffffffffffffffda RBX: 00007eff890b3f60 RCX: 00007eff88fa0b19 [ 1659.803245] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1659.804712] RBP: 00007eff88ffaf6d R08: 0000000000000000 R09: 0000000000000000 [ 1659.806163] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1659.807637] R13: 00007ffe20cbc2ff R14: 00007eff86516300 R15: 0000000000022000 15:38:53 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0xf000, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) 15:38:53 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x0, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) 15:38:53 executing program 6: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:38:54 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x34000, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) 15:38:54 executing program 5: r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x2, 0xa1, 0x1, 0x1, 0x0, 0x6, 0xa00, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x37e9, 0xb7cc7466ccdd9531, @perf_bp={&(0x7f0000000000), 0x8}, 0x48, 0x2, 0x9, 0x3, 0x7, 0x84, 0x6, 0x0, 0x0, 0x0, 0x9}, 0x0, 0x6, r0, 0x5) syz_read_part_table(0x0, 0x0, 0x0) dup(0xffffffffffffffff) socket$netlink(0x10, 0x3, 0x4) r1 = getpid() r2 = getpgid(0x0) r3 = epoll_create(0x1) kcmp$KCMP_EPOLL_TFD(r1, r2, 0x7, r3, &(0x7f0000000040)={r3}) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r5 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r5, 0x0, r4, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) perf_event_open(&(0x7f0000000400)={0x0, 0x80, 0xc5, 0x4, 0x1, 0x9, 0x0, 0x80000001, 0x2001, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4, 0x2, @perf_bp={&(0x7f00000003c0), 0x6}, 0x0, 0x100000000, 0x7, 0x7, 0xd7, 0xfffffffe, 0x7, 0x0, 0x7, 0x0, 0x400}, r2, 0x8, r5, 0x2) epoll_wait(r5, &(0x7f0000000480)=[{}, {}, {}, {}, {}, {}, {}, {}, {}], 0x9, 0xed) syz_read_part_table(0x6, 0x4, &(0x7f0000000340)=[{&(0x7f0000000140)="2edb83092c1186683fa485feba6c0185f0ba76f6ee5f15440b4faa5de31d71fa116402cfdb809f7b5e7d16eec47f79ef0cfd81ff4a31b7d59e9646341bc8dbd20e7245f9ab6aae32c7810d471b361de90bed20f993a7d6d798c9ae790c17386ba7b1ecc8f96740955e765fb18bc0e5d805fed90f80383661ccdd9dae43c940216ca4d223", 0x84, 0x80000000}, {&(0x7f0000000200)="536e195fc39af57876c6ccbfe4720894df4a98c1d4f567c8359150c1a7ede826a4874eacaf42207865a4619aecd9ed7c25097e356e1f90d2357c89898a3e052944197eaa1137f328c7f00c75c7665d125a2010408ba052d548de7515b7a98d74f16e71cdfba32c5e4dd7f20edac1825d5908c6", 0x73, 0x7}, {&(0x7f0000000280)="04823ce1ba92a4f6cbd67be6c619bbc978aa4a4c266c7ffde6df67b921ce4acc66081e26778301d96cd6980d11cab30531fb69ef9a22feeadbac02b77bbe1f6f9c42aafc2bf701c0e4d0a829457c43edc4f8d9", 0x53, 0xff}, {&(0x7f0000000300)="544d64cf7a14d75c54", 0x9, 0x4}]) r6 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) openat(r6, &(0x7f0000000180)='./file0\x00', 0x101803, 0x1) write(r6, &(0x7f0000000240)="01", 0x1) fcntl$lock(r6, 0x7, &(0x7f0000000540)={0x0, 0x2, 0x0, 0xbf, 0xffffffffffffffff}) syz_read_part_table(0x4, 0x1, &(0x7f0000000500)=[{0x0, 0x0, 0x100}]) 15:38:54 executing program 0: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:38:54 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x80000, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) 15:38:54 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x2, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) 15:38:54 executing program 2: r0 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa418b6d}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ptype\x00') read(r1, &(0x7f00000002c0)=""/225, 0xe1) r2 = dup2(r0, r0) write$binfmt_elf64(r2, &(0x7f00000007c0)={{0x7f, 0x45, 0x4c, 0x46, 0x7f, 0x2, 0x6, 0x0, 0xea5, 0x2, 0x3e, 0x1800, 0x3bd, 0x40, 0x31e, 0x6, 0x201, 0x38, 0x1, 0x1f32, 0x1, 0x100}, [{0x0, 0x3, 0x5, 0xff, 0xa0, 0xdd7, 0x1000000003, 0xffff}], "5563cd9a58df47eb7fe1862c4d6716e03dda73ad79bdf1e9a003bcf3986c50d4e8aa28c957fb3d2f3a377ec19cccee4be2003b4f8551fca880d37a4b11600af6227109e9493fb7702e12a94b4c79f4", ['\x00', '\x00', '\x00']}, 0x3c7) r3 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x4a6c80) r4 = syz_open_procfs(0x0, 0x0) r5 = syz_open_procfs(0x0, &(0x7f0000000140)='net/ptype\x00') io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, &(0x7f0000000040)=[r1, 0xffffffffffffffff, r2, r0, r3, r4, r5, r0], 0x8) clone3(&(0x7f0000000200)={0x44004100, &(0x7f0000000080), 0x0, &(0x7f0000000100), {0x18}, 0x0, 0x0, 0x0, &(0x7f00000001c0)=[0x0, 0x0], 0x2}, 0x58) r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r7 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) r8 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r8, 0x0, 0xffffffffffffffff, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) clock_gettime(0x0, &(0x7f0000000e80)={0x0, 0x0}) recvmmsg(0xffffffffffffffff, &(0x7f0000000e00)=[{{&(0x7f0000000640)=@pppol2tpv3in6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @ipv4={""/10, ""/2, @broadcast}}}}, 0x80, &(0x7f0000000700)=[{&(0x7f00000006c0)=""/9, 0x9}, {&(0x7f0000000bc0)=""/255, 0xff}], 0x2}, 0x800}, {{&(0x7f0000000740)=@nfc, 0x80, &(0x7f0000000d00)=[{&(0x7f0000000cc0)=""/36, 0x24}], 0x1, &(0x7f0000000d40)=""/140, 0x8c}, 0x8}], 0x2, 0x80, &(0x7f0000000ec0)={r9, r10+10000000}) copy_file_range(r7, 0x0, r6, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r7, &(0x7f00000004c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, 0x3, 0x8, 0x201, 0x0, 0x0, {0xa, 0x0, 0x9}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x91}]}, 0x1c}, 0x1, 0x0, 0x0, 0x51}, 0x8000) ioctl$SNDRV_TIMER_IOCTL_INFO(r3, 0x80e85411, &(0x7f00000003c0)=""/228) readv(r7, &(0x7f0000000600)=[{&(0x7f0000000500)=""/82, 0x52}, {&(0x7f0000000580)=""/81, 0x51}], 0x2) [ 1660.551106] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1660.553064] CPU: 0 PID: 11516 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1660.554559] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1660.556410] Call Trace: [ 1660.557007] dump_stack+0x107/0x167 [ 1660.557835] sysfs_warn_dup.cold+0x1c/0x29 [ 1660.558785] sysfs_do_create_link_sd+0x122/0x140 [ 1660.559870] sysfs_create_link+0x5f/0xc0 [ 1660.560783] device_add+0x703/0x1c50 [ 1660.561628] ? devlink_add_symlinks+0x970/0x970 [ 1660.562673] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1660.563859] wiphy_register+0x1da6/0x2850 [ 1660.564800] ? wiphy_unregister+0xb90/0xb90 [ 1660.565788] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1660.567022] ieee80211_register_hw+0x23c5/0x38b0 [ 1660.568129] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1660.569225] ? net_generic+0xdb/0x2b0 [ 1660.570109] ? lockdep_init_map_type+0x2c7/0x780 [ 1660.571196] ? memset+0x20/0x50 [ 1660.571960] ? __hrtimer_init+0x12c/0x270 [ 1660.572913] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1660.574081] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1660.575139] ? hwsim_new_radio_nl+0x967/0x1080 [ 1660.576202] ? memcpy+0x39/0x60 [ 1660.576966] hwsim_new_radio_nl+0x991/0x1080 [ 1660.577975] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1660.579164] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1660.580651] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1660.582124] genl_family_rcv_msg_doit+0x22d/0x330 [ 1660.583216] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1660.584721] ? cap_capable+0x1cd/0x230 [ 1660.585624] ? ns_capable+0xe2/0x110 [ 1660.586475] genl_rcv_msg+0x33c/0x5a0 [ 1660.587346] ? genl_get_cmd+0x480/0x480 [ 1660.588254] ? lock_acquire+0x1b9/0x470 [ 1660.589150] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1660.590326] ? lock_release+0x680/0x680 [ 1660.591224] ? __lockdep_reset_lock+0x180/0x180 [ 1660.592289] netlink_rcv_skb+0x14b/0x430 [ 1660.593205] ? genl_get_cmd+0x480/0x480 [ 1660.594105] ? netlink_ack+0xab0/0xab0 [ 1660.595005] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1660.596057] ? __sanitizer_cov_trace_pc+0x42/0x60 [ 1660.597153] ? is_vmalloc_addr+0x7b/0xb0 [ 1660.598076] genl_rcv+0x24/0x40 [ 1660.598818] netlink_unicast+0x549/0x7f0 [ 1660.599749] ? netlink_attachskb+0x870/0x870 [ 1660.600721] ? __virt_addr_valid+0x128/0x350 [ 1660.601711] netlink_sendmsg+0x90f/0xdf0 [ 1660.602621] ? netlink_unicast+0x7f0/0x7f0 [ 1660.603549] ? netlink_unicast+0x7f0/0x7f0 [ 1660.604511] ? netlink_unicast+0x7f0/0x7f0 [ 1660.605458] __sock_sendmsg+0x154/0x190 [ 1660.606339] ____sys_sendmsg+0x70d/0x870 [ 1660.607239] ? sock_write_iter+0x3d0/0x3d0 [ 1660.608183] ? do_recvmmsg+0x6d0/0x6d0 [ 1660.609044] ? perf_trace_lock+0xac/0x490 [ 1660.609970] ? __lockdep_reset_lock+0x180/0x180 [ 1660.611009] ___sys_sendmsg+0xf3/0x170 [ 1660.611879] ? sendmsg_copy_msghdr+0x160/0x160 [ 1660.612899] ? lock_downgrade+0x6d0/0x6d0 [ 1660.613832] ? __fget_files+0x3a5/0x4c0 [ 1660.614723] ? __fget_files+0x296/0x4c0 [ 1660.615622] ? __fget_light+0xea/0x290 [ 1660.616501] __sys_sendmsg+0xe5/0x1b0 [ 1660.617346] ? __sys_sendmsg_sock+0x40/0x40 [ 1660.618331] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1660.619497] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1660.620647] ? trace_hardirqs_on+0x5b/0x180 [ 1660.621600] do_syscall_64+0x33/0x40 [ 1660.622412] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1660.623529] RIP: 0033:0x7f07e63f4b19 [ 1660.624352] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1660.628357] RSP: 002b:00007f07e396a188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1660.630023] RAX: ffffffffffffffda RBX: 00007f07e6507f60 RCX: 00007f07e63f4b19 [ 1660.631577] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1660.633142] RBP: 00007f07e644ef6d R08: 0000000000000000 R09: 0000000000000000 [ 1660.634693] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1660.636263] R13: 00007fff1f25f23f R14: 00007f07e396a300 R15: 0000000000022000 [ 1660.772383] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1660.773844] CPU: 1 PID: 11524 Comm: syz-executor.4 Not tainted 5.10.205 #1 [ 1660.774984] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1660.776347] Call Trace: [ 1660.776789] dump_stack+0x107/0x167 [ 1660.777397] sysfs_warn_dup.cold+0x1c/0x29 [ 1660.778100] sysfs_do_create_link_sd+0x122/0x140 [ 1660.778875] sysfs_create_link+0x5f/0xc0 [ 1660.779556] device_add+0x703/0x1c50 [ 1660.780190] ? devlink_add_symlinks+0x970/0x970 [ 1660.780952] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1660.781979] wiphy_register+0x1da6/0x2850 [ 1660.782728] ? wiphy_unregister+0xb90/0xb90 [ 1660.783579] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1660.784517] ieee80211_register_hw+0x23c5/0x38b0 [ 1660.785454] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1660.786316] ? net_generic+0xdb/0x2b0 [ 1660.787063] ? lockdep_init_map_type+0x2c7/0x780 [ 1660.787946] ? memset+0x20/0x50 [ 1660.788590] ? __hrtimer_init+0x12c/0x270 [ 1660.789321] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1660.790300] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1660.791108] ? hwsim_new_radio_nl+0x967/0x1080 [ 1660.791950] ? memcpy+0x39/0x60 [ 1660.792558] hwsim_new_radio_nl+0x991/0x1080 [ 1660.793351] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1660.794306] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1660.795486] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1660.796559] genl_family_rcv_msg_doit+0x22d/0x330 [ 1660.797419] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1660.798584] ? cap_capable+0x1cd/0x230 [ 1660.799246] ? ns_capable+0xe2/0x110 [ 1660.799898] genl_rcv_msg+0x33c/0x5a0 [ 1660.800559] ? genl_get_cmd+0x480/0x480 [ 1660.801255] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1660.802151] ? lock_release+0x680/0x680 [ 1660.802858] netlink_rcv_skb+0x14b/0x430 [ 1660.803509] ? genl_get_cmd+0x480/0x480 [ 1660.804209] ? netlink_ack+0xab0/0xab0 [ 1660.804889] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1660.805783] ? down_read+0x10f/0x430 [ 1660.806404] genl_rcv+0x24/0x40 [ 1660.806977] netlink_unicast+0x549/0x7f0 [ 1660.807671] ? netlink_attachskb+0x870/0x870 [ 1660.808408] netlink_sendmsg+0x90f/0xdf0 [ 1660.809113] ? netlink_unicast+0x7f0/0x7f0 [ 1660.809842] ? netlink_unicast+0x7f0/0x7f0 [ 1660.810574] __sock_sendmsg+0x154/0x190 [ 1660.811228] ____sys_sendmsg+0x70d/0x870 [ 1660.811902] ? sock_write_iter+0x3d0/0x3d0 [ 1660.812585] ? do_recvmmsg+0x6d0/0x6d0 [ 1660.813236] ___sys_sendmsg+0xf3/0x170 [ 1660.813882] ? sendmsg_copy_msghdr+0x160/0x160 [ 1660.814691] ? lock_downgrade+0x6d0/0x6d0 [ 1660.815353] ? find_held_lock+0x2c/0x110 [ 1660.816052] ? clockevents_program_event+0x14b/0x360 [ 1660.816896] ? __fget_files+0x296/0x4c0 [ 1660.817585] ? __fget_light+0xea/0x290 [ 1660.818215] __sys_sendmsg+0xe5/0x1b0 [ 1660.818840] ? __sys_sendmsg_sock+0x40/0x40 [ 1660.819560] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1660.820428] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1660.821259] ? trace_hardirqs_on+0x5b/0x180 [ 1660.821985] do_syscall_64+0x33/0x40 [ 1660.822610] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1660.823521] RIP: 0033:0x7fc2fd383b19 [ 1660.824123] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1660.827062] RSP: 002b:00007fc2fa8f9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1660.828282] RAX: ffffffffffffffda RBX: 00007fc2fd496f60 RCX: 00007fc2fd383b19 [ 1660.829402] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1660.830593] RBP: 00007fc2fd3ddf6d R08: 0000000000000000 R09: 0000000000000000 [ 1660.831732] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1660.832881] R13: 00007ffc59a8b65f R14: 00007fc2fa8f9300 R15: 0000000000022000 [ 1660.916823] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1660.918230] CPU: 1 PID: 11642 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1660.919381] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1660.920719] Call Trace: [ 1660.921148] dump_stack+0x107/0x167 [ 1660.921761] sysfs_warn_dup.cold+0x1c/0x29 [ 1660.922468] sysfs_do_create_link_sd+0x122/0x140 [ 1660.923252] sysfs_create_link+0x5f/0xc0 [ 1660.923934] device_add+0x703/0x1c50 [ 1660.924556] ? devlink_add_symlinks+0x970/0x970 [ 1660.925324] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1660.926184] wiphy_register+0x1da6/0x2850 [ 1660.926877] ? wiphy_unregister+0xb90/0xb90 [ 1660.927658] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1660.928741] ieee80211_register_hw+0x23c5/0x38b0 [ 1660.929707] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1660.930664] ? net_generic+0xdb/0x2b0 [ 1660.931432] ? lockdep_init_map_type+0x2c7/0x780 [ 1660.932395] ? memset+0x20/0x50 [ 1660.933054] ? __hrtimer_init+0x12c/0x270 [ 1660.933777] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1660.934597] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1660.935343] ? hwsim_new_radio_nl+0x967/0x1080 [ 1660.936093] ? memcpy+0x39/0x60 [ 1660.936634] hwsim_new_radio_nl+0x991/0x1080 [ 1660.937340] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1660.938188] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1660.939244] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1660.940309] genl_family_rcv_msg_doit+0x22d/0x330 [ 1660.941085] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1660.942144] ? cap_capable+0x1cd/0x230 [ 1660.942789] ? ns_capable+0xe2/0x110 [ 1660.943391] genl_rcv_msg+0x33c/0x5a0 [ 1660.944032] ? genl_get_cmd+0x480/0x480 [ 1660.944676] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1660.945514] ? lock_release+0x680/0x680 [ 1660.946167] netlink_rcv_skb+0x14b/0x430 [ 1660.946818] ? genl_get_cmd+0x480/0x480 [ 1660.947461] ? netlink_ack+0xab0/0xab0 [ 1660.948124] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1660.948857] ? is_vmalloc_addr+0x7b/0xb0 [ 1660.949519] genl_rcv+0x24/0x40 [ 1660.950038] netlink_unicast+0x549/0x7f0 [ 1660.950689] ? netlink_attachskb+0x870/0x870 [ 1660.951390] ? netlink_sendmsg+0x8d0/0xdf0 [ 1660.952074] netlink_sendmsg+0x90f/0xdf0 [ 1660.952725] ? netlink_unicast+0x7f0/0x7f0 [ 1660.953412] ? netlink_unicast+0x7f0/0x7f0 [ 1660.954074] __sock_sendmsg+0x154/0x190 [ 1660.954697] ____sys_sendmsg+0x70d/0x870 [ 1660.955339] ? sock_write_iter+0x3d0/0x3d0 [ 1660.956022] ? do_recvmmsg+0x6d0/0x6d0 [ 1660.956635] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1660.957455] ? trace_hardirqs_on+0x5b/0x180 [ 1660.958132] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1660.958989] ___sys_sendmsg+0xf3/0x170 [ 1660.959606] ? sendmsg_copy_msghdr+0x160/0x160 [ 1660.960347] ? lock_downgrade+0x6d0/0x6d0 [ 1660.960997] ? find_held_lock+0x2c/0x110 [ 1660.961646] ? clockevents_program_event+0x14b/0x360 [ 1660.962454] ? __fget_files+0x296/0x4c0 [ 1660.963103] ? __fget_light+0xea/0x290 [ 1660.963835] __sys_sendmsg+0xe5/0x1b0 [ 1660.964585] ? __sys_sendmsg_sock+0x40/0x40 [ 1660.965431] ? trace_hardirqs_on+0x5b/0x180 [ 1660.966274] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1660.967120] ? __x64_sys_sendmsg+0x64/0xb0 [ 1660.967799] do_syscall_64+0x33/0x40 [ 1660.968379] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1660.969172] RIP: 0033:0x7fc533f18b19 [ 1660.969751] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1660.972605] RSP: 002b:00007fc53148e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1660.973795] RAX: ffffffffffffffda RBX: 00007fc53402bf60 RCX: 00007fc533f18b19 [ 1660.974900] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1660.976027] RBP: 00007fc533f72f6d R08: 0000000000000000 R09: 0000000000000000 [ 1660.977132] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1660.978425] R13: 00007fff9313d64f R14: 00007fc53148e300 R15: 0000000000022000 [ 1660.996762] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1660.998278] CPU: 1 PID: 11666 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1660.999497] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1661.000696] Call Trace: [ 1661.001079] dump_stack+0x107/0x167 [ 1661.001613] sysfs_warn_dup.cold+0x1c/0x29 [ 1661.002229] sysfs_do_create_link_sd+0x122/0x140 [ 1661.002908] sysfs_create_link+0x5f/0xc0 [ 1661.003498] device_add+0x703/0x1c50 [ 1661.004077] ? devlink_add_symlinks+0x970/0x970 [ 1661.004816] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1661.005774] wiphy_register+0x1da6/0x2850 [ 1661.006519] ? wiphy_unregister+0xb90/0xb90 [ 1661.007302] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1661.008267] ieee80211_register_hw+0x23c5/0x38b0 [ 1661.009120] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1661.009962] ? net_generic+0xdb/0x2b0 [ 1661.010639] ? lockdep_init_map_type+0x2c7/0x780 [ 1661.011535] ? memset+0x20/0x50 [ 1661.012134] ? __hrtimer_init+0x12c/0x270 [ 1661.012930] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1661.013833] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1661.014724] ? hwsim_new_radio_nl+0x967/0x1080 [ 1661.015526] ? memcpy+0x39/0x60 [ 1661.016032] hwsim_new_radio_nl+0x991/0x1080 [ 1661.016673] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1661.017421] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1661.018352] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1661.019340] genl_family_rcv_msg_doit+0x22d/0x330 [ 1661.020200] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1661.021352] ? cap_capable+0x1cd/0x230 [ 1661.022056] ? ns_capable+0xe2/0x110 [ 1661.022716] genl_rcv_msg+0x33c/0x5a0 [ 1661.023390] ? genl_get_cmd+0x480/0x480 [ 1661.024097] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1661.025010] ? lock_release+0x680/0x680 [ 1661.025707] ? __lockdep_reset_lock+0x180/0x180 [ 1661.026529] netlink_rcv_skb+0x14b/0x430 [ 1661.027244] ? genl_get_cmd+0x480/0x480 [ 1661.027963] ? netlink_ack+0xab0/0xab0 [ 1661.028663] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1661.029466] ? is_vmalloc_addr+0x7b/0xb0 [ 1661.030183] genl_rcv+0x24/0x40 [ 1661.030714] netlink_unicast+0x549/0x7f0 [ 1661.031292] ? netlink_attachskb+0x870/0x870 [ 1661.032012] ? __virt_addr_valid+0x128/0x350 [ 1661.032789] netlink_sendmsg+0x90f/0xdf0 [ 1661.033510] ? netlink_unicast+0x7f0/0x7f0 [ 1661.034253] ? __sock_sendmsg+0x4b/0x190 [ 1661.034957] ? __sock_sendmsg+0x69/0x190 [ 1661.035665] ? netlink_unicast+0x7f0/0x7f0 [ 1661.036412] __sock_sendmsg+0x154/0x190 [ 1661.037109] ____sys_sendmsg+0x70d/0x870 [ 1661.037817] ? sock_write_iter+0x3d0/0x3d0 [ 1661.038550] ? do_recvmmsg+0x6d0/0x6d0 [ 1661.039229] ? perf_trace_lock+0xac/0x490 [ 1661.039970] ? __lockdep_reset_lock+0x180/0x180 [ 1661.040774] ? __lock_acquire+0xbb1/0x5b00 [ 1661.041522] ___sys_sendmsg+0xf3/0x170 [ 1661.042202] ? sendmsg_copy_msghdr+0x160/0x160 [ 1661.043004] ? lock_downgrade+0x6d0/0x6d0 [ 1661.043735] ? __lockdep_reset_lock+0x180/0x180 [ 1661.044546] ? futex_exit_release+0x220/0x220 [ 1661.045331] ? __fget_files+0x296/0x4c0 [ 1661.046035] ? __fget_light+0xea/0x290 [ 1661.046715] __sys_sendmsg+0xe5/0x1b0 [ 1661.047374] ? __sys_sendmsg_sock+0x40/0x40 [ 1661.048133] ? __do_sys_futex+0x2bb/0x480 [ 1661.048869] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1661.049770] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1661.050653] ? trace_hardirqs_on+0x5b/0x180 [ 1661.051402] do_syscall_64+0x33/0x40 [ 1661.052053] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1661.052933] RIP: 0033:0x7eff88fa0b19 [ 1661.053575] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1661.056731] RSP: 002b:00007eff86516188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1661.058037] RAX: ffffffffffffffda RBX: 00007eff890b3f60 RCX: 00007eff88fa0b19 [ 1661.059247] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1661.060464] RBP: 00007eff88ffaf6d R08: 0000000000000000 R09: 0000000000000000 [ 1661.061671] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1661.062883] R13: 00007ffe20cbc2ff R14: 00007eff86516300 R15: 0000000000022000 15:39:09 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x3, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) 15:39:09 executing program 5: r0 = creat(0x0, 0x0) r1 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x406, r1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x248e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000000340)) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r2, &(0x7f0000000280)={0x0, 0x700, &(0x7f0000000300)={&(0x7f00000001c0)={0x20, 0x20, 0xa39, 0x0, 0x0, {0x2}, [@nested={0xc, 0x0, 0x0, 0x1, [@typed={0x5, 0x0, 0x0, 0x0, @str='\x00'}]}]}, 0x20}}, 0x0) r3 = perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x94, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x2800, 0x10001}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r4 = open(&(0x7f00000000c0)='./file0\x00', 0x80000, 0x28) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000000)=@IORING_OP_FADVISE={0x18, 0x0, 0x0, @fd_index, 0x4}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, 0xffffffffffffffff, 0x0) r5 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, 0xffffffffffffffff, 0x8000000) syz_io_uring_submit(r5, 0x0, &(0x7f00000002c0)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x1, 0x4007}, 0x80000001) ioctl$AUTOFS_DEV_IOCTL_FAIL(r0, 0xc0189377, &(0x7f0000000100)={{0x1, 0x1, 0x18, r3, {0xfffff001, 0x8}}, './file0\x00'}) syz_io_uring_submit(r5, 0x0, &(0x7f00000002c0)=@IORING_OP_OPENAT2={0x1c, 0x2, 0x0, r6, &(0x7f0000000140)={0x4000, 0xaa, 0x17}, &(0x7f0000000200)='./file0\x00', 0x18, 0x0, 0x23456}, 0x4a7) r7 = epoll_create(0x3) dup2(r7, r3) socket$netlink(0x10, 0x3, 0x0) sendmsg$BATADV_CMD_GET_HARDIF(r4, &(0x7f0000000280)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000240)={&(0x7f00000001c0)={0x14, 0x0, 0x411, 0x70bd29, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x200080c0}, 0x4040000) unshare(0x48020200) 15:39:09 executing program 2: r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r1, 0x0, r0, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) sendfile(r1, 0xffffffffffffffff, &(0x7f0000000000)=0x2, 0x8) r2 = inotify_init1(0x80000) r3 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x2, 0x0) openat(r3, &(0x7f0000000180)='./file0\x00', 0x101803, 0x1) write(r3, &(0x7f0000000240)="01", 0x1) readv(r3, &(0x7f0000000080)=[{&(0x7f00000002c0)=""/4096, 0x1000}], 0x1) writev(r2, &(0x7f0000000040)=[{&(0x7f0000000140)="3180af9be58988e3e063abe11d2dbc51476c4de0d51fe3a2115040a8e180e5287175ca41693e4deedd7889e2bd94f49e6c0861861e7dcf61266c3fc58f038413a394b376e9011a2631826483ac0ded147691dd2f226232a470a9819e7f292486248e590151a64ea0796fbc19be02efb9c25b875b699c925a2d4355cf7b44140546342982e174a3a24908a1e98fb05a008e6852f98f6f6900c7051e7c91166af0a91f3a72e828260269c1d88e7be5742980ca6c29d8fc479ffbdac0a14c263dc54a97f7d092f7bc1e810c439643e8dd3331041352f5a854241637d3d3f806aaebdffa", 0xe2}], 0x1) perf_event_open(&(0x7f0000001d80)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x4, 0x800000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff8100000c}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) 15:39:09 executing program 0: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)=0x0) syz_io_uring_submit(0x0, r0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:39:09 executing program 3: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x0, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:39:09 executing program 4: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)) syz_io_uring_submit(0x0, 0x0, 0x0, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:39:09 executing program 6: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:39:09 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x400300, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) [ 1675.550712] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1675.552471] CPU: 1 PID: 11784 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1675.553874] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1675.555556] Call Trace: [ 1675.556100] dump_stack+0x107/0x167 [ 1675.556854] sysfs_warn_dup.cold+0x1c/0x29 [ 1675.557716] sysfs_do_create_link_sd+0x122/0x140 [ 1675.558683] sysfs_create_link+0x5f/0xc0 [ 1675.559516] device_add+0x703/0x1c50 [ 1675.560293] ? devlink_add_symlinks+0x970/0x970 [ 1675.561242] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1675.562335] wiphy_register+0x1da6/0x2850 [ 1675.563208] ? wiphy_unregister+0xb90/0xb90 [ 1675.564146] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1675.565253] ieee80211_register_hw+0x23c5/0x38b0 [ 1675.566242] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1675.567215] ? net_generic+0xdb/0x2b0 [ 1675.568013] ? lockdep_init_map_type+0x2c7/0x780 [ 1675.568987] ? memset+0x20/0x50 [ 1675.569659] ? __hrtimer_init+0x12c/0x270 [ 1675.570515] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1675.571545] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1675.572498] ? hwsim_new_radio_nl+0x967/0x1080 [ 1675.573434] ? memcpy+0x39/0x60 [ 1675.574118] hwsim_new_radio_nl+0x991/0x1080 [ 1675.575011] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1675.576107] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1675.577444] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1675.578780] genl_family_rcv_msg_doit+0x22d/0x330 [ 1675.579766] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1675.581101] ? cap_capable+0x1cd/0x230 [ 1675.581910] ? ns_capable+0xe2/0x110 [ 1675.582678] genl_rcv_msg+0x33c/0x5a0 [ 1675.583459] ? genl_get_cmd+0x480/0x480 [ 1675.584288] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1675.585342] ? lock_release+0x680/0x680 [ 1675.586144] ? __lockdep_reset_lock+0x180/0x180 [ 1675.587085] netlink_rcv_skb+0x14b/0x430 [ 1675.587913] ? genl_get_cmd+0x480/0x480 [ 1675.588730] ? netlink_ack+0xab0/0xab0 [ 1675.589541] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1675.590465] ? is_vmalloc_addr+0x7b/0xb0 [ 1675.591294] genl_rcv+0x24/0x40 [ 1675.591965] netlink_unicast+0x549/0x7f0 [ 1675.592791] ? netlink_attachskb+0x870/0x870 [ 1675.593666] ? __virt_addr_valid+0x128/0x350 [ 1675.594571] netlink_sendmsg+0x90f/0xdf0 [ 1675.595409] ? netlink_unicast+0x7f0/0x7f0 [ 1675.596298] ? netlink_unicast+0x7f0/0x7f0 [ 1675.597155] __sock_sendmsg+0x154/0x190 [ 1675.597961] ____sys_sendmsg+0x70d/0x870 [ 1675.598782] ? sock_write_iter+0x3d0/0x3d0 [ 1675.599634] ? do_recvmmsg+0x6d0/0x6d0 [ 1675.600426] ? perf_trace_lock+0xac/0x490 [ 1675.601279] ? __lockdep_reset_lock+0x180/0x180 [ 1675.602221] ? perf_trace_lock+0xac/0x490 [ 1675.603066] ___sys_sendmsg+0xf3/0x170 [ 1675.603874] ? sendmsg_copy_msghdr+0x160/0x160 [ 1675.604811] ? lock_downgrade+0x6d0/0x6d0 [ 1675.605649] ? finish_task_switch+0x126/0x5d0 [ 1675.606563] ? lock_downgrade+0x6d0/0x6d0 [ 1675.607418] ? __fget_files+0x296/0x4c0 [ 1675.608272] ? __fget_light+0xea/0x290 [ 1675.609082] __sys_sendmsg+0xe5/0x1b0 [ 1675.609872] ? __sys_sendmsg_sock+0x40/0x40 [ 1675.610746] ? io_schedule_timeout+0x140/0x140 [ 1675.611687] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1675.612761] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1675.613800] ? trace_hardirqs_on+0x5b/0x180 [ 1675.614688] do_syscall_64+0x33/0x40 [ 1675.615439] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1675.616503] RIP: 0033:0x7eff88fa0b19 [ 1675.617265] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1675.620963] RSP: 002b:00007eff86516188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1675.622510] RAX: ffffffffffffffda RBX: 00007eff890b3f60 RCX: 00007eff88fa0b19 [ 1675.623961] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1675.625390] RBP: 00007eff88ffaf6d R08: 0000000000000000 R09: 0000000000000000 [ 1675.626827] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1675.628263] R13: 00007ffe20cbc2ff R14: 00007eff86516300 R15: 0000000000022000 [ 1675.639215] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.5'. 15:39:09 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0xf0ffff, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) 15:39:09 executing program 0: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:39:09 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x4, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) 15:39:09 executing program 2: r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) r1 = perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140), 0x40001, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = dup2(r3, r2) openat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x200000, 0x6b) ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0x1f}}, './file0\x00'}) syz_genetlink_get_family_id$batadv(0x0, r4) r5 = socket$packet(0x11, 0x3, 0x300) socket$inet6_udplite(0xa, 0x2, 0x88) r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) r7 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_SET_INTERFACE(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="21010000000000ce3a00060000a7385e7ae0", @ANYRES32=0x0, @ANYBLOB="0a00e800ffffffffffff00000800050006000000"], 0x30}}, 0x0) sendmsg$NL80211_CMD_STOP_NAN(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000300)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000", @ANYRES16=0x0, @ANYBLOB="04002abd7000fddbdf2574000035080003003678665976b8dbde91d03ba69681a57f21e4e12c8a188dcf8d105dffa998d95c42b3209269d68f54a71d613a27a06f77336d68aca6ab3f9559c2b09c005794f35c1112d5c6a487", @ANYRES32, @ANYBLOB], 0x1c}}, 0x4000080) r8 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) lseek(r1, 0x3, 0x1) ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000140)={'lo\x00', 0x0}) setsockopt$packet_add_memb(r5, 0x107, 0x1, &(0x7f0000000080)={r9, 0x1, 0x6, @dev}, 0x10) sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, 0x0, 0xd0) perf_event_open(&(0x7f0000000500)={0x6, 0x80, 0x4, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0xffffffff81000000}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x22}, 0x0, 0x0, 0xffffffffffffffff, 0x0) 15:39:09 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x1000000, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) 15:39:09 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x2000000, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) [ 1676.029636] device lo entered promiscuous mode [ 1676.139262] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1676.141275] CPU: 1 PID: 11798 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1676.142692] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1676.144401] Call Trace: [ 1676.144950] dump_stack+0x107/0x167 [ 1676.145703] sysfs_warn_dup.cold+0x1c/0x29 [ 1676.146571] sysfs_do_create_link_sd+0x122/0x140 [ 1676.147557] sysfs_create_link+0x5f/0xc0 [ 1676.148403] device_add+0x703/0x1c50 [ 1676.149171] ? devlink_add_symlinks+0x970/0x970 [ 1676.150120] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1676.151193] wiphy_register+0x1da6/0x2850 [ 1676.152077] ? wiphy_unregister+0xb90/0xb90 [ 1676.152978] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1676.154105] ieee80211_register_hw+0x23c5/0x38b0 [ 1676.155101] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1676.156086] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1676.157218] ? memset+0x20/0x50 [ 1676.157893] ? __hrtimer_init+0x12c/0x270 [ 1676.158748] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1676.159792] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1676.160766] ? hwsim_new_radio_nl+0x967/0x1080 [ 1676.161701] ? memcpy+0x39/0x60 [ 1676.162386] hwsim_new_radio_nl+0x991/0x1080 [ 1676.163290] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1676.164378] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1676.165725] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1676.167081] genl_family_rcv_msg_doit+0x22d/0x330 [ 1676.168077] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1676.169461] genl_rcv_msg+0x33c/0x5a0 [ 1676.170249] ? genl_get_cmd+0x480/0x480 [ 1676.171068] ? lock_acquire+0x1b9/0x470 [ 1676.171896] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1676.172963] ? lock_release+0x680/0x680 [ 1676.173780] ? __lockdep_reset_lock+0x180/0x180 [ 1676.174738] netlink_rcv_skb+0x14b/0x430 [ 1676.175573] ? genl_get_cmd+0x480/0x480 [ 1676.176397] ? netlink_ack+0xab0/0xab0 [ 1676.177217] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1676.178155] ? kcov_remote_stop+0x310/0x310 [ 1676.179032] ? is_vmalloc_addr+0x7b/0xb0 [ 1676.179884] genl_rcv+0x24/0x40 [ 1676.180563] netlink_unicast+0x549/0x7f0 [ 1676.181401] ? netlink_attachskb+0x870/0x870 [ 1676.182302] ? __virt_addr_valid+0x128/0x350 [ 1676.183217] netlink_sendmsg+0x90f/0xdf0 [ 1676.184065] ? netlink_unicast+0x7f0/0x7f0 [ 1676.184952] ? netlink_unicast+0x7f0/0x7f0 [ 1676.185818] __sock_sendmsg+0x154/0x190 [ 1676.186633] ____sys_sendmsg+0x70d/0x870 [ 1676.187469] ? sock_write_iter+0x3d0/0x3d0 [ 1676.188341] ? do_recvmmsg+0x6d0/0x6d0 [ 1676.189141] ? perf_trace_lock+0xac/0x490 [ 1676.189992] ? __lockdep_reset_lock+0x180/0x180 [ 1676.190944] ___sys_sendmsg+0xf3/0x170 [ 1676.191731] ? sendmsg_copy_msghdr+0x160/0x160 [ 1676.192709] ? lock_downgrade+0x6d0/0x6d0 [ 1676.193563] ? __fget_files+0x1f5/0x4c0 [ 1676.194361] ? __fget_files+0x207/0x4c0 [ 1676.195181] ? __fget_files+0x296/0x4c0 [ 1676.196015] ? __fget_light+0xea/0x290 [ 1676.196813] __sys_sendmsg+0xe5/0x1b0 [ 1676.197594] ? __sys_sendmsg_sock+0x40/0x40 [ 1676.198468] ? trace_hardirqs_on+0x5b/0x180 [ 1676.199362] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1676.200407] ? syscall_enter_from_user_mode+0x27/0x50 [ 1676.201465] do_syscall_64+0x33/0x40 [ 1676.202232] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1676.203269] RIP: 0033:0x7fc533f18b19 [ 1676.204037] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1676.207737] RSP: 002b:00007fc53148e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1676.209280] RAX: ffffffffffffffda RBX: 00007fc53402bf60 RCX: 00007fc533f18b19 [ 1676.210734] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1676.212173] RBP: 00007fc533f72f6d R08: 0000000000000000 R09: 0000000000000000 [ 1676.213610] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1676.215052] R13: 00007fff9313d64f R14: 00007fc53148e300 R15: 0000000000022000 [ 1676.404471] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1676.406231] CPU: 1 PID: 11785 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1676.407553] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1676.409129] Call Trace: [ 1676.409631] dump_stack+0x107/0x167 [ 1676.410337] sysfs_warn_dup.cold+0x1c/0x29 [ 1676.411147] sysfs_do_create_link_sd+0x122/0x140 [ 1676.412078] sysfs_create_link+0x5f/0xc0 [ 1676.412851] device_add+0x703/0x1c50 [ 1676.413565] ? devlink_add_symlinks+0x970/0x970 [ 1676.414477] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1676.415491] wiphy_register+0x1da6/0x2850 [ 1676.416305] ? wiphy_unregister+0xb90/0xb90 [ 1676.417142] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1676.418199] ieee80211_register_hw+0x23c5/0x38b0 [ 1676.419128] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1676.420075] ? net_generic+0xdb/0x2b0 [ 1676.420810] ? lockdep_init_map_type+0x2c7/0x780 [ 1676.421732] ? memset+0x20/0x50 [ 1676.422379] ? __hrtimer_init+0x12c/0x270 [ 1676.423184] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1676.424173] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1676.425083] ? hwsim_new_radio_nl+0x967/0x1080 [ 1676.425942] ? memcpy+0x39/0x60 [ 1676.426582] hwsim_new_radio_nl+0x991/0x1080 [ 1676.427418] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1676.428434] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1676.429690] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1676.430948] genl_family_rcv_msg_doit+0x22d/0x330 [ 1676.431879] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1676.433122] ? cap_capable+0x1cd/0x230 [ 1676.433890] ? ns_capable+0xe2/0x110 [ 1676.434608] genl_rcv_msg+0x33c/0x5a0 [ 1676.435333] ? genl_get_cmd+0x480/0x480 [ 1676.436101] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1676.437084] ? lock_release+0x680/0x680 [ 1676.437853] netlink_rcv_skb+0x14b/0x430 [ 1676.438621] ? genl_get_cmd+0x480/0x480 [ 1676.439374] ? netlink_ack+0xab0/0xab0 [ 1676.440132] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1676.441003] ? is_vmalloc_addr+0x7b/0xb0 [ 1676.441769] genl_rcv+0x24/0x40 [ 1676.442389] netlink_unicast+0x549/0x7f0 [ 1676.443161] ? netlink_attachskb+0x870/0x870 [ 1676.444002] ? __virt_addr_valid+0x128/0x350 [ 1676.444846] netlink_sendmsg+0x90f/0xdf0 [ 1676.445624] ? netlink_unicast+0x7f0/0x7f0 [ 1676.446437] ? netlink_unicast+0x7f0/0x7f0 [ 1676.447243] __sock_sendmsg+0x154/0x190 [ 1676.448014] ____sys_sendmsg+0x70d/0x870 [ 1676.448786] ? sock_write_iter+0x3d0/0x3d0 [ 1676.449574] ? do_recvmmsg+0x6d0/0x6d0 [ 1676.450320] ? perf_trace_lock+0xac/0x490 [ 1676.451116] ? __lockdep_reset_lock+0x180/0x180 [ 1676.452029] ___sys_sendmsg+0xf3/0x170 [ 1676.452767] ? sendmsg_copy_msghdr+0x160/0x160 [ 1676.453631] ? lock_downgrade+0x6d0/0x6d0 [ 1676.454431] ? __fget_files+0x296/0x4c0 [ 1676.455210] ? __fget_light+0xea/0x290 [ 1676.455969] __sys_sendmsg+0xe5/0x1b0 [ 1676.456686] ? __sys_sendmsg_sock+0x40/0x40 [ 1676.457490] ? trace_hardirqs_on+0x5b/0x180 [ 1676.458318] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1676.459291] do_syscall_64+0x33/0x40 [ 1676.459993] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1676.460942] RIP: 0033:0x7f07e63f4b19 [ 1676.461636] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1676.465071] RSP: 002b:00007f07e396a188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1676.466474] RAX: ffffffffffffffda RBX: 00007f07e6507f60 RCX: 00007f07e63f4b19 [ 1676.467858] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1676.469195] RBP: 00007f07e644ef6d R08: 0000000000000000 R09: 0000000000000000 [ 1676.470517] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1676.471848] R13: 00007fff1f25f23f R14: 00007f07e396a300 R15: 0000000000022000 [ 1676.532889] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1676.534793] CPU: 0 PID: 11846 Comm: syz-executor.4 Not tainted 5.10.205 #1 [ 1676.536241] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1676.537926] Call Trace: [ 1676.538473] dump_stack+0x107/0x167 [ 1676.539232] sysfs_warn_dup.cold+0x1c/0x29 [ 1676.540151] sysfs_do_create_link_sd+0x122/0x140 [ 1676.541226] sysfs_create_link+0x5f/0xc0 [ 1676.542153] device_add+0x703/0x1c50 [ 1676.543006] ? devlink_add_symlinks+0x970/0x970 [ 1676.544074] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1676.545271] wiphy_register+0x1da6/0x2850 [ 1676.546234] ? wiphy_unregister+0xb90/0xb90 [ 1676.547235] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1676.548470] ieee80211_register_hw+0x23c5/0x38b0 [ 1676.549585] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1676.550689] ? net_generic+0xdb/0x2b0 [ 1676.551563] ? lockdep_init_map_type+0x2c7/0x780 [ 1676.552660] ? memset+0x20/0x50 [ 1676.553412] ? __hrtimer_init+0x12c/0x270 [ 1676.554366] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1676.555520] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1676.556586] ? hwsim_new_radio_nl+0x967/0x1080 [ 1676.557633] ? memcpy+0x39/0x60 [ 1676.558411] hwsim_new_radio_nl+0x991/0x1080 [ 1676.559419] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1676.560621] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1676.562113] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1676.563589] genl_family_rcv_msg_doit+0x22d/0x330 [ 1676.564711] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1676.566202] ? cap_capable+0x1cd/0x230 [ 1676.567107] ? ns_capable+0xe2/0x110 [ 1676.567970] genl_rcv_msg+0x33c/0x5a0 [ 1676.568836] ? genl_get_cmd+0x480/0x480 [ 1676.569741] ? lock_acquire+0x1b9/0x470 [ 1676.570634] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1676.571819] ? lock_release+0x680/0x680 [ 1676.572734] netlink_rcv_skb+0x14b/0x430 [ 1676.573657] ? genl_get_cmd+0x480/0x480 [ 1676.574558] ? netlink_ack+0xab0/0xab0 [ 1676.575467] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1676.576521] ? is_vmalloc_addr+0x7b/0xb0 [ 1676.577452] genl_rcv+0x24/0x40 [ 1676.578200] netlink_unicast+0x549/0x7f0 [ 1676.579140] ? netlink_attachskb+0x870/0x870 [ 1676.580149] ? netlink_sendmsg+0x8b8/0xdf0 [ 1676.581121] netlink_sendmsg+0x90f/0xdf0 [ 1676.582054] ? netlink_unicast+0x7f0/0x7f0 [ 1676.583036] ? netlink_unicast+0x7f0/0x7f0 [ 1676.584013] __sock_sendmsg+0x154/0x190 [ 1676.584920] ____sys_sendmsg+0x70d/0x870 [ 1676.585852] ? sock_write_iter+0x3d0/0x3d0 [ 1676.586811] ? do_recvmmsg+0x6d0/0x6d0 [ 1676.587695] ? perf_trace_lock+0xac/0x490 [ 1676.588661] ? __lockdep_reset_lock+0x180/0x180 [ 1676.589730] ___sys_sendmsg+0xf3/0x170 [ 1676.590624] ? sendmsg_copy_msghdr+0x160/0x160 [ 1676.591670] ? lock_downgrade+0x6d0/0x6d0 [ 1676.592661] ? __fget_files+0x296/0x4c0 [ 1676.593583] ? __fget_light+0xea/0x290 [ 1676.594483] __sys_sendmsg+0xe5/0x1b0 [ 1676.595341] ? __sys_sendmsg_sock+0x40/0x40 [ 1676.596333] ? trace_hardirqs_on+0x5b/0x180 [ 1676.597349] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1676.598520] ? syscall_enter_from_user_mode+0x27/0x50 [ 1676.599701] do_syscall_64+0x33/0x40 [ 1676.600556] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1676.601714] RIP: 0033:0x7fc2fd383b19 [ 1676.602566] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1676.606739] RSP: 002b:00007fc2fa8d8188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1676.608476] RAX: ffffffffffffffda RBX: 00007fc2fd497020 RCX: 00007fc2fd383b19 [ 1676.610094] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1676.611712] RBP: 00007fc2fd3ddf6d R08: 0000000000000000 R09: 0000000000000000 [ 1676.613344] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1676.614964] R13: 00007ffc59a8b65f R14: 00007fc2fa8d8300 R15: 0000000000022000 [ 1676.634119] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1676.635630] CPU: 1 PID: 11905 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1676.636850] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1676.638322] Call Trace: [ 1676.638790] dump_stack+0x107/0x167 [ 1676.639439] sysfs_warn_dup.cold+0x1c/0x29 [ 1676.640200] sysfs_do_create_link_sd+0x122/0x140 [ 1676.641038] sysfs_create_link+0x5f/0xc0 [ 1676.641739] device_add+0x703/0x1c50 [ 1676.642400] ? devlink_add_symlinks+0x970/0x970 [ 1676.643192] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1676.644154] wiphy_register+0x1da6/0x2850 [ 1676.644870] ? wiphy_unregister+0xb90/0xb90 [ 1676.645655] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1676.646572] ieee80211_register_hw+0x23c5/0x38b0 [ 1676.647400] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1676.648227] ? net_generic+0xdb/0x2b0 [ 1676.648898] ? lockdep_init_map_type+0x2c7/0x780 [ 1676.649700] ? memset+0x20/0x50 [ 1676.650274] ? __hrtimer_init+0x12c/0x270 [ 1676.651009] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1676.651916] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1676.652703] ? hwsim_new_radio_nl+0x967/0x1080 [ 1676.653492] ? memcpy+0x39/0x60 [ 1676.654076] hwsim_new_radio_nl+0x991/0x1080 [ 1676.654842] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1676.655761] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1676.656935] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1676.658059] genl_family_rcv_msg_doit+0x22d/0x330 [ 1676.658841] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1676.659928] ? cap_capable+0x1cd/0x230 [ 1676.660572] ? ns_capable+0xe2/0x110 [ 1676.661208] genl_rcv_msg+0x33c/0x5a0 [ 1676.661833] ? genl_get_cmd+0x480/0x480 [ 1676.662482] ? lock_acquire+0x1b9/0x470 [ 1676.663124] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1676.663982] ? lock_release+0x680/0x680 [ 1676.664633] netlink_rcv_skb+0x14b/0x430 [ 1676.665318] ? genl_get_cmd+0x480/0x480 [ 1676.665970] ? netlink_ack+0xab0/0xab0 [ 1676.666648] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1676.667385] genl_rcv+0x24/0x40 [ 1676.667938] netlink_unicast+0x549/0x7f0 [ 1676.668626] ? netlink_attachskb+0x870/0x870 [ 1676.669364] ? netlink_sendmsg+0x8aa/0xdf0 [ 1676.670051] ? netlink_sendmsg+0x8b8/0xdf0 [ 1676.670764] netlink_sendmsg+0x90f/0xdf0 [ 1676.671432] ? netlink_unicast+0x7f0/0x7f0 [ 1676.672151] ? netlink_unicast+0x7f0/0x7f0 [ 1676.672860] __sock_sendmsg+0x154/0x190 [ 1676.673554] ____sys_sendmsg+0x70d/0x870 [ 1676.674223] ? sock_write_iter+0x3d0/0x3d0 [ 1676.674922] ? do_recvmmsg+0x6d0/0x6d0 [ 1676.675537] ? perf_trace_lock+0xac/0x490 [ 1676.676216] ? __lockdep_reset_lock+0x180/0x180 [ 1676.676970] ___sys_sendmsg+0xf3/0x170 [ 1676.677592] ? sendmsg_copy_msghdr+0x160/0x160 [ 1676.678321] ? lock_downgrade+0x6d0/0x6d0 [ 1676.678994] ? __fget_files+0x395/0x4c0 [ 1676.679626] ? __fget_files+0x296/0x4c0 [ 1676.680285] ? __fget_light+0xea/0x290 [ 1676.680914] __sys_sendmsg+0xe5/0x1b0 [ 1676.681517] ? __sys_sendmsg_sock+0x40/0x40 [ 1676.682223] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1676.683079] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1676.683909] ? trace_hardirqs_on+0x5b/0x180 [ 1676.684617] do_syscall_64+0x33/0x40 [ 1676.685207] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1676.686016] RIP: 0033:0x7eff88fa0b19 [ 1676.686607] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1676.689552] RSP: 002b:00007eff86516188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1676.690775] RAX: ffffffffffffffda RBX: 00007eff890b3f60 RCX: 00007eff88fa0b19 [ 1676.691932] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1676.693097] RBP: 00007eff88ffaf6d R08: 0000000000000000 R09: 0000000000000000 [ 1676.694203] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1676.695315] R13: 00007ffe20cbc2ff R14: 00007eff86516300 R15: 0000000000022000 [ 1676.710522] device lo left promiscuous mode [ 1676.792989] device lo entered promiscuous mode [ 1676.794521] device lo left promiscuous mode 15:39:25 executing program 2: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:39:25 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x5, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) 15:39:25 executing program 0: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:39:25 executing program 3: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x0, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:39:25 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0xf000000, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) 15:39:25 executing program 6: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:39:25 executing program 5: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x0, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:39:25 executing program 4: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)) syz_io_uring_submit(0x0, 0x0, 0x0, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:39:25 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x40000000, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) [ 1691.960453] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1691.962792] CPU: 0 PID: 12026 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 1691.964217] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1691.965898] Call Trace: [ 1691.966467] dump_stack+0x107/0x167 [ 1691.967246] sysfs_warn_dup.cold+0x1c/0x29 [ 1691.968120] sysfs_do_create_link_sd+0x122/0x140 [ 1691.969114] sysfs_create_link+0x5f/0xc0 [ 1691.969979] device_add+0x703/0x1c50 [ 1691.970745] ? devlink_add_symlinks+0x970/0x970 [ 1691.971709] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1691.972797] wiphy_register+0x1da6/0x2850 [ 1691.973682] ? wiphy_unregister+0xb90/0xb90 [ 1691.974577] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1691.975693] ? ieee80211_register_hw+0x190a/0x38b0 [ 1691.976689] ieee80211_register_hw+0x23c5/0x38b0 [ 1691.977645] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1691.978626] ? __memset+0x2b/0x40 [ 1691.979345] ? __hrtimer_init+0x12c/0x270 [ 1691.980208] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1691.981251] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1691.982199] ? hwsim_new_radio_nl+0x967/0x1080 [ 1691.983134] ? memcpy+0x39/0x60 [ 1691.983816] hwsim_new_radio_nl+0x991/0x1080 [ 1691.984739] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1691.985818] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1691.987159] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1691.988512] genl_family_rcv_msg_doit+0x22d/0x330 [ 1691.989503] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1691.990885] genl_rcv_msg+0x33c/0x5a0 [ 1691.991668] ? genl_get_cmd+0x480/0x480 [ 1691.992493] ? lock_acquire+0x1b9/0x470 [ 1691.993295] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1691.994349] ? lock_release+0x680/0x680 [ 1691.995176] netlink_rcv_skb+0x14b/0x430 [ 1691.996003] ? genl_get_cmd+0x480/0x480 [ 1691.996830] ? netlink_ack+0xab0/0xab0 [ 1691.997642] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1691.998576] ? is_vmalloc_addr+0x7b/0xb0 [ 1691.999415] genl_rcv+0x24/0x40 [ 1692.000099] netlink_unicast+0x549/0x7f0 [ 1692.000949] ? netlink_attachskb+0x870/0x870 [ 1692.001845] ? __virt_addr_valid+0x128/0x350 [ 1692.002752] netlink_sendmsg+0x90f/0xdf0 [ 1692.003590] ? netlink_unicast+0x7f0/0x7f0 [ 1692.004491] ? netlink_unicast+0x7f0/0x7f0 [ 1692.005347] __sock_sendmsg+0x154/0x190 [ 1692.006166] ____sys_sendmsg+0x70d/0x870 [ 1692.006996] ? sock_write_iter+0x3d0/0x3d0 [ 1692.007847] ? do_recvmmsg+0x6d0/0x6d0 [ 1692.008647] ? perf_trace_lock+0xac/0x490 [ 1692.009494] ? __lockdep_reset_lock+0x180/0x180 [ 1692.010450] ? perf_trace_lock+0xac/0x490 [ 1692.011305] ___sys_sendmsg+0xf3/0x170 [ 1692.012115] ? sendmsg_copy_msghdr+0x160/0x160 [ 1692.013049] ? lock_downgrade+0x6d0/0x6d0 [ 1692.013906] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1692.014965] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1692.016061] ? trace_hardirqs_on+0x5b/0x180 [ 1692.016946] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1692.018055] ? sockfd_lookup_light+0x69/0x180 [ 1692.018970] ? write_comp_data+0x2f/0x80 [ 1692.019808] __sys_sendmsg+0xe5/0x1b0 [ 1692.020597] ? __sys_sendmsg_sock+0x40/0x40 [ 1692.021479] ? io_schedule_timeout+0x140/0x140 [ 1692.022431] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1692.023492] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1692.024830] ? trace_hardirqs_on+0x5b/0x180 [ 1692.025716] do_syscall_64+0x33/0x40 [ 1692.026463] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1692.027504] RIP: 0033:0x7f2e008a0b19 [ 1692.028288] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1692.032009] RSP: 002b:00007f2dfde16188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1692.033561] RAX: ffffffffffffffda RBX: 00007f2e009b3f60 RCX: 00007f2e008a0b19 [ 1692.035010] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1692.036467] RBP: 00007f2e008faf6d R08: 0000000000000000 R09: 0000000000000000 [ 1692.037910] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1692.039365] R13: 00007ffc98392b5f R14: 00007f2dfde16300 R15: 0000000000022000 15:39:26 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x6, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) 15:39:26 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x7a020000, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) 15:39:26 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x81000000, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) 15:39:26 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x7, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) 15:39:26 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x9effffff, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) 15:39:26 executing program 5: r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4305, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = syz_io_uring_setup(0x3a75, &(0x7f0000000080), &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f0000000100)=0x0) syz_io_uring_setup(0x6510, &(0x7f0000000300)={0x0, 0x338d, 0x0, 0x0, 0x6b, 0x0, r1}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000040), &(0x7f00000001c0)=0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0xb052) syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x8}, &(0x7f0000000280)='./file0\x00', 0x18}, 0x0) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r1, 0x0) r6 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x2000002, 0x50, r1, 0x0) syz_io_uring_submit(r6, r4, &(0x7f0000000140)=@IORING_OP_CLOSE={0x13, 0x5, 0x0, r5, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x7) r7 = mmap$IORING_OFF_CQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0xf, 0x13, r1, 0x8000000) perf_event_open(0x0, 0x0, 0x0, r0, 0xa) syz_io_uring_submit(r7, r3, &(0x7f00000002c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x4, 0x0, @fd_index, 0x0, 0x0}, 0x80000001) io_uring_enter(r1, 0x58ab, 0x0, 0x0, 0x0, 0x0) [ 1692.406554] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1692.410145] CPU: 0 PID: 12027 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1692.411575] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1692.413264] Call Trace: [ 1692.413814] dump_stack+0x107/0x167 [ 1692.414558] sysfs_warn_dup.cold+0x1c/0x29 [ 1692.415442] sysfs_do_create_link_sd+0x122/0x140 [ 1692.416432] sysfs_create_link+0x5f/0xc0 [ 1692.417268] device_add+0x703/0x1c50 [ 1692.418032] ? devlink_add_symlinks+0x970/0x970 [ 1692.418985] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1692.420059] wiphy_register+0x1da6/0x2850 [ 1692.420926] ? wiphy_unregister+0xb90/0xb90 [ 1692.421826] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1692.422923] ieee80211_register_hw+0x23c5/0x38b0 [ 1692.423908] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1692.424916] ? __hrtimer_init+0x1c9/0x270 [ 1692.425748] ? __sanitizer_cov_trace_pc+0x3c/0x60 [ 1692.426727] ? __hrtimer_init+0x12c/0x270 [ 1692.427573] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1692.428631] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1692.429567] ? hwsim_new_radio_nl+0x967/0x1080 [ 1692.430499] ? memcpy+0x39/0x60 [ 1692.431179] hwsim_new_radio_nl+0x991/0x1080 [ 1692.432088] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1692.433125] ? trace_hardirqs_on+0x5b/0x180 [ 1692.434023] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1692.435082] genl_family_rcv_msg_doit+0x22d/0x330 [ 1692.436066] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1692.437417] ? cap_capable+0x1cd/0x230 [ 1692.438228] ? ns_capable+0xe2/0x110 [ 1692.438993] genl_rcv_msg+0x33c/0x5a0 [ 1692.439771] ? genl_get_cmd+0x480/0x480 [ 1692.440588] ? lock_acquire+0x1b9/0x470 [ 1692.441405] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1692.442482] ? lock_release+0x680/0x680 [ 1692.443293] ? __lockdep_reset_lock+0x180/0x180 [ 1692.444253] netlink_rcv_skb+0x14b/0x430 [ 1692.445077] ? genl_get_cmd+0x480/0x480 [ 1692.445890] ? netlink_ack+0xab0/0xab0 [ 1692.446696] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1692.447624] ? is_vmalloc_addr+0x7b/0xb0 [ 1692.448481] genl_rcv+0x24/0x40 [ 1692.449148] netlink_unicast+0x549/0x7f0 [ 1692.449979] ? netlink_attachskb+0x870/0x870 [ 1692.450871] ? __virt_addr_valid+0x128/0x350 [ 1692.451783] netlink_sendmsg+0x90f/0xdf0 [ 1692.452624] ? netlink_unicast+0x7f0/0x7f0 [ 1692.453510] ? netlink_unicast+0x7f0/0x7f0 [ 1692.454368] __sock_sendmsg+0x154/0x190 [ 1692.455180] ____sys_sendmsg+0x70d/0x870 [ 1692.456008] ? sock_write_iter+0x3d0/0x3d0 [ 1692.456875] ? do_recvmmsg+0x6d0/0x6d0 [ 1692.457665] ? perf_trace_lock+0xac/0x490 [ 1692.458516] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1692.459616] ? __lockdep_reset_lock+0x180/0x180 [ 1692.460597] ___sys_sendmsg+0xf3/0x170 [ 1692.461396] ? sendmsg_copy_msghdr+0x160/0x160 [ 1692.462337] ? lock_downgrade+0x6d0/0x6d0 [ 1692.463174] ? find_held_lock+0x2c/0x110 [ 1692.464014] ? clockevents_program_event+0x14b/0x360 [ 1692.465062] ? __fget_files+0x296/0x4c0 [ 1692.465889] ? __fget_light+0xea/0x290 [ 1692.466692] __sys_sendmsg+0xe5/0x1b0 [ 1692.467475] ? __sys_sendmsg_sock+0x40/0x40 [ 1692.468389] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1692.469457] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1692.470499] ? trace_hardirqs_on+0x5b/0x180 [ 1692.471380] do_syscall_64+0x33/0x40 [ 1692.472150] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1692.473188] RIP: 0033:0x7fc533f18b19 [ 1692.473944] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1692.477675] RSP: 002b:00007fc53148e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1692.479219] RAX: ffffffffffffffda RBX: 00007fc53402bf60 RCX: 00007fc533f18b19 [ 1692.480670] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1692.482109] RBP: 00007fc533f72f6d R08: 0000000000000000 R09: 0000000000000000 [ 1692.483550] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1692.485009] R13: 00007fff9313d64f R14: 00007fc53148e300 R15: 0000000000022000 15:39:26 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x8, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) [ 1692.667469] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1692.669332] CPU: 0 PID: 12033 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1692.670732] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1692.672408] Call Trace: [ 1692.672945] dump_stack+0x107/0x167 [ 1692.673690] sysfs_warn_dup.cold+0x1c/0x29 [ 1692.674546] sysfs_do_create_link_sd+0x122/0x140 [ 1692.675504] sysfs_create_link+0x5f/0xc0 [ 1692.676347] device_add+0x703/0x1c50 [ 1692.677107] ? devlink_add_symlinks+0x970/0x970 [ 1692.678049] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1692.679115] wiphy_register+0x1da6/0x2850 [ 1692.679968] ? wiphy_unregister+0xb90/0xb90 [ 1692.680872] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1692.681954] ieee80211_register_hw+0x23c5/0x38b0 [ 1692.682934] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1692.683904] ? net_generic+0xdb/0x2b0 [ 1692.684704] ? lockdep_init_map_type+0x2c7/0x780 [ 1692.685666] ? memset+0x20/0x50 [ 1692.686336] ? __hrtimer_init+0x12c/0x270 [ 1692.687192] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1692.688237] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1692.689170] ? hwsim_new_radio_nl+0x967/0x1080 [ 1692.690095] ? memcpy+0x39/0x60 [ 1692.690771] hwsim_new_radio_nl+0x991/0x1080 [ 1692.691666] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1692.692737] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1692.694062] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1692.695380] genl_family_rcv_msg_doit+0x22d/0x330 [ 1692.696379] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1692.697744] genl_rcv_msg+0x33c/0x5a0 [ 1692.698522] ? genl_get_cmd+0x480/0x480 [ 1692.699327] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1692.700382] ? check_memory_region+0x176/0x1f0 [ 1692.701317] netlink_rcv_skb+0x14b/0x430 [ 1692.702139] ? genl_get_cmd+0x480/0x480 [ 1692.702947] ? netlink_ack+0xab0/0xab0 [ 1692.703752] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1692.704697] ? netlink_skb_set_owner_r+0xc6/0x1f0 [ 1692.705677] genl_rcv+0x24/0x40 [ 1692.706344] netlink_unicast+0x549/0x7f0 [ 1692.707174] ? netlink_attachskb+0x870/0x870 [ 1692.708061] ? __virt_addr_valid+0x128/0x350 [ 1692.708980] netlink_sendmsg+0x90f/0xdf0 [ 1692.709812] ? netlink_unicast+0x7f0/0x7f0 [ 1692.710686] ? netlink_unicast+0x7f0/0x7f0 [ 1692.711545] __sock_sendmsg+0x154/0x190 [ 1692.712359] ____sys_sendmsg+0x70d/0x870 [ 1692.713186] ? sock_write_iter+0x3d0/0x3d0 [ 1692.714040] ? do_recvmmsg+0x6d0/0x6d0 [ 1692.714829] ? perf_trace_lock+0xac/0x490 [ 1692.715678] ? __lockdep_reset_lock+0x180/0x180 [ 1692.716649] ___sys_sendmsg+0xf3/0x170 [ 1692.717440] ? sendmsg_copy_msghdr+0x160/0x160 [ 1692.718376] ? lock_downgrade+0x6d0/0x6d0 [ 1692.719210] ? find_held_lock+0x2c/0x110 [ 1692.720042] ? clockevents_program_event+0x14b/0x360 [ 1692.721085] ? __fget_files+0x296/0x4c0 [ 1692.721908] ? __fget_light+0xea/0x290 [ 1692.722714] __sys_sendmsg+0xe5/0x1b0 [ 1692.723485] ? __sys_sendmsg_sock+0x40/0x40 [ 1692.724398] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1692.725456] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1692.726495] ? trace_hardirqs_on+0x5b/0x180 [ 1692.727377] do_syscall_64+0x33/0x40 [ 1692.728144] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1692.729183] RIP: 0033:0x7f07e63f4b19 [ 1692.729938] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1692.733646] RSP: 002b:00007f07e396a188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1692.735187] RAX: ffffffffffffffda RBX: 00007f07e6507f60 RCX: 00007f07e63f4b19 [ 1692.736640] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1692.738080] RBP: 00007f07e644ef6d R08: 0000000000000000 R09: 0000000000000000 [ 1692.739516] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1692.740962] R13: 00007fff1f25f23f R14: 00007f07e396a300 R15: 0000000000022000 [ 1692.758908] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1692.760718] CPU: 0 PID: 12035 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 1692.762115] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1692.763787] Call Trace: [ 1692.764345] dump_stack+0x107/0x167 [ 1692.765091] sysfs_warn_dup.cold+0x1c/0x29 [ 1692.765952] sysfs_do_create_link_sd+0x122/0x140 [ 1692.766911] sysfs_create_link+0x5f/0xc0 [ 1692.767735] device_add+0x703/0x1c50 [ 1692.768504] ? devlink_add_symlinks+0x970/0x970 [ 1692.769452] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1692.770521] wiphy_register+0x1da6/0x2850 [ 1692.771376] ? wiphy_unregister+0xb90/0xb90 [ 1692.772287] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1692.773373] ieee80211_register_hw+0x23c5/0x38b0 [ 1692.774355] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1692.775325] ? net_generic+0xdb/0x2b0 [ 1692.776112] ? lockdep_init_map_type+0x2c7/0x780 [ 1692.777075] ? memset+0x20/0x50 [ 1692.777745] ? __hrtimer_init+0x12c/0x270 [ 1692.778589] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1692.779627] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1692.780568] ? hwsim_new_radio_nl+0x967/0x1080 [ 1692.781493] ? memcpy+0x39/0x60 [ 1692.782170] hwsim_new_radio_nl+0x991/0x1080 [ 1692.783064] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1692.784144] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1692.785468] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1692.786787] genl_family_rcv_msg_doit+0x22d/0x330 [ 1692.787764] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1692.789093] ? trace_hardirqs_on+0x5b/0x180 [ 1692.789960] ? cap_capable+0x1cd/0x230 [ 1692.790770] ? ns_capable+0xe2/0x110 [ 1692.791530] genl_rcv_msg+0x33c/0x5a0 [ 1692.792319] ? genl_get_cmd+0x480/0x480 [ 1692.793124] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1692.794171] ? lock_release+0x680/0x680 [ 1692.794973] ? __lockdep_reset_lock+0x180/0x180 [ 1692.795916] netlink_rcv_skb+0x14b/0x430 [ 1692.796747] ? genl_get_cmd+0x480/0x480 [ 1692.797552] ? netlink_ack+0xab0/0xab0 [ 1692.798356] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1692.799278] ? is_vmalloc_addr+0x7b/0xb0 [ 1692.800107] genl_rcv+0x24/0x40 [ 1692.800772] netlink_unicast+0x549/0x7f0 [ 1692.801601] ? netlink_attachskb+0x870/0x870 [ 1692.802487] ? __virt_addr_valid+0x128/0x350 [ 1692.803389] netlink_sendmsg+0x90f/0xdf0 [ 1692.804234] ? netlink_unicast+0x7f0/0x7f0 [ 1692.805103] ? netlink_unicast+0x7f0/0x7f0 [ 1692.805958] __sock_sendmsg+0x154/0x190 [ 1692.806762] ____sys_sendmsg+0x70d/0x870 [ 1692.807585] ? sock_write_iter+0x3d0/0x3d0 [ 1692.808441] ? do_recvmmsg+0x6d0/0x6d0 [ 1692.809225] ? perf_trace_lock+0xac/0x490 [ 1692.810069] ? __lockdep_reset_lock+0x180/0x180 [ 1692.811021] ___sys_sendmsg+0xf3/0x170 [ 1692.811811] ? sendmsg_copy_msghdr+0x160/0x160 [ 1692.812753] ? lock_downgrade+0x6d0/0x6d0 [ 1692.813603] ? __fget_files+0x395/0x4c0 [ 1692.814414] ? __fget_files+0x296/0x4c0 [ 1692.815238] ? __fget_light+0xea/0x290 [ 1692.816036] __sys_sendmsg+0xe5/0x1b0 [ 1692.816813] ? __sys_sendmsg_sock+0x40/0x40 [ 1692.817720] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1692.818777] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1692.819811] ? trace_hardirqs_on+0x5b/0x180 [ 1692.820705] do_syscall_64+0x33/0x40 [ 1692.821455] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1692.822485] RIP: 0033:0x7f1fb3078b19 [ 1692.823237] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1692.826939] RSP: 002b:00007f1fb05ee188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1692.828478] RAX: ffffffffffffffda RBX: 00007f1fb318bf60 RCX: 00007f1fb3078b19 [ 1692.829915] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1692.831345] RBP: 00007f1fb30d2f6d R08: 0000000000000000 R09: 0000000000000000 [ 1692.832794] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1692.834224] R13: 00007ffff99fd67f R14: 00007f1fb05ee300 R15: 0000000000022000 [ 1692.869690] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1692.871831] CPU: 1 PID: 12039 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1692.873475] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1692.875429] Call Trace: [ 1692.876062] dump_stack+0x107/0x167 [ 1692.876964] sysfs_warn_dup.cold+0x1c/0x29 [ 1692.877973] sysfs_do_create_link_sd+0x122/0x140 [ 1692.879097] sysfs_create_link+0x5f/0xc0 [ 1692.880064] device_add+0x703/0x1c50 [ 1692.880968] ? devlink_add_symlinks+0x970/0x970 [ 1692.882073] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1692.883325] wiphy_register+0x1da6/0x2850 [ 1692.884335] ? wiphy_unregister+0xb90/0xb90 [ 1692.885380] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1692.886638] ieee80211_register_hw+0x23c5/0x38b0 [ 1692.887779] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1692.888927] ? net_generic+0xdb/0x2b0 [ 1692.889834] ? lockdep_init_map_type+0x2c7/0x780 [ 1692.890956] ? memset+0x20/0x50 [ 1692.891733] ? __hrtimer_init+0x12c/0x270 [ 1692.892721] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1692.893924] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1692.895010] ? hwsim_new_radio_nl+0x967/0x1080 [ 1692.896104] ? memcpy+0x39/0x60 [ 1692.896892] hwsim_new_radio_nl+0x991/0x1080 [ 1692.897933] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1692.899169] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1692.900715] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1692.902246] genl_family_rcv_msg_doit+0x22d/0x330 [ 1692.903381] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1692.904928] ? cap_capable+0x1cd/0x230 [ 1692.905864] ? ns_capable+0xe2/0x110 [ 1692.906747] genl_rcv_msg+0x33c/0x5a0 [ 1692.907648] ? genl_get_cmd+0x480/0x480 [ 1692.908600] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1692.909819] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1692.911096] netlink_rcv_skb+0x14b/0x430 [ 1692.912048] ? genl_get_cmd+0x480/0x480 [ 1692.912991] ? netlink_ack+0xab0/0xab0 [ 1692.913928] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1692.914995] ? netlink_unicast+0x512/0x7f0 [ 1692.915992] genl_rcv+0x24/0x40 [ 1692.916783] netlink_unicast+0x549/0x7f0 [ 1692.917759] ? netlink_attachskb+0x870/0x870 [ 1692.918799] ? netlink_sendmsg+0x8c2/0xdf0 [ 1692.919802] netlink_sendmsg+0x90f/0xdf0 [ 1692.920768] ? netlink_unicast+0x7f0/0x7f0 [ 1692.921744] ? netlink_unicast+0x7f0/0x7f0 [ 1692.922738] ? __sock_sendmsg+0x120/0x190 [ 1692.923704] ? netlink_unicast+0x7f0/0x7f0 [ 1692.924705] __sock_sendmsg+0x154/0x190 [ 1692.925633] ____sys_sendmsg+0x70d/0x870 [ 1692.926583] ? sock_write_iter+0x3d0/0x3d0 [ 1692.927562] ? do_recvmmsg+0x6d0/0x6d0 [ 1692.928475] ? perf_trace_lock+0xac/0x490 [ 1692.929440] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1692.930702] ? __lockdep_reset_lock+0x180/0x180 [ 1692.931796] ___sys_sendmsg+0xf3/0x170 [ 1692.932724] ? sendmsg_copy_msghdr+0x160/0x160 [ 1692.933796] ? lock_downgrade+0x6d0/0x6d0 [ 1692.934755] ? find_held_lock+0x2c/0x110 [ 1692.935718] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1692.936944] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1692.938192] ? trace_hardirqs_on+0x5b/0x180 [ 1692.939199] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1692.940482] ? __fget_light+0xea/0x290 [ 1692.941386] ? sockfd_lookup_light+0x5f/0x180 [ 1692.942441] __sys_sendmsg+0xe5/0x1b0 [ 1692.943328] ? __sys_sendmsg_sock+0x40/0x40 [ 1692.944384] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1692.945599] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1692.946789] ? trace_hardirqs_on+0x5b/0x180 [ 1692.947799] do_syscall_64+0x33/0x40 [ 1692.948673] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1692.949862] RIP: 0033:0x7eff88fa0b19 [ 1692.950720] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1692.954935] RSP: 002b:00007eff86516188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1692.956695] RAX: ffffffffffffffda RBX: 00007eff890b3f60 RCX: 00007eff88fa0b19 [ 1692.958330] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1692.959966] RBP: 00007eff88ffaf6d R08: 0000000000000000 R09: 0000000000000000 [ 1692.961613] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1692.963248] R13: 00007ffe20cbc2ff R14: 00007eff86516300 R15: 0000000000022000 [ 1692.980313] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1692.982357] CPU: 1 PID: 12036 Comm: syz-executor.4 Not tainted 5.10.205 #1 [ 1692.983932] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1692.985822] Call Trace: [ 1692.986427] dump_stack+0x107/0x167 [ 1692.987270] sysfs_warn_dup.cold+0x1c/0x29 [ 1692.988251] sysfs_do_create_link_sd+0x122/0x140 [ 1692.989335] sysfs_create_link+0x5f/0xc0 [ 1692.990269] device_add+0x703/0x1c50 [ 1692.991130] ? devlink_add_symlinks+0x970/0x970 [ 1692.992445] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1692.993846] wiphy_register+0x1da6/0x2850 [ 1692.994968] ? wiphy_unregister+0xb90/0xb90 [ 1692.996165] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1692.997584] ieee80211_register_hw+0x23c5/0x38b0 [ 1692.998862] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1693.000171] ? net_generic+0xdb/0x2b0 [ 1693.001131] ? lockdep_init_map_type+0x2c7/0x780 [ 1693.002209] ? memset+0x20/0x50 [ 1693.002963] ? __hrtimer_init+0x12c/0x270 [ 1693.003908] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1693.005094] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1693.006142] ? hwsim_new_radio_nl+0x967/0x1080 [ 1693.007180] ? memcpy+0x39/0x60 [ 1693.007938] hwsim_new_radio_nl+0x991/0x1080 [ 1693.008974] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1693.010164] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1693.011649] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1693.013155] genl_family_rcv_msg_doit+0x22d/0x330 [ 1693.014252] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1693.015741] ? cap_capable+0x1cd/0x230 [ 1693.016666] ? ns_capable+0xe2/0x110 [ 1693.017517] genl_rcv_msg+0x33c/0x5a0 [ 1693.018384] ? genl_get_cmd+0x480/0x480 [ 1693.019280] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1693.020531] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1693.021707] ? netlink_rcv_skb+0x128/0x430 [ 1693.022671] netlink_rcv_skb+0x14b/0x430 [ 1693.023585] ? genl_get_cmd+0x480/0x480 [ 1693.024512] ? netlink_ack+0xab0/0xab0 [ 1693.025404] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1693.026436] genl_rcv+0x24/0x40 [ 1693.027174] netlink_unicast+0x549/0x7f0 [ 1693.028122] ? netlink_attachskb+0x870/0x870 [ 1693.029115] ? __virt_addr_valid+0x128/0x350 [ 1693.030114] netlink_sendmsg+0x90f/0xdf0 [ 1693.031032] ? netlink_unicast+0x7f0/0x7f0 [ 1693.031996] ? netlink_unicast+0x7f0/0x7f0 [ 1693.032964] __sock_sendmsg+0x154/0x190 [ 1693.033856] ____sys_sendmsg+0x70d/0x870 [ 1693.034769] ? sock_write_iter+0x3d0/0x3d0 [ 1693.035709] ? do_recvmmsg+0x6d0/0x6d0 [ 1693.036608] ? perf_trace_lock+0xac/0x490 [ 1693.037545] ? __lockdep_reset_lock+0x180/0x180 [ 1693.038595] ___sys_sendmsg+0xf3/0x170 [ 1693.039469] ? sendmsg_copy_msghdr+0x160/0x160 [ 1693.040543] ? lock_downgrade+0x6d0/0x6d0 [ 1693.041481] ? __fget_files+0x265/0x4c0 [ 1693.042367] ? __fget_files+0x395/0x4c0 [ 1693.043264] ? __fget_files+0x296/0x4c0 [ 1693.044192] ? __fget_light+0xea/0x290 [ 1693.045069] __sys_sendmsg+0xe5/0x1b0 [ 1693.045914] ? __sys_sendmsg_sock+0x40/0x40 [ 1693.046900] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1693.048058] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1693.049223] ? trace_hardirqs_on+0x5b/0x180 [ 1693.050186] do_syscall_64+0x33/0x40 [ 1693.051021] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1693.052184] RIP: 0033:0x7fc2fd383b19 [ 1693.053014] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1693.057091] RSP: 002b:00007fc2fa8f9188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1693.058769] RAX: ffffffffffffffda RBX: 00007fc2fd496f60 RCX: 00007fc2fd383b19 [ 1693.060368] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1693.061941] RBP: 00007fc2fd3ddf6d R08: 0000000000000000 R09: 0000000000000000 [ 1693.063509] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1693.065093] R13: 00007ffc59a8b65f R14: 00007fc2fa8f9300 R15: 0000000000022000 15:39:41 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x9, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) 15:39:41 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0xc00e0000, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) 15:39:41 executing program 5: ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8914, &(0x7f0000000140)={'lo\x00'}) r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) setsockopt$inet6_IPV6_PKTINFO(r0, 0x29, 0x32, 0x0, 0x0) fchmod(r0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) sendmsg$IPCTNL_MSG_CT_GET_STATS(0xffffffffffffffff, &(0x7f00000006c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000680)={&(0x7f00000000c0)={0x14, 0x5, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0xffff}}, 0x14}, 0x1, 0x0, 0x0, 0x800c010}, 0x81) openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x406e2, 0x0) r2 = epoll_create1(0x0) sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000003c0)=ANY=[@ANYBLOB="204ea5b0660347478c0e9000d8ee00000000000000000000000000d4f7f2e39d817555f96d9289bd2f8c65510e64fd697993c360cf7916"], 0x20}}, 0x0) r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r3, 0x8914, &(0x7f0000000140)={'lo\x00'}) writev(0xffffffffffffffff, &(0x7f00000005c0)=[{&(0x7f0000000180)="a57a65569418c4b169dc2ce2544416015726d1e40b48da4ae6276398a6ec06ddd7c8e0becb7072fc59067e99eec3f4b0fd50ffe9c5674b23532fa7d0d12b0d152267494e19a87f0232a87623e24808b265c489589e7c2be9db983c766b6feda6f58ff5b9ce3cf38f5bcb6f1542f059aace9cea2aaffebb28676f1c69d64d68cc6b0e05e7f8b8b3298b9ede8a893fd8388c", 0x91}, {&(0x7f0000000240)="c98a349acc08306206bf76687a8d1223f6007b1959863c94486456249d31e77d97500ae050097588fc08f00aafffd58bedee4632c5c29f685652d5921781160f910c6c67ae2b28984395f182c3ae7959162dfd562e00f2fdbccf0b9b59b6bcc9ff6d5646dbc64668b96530eb25533524a1fa01a92998d902149f2652dae988be52893dfc9d845f096143301fd233febb1f810154efd749665b8702", 0x9b}, {&(0x7f0000000300)="f754c102d2a01d5b5818de2063894df04ff306f683c072ae5769fb75c1269bc2ebfd54b707f584970d81e95a8afc999f027b2206ecc3eea642274fbb053dd8ed6e8bbe5b6e088f14b7caced5e42284eeac5c231751da4e535b8bae45153235fc23f0875ed8c87af402454c8eae800e194ea23899067c5eb59f2f21f24258dc9d9df1408d2036125fd80b990b16160bd5b855764b722358d53d09331d8b8be54fda2f23684d090f56b1", 0xa9}, {0x0}, {&(0x7f00000004c0)="6544d9b2013684b6119eb2e23fc1ac8a7200889991cd4893e24cf4ebe899dff1c1b8af4b3adfce6ed05e336378e31df8847624a5de07cd85228e2000f8e34fc84d3af209fe18e33d0b8805694d80571b78ffe3f61b41b2c7c990e52e4baf4eff3f4b4285783a03660b78d5cb522c4b128114febbf7534c389166f083dbd80019a11e90d624053ee6d67008ef6572629283ef2420219814939c50c38161470f72972ae0f52413afaa8dff02be6981714c95c80983e4cc39cacb56c1ddec70eda8b630c86db015eb79e1", 0xc9}], 0x5) r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000140)={'lo\x00'}) r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) close_range(0xffffffffffffffff, r2, 0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000640), 0x1daa4c28f30b8074}, 0x2, 0x0, 0x1004}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$sock_SIOCGIFINDEX(r5, 0x8914, &(0x7f0000000140)={'lo\x00'}) 15:39:41 executing program 3: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x0, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:39:41 executing program 2: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:39:41 executing program 0: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:39:41 executing program 4: sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, 0x0, 0x0) r0 = syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x40002, 0x3, &(0x7f0000000200)=[{&(0x7f0000000440)="2000000080000000060000006a0000000f000000000000000100000001000000004000000040000020000000e0f4655fe0f4655f0100ffff53ef010001000000dff4655f000000000000000001000000000000000b0000000001", 0x5a, 0x400}, {&(0x7f0000010400)="020000000300000004", 0x9, 0x7fe}, {&(0x7f0000000280)="ed4100000093b200dff4655fe0f4655fe0f465ba97cac900b042b600045539545cee085fbe915f5d9dcd99234573a1b8649c4913c6b95f4c39e8583ddc7fafc123f77554138000823601c3fb41de24bb3f9eeb4087d2d06eb5df6983f81971ac3ef832e266058c886d31a5aa", 0x6c, 0x7fffffff}], 0x4080010, &(0x7f0000000140)=ANY=[]) r1 = syz_io_uring_setup(0x0, &(0x7f0000000500)={0x0, 0x1cb2}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200), &(0x7f0000000100)=0x0) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0) syz_io_uring_submit(0x0, r2, &(0x7f0000000180)=@IORING_OP_TEE={0x21, 0x5, 0x0, @fd, 0x0, 0x0, 0x3ff, 0x6, 0x0, {0x0, r3, r0}}, 0xfffff801) ioctl$FS_IOC_SETFSLABEL(0xffffffffffffffff, 0x41009432, &(0x7f0000000340)="1cf2e2f5d3637de1e79489e7f9668090a3a2d966386b18737171c377e1fbce263ba6c5979a2da8ac7888090000005e3435348bef9927beec61945a4d6cdfa22f0562156ffb731691f7103e7fe621b8e480d514e7c6ab140bd6e11f0bb66253ab6786f27147c513660c987f73c2e8aaf0d7f47ef653dd58fa2c41920293d7f120b3a261d1db025e6fa61046ad382f0dc52de87b90103ca1508545afea946b977bfc701bef32734c2a6e1f7eff14fb6950f8da5aa2573c80881c7c4bd1ce4c66ca8fa20c2864cdc2efa416f4ae89a9bdfc8b775edb9401858f642e1d76a55cf2ddc6a5d511f328980e5b06a084afac0954a1107a6067974642c13fa804721f0916") r4 = socket$netlink(0x10, 0x3, 0x0) stat(&(0x7f00000001c0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r5, 0x0) stat(&(0x7f00000001c0)='.\x00', &(0x7f0000001c00)={0x0, 0x0, 0x0, 0x0, 0x0}) setresuid(0xffffffffffffffff, r6, 0x0) mount$tmpfs(0x0, &(0x7f0000000680)='./file0\x00', &(0x7f00000006c0), 0x1000, &(0x7f0000000700)={[{@huge_never}, {@huge_advise}, {@nr_blocks={'nr_blocks', 0x3d, [0x34]}}, {@huge_never}, {@uid={'uid', 0x3d, r5}}, {@huge_within_size}], [{@obj_role={'obj_role', 0x3d, '\x00'}}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@func={'func', 0x3d, 'BPRM_CHECK'}}, {@smackfsfloor}, {@smackfsroot={'smackfsroot', 0x3d, '\\+\xf9*'}}, {@smackfsdef}, {@euid_lt={'euid<', r6}}, {@fsmagic={'fsmagic', 0x3d, 0x81}}, {@subj_role={'subj_role', 0x3d, '-%[\r+-.%'}}]}) setsockopt$netlink_NETLINK_BROADCAST_ERROR(r4, 0x10e, 0xb, &(0x7f0000000000)=0xba, 0x4) r7 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000640), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_EEE_SET(r4, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000840)={&(0x7f0000000040)={0x48, r7, 0x201, 0x0, 0x0, {}, [@ETHTOOL_A_EEE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8}]}, @ETHTOOL_A_EEE_MODES_OURS={0x28, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_MASK={0x21, 0x5, "91bd52ac34d1927c990481ad6b6add86c21b5eadc3c6888c73a5037592"}]}]}, 0x48}}, 0x0) sendmsg$ETHTOOL_MSG_EEE_SET(0xffffffffffffffff, &(0x7f0000000640)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000300)={0x28, r7, 0x20, 0x70bd2b, 0x25dfdbfc, {}, [@ETHTOOL_A_EEE_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_EEE_TX_LPI_ENABLED={0x5, 0x6, 0x1}]}, 0x28}, 0x1, 0x0, 0x0, 0x40000c1}, 0x20040004) sendmsg$nl_netfilter(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000580)={0x1c, 0xa, 0x1, 0x0, 0x70bd25, 0x25dfdbff, {}, [@typed={0x8, 0x72, 0x0, 0x0, @pid}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4001}, 0x4000000) ioctl$EXT4_IOC_GETSTATE(r1, 0x40046629, &(0x7f0000000080)) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) umount2(&(0x7f00000000c0)='./file0\x00', 0x0) 15:39:41 executing program 6: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:39:41 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0xf0ffffff, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) [ 1707.550156] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1707.551774] CPU: 0 PID: 12488 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1707.552894] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1707.554189] Call Trace: [ 1707.554606] dump_stack+0x107/0x167 [ 1707.555179] sysfs_warn_dup.cold+0x1c/0x29 [ 1707.555849] sysfs_do_create_link_sd+0x122/0x140 [ 1707.556604] sysfs_create_link+0x5f/0xc0 [ 1707.557241] device_add+0x703/0x1c50 [ 1707.557828] ? devlink_add_symlinks+0x970/0x970 [ 1707.558555] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1707.559383] wiphy_register+0x1da6/0x2850 [ 1707.560046] ? wiphy_unregister+0xb90/0xb90 [ 1707.560770] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1707.561607] ieee80211_register_hw+0x23c5/0x38b0 [ 1707.562374] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1707.563120] ? net_generic+0xdb/0x2b0 [ 1707.563724] ? lockdep_init_map_type+0x2c7/0x780 [ 1707.564483] ? mac80211_hwsim_new_radio+0x1730/0x4250 [ 1707.565286] ? memset+0x20/0x50 [ 1707.565803] ? __hrtimer_init+0x12c/0x270 [ 1707.566461] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1707.567261] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1707.567962] ? hwsim_new_radio_nl+0x967/0x1080 [ 1707.568708] ? memcpy+0x39/0x60 [ 1707.569226] hwsim_new_radio_nl+0x991/0x1080 [ 1707.569902] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1707.570732] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1707.571729] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1707.572777] genl_family_rcv_msg_doit+0x22d/0x330 [ 1707.573522] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1707.574538] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1707.575366] ? netlink_ns_capable+0xfd/0x130 [ 1707.576064] ? __sanitizer_cov_trace_pc+0x30/0x60 [ 1707.576811] genl_rcv_msg+0x33c/0x5a0 [ 1707.577399] ? genl_get_cmd+0x480/0x480 [ 1707.578007] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1707.578785] ? lock_release+0x680/0x680 [ 1707.579399] netlink_rcv_skb+0x14b/0x430 [ 1707.580029] ? genl_get_cmd+0x480/0x480 [ 1707.580672] ? netlink_ack+0xab0/0xab0 [ 1707.581281] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1707.581969] ? __sanitizer_cov_trace_const_cmp4+0x4/0x20 [ 1707.582775] ? is_vmalloc_addr+0x7b/0xb0 [ 1707.583398] genl_rcv+0x24/0x40 [ 1707.583903] netlink_unicast+0x549/0x7f0 [ 1707.584548] ? netlink_attachskb+0x870/0x870 [ 1707.585216] ? __virt_addr_valid+0x128/0x350 [ 1707.585900] netlink_sendmsg+0x90f/0xdf0 [ 1707.586532] ? netlink_unicast+0x7f0/0x7f0 [ 1707.587182] ? netlink_unicast+0x7f0/0x7f0 [ 1707.587832] __sock_sendmsg+0x154/0x190 [ 1707.588447] ____sys_sendmsg+0x70d/0x870 [ 1707.589081] ? sock_write_iter+0x3d0/0x3d0 [ 1707.589712] ? do_recvmmsg+0x6d0/0x6d0 [ 1707.590298] ? perf_trace_lock+0xac/0x490 [ 1707.590952] ? __lockdep_reset_lock+0x180/0x180 [ 1707.591659] ? perf_trace_lock+0xac/0x490 [ 1707.592316] ___sys_sendmsg+0xf3/0x170 [ 1707.592921] ? sendmsg_copy_msghdr+0x160/0x160 [ 1707.593635] ? lock_downgrade+0x6d0/0x6d0 [ 1707.594283] ? __fget_files+0x255/0x4c0 [ 1707.594898] ? __fget_files+0x296/0x4c0 [ 1707.595515] ? __fget_light+0xea/0x290 [ 1707.596123] __sys_sendmsg+0xe5/0x1b0 [ 1707.596724] ? __sys_sendmsg_sock+0x40/0x40 [ 1707.597371] ? trace_hardirqs_on+0x5b/0x180 [ 1707.598051] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1707.598841] ? syscall_enter_from_user_mode+0x27/0x50 [ 1707.599634] do_syscall_64+0x33/0x40 [ 1707.600194] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1707.600987] RIP: 0033:0x7eff88fa0b19 [ 1707.601557] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1707.604341] RSP: 002b:00007eff86516188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1707.605498] RAX: ffffffffffffffda RBX: 00007eff890b3f60 RCX: 00007eff88fa0b19 [ 1707.606573] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1707.607644] RBP: 00007eff88ffaf6d R08: 0000000000000000 R09: 0000000000000000 [ 1707.608749] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1707.609838] R13: 00007ffe20cbc2ff R14: 00007eff86516300 R15: 0000000000022000 15:39:41 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0xa, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) 15:39:41 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0xfffff000, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) 15:39:41 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0xb, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) 15:39:41 executing program 0: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) [ 1707.773406] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1707.774801] CPU: 0 PID: 12492 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1707.775830] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1707.777092] Call Trace: [ 1707.777496] dump_stack+0x107/0x167 [ 1707.778048] sysfs_warn_dup.cold+0x1c/0x29 [ 1707.778707] sysfs_do_create_link_sd+0x122/0x140 [ 1707.779453] sysfs_create_link+0x5f/0xc0 [ 1707.780086] device_add+0x703/0x1c50 [ 1707.780685] ? devlink_add_symlinks+0x970/0x970 [ 1707.781389] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1707.782214] wiphy_register+0x1da6/0x2850 [ 1707.782864] ? wiphy_unregister+0xb90/0xb90 [ 1707.783533] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1707.784370] ieee80211_register_hw+0x23c5/0x38b0 [ 1707.785129] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1707.785875] ? net_generic+0xdb/0x2b0 [ 1707.786471] ? lockdep_init_map_type+0x2c7/0x780 [ 1707.787190] ? memset+0x20/0x50 [ 1707.787701] ? __hrtimer_init+0x12c/0x270 [ 1707.788363] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1707.789151] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1707.789860] ? hwsim_new_radio_nl+0x967/0x1080 [ 1707.790556] ? memcpy+0x39/0x60 [ 1707.791067] hwsim_new_radio_nl+0x991/0x1080 [ 1707.791750] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1707.792599] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1707.793587] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1707.794568] genl_family_rcv_msg_doit+0x22d/0x330 [ 1707.795301] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1707.796328] ? __sanitizer_cov_trace_pc+0x42/0x60 [ 1707.797069] ? ns_capable+0xe2/0x110 [ 1707.797631] genl_rcv_msg+0x33c/0x5a0 [ 1707.798223] ? genl_get_cmd+0x480/0x480 [ 1707.798824] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1707.799642] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1707.800475] ? netlink_rcv_skb+0xa7/0x430 [ 1707.801107] netlink_rcv_skb+0x14b/0x430 [ 1707.801721] ? genl_get_cmd+0x480/0x480 [ 1707.802332] ? netlink_ack+0xab0/0xab0 [ 1707.802931] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1707.803638] genl_rcv+0x24/0x40 [ 1707.804142] netlink_unicast+0x549/0x7f0 [ 1707.804805] ? netlink_attachskb+0x870/0x870 [ 1707.805494] netlink_sendmsg+0x90f/0xdf0 [ 1707.806125] ? netlink_unicast+0x7f0/0x7f0 [ 1707.806774] ? netlink_unicast+0x7f0/0x7f0 [ 1707.807408] __sock_sendmsg+0x154/0x190 [ 1707.808008] ____sys_sendmsg+0x70d/0x870 [ 1707.808655] ? sock_write_iter+0x3d0/0x3d0 [ 1707.809299] ? do_recvmmsg+0x6d0/0x6d0 [ 1707.809890] ? perf_trace_lock+0xac/0x490 [ 1707.810541] ? __lockdep_reset_lock+0x180/0x180 [ 1707.811252] ___sys_sendmsg+0xf3/0x170 [ 1707.811847] ? sendmsg_copy_msghdr+0x160/0x160 [ 1707.812566] ? lock_downgrade+0x6d0/0x6d0 [ 1707.813213] ? __fget_files+0x255/0x4c0 [ 1707.813818] ? __fget_files+0x296/0x4c0 [ 1707.814441] ? __fget_light+0xea/0x290 [ 1707.815041] __sys_sendmsg+0xe5/0x1b0 [ 1707.815621] ? __sys_sendmsg_sock+0x40/0x40 [ 1707.816319] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1707.817131] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1707.817932] ? trace_hardirqs_on+0x5b/0x180 [ 1707.818607] do_syscall_64+0x33/0x40 [ 1707.819165] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1707.819955] RIP: 0033:0x7fc533f18b19 [ 1707.820550] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1707.823365] RSP: 002b:00007fc53148e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1707.824538] RAX: ffffffffffffffda RBX: 00007fc53402bf60 RCX: 00007fc533f18b19 [ 1707.825610] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1707.826679] RBP: 00007fc533f72f6d R08: 0000000000000000 R09: 0000000000000000 [ 1707.827744] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1707.828827] R13: 00007fff9313d64f R14: 00007fc53148e300 R15: 0000000000022000 [ 1707.897922] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1707.899325] CPU: 0 PID: 12485 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 1707.900409] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1707.901706] Call Trace: [ 1707.902130] dump_stack+0x107/0x167 [ 1707.902704] sysfs_warn_dup.cold+0x1c/0x29 [ 1707.903368] sysfs_do_create_link_sd+0x122/0x140 [ 1707.904107] sysfs_create_link+0x5f/0xc0 [ 1707.904764] device_add+0x703/0x1c50 [ 1707.905352] ? devlink_add_symlinks+0x970/0x970 [ 1707.906074] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1707.906900] wiphy_register+0x1da6/0x2850 [ 1707.907563] ? wiphy_unregister+0xb90/0xb90 [ 1707.908247] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1707.909071] ieee80211_register_hw+0x23c5/0x38b0 [ 1707.909822] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1707.910557] ? net_generic+0xdb/0x2b0 [ 1707.911138] ? lockdep_init_map_type+0x2c7/0x780 [ 1707.911860] ? memset+0x20/0x50 [ 1707.912388] ? __hrtimer_init+0x12c/0x270 [ 1707.913036] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1707.913816] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1707.914508] ? hwsim_new_radio_nl+0x967/0x1080 [ 1707.915207] ? memcpy+0x39/0x60 [ 1707.915730] hwsim_new_radio_nl+0x991/0x1080 [ 1707.916431] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1707.917227] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1707.918211] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1707.919229] genl_family_rcv_msg_doit+0x22d/0x330 [ 1707.919969] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1707.920979] ? cap_capable+0x1cd/0x230 [ 1707.921583] ? ns_capable+0xe2/0x110 [ 1707.922148] genl_rcv_msg+0x33c/0x5a0 [ 1707.922724] ? genl_get_cmd+0x480/0x480 [ 1707.923342] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1707.924130] ? lock_release+0x680/0x680 [ 1707.924749] ? __lockdep_reset_lock+0x180/0x180 [ 1707.925453] netlink_rcv_skb+0x14b/0x430 [ 1707.926068] ? genl_get_cmd+0x480/0x480 [ 1707.926679] ? netlink_ack+0xab0/0xab0 [ 1707.927298] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1707.927988] ? is_vmalloc_addr+0x7b/0xb0 [ 1707.928619] genl_rcv+0x24/0x40 [ 1707.929140] netlink_unicast+0x549/0x7f0 [ 1707.929755] ? netlink_attachskb+0x870/0x870 [ 1707.930419] ? __sanitizer_cov_trace_pc+0x4/0x60 [ 1707.931162] netlink_sendmsg+0x90f/0xdf0 [ 1707.931795] ? netlink_unicast+0x7f0/0x7f0 [ 1707.932452] ? netlink_unicast+0x7f0/0x7f0 [ 1707.933099] __sock_sendmsg+0x154/0x190 [ 1707.933700] ____sys_sendmsg+0x70d/0x870 [ 1707.934326] ? sock_write_iter+0x3d0/0x3d0 [ 1707.934983] ? do_recvmmsg+0x6d0/0x6d0 [ 1707.935575] ? perf_trace_lock+0xac/0x490 [ 1707.936204] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1707.937032] ? __lockdep_reset_lock+0x180/0x180 [ 1707.937752] ___sys_sendmsg+0xf3/0x170 [ 1707.938372] ? sendmsg_copy_msghdr+0x160/0x160 [ 1707.939070] ? lock_downgrade+0x6d0/0x6d0 [ 1707.939694] ? find_held_lock+0x2c/0x110 [ 1707.940326] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1707.941119] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1707.941953] ? trace_hardirqs_on+0x5b/0x180 [ 1707.942637] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1707.943483] ? sockfd_lookup_light+0x112/0x180 [ 1707.944190] ? sockfd_lookup_light+0x140/0x180 [ 1707.944925] __sys_sendmsg+0xe5/0x1b0 [ 1707.945527] ? __sys_sendmsg_sock+0x40/0x40 [ 1707.946208] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1707.947024] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1707.947816] ? trace_hardirqs_on+0x5b/0x180 [ 1707.948520] do_syscall_64+0x33/0x40 [ 1707.949090] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1707.949877] RIP: 0033:0x7f1fb3078b19 [ 1707.950445] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1707.953304] RSP: 002b:00007f1fb05ee188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1707.954471] RAX: ffffffffffffffda RBX: 00007f1fb318bf60 RCX: 00007f1fb3078b19 [ 1707.955587] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1707.956697] RBP: 00007f1fb30d2f6d R08: 0000000000000000 R09: 0000000000000000 [ 1707.957794] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1707.958911] R13: 00007ffff99fd67f R14: 00007f1fb05ee300 R15: 0000000000022000 15:39:41 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0xffffff7f, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) 15:39:41 executing program 6: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:39:42 executing program 0: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) [ 1708.062398] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1708.063844] CPU: 0 PID: 12482 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1708.064896] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1708.066158] Call Trace: [ 1708.066578] dump_stack+0x107/0x167 [ 1708.067171] sysfs_warn_dup.cold+0x1c/0x29 [ 1708.067825] sysfs_do_create_link_sd+0x122/0x140 [ 1708.068561] sysfs_create_link+0x5f/0xc0 [ 1708.069192] device_add+0x703/0x1c50 [ 1708.069784] ? devlink_add_symlinks+0x970/0x970 [ 1708.070517] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1708.071322] wiphy_register+0x1da6/0x2850 [ 1708.071977] ? wiphy_unregister+0xb90/0xb90 [ 1708.072678] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1708.073529] ieee80211_register_hw+0x23c5/0x38b0 [ 1708.074275] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1708.075029] ? net_generic+0xdb/0x2b0 [ 1708.075637] ? lockdep_init_map_type+0x2c7/0x780 [ 1708.076402] ? memset+0x20/0x50 [ 1708.076920] ? __hrtimer_init+0x12c/0x270 [ 1708.077563] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1708.078338] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1708.079198] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1708.079923] ? hwsim_new_radio_nl+0x967/0x1080 [ 1708.080659] ? memcpy+0x39/0x60 [ 1708.081184] hwsim_new_radio_nl+0x991/0x1080 [ 1708.081873] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1708.082704] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1708.083748] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1708.084797] genl_family_rcv_msg_doit+0x22d/0x330 [ 1708.085559] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1708.086583] ? security_capable+0x3b/0xc0 [ 1708.087238] ? ns_capable+0xe2/0x110 [ 1708.087832] genl_rcv_msg+0x33c/0x5a0 [ 1708.088455] ? genl_get_cmd+0x480/0x480 [ 1708.089074] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1708.089897] ? check_memory_region+0xe/0x1f0 [ 1708.090604] netlink_rcv_skb+0x14b/0x430 [ 1708.091255] ? genl_get_cmd+0x480/0x480 [ 1708.091876] ? netlink_ack+0xab0/0xab0 [ 1708.092507] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1708.093234] ? is_vmalloc_addr+0x7b/0xb0 [ 1708.093877] genl_rcv+0x24/0x40 [ 1708.094389] netlink_unicast+0x549/0x7f0 [ 1708.095034] ? netlink_attachskb+0x870/0x870 [ 1708.095742] ? __sanitizer_cov_trace_pc+0xd/0x60 [ 1708.096501] netlink_sendmsg+0x90f/0xdf0 [ 1708.097143] ? netlink_unicast+0x7f0/0x7f0 [ 1708.097814] ? netlink_unicast+0x7f0/0x7f0 [ 1708.098483] __sock_sendmsg+0x154/0x190 [ 1708.099121] ____sys_sendmsg+0x70d/0x870 [ 1708.099774] ? sock_write_iter+0x3d0/0x3d0 [ 1708.100438] ? do_recvmmsg+0x6d0/0x6d0 [ 1708.101046] ? perf_trace_lock+0xac/0x490 [ 1708.101712] ? __lockdep_reset_lock+0x180/0x180 [ 1708.102451] ___sys_sendmsg+0xf3/0x170 [ 1708.103060] ? sendmsg_copy_msghdr+0x160/0x160 [ 1708.103776] ? lock_downgrade+0x6d0/0x6d0 [ 1708.104435] ? find_held_lock+0x2c/0x110 [ 1708.105089] ? clockevents_program_event+0x14b/0x360 [ 1708.105892] ? __fget_files+0x296/0x4c0 [ 1708.106521] ? __fget_light+0xea/0x290 [ 1708.107140] __sys_sendmsg+0xe5/0x1b0 [ 1708.107741] ? __sys_sendmsg_sock+0x40/0x40 [ 1708.108438] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1708.109254] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1708.110056] ? trace_hardirqs_on+0x5b/0x180 [ 1708.110749] do_syscall_64+0x33/0x40 [ 1708.111341] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1708.112160] RIP: 0033:0x7f07e63f4b19 [ 1708.112764] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1708.115641] RSP: 002b:00007f07e396a188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1708.116852] RAX: ffffffffffffffda RBX: 00007f07e6507f60 RCX: 00007f07e63f4b19 [ 1708.117960] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1708.119078] RBP: 00007f07e644ef6d R08: 0000000000000000 R09: 0000000000000000 [ 1708.120211] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1708.121353] R13: 00007fff1f25f23f R14: 00007f07e396a300 R15: 0000000000022000 [ 1708.162419] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1708.163847] CPU: 0 PID: 12826 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1708.164931] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1708.166216] Call Trace: [ 1708.166639] dump_stack+0x107/0x167 [ 1708.167229] sysfs_warn_dup.cold+0x1c/0x29 [ 1708.167899] sysfs_do_create_link_sd+0x122/0x140 [ 1708.168658] sysfs_create_link+0x5f/0xc0 [ 1708.169309] device_add+0x703/0x1c50 [ 1708.169906] ? devlink_add_symlinks+0x970/0x970 [ 1708.170650] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1708.171518] wiphy_register+0x1da6/0x2850 [ 1708.172197] ? wiphy_unregister+0xb90/0xb90 [ 1708.172904] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1708.173792] ? ieee80211_register_hw+0x18a9/0x38b0 [ 1708.174588] ieee80211_register_hw+0x23c5/0x38b0 [ 1708.175363] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1708.176117] ? net_generic+0xdb/0x2b0 [ 1708.176737] ? lockdep_init_map_type+0x2c7/0x780 [ 1708.177487] ? memset+0x20/0x50 [ 1708.178007] ? __hrtimer_init+0x12c/0x270 [ 1708.178649] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1708.179452] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1708.180167] ? hwsim_new_radio_nl+0x967/0x1080 [ 1708.180906] ? memcpy+0x39/0x60 [ 1708.181421] hwsim_new_radio_nl+0x991/0x1080 [ 1708.182109] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1708.182899] ? trace_hardirqs_on+0x5b/0x180 [ 1708.183602] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1708.184425] genl_family_rcv_msg_doit+0x22d/0x330 [ 1708.185196] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1708.186229] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1708.187060] ? cap_capable+0x1cd/0x230 [ 1708.187682] ? ns_capable+0xe2/0x110 [ 1708.188281] genl_rcv_msg+0x33c/0x5a0 [ 1708.188895] ? genl_get_cmd+0x480/0x480 [ 1708.189524] ? lock_acquire+0x1b9/0x470 [ 1708.190143] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1708.190946] ? lock_release+0x680/0x680 [ 1708.191570] ? __lockdep_reset_lock+0x180/0x180 [ 1708.192295] netlink_rcv_skb+0x14b/0x430 [ 1708.192934] ? genl_get_cmd+0x480/0x480 [ 1708.193559] ? netlink_ack+0xab0/0xab0 [ 1708.194201] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1708.194920] ? is_vmalloc_addr+0x7b/0xb0 [ 1708.195553] genl_rcv+0x24/0x40 [ 1708.196069] netlink_unicast+0x549/0x7f0 [ 1708.196718] ? netlink_attachskb+0x870/0x870 [ 1708.197398] ? __virt_addr_valid+0x128/0x350 [ 1708.198104] netlink_sendmsg+0x90f/0xdf0 [ 1708.198752] ? netlink_unicast+0x7f0/0x7f0 [ 1708.199428] ? netlink_unicast+0x7f0/0x7f0 [ 1708.200096] __sock_sendmsg+0x154/0x190 [ 1708.200739] ____sys_sendmsg+0x70d/0x870 [ 1708.201376] ? sock_write_iter+0x3d0/0x3d0 [ 1708.202032] ? do_recvmmsg+0x6d0/0x6d0 [ 1708.202635] ? perf_trace_lock+0xac/0x490 [ 1708.203294] ? __lockdep_reset_lock+0x180/0x180 [ 1708.204007] ? perf_trace_lock+0xac/0x490 [ 1708.204680] ___sys_sendmsg+0xf3/0x170 [ 1708.205301] ? sendmsg_copy_msghdr+0x160/0x160 [ 1708.206029] ? lock_downgrade+0x6d0/0x6d0 [ 1708.206694] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1708.207501] ? trace_hardirqs_on+0x5b/0x180 [ 1708.208176] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1708.209068] ? __fget_files+0x296/0x4c0 [ 1708.209711] ? __fget_light+0xea/0x290 [ 1708.210333] __sys_sendmsg+0xe5/0x1b0 [ 1708.210926] ? __sys_sendmsg_sock+0x40/0x40 [ 1708.211595] ? trace_hardirqs_on+0x5b/0x180 [ 1708.212294] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1708.213106] ? syscall_enter_from_user_mode+0x27/0x50 [ 1708.213926] do_syscall_64+0x33/0x40 [ 1708.214513] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1708.215337] RIP: 0033:0x7eff88fa0b19 [ 1708.215932] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1708.218835] RSP: 002b:00007eff86516188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1708.220048] RAX: ffffffffffffffda RBX: 00007eff890b3f60 RCX: 00007eff88fa0b19 [ 1708.221199] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1708.222327] RBP: 00007eff88ffaf6d R08: 0000000000000000 R09: 0000000000000000 [ 1708.223462] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1708.224607] R13: 00007ffe20cbc2ff R14: 00007eff86516300 R15: 0000000000022000 15:39:56 executing program 2: perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0x6f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000), 0x101001, 0x0) r1 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) write$rfkill(r1, &(0x7f0000000140)={0x5, 0x1, 0x1, 0x1, 0x1}, 0x8) write$rfkill(r0, &(0x7f00000000c0)={0x0, 0x0, 0x3, 0x1}, 0x8) r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r3 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r3, 0x0, r2, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) ioctl$VFAT_IOCTL_READDIR_SHORT(r2, 0x82307202, &(0x7f0000000180)=[{0x0, 0x0, 0x100}, {0x0, 0x0, 0x100}]) 15:39:56 executing program 3: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x0, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:39:56 executing program 5: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:39:56 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x10, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) 15:39:56 executing program 4: r0 = syz_open_dev$sg(&(0x7f0000000080), 0x0, 0x0) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000000)=ANY=[@ANYBLOB="000000000ea000f070ad000010770ebbacd1e132c3"]) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) writev(r2, &(0x7f0000001300)=[{&(0x7f00000000c0)="ae00741d04f3ad5db74d403159a9877e7ac75c61018cab7c0b249f4e3016cd2ac78dfc8b64ba67299acd9f8a9e56f5d1b3ca548dab7623f5f2189efa1eee36052df3d47d01b8b485dfa23e8c80dfe67c76635e8c5d88e73b18cea81d9db60ee6dd03aaea58ffff59da66714070f0cc95a510cfa2ea83a6b6dcb1bde906ed5048065402088c1661a123e82f0cefe4824f2f8d4687dc9b2cd2afa7c7c77b633d52bab0e6", 0xa3}, {&(0x7f0000000040)="95e46ed4391d141611a1603a1a77c47973106606a1866f9dd3cbf0f1d0365dc20abaeb", 0x23}, {&(0x7f0000000180)="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", 0x1000}, {&(0x7f0000001180)="db03ec910e8536679cfd843166da17542df380dde7010064396c7fcd6290de9726ea8c062c6b82e73e63b5b99fd53e90ad409f6e1d216cbb35763e68e382202db1d170dd6aa0e695d612ae76ec74649ab8d8cfa84c53ca3ea74d709e7c07f9bfb8122a4b54533b7676e21dadd4e34f3cf39b29", 0x73}, {&(0x7f0000001200)="19755bda365ace468367c4ff3fc7f40e00b19bfbd6a3ca7928dd649d3712321d9e372dac20eb6e1a16218360a679fd1e59837606eb790aa56718a062ed07172458528ceceb911f86f7e3ecb62c322f2a456fa797939e332ac80683ebb800fb4d93f7e59a5f62e0d2323c7d1906e9495283f278e3bbdae6a9d7761fca67917d5bd8d69f220b5975b9258080eb8dbe5c742375fd0021345ac2722bffb9a38d829e805153d83b2cc337fa427bcaa2f6870e75c0994b60890570c0f738fb7709bccc517fe5fd46603f17a23dccc7d3a10da201718cb5cd83b459f9a0a2d27d9a4fda381985991143e029e8", 0xe9}], 0x5) prctl$PR_SET_MM_EXE_FILE(0x23, 0xd, r0) 15:39:56 executing program 0: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x1ee, 0x5, 0x4}, 0x7) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:39:56 executing program 6: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) 15:39:56 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0xffffff9e, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) [ 1722.341423] [ 1722.341830] ====================================================== [ 1722.343108] WARNING: possible circular locking dependency detected [ 1722.344386] 5.10.205 #1 Not tainted [ 1722.345163] ------------------------------------------------------ [ 1722.346456] syz-executor.2/12849 is trying to acquire lock: [ 1722.347624] ffff888009ddcb78 ((work_completion)(&hdev->bg_scan_update)){+.+.}-{0:0}, at: __flush_work+0xdd/0xa90 [ 1722.348367] ieee80211 €˜§°ÇÛ ”uòQÇC !: Selected rate control algorithm 'minstrel_ht' [ 1722.349757] [ 1722.349757] but task is already holding lock: [ 1722.349766] ffffffff85619628 (rfkill_global_mutex){+.+.}-{3:3}, at: rfkill_fop_write+0xff/0x4b0 [ 1722.349807] [ 1722.349807] which lock already depends on the new lock. [ 1722.349807] [ 1722.349814] [ 1722.349814] the existing dependency chain (in reverse order) is: [ 1722.349819] [ 1722.349819] -> #4 (rfkill_global_mutex){+.+.}-{3:3}: [ 1722.349858] __mutex_lock+0x13d/0x10b0 [ 1722.349884] rfkill_register+0x36/0xa10 [ 1722.357782] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1722.358093] hci_register_dev+0x42e/0xc00 [ 1722.358113] __vhci_create_device+0x2c8/0x5c0 [ 1722.358139] vhci_open_timeout+0x38/0x50 [ 1722.359879] CPU: 0 PID: 12838 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1722.361303] process_one_work+0x9a9/0x14b0 [ 1722.362593] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1722.363463] worker_thread+0x61d/0x1310 [ 1722.364347] Call Trace: [ 1722.365978] kthread+0x38f/0x470 [ 1722.366904] dump_stack+0x107/0x167 [ 1722.367883] ret_from_fork+0x22/0x30 [ 1722.368804] sysfs_warn_dup.cold+0x1c/0x29 [ 1722.370175] [ 1722.370175] -> #3 [ 1722.371131] sysfs_do_create_link_sd+0x122/0x140 [ 1722.372852] (&data->open_mutex [ 1722.373760] sysfs_create_link+0x5f/0xc0 [ 1722.374264] ){+.+.}-{3:3} [ 1722.375036] device_add+0x703/0x1c50 [ 1722.375734] : [ 1722.376590] ? ieee80211_set_bitrate_flags+0x378/0x620 [ 1722.377421] __mutex_lock+0x13d/0x10b0 [ 1722.378121] ? devlink_add_symlinks+0x970/0x970 [ 1722.379054] vhci_send_frame+0x63/0xa0 [ 1722.379077] hci_send_frame+0x1b9/0x320 [ 1722.379723] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1722.380537] hci_tx_work+0x10af/0x1660 [ 1722.380557] process_one_work+0x9a9/0x14b0 [ 1722.381106] wiphy_register+0x1da6/0x2850 [ 1722.381841] worker_thread+0x61d/0x1310 [ 1722.382189] ? wiphy_unregister+0xb90/0xb90 [ 1722.383219] kthread+0x38f/0x470 [ 1722.384096] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1722.385030] ret_from_fork+0x22/0x30 [ 1722.385907] ieee80211_register_hw+0x23c5/0x38b0 [ 1722.386773] [ 1722.386773] -> #2 [ 1722.387829] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1722.388699] ( [ 1722.389656] ? net_generic+0xdb/0x2b0 [ 1722.390451] (work_completion)(&hdev->tx_work)){+.+.}-{0:0} [ 1722.391379] ? memset+0x20/0x50 [ 1722.392207] : [ 1722.393004] ? __hrtimer_init+0x12c/0x270 [ 1722.394051] __flush_work+0x105/0xa90 [ 1722.394884] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1722.395806] hci_dev_do_close+0x131/0x1240 [ 1722.395825] hci_dev_close+0x175/0x1d0 [ 1722.396538] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1722.397491] hci_sock_ioctl+0x288/0x980 [ 1722.397847] ? hwsim_new_radio_nl+0x967/0x1080 [ 1722.398586] sock_do_ioctl+0xd3/0x300 [ 1722.398605] sock_ioctl+0x3ea/0x700 [ 1722.399707] ? memcpy+0x39/0x60 [ 1722.400352] __x64_sys_ioctl+0x19a/0x210 [ 1722.400700] hwsim_new_radio_nl+0x991/0x1080 [ 1722.401521] do_syscall_64+0x33/0x40 [ 1722.402363] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1722.403337] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1722.403349] [ 1722.403349] -> #1 [ 1722.404296] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1722.405166] ( [ 1722.406097] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1722.406962] &hdev->req_lock){+.+.}-{3:3} [ 1722.407884] genl_family_rcv_msg_doit+0x22d/0x330 [ 1722.408752] : [ 1722.409579] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1722.410228] __mutex_lock+0x13d/0x10b0 [ 1722.411137] ? cap_capable+0x1cd/0x230 [ 1722.412001] bg_scan_update+0x82/0x500 [ 1722.412844] ? ns_capable+0xe2/0x110 [ 1722.413854] process_one_work+0x9a9/0x14b0 [ 1722.414967] genl_rcv_msg+0x33c/0x5a0 [ 1722.415657] worker_thread+0x61d/0x1310 [ 1722.415679] kthread+0x38f/0x470 [ 1722.416993] ? genl_get_cmd+0x480/0x480 [ 1722.417354] ret_from_fork+0x22/0x30 [ 1722.418637] ? lock_acquire+0x1b9/0x470 [ 1722.419417] [ 1722.419417] -> #0 [ 1722.420372] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1722.420727] ( [ 1722.422036] ? lock_release+0x680/0x680 [ 1722.422894] (work_completion)(&hdev->bg_scan_update) [ 1722.423691] ? __lockdep_reset_lock+0x180/0x180 [ 1722.424567] ){+.+.}-{0:0} [ 1722.425322] netlink_rcv_skb+0x14b/0x430 [ 1722.426232] : [ 1722.426259] __lock_acquire+0x29e7/0x5b00 [ 1722.426998] ? genl_get_cmd+0x480/0x480 [ 1722.427871] lock_acquire+0x197/0x470 [ 1722.427890] __flush_work+0x105/0xa90 [ 1722.428683] ? netlink_ack+0xab0/0xab0 [ 1722.429458] __cancel_work_timer+0x368/0x4c0 [ 1722.429482] hci_request_cancel_all+0x73/0x230 [ 1722.430446] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1722.431203] hci_dev_do_close+0xd9/0x1240 [ 1722.431224] hci_rfkill_set_block+0x166/0x1a0 [ 1722.432009] ? __sanitizer_cov_trace_pc+0x4/0x60 [ 1722.433039] rfkill_set_block+0x1fd/0x540 [ 1722.433059] rfkill_fop_write+0x253/0x4b0 [ 1722.433464] genl_rcv+0x24/0x40 [ 1722.434234] vfs_write+0x29a/0xa70 [ 1722.434259] ksys_write+0x1f6/0x260 [ 1722.435388] netlink_unicast+0x549/0x7f0 [ 1722.436294] do_syscall_64+0x33/0x40 [ 1722.436315] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1722.436937] ? netlink_attachskb+0x870/0x870 [ 1722.437724] [ 1722.437724] other info that might help us debug this: [ 1722.437724] [ 1722.438124] ? __sanitizer_cov_trace_const_cmp4+0x20/0x20 [ 1722.439019] Chain exists of: [ 1722.439019] [ 1722.439908] netlink_sendmsg+0x90f/0xdf0 [ 1722.440754] (work_completion)(&hdev->bg_scan_update) --> [ 1722.441726] ? netlink_unicast+0x7f0/0x7f0 [ 1722.442467] &data->open_mutex --> [ 1722.443572] ? netlink_unicast+0x7f0/0x7f0 [ 1722.444571] rfkill_global_mutex [ 1722.444571] [ 1722.445608] __sock_sendmsg+0x154/0x190 [ 1722.446496] Possible unsafe locking scenario: [ 1722.446496] [ 1722.446508] CPU0 CPU1 [ 1722.447618] ____sys_sendmsg+0x70d/0x870 [ 1722.448589] ---- ---- [ 1722.448600] lock( [ 1722.449649] ? sock_write_iter+0x3d0/0x3d0 [ 1722.450542] rfkill_global_mutex); [ 1722.451290] ? do_recvmmsg+0x6d0/0x6d0 [ 1722.452069] lock(&data->open_mutex [ 1722.453017] ? perf_trace_lock+0xac/0x490 [ 1722.453804] ); [ 1722.454750] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1722.455847] lock(rfkill_global_mutex [ 1722.456866] ? __lockdep_reset_lock+0x180/0x180 [ 1722.458460] ); [ 1722.459675] ___sys_sendmsg+0xf3/0x170 [ 1722.460593] lock((work_completion)(&hdev->bg_scan_update) [ 1722.461521] ? sendmsg_copy_msghdr+0x160/0x160 [ 1722.462579] ); [ 1722.462591] [ 1722.462591] *** DEADLOCK *** [ 1722.462591] [ 1722.463525] ? lock_downgrade+0x6d0/0x6d0 [ 1722.464211] 1 lock held by syz-executor.2/12849: [ 1722.465166] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1722.466083] #0: [ 1722.466958] ? trace_hardirqs_on+0x5b/0x180 [ 1722.468136] ffffffff85619628 [ 1722.469174] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1722.469972] ( [ 1722.471002] ? __fget_files+0x296/0x4c0 [ 1722.471422] rfkill_global_mutex){+.+.}-{3:3} [ 1722.472366] ? __fget_light+0xea/0x290 [ 1722.473052] , at: rfkill_fop_write+0xff/0x4b0 [ 1722.473063] [ 1722.473063] stack backtrace: [ 1722.473927] __sys_sendmsg+0xe5/0x1b0 [ 1722.497489] ? __sys_sendmsg_sock+0x40/0x40 [ 1722.498452] ? trace_hardirqs_on+0x5b/0x180 [ 1722.499429] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1722.500589] ? syscall_enter_from_user_mode+0x27/0x50 [ 1722.501750] do_syscall_64+0x33/0x40 [ 1722.502583] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1722.503728] RIP: 0033:0x7f07e63f4b19 [ 1722.504578] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1722.508700] RSP: 002b:00007f07e396a188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1722.510397] RAX: ffffffffffffffda RBX: 00007f07e6507f60 RCX: 00007f07e63f4b19 [ 1722.511992] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1722.513593] RBP: 00007f07e644ef6d R08: 0000000000000000 R09: 0000000000000000 [ 1722.515117] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1722.516555] R13: 00007fff1f25f23f R14: 00007f07e396a300 R15: 0000000000022000 [ 1722.518014] CPU: 1 PID: 12849 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 1722.519450] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1722.521189] Call Trace: [ 1722.521729] dump_stack+0x107/0x167 [ 1722.522481] check_noncircular+0x263/0x2e0 [ 1722.523355] ? print_circular_bug+0x470/0x470 [ 1722.524297] ? find_first_zero_bit+0x94/0xb0 [ 1722.525245] ? alloc_chain_hlocks+0x342/0x5a0 [ 1722.526179] __lock_acquire+0x29e7/0x5b00 [ 1722.527048] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1722.528137] ? SOFTIRQ_verbose+0x10/0x10 [ 1722.528998] ? __lockdep_reset_lock+0x180/0x180 [ 1722.529926] ? mark_lock+0xf5/0x2df0 [ 1722.530681] lock_acquire+0x197/0x470 [ 1722.531439] ? __flush_work+0xdd/0xa90 [ 1722.532221] ? lock_release+0x680/0x680 [ 1722.533035] ? __flush_work+0x78c/0xa90 [ 1722.533848] ? lock_downgrade+0x6d0/0x6d0 [ 1722.534694] __flush_work+0x105/0xa90 [ 1722.535451] ? __flush_work+0xdd/0xa90 [ 1722.536230] ? lock_chain_count+0x20/0x20 [ 1722.537348] ? queue_delayed_work_on+0xe0/0xe0 [ 1722.538551] ? mark_lock+0xf5/0x2df0 [ 1722.539448] ? mark_lock+0xf5/0x2df0 [ 1722.540349] ? lock_chain_count+0x20/0x20 [ 1722.541370] ? perf_trace_lock+0xac/0x490 [ 1722.542378] ? lock_chain_count+0x20/0x20 [ 1722.543392] ? mark_held_locks+0x9e/0xe0 [ 1722.544388] __cancel_work_timer+0x368/0x4c0 [ 1722.545467] ? cancel_delayed_work+0x20/0x20 [ 1722.546545] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1722.547819] ? __cancel_work+0x250/0x2b0 [ 1722.548813] ? trace_hardirqs_on+0x5b/0x180 [ 1722.549805] ? __cancel_work+0x1bb/0x2b0 [ 1722.550654] ? try_to_grab_pending+0xe0/0xe0 [ 1722.551558] hci_request_cancel_all+0x73/0x230 [ 1722.552484] hci_dev_do_close+0xd9/0x1240 [ 1722.553314] ? rfkill_set_block+0x18f/0x540 [ 1722.554182] ? hci_dev_open+0x350/0x350 [ 1722.554980] ? mark_held_locks+0x9e/0xe0 [ 1722.555799] hci_rfkill_set_block+0x166/0x1a0 [ 1722.556705] ? hci_power_off+0x20/0x20 [ 1722.557484] rfkill_set_block+0x1fd/0x540 [ 1722.558322] rfkill_fop_write+0x253/0x4b0 [ 1722.559155] ? rfkill_sync_work+0xa0/0xa0 [ 1722.559994] ? security_file_permission+0x24e/0x570 [ 1722.561017] ? rfkill_sync_work+0xa0/0xa0 [ 1722.561851] vfs_write+0x29a/0xa70 [ 1722.562570] ksys_write+0x1f6/0x260 [ 1722.563298] ? __ia32_sys_read+0xb0/0xb0 [ 1722.564119] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1722.565180] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1722.566219] do_syscall_64+0x33/0x40 [ 1722.566966] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1722.567997] RIP: 0033:0x7f1fb3078b19 [ 1722.568762] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1722.572460] RSP: 002b:00007f1fb05ee188 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 1722.573995] RAX: ffffffffffffffda RBX: 00007f1fb318bf60 RCX: 00007f1fb3078b19 [ 1722.575434] RDX: 0000000000000008 RSI: 00000000200000c0 RDI: 0000000000000004 [ 1722.576880] RBP: 00007f1fb30d2f6d R08: 0000000000000000 R09: 0000000000000000 [ 1722.578310] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1722.579744] R13: 00007ffff99fd67f R14: 00007f1fb05ee300 R15: 0000000000022000 15:39:56 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0xfffffff0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) 15:39:56 executing program 3: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)) syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_READ_FIXED={0x4, 0x0, 0x400e, @fd, 0x0, 0x0, 0x5, 0x4}, 0x7) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) [ 1722.624048] ieee80211 €˜§°ÇÛ ”uòQÇC !: Selected rate control algorithm 'minstrel_ht' [ 1722.631108] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1722.632911] CPU: 0 PID: 12843 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1722.634300] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1722.635974] Call Trace: [ 1722.636530] dump_stack+0x107/0x167 [ 1722.637268] sysfs_warn_dup.cold+0x1c/0x29 [ 1722.638126] sysfs_do_create_link_sd+0x122/0x140 [ 1722.639077] sysfs_create_link+0x5f/0xc0 [ 1722.639911] device_add+0x703/0x1c50 [ 1722.640675] ? devlink_add_symlinks+0x970/0x970 [ 1722.641618] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1722.642675] wiphy_register+0x1da6/0x2850 [ 1722.643528] ? wiphy_unregister+0xb90/0xb90 [ 1722.644418] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1722.645509] ieee80211_register_hw+0x23c5/0x38b0 [ 1722.646470] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1722.647444] ? net_generic+0xdb/0x2b0 [ 1722.648229] ? memset+0x20/0x50 [ 1722.648918] ? __hrtimer_init+0x12c/0x270 [ 1722.649753] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1722.650766] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1722.651699] ? hwsim_new_radio_nl+0x967/0x1080 [ 1722.652626] ? memcpy+0x39/0x60 [ 1722.653290] hwsim_new_radio_nl+0x991/0x1080 [ 1722.654175] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1722.655223] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1722.656549] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1722.657859] genl_family_rcv_msg_doit+0x22d/0x330 [ 1722.658827] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1722.660147] ? cap_capable+0x1cd/0x230 [ 1722.660965] ? ns_capable+0xe2/0x110 [ 1722.661710] genl_rcv_msg+0x33c/0x5a0 [ 1722.662472] ? genl_get_cmd+0x480/0x480 [ 1722.663271] ? lock_acquire+0x1b9/0x470 [ 1722.664069] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1722.665115] ? lock_release+0x680/0x680 [ 1722.665910] ? __lockdep_reset_lock+0x180/0x180 [ 1722.666843] netlink_rcv_skb+0x14b/0x430 [ 1722.667653] ? genl_get_cmd+0x480/0x480 [ 1722.668465] ? netlink_ack+0xab0/0xab0 [ 1722.669255] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1722.670169] ? is_vmalloc_addr+0x7b/0xb0 [ 1722.670981] genl_rcv+0x24/0x40 [ 1722.671641] netlink_unicast+0x549/0x7f0 [ 1722.672465] ? netlink_attachskb+0x870/0x870 [ 1722.673348] ? __virt_addr_valid+0x128/0x350 [ 1722.674238] netlink_sendmsg+0x90f/0xdf0 [ 1722.675054] ? netlink_unicast+0x7f0/0x7f0 [ 1722.675910] ? netlink_unicast+0x7f0/0x7f0 [ 1722.676766] __sock_sendmsg+0x154/0x190 [ 1722.677561] ____sys_sendmsg+0x70d/0x870 [ 1722.678375] ? sock_write_iter+0x3d0/0x3d0 [ 1722.679226] ? do_recvmmsg+0x6d0/0x6d0 [ 1722.680005] ? perf_trace_lock+0xac/0x490 [ 1722.680857] ? __lockdep_reset_lock+0x180/0x180 [ 1722.681786] ? perf_trace_lock+0xac/0x490 [ 1722.682620] ___sys_sendmsg+0xf3/0x170 [ 1722.683402] ? sendmsg_copy_msghdr+0x160/0x160 [ 1722.684320] ? lock_downgrade+0x6d0/0x6d0 [ 1722.685162] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1722.686211] ? trace_hardirqs_on+0x5b/0x180 [ 1722.687078] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1722.688168] ? __fget_files+0x296/0x4c0 [ 1722.688980] ? __fget_light+0xea/0x290 [ 1722.689770] __sys_sendmsg+0xe5/0x1b0 [ 1722.690535] ? __sys_sendmsg_sock+0x40/0x40 [ 1722.691401] ? io_schedule_timeout+0x140/0x140 [ 1722.692324] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1722.693403] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1722.694436] ? trace_hardirqs_on+0x5b/0x180 [ 1722.695306] do_syscall_64+0x33/0x40 [ 1722.696055] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1722.697092] RIP: 0033:0x7fc533f18b19 [ 1722.697847] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1722.701551] RSP: 002b:00007fc53148e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1722.703077] RAX: ffffffffffffffda RBX: 00007fc53402bf60 RCX: 00007fc533f18b19 [ 1722.704531] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1722.705970] RBP: 00007fc533f72f6d R08: 0000000000000000 R09: 0000000000000000 [ 1722.707396] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1722.708845] R13: 00007fff9313d64f R14: 00007fc53148e300 R15: 0000000000022000 15:39:56 executing program 4: syz_emit_ethernet(0x6e, &(0x7f00000003c0)=ANY=[@ANYBLOB="bbbbbbbbbbbbbbbbbbbb3fe0ee1f9613f10800383a0000000000000000000000000000000001ff020000000000000000faffffffff000400907800000000603881f10000880000000000000000000000000000000001fc0000000000000000000000000000001285bf2f4a079b93b4f5c76d6dcdb5542ed5191d57ec3cebd2a185cb2611ea4566f384bcffdeb7c3e21812cf7299991a4aa23283d7689574ff7cb22c420000000067768b698ed0f106fa1937ba629b9286350418f9fd4ddea12f1ac4635d5eba82f0174b8b916691d6f837c628edd720"], 0x0) openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x4000, 0x0) r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000040), 0x40, 0x0) write$tun(r0, &(0x7f0000000580)={@void, @void, @eth={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @random="03a1654736d8", @void, {@ipv6={0x86dd, @tipc_packet={0x0, 0x6, "1e2dfb", 0x57, 0x6, 0x1, @ipv4={'\x00', '\xff\xff', @multicast1}, @remote, {[@srh={0x2, 0x4, 0x4, 0x2, 0x48, 0x8, 0xc1, [@loopback, @dev={0xfe, 0x80, '\x00', 0x1a}]}], @payload_named={{{{{0x2f, 0x0, 0x1, 0x0, 0x0, 0xa, 0x3, 0x2, 0x2, 0x0, 0x3, 0x1, 0x1, 0x2, 0x2, 0x0, 0x4, 0x4e20, 0x4e21}, 0x0, 0x3}, 0x8, 0x4}}, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}}}}}}, 0x8d) ioctl$TUNSETLINK(r0, 0x400454cd, 0x325) r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x105142, 0x0) io_cancel(0x0, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x6, 0x7, r0, &(0x7f00000002c0)="3c0271563cf57bac37344893be24e10debc721ac7f9087a99bcc1af3fdbbb55748d937091d1d843b86e30c4fec4a80caa8ebf01f6495d82d623cd22f8604c1d7e1fbe42c35ce6d9e8e975ea6c04f1fda598e733f06cc7d35419395ac7e3a1b93ae73c66ad3c512", 0x67, 0x8000, 0x0, 0x3, r1}, &(0x7f0000000380)) r2 = openat(0xffffffffffffff9c, &(0x7f0000001340)='./file1\x00', 0x0, 0x0) copy_file_range(r2, 0x0, r1, &(0x7f0000000280)=0x10000, 0xc3a, 0x0) lseek(r1, 0x3, 0x1) r3 = open(&(0x7f0000000140)='./file0\x00', 0x240, 0x1a) preadv(r3, &(0x7f0000000080)=[{&(0x7f0000000180)=""/184, 0xb8}, {&(0x7f00000004c0)=""/171, 0xab}], 0x2, 0x1, 0x8001) 15:39:56 executing program 1: syz_mount_image$vfat(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0) clone3(&(0x7f00000008c0)={0x1040100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58) pipe(&(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) name_to_handle_at(0xffffffffffffffff, 0x0, &(0x7f0000000440)=ANY=[], &(0x7f0000000480), 0x0) writev(0xffffffffffffffff, 0x0, 0x0) mount$9p_fd(0x1a, &(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}}) [ 1722.775043] ieee80211 €˜§°ÇÛ ”uòQÇC !: Selected rate control algorithm 'minstrel_ht' 15:39:56 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0xffffffff, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB='(\x00\x00\x00*\x00\'N\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\n\b'], 0x28}}, 0x0) 15:39:56 executing program 4: perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, @perf_config_ext, 0x0, 0x0, 0x4, 0x0, 0x7}, 0x0, 0xfffffff7ffffffff, 0xffffffffffffffff, 0xd) r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x46e2, 0x0) ftruncate(r0, 0x1000003) ioctl$PERF_EVENT_IOC_QUERY_BPF(r0, 0xc008240a, &(0x7f0000000080)=ANY=[@ANYBLOB="00e7000000000000"]) ioctl$FS_IOC_FSSETXATTR(r0, 0x40086602, &(0x7f0000000000)) write$P9_RREADLINK(r0, &(0x7f00000002c0)=ANY=[], 0x10) fallocate(r0, 0x3, 0x0, 0x30000000000) syz_mount_image$ext4(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) ftruncate(0xffffffffffffffff, 0x1000003) openat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', 0x183000, 0x0) keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, 0x0, 0x0, &(0x7f0000001400)=@keyring) 15:39:56 executing program 6: openat(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x16, 0x0, 0x0) setsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x0, 0x0, 0x0) syz_io_uring_setup(0x457f, 0x0, &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000000040), &(0x7f0000000180)) openat(0xffffffffffffffff, 0x0, 0x0, 0x3a1) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x4c20, 0x0, 0x400}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) syz_io_uring_setup(0x4d4f, &(0x7f00000002c0), &(0x7f0000ffe000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, 0x0, &(0x7f0000000140)) [ 1722.831444] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1722.833212] CPU: 0 PID: 12850 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1722.834600] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1722.836266] Call Trace: [ 1722.836824] dump_stack+0x107/0x167 [ 1722.837560] sysfs_warn_dup.cold+0x1c/0x29 [ 1722.838410] sysfs_do_create_link_sd+0x122/0x140 [ 1722.839360] sysfs_create_link+0x5f/0xc0 [ 1722.840168] device_add+0x703/0x1c50 [ 1722.840922] ? devlink_add_symlinks+0x970/0x970 [ 1722.841851] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1722.842896] wiphy_register+0x1da6/0x2850 [ 1722.843728] ? wiphy_unregister+0xb90/0xb90 [ 1722.844610] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1722.845673] ieee80211_register_hw+0x23c5/0x38b0 [ 1722.846627] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1722.847587] ? hrtimer_init+0x45/0x170 [ 1722.848362] ? memset+0x20/0x50 [ 1722.849037] ? __hrtimer_init+0x12c/0x270 [ 1722.849865] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1722.850867] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1722.851788] ? hwsim_new_radio_nl+0x967/0x1080 [ 1722.852705] ? memcpy+0x39/0x60 [ 1722.853363] hwsim_new_radio_nl+0x991/0x1080 [ 1722.854239] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1722.855275] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1722.856591] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1722.857887] genl_family_rcv_msg_doit+0x22d/0x330 [ 1722.858847] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1722.860158] ? cap_capable+0x1cd/0x230 [ 1722.860963] ? ns_capable+0xe2/0x110 [ 1722.861703] genl_rcv_msg+0x33c/0x5a0 [ 1722.862460] ? genl_get_cmd+0x480/0x480 [ 1722.863250] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1722.864282] ? lock_release+0x680/0x680 [ 1722.865085] netlink_rcv_skb+0x14b/0x430 [ 1722.865902] ? genl_get_cmd+0x480/0x480 [ 1722.866699] ? netlink_ack+0xab0/0xab0 [ 1722.867499] ? genl_pernet_exit+0x80/0x80 [ 1722.868339] ? genl_rcv+0x9/0x40 [ 1722.869033] genl_rcv+0x24/0x40 [ 1722.869703] netlink_unicast+0x549/0x7f0 [ 1722.870522] ? netlink_attachskb+0x870/0x870 [ 1722.871411] ? __virt_addr_valid+0x128/0x350 [ 1722.872307] netlink_sendmsg+0x90f/0xdf0 [ 1722.873155] ? netlink_unicast+0x7f0/0x7f0 [ 1722.874021] ? netlink_unicast+0x7f0/0x7f0 [ 1722.874863] __sock_sendmsg+0x154/0x190 [ 1722.875658] ____sys_sendmsg+0x70d/0x870 [ 1722.876486] ? sock_write_iter+0x3d0/0x3d0 [ 1722.877330] ? do_recvmmsg+0x6d0/0x6d0 [ 1722.878107] ? perf_trace_lock+0xac/0x490 [ 1722.878943] ? __lockdep_reset_lock+0x180/0x180 [ 1722.879889] ___sys_sendmsg+0xf3/0x170 [ 1722.880677] ? sendmsg_copy_msghdr+0x160/0x160 [ 1722.881593] ? lock_downgrade+0x6d0/0x6d0 [ 1722.882434] ? __fget_files+0x296/0x4c0 [ 1722.883225] ? __fget_light+0xea/0x290 [ 1722.883998] __sys_sendmsg+0xe5/0x1b0 [ 1722.884764] ? __sys_sendmsg_sock+0x40/0x40 [ 1722.885614] ? trace_hardirqs_on+0x5b/0x180 [ 1722.886468] ? __sys_sendmsg+0x1b0/0x1b0 [ 1722.887274] ? __x64_sys_sendmsg+0x1/0xb0 [ 1722.888097] do_syscall_64+0x33/0x40 [ 1722.888844] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1722.889853] RIP: 0033:0x7eff88fa0b19 [ 1722.890588] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1722.894234] RSP: 002b:00007eff86516188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1722.895730] RAX: ffffffffffffffda RBX: 00007eff890b3f60 RCX: 00007eff88fa0b19 [ 1722.897147] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1722.898554] RBP: 00007eff88ffaf6d R08: 0000000000000000 R09: 0000000000000000 [ 1722.899959] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1722.901372] R13: 00007ffe20cbc2ff R14: 00007eff86516300 R15: 0000000000022000 15:39:56 executing program 7: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[@ANYBLOB="0f0000002a00274e00000000000000000000000a08"], 0x28}}, 0x0) [ 1722.957790] ieee80211 €˜§°ÇÛ ”uòQÇC !: Selected rate control algorithm 'minstrel_ht' [ 1722.992262] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1722.993946] CPU: 0 PID: 12851 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 1722.995327] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1722.996986] Call Trace: [ 1722.997514] dump_stack+0x107/0x167 [ 1722.998249] sysfs_warn_dup.cold+0x1c/0x29 [ 1722.999100] sysfs_do_create_link_sd+0x122/0x140 [ 1723.000044] sysfs_create_link+0x5f/0xc0 [ 1723.000857] device_add+0x703/0x1c50 [ 1723.001591] ? devlink_add_symlinks+0x970/0x970 [ 1723.002483] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1723.003492] wiphy_register+0x1da6/0x2850 [ 1723.004291] ? wiphy_unregister+0xb90/0xb90 [ 1723.005143] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1723.006165] ieee80211_register_hw+0x23c5/0x38b0 [ 1723.007095] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1723.008015] ? net_generic+0xdb/0x2b0 [ 1723.008758] ? lockdep_init_map_type+0x2c7/0x780 [ 1723.009665] ? memset+0x20/0x50 [ 1723.010296] ? __hrtimer_init+0x12c/0x270 [ 1723.011090] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1723.012052] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1723.012952] ? hwsim_new_radio_nl+0x967/0x1080 [ 1723.013823] ? memcpy+0x39/0x60 [ 1723.014455] hwsim_new_radio_nl+0x991/0x1080 [ 1723.015297] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1723.016290] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1723.017552] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1723.018793] genl_family_rcv_msg_doit+0x22d/0x330 [ 1723.019725] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1723.020999] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1723.022025] ? cap_capable+0x1cd/0x230 [ 1723.022771] ? ns_capable+0xe2/0x110 [ 1723.023477] genl_rcv_msg+0x33c/0x5a0 [ 1723.024197] ? genl_get_cmd+0x480/0x480 [ 1723.024962] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1723.025941] ? lock_release+0x680/0x680 [ 1723.026694] netlink_rcv_skb+0x14b/0x430 [ 1723.027459] ? genl_get_cmd+0x480/0x480 [ 1723.028210] ? netlink_ack+0xab0/0xab0 [ 1723.028971] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1723.029833] ? netlink_trim+0x2c/0x250 [ 1723.030568] ? is_vmalloc_addr+0x7b/0xb0 [ 1723.031336] genl_rcv+0x24/0x40 [ 1723.031956] netlink_unicast+0x549/0x7f0 [ 1723.032743] ? netlink_attachskb+0x870/0x870 [ 1723.033574] ? __virt_addr_valid+0x128/0x350 [ 1723.034410] netlink_sendmsg+0x90f/0xdf0 [ 1723.035180] ? netlink_unicast+0x7f0/0x7f0 [ 1723.035992] ? netlink_unicast+0x7f0/0x7f0 [ 1723.036804] __sock_sendmsg+0x154/0x190 [ 1723.037553] ____sys_sendmsg+0x70d/0x870 [ 1723.038324] ? sock_write_iter+0x3d0/0x3d0 [ 1723.039126] ? do_recvmmsg+0x6d0/0x6d0 [ 1723.039866] ? __lockdep_reset_lock+0x180/0x180 [ 1723.040770] ___sys_sendmsg+0xf3/0x170 [ 1723.041508] ? sendmsg_copy_msghdr+0x160/0x160 [ 1723.042375] ? lock_downgrade+0x6d0/0x6d0 [ 1723.043163] ? find_held_lock+0x2c/0x110 [ 1723.043928] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1723.044918] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1723.045931] ? trace_hardirqs_on+0x5b/0x180 [ 1723.046744] ? __fget_files+0x296/0x4c0 [ 1723.047492] ? __fget_light+0xea/0x290 [ 1723.048227] __sys_sendmsg+0xe5/0x1b0 [ 1723.048953] ? __sys_sendmsg_sock+0x40/0x40 [ 1723.049771] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1723.050751] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1723.051713] ? trace_hardirqs_on+0x5b/0x180 [ 1723.052540] do_syscall_64+0x33/0x40 [ 1723.053238] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1723.054198] RIP: 0033:0x7f2e008a0b19 [ 1723.054900] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1723.058365] RSP: 002b:00007f2dfde16188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1723.059788] RAX: ffffffffffffffda RBX: 00007f2e009b3f60 RCX: 00007f2e008a0b19 [ 1723.061139] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1723.062474] RBP: 00007f2e008faf6d R08: 0000000000000000 R09: 0000000000000000 [ 1723.063799] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1723.065135] R13: 00007ffc98392b5f R14: 00007f2dfde16300 R15: 0000000000022000 [ 1723.138143] ieee80211 €˜§°ÇÛ ”uòQÇC !: Selected rate control algorithm 'minstrel_ht' [ 1723.146165] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1723.147886] CPU: 1 PID: 12920 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1723.149297] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1723.150991] Call Trace: [ 1723.151538] dump_stack+0x107/0x167 [ 1723.152286] sysfs_warn_dup.cold+0x1c/0x29 [ 1723.153159] sysfs_do_create_link_sd+0x122/0x140 [ 1723.154126] sysfs_create_link+0x5f/0xc0 [ 1723.154954] device_add+0x703/0x1c50 [ 1723.155710] ? devlink_add_symlinks+0x970/0x970 [ 1723.156683] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1723.157739] wiphy_register+0x1da6/0x2850 [ 1723.158578] ? wiphy_unregister+0xb90/0xb90 [ 1723.159456] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1723.160538] ieee80211_register_hw+0x23c5/0x38b0 [ 1723.161498] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1723.162465] ? net_generic+0xdb/0x2b0 [ 1723.163238] ? memset+0x20/0x50 [ 1723.163903] ? __hrtimer_init+0x12c/0x270 [ 1723.164752] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1723.165766] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1723.166704] ? memcpy+0x39/0x60 [ 1723.167371] hwsim_new_radio_nl+0x991/0x1080 [ 1723.168259] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1723.169323] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1723.170649] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1723.171961] genl_family_rcv_msg_doit+0x22d/0x330 [ 1723.172948] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1723.174279] ? cap_capable+0x1cd/0x230 [ 1723.175077] ? ns_capable+0xe2/0x110 [ 1723.175831] genl_rcv_msg+0x33c/0x5a0 [ 1723.176610] ? genl_get_cmd+0x480/0x480 [ 1723.177412] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1723.178460] ? lock_release+0x680/0x680 [ 1723.179266] netlink_rcv_skb+0x14b/0x430 [ 1723.180085] ? genl_get_cmd+0x480/0x480 [ 1723.180902] ? netlink_ack+0xab0/0xab0 [ 1723.181699] ? netlink_deliver_tap+0x15a/0xcd0 [ 1723.182623] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1723.183545] ? is_vmalloc_addr+0x7b/0xb0 [ 1723.184366] genl_rcv+0x24/0x40 [ 1723.185038] netlink_unicast+0x549/0x7f0 [ 1723.185863] ? netlink_attachskb+0x870/0x870 [ 1723.186752] ? __virt_addr_valid+0x128/0x350 [ 1723.187645] netlink_sendmsg+0x90f/0xdf0 [ 1723.188483] ? netlink_unicast+0x7f0/0x7f0 [ 1723.189344] ? netlink_unicast+0x7f0/0x7f0 [ 1723.190198] __sock_sendmsg+0x154/0x190 [ 1723.191000] ____sys_sendmsg+0x70d/0x870 [ 1723.191818] ? sock_write_iter+0x3d0/0x3d0 [ 1723.192680] ? do_recvmmsg+0x6d0/0x6d0 [ 1723.193463] ? perf_trace_lock+0xac/0x490 [ 1723.194299] ? perf_trace_lock_acquire+0xbc/0x590 [ 1723.195272] ? __lockdep_reset_lock+0x180/0x180 [ 1723.196206] ? perf_trace_lock+0xac/0x490 [ 1723.197054] ___sys_sendmsg+0xf3/0x170 [ 1723.197842] ? sendmsg_copy_msghdr+0x160/0x160 [ 1723.198764] ? lock_release+0x4d1/0x680 [ 1723.199566] ? lock_downgrade+0x6d0/0x6d0 [ 1723.200403] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1723.201503] ? trace_hardirqs_on+0x5b/0x180 [ 1723.202375] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1723.203470] ? __fget_files+0x296/0x4c0 [ 1723.204278] ? __fget_light+0xea/0x290 [ 1723.205077] __sys_sendmsg+0xe5/0x1b0 [ 1723.205844] ? __sys_sendmsg_sock+0x40/0x40 [ 1723.206715] ? io_schedule_timeout+0x140/0x140 [ 1723.207646] ? switch_fpu_return+0x131/0x290 [ 1723.208546] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1723.209580] ? trace_hardirqs_on+0x5b/0x180 [ 1723.210457] do_syscall_64+0x33/0x40 [ 1723.211207] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1723.212241] RIP: 0033:0x7f07e63f4b19 [ 1723.213005] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1723.216723] RSP: 002b:00007f07e396a188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1723.218258] RAX: ffffffffffffffda RBX: 00007f07e6507f60 RCX: 00007f07e63f4b19 [ 1723.219698] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000005 [ 1723.221151] RBP: 00007f07e644ef6d R08: 0000000000000000 R09: 0000000000000000 [ 1723.222591] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1723.224031] R13: 00007fff1f25f23f R14: 00007f07e396a300 R15: 0000000000022000 [ 1723.314140] ieee80211 €˜§°ÇÛ ”uòQÇC !: Selected rate control algorithm 'minstrel_ht' [ 1723.323462] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1723.325678] CPU: 1 PID: 13060 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1723.327083] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1723.328809] Call Trace: [ 1723.329355] dump_stack+0x107/0x167 [ 1723.330103] sysfs_warn_dup.cold+0x1c/0x29 [ 1723.330955] sysfs_do_create_link_sd+0x122/0x140 [ 1723.331919] sysfs_create_link+0x5f/0xc0 [ 1723.332789] device_add+0x703/0x1c50 [ 1723.333542] ? devlink_add_symlinks+0x970/0x970 [ 1723.334484] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1723.335542] wiphy_register+0x1da6/0x2850 [ 1723.336386] ? wiphy_unregister+0xb90/0xb90 [ 1723.337284] ? dev_printk+0xd0/0x108 [ 1723.338043] ? ieee80211_init_rate_ctrl_alg+0x11c/0x500 [ 1723.339120] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1723.340200] ieee80211_register_hw+0x23c5/0x38b0 [ 1723.341177] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1723.342158] ? net_generic+0xdb/0x2b0 [ 1723.342935] ? lockdep_init_map_type+0x2c7/0x780 [ 1723.343893] ? memset+0x20/0x50 [ 1723.344581] ? __hrtimer_init+0x12c/0x270 [ 1723.345421] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1723.346440] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1723.347377] ? hwsim_new_radio_nl+0x967/0x1080 [ 1723.348311] ? memcpy+0x39/0x60 [ 1723.348993] hwsim_new_radio_nl+0x991/0x1080 [ 1723.349884] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1723.350938] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1723.352267] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1723.353589] genl_family_rcv_msg_doit+0x22d/0x330 [ 1723.354567] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1723.355906] ? __sanitizer_cov_trace_pc+0x3c/0x60 [ 1723.356900] ? ns_capable+0xe2/0x110 [ 1723.357658] genl_rcv_msg+0x33c/0x5a0 [ 1723.358433] ? genl_get_cmd+0x480/0x480 [ 1723.359236] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1723.360277] ? check_memory_region+0x198/0x1f0 [ 1723.361209] netlink_rcv_skb+0x14b/0x430 [ 1723.362028] ? genl_get_cmd+0x480/0x480 [ 1723.362832] ? netlink_ack+0xab0/0xab0 [ 1723.363629] ? netlink_deliver_tap+0x15a/0xcd0 [ 1723.364556] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1723.365475] ? is_vmalloc_addr+0x7b/0xb0 [ 1723.366296] genl_rcv+0x24/0x40 [ 1723.366960] netlink_unicast+0x549/0x7f0 [ 1723.367780] ? netlink_attachskb+0x870/0x870 [ 1723.368682] ? __virt_addr_valid+0x128/0x350 [ 1723.369575] netlink_sendmsg+0x90f/0xdf0 [ 1723.370396] ? netlink_unicast+0x7f0/0x7f0 [ 1723.371259] ? netlink_unicast+0x7f0/0x7f0 [ 1723.372111] __sock_sendmsg+0x154/0x190 [ 1723.372923] ____sys_sendmsg+0x70d/0x870 [ 1723.373745] ? sock_write_iter+0x3d0/0x3d0 [ 1723.374597] ? do_recvmmsg+0x6d0/0x6d0 [ 1723.375381] ? perf_trace_lock+0xac/0x490 [ 1723.376219] ? perf_trace_lock_acquire+0xbc/0x590 [ 1723.377200] ? __lockdep_reset_lock+0x180/0x180 [ 1723.378138] ? perf_trace_lock+0xac/0x490 [ 1723.378978] ___sys_sendmsg+0xf3/0x170 [ 1723.379765] ? sendmsg_copy_msghdr+0x160/0x160 [ 1723.380702] ? lock_release+0x4d1/0x680 [ 1723.381506] ? lock_downgrade+0x6d0/0x6d0 [ 1723.382348] ? __fget_files+0x1a0/0x4c0 [ 1723.383150] ? check_memory_region+0x13/0x1f0 [ 1723.384056] ? __fget_files+0x296/0x4c0 [ 1723.384873] ? __fget_light+0xea/0x290 [ 1723.385667] __sys_sendmsg+0xe5/0x1b0 [ 1723.386437] ? __sys_sendmsg_sock+0x40/0x40 [ 1723.387313] ? io_schedule_timeout+0x140/0x140 [ 1723.388248] ? switch_fpu_return+0x131/0x290 [ 1723.389148] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1723.390187] ? trace_hardirqs_on+0x5b/0x180 [ 1723.391063] do_syscall_64+0x33/0x40 [ 1723.391819] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1723.392861] RIP: 0033:0x7fc533f18b19 [ 1723.393615] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1723.397334] RSP: 002b:00007fc53148e188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1723.398873] RAX: ffffffffffffffda RBX: 00007fc53402bf60 RCX: 00007fc533f18b19 [ 1723.400312] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1723.401770] RBP: 00007fc533f72f6d R08: 0000000000000000 R09: 0000000000000000 [ 1723.403210] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1723.404656] R13: 00007fff9313d64f R14: 00007fc53148e300 R15: 0000000000022000 VM DIAGNOSIS: 15:39:56 Registers: info registers vcpu 0 RAX=0000000000000067 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff822cb5e1 RDI=ffffffff879e8240 RBP=ffffffff879e8200 RSP=ffff88803b0aec00 R8 =0000000000000001 R9 =0000000000000003 R10=0000000000000000 R11=0000000000000001 R12=0000000000000067 R13=0000000000000067 R14=ffffffff879e8200 R15=dffffc0000000000 RIP=ffffffff822cb638 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f07e396a700 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe7700000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000001b2ce24000 CR3=000000004e78c000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffffffffffffffffffff XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000016e7d RBX=0000000000000001 RCX=ffffc900045fa000 RDX=0000000000040000 RSI=ffffffff81299d81 RDI=0000000000000001 RBP=0000000000000000 RSP=ffff888048a1f4b8 R8 =0000000000000000 R9 =ffffffff8567278f R10=0000000000000000 R11=0000000000000001 R12=0000000000000021 R13=0000000000000012 R14=ffff8880413c1a40 R15=0000000000000000 RIP=ffffffff81299d83 RFL=00000012 [----A--] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 00007f1fb05ee700 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe4c00000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000055f061e78a80 CR3=000000004f03c000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00007f76b70f37c000007f76b70f37c8 XMM02=00007f76b70f37e000007f76b70f37c0 XMM03=00007f76b70f37c800007f76b70f37c0 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000