0xe1/0x600 [ 1716.901205] ? wait_for_completion_io+0x270/0x270 [ 1716.901966] ? rcu_read_lock_any_held+0x75/0xa0 [ 1716.902690] ? vfs_write+0x354/0xa70 [ 1716.903285] ? fput_many+0x2f/0x1a0 [ 1716.903846] ? ksys_write+0x1a9/0x260 [ 1716.904426] ? __ia32_sys_read+0xb0/0xb0 [ 1716.905028] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1716.905810] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1716.906555] do_syscall_64+0x33/0x40 [ 1716.907119] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1716.907885] RIP: 0033:0x7f2b60e93b19 [ 1716.908458] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1716.909602] FAULT_INJECTION: forcing a failure. [ 1716.909602] name failslab, interval 1, probability 0, space 0, times 0 [ 1716.911194] RSP: 002b:00007f2b5e409188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1716.911211] RAX: ffffffffffffffda RBX: 00007f2b60fa6f60 RCX: 00007f2b60e93b19 [ 1716.911221] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1716.911229] RBP: 00007f2b5e4091d0 R08: 0000000000000000 R09: 0000000000000000 [ 1716.911237] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1716.911246] R13: 00007ffffc42e53f R14: 00007f2b5e409300 R15: 0000000000022000 [ 1716.923430] CPU: 1 PID: 10802 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 1716.924815] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1716.926512] Call Trace: [ 1716.927049] dump_stack+0x107/0x167 [ 1716.927789] should_fail.cold+0x5/0xa [ 1716.928566] ? create_object.isra.0+0x3a/0xa20 [ 1716.929520] should_failslab+0x5/0x20 [ 1716.930300] kmem_cache_alloc+0x5b/0x310 [ 1716.931127] ? mark_held_locks+0x9e/0xe0 [ 1716.931954] create_object.isra.0+0x3a/0xa20 [ 1716.932836] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1716.933866] kmem_cache_alloc_bulk+0x168/0x320 [ 1716.934807] io_submit_sqes+0x6f76/0x85c0 [ 1716.935662] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1716.936674] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1716.937699] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1716.938676] ? lock_downgrade+0x6d0/0x6d0 [ 1716.939520] ? find_held_lock+0x2c/0x110 [ 1716.940358] ? io_submit_sqes+0x85c0/0x85c0 [ 1716.941266] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1716.942255] ? wait_for_completion_io+0x270/0x270 [ 1716.943235] ? rcu_read_lock_any_held+0x75/0xa0 [ 1716.944167] ? vfs_write+0x354/0xa70 [ 1716.944941] ? fput_many+0x2f/0x1a0 [ 1716.945686] ? ksys_write+0x1a9/0x260 [ 1716.946464] ? __ia32_sys_read+0xb0/0xb0 [ 1716.947288] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1716.948348] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1716.949423] do_syscall_64+0x33/0x40 [ 1716.950215] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1716.951272] RIP: 0033:0x7fd08b847b19 [ 1716.952035] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1716.955788] RSP: 002b:00007fd088dbd188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1716.957350] RAX: ffffffffffffffda RBX: 00007fd08b95af60 RCX: 00007fd08b847b19 [ 1716.958796] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1716.960228] RBP: 00007fd088dbd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1716.961683] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1716.963138] R13: 00007ffe1fec748f R14: 00007fd088dbd300 R15: 0000000000022000 21:20:43 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 6) 21:20:43 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 3) [ 1717.061512] FAULT_INJECTION: forcing a failure. [ 1717.061512] name failslab, interval 1, probability 0, space 0, times 0 [ 1717.064322] CPU: 1 PID: 10812 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1717.065742] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1717.067413] Call Trace: [ 1717.067955] dump_stack+0x107/0x167 [ 1717.068713] should_fail.cold+0x5/0xa [ 1717.069501] ? create_object.isra.0+0x3a/0xa20 [ 1717.070436] should_failslab+0x5/0x20 [ 1717.071204] kmem_cache_alloc+0x5b/0x310 [ 1717.072033] ? mark_held_locks+0x9e/0xe0 [ 1717.072867] create_object.isra.0+0x3a/0xa20 [ 1717.073782] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1717.074823] kmem_cache_alloc_bulk+0x168/0x320 [ 1717.075753] io_submit_sqes+0x6f76/0x85c0 [ 1717.076599] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1717.077622] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1717.078639] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1717.079623] ? lock_downgrade+0x6d0/0x6d0 [ 1717.080465] ? find_held_lock+0x2c/0x110 [ 1717.081299] ? io_submit_sqes+0x85c0/0x85c0 [ 1717.082186] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1717.083181] ? wait_for_completion_io+0x270/0x270 [ 1717.084152] ? rcu_read_lock_any_held+0x75/0xa0 [ 1717.085121] ? vfs_write+0x354/0xa70 [ 1717.085893] ? fput_many+0x2f/0x1a0 [ 1717.086642] ? ksys_write+0x1a9/0x260 [ 1717.087417] ? __ia32_sys_read+0xb0/0xb0 [ 1717.088241] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1717.089324] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1717.090392] do_syscall_64+0x33/0x40 [ 1717.091142] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1717.092186] RIP: 0033:0x7f369cad5b19 [ 1717.092951] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1717.096714] RSP: 002b:00007f369a04b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1717.098277] RAX: ffffffffffffffda RBX: 00007f369cbe8f60 RCX: 00007f369cad5b19 [ 1717.099721] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1717.101179] RBP: 00007f369a04b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1717.102615] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1717.104054] R13: 00007ffcb9edce5f R14: 00007f369a04b300 R15: 0000000000022000 21:20:43 executing program 6: syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r2, 0x0) syz_io_uring_submit(r0, r1, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x7e66, 0x0, 0x0, 0x0, 0x0) 21:20:43 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 5) [ 1717.198597] FAULT_INJECTION: forcing a failure. [ 1717.198597] name failslab, interval 1, probability 0, space 0, times 0 [ 1717.201457] CPU: 1 PID: 10816 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 1717.202837] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1717.204460] Call Trace: [ 1717.205008] dump_stack+0x107/0x167 [ 1717.205736] should_fail.cold+0x5/0xa [ 1717.206480] ? create_object.isra.0+0x3a/0xa20 [ 1717.207374] should_failslab+0x5/0x20 [ 1717.208124] kmem_cache_alloc+0x5b/0x310 [ 1717.208944] ? mark_held_locks+0x9e/0xe0 [ 1717.209756] create_object.isra.0+0x3a/0xa20 [ 1717.210616] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1717.211608] kmem_cache_alloc_bulk+0x168/0x320 [ 1717.212531] io_submit_sqes+0x6f76/0x85c0 [ 1717.213378] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1717.214336] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1717.215320] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1717.216269] ? lock_downgrade+0x6d0/0x6d0 [ 1717.217079] ? find_held_lock+0x2c/0x110 [ 1717.217867] ? io_submit_sqes+0x85c0/0x85c0 [ 1717.218731] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1717.219681] ? wait_for_completion_io+0x270/0x270 [ 1717.220618] ? rcu_read_lock_any_held+0x75/0xa0 [ 1717.221542] ? vfs_write+0x354/0xa70 [ 1717.222266] ? fput_many+0x2f/0x1a0 [ 1717.222990] ? ksys_write+0x1a9/0x260 [ 1717.223764] ? __ia32_sys_read+0xb0/0xb0 [ 1717.224552] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1717.225636] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1717.226645] do_syscall_64+0x33/0x40 [ 1717.227399] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1717.228409] RIP: 0033:0x7f1a51fc5b19 [ 1717.229173] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1717.232787] RSP: 002b:00007f1a4f53b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa 21:20:43 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 3) [ 1717.234296] RAX: ffffffffffffffda RBX: 00007f1a520d8f60 RCX: 00007f1a51fc5b19 [ 1717.235854] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1717.237236] RBP: 00007f1a4f53b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1717.238615] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1717.240004] R13: 00007ffe3ce1c42f R14: 00007f1a4f53b300 R15: 0000000000022000 21:20:43 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) [ 1717.332587] FAULT_INJECTION: forcing a failure. [ 1717.332587] name failslab, interval 1, probability 0, space 0, times 0 [ 1717.335209] CPU: 1 PID: 10823 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 1717.336488] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1717.338034] Call Trace: [ 1717.338524] dump_stack+0x107/0x167 [ 1717.339217] should_fail.cold+0x5/0xa [ 1717.339935] ? create_object.isra.0+0x3a/0xa20 [ 1717.340793] ? create_object.isra.0+0x3a/0xa20 [ 1717.341658] should_failslab+0x5/0x20 [ 1717.342358] kmem_cache_alloc+0x5b/0x310 [ 1717.343106] ? mark_held_locks+0x9e/0xe0 [ 1717.343861] create_object.isra.0+0x3a/0xa20 [ 1717.344675] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1717.345620] kmem_cache_alloc_bulk+0x168/0x320 [ 1717.346464] io_submit_sqes+0x6f76/0x85c0 [ 1717.347228] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1717.348138] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1717.349083] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1717.349988] ? lock_downgrade+0x6d0/0x6d0 [ 1717.350744] ? find_held_lock+0x2c/0x110 [ 1717.351503] ? io_submit_sqes+0x85c0/0x85c0 [ 1717.352280] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1717.353155] ? wait_for_completion_io+0x270/0x270 [ 1717.354029] ? rcu_read_lock_any_held+0x75/0xa0 [ 1717.354891] ? vfs_write+0x354/0xa70 [ 1717.355586] ? fput_many+0x2f/0x1a0 [ 1717.356279] ? ksys_write+0x1a9/0x260 [ 1717.356996] ? __ia32_sys_read+0xb0/0xb0 [ 1717.357727] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1717.358672] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1717.359602] do_syscall_64+0x33/0x40 [ 1717.360300] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1717.361260] RIP: 0033:0x7fd08b847b19 [ 1717.361955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1717.365403] RSP: 002b:00007fd088dbd188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1717.366830] RAX: ffffffffffffffda RBX: 00007fd08b95af60 RCX: 00007fd08b847b19 [ 1717.368150] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1717.369483] RBP: 00007fd088dbd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1717.370803] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1717.371814] FAULT_INJECTION: forcing a failure. [ 1717.371814] name failslab, interval 1, probability 0, space 0, times 0 [ 1717.372120] R13: 00007ffe1fec748f R14: 00007fd088dbd300 R15: 0000000000022000 [ 1717.377173] CPU: 0 PID: 10826 Comm: syz-executor.7 Not tainted 5.10.205 #1 [ 1717.378782] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1717.380703] Call Trace: [ 1717.381350] dump_stack+0x107/0x167 [ 1717.382204] should_fail.cold+0x5/0xa [ 1717.383087] ? create_object.isra.0+0x3a/0xa20 [ 1717.384145] ? create_object.isra.0+0x3a/0xa20 [ 1717.385220] should_failslab+0x5/0x20 [ 1717.386102] kmem_cache_alloc+0x5b/0x310 [ 1717.387046] ? mark_held_locks+0x9e/0xe0 [ 1717.387993] create_object.isra.0+0x3a/0xa20 [ 1717.389026] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1717.390212] kmem_cache_alloc_bulk+0x168/0x320 [ 1717.391292] io_submit_sqes+0x6f76/0x85c0 [ 1717.392262] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1717.393422] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1717.394577] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1717.395709] ? io_submit_sqes+0x85c0/0x85c0 [ 1717.396715] ? recalibrate_cpu_khz+0x10/0x10 [ 1717.397742] ? ktime_get+0x158/0x1f0 [ 1717.398617] ? setup_APIC_eilvt+0x2f0/0x2f0 [ 1717.399613] ? clockevents_program_event+0x131/0x360 [ 1717.400804] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1717.402035] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1717.403292] ? trace_hardirqs_on+0x5b/0x180 [ 1717.404287] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1717.405573] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1717.406787] do_syscall_64+0x33/0x40 [ 1717.407649] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1717.408839] RIP: 0033:0x7f2b60e93b19 [ 1717.409729] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1717.414025] RSP: 002b:00007f2b5e409188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1717.415814] RAX: ffffffffffffffda RBX: 00007f2b60fa6f60 RCX: 00007f2b60e93b19 [ 1717.417478] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1717.419145] RBP: 00007f2b5e4091d0 R08: 0000000000000000 R09: 0000000000000000 [ 1717.420802] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1717.422491] R13: 00007ffffc42e53f R14: 00007f2b5e409300 R15: 0000000000022000 21:20:58 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 3) 21:20:58 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 4) 21:20:58 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 6) 21:20:58 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) 21:20:58 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 7) 21:20:58 executing program 6: syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r2, 0x0) syz_io_uring_submit(r0, r1, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r2, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x7e66, 0x0, 0x0, 0x0, 0x0) 21:20:58 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 4) 21:20:58 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x12, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743"]}]}, 0x28}}, 0x0) [ 1732.528753] FAULT_INJECTION: forcing a failure. [ 1732.528753] name failslab, interval 1, probability 0, space 0, times 0 [ 1732.531377] CPU: 0 PID: 10841 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 1732.531465] FAULT_INJECTION: forcing a failure. [ 1732.531465] name failslab, interval 1, probability 0, space 0, times 0 [ 1732.532794] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1732.532802] Call Trace: [ 1732.532825] dump_stack+0x107/0x167 [ 1732.532852] should_fail.cold+0x5/0xa [ 1732.532878] ? create_object.isra.0+0x3a/0xa20 [ 1732.539748] should_failslab+0x5/0x20 [ 1732.540544] kmem_cache_alloc+0x5b/0x310 [ 1732.541399] ? mark_held_locks+0x9e/0xe0 [ 1732.542253] create_object.isra.0+0x3a/0xa20 [ 1732.543170] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1732.544230] kmem_cache_alloc_bulk+0x168/0x320 [ 1732.545195] io_submit_sqes+0x6f76/0x85c0 [ 1732.546065] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1732.547097] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1732.548091] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1732.549092] ? lock_downgrade+0x6d0/0x6d0 [ 1732.549972] ? find_held_lock+0x2c/0x110 [ 1732.550813] ? io_submit_sqes+0x85c0/0x85c0 [ 1732.551680] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1732.552661] ? wait_for_completion_io+0x270/0x270 [ 1732.553647] ? rcu_read_lock_any_held+0x75/0xa0 [ 1732.554637] ? vfs_write+0x354/0xa70 [ 1732.555418] ? fput_many+0x2f/0x1a0 [ 1732.556187] ? ksys_write+0x1a9/0x260 [ 1732.556990] ? __ia32_sys_read+0xb0/0xb0 [ 1732.557850] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1732.558944] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1732.560028] do_syscall_64+0x33/0x40 [ 1732.560806] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1732.561883] RIP: 0033:0x7f1a51fc5b19 [ 1732.562662] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1732.566896] RSP: 002b:00007f1a4f53b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1732.568780] RAX: ffffffffffffffda RBX: 00007f1a520d8f60 RCX: 00007f1a51fc5b19 [ 1732.570583] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1732.572353] RBP: 00007f1a4f53b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1732.574132] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1732.575857] R13: 00007ffe3ce1c42f R14: 00007f1a4f53b300 R15: 0000000000022000 [ 1732.577656] CPU: 1 PID: 10840 Comm: syz-executor.7 Not tainted 5.10.205 #1 [ 1732.579382] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1732.581377] Call Trace: [ 1732.582028] dump_stack+0x107/0x167 [ 1732.582915] should_fail.cold+0x5/0xa [ 1732.583859] ? create_object.isra.0+0x3a/0xa20 [ 1732.584976] should_failslab+0x5/0x20 [ 1732.585827] kmem_cache_alloc+0x5b/0x310 [ 1732.586708] ? mark_held_locks+0x9e/0xe0 [ 1732.587544] create_object.isra.0+0x3a/0xa20 [ 1732.588437] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1732.589484] FAULT_INJECTION: forcing a failure. [ 1732.589484] name failslab, interval 1, probability 0, space 0, times 0 [ 1732.589515] kmem_cache_alloc_bulk+0x168/0x320 [ 1732.592756] io_submit_sqes+0x6f76/0x85c0 [ 1732.593605] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1732.594615] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1732.595619] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1732.596606] ? lock_downgrade+0x6d0/0x6d0 [ 1732.597461] ? find_held_lock+0x2c/0x110 [ 1732.598295] ? io_submit_sqes+0x85c0/0x85c0 [ 1732.599171] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1732.600172] ? wait_for_completion_io+0x270/0x270 [ 1732.601154] ? rcu_read_lock_any_held+0x75/0xa0 [ 1732.602107] ? vfs_write+0x354/0xa70 [ 1732.602860] ? fput_many+0x2f/0x1a0 [ 1732.603603] ? ksys_write+0x1a9/0x260 [ 1732.604377] ? __ia32_sys_read+0xb0/0xb0 [ 1732.605222] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1732.606291] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1732.607354] do_syscall_64+0x33/0x40 [ 1732.608115] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1732.609169] RIP: 0033:0x7f2b60e93b19 [ 1732.609944] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1732.613644] RSP: 002b:00007f2b5e409188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1732.615209] RAX: ffffffffffffffda RBX: 00007f2b60fa6f60 RCX: 00007f2b60e93b19 [ 1732.616638] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1732.618121] RBP: 00007f2b5e4091d0 R08: 0000000000000000 R09: 0000000000000000 [ 1732.619567] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1732.621024] R13: 00007ffffc42e53f R14: 00007f2b5e409300 R15: 0000000000022000 [ 1732.622520] CPU: 0 PID: 10842 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1732.624001] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1732.625748] Call Trace: [ 1732.626304] dump_stack+0x107/0x167 [ 1732.627087] should_fail.cold+0x5/0xa [ 1732.627889] ? create_object.isra.0+0x3a/0xa20 [ 1732.628890] should_failslab+0x5/0x20 [ 1732.629833] kmem_cache_alloc+0x5b/0x310 [ 1732.630839] ? mark_held_locks+0x9e/0xe0 [ 1732.631696] create_object.isra.0+0x3a/0xa20 [ 1732.632628] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1732.633704] kmem_cache_alloc_bulk+0x168/0x320 [ 1732.634654] io_submit_sqes+0x6f76/0x85c0 [ 1732.635533] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1732.636591] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1732.637663] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1732.638654] ? lock_downgrade+0x6d0/0x6d0 [ 1732.639531] ? find_held_lock+0x2c/0x110 [ 1732.640395] ? io_submit_sqes+0x85c0/0x85c0 [ 1732.641318] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1732.642314] ? wait_for_completion_io+0x270/0x270 [ 1732.643319] ? rcu_read_lock_any_held+0x75/0xa0 [ 1732.644272] ? vfs_write+0x354/0xa70 [ 1732.645044] ? fput_many+0x2f/0x1a0 [ 1732.645822] ? ksys_write+0x1a9/0x260 [ 1732.646642] ? __ia32_sys_read+0xb0/0xb0 [ 1732.647516] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1732.648584] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1732.649655] do_syscall_64+0x33/0x40 [ 1732.650216] FAULT_INJECTION: forcing a failure. [ 1732.650216] name failslab, interval 1, probability 0, space 0, times 0 [ 1732.650445] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1732.650459] RIP: 0033:0x7fd113b88b19 [ 1732.650480] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1732.650500] RSP: 002b:00007fd1110fe188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1732.659841] RAX: ffffffffffffffda RBX: 00007fd113c9bf60 RCX: 00007fd113b88b19 [ 1732.661305] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1732.662753] RBP: 00007fd1110fe1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1732.664240] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1732.665742] R13: 00007ffeed86c68f R14: 00007fd1110fe300 R15: 0000000000022000 [ 1732.667293] CPU: 1 PID: 10848 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 1732.668711] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1732.670428] Call Trace: [ 1732.670964] dump_stack+0x107/0x167 [ 1732.671699] should_fail.cold+0x5/0xa [ 1732.672470] ? create_object.isra.0+0x3a/0xa20 [ 1732.673420] should_failslab+0x5/0x20 [ 1732.674186] kmem_cache_alloc+0x5b/0x310 [ 1732.675008] ? mark_held_locks+0x9e/0xe0 [ 1732.675841] create_object.isra.0+0x3a/0xa20 [ 1732.676748] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1732.677788] kmem_cache_alloc_bulk+0x168/0x320 [ 1732.678727] io_submit_sqes+0x6f76/0x85c0 [ 1732.679576] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1732.680565] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1732.681576] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1732.682535] ? lock_downgrade+0x6d0/0x6d0 [ 1732.683388] ? find_held_lock+0x2c/0x110 [ 1732.684217] ? io_submit_sqes+0x85c0/0x85c0 [ 1732.685089] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1732.686097] ? wait_for_completion_io+0x270/0x270 [ 1732.687060] ? rcu_read_lock_any_held+0x75/0xa0 [ 1732.688001] ? vfs_write+0x354/0xa70 [ 1732.688749] ? fput_many+0x2f/0x1a0 [ 1732.689503] ? ksys_write+0x1a9/0x260 [ 1732.690286] ? __ia32_sys_read+0xb0/0xb0 [ 1732.691127] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1732.692164] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1732.693234] do_syscall_64+0x33/0x40 [ 1732.693972] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1732.694992] RIP: 0033:0x7fd08b847b19 [ 1732.695745] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1732.699484] RSP: 002b:00007fd088dbd188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1732.699505] RAX: ffffffffffffffda RBX: 00007fd08b95af60 RCX: 00007fd08b847b19 [ 1732.699516] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1732.699527] RBP: 00007fd088dbd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1732.699538] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1732.699561] R13: 00007ffe1fec748f R14: 00007fd088dbd300 R15: 0000000000022000 [ 1732.744151] FAULT_INJECTION: forcing a failure. [ 1732.744151] name failslab, interval 1, probability 0, space 0, times 0 [ 1732.747025] CPU: 1 PID: 10849 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1732.748702] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1732.750545] Call Trace: [ 1732.751078] dump_stack+0x107/0x167 [ 1732.751816] should_fail.cold+0x5/0xa [ 1732.752600] ? create_object.isra.0+0x3a/0xa20 [ 1732.753554] should_failslab+0x5/0x20 [ 1732.754333] kmem_cache_alloc+0x5b/0x310 [ 1732.755150] ? mark_held_locks+0x9e/0xe0 [ 1732.755991] create_object.isra.0+0x3a/0xa20 [ 1732.756886] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1732.757923] kmem_cache_alloc_bulk+0x168/0x320 [ 1732.758863] io_submit_sqes+0x6f76/0x85c0 [ 1732.759717] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1732.760718] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1732.761749] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1732.762730] ? lock_downgrade+0x6d0/0x6d0 [ 1732.763558] ? find_held_lock+0x2c/0x110 [ 1732.764406] ? io_submit_sqes+0x85c0/0x85c0 [ 1732.765315] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1732.766288] ? wait_for_completion_io+0x270/0x270 [ 1732.767287] ? rcu_read_lock_any_held+0x75/0xa0 [ 1732.768243] ? vfs_write+0x354/0xa70 [ 1732.769001] ? fput_many+0x2f/0x1a0 [ 1732.769765] ? ksys_write+0x1a9/0x260 [ 1732.770528] ? __ia32_sys_read+0xb0/0xb0 [ 1732.771353] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1732.772399] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1732.773464] do_syscall_64+0x33/0x40 [ 1732.774229] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1732.775256] RIP: 0033:0x7f369cad5b19 [ 1732.775998] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1732.779785] RSP: 002b:00007f369a04b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1732.781346] RAX: ffffffffffffffda RBX: 00007f369cbe8f60 RCX: 00007f369cad5b19 [ 1732.782801] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1732.784275] RBP: 00007f369a04b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1732.785694] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1732.787104] R13: 00007ffcb9edce5f R14: 00007f369a04b300 R15: 0000000000022000 21:20:59 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 21:20:59 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 21:20:59 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 5) [ 1733.029493] FAULT_INJECTION: forcing a failure. [ 1733.029493] name failslab, interval 1, probability 0, space 0, times 0 [ 1733.034317] CPU: 0 PID: 10864 Comm: syz-executor.7 Not tainted 5.10.205 #1 [ 1733.035794] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1733.037516] Call Trace: [ 1733.038064] dump_stack+0x107/0x167 [ 1733.038818] should_fail.cold+0x5/0xa [ 1733.039597] ? create_object.isra.0+0x3a/0xa20 [ 1733.040529] should_failslab+0x5/0x20 [ 1733.041316] kmem_cache_alloc+0x5b/0x310 [ 1733.042150] ? mark_held_locks+0x9e/0xe0 [ 1733.043006] create_object.isra.0+0x3a/0xa20 [ 1733.043907] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1733.044933] kmem_cache_alloc_bulk+0x168/0x320 [ 1733.045919] io_submit_sqes+0x6f76/0x85c0 [ 1733.046805] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1733.047846] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1733.048898] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1733.049908] ? lock_downgrade+0x6d0/0x6d0 [ 1733.050793] ? find_held_lock+0x2c/0x110 [ 1733.051642] ? io_submit_sqes+0x85c0/0x85c0 [ 1733.052551] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1733.053563] ? wait_for_completion_io+0x270/0x270 [ 1733.054580] ? rcu_read_lock_any_held+0x75/0xa0 [ 1733.055537] ? vfs_write+0x354/0xa70 [ 1733.056320] ? fput_many+0x2f/0x1a0 [ 1733.057073] ? ksys_write+0x1a9/0x260 [ 1733.057888] ? __ia32_sys_read+0xb0/0xb0 [ 1733.058750] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1733.059844] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1733.060926] do_syscall_64+0x33/0x40 [ 1733.061712] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1733.062786] RIP: 0033:0x7f2b60e93b19 [ 1733.063564] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1733.067384] RSP: 002b:00007f2b5e409188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1733.068968] RAX: ffffffffffffffda RBX: 00007f2b60fa6f60 RCX: 00007f2b60e93b19 [ 1733.070447] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1733.071915] RBP: 00007f2b5e4091d0 R08: 0000000000000000 R09: 0000000000000000 [ 1733.073397] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1733.074875] R13: 00007ffffc42e53f R14: 00007f2b5e409300 R15: 0000000000022000 21:21:14 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) 21:21:14 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 6) 21:21:14 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x13, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c74309"]}]}, 0x28}}, 0x0) 21:21:14 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 4) 21:21:14 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 5) 21:21:14 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 8) 21:21:14 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 21:21:14 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 7) [ 1748.226326] FAULT_INJECTION: forcing a failure. [ 1748.226326] name failslab, interval 1, probability 0, space 0, times 0 [ 1748.228062] CPU: 0 PID: 10876 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1748.228964] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1748.230067] Call Trace: [ 1748.230420] dump_stack+0x107/0x167 [ 1748.230905] should_fail.cold+0x5/0xa [ 1748.231404] ? create_object.isra.0+0x3a/0xa20 [ 1748.232007] should_failslab+0x5/0x20 [ 1748.232508] kmem_cache_alloc+0x5b/0x310 [ 1748.233042] ? mark_held_locks+0x9e/0xe0 [ 1748.233593] create_object.isra.0+0x3a/0xa20 [ 1748.234172] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1748.234840] kmem_cache_alloc_bulk+0x168/0x320 [ 1748.235448] io_submit_sqes+0x6f76/0x85c0 [ 1748.235993] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1748.236643] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1748.237306] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1748.237944] ? lock_downgrade+0x6d0/0x6d0 [ 1748.238477] ? find_held_lock+0x2c/0x110 [ 1748.239008] ? io_submit_sqes+0x85c0/0x85c0 [ 1748.239574] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1748.240200] ? wait_for_completion_io+0x270/0x270 [ 1748.240832] ? rcu_read_lock_any_held+0x75/0xa0 [ 1748.241454] ? vfs_write+0x354/0xa70 [ 1748.241957] ? fput_many+0x2f/0x1a0 [ 1748.242450] ? ksys_write+0x1a9/0x260 [ 1748.242949] ? __ia32_sys_read+0xb0/0xb0 [ 1748.243475] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1748.244164] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1748.244870] do_syscall_64+0x33/0x40 [ 1748.245372] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1748.246049] RIP: 0033:0x7f369cad5b19 [ 1748.246539] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1748.248929] RSP: 002b:00007f369a04b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1748.249938] RAX: ffffffffffffffda RBX: 00007f369cbe8f60 RCX: 00007f369cad5b19 [ 1748.250861] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1748.251785] RBP: 00007f369a04b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1748.252713] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1748.253706] R13: 00007ffcb9edce5f R14: 00007f369a04b300 R15: 0000000000022000 [ 1748.266555] FAULT_INJECTION: forcing a failure. [ 1748.266555] name failslab, interval 1, probability 0, space 0, times 0 [ 1748.269566] CPU: 1 PID: 10871 Comm: syz-executor.7 Not tainted 5.10.205 #1 [ 1748.270994] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1748.271194] FAULT_INJECTION: forcing a failure. [ 1748.271194] name failslab, interval 1, probability 0, space 0, times 0 [ 1748.272683] Call Trace: [ 1748.272709] dump_stack+0x107/0x167 [ 1748.272736] should_fail.cold+0x5/0xa [ 1748.272759] ? create_object.isra.0+0x3a/0xa20 [ 1748.272782] should_failslab+0x5/0x20 [ 1748.272800] kmem_cache_alloc+0x5b/0x310 [ 1748.272821] ? mark_held_locks+0x9e/0xe0 [ 1748.272846] create_object.isra.0+0x3a/0xa20 [ 1748.280477] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1748.281524] kmem_cache_alloc_bulk+0x168/0x320 [ 1748.282463] io_submit_sqes+0x6f76/0x85c0 [ 1748.283313] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1748.284327] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1748.285376] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1748.286361] ? lock_downgrade+0x6d0/0x6d0 [ 1748.287215] ? find_held_lock+0x2c/0x110 [ 1748.288045] ? io_submit_sqes+0x85c0/0x85c0 [ 1748.288940] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1748.289937] ? wait_for_completion_io+0x270/0x270 [ 1748.290928] ? rcu_read_lock_any_held+0x75/0xa0 [ 1748.291878] ? vfs_write+0x354/0xa70 [ 1748.292646] ? fput_many+0x2f/0x1a0 [ 1748.293412] ? ksys_write+0x1a9/0x260 [ 1748.294198] ? __ia32_sys_read+0xb0/0xb0 [ 1748.295036] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1748.296106] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1748.297168] do_syscall_64+0x33/0x40 [ 1748.297928] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1748.298968] RIP: 0033:0x7f2b60e93b19 [ 1748.299719] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1748.303441] RSP: 002b:00007f2b5e409188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1748.304990] RAX: ffffffffffffffda RBX: 00007f2b60fa6f60 RCX: 00007f2b60e93b19 [ 1748.306445] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1748.307889] RBP: 00007f2b5e4091d0 R08: 0000000000000000 R09: 0000000000000000 [ 1748.309339] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1748.310783] R13: 00007ffffc42e53f R14: 00007f2b5e409300 R15: 0000000000022000 [ 1748.312268] CPU: 0 PID: 10884 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 1748.313188] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1748.314265] Call Trace: [ 1748.314607] dump_stack+0x107/0x167 [ 1748.315090] should_fail.cold+0x5/0xa [ 1748.315583] ? create_object.isra.0+0x3a/0xa20 [ 1748.316189] should_failslab+0x5/0x20 [ 1748.316684] kmem_cache_alloc+0x5b/0x310 [ 1748.317219] ? mark_held_locks+0x9e/0xe0 [ 1748.317768] create_object.isra.0+0x3a/0xa20 [ 1748.318330] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1748.318990] kmem_cache_alloc_bulk+0x168/0x320 [ 1748.319580] io_submit_sqes+0x6f76/0x85c0 [ 1748.320115] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1748.320750] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1748.321411] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1748.321513] FAULT_INJECTION: forcing a failure. [ 1748.321513] name failslab, interval 1, probability 0, space 0, times 0 [ 1748.322027] ? lock_downgrade+0x6d0/0x6d0 [ 1748.322039] ? find_held_lock+0x2c/0x110 [ 1748.322056] ? io_submit_sqes+0x85c0/0x85c0 [ 1748.322078] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1748.322101] ? wait_for_completion_io+0x270/0x270 [ 1748.327069] ? rcu_read_lock_any_held+0x75/0xa0 [ 1748.327666] ? vfs_write+0x354/0xa70 [ 1748.328147] ? fput_many+0x2f/0x1a0 [ 1748.328615] ? ksys_write+0x1a9/0x260 [ 1748.329099] ? __ia32_sys_read+0xb0/0xb0 [ 1748.329633] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1748.330303] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1748.330961] do_syscall_64+0x33/0x40 [ 1748.331439] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1748.332094] RIP: 0033:0x7fd08b847b19 [ 1748.332568] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1748.334937] RSP: 002b:00007fd088dbd188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1748.335906] RAX: ffffffffffffffda RBX: 00007fd08b95af60 RCX: 00007fd08b847b19 [ 1748.336813] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1748.337728] RBP: 00007fd088dbd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1748.338624] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1748.339497] R13: 00007ffe1fec748f R14: 00007fd088dbd300 R15: 0000000000022000 [ 1748.340400] CPU: 1 PID: 10882 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1748.341847] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1748.343554] Call Trace: [ 1748.344088] dump_stack+0x107/0x167 [ 1748.344844] should_fail.cold+0x5/0xa [ 1748.345643] ? create_object.isra.0+0x3a/0xa20 [ 1748.346563] should_failslab+0x5/0x20 [ 1748.347327] kmem_cache_alloc+0x5b/0x310 [ 1748.348153] ? mark_held_locks+0x9e/0xe0 [ 1748.348980] create_object.isra.0+0x3a/0xa20 [ 1748.349883] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1748.350945] kmem_cache_alloc_bulk+0x168/0x320 [ 1748.351890] io_submit_sqes+0x6f76/0x85c0 [ 1748.352753] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1748.353789] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1748.354824] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1748.355820] ? lock_downgrade+0x6d0/0x6d0 [ 1748.356658] ? find_held_lock+0x2c/0x110 [ 1748.357508] ? io_submit_sqes+0x85c0/0x85c0 [ 1748.358409] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1748.359404] ? wait_for_completion_io+0x270/0x270 [ 1748.360406] ? rcu_read_lock_any_held+0x75/0xa0 [ 1748.361366] ? vfs_write+0x354/0xa70 [ 1748.362149] ? fput_many+0x2f/0x1a0 [ 1748.362893] ? ksys_write+0x1a9/0x260 [ 1748.363679] ? __ia32_sys_read+0xb0/0xb0 [ 1748.364518] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1748.365607] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1748.366664] do_syscall_64+0x33/0x40 [ 1748.367432] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1748.368475] RIP: 0033:0x7fd113b88b19 [ 1748.369244] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1748.372936] RSP: 002b:00007fd1110fe188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1748.374467] RAX: ffffffffffffffda RBX: 00007fd113c9bf60 RCX: 00007fd113b88b19 [ 1748.375900] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1748.377350] RBP: 00007fd1110fe1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1748.378782] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1748.380216] R13: 00007ffeed86c68f R14: 00007fd1110fe300 R15: 0000000000022000 [ 1748.400545] FAULT_INJECTION: forcing a failure. [ 1748.400545] name failslab, interval 1, probability 0, space 0, times 0 [ 1748.403275] CPU: 1 PID: 10883 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 1748.404693] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1748.406402] Call Trace: [ 1748.406953] dump_stack+0x107/0x167 [ 1748.407710] should_fail.cold+0x5/0xa [ 1748.408490] ? create_object.isra.0+0x3a/0xa20 [ 1748.409450] should_failslab+0x5/0x20 [ 1748.410250] kmem_cache_alloc+0x5b/0x310 [ 1748.411076] ? mark_held_locks+0x9e/0xe0 [ 1748.411903] create_object.isra.0+0x3a/0xa20 [ 1748.412801] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1748.413848] kmem_cache_alloc_bulk+0x168/0x320 [ 1748.414783] io_submit_sqes+0x6f76/0x85c0 [ 1748.415625] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1748.416637] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1748.417658] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1748.418634] ? lock_downgrade+0x6d0/0x6d0 [ 1748.419466] ? find_held_lock+0x2c/0x110 [ 1748.420297] ? io_submit_sqes+0x85c0/0x85c0 [ 1748.421401] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1748.422384] ? wait_for_completion_io+0x270/0x270 [ 1748.423411] ? rcu_read_lock_any_held+0x75/0xa0 [ 1748.424346] ? vfs_write+0x354/0xa70 [ 1748.425113] ? fput_many+0x2f/0x1a0 [ 1748.425865] ? ksys_write+0x1a9/0x260 [ 1748.426636] ? __ia32_sys_read+0xb0/0xb0 [ 1748.427462] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1748.428518] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1748.429576] do_syscall_64+0x33/0x40 [ 1748.430340] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1748.431387] RIP: 0033:0x7f1a51fc5b19 [ 1748.432158] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1748.435877] RSP: 002b:00007f1a4f53b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1748.437459] RAX: ffffffffffffffda RBX: 00007f1a520d8f60 RCX: 00007f1a51fc5b19 [ 1748.438900] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1748.440364] RBP: 00007f1a4f53b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1748.441837] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1748.442263] FAULT_INJECTION: forcing a failure. [ 1748.442263] name failslab, interval 1, probability 0, space 0, times 0 [ 1748.443296] R13: 00007ffe3ce1c42f R14: 00007f1a4f53b300 R15: 0000000000022000 [ 1748.446168] CPU: 0 PID: 10892 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1748.447046] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1748.448093] Call Trace: [ 1748.448435] dump_stack+0x107/0x167 [ 1748.448899] should_fail.cold+0x5/0xa [ 1748.449402] ? create_object.isra.0+0x3a/0xa20 [ 1748.449983] ? create_object.isra.0+0x3a/0xa20 [ 1748.450566] should_failslab+0x5/0x20 [ 1748.451054] kmem_cache_alloc+0x5b/0x310 [ 1748.451572] ? mark_held_locks+0x9e/0xe0 [ 1748.452086] create_object.isra.0+0x3a/0xa20 [ 1748.452638] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1748.453316] kmem_cache_alloc_bulk+0x168/0x320 [ 1748.453904] io_submit_sqes+0x6f76/0x85c0 [ 1748.454434] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1748.455066] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1748.455693] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1748.456309] ? lock_downgrade+0x6d0/0x6d0 [ 1748.456818] ? find_held_lock+0x2c/0x110 [ 1748.456834] ? io_submit_sqes+0x85c0/0x85c0 [ 1748.456854] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1748.456878] ? wait_for_completion_io+0x270/0x270 [ 1748.459452] ? rcu_read_lock_any_held+0x75/0xa0 [ 1748.460044] ? vfs_write+0x354/0xa70 [ 1748.460513] ? fput_many+0x2f/0x1a0 [ 1748.460969] ? ksys_write+0x1a9/0x260 [ 1748.461459] ? __ia32_sys_read+0xb0/0xb0 [ 1748.461973] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1748.462641] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1748.463302] do_syscall_64+0x33/0x40 [ 1748.463775] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1748.464443] RIP: 0033:0x7f369cad5b19 [ 1748.464907] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1748.467240] RSP: 002b:00007f369a04b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1748.468195] RAX: ffffffffffffffda RBX: 00007f369cbe8f60 RCX: 00007f369cad5b19 [ 1748.469090] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1748.469999] RBP: 00007f369a04b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1748.470894] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1748.471792] R13: 00007ffcb9edce5f R14: 00007f369a04b300 R15: 0000000000022000 21:21:14 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 9) 21:21:14 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 7) [ 1748.489140] FAULT_INJECTION: forcing a failure. [ 1748.489140] name failslab, interval 1, probability 0, space 0, times 0 [ 1748.490569] CPU: 0 PID: 10894 Comm: syz-executor.7 Not tainted 5.10.205 #1 [ 1748.491370] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1748.492329] Call Trace: [ 1748.492633] dump_stack+0x107/0x167 [ 1748.493065] should_fail.cold+0x5/0xa [ 1748.493512] ? create_object.isra.0+0x3a/0xa20 [ 1748.494043] should_failslab+0x5/0x20 [ 1748.494494] kmem_cache_alloc+0x5b/0x310 [ 1748.494962] create_object.isra.0+0x3a/0xa20 [ 1748.495478] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1748.496072] kmem_cache_alloc_bulk+0x168/0x320 [ 1748.496613] io_submit_sqes+0x6f76/0x85c0 [ 1748.497103] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1748.497719] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1748.498288] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1748.498866] ? lock_downgrade+0x6d0/0x6d0 [ 1748.499328] ? find_held_lock+0x2c/0x110 [ 1748.499811] ? io_submit_sqes+0x85c0/0x85c0 [ 1748.500300] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1748.500881] ? wait_for_completion_io+0x270/0x270 [ 1748.501444] ? rcu_read_lock_any_held+0x75/0xa0 [ 1748.502009] ? vfs_write+0x354/0xa70 [ 1748.502446] ? fput_many+0x2f/0x1a0 [ 1748.502878] ? ksys_write+0x1a9/0x260 [ 1748.503320] ? __ia32_sys_read+0xb0/0xb0 [ 1748.503809] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1748.504430] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1748.505043] do_syscall_64+0x33/0x40 [ 1748.505493] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1748.506092] RIP: 0033:0x7f2b60e93b19 [ 1748.506527] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1748.508739] RSP: 002b:00007f2b5e409188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1748.509637] RAX: ffffffffffffffda RBX: 00007f2b60fa6f60 RCX: 00007f2b60e93b19 [ 1748.510462] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1748.511319] RBP: 00007f2b5e4091d0 R08: 0000000000000000 R09: 0000000000000000 [ 1748.512181] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1748.513026] R13: 00007ffffc42e53f R14: 00007f2b5e409300 R15: 0000000000022000 21:21:14 executing program 6: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x12, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743"]}]}, 0x28}}, 0x0) 21:21:14 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 8) 21:21:14 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 8) 21:21:14 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 6) 21:21:14 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 5) 21:21:14 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) [ 1748.635495] FAULT_INJECTION: forcing a failure. [ 1748.635495] name failslab, interval 1, probability 0, space 0, times 0 [ 1748.637208] CPU: 0 PID: 10901 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 1748.637990] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1748.638892] Call Trace: [ 1748.639204] dump_stack+0x107/0x167 [ 1748.639639] should_fail.cold+0x5/0xa [ 1748.640087] ? create_object.isra.0+0x3a/0xa20 [ 1748.640609] should_failslab+0x5/0x20 [ 1748.641049] kmem_cache_alloc+0x5b/0x310 [ 1748.641505] ? mark_held_locks+0x9e/0xe0 [ 1748.641950] create_object.isra.0+0x3a/0xa20 [ 1748.642429] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1748.642982] kmem_cache_alloc_bulk+0x168/0x320 [ 1748.643483] io_submit_sqes+0x6f76/0x85c0 [ 1748.643946] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1748.644499] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1748.645067] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1748.645614] ? lock_downgrade+0x6d0/0x6d0 [ 1748.646067] ? find_held_lock+0x2c/0x110 [ 1748.646507] ? io_submit_sqes+0x85c0/0x85c0 [ 1748.646984] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1748.647510] ? wait_for_completion_io+0x270/0x270 [ 1748.648049] ? rcu_read_lock_any_held+0x75/0xa0 [ 1748.648557] ? vfs_write+0x354/0xa70 [ 1748.648972] ? fput_many+0x2f/0x1a0 [ 1748.649384] ? ksys_write+0x1a9/0x260 [ 1748.649799] ? __ia32_sys_read+0xb0/0xb0 [ 1748.650279] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1748.650895] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1748.651485] do_syscall_64+0x33/0x40 [ 1748.651909] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1748.652486] RIP: 0033:0x7fd08b847b19 [ 1748.652926] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1748.655058] RSP: 002b:00007fd088dbd188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1748.655940] RAX: ffffffffffffffda RBX: 00007fd08b95af60 RCX: 00007fd08b847b19 [ 1748.656765] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1748.657610] RBP: 00007fd088dbd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1748.658428] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1748.659260] R13: 00007ffe1fec748f R14: 00007fd088dbd300 R15: 0000000000022000 [ 1748.683493] FAULT_INJECTION: forcing a failure. [ 1748.683493] name failslab, interval 1, probability 0, space 0, times 0 [ 1748.686461] CPU: 1 PID: 10904 Comm: syz-executor.7 Not tainted 5.10.205 #1 [ 1748.687880] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1748.689564] Call Trace: [ 1748.690099] dump_stack+0x107/0x167 [ 1748.690837] should_fail.cold+0x5/0xa [ 1748.691604] ? create_object.isra.0+0x3a/0xa20 [ 1748.692523] should_failslab+0x5/0x20 [ 1748.693286] kmem_cache_alloc+0x5b/0x310 [ 1748.694109] ? mark_held_locks+0x9e/0xe0 [ 1748.694963] create_object.isra.0+0x3a/0xa20 [ 1748.695859] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1748.696907] kmem_cache_alloc_bulk+0x168/0x320 [ 1748.697867] io_submit_sqes+0x6f76/0x85c0 [ 1748.698726] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1748.699730] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1748.700742] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1748.701733] ? lock_downgrade+0x6d0/0x6d0 [ 1748.702581] ? find_held_lock+0x2c/0x110 [ 1748.703414] ? io_submit_sqes+0x85c0/0x85c0 [ 1748.704312] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1748.705322] ? wait_for_completion_io+0x270/0x270 [ 1748.706314] ? rcu_read_lock_any_held+0x75/0xa0 [ 1748.707262] ? vfs_write+0x354/0xa70 [ 1748.708025] ? fput_many+0x2f/0x1a0 [ 1748.708776] ? ksys_write+0x1a9/0x260 [ 1748.709563] ? __ia32_sys_read+0xb0/0xb0 [ 1748.710402] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1748.711477] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1748.712530] do_syscall_64+0x33/0x40 [ 1748.713293] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1748.714365] RIP: 0033:0x7f2b60e93b19 [ 1748.715123] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1748.718860] RSP: 002b:00007f2b5e409188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1748.720403] RAX: ffffffffffffffda RBX: 00007f2b60fa6f60 RCX: 00007f2b60e93b19 [ 1748.721847] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1748.723287] RBP: 00007f2b5e4091d0 R08: 0000000000000000 R09: 0000000000000000 [ 1748.724722] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1748.726181] R13: 00007ffffc42e53f R14: 00007f2b5e409300 R15: 0000000000022000 [ 1748.743578] FAULT_INJECTION: forcing a failure. [ 1748.743578] name failslab, interval 1, probability 0, space 0, times 0 [ 1748.745028] CPU: 0 PID: 10908 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 1748.745857] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1748.746808] Call Trace: [ 1748.747110] dump_stack+0x107/0x167 [ 1748.747553] should_fail.cold+0x5/0xa [ 1748.748023] ? create_object.isra.0+0x3a/0xa20 [ 1748.748579] should_failslab+0x5/0x20 [ 1748.749024] kmem_cache_alloc+0x5b/0x310 [ 1748.749483] ? mark_held_locks+0x9e/0xe0 [ 1748.749993] create_object.isra.0+0x3a/0xa20 [ 1748.750496] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1748.751096] kmem_cache_alloc_bulk+0x168/0x320 [ 1748.751596] io_submit_sqes+0x6f76/0x85c0 [ 1748.752085] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1748.752638] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1748.753237] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1748.753805] ? lock_downgrade+0x6d0/0x6d0 [ 1748.754295] ? find_held_lock+0x2c/0x110 [ 1748.754763] ? io_submit_sqes+0x85c0/0x85c0 [ 1748.755292] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1748.755825] ? wait_for_completion_io+0x270/0x270 [ 1748.756401] ? rcu_read_lock_any_held+0x75/0xa0 [ 1748.756918] ? vfs_write+0x354/0xa70 [ 1748.757375] ? fput_many+0x2f/0x1a0 [ 1748.757779] ? ksys_write+0x1a9/0x260 [ 1748.758221] ? __ia32_sys_read+0xb0/0xb0 [ 1748.758679] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1748.759308] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1748.759884] do_syscall_64+0x33/0x40 [ 1748.760337] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1748.760928] RIP: 0033:0x7f1a51fc5b19 [ 1748.761386] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1748.763461] RSP: 002b:00007f1a4f53b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1748.764315] RAX: ffffffffffffffda RBX: 00007f1a520d8f60 RCX: 00007f1a51fc5b19 [ 1748.765142] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1748.765992] RBP: 00007f1a4f53b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1748.766806] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1748.767630] R13: 00007ffe3ce1c42f R14: 00007f1a4f53b300 R15: 0000000000022000 [ 1748.772012] FAULT_INJECTION: forcing a failure. [ 1748.772012] name failslab, interval 1, probability 0, space 0, times 0 [ 1748.774337] CPU: 1 PID: 10909 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1748.775749] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1748.777441] Call Trace: [ 1748.777981] dump_stack+0x107/0x167 [ 1748.778728] should_fail.cold+0x5/0xa [ 1748.779507] ? create_object.isra.0+0x3a/0xa20 [ 1748.780441] should_failslab+0x5/0x20 [ 1748.781216] kmem_cache_alloc+0x5b/0x310 [ 1748.782052] ? mark_held_locks+0x9e/0xe0 [ 1748.782883] create_object.isra.0+0x3a/0xa20 [ 1748.783772] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1748.784806] kmem_cache_alloc_bulk+0x168/0x320 [ 1748.785747] io_submit_sqes+0x6f76/0x85c0 [ 1748.786593] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1748.787604] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1748.788607] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1748.789601] ? lock_downgrade+0x6d0/0x6d0 [ 1748.790440] ? find_held_lock+0x2c/0x110 [ 1748.791272] ? io_submit_sqes+0x85c0/0x85c0 [ 1748.792154] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1748.793133] ? wait_for_completion_io+0x270/0x270 [ 1748.794128] ? rcu_read_lock_any_held+0x75/0xa0 [ 1748.795065] ? vfs_write+0x354/0xa70 [ 1748.795830] ? fput_many+0x2f/0x1a0 [ 1748.796568] ? ksys_write+0x1a9/0x260 [ 1748.797346] ? __ia32_sys_read+0xb0/0xb0 [ 1748.798173] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1748.799229] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1748.800277] do_syscall_64+0x33/0x40 [ 1748.801028] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1748.802077] RIP: 0033:0x7fd113b88b19 [ 1748.802830] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1748.806545] RSP: 002b:00007fd1110fe188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1748.808073] RAX: ffffffffffffffda RBX: 00007fd113c9bf60 RCX: 00007fd113b88b19 [ 1748.809524] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000004 [ 1748.810955] RBP: 00007fd1110fe1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1748.812369] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1748.813795] R13: 00007ffeed86c68f R14: 00007fd1110fe300 R15: 0000000000022000 [ 1762.542713] FAULT_INJECTION: forcing a failure. [ 1762.542713] name failslab, interval 1, probability 0, space 0, times 0 [ 1762.545067] CPU: 1 PID: 10926 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 1762.545964] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1762.547013] Call Trace: [ 1762.547357] dump_stack+0x107/0x167 [ 1762.547831] should_fail.cold+0x5/0xa [ 1762.548312] ? create_object.isra.0+0x3a/0xa20 [ 1762.548905] ? create_object.isra.0+0x3a/0xa20 [ 1762.549501] should_failslab+0x5/0x20 [ 1762.550000] kmem_cache_alloc+0x5b/0x310 [ 1762.550513] ? mark_held_locks+0x9e/0xe0 [ 1762.551037] create_object.isra.0+0x3a/0xa20 [ 1762.551589] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1762.552268] kmem_cache_alloc_bulk+0x168/0x320 [ 1762.552866] io_submit_sqes+0x6f76/0x85c0 [ 1762.553410] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1762.554066] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1762.554700] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1762.555318] ? lock_downgrade+0x6d0/0x6d0 [ 1762.555844] ? find_held_lock+0x2c/0x110 [ 1762.556360] ? io_submit_sqes+0x85c0/0x85c0 [ 1762.556912] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1762.557535] ? wait_for_completion_io+0x270/0x270 [ 1762.558146] ? rcu_read_lock_any_held+0x75/0xa0 [ 1762.558733] ? vfs_write+0x354/0xa70 [ 1762.559233] ? fput_many+0x2f/0x1a0 [ 1762.559699] ? ksys_write+0x1a9/0x260 [ 1762.560205] ? __ia32_sys_read+0xb0/0xb0 [ 1762.560720] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1762.561386] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1762.562072] do_syscall_64+0x33/0x40 [ 1762.562550] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1762.563204] RIP: 0033:0x7fd08b847b19 [ 1762.563686] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1762.566057] RSP: 002b:00007fd088dbd188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1762.567038] RAX: ffffffffffffffda RBX: 00007fd08b95af60 RCX: 00007fd08b847b19 [ 1762.567949] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1762.568864] RBP: 00007fd088dbd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1762.569799] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1762.570560] FAULT_INJECTION: forcing a failure. [ 1762.570560] name failslab, interval 1, probability 0, space 0, times 0 [ 1762.570735] R13: 00007ffe1fec748f R14: 00007fd088dbd300 R15: 0000000000022000 [ 1762.575355] CPU: 0 PID: 10928 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1762.576817] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1762.578546] Call Trace: [ 1762.579100] dump_stack+0x107/0x167 [ 1762.579869] should_fail.cold+0x5/0xa [ 1762.580872] should_failslab+0x5/0x20 [ 1762.581545] FAULT_INJECTION: forcing a failure. [ 1762.581545] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 1762.581676] kmem_cache_alloc_bulk+0x4b/0x320 [ 1762.581706] io_submit_sqes+0x6f76/0x85c0 [ 1762.584954] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1762.585998] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1762.587036] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1762.588046] ? lock_downgrade+0x6d0/0x6d0 [ 1762.588904] ? find_held_lock+0x2c/0x110 [ 1762.589775] ? io_submit_sqes+0x85c0/0x85c0 [ 1762.590683] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1762.591696] ? wait_for_completion_io+0x270/0x270 [ 1762.592705] ? rcu_read_lock_any_held+0x75/0xa0 [ 1762.593678] ? vfs_write+0x354/0xa70 [ 1762.594469] ? fput_many+0x2f/0x1a0 [ 1762.595233] ? ksys_write+0x1a9/0x260 [ 1762.596029] ? __ia32_sys_read+0xb0/0xb0 [ 1762.596880] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1762.597989] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1762.599070] do_syscall_64+0x33/0x40 [ 1762.599850] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1762.600918] RIP: 0033:0x7fb1fd6f6b19 [ 1762.601705] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1762.605534] RSP: 002b:00007fb1fac6c188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1762.607125] RAX: ffffffffffffffda RBX: 00007fb1fd809f60 RCX: 00007fb1fd6f6b19 [ 1762.608599] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1762.610094] RBP: 00007fb1fac6c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1762.611567] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1762.613057] R13: 00007ffc06ae2c8f R14: 00007fb1fac6c300 R15: 0000000000022000 [ 1762.614572] CPU: 1 PID: 10937 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1762.615529] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1762.616619] Call Trace: [ 1762.616963] dump_stack+0x107/0x167 [ 1762.617441] should_fail.cold+0x5/0xa [ 1762.617955] _copy_from_user+0x2e/0x1b0 [ 1762.618473] move_addr_to_kernel.part.0+0x31/0x110 21:21:28 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 10) 21:21:28 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 1) 21:21:28 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 6) 21:21:28 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 9) 21:21:28 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 9) 21:21:28 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) 21:21:28 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x13, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c74309"]}]}, 0x28}}, 0x0) 21:21:28 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 7) [ 1762.619181] move_addr_to_kernel+0x4f/0x70 [ 1762.619932] io_connect+0x47a/0x610 [ 1762.620407] ? io_prep_rw+0x1050/0x1050 [ 1762.620915] ? __lockdep_reset_lock+0x180/0x180 [ 1762.621539] ? lock_acquire+0x197/0x470 [ 1762.622057] ? __lock_acquire+0xbb1/0x5b00 [ 1762.622589] io_issue_sqe+0x1611/0x7700 [ 1762.623117] ? perf_trace_lock+0xac/0x490 [ 1762.623632] ? SOFTIRQ_verbose+0x10/0x10 [ 1762.624151] ? __lockdep_reset_lock+0x180/0x180 [ 1762.624743] ? io_connect+0x610/0x610 [ 1762.625221] ? lock_acquire+0x197/0x470 [ 1762.625737] ? find_held_lock+0x2c/0x110 [ 1762.626284] ? mark_held_locks+0x9e/0xe0 [ 1762.626823] __io_queue_sqe+0x90/0x9d0 [ 1762.627393] ? io_issue_sqe+0x7700/0x7700 [ 1762.627942] ? io_file_get_normal+0x17e/0x270 [ 1762.628577] ? kcov_remote_stop+0x310/0x310 [ 1762.629158] io_submit_sqes+0x4461/0x85c0 [ 1762.629728] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1762.630385] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1762.631036] ? lock_downgrade+0x6d0/0x6d0 [ 1762.631565] ? find_held_lock+0x2c/0x110 [ 1762.632133] ? io_submit_sqes+0x85c0/0x85c0 [ 1762.632343] FAULT_INJECTION: forcing a failure. [ 1762.632343] name failslab, interval 1, probability 0, space 0, times 0 [ 1762.632692] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1762.632708] ? wait_for_completion_io+0x270/0x270 [ 1762.632724] ? rcu_read_lock_any_held+0x75/0xa0 [ 1762.632734] ? vfs_write+0x354/0xa70 [ 1762.632756] ? fput_many+0x2f/0x1a0 [ 1762.637767] ? ksys_write+0x1a9/0x260 [ 1762.638262] ? __ia32_sys_read+0xb0/0xb0 [ 1762.638787] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1762.639466] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1762.640144] do_syscall_64+0x33/0x40 [ 1762.640596] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1762.641271] RIP: 0033:0x7f369cad5b19 [ 1762.641758] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1762.644152] RSP: 002b:00007f369a04b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1762.645132] RAX: ffffffffffffffda RBX: 00007f369cbe8f60 RCX: 00007f369cad5b19 [ 1762.646060] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1762.646982] RBP: 00007f369a04b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1762.647902] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1762.648786] R13: 00007ffcb9edce5f R14: 00007f369a04b300 R15: 0000000000022000 [ 1762.649771] CPU: 0 PID: 10931 Comm: syz-executor.7 Not tainted 5.10.205 #1 [ 1762.651228] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1762.652933] Call Trace: [ 1762.653486] dump_stack+0x107/0x167 [ 1762.654267] should_fail.cold+0x5/0xa [ 1762.655066] ? create_object.isra.0+0x3a/0xa20 [ 1762.656018] should_failslab+0x5/0x20 [ 1762.656818] kmem_cache_alloc+0x5b/0x310 [ 1762.657681] ? mark_held_locks+0x9e/0xe0 [ 1762.658541] create_object.isra.0+0x3a/0xa20 [ 1762.659465] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1762.660536] kmem_cache_alloc_bulk+0x168/0x320 [ 1762.661522] io_submit_sqes+0x6f76/0x85c0 [ 1762.662393] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1762.663417] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1762.664450] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1762.665453] ? lock_downgrade+0x6d0/0x6d0 [ 1762.666312] ? find_held_lock+0x2c/0x110 [ 1762.667161] ? io_submit_sqes+0x85c0/0x85c0 [ 1762.668064] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1762.669067] ? wait_for_completion_io+0x270/0x270 [ 1762.670079] ? rcu_read_lock_any_held+0x75/0xa0 [ 1762.671036] ? vfs_write+0x354/0xa70 [ 1762.671834] ? fput_many+0x2f/0x1a0 [ 1762.672635] ? ksys_write+0x1a9/0x260 [ 1762.673419] ? __ia32_sys_read+0xb0/0xb0 [ 1762.674284] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1762.675404] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1762.676520] do_syscall_64+0x33/0x40 [ 1762.677289] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1762.678352] RIP: 0033:0x7f2b60e93b19 [ 1762.679120] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1762.682979] RSP: 002b:00007f2b5e409188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1762.684546] RAX: ffffffffffffffda RBX: 00007f2b60fa6f60 RCX: 00007f2b60e93b19 [ 1762.686021] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1762.687489] RBP: 00007f2b5e4091d0 R08: 0000000000000000 R09: 0000000000000000 [ 1762.688957] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1762.690494] R13: 00007ffffc42e53f R14: 00007f2b5e409300 R15: 0000000000022000 21:21:28 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 11) 21:21:28 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 10) [ 1762.693823] FAULT_INJECTION: forcing a failure. [ 1762.693823] name failslab, interval 1, probability 0, space 0, times 0 [ 1762.695321] CPU: 1 PID: 10933 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1762.696198] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1762.697273] Call Trace: [ 1762.697652] dump_stack+0x107/0x167 [ 1762.698110] should_fail.cold+0x5/0xa [ 1762.698621] ? create_object.isra.0+0x3a/0xa20 [ 1762.699250] should_failslab+0x5/0x20 [ 1762.699748] kmem_cache_alloc+0x5b/0x310 [ 1762.700273] ? mark_held_locks+0x9e/0xe0 [ 1762.700808] create_object.isra.0+0x3a/0xa20 [ 1762.701381] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1762.702039] kmem_cache_alloc_bulk+0x168/0x320 [ 1762.702626] io_submit_sqes+0x6f76/0x85c0 [ 1762.703168] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1762.703803] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1762.704449] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1762.705075] ? lock_downgrade+0x6d0/0x6d0 [ 1762.705613] ? find_held_lock+0x2c/0x110 [ 1762.706158] ? io_submit_sqes+0x85c0/0x85c0 [ 1762.706706] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1762.707330] ? wait_for_completion_io+0x270/0x270 [ 1762.707919] ? rcu_read_lock_any_held+0x75/0xa0 [ 1762.708518] ? vfs_write+0x354/0xa70 [ 1762.709004] ? fput_many+0x2f/0x1a0 [ 1762.709470] ? ksys_write+0x1a9/0x260 [ 1762.709978] ? __ia32_sys_read+0xb0/0xb0 [ 1762.710509] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1762.711184] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1762.711833] do_syscall_64+0x33/0x40 [ 1762.712310] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1762.712963] RIP: 0033:0x7fd113b88b19 [ 1762.713438] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1762.715805] RSP: 002b:00007fd1110fe188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1762.716832] RAX: ffffffffffffffda RBX: 00007fd113c9bf60 RCX: 00007fd113b88b19 [ 1762.717732] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1762.718629] RBP: 00007fd1110fe1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1762.719503] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1762.720422] R13: 00007ffeed86c68f R14: 00007fd1110fe300 R15: 0000000000022000 [ 1762.743279] FAULT_INJECTION: forcing a failure. [ 1762.743279] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1762.744837] CPU: 1 PID: 10943 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 1762.745367] FAULT_INJECTION: forcing a failure. [ 1762.745367] name failslab, interval 1, probability 0, space 0, times 0 [ 1762.745687] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1762.745692] Call Trace: [ 1762.745706] dump_stack+0x107/0x167 [ 1762.745723] should_fail.cold+0x5/0xa [ 1762.745740] _copy_from_user+0x2e/0x1b0 [ 1762.745758] move_addr_to_kernel.part.0+0x31/0x110 [ 1762.745771] move_addr_to_kernel+0x4f/0x70 [ 1762.745783] io_connect+0x47a/0x610 [ 1762.745796] ? io_prep_rw+0x1050/0x1050 [ 1762.745810] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1762.745832] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1762.754161] ? trace_hardirqs_on+0x5b/0x180 [ 1762.754687] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1762.755370] ? io_issue_sqe+0x134/0x7700 [ 1762.755871] io_issue_sqe+0x1611/0x7700 [ 1762.756375] ? perf_trace_lock+0xac/0x490 [ 1762.756889] ? SOFTIRQ_verbose+0x10/0x10 [ 1762.757399] ? __lockdep_reset_lock+0x180/0x180 [ 1762.757988] ? io_connect+0x610/0x610 [ 1762.758468] ? lock_acquire+0x197/0x470 [ 1762.758964] ? find_held_lock+0x2c/0x110 [ 1762.759469] ? __fget_files+0x26d/0x4c0 [ 1762.759959] ? lock_downgrade+0x6d0/0x6d0 [ 1762.760474] __io_queue_sqe+0x90/0x9d0 [ 1762.760965] ? io_issue_sqe+0x7700/0x7700 [ 1762.761505] io_submit_sqes+0x4461/0x85c0 [ 1762.762053] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1762.762635] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1762.763255] ? lock_downgrade+0x6d0/0x6d0 [ 1762.763755] ? find_held_lock+0x2c/0x110 [ 1762.764277] ? io_submit_sqes+0x85c0/0x85c0 [ 1762.764806] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1762.765410] ? wait_for_completion_io+0x270/0x270 [ 1762.766013] ? rcu_read_lock_any_held+0x75/0xa0 [ 1762.766572] ? vfs_write+0x354/0xa70 [ 1762.767040] ? fput_many+0x2f/0x1a0 [ 1762.767466] ? ksys_write+0x1a9/0x260 [ 1762.767927] ? __ia32_sys_read+0xb0/0xb0 [ 1762.768425] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1762.769056] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1762.769711] do_syscall_64+0x33/0x40 [ 1762.770178] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1762.770810] RIP: 0033:0x7fd08b847b19 [ 1762.771277] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1762.773536] RSP: 002b:00007fd088dbd188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1762.774457] RAX: ffffffffffffffda RBX: 00007fd08b95af60 RCX: 00007fd08b847b19 [ 1762.775334] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1762.776203] RBP: 00007fd088dbd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1762.777071] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1762.777944] R13: 00007ffe1fec748f R14: 00007fd088dbd300 R15: 0000000000022000 [ 1762.778888] CPU: 0 PID: 10925 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 1762.780339] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1762.782058] Call Trace: [ 1762.782612] dump_stack+0x107/0x167 [ 1762.783377] should_fail.cold+0x5/0xa [ 1762.784169] ? create_object.isra.0+0x3a/0xa20 [ 1762.785115] should_failslab+0x5/0x20 [ 1762.785912] kmem_cache_alloc+0x5b/0x310 [ 1762.786763] ? mark_held_locks+0x9e/0xe0 [ 1762.787608] create_object.isra.0+0x3a/0xa20 [ 1762.788529] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1762.789602] kmem_cache_alloc_bulk+0x168/0x320 [ 1762.790566] io_submit_sqes+0x6f76/0x85c0 [ 1762.791437] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1762.792464] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1762.793502] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1762.794503] ? lock_downgrade+0x6d0/0x6d0 [ 1762.795359] ? find_held_lock+0x2c/0x110 [ 1762.796208] ? io_submit_sqes+0x85c0/0x85c0 [ 1762.797113] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1762.798137] ? wait_for_completion_io+0x270/0x270 [ 1762.799149] ? rcu_read_lock_any_held+0x75/0xa0 [ 1762.800117] ? vfs_write+0x354/0xa70 [ 1762.800894] ? fput_many+0x2f/0x1a0 [ 1762.801656] ? ksys_write+0x1a9/0x260 [ 1762.802473] ? __ia32_sys_read+0xb0/0xb0 [ 1762.803325] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1762.804417] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1762.805502] do_syscall_64+0x33/0x40 [ 1762.806282] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1762.807342] RIP: 0033:0x7f1a51fc5b19 [ 1762.808116] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1762.811941] RSP: 002b:00007f1a4f53b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1762.813521] RAX: ffffffffffffffda RBX: 00007f1a520d8f60 RCX: 00007f1a51fc5b19 [ 1762.814993] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 21:21:29 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 11) [ 1762.816465] RBP: 00007f1a4f53b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1762.818093] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1762.819566] R13: 00007ffe3ce1c42f R14: 00007f1a4f53b300 R15: 0000000000022000 [ 1762.864353] FAULT_INJECTION: forcing a failure. [ 1762.864353] name failslab, interval 1, probability 0, space 0, times 0 [ 1762.866186] CPU: 1 PID: 10946 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1762.866946] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1762.867845] Call Trace: [ 1762.868140] dump_stack+0x107/0x167 [ 1762.868549] should_fail.cold+0x5/0xa [ 1762.868965] ? io_connect+0x3b1/0x610 [ 1762.869381] should_failslab+0x5/0x20 [ 1762.869809] __kmalloc+0x72/0x390 [ 1762.870191] io_connect+0x3b1/0x610 [ 1762.870588] ? io_prep_rw+0x1050/0x1050 [ 1762.871064] ? __lock_acquire+0xbb1/0x5b00 [ 1762.871560] io_issue_sqe+0x1611/0x7700 [ 1762.872014] ? perf_trace_lock+0xac/0x490 [ 1762.872469] ? SOFTIRQ_verbose+0x10/0x10 [ 1762.872915] ? __lockdep_reset_lock+0x180/0x180 [ 1762.873419] ? io_connect+0x610/0x610 [ 1762.873870] ? lock_acquire+0x197/0x470 [ 1762.874323] ? find_held_lock+0x2c/0x110 [ 1762.874809] ? __fget_files+0x26d/0x4c0 [ 1762.875291] ? lock_downgrade+0x6d0/0x6d0 [ 1762.875774] __io_queue_sqe+0x90/0x9d0 [ 1762.876219] ? io_issue_sqe+0x7700/0x7700 [ 1762.876711] io_submit_sqes+0x4461/0x85c0 [ 1762.877210] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1762.877787] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1762.878333] ? lock_downgrade+0x6d0/0x6d0 [ 1762.878803] ? find_held_lock+0x2c/0x110 [ 1762.879286] ? io_submit_sqes+0x85c0/0x85c0 [ 1762.879796] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1762.879818] ? wait_for_completion_io+0x270/0x270 [ 1762.881376] ? rcu_read_lock_any_held+0x75/0xa0 [ 1762.881914] ? vfs_write+0x354/0xa70 [ 1762.882331] ? fput_many+0x2f/0x1a0 [ 1762.882731] ? ksys_write+0x1a9/0x260 [ 1762.883163] ? __ia32_sys_read+0xb0/0xb0 [ 1762.883607] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1762.884181] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1762.884746] do_syscall_64+0x33/0x40 [ 1762.885148] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1762.885748] RIP: 0033:0x7f369cad5b19 [ 1762.886149] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1762.888224] RSP: 002b:00007f369a04b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1762.889049] RAX: ffffffffffffffda RBX: 00007f369cbe8f60 RCX: 00007f369cad5b19 [ 1762.889876] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1762.890661] RBP: 00007f369a04b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1762.891446] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1762.892244] R13: 00007ffcb9edce5f R14: 00007f369a04b300 R15: 0000000000022000 21:21:29 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) 21:21:29 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 7) [ 1762.918836] FAULT_INJECTION: forcing a failure. [ 1762.918836] name failslab, interval 1, probability 0, space 0, times 0 [ 1762.920107] CPU: 1 PID: 10952 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1762.920850] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1762.921747] Call Trace: [ 1762.922048] dump_stack+0x107/0x167 [ 1762.922457] should_fail.cold+0x5/0xa [ 1762.922886] ? create_object.isra.0+0x3a/0xa20 [ 1762.923400] should_failslab+0x5/0x20 [ 1762.923812] kmem_cache_alloc+0x5b/0x310 [ 1762.924249] ? mark_held_locks+0x9e/0xe0 [ 1762.924685] create_object.isra.0+0x3a/0xa20 [ 1762.925160] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1762.925740] kmem_cache_alloc_bulk+0x168/0x320 [ 1762.926240] io_submit_sqes+0x6f76/0x85c0 [ 1762.926713] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1762.927260] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1762.927822] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1762.928352] ? lock_downgrade+0x6d0/0x6d0 [ 1762.928827] ? find_held_lock+0x2c/0x110 [ 1762.929282] ? io_submit_sqes+0x85c0/0x85c0 [ 1762.929797] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1762.930334] ? wait_for_completion_io+0x270/0x270 [ 1762.930876] ? rcu_read_lock_any_held+0x75/0xa0 [ 1762.931388] ? vfs_write+0x354/0xa70 [ 1762.931831] ? fput_many+0x2f/0x1a0 [ 1762.932239] ? ksys_write+0x1a9/0x260 [ 1762.932682] ? __ia32_sys_read+0xb0/0xb0 [ 1762.933122] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1762.933724] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1762.934278] do_syscall_64+0x33/0x40 [ 1762.934697] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1762.935250] RIP: 0033:0x7fd113b88b19 [ 1762.935669] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1762.937677] RSP: 002b:00007fd1110fe188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1762.938527] RAX: ffffffffffffffda RBX: 00007fd113c9bf60 RCX: 00007fd113b88b19 [ 1762.939329] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1762.940107] RBP: 00007fd1110fe1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1762.940932] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1762.941790] R13: 00007ffeed86c68f R14: 00007fd1110fe300 R15: 0000000000022000 21:21:29 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 10) 21:21:29 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 2) [ 1762.958565] FAULT_INJECTION: forcing a failure. [ 1762.958565] name failslab, interval 1, probability 0, space 0, times 0 [ 1762.961342] CPU: 0 PID: 10948 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 1762.962844] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1762.964556] Call Trace: [ 1762.965128] dump_stack+0x107/0x167 [ 1762.965933] should_fail.cold+0x5/0xa [ 1762.966748] ? memcg_alloc_page_obj_cgroups+0x73/0x100 [ 1762.967869] should_failslab+0x5/0x20 [ 1762.968687] __kmalloc_node+0x76/0x420 [ 1762.969523] memcg_alloc_page_obj_cgroups+0x73/0x100 [ 1762.970616] memcg_slab_post_alloc_hook+0x1f0/0x430 [ 1762.971650] kmem_cache_alloc_bulk+0x182/0x320 [ 1762.972615] io_submit_sqes+0x6f76/0x85c0 [ 1762.973465] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1762.974526] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1762.975542] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1762.976558] ? lock_downgrade+0x6d0/0x6d0 [ 1762.977397] ? find_held_lock+0x2c/0x110 [ 1762.978258] ? io_submit_sqes+0x85c0/0x85c0 [ 1762.979158] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1762.980170] ? wait_for_completion_io+0x270/0x270 [ 1762.981159] ? rcu_read_lock_any_held+0x75/0xa0 [ 1762.982143] ? vfs_write+0x354/0xa70 [ 1762.982910] ? fput_many+0x2f/0x1a0 [ 1762.983676] ? ksys_write+0x1a9/0x260 [ 1762.984461] ? __ia32_sys_read+0xb0/0xb0 [ 1762.985326] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1762.986414] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1762.987501] do_syscall_64+0x33/0x40 [ 1762.988275] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1762.989345] RIP: 0033:0x7fd08b847b19 [ 1762.990116] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1762.993974] RSP: 002b:00007fd088dbd188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1762.995521] RAX: ffffffffffffffda RBX: 00007fd08b95af60 RCX: 00007fd08b847b19 [ 1762.997011] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1762.998519] RBP: 00007fd088dbd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1763.000017] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1763.001524] R13: 00007ffe1fec748f R14: 00007fd088dbd300 R15: 0000000000022000 21:21:29 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 8) 21:21:29 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 8) [ 1763.043139] FAULT_INJECTION: forcing a failure. [ 1763.043139] name failslab, interval 1, probability 0, space 0, times 0 [ 1763.044451] CPU: 1 PID: 10962 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1763.045253] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1763.046182] Call Trace: [ 1763.046480] dump_stack+0x107/0x167 [ 1763.046895] should_fail.cold+0x5/0xa [ 1763.047326] ? create_object.isra.0+0x3a/0xa20 [ 1763.047828] should_failslab+0x5/0x20 [ 1763.048266] kmem_cache_alloc+0x5b/0x310 [ 1763.048710] ? mark_held_locks+0x9e/0xe0 [ 1763.049170] create_object.isra.0+0x3a/0xa20 [ 1763.049675] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1763.050265] kmem_cache_alloc_bulk+0x168/0x320 [ 1763.050770] io_submit_sqes+0x6f76/0x85c0 [ 1763.051244] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1763.051793] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1763.052363] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1763.052923] ? lock_downgrade+0x6d0/0x6d0 [ 1763.053387] ? find_held_lock+0x2c/0x110 [ 1763.053855] ? io_submit_sqes+0x85c0/0x85c0 [ 1763.054342] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1763.054880] ? wait_for_completion_io+0x270/0x270 [ 1763.055417] ? rcu_read_lock_any_held+0x75/0xa0 [ 1763.055924] ? vfs_write+0x354/0xa70 [ 1763.056346] ? fput_many+0x2f/0x1a0 [ 1763.056770] ? ksys_write+0x1a9/0x260 [ 1763.057198] ? __ia32_sys_read+0xb0/0xb0 [ 1763.057679] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1763.058275] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1763.058853] do_syscall_64+0x33/0x40 [ 1763.059276] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1763.059850] RIP: 0033:0x7fd113b88b19 [ 1763.060264] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1763.062289] RSP: 002b:00007fd1110fe188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1763.063127] RAX: ffffffffffffffda RBX: 00007fd113c9bf60 RCX: 00007fd113b88b19 [ 1763.063933] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1763.064752] RBP: 00007fd1110fe1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1763.065586] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1763.066426] R13: 00007ffeed86c68f R14: 00007fd1110fe300 R15: 0000000000022000 [ 1763.077439] FAULT_INJECTION: forcing a failure. [ 1763.077439] name failslab, interval 1, probability 0, space 0, times 0 [ 1763.078853] CPU: 1 PID: 10965 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 1763.079635] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1763.080566] Call Trace: [ 1763.080859] dump_stack+0x107/0x167 [ 1763.081272] should_fail.cold+0x5/0xa [ 1763.081729] ? create_object.isra.0+0x3a/0xa20 [ 1763.082265] should_failslab+0x5/0x20 [ 1763.082694] kmem_cache_alloc+0x5b/0x310 [ 1763.083145] ? mark_held_locks+0x9e/0xe0 [ 1763.083607] create_object.isra.0+0x3a/0xa20 [ 1763.084117] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1763.084690] kmem_cache_alloc_bulk+0x168/0x320 [ 1763.085231] io_submit_sqes+0x6f76/0x85c0 [ 1763.085718] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1763.086307] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1763.086867] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1763.087435] ? lock_downgrade+0x6d0/0x6d0 [ 1763.087908] ? find_held_lock+0x2c/0x110 [ 1763.088058] FAULT_INJECTION: forcing a failure. [ 1763.088058] name failslab, interval 1, probability 0, space 0, times 0 [ 1763.088380] ? io_submit_sqes+0x85c0/0x85c0 [ 1763.088398] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1763.088417] ? wait_for_completion_io+0x270/0x270 [ 1763.092319] ? rcu_read_lock_any_held+0x75/0xa0 [ 1763.092853] ? vfs_write+0x354/0xa70 [ 1763.093279] ? fput_many+0x2f/0x1a0 [ 1763.093695] ? ksys_write+0x1a9/0x260 [ 1763.094139] ? __ia32_sys_read+0xb0/0xb0 [ 1763.094583] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1763.095194] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1763.095750] do_syscall_64+0x33/0x40 [ 1763.096185] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1763.096757] RIP: 0033:0x7f1a51fc5b19 [ 1763.097188] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1763.099289] RSP: 002b:00007f1a4f53b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1763.100160] RAX: ffffffffffffffda RBX: 00007f1a520d8f60 RCX: 00007f1a51fc5b19 [ 1763.100977] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1763.101798] RBP: 00007f1a4f53b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1763.102601] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1763.103409] R13: 00007ffe3ce1c42f R14: 00007f1a4f53b300 R15: 0000000000022000 [ 1763.104262] CPU: 0 PID: 10961 Comm: syz-executor.7 Not tainted 5.10.205 #1 [ 1763.105745] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1763.107490] Call Trace: [ 1763.108052] dump_stack+0x107/0x167 [ 1763.108823] should_fail.cold+0x5/0xa [ 1763.109628] ? create_object.isra.0+0x3a/0xa20 [ 1763.110585] ? create_object.isra.0+0x3a/0xa20 [ 1763.111549] should_failslab+0x5/0x20 [ 1763.112349] kmem_cache_alloc+0x5b/0x310 [ 1763.113206] ? mark_held_locks+0x9e/0xe0 [ 1763.114079] create_object.isra.0+0x3a/0xa20 [ 1763.115002] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1763.116060] kmem_cache_alloc_bulk+0x168/0x320 [ 1763.117021] io_submit_sqes+0x6f76/0x85c0 [ 1763.117895] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1763.118932] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1763.119963] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1763.120964] ? lock_downgrade+0x6d0/0x6d0 [ 1763.121829] ? find_held_lock+0x2c/0x110 [ 1763.122703] ? io_submit_sqes+0x85c0/0x85c0 [ 1763.123609] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1763.124621] ? wait_for_completion_io+0x270/0x270 [ 1763.125647] ? rcu_read_lock_any_held+0x75/0xa0 [ 1763.126612] ? vfs_write+0x354/0xa70 [ 1763.127398] ? fput_many+0x2f/0x1a0 [ 1763.128168] ? ksys_write+0x1a9/0x260 [ 1763.128972] ? __ia32_sys_read+0xb0/0xb0 [ 1763.129839] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1763.130943] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1763.132026] do_syscall_64+0x33/0x40 [ 1763.132804] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1763.133888] RIP: 0033:0x7f2b60e93b19 [ 1763.134669] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1763.138506] RSP: 002b:00007f2b5e409188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1763.140123] RAX: ffffffffffffffda RBX: 00007f2b60fa6f60 RCX: 00007f2b60e93b19 [ 1763.141643] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1763.143165] RBP: 00007f2b5e4091d0 R08: 0000000000000000 R09: 0000000000000000 [ 1763.144670] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1763.146224] R13: 00007ffffc42e53f R14: 00007f2b5e409300 R15: 0000000000022000 [ 1763.162383] FAULT_INJECTION: forcing a failure. [ 1763.162383] name failslab, interval 1, probability 0, space 0, times 0 [ 1763.164951] CPU: 0 PID: 10964 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1763.166407] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1763.168147] Call Trace: [ 1763.168700] dump_stack+0x107/0x167 [ 1763.169466] should_fail.cold+0x5/0xa [ 1763.170270] ? create_object.isra.0+0x3a/0xa20 [ 1763.171229] should_failslab+0x5/0x20 [ 1763.172026] kmem_cache_alloc+0x5b/0x310 [ 1763.172899] create_object.isra.0+0x3a/0xa20 [ 1763.173855] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1763.174930] kmem_cache_alloc_bulk+0x168/0x320 [ 1763.175901] io_submit_sqes+0x6f76/0x85c0 [ 1763.176817] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1763.177873] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1763.178925] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1763.179941] ? lock_downgrade+0x6d0/0x6d0 [ 1763.180820] ? find_held_lock+0x2c/0x110 [ 1763.181679] ? io_submit_sqes+0x85c0/0x85c0 [ 1763.182588] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1763.183586] ? wait_for_completion_io+0x270/0x270 [ 1763.184596] ? rcu_read_lock_any_held+0x75/0xa0 [ 1763.185580] ? vfs_write+0x354/0xa70 [ 1763.186371] ? fput_many+0x2f/0x1a0 [ 1763.187136] ? ksys_write+0x1a9/0x260 [ 1763.187935] ? __ia32_sys_read+0xb0/0xb0 [ 1763.188787] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1763.189899] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1763.190988] do_syscall_64+0x33/0x40 [ 1763.191774] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1763.192848] RIP: 0033:0x7fb1fd6f6b19 [ 1763.193651] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1763.197539] RSP: 002b:00007fb1fac6c188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1763.199147] RAX: ffffffffffffffda RBX: 00007fb1fd809f60 RCX: 00007fb1fd6f6b19 [ 1763.200636] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1763.202139] RBP: 00007fb1fac6c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1763.203627] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1763.205129] R13: 00007ffc06ae2c8f R14: 00007fb1fac6c300 R15: 0000000000022000 [ 1777.546085] FAULT_INJECTION: forcing a failure. [ 1777.546085] name failslab, interval 1, probability 0, space 0, times 0 [ 1777.548210] CPU: 0 PID: 10978 Comm: syz-executor.7 Not tainted 5.10.205 #1 [ 1777.549148] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1777.550274] Call Trace: [ 1777.550633] dump_stack+0x107/0x167 [ 1777.551125] should_fail.cold+0x5/0xa [ 1777.551636] ? io_connect+0x3b1/0x610 [ 1777.552149] ? io_connect+0x3b1/0x610 [ 1777.552669] should_failslab+0x5/0x20 [ 1777.553182] __kmalloc+0x72/0x390 [ 1777.553663] io_connect+0x3b1/0x610 [ 1777.554172] ? io_prep_rw+0x1050/0x1050 [ 1777.554727] ? __lock_acquire+0xbb1/0x5b00 [ 1777.555309] io_issue_sqe+0x1611/0x7700 [ 1777.555855] ? perf_trace_lock+0xac/0x490 [ 1777.556422] ? SOFTIRQ_verbose+0x10/0x10 [ 1777.556993] ? __lockdep_reset_lock+0x180/0x180 [ 1777.557637] ? io_connect+0x610/0x610 [ 1777.558184] ? lock_acquire+0x197/0x470 [ 1777.558745] ? find_held_lock+0x2c/0x110 [ 1777.559321] ? __fget_files+0x26d/0x4c0 [ 1777.559862] ? lock_downgrade+0x6d0/0x6d0 [ 1777.560448] __io_queue_sqe+0x90/0x9d0 [ 1777.560997] ? io_issue_sqe+0x7700/0x7700 [ 1777.561581] io_submit_sqes+0x4461/0x85c0 [ 1777.562197] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1777.562869] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1777.563539] ? lock_downgrade+0x6d0/0x6d0 [ 1777.564120] ? find_held_lock+0x2c/0x110 [ 1777.564681] ? io_submit_sqes+0x85c0/0x85c0 [ 1777.565292] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1777.565974] ? wait_for_completion_io+0x270/0x270 [ 1777.566651] ? rcu_read_lock_any_held+0x75/0xa0 [ 1777.567287] ? vfs_write+0x354/0xa70 [ 1777.567800] ? fput_many+0x2f/0x1a0 [ 1777.568304] ? ksys_write+0x1a9/0x260 [ 1777.568825] ? __ia32_sys_read+0xb0/0xb0 [ 1777.569384] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1777.570117] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1777.570843] do_syscall_64+0x33/0x40 [ 1777.571356] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1777.572062] RIP: 0033:0x7f2b60e93b19 [ 1777.572577] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1777.575126] RSP: 002b:00007f2b5e409188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1777.576180] RAX: ffffffffffffffda RBX: 00007f2b60fa6f60 RCX: 00007f2b60e93b19 [ 1777.577361] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1777.578350] RBP: 00007f2b5e4091d0 R08: 0000000000000000 R09: 0000000000000000 [ 1777.579343] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1777.580338] R13: 00007ffffc42e53f R14: 00007f2b5e409300 R15: 0000000000022000 21:21:43 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 12) 21:21:43 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x13, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c74309"]}]}, 0x28}}, 0x0) 21:21:43 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 11) 21:21:43 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 9) 21:21:43 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) 21:21:43 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 9) 21:21:43 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 3) 21:21:43 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 12) [ 1777.603450] FAULT_INJECTION: forcing a failure. [ 1777.603450] name failslab, interval 1, probability 0, space 0, times 0 [ 1777.605541] CPU: 0 PID: 10989 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1777.606480] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1777.607631] Call Trace: [ 1777.607992] dump_stack+0x107/0x167 [ 1777.608483] should_fail.cold+0x5/0xa [ 1777.609017] ? create_object.isra.0+0x3a/0xa20 [ 1777.609626] should_failslab+0x5/0x20 [ 1777.610174] kmem_cache_alloc+0x5b/0x310 [ 1777.610743] ? mark_held_locks+0x9e/0xe0 [ 1777.611302] create_object.isra.0+0x3a/0xa20 [ 1777.611911] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1777.612619] kmem_cache_alloc_bulk+0x168/0x320 [ 1777.613260] io_submit_sqes+0x6f76/0x85c0 [ 1777.613835] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1777.614519] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1777.615198] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1777.615865] ? lock_downgrade+0x6d0/0x6d0 [ 1777.616420] ? find_held_lock+0x2c/0x110 [ 1777.616990] ? io_submit_sqes+0x85c0/0x85c0 [ 1777.617607] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1777.618287] ? wait_for_completion_io+0x270/0x270 [ 1777.618959] ? rcu_read_lock_any_held+0x75/0xa0 [ 1777.619602] ? vfs_write+0x354/0xa70 [ 1777.620124] ? fput_many+0x2f/0x1a0 [ 1777.620613] ? ksys_write+0x1a9/0x260 [ 1777.621146] ? __ia32_sys_read+0xb0/0xb0 [ 1777.621715] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1777.622415] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1777.623131] do_syscall_64+0x33/0x40 [ 1777.623642] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1777.624355] RIP: 0033:0x7fd113b88b19 [ 1777.624865] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1777.627386] RSP: 002b:00007fd1110fe188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1777.628381] RAX: ffffffffffffffda RBX: 00007fd113c9bf60 RCX: 00007fd113b88b19 [ 1777.629347] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1777.630311] RBP: 00007fd1110fe1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1777.630905] FAULT_INJECTION: forcing a failure. [ 1777.630905] name failslab, interval 1, probability 0, space 0, times 0 [ 1777.631273] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1777.631283] R13: 00007ffeed86c68f R14: 00007fd1110fe300 R15: 0000000000022000 [ 1777.636620] FAULT_INJECTION: forcing a failure. [ 1777.636620] name failslab, interval 1, probability 0, space 0, times 0 [ 1777.637098] CPU: 1 PID: 10988 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1777.639910] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1777.641620] Call Trace: [ 1777.642211] dump_stack+0x107/0x167 [ 1777.642969] should_fail.cold+0x5/0xa [ 1777.643755] ? create_object.isra.0+0x3a/0xa20 [ 1777.644701] ? create_object.isra.0+0x3a/0xa20 [ 1777.645651] should_failslab+0x5/0x20 [ 1777.646488] kmem_cache_alloc+0x5b/0x310 [ 1777.647348] create_object.isra.0+0x3a/0xa20 [ 1777.648269] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1777.649328] kmem_cache_alloc_bulk+0x168/0x320 [ 1777.650315] io_submit_sqes+0x6f76/0x85c0 [ 1777.651187] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1777.652223] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1777.653264] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1777.654300] ? lock_downgrade+0x6d0/0x6d0 [ 1777.655165] ? find_held_lock+0x2c/0x110 [ 1777.656025] ? io_submit_sqes+0x85c0/0x85c0 [ 1777.656929] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1777.657959] ? wait_for_completion_io+0x270/0x270 [ 1777.658973] ? rcu_read_lock_any_held+0x75/0xa0 [ 1777.659940] ? vfs_write+0x354/0xa70 [ 1777.660712] ? fput_many+0x2f/0x1a0 [ 1777.661474] ? ksys_write+0x1a9/0x260 [ 1777.662430] ? __ia32_sys_read+0xb0/0xb0 [ 1777.663488] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1777.664826] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1777.666159] do_syscall_64+0x33/0x40 [ 1777.666934] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1777.668000] RIP: 0033:0x7fb1fd6f6b19 [ 1777.668783] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1777.672623] RSP: 002b:00007fb1fac6c188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1777.674222] RAX: ffffffffffffffda RBX: 00007fb1fd809f60 RCX: 00007fb1fd6f6b19 [ 1777.675701] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1777.677197] RBP: 00007fb1fac6c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1777.678690] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1777.680188] R13: 00007ffc06ae2c8f R14: 00007fb1fac6c300 R15: 0000000000022000 [ 1777.681723] CPU: 0 PID: 10991 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 1777.682662] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1777.683779] Call Trace: [ 1777.684132] dump_stack+0x107/0x167 [ 1777.684619] should_fail.cold+0x5/0xa [ 1777.685109] ? create_object.isra.0+0x3a/0xa20 [ 1777.685704] should_failslab+0x5/0x20 [ 1777.686212] kmem_cache_alloc+0x5b/0x310 [ 1777.686403] FAULT_INJECTION: forcing a failure. [ 1777.686403] name failslab, interval 1, probability 0, space 0, times 0 [ 1777.686734] ? mark_held_locks+0x9e/0xe0 [ 1777.686751] create_object.isra.0+0x3a/0xa20 [ 1777.686763] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1777.686779] kmem_cache_alloc_bulk+0x168/0x320 [ 1777.686796] io_submit_sqes+0x6f76/0x85c0 [ 1777.686811] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1777.686842] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1777.686853] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1777.686869] ? lock_downgrade+0x6d0/0x6d0 [ 1777.686879] ? find_held_lock+0x2c/0x110 [ 1777.686895] ? io_submit_sqes+0x85c0/0x85c0 [ 1777.686913] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1777.686929] ? wait_for_completion_io+0x270/0x270 [ 1777.686943] ? rcu_read_lock_any_held+0x75/0xa0 [ 1777.686953] ? vfs_write+0x354/0xa70 [ 1777.686968] ? fput_many+0x2f/0x1a0 [ 1777.686980] ? ksys_write+0x1a9/0x260 [ 1777.686993] ? __ia32_sys_read+0xb0/0xb0 [ 1777.687008] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1777.687019] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1777.687035] do_syscall_64+0x33/0x40 [ 1777.687046] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1777.687054] RIP: 0033:0x7f1a51fc5b19 [ 1777.687065] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1777.687085] RSP: 002b:00007f1a4f53b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1777.705808] RAX: ffffffffffffffda RBX: 00007f1a520d8f60 RCX: 00007f1a51fc5b19 [ 1777.706727] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1777.707649] RBP: 00007f1a4f53b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1777.708581] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1777.709513] R13: 00007ffe3ce1c42f R14: 00007f1a4f53b300 R15: 0000000000022000 [ 1777.710490] CPU: 1 PID: 10987 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1777.711936] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1777.713683] Call Trace: [ 1777.713705] dump_stack+0x107/0x167 [ 1777.713736] should_fail.cold+0x5/0xa [ 1777.715576] ? create_object.isra.0+0x3a/0xa20 [ 1777.716606] should_failslab+0x5/0x20 [ 1777.717395] kmem_cache_alloc+0x5b/0x310 [ 1777.718297] create_object.isra.0+0x3a/0xa20 [ 1777.719217] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1777.720288] __kmalloc+0x16e/0x390 [ 1777.721043] io_connect+0x3b1/0x610 [ 1777.721812] ? io_prep_rw+0x1050/0x1050 [ 1777.722675] ? __lock_acquire+0xbb1/0x5b00 [ 1777.723571] io_issue_sqe+0x1611/0x7700 [ 1777.724436] ? perf_trace_lock+0xac/0x490 [ 1777.725308] ? SOFTIRQ_verbose+0x10/0x10 [ 1777.726184] ? __lockdep_reset_lock+0x180/0x180 [ 1777.727164] ? io_connect+0x610/0x610 [ 1777.727953] ? lock_acquire+0x197/0x470 [ 1777.728799] ? find_held_lock+0x2c/0x110 [ 1777.729674] ? __fget_files+0x26d/0x4c0 [ 1777.730502] ? lock_downgrade+0x6d0/0x6d0 [ 1777.731359] __io_queue_sqe+0x90/0x9d0 [ 1777.732176] ? io_issue_sqe+0x7700/0x7700 [ 1777.733062] io_submit_sqes+0x4461/0x85c0 [ 1777.733956] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1777.734982] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1777.735974] ? lock_downgrade+0x6d0/0x6d0 [ 1777.736833] ? find_held_lock+0x2c/0x110 [ 1777.737696] ? io_submit_sqes+0x85c0/0x85c0 [ 1777.738597] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1777.739588] ? wait_for_completion_io+0x270/0x270 [ 1777.740617] ? rcu_read_lock_any_held+0x75/0xa0 [ 1777.741592] ? vfs_write+0x354/0xa70 [ 1777.742378] ? fput_many+0x2f/0x1a0 [ 1777.743131] ? ksys_write+0x1a9/0x260 [ 1777.743925] ? __ia32_sys_read+0xb0/0xb0 [ 1777.744803] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1777.745898] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1777.746987] do_syscall_64+0x33/0x40 [ 1777.747770] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1777.748827] RIP: 0033:0x7f369cad5b19 [ 1777.749616] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1777.753387] RSP: 002b:00007f369a04b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1777.755152] RAX: ffffffffffffffda RBX: 00007f369cbe8f60 RCX: 00007f369cad5b19 [ 1777.756734] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1777.758276] RBP: 00007f369a04b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1777.759866] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1777.761386] R13: 00007ffcb9edce5f R14: 00007f369a04b300 R15: 0000000000022000 [ 1777.770299] FAULT_INJECTION: forcing a failure. [ 1777.770299] name failslab, interval 1, probability 0, space 0, times 0 [ 1777.772174] CPU: 0 PID: 10980 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 1777.773020] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1777.774060] Call Trace: [ 1777.774390] dump_stack+0x107/0x167 [ 1777.774829] should_fail.cold+0x5/0xa [ 1777.775251] ? create_object.isra.0+0x3a/0xa20 [ 1777.775758] should_failslab+0x5/0x20 [ 1777.776178] kmem_cache_alloc+0x5b/0x310 [ 1777.776628] create_object.isra.0+0x3a/0xa20 [ 1777.777117] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1777.777750] __kmalloc+0x16e/0x390 [ 1777.778189] io_connect+0x3b1/0x610 [ 1777.778631] ? io_prep_rw+0x1050/0x1050 [ 1777.779123] ? __lock_acquire+0xbb1/0x5b00 [ 1777.779636] io_issue_sqe+0x1611/0x7700 [ 1777.780120] ? perf_trace_lock+0xac/0x490 [ 1777.780619] ? SOFTIRQ_verbose+0x10/0x10 [ 1777.781113] ? __lockdep_reset_lock+0x180/0x180 [ 1777.781677] ? io_connect+0x610/0x610 [ 1777.782142] ? lock_acquire+0x197/0x470 [ 1777.782618] ? find_held_lock+0x2c/0x110 [ 1777.783126] ? __fget_files+0x26d/0x4c0 [ 1777.783607] ? lock_downgrade+0x6d0/0x6d0 [ 1777.784098] __io_queue_sqe+0x90/0x9d0 [ 1777.784568] ? io_issue_sqe+0x7700/0x7700 [ 1777.785071] io_submit_sqes+0x4461/0x85c0 [ 1777.785588] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1777.786195] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1777.786769] ? lock_downgrade+0x6d0/0x6d0 [ 1777.787273] ? find_held_lock+0x2c/0x110 [ 1777.787771] ? io_submit_sqes+0x85c0/0x85c0 [ 1777.788297] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1777.788887] ? wait_for_completion_io+0x270/0x270 [ 1777.789476] ? rcu_read_lock_any_held+0x75/0xa0 [ 1777.790043] ? vfs_write+0x354/0xa70 [ 1777.790496] ? fput_many+0x2f/0x1a0 [ 1777.790939] ? ksys_write+0x1a9/0x260 [ 1777.791388] ? __ia32_sys_read+0xb0/0xb0 [ 1777.791882] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1777.792503] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1777.793122] do_syscall_64+0x33/0x40 [ 1777.793567] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1777.794194] RIP: 0033:0x7fd08b847b19 [ 1777.794651] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1777.796849] RSP: 002b:00007fd088dbd188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1777.797759] RAX: ffffffffffffffda RBX: 00007fd08b95af60 RCX: 00007fd08b847b19 [ 1777.798620] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1777.799464] RBP: 00007fd088dbd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1777.800311] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1777.801164] R13: 00007ffe1fec748f R14: 00007fd088dbd300 R15: 0000000000022000 21:21:44 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) 21:21:44 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 10) [ 1777.942479] FAULT_INJECTION: forcing a failure. [ 1777.942479] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1777.943888] CPU: 0 PID: 11003 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1777.944650] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1777.945554] Call Trace: [ 1777.945885] dump_stack+0x107/0x167 [ 1777.946313] should_fail.cold+0x5/0xa [ 1777.946760] _copy_from_user+0x2e/0x1b0 [ 1777.947235] move_addr_to_kernel.part.0+0x31/0x110 [ 1777.947798] move_addr_to_kernel+0x4f/0x70 [ 1777.948291] io_connect+0x47a/0x610 [ 1777.948703] ? io_prep_rw+0x1050/0x1050 [ 1777.949143] ? __lockdep_reset_lock+0x180/0x180 [ 1777.949680] ? lock_acquire+0x197/0x470 [ 1777.950142] ? __lock_acquire+0xbb1/0x5b00 [ 1777.950614] io_issue_sqe+0x1611/0x7700 [ 1777.951063] ? perf_trace_lock+0xac/0x490 [ 1777.951519] ? SOFTIRQ_verbose+0x10/0x10 [ 1777.951981] ? __lockdep_reset_lock+0x180/0x180 [ 1777.952492] ? io_connect+0x610/0x610 [ 1777.952919] ? lock_acquire+0x197/0x470 [ 1777.953355] ? find_held_lock+0x2c/0x110 [ 1777.953818] ? __fget_files+0x26d/0x4c0 [ 1777.954260] ? lock_downgrade+0x6d0/0x6d0 [ 1777.954718] __io_queue_sqe+0x90/0x9d0 [ 1777.955148] ? io_issue_sqe+0x7700/0x7700 [ 1777.955618] io_submit_sqes+0x4461/0x85c0 [ 1777.956094] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1777.956647] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1777.957183] ? lock_downgrade+0x6d0/0x6d0 [ 1777.957642] ? find_held_lock+0x2c/0x110 [ 1777.958121] ? io_submit_sqes+0x85c0/0x85c0 [ 1777.958605] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1777.959139] ? wait_for_completion_io+0x270/0x270 [ 1777.959671] ? rcu_read_lock_any_held+0x75/0xa0 [ 1777.960184] ? vfs_write+0x354/0xa70 [ 1777.960596] ? fput_many+0x2f/0x1a0 [ 1777.961003] ? ksys_write+0x1a9/0x260 [ 1777.961423] ? __ia32_sys_read+0xb0/0xb0 [ 1777.961898] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1777.962473] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1777.963049] do_syscall_64+0x33/0x40 [ 1777.963467] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1777.964046] RIP: 0033:0x7fd113b88b19 [ 1777.964462] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1777.966476] RSP: 002b:00007fd1110fe188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1777.967325] RAX: ffffffffffffffda RBX: 00007fd113c9bf60 RCX: 00007fd113b88b19 [ 1777.968112] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1777.968896] RBP: 00007fd1110fe1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1777.969686] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1777.970479] R13: 00007ffeed86c68f R14: 00007fd1110fe300 R15: 0000000000022000 21:22:00 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 13) 21:22:00 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 11) 21:22:00 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) (fail_nth: 1) 21:22:00 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x7e66, 0x0, 0x0, 0x0, 0x0) 21:22:00 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 12) 21:22:00 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 4) 21:22:00 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 10) 21:22:00 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 13) [ 1794.394604] FAULT_INJECTION: forcing a failure. [ 1794.394604] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1794.397117] CPU: 1 PID: 11011 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1794.398532] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1794.400188] Call Trace: [ 1794.400721] dump_stack+0x107/0x167 [ 1794.401460] should_fail.cold+0x5/0xa [ 1794.402243] _copy_from_user+0x2e/0x1b0 [ 1794.403057] __copy_msghdr_from_user+0x91/0x4b0 [ 1794.403366] FAULT_INJECTION: forcing a failure. [ 1794.403366] name failslab, interval 1, probability 0, space 0, times 0 [ 1794.403990] ? __ia32_sys_shutdown+0x80/0x80 [ 1794.404009] ? perf_trace_lock+0xac/0x490 [ 1794.404037] ? __lock_acquire+0xbb1/0x5b00 [ 1794.404070] sendmsg_copy_msghdr+0xa1/0x160 [ 1794.404093] ? do_recvmmsg+0x6d0/0x6d0 [ 1794.410496] ? perf_trace_lock+0xac/0x490 [ 1794.411326] ? SOFTIRQ_verbose+0x10/0x10 [ 1794.412148] ? __lockdep_reset_lock+0x180/0x180 [ 1794.413078] ? perf_trace_lock+0xac/0x490 [ 1794.413916] ? SOFTIRQ_verbose+0x10/0x10 [ 1794.414739] ___sys_sendmsg+0xc6/0x170 [ 1794.415524] ? sendmsg_copy_msghdr+0x160/0x160 [ 1794.416445] ? __fget_files+0x26d/0x4c0 [ 1794.417275] ? lock_downgrade+0x6d0/0x6d0 [ 1794.418142] ? find_held_lock+0x2c/0x110 [ 1794.418973] ? __fget_files+0x296/0x4c0 [ 1794.419791] ? __fget_light+0xea/0x290 [ 1794.420587] __sys_sendmsg+0xe5/0x1b0 [ 1794.421359] ? __sys_sendmsg_sock+0x40/0x40 [ 1794.422235] ? rcu_read_lock_any_held+0x75/0xa0 [ 1794.423177] ? fput_many+0x2f/0x1a0 [ 1794.423912] ? ksys_write+0x1a9/0x260 [ 1794.424679] ? __ia32_sys_read+0xb0/0xb0 [ 1794.425501] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1794.426559] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1794.427589] ? trace_hardirqs_on+0x5b/0x180 [ 1794.428461] do_syscall_64+0x33/0x40 [ 1794.429207] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1794.430257] RIP: 0033:0x7fd54fedeb19 [ 1794.431007] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1794.434717] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1794.436247] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 1794.437682] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1794.439140] RBP: 00007fd54d4541d0 R08: 0000000000000000 R09: 0000000000000000 [ 1794.440596] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1794.442057] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 [ 1794.443543] CPU: 0 PID: 11010 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1794.444994] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1794.446725] Call Trace: [ 1794.447273] dump_stack+0x107/0x167 [ 1794.448045] should_fail.cold+0x5/0xa [ 1794.448846] ? io_connect+0x3b1/0x610 [ 1794.449645] should_failslab+0x5/0x20 [ 1794.450446] __kmalloc+0x72/0x390 [ 1794.451174] io_connect+0x3b1/0x610 [ 1794.451936] ? io_prep_rw+0x1050/0x1050 [ 1794.452787] ? __lock_acquire+0xbb1/0x5b00 [ 1794.453678] io_issue_sqe+0x1611/0x7700 [ 1794.454535] ? perf_trace_lock+0xac/0x490 [ 1794.455399] ? SOFTIRQ_verbose+0x10/0x10 [ 1794.456261] ? __lockdep_reset_lock+0x180/0x180 [ 1794.457237] ? io_connect+0x610/0x610 [ 1794.458047] ? lock_acquire+0x197/0x470 [ 1794.458871] ? find_held_lock+0x2c/0x110 [ 1794.459724] ? __fget_files+0x26d/0x4c0 [ 1794.460563] ? lock_downgrade+0x6d0/0x6d0 [ 1794.461400] FAULT_INJECTION: forcing a failure. [ 1794.461400] name failslab, interval 1, probability 0, space 0, times 0 [ 1794.461446] __io_queue_sqe+0x90/0x9d0 [ 1794.464485] ? io_issue_sqe+0x7700/0x7700 [ 1794.465375] io_submit_sqes+0x4461/0x85c0 [ 1794.466289] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1794.467334] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1794.468345] ? lock_downgrade+0x6d0/0x6d0 [ 1794.469197] ? find_held_lock+0x2c/0x110 [ 1794.470093] ? io_submit_sqes+0x85c0/0x85c0 [ 1794.471013] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1794.472038] ? wait_for_completion_io+0x270/0x270 [ 1794.473065] ? rcu_read_lock_any_held+0x75/0xa0 [ 1794.474051] ? vfs_write+0x354/0xa70 [ 1794.474843] ? fput_many+0x2f/0x1a0 [ 1794.475598] ? ksys_write+0x1a9/0x260 [ 1794.476405] ? __ia32_sys_read+0xb0/0xb0 [ 1794.477260] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1794.478360] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1794.479451] do_syscall_64+0x33/0x40 [ 1794.480229] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1794.481286] RIP: 0033:0x7fd113b88b19 [ 1794.482085] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1794.485964] RSP: 002b:00007fd1110fe188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1794.487576] RAX: ffffffffffffffda RBX: 00007fd113c9bf60 RCX: 00007fd113b88b19 [ 1794.489052] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1794.490559] RBP: 00007fd1110fe1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1794.492038] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1794.493505] R13: 00007ffeed86c68f R14: 00007fd1110fe300 R15: 0000000000022000 [ 1794.495048] CPU: 1 PID: 11021 Comm: syz-executor.7 Not tainted 5.10.205 #1 [ 1794.496463] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1794.498171] Call Trace: [ 1794.498715] dump_stack+0x107/0x167 [ 1794.499471] should_fail.cold+0x5/0xa [ 1794.500259] ? create_object.isra.0+0x3a/0xa20 [ 1794.501195] should_failslab+0x5/0x20 [ 1794.501988] kmem_cache_alloc+0x5b/0x310 [ 1794.502816] create_object.isra.0+0x3a/0xa20 [ 1794.503714] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1794.504744] __kmalloc+0x16e/0x390 [ 1794.505467] io_connect+0x3b1/0x610 [ 1794.506213] ? io_prep_rw+0x1050/0x1050 [ 1794.507039] ? __lock_acquire+0xbb1/0x5b00 [ 1794.507905] io_issue_sqe+0x1611/0x7700 [ 1794.508726] ? perf_trace_lock+0xac/0x490 [ 1794.509561] ? SOFTIRQ_verbose+0x10/0x10 [ 1794.510403] ? __lockdep_reset_lock+0x180/0x180 [ 1794.511359] ? io_connect+0x610/0x610 [ 1794.512159] ? lock_acquire+0x197/0x470 [ 1794.512965] ? find_held_lock+0x2c/0x110 [ 1794.513794] ? __fget_files+0x26d/0x4c0 [ 1794.514609] ? lock_downgrade+0x6d0/0x6d0 [ 1794.515458] __io_queue_sqe+0x90/0x9d0 [ 1794.516259] ? io_issue_sqe+0x7700/0x7700 [ 1794.516415] FAULT_INJECTION: forcing a failure. [ 1794.516415] name failslab, interval 1, probability 0, space 0, times 0 [ 1794.517116] io_submit_sqes+0x4461/0x85c0 [ 1794.517178] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1794.517197] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1794.517222] ? lock_downgrade+0x6d0/0x6d0 [ 1794.523086] ? find_held_lock+0x2c/0x110 [ 1794.523913] ? io_submit_sqes+0x85c0/0x85c0 [ 1794.524800] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1794.525779] ? wait_for_completion_io+0x270/0x270 [ 1794.526776] ? rcu_read_lock_any_held+0x75/0xa0 [ 1794.527711] ? vfs_write+0x354/0xa70 [ 1794.528468] ? fput_many+0x2f/0x1a0 [ 1794.529219] ? ksys_write+0x1a9/0x260 [ 1794.529994] ? __ia32_sys_read+0xb0/0xb0 [ 1794.530824] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1794.531891] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1794.532951] do_syscall_64+0x33/0x40 [ 1794.533708] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1794.534758] RIP: 0033:0x7f2b60e93b19 [ 1794.535520] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1794.539299] RSP: 002b:00007f2b5e409188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1794.540844] RAX: ffffffffffffffda RBX: 00007f2b60fa6f60 RCX: 00007f2b60e93b19 [ 1794.542308] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1794.543752] RBP: 00007f2b5e4091d0 R08: 0000000000000000 R09: 0000000000000000 [ 1794.545231] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1794.546715] R13: 00007ffffc42e53f R14: 00007f2b5e409300 R15: 0000000000022000 [ 1794.548214] CPU: 0 PID: 11018 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1794.549699] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1794.551322] FAULT_INJECTION: forcing a failure. [ 1794.551322] name failslab, interval 1, probability 0, space 0, times 0 [ 1794.551419] Call Trace: [ 1794.551452] dump_stack+0x107/0x167 [ 1794.551479] should_fail.cold+0x5/0xa [ 1794.555745] ? create_object.isra.0+0x3a/0xa20 [ 1794.556706] should_failslab+0x5/0x20 [ 1794.557503] kmem_cache_alloc+0x5b/0x310 [ 1794.558370] ? mark_held_locks+0x9e/0xe0 [ 1794.559228] create_object.isra.0+0x3a/0xa20 [ 1794.560159] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1794.561232] kmem_cache_alloc_bulk+0x168/0x320 [ 1794.562211] io_submit_sqes+0x6f76/0x85c0 [ 1794.563094] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1794.564133] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1794.565173] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1794.566202] ? lock_downgrade+0x6d0/0x6d0 [ 1794.567068] ? find_held_lock+0x2c/0x110 [ 1794.567925] ? io_submit_sqes+0x85c0/0x85c0 [ 1794.568834] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1794.569848] ? wait_for_completion_io+0x270/0x270 [ 1794.570873] ? rcu_read_lock_any_held+0x75/0xa0 [ 1794.571848] ? vfs_write+0x354/0xa70 [ 1794.572628] ? fput_many+0x2f/0x1a0 [ 1794.573395] ? ksys_write+0x1a9/0x260 [ 1794.574207] ? __ia32_sys_read+0xb0/0xb0 [ 1794.575044] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1794.576125] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1794.577188] do_syscall_64+0x33/0x40 [ 1794.577967] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1794.579023] RIP: 0033:0x7fb1fd6f6b19 [ 1794.579794] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1794.583644] RSP: 002b:00007fb1fac6c188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1794.585245] RAX: ffffffffffffffda RBX: 00007fb1fd809f60 RCX: 00007fb1fd6f6b19 [ 1794.586758] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1794.588261] RBP: 00007fb1fac6c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1794.589759] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1794.591269] R13: 00007ffc06ae2c8f R14: 00007fb1fac6c300 R15: 0000000000022000 [ 1794.592871] CPU: 1 PID: 11022 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1794.594344] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1794.596063] Call Trace: [ 1794.596593] dump_stack+0x107/0x167 [ 1794.597357] should_fail.cold+0x5/0xa [ 1794.598169] ? __io_queue_sqe+0x666/0x9d0 [ 1794.599033] should_failslab+0x5/0x20 [ 1794.599836] kmem_cache_alloc_trace+0x55/0x320 [ 1794.600791] __io_queue_sqe+0x666/0x9d0 [ 1794.601609] ? io_issue_sqe+0x7700/0x7700 [ 1794.602499] io_submit_sqes+0x4461/0x85c0 [ 1794.603412] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1794.604449] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1794.605426] ? lock_downgrade+0x6d0/0x6d0 [ 1794.606279] ? find_held_lock+0x2c/0x110 [ 1794.606447] FAULT_INJECTION: forcing a failure. [ 1794.606447] name failslab, interval 1, probability 0, space 0, times 0 [ 1794.607109] ? io_submit_sqes+0x85c0/0x85c0 [ 1794.607142] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1794.607169] ? wait_for_completion_io+0x270/0x270 [ 1794.607196] ? rcu_read_lock_any_held+0x75/0xa0 [ 1794.613123] ? vfs_write+0x354/0xa70 [ 1794.613908] ? fput_many+0x2f/0x1a0 [ 1794.614658] ? ksys_write+0x1a9/0x260 [ 1794.615455] ? __ia32_sys_read+0xb0/0xb0 [ 1794.616305] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1794.617398] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1794.618476] do_syscall_64+0x33/0x40 [ 1794.619257] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1794.620314] RIP: 0033:0x7f369cad5b19 [ 1794.621099] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1794.624837] RSP: 002b:00007f369a04b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1794.626399] RAX: ffffffffffffffda RBX: 00007f369cbe8f60 RCX: 00007f369cad5b19 [ 1794.627838] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1794.629281] RBP: 00007f369a04b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1794.630724] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1794.632206] R13: 00007ffcb9edce5f R14: 00007f369a04b300 R15: 0000000000022000 [ 1794.633712] CPU: 0 PID: 11019 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 1794.635196] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1794.636924] Call Trace: [ 1794.637477] dump_stack+0x107/0x167 [ 1794.638254] should_fail.cold+0x5/0xa [ 1794.639048] ? __io_queue_sqe+0x666/0x9d0 [ 1794.639910] should_failslab+0x5/0x20 [ 1794.640696] kmem_cache_alloc_trace+0x55/0x320 [ 1794.641657] __io_queue_sqe+0x666/0x9d0 [ 1794.642497] ? io_issue_sqe+0x7700/0x7700 [ 1794.643373] io_submit_sqes+0x4461/0x85c0 [ 1794.644262] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1794.645294] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1794.646312] ? io_submit_sqes+0x85c0/0x85c0 [ 1794.647213] ? recalibrate_cpu_khz+0x10/0x10 [ 1794.648128] ? ktime_get+0x158/0x1f0 [ 1794.648914] ? setup_APIC_eilvt+0x2f0/0x2f0 [ 1794.649807] ? clockevents_program_event+0x131/0x360 [ 1794.650878] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1794.651971] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1794.653095] ? trace_hardirqs_on+0x5b/0x180 [ 1794.654000] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1794.655140] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1794.656208] do_syscall_64+0x33/0x40 [ 1794.656978] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1794.658077] RIP: 0033:0x7fd08b847b19 [ 1794.658849] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1794.662658] RSP: 002b:00007fd088dbd188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1794.664242] RAX: ffffffffffffffda RBX: 00007fd08b95af60 RCX: 00007fd08b847b19 [ 1794.665698] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1794.667183] RBP: 00007fd088dbd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1794.668659] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1794.670130] R13: 00007ffe1fec748f R14: 00007fd088dbd300 R15: 0000000000022000 21:22:00 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) (fail_nth: 2) 21:22:00 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 14) [ 1794.722306] FAULT_INJECTION: forcing a failure. [ 1794.722306] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1794.724996] CPU: 0 PID: 11020 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 1794.726448] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1794.728165] Call Trace: [ 1794.728710] dump_stack+0x107/0x167 [ 1794.729460] should_fail.cold+0x5/0xa [ 1794.730253] _copy_from_user+0x2e/0x1b0 [ 1794.731088] move_addr_to_kernel.part.0+0x31/0x110 [ 1794.732107] move_addr_to_kernel+0x4f/0x70 [ 1794.732987] io_connect+0x47a/0x610 [ 1794.733741] ? io_prep_rw+0x1050/0x1050 [ 1794.734581] ? __lockdep_reset_lock+0x180/0x180 [ 1794.735554] ? lock_acquire+0x197/0x470 [ 1794.736391] ? __lock_acquire+0xbb1/0x5b00 [ 1794.737275] io_issue_sqe+0x1611/0x7700 [ 1794.738125] ? perf_trace_lock+0xac/0x490 [ 1794.738974] ? SOFTIRQ_verbose+0x10/0x10 [ 1794.739833] ? __lockdep_reset_lock+0x180/0x180 [ 1794.740784] ? io_connect+0x610/0x610 [ 1794.741561] ? lock_acquire+0x197/0x470 [ 1794.742394] ? find_held_lock+0x2c/0x110 [ 1794.743230] ? __fget_files+0x26d/0x4c0 [ 1794.744044] ? lock_downgrade+0x6d0/0x6d0 [ 1794.744898] __io_queue_sqe+0x90/0x9d0 [ 1794.745702] ? io_issue_sqe+0x7700/0x7700 [ 1794.746585] io_submit_sqes+0x4461/0x85c0 [ 1794.747466] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1794.748482] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1794.749480] ? lock_downgrade+0x6d0/0x6d0 [ 1794.750340] ? find_held_lock+0x2c/0x110 [ 1794.751184] ? io_submit_sqes+0x85c0/0x85c0 [ 1794.752086] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1794.753087] ? wait_for_completion_io+0x270/0x270 [ 1794.754095] ? rcu_read_lock_any_held+0x75/0xa0 [ 1794.755053] ? vfs_write+0x354/0xa70 [ 1794.755827] ? fput_many+0x2f/0x1a0 [ 1794.756591] ? ksys_write+0x1a9/0x260 [ 1794.757368] ? __ia32_sys_read+0xb0/0xb0 [ 1794.758225] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1794.759298] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1794.760357] do_syscall_64+0x33/0x40 [ 1794.761117] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1794.762167] RIP: 0033:0x7f1a51fc5b19 [ 1794.762928] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1794.766710] RSP: 002b:00007f1a4f53b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1794.768252] RAX: ffffffffffffffda RBX: 00007f1a520d8f60 RCX: 00007f1a51fc5b19 [ 1794.769701] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1794.771550] RBP: 00007f1a4f53b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1794.773291] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1794.774982] R13: 00007ffe3ce1c42f R14: 00007f1a4f53b300 R15: 0000000000022000 21:22:01 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x7e66, 0x0, 0x0, 0x0, 0x0) 21:22:01 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 12) 21:22:01 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 5) [ 1794.809615] FAULT_INJECTION: forcing a failure. [ 1794.809615] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1794.812450] CPU: 0 PID: 11030 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1794.813895] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1794.815553] Call Trace: [ 1794.816105] dump_stack+0x107/0x167 [ 1794.816845] should_fail.cold+0x5/0xa [ 1794.817647] _copy_from_user+0x2e/0x1b0 [ 1794.818501] iovec_from_user+0x141/0x400 [ 1794.819347] __import_iovec+0x67/0x590 [ 1794.820163] ? __ia32_sys_shutdown+0x80/0x80 [ 1794.821082] ? perf_trace_lock+0xac/0x490 [ 1794.821970] import_iovec+0x83/0xb0 [ 1794.822745] sendmsg_copy_msghdr+0x131/0x160 [ 1794.823661] ? do_recvmmsg+0x6d0/0x6d0 [ 1794.824470] ? perf_trace_lock+0xac/0x490 [ 1794.825351] ? __lockdep_reset_lock+0x180/0x180 [ 1794.826321] ? perf_trace_lock+0xac/0x490 [ 1794.827186] ? SOFTIRQ_verbose+0x10/0x10 [ 1794.828043] ___sys_sendmsg+0xc6/0x170 [ 1794.828849] ? sendmsg_copy_msghdr+0x160/0x160 [ 1794.829802] ? __fget_files+0x26d/0x4c0 [ 1794.830643] ? lock_downgrade+0x6d0/0x6d0 [ 1794.831493] ? find_held_lock+0x2c/0x110 [ 1794.832333] ? __fget_files+0x296/0x4c0 [ 1794.833162] ? __fget_light+0xea/0x290 [ 1794.833977] __sys_sendmsg+0xe5/0x1b0 [ 1794.834763] ? __sys_sendmsg_sock+0x40/0x40 [ 1794.835647] ? rcu_read_lock_any_held+0x75/0xa0 [ 1794.836617] ? fput_many+0x2f/0x1a0 [ 1794.837375] ? ksys_write+0x1a9/0x260 [ 1794.838186] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1794.839261] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1794.840313] ? trace_hardirqs_on+0x5b/0x180 [ 1794.841203] do_syscall_64+0x33/0x40 [ 1794.841994] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1794.842280] FAULT_INJECTION: forcing a failure. [ 1794.842280] name failslab, interval 1, probability 0, space 0, times 0 [ 1794.843041] RIP: 0033:0x7fd54fedeb19 [ 1794.843062] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1794.843072] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1794.843093] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 1794.843104] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1794.843115] RBP: 00007fd54d4541d0 R08: 0000000000000000 R09: 0000000000000000 [ 1794.843126] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1794.843137] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 [ 1794.859847] CPU: 1 PID: 11031 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1794.861246] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1794.862973] Call Trace: [ 1794.863532] dump_stack+0x107/0x167 [ 1794.864283] should_fail.cold+0x5/0xa [ 1794.865053] ? create_object.isra.0+0x3a/0xa20 [ 1794.865987] should_failslab+0x5/0x20 [ 1794.866754] kmem_cache_alloc+0x5b/0x310 [ 1794.867577] create_object.isra.0+0x3a/0xa20 [ 1794.868461] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1794.869488] kmem_cache_alloc_trace+0x151/0x320 [ 1794.870452] __io_queue_sqe+0x666/0x9d0 [ 1794.871262] ? io_issue_sqe+0x7700/0x7700 [ 1794.872135] io_submit_sqes+0x4461/0x85c0 [ 1794.873031] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1794.874071] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1794.875051] ? lock_downgrade+0x6d0/0x6d0 [ 1794.875894] ? find_held_lock+0x2c/0x110 [ 1794.876722] ? io_submit_sqes+0x85c0/0x85c0 [ 1794.877616] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1794.878596] ? wait_for_completion_io+0x270/0x270 [ 1794.879592] ? rcu_read_lock_any_held+0x75/0xa0 [ 1794.880523] ? vfs_write+0x354/0xa70 [ 1794.881285] ? fput_many+0x2f/0x1a0 [ 1794.882047] ? ksys_write+0x1a9/0x260 [ 1794.882818] ? __ia32_sys_read+0xb0/0xb0 [ 1794.883648] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1794.884709] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1794.885768] do_syscall_64+0x33/0x40 [ 1794.886528] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1794.887567] RIP: 0033:0x7f369cad5b19 [ 1794.888319] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1794.892084] RSP: 002b:00007f369a04b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1794.893652] RAX: ffffffffffffffda RBX: 00007f369cbe8f60 RCX: 00007f369cad5b19 [ 1794.895104] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1794.896546] RBP: 00007f369a04b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1794.898031] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1794.899486] R13: 00007ffcb9edce5f R14: 00007f369a04b300 R15: 0000000000022000 21:22:01 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 13) 21:22:01 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 14) 21:22:01 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) (fail_nth: 3) [ 1794.952822] FAULT_INJECTION: forcing a failure. [ 1794.952822] name failslab, interval 1, probability 0, space 0, times 0 [ 1794.955185] CPU: 1 PID: 11036 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1794.956593] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1794.958296] Call Trace: [ 1794.958840] dump_stack+0x107/0x167 [ 1794.959600] should_fail.cold+0x5/0xa [ 1794.960373] ? create_object.isra.0+0x3a/0xa20 [ 1794.961305] should_failslab+0x5/0x20 [ 1794.962089] kmem_cache_alloc+0x5b/0x310 [ 1794.962907] ? l2cap_sock_accept+0x530/0x530 [ 1794.963796] create_object.isra.0+0x3a/0xa20 [ 1794.964693] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1794.965719] __kmalloc+0x16e/0x390 [ 1794.966469] io_connect+0x3b1/0x610 [ 1794.967209] ? io_prep_rw+0x1050/0x1050 [ 1794.968043] ? __lock_acquire+0xbb1/0x5b00 [ 1794.968909] io_issue_sqe+0x1611/0x7700 [ 1794.969729] ? perf_trace_lock+0xac/0x490 [ 1794.970575] ? SOFTIRQ_verbose+0x10/0x10 [ 1794.971411] ? __lockdep_reset_lock+0x180/0x180 [ 1794.972366] ? io_connect+0x610/0x610 [ 1794.973143] ? lock_acquire+0x197/0x470 [ 1794.973960] ? find_held_lock+0x2c/0x110 [ 1794.974799] ? __fget_files+0x26d/0x4c0 [ 1794.975605] ? lock_downgrade+0x6d0/0x6d0 [ 1794.976445] __io_queue_sqe+0x90/0x9d0 [ 1794.977243] ? io_issue_sqe+0x7700/0x7700 [ 1794.978115] io_submit_sqes+0x4461/0x85c0 [ 1794.978993] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1794.979995] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1794.980982] ? lock_downgrade+0x6d0/0x6d0 [ 1794.981829] ? find_held_lock+0x2c/0x110 [ 1794.982679] ? io_submit_sqes+0x85c0/0x85c0 [ 1794.983563] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1794.984544] ? wait_for_completion_io+0x270/0x270 [ 1794.985537] ? rcu_read_lock_any_held+0x75/0xa0 [ 1794.986488] ? vfs_write+0x354/0xa70 [ 1794.987254] ? fput_many+0x2f/0x1a0 [ 1794.988008] ? ksys_write+0x1a9/0x260 [ 1794.988822] ? __ia32_sys_read+0xb0/0xb0 [ 1794.989670] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1794.990747] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1794.991821] do_syscall_64+0x33/0x40 [ 1794.992574] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1794.993623] RIP: 0033:0x7fd113b88b19 [ 1794.994406] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1794.998173] RSP: 002b:00007fd1110fe188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1794.999720] RAX: ffffffffffffffda RBX: 00007fd113c9bf60 RCX: 00007fd113b88b19 [ 1795.001188] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1795.002649] RBP: 00007fd1110fe1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1795.004090] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1795.005530] R13: 00007ffeed86c68f R14: 00007fd1110fe300 R15: 0000000000022000 [ 1795.012182] FAULT_INJECTION: forcing a failure. [ 1795.012182] name failslab, interval 1, probability 0, space 0, times 0 [ 1795.014493] CPU: 1 PID: 11043 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1795.015902] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1795.017587] Call Trace: [ 1795.018147] dump_stack+0x107/0x167 [ 1795.018901] should_fail.cold+0x5/0xa [ 1795.019690] ? io_wq_create+0xeb/0xc00 [ 1795.020495] should_failslab+0x5/0x20 [ 1795.021279] __kmalloc+0x72/0x390 [ 1795.022014] io_wq_create+0xeb/0xc00 [ 1795.022044] FAULT_INJECTION: forcing a failure. [ 1795.022044] name failslab, interval 1, probability 0, space 0, times 0 [ 1795.022776] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1795.022800] ? io_register_rsrc_update+0x9b0/0x9b0 [ 1795.022820] ? io_apoll_task_func+0x2d0/0x2d0 [ 1795.022847] ? __io_req_find_next+0x300/0x300 [ 1795.029010] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1795.030026] __io_uring_add_tctx_node+0x2c6/0x520 [ 1795.031011] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1795.032092] __do_sys_io_uring_enter+0x14de/0x1920 [ 1795.033115] ? lock_downgrade+0x6d0/0x6d0 [ 1795.033978] ? find_held_lock+0x2c/0x110 [ 1795.034830] ? io_submit_sqes+0x85c0/0x85c0 [ 1795.035718] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1795.036725] ? wait_for_completion_io+0x270/0x270 [ 1795.037715] ? rcu_read_lock_any_held+0x75/0xa0 [ 1795.038703] ? vfs_write+0x354/0xa70 [ 1795.039472] ? fput_many+0x2f/0x1a0 [ 1795.040240] ? ksys_write+0x1a9/0x260 [ 1795.041024] ? __ia32_sys_read+0xb0/0xb0 [ 1795.041895] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1795.042978] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1795.044062] do_syscall_64+0x33/0x40 [ 1795.044828] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1795.045901] RIP: 0033:0x7fb1fd6f6b19 [ 1795.046672] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1795.050534] RSP: 002b:00007fb1fac4b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1795.052096] RAX: ffffffffffffffda RBX: 00007fb1fd80a020 RCX: 00007fb1fd6f6b19 [ 1795.053583] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1795.055094] RBP: 00007fb1fac4b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1795.056581] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1795.058087] R13: 00007ffc06ae2c8f R14: 00007fb1fac4b300 R15: 0000000000022000 [ 1795.059646] CPU: 0 PID: 11041 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1795.061117] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1795.062872] Call Trace: [ 1795.063431] dump_stack+0x107/0x167 [ 1795.064197] should_fail.cold+0x5/0xa [ 1795.065000] ? __alloc_skb+0x6d/0x5b0 [ 1795.065805] should_failslab+0x5/0x20 [ 1795.066602] kmem_cache_alloc_node+0x55/0x330 [ 1795.067568] __alloc_skb+0x6d/0x5b0 [ 1795.068351] netlink_sendmsg+0x998/0xdf0 [ 1795.069224] ? netlink_unicast+0x7f0/0x7f0 [ 1795.069458] FAULT_INJECTION: forcing a failure. [ 1795.069458] name failslab, interval 1, probability 0, space 0, times 0 [ 1795.070109] ? netlink_unicast+0x7f0/0x7f0 [ 1795.070140] ? netlink_unicast+0x7f0/0x7f0 [ 1795.070159] __sock_sendmsg+0x154/0x190 [ 1795.070180] ____sys_sendmsg+0x70d/0x870 [ 1795.070202] ? sock_write_iter+0x3d0/0x3d0 [ 1795.070218] ? do_recvmmsg+0x6d0/0x6d0 [ 1795.070249] ? ___sys_sendmsg+0x8b/0x170 [ 1795.070274] ___sys_sendmsg+0xf3/0x170 [ 1795.070296] ? sendmsg_copy_msghdr+0x160/0x160 [ 1795.070324] ? lock_downgrade+0x6d0/0x6d0 [ 1795.070362] ? __fget_files+0x296/0x4c0 [ 1795.070394] ? __fget_light+0xea/0x290 [ 1795.070423] __sys_sendmsg+0xe5/0x1b0 [ 1795.070442] ? __sys_sendmsg_sock+0x40/0x40 [ 1795.070458] ? trace_hardirqs_on+0x5b/0x180 [ 1795.070479] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1795.070514] ? __sys_sendmsg+0x1a/0x1b0 [ 1795.070541] do_syscall_64+0x33/0x40 [ 1795.070558] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1795.070571] RIP: 0033:0x7fd54fedeb19 [ 1795.070590] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1795.070601] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1795.070622] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 1795.070633] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1795.070645] RBP: 00007fd54d4541d0 R08: 0000000000000000 R09: 0000000000000000 [ 1795.070656] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1795.070667] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 [ 1795.082440] FAULT_INJECTION: forcing a failure. [ 1795.082440] name failslab, interval 1, probability 0, space 0, times 0 [ 1795.083066] CPU: 1 PID: 11044 Comm: syz-executor.7 Not tainted 5.10.205 #1 [ 1795.107036] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1795.108756] Call Trace: [ 1795.109301] dump_stack+0x107/0x167 [ 1795.110077] should_fail.cold+0x5/0xa [ 1795.110861] ? __io_queue_sqe+0x666/0x9d0 [ 1795.111710] should_failslab+0x5/0x20 [ 1795.112508] kmem_cache_alloc_trace+0x55/0x320 [ 1795.113458] __io_queue_sqe+0x666/0x9d0 [ 1795.114309] ? io_issue_sqe+0x7700/0x7700 [ 1795.115185] io_submit_sqes+0x4461/0x85c0 [ 1795.116067] ? percpu_ref_tryget_many+0x1a4/0x2d0 [ 1795.117070] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1795.118130] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1795.119130] ? lock_downgrade+0x6d0/0x6d0 [ 1795.119978] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1795.121093] ? io_submit_sqes+0x85c0/0x85c0 [ 1795.122014] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1795.123020] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1795.124093] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1795.125214] ? trace_hardirqs_on+0x5b/0x180 [ 1795.126113] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1795.127240] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1795.128306] do_syscall_64+0x33/0x40 [ 1795.129076] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1795.130128] RIP: 0033:0x7f2b60e93b19 [ 1795.130890] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1795.134671] RSP: 002b:00007f2b5e409188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1795.136223] RAX: ffffffffffffffda RBX: 00007f2b60fa6f60 RCX: 00007f2b60e93b19 [ 1795.137674] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1795.139142] RBP: 00007f2b5e4091d0 R08: 0000000000000000 R09: 0000000000000000 [ 1795.140627] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1795.142102] R13: 00007ffffc42e53f R14: 00007f2b5e409300 R15: 0000000000022000 [ 1795.143608] CPU: 0 PID: 11042 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 1795.145085] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1795.146833] Call Trace: [ 1795.147388] dump_stack+0x107/0x167 [ 1795.148177] should_fail.cold+0x5/0xa [ 1795.148983] ? create_object.isra.0+0x3a/0xa20 [ 1795.149966] should_failslab+0x5/0x20 [ 1795.150762] kmem_cache_alloc+0x5b/0x310 [ 1795.151622] create_object.isra.0+0x3a/0xa20 21:22:01 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 11) [ 1795.152544] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 21:22:01 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(0xffffffffffffffff, 0x7e66, 0x0, 0x0, 0x0, 0x0) [ 1795.153778] kmem_cache_alloc_trace+0x151/0x320 [ 1795.154812] __io_queue_sqe+0x666/0x9d0 [ 1795.155656] ? io_issue_sqe+0x7700/0x7700 [ 1795.156548] io_submit_sqes+0x4461/0x85c0 [ 1795.157454] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1795.158513] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1795.159527] ? lock_downgrade+0x6d0/0x6d0 [ 1795.160377] ? find_held_lock+0x2c/0x110 [ 1795.161232] ? io_submit_sqes+0x85c0/0x85c0 [ 1795.162138] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1795.163153] ? wait_for_completion_io+0x270/0x270 [ 1795.164167] ? rcu_read_lock_any_held+0x75/0xa0 [ 1795.165116] ? vfs_write+0x354/0xa70 [ 1795.165906] ? fput_many+0x2f/0x1a0 [ 1795.166663] ? ksys_write+0x1a9/0x260 [ 1795.167462] ? __ia32_sys_read+0xb0/0xb0 [ 1795.168301] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1795.169399] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1795.170474] do_syscall_64+0x33/0x40 [ 1795.171257] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1795.172309] RIP: 0033:0x7fd08b847b19 [ 1795.173089] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1795.176901] RSP: 002b:00007fd088dbd188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1795.178507] RAX: ffffffffffffffda RBX: 00007fd08b95af60 RCX: 00007fd08b847b19 [ 1795.179994] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1795.181471] RBP: 00007fd088dbd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1795.182961] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1795.184426] R13: 00007ffe1fec748f R14: 00007fd088dbd300 R15: 0000000000022000 [ 1795.204443] FAULT_INJECTION: forcing a failure. [ 1795.204443] name failslab, interval 1, probability 0, space 0, times 0 [ 1795.207263] CPU: 1 PID: 11046 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 1795.208635] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1795.210306] Call Trace: [ 1795.210843] dump_stack+0x107/0x167 [ 1795.211592] should_fail.cold+0x5/0xa [ 1795.212355] ? io_connect+0x3b1/0x610 [ 1795.213124] should_failslab+0x5/0x20 [ 1795.213901] __kmalloc+0x72/0x390 [ 1795.214611] io_connect+0x3b1/0x610 [ 1795.215344] ? io_prep_rw+0x1050/0x1050 [ 1795.216152] ? __lock_acquire+0xbb1/0x5b00 [ 1795.217002] io_issue_sqe+0x1611/0x7700 [ 1795.217790] ? perf_trace_lock+0xac/0x490 [ 1795.218611] ? SOFTIRQ_verbose+0x10/0x10 [ 1795.219420] ? __lockdep_reset_lock+0x180/0x180 [ 1795.220339] ? io_connect+0x610/0x610 [ 1795.221097] ? lock_acquire+0x197/0x470 [ 1795.221906] ? find_held_lock+0x2c/0x110 [ 1795.222720] ? __fget_files+0x26d/0x4c0 [ 1795.223500] ? lock_downgrade+0x6d0/0x6d0 [ 1795.224324] __io_queue_sqe+0x90/0x9d0 [ 1795.225094] ? io_issue_sqe+0x7700/0x7700 [ 1795.225935] io_submit_sqes+0x4461/0x85c0 [ 1795.226786] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1795.227767] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1795.228714] ? lock_downgrade+0x6d0/0x6d0 [ 1795.229529] ? find_held_lock+0x2c/0x110 [ 1795.230365] ? io_submit_sqes+0x85c0/0x85c0 [ 1795.231229] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1795.232218] ? wait_for_completion_io+0x270/0x270 [ 1795.233188] ? rcu_read_lock_any_held+0x75/0xa0 [ 1795.234129] ? vfs_write+0x354/0xa70 [ 1795.234866] ? fput_many+0x2f/0x1a0 [ 1795.235587] ? ksys_write+0x1a9/0x260 [ 1795.236339] ? __ia32_sys_read+0xb0/0xb0 [ 1795.237148] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1795.238174] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1795.239187] do_syscall_64+0x33/0x40 [ 1795.239912] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1795.240908] RIP: 0033:0x7f1a51fc5b19 [ 1795.241634] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1795.245207] RSP: 002b:00007f1a4f53b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1795.246698] RAX: ffffffffffffffda RBX: 00007f1a520d8f60 RCX: 00007f1a51fc5b19 [ 1795.248087] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1795.249470] RBP: 00007f1a4f53b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1795.250866] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1795.252260] R13: 00007ffe3ce1c42f R14: 00007f1a4f53b300 R15: 0000000000022000 21:22:01 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 21:22:01 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 6) 21:22:01 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 15) [ 1795.418361] FAULT_INJECTION: forcing a failure. [ 1795.418361] name failslab, interval 1, probability 0, space 0, times 0 [ 1795.421391] CPU: 0 PID: 11057 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1795.422850] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1795.424579] Call Trace: [ 1795.425149] dump_stack+0x107/0x167 [ 1795.425928] should_fail.cold+0x5/0xa [ 1795.426740] ? create_object.isra.0+0x3a/0xa20 [ 1795.427697] should_failslab+0x5/0x20 [ 1795.428501] kmem_cache_alloc+0x5b/0x310 [ 1795.429357] ? mark_held_locks+0x9e/0xe0 [ 1795.430222] create_object.isra.0+0x3a/0xa20 [ 1795.431147] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1795.432216] kmem_cache_alloc_bulk+0x168/0x320 [ 1795.433168] io_submit_sqes+0x6f76/0x85c0 [ 1795.434061] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1795.435080] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1795.436108] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1795.437102] ? lock_downgrade+0x6d0/0x6d0 [ 1795.437942] ? find_held_lock+0x2c/0x110 [ 1795.438770] ? io_submit_sqes+0x85c0/0x85c0 [ 1795.439647] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1795.440615] ? wait_for_completion_io+0x270/0x270 [ 1795.441601] ? rcu_read_lock_any_held+0x75/0xa0 [ 1795.442548] ? vfs_write+0x354/0xa70 [ 1795.443299] ? fput_many+0x2f/0x1a0 [ 1795.444068] ? ksys_write+0x1a9/0x260 [ 1795.444866] ? __ia32_sys_read+0xb0/0xb0 [ 1795.445718] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1795.446843] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1795.447920] do_syscall_64+0x33/0x40 [ 1795.448696] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1795.449751] RIP: 0033:0x7fb1fd6f6b19 [ 1795.450557] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1795.454411] RSP: 002b:00007fb1fac6c188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1795.455990] RAX: ffffffffffffffda RBX: 00007fb1fd809f60 RCX: 00007fb1fd6f6b19 [ 1795.457454] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1795.458938] RBP: 00007fb1fac6c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1795.460426] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1795.461947] R13: 00007ffc06ae2c8f R14: 00007fb1fac6c300 R15: 0000000000022000 [ 1795.504140] FAULT_INJECTION: forcing a failure. [ 1795.504140] name failslab, interval 1, probability 0, space 0, times 0 [ 1795.507158] CPU: 1 PID: 11059 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1795.508319] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1795.509698] Call Trace: [ 1795.510149] dump_stack+0x107/0x167 [ 1795.510761] should_fail.cold+0x5/0xa [ 1795.511396] ? create_io_worker+0xe8/0x620 [ 1795.512107] should_failslab+0x5/0x20 [ 1795.512746] kmem_cache_alloc_node_trace+0x59/0x340 [ 1795.513625] create_io_worker+0xe8/0x620 [ 1795.514342] io_wqe_enqueue+0x69e/0xbe0 [ 1795.515032] ? create_worker_cb+0x260/0x260 [ 1795.515779] ? io_prep_async_work+0x12/0x550 [ 1795.516524] ? io_prep_async_work+0x85/0x550 [ 1795.517302] ? io_prep_async_work+0x34e/0x550 [ 1795.518072] io_queue_async_work+0x26b/0x4f0 [ 1795.518843] __io_queue_sqe+0x5cc/0x9d0 [ 1795.519517] ? io_issue_sqe+0x7700/0x7700 [ 1795.520231] ? io_poll_queue_proc+0x50/0x50 [ 1795.520992] io_submit_sqes+0x4461/0x85c0 [ 1795.521743] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1795.522609] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1795.523468] ? lock_downgrade+0x6d0/0x6d0 [ 1795.524192] ? find_held_lock+0x2c/0x110 [ 1795.524895] ? io_submit_sqes+0x85c0/0x85c0 [ 1795.525649] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1795.526502] ? wait_for_completion_io+0x270/0x270 [ 1795.527352] ? rcu_read_lock_any_held+0x75/0xa0 [ 1795.528196] ? vfs_write+0x354/0xa70 [ 1795.528849] ? fput_many+0x2f/0x1a0 [ 1795.529460] ? ksys_write+0x1a9/0x260 [ 1795.530128] ? __ia32_sys_read+0xb0/0xb0 [ 1795.530832] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1795.531741] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1795.532630] do_syscall_64+0x33/0x40 [ 1795.533274] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1795.534184] RIP: 0033:0x7f369cad5b19 [ 1795.534826] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1795.537993] RSP: 002b:00007f369a04b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1795.539333] RAX: ffffffffffffffda RBX: 00007f369cbe8f60 RCX: 00007f369cad5b19 [ 1795.540553] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1795.541797] RBP: 00007f369a04b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1795.543049] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1795.544280] R13: 00007ffcb9edce5f R14: 00007f369a04b300 R15: 0000000000022000 21:22:21 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 16) 21:22:21 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 14) 21:22:21 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 7) 21:22:21 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 15) 21:22:21 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 21:22:21 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 12) 21:22:21 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) (fail_nth: 4) 21:22:21 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 13) [ 1815.315339] FAULT_INJECTION: forcing a failure. [ 1815.315339] name failslab, interval 1, probability 0, space 0, times 0 [ 1815.318097] CPU: 0 PID: 11072 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1815.319471] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1815.320995] Call Trace: [ 1815.321491] dump_stack+0x107/0x167 [ 1815.322210] should_fail.cold+0x5/0xa [ 1815.322935] ? __io_queue_sqe+0x666/0x9d0 [ 1815.323723] should_failslab+0x5/0x20 [ 1815.324439] kmem_cache_alloc_trace+0x55/0x320 [ 1815.325298] __io_queue_sqe+0x666/0x9d0 [ 1815.326051] ? io_issue_sqe+0x7700/0x7700 [ 1815.326854] io_submit_sqes+0x4461/0x85c0 [ 1815.327712] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1815.328640] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1815.329550] ? lock_downgrade+0x6d0/0x6d0 [ 1815.330347] ? find_held_lock+0x2c/0x110 [ 1815.331111] ? io_submit_sqes+0x85c0/0x85c0 [ 1815.331907] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1815.332772] ? wait_for_completion_io+0x270/0x270 [ 1815.333574] FAULT_INJECTION: forcing a failure. [ 1815.333574] name failslab, interval 1, probability 0, space 0, times 0 [ 1815.333654] ? rcu_read_lock_any_held+0x75/0xa0 [ 1815.333672] ? vfs_write+0x354/0xa70 [ 1815.333694] ? fput_many+0x2f/0x1a0 [ 1815.333713] ? ksys_write+0x1a9/0x260 [ 1815.333731] ? __ia32_sys_read+0xb0/0xb0 [ 1815.333754] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1815.333772] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1815.333798] do_syscall_64+0x33/0x40 [ 1815.342267] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1815.343205] RIP: 0033:0x7fd113b88b19 [ 1815.343904] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1815.347334] RSP: 002b:00007fd1110fe188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1815.348750] RAX: ffffffffffffffda RBX: 00007fd113c9bf60 RCX: 00007fd113b88b19 [ 1815.350081] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1815.351421] RBP: 00007fd1110fe1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1815.352807] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1815.354162] R13: 00007ffeed86c68f R14: 00007fd1110fe300 R15: 0000000000022000 [ 1815.355479] CPU: 1 PID: 11069 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1815.356866] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1815.357526] FAULT_INJECTION: forcing a failure. [ 1815.357526] name failslab, interval 1, probability 0, space 0, times 0 [ 1815.358520] Call Trace: [ 1815.358548] dump_stack+0x107/0x167 [ 1815.358575] should_fail.cold+0x5/0xa [ 1815.358603] ? create_object.isra.0+0x3a/0xa20 [ 1815.363555] should_failslab+0x5/0x20 [ 1815.364372] kmem_cache_alloc+0x5b/0x310 [ 1815.365220] ? mark_held_locks+0x9e/0xe0 [ 1815.366076] create_object.isra.0+0x3a/0xa20 [ 1815.367006] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1815.368069] kmem_cache_alloc_bulk+0x168/0x320 [ 1815.369034] io_submit_sqes+0x6f76/0x85c0 [ 1815.369907] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1815.370944] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1815.371979] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1815.372992] ? lock_downgrade+0x6d0/0x6d0 [ 1815.373855] ? find_held_lock+0x2c/0x110 [ 1815.374714] ? io_submit_sqes+0x85c0/0x85c0 [ 1815.375624] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1815.376635] ? wait_for_completion_io+0x270/0x270 [ 1815.377648] ? rcu_read_lock_any_held+0x75/0xa0 [ 1815.378635] ? vfs_write+0x354/0xa70 [ 1815.379425] ? fput_many+0x2f/0x1a0 [ 1815.380188] ? ksys_write+0x1a9/0x260 [ 1815.380981] ? __ia32_sys_read+0xb0/0xb0 [ 1815.381838] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1815.382943] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1815.384027] do_syscall_64+0x33/0x40 [ 1815.384804] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1815.385862] RIP: 0033:0x7fb1fd6f6b19 [ 1815.386656] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1815.390485] RSP: 002b:00007fb1fac6c188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1815.392069] RAX: ffffffffffffffda RBX: 00007fb1fd809f60 RCX: 00007fb1fd6f6b19 [ 1815.393544] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1815.395037] RBP: 00007fb1fac6c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1815.396513] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1815.398011] R13: 00007ffc06ae2c8f R14: 00007fb1fac6c300 R15: 0000000000022000 [ 1815.399532] CPU: 0 PID: 11076 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1815.400802] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1815.402284] Call Trace: [ 1815.402759] dump_stack+0x107/0x167 [ 1815.403417] should_fail.cold+0x5/0xa [ 1815.404099] ? create_object.isra.0+0x3a/0xa20 [ 1815.404912] ? create_object.isra.0+0x3a/0xa20 [ 1815.405717] should_failslab+0x5/0x20 [ 1815.406409] kmem_cache_alloc+0x5b/0x310 [ 1815.407130] create_object.isra.0+0x3a/0xa20 [ 1815.408110] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1815.409012] kmem_cache_alloc_node+0x169/0x330 [ 1815.409843] __alloc_skb+0x6d/0x5b0 [ 1815.410512] netlink_sendmsg+0x998/0xdf0 [ 1815.411253] ? netlink_unicast+0x7f0/0x7f0 [ 1815.412038] ? netlink_unicast+0x7f0/0x7f0 [ 1815.412764] __sock_sendmsg+0x154/0x190 [ 1815.413461] ____sys_sendmsg+0x70d/0x870 [ 1815.414158] ? sock_write_iter+0x3d0/0x3d0 [ 1815.414310] FAULT_INJECTION: forcing a failure. [ 1815.414310] name failslab, interval 1, probability 0, space 0, times 0 [ 1815.414906] ? do_recvmmsg+0x6d0/0x6d0 [ 1815.414924] ? perf_trace_lock+0xac/0x490 [ 1815.414945] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1815.414965] ? __lockdep_reset_lock+0x180/0x180 [ 1815.414982] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1815.415005] ___sys_sendmsg+0xf3/0x170 [ 1815.415025] ? sendmsg_copy_msghdr+0x160/0x160 [ 1815.422953] ? lock_downgrade+0x6d0/0x6d0 [ 1815.423691] ? find_held_lock+0x2c/0x110 [ 1815.424426] ? __fget_files+0x296/0x4c0 [ 1815.425142] ? __fget_light+0xea/0x290 [ 1815.425830] __sys_sendmsg+0xe5/0x1b0 [ 1815.426509] ? __sys_sendmsg_sock+0x40/0x40 [ 1815.427263] ? trace_hardirqs_on+0x5b/0x180 [ 1815.428052] do_syscall_64+0x33/0x40 [ 1815.428717] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1815.429604] RIP: 0033:0x7fd54fedeb19 [ 1815.430279] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1815.433491] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1815.434799] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 1815.436063] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1815.437330] RBP: 00007fd54d4541d0 R08: 0000000000000000 R09: 0000000000000000 [ 1815.438604] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1815.439884] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 [ 1815.441159] CPU: 1 PID: 11081 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 1815.442670] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1815.444438] Call Trace: [ 1815.444984] dump_stack+0x107/0x167 [ 1815.445737] should_fail.cold+0x5/0xa [ 1815.446518] ? xas_alloc+0x336/0x440 [ 1815.447280] should_failslab+0x5/0x20 [ 1815.448058] kmem_cache_alloc+0x5b/0x310 [ 1815.448897] xas_alloc+0x336/0x440 [ 1815.449635] xas_create+0x34a/0x10d0 [ 1815.450414] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1815.451482] xas_store+0x8c/0x1c40 [ 1815.452234] __xa_store+0x164/0x2d0 [ 1815.452990] ? xa_delete_node+0x280/0x280 [ 1815.453853] ? trace_hardirqs_on+0x5b/0x180 [ 1815.454753] xa_store+0x31/0x50 [ 1815.455441] __io_uring_add_tctx_node+0x1cf/0x520 [ 1815.456444] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1815.457519] __do_sys_io_uring_enter+0x14de/0x1920 [ 1815.458523] ? lock_downgrade+0x6d0/0x6d0 [ 1815.459349] ? find_held_lock+0x2c/0x110 [ 1815.460177] ? io_submit_sqes+0x85c0/0x85c0 [ 1815.461078] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1815.462060] ? wait_for_completion_io+0x270/0x270 [ 1815.463059] ? rcu_read_lock_any_held+0x75/0xa0 [ 1815.464020] ? vfs_write+0x354/0xa70 [ 1815.464797] ? fput_many+0x2f/0x1a0 [ 1815.465548] ? ksys_write+0x1a9/0x260 [ 1815.466339] ? __ia32_sys_read+0xb0/0xb0 [ 1815.467193] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1815.468285] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1815.469356] do_syscall_64+0x33/0x40 [ 1815.470159] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1815.471211] RIP: 0033:0x7fd08b847b19 [ 1815.471981] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1815.475730] RSP: 002b:00007fd088d9c188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1815.477286] RAX: ffffffffffffffda RBX: 00007fd08b95b020 RCX: 00007fd08b847b19 [ 1815.478750] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1815.480201] RBP: 00007fd088d9c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1815.481638] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1815.483119] R13: 00007ffe1fec748f R14: 00007fd088d9c300 R15: 0000000000022000 [ 1815.487223] FAULT_INJECTION: forcing a failure. [ 1815.487223] name failslab, interval 1, probability 0, space 0, times 0 [ 1815.489695] CPU: 1 PID: 11082 Comm: syz-executor.7 Not tainted 5.10.205 #1 [ 1815.491122] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1815.492806] Call Trace: [ 1815.493353] dump_stack+0x107/0x167 [ 1815.494105] should_fail.cold+0x5/0xa [ 1815.494894] ? xas_alloc+0x336/0x440 [ 1815.495664] should_failslab+0x5/0x20 [ 1815.496432] kmem_cache_alloc+0x5b/0x310 [ 1815.497260] xas_alloc+0x336/0x440 [ 1815.497991] xas_create+0x34a/0x10d0 [ 1815.498779] ? lockdep_hardirqs_on_prepare+0x3e0/0x3e0 [ 1815.499851] xas_store+0x8c/0x1c40 [ 1815.500593] __xa_store+0x164/0x2d0 [ 1815.501345] ? xa_delete_node+0x280/0x280 [ 1815.502209] ? trace_hardirqs_on+0x5b/0x180 [ 1815.503105] xa_store+0x31/0x50 [ 1815.503784] __io_uring_add_tctx_node+0x1cf/0x520 [ 1815.504767] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1815.505852] __do_sys_io_uring_enter+0x14de/0x1920 [ 1815.506872] ? lock_downgrade+0x6d0/0x6d0 [ 1815.507718] ? find_held_lock+0x2c/0x110 [ 1815.508560] ? io_submit_sqes+0x85c0/0x85c0 [ 1815.509464] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1815.510484] ? wait_for_completion_io+0x270/0x270 [ 1815.511485] ? rcu_read_lock_any_held+0x75/0xa0 [ 1815.512447] ? vfs_write+0x354/0xa70 [ 1815.513221] ? fput_many+0x2f/0x1a0 [ 1815.513976] ? ksys_write+0x1a9/0x260 [ 1815.514768] ? __ia32_sys_read+0xb0/0xb0 [ 1815.515599] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1815.516672] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1815.517735] do_syscall_64+0x33/0x40 [ 1815.518517] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1815.519572] RIP: 0033:0x7f2b60e93b19 [ 1815.520325] FAULT_INJECTION: forcing a failure. [ 1815.520325] name failslab, interval 1, probability 0, space 0, times 0 [ 1815.522557] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1815.526345] RSP: 002b:00007f2b5e3e8188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1815.527906] RAX: ffffffffffffffda RBX: 00007f2b60fa7020 RCX: 00007f2b60e93b19 [ 1815.529373] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1815.530871] RBP: 00007f2b5e3e81d0 R08: 0000000000000000 R09: 0000000000000000 [ 1815.532314] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1815.533761] R13: 00007ffffc42e53f R14: 00007f2b5e3e8300 R15: 0000000000022000 [ 1815.535254] CPU: 0 PID: 11066 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1815.536422] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1815.537752] Call Trace: [ 1815.538191] dump_stack+0x107/0x167 [ 1815.538776] should_fail.cold+0x5/0xa [ 1815.539387] ? create_object.isra.0+0x3a/0xa20 [ 1815.540144] should_failslab+0x5/0x20 [ 1815.540787] kmem_cache_alloc+0x5b/0x310 [ 1815.541470] ? lock_acquire+0x197/0x470 [ 1815.542163] create_object.isra.0+0x3a/0xa20 [ 1815.542893] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1815.543751] kmem_cache_alloc_node_trace+0x16d/0x340 [ 1815.544616] create_io_worker+0xe8/0x620 [ 1815.545312] io_wqe_enqueue+0x69e/0xbe0 [ 1815.545989] ? create_worker_cb+0x260/0x260 [ 1815.546740] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1815.547519] ? io_prep_async_work+0x34e/0x550 [ 1815.548282] io_queue_async_work+0x26b/0x4f0 [ 1815.549040] __io_queue_sqe+0x5cc/0x9d0 [ 1815.549728] ? io_issue_sqe+0x7700/0x7700 [ 1815.550434] ? io_poll_queue_proc+0x50/0x50 [ 1815.551188] io_submit_sqes+0x4461/0x85c0 [ 1815.551929] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1815.552767] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1815.553583] ? lock_downgrade+0x6d0/0x6d0 [ 1815.554304] ? find_held_lock+0x2c/0x110 [ 1815.554995] ? io_submit_sqes+0x85c0/0x85c0 [ 1815.555742] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1815.556562] ? wait_for_completion_io+0x270/0x270 [ 1815.557366] ? rcu_read_lock_any_held+0x75/0xa0 [ 1815.558106] ? vfs_write+0x354/0xa70 [ 1815.558686] ? fput_many+0x2f/0x1a0 [ 1815.559276] ? ksys_write+0x1a9/0x260 [ 1815.559901] ? __ia32_sys_read+0xb0/0xb0 [ 1815.560549] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1815.561384] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1815.562226] do_syscall_64+0x33/0x40 [ 1815.562809] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1815.563601] RIP: 0033:0x7f369cad5b19 [ 1815.564185] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1815.567086] RSP: 002b:00007f369a04b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1815.568286] RAX: ffffffffffffffda RBX: 00007f369cbe8f60 RCX: 00007f369cad5b19 [ 1815.569408] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1815.570488] RBP: 00007f369a04b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1815.571576] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1815.572692] R13: 00007ffcb9edce5f R14: 00007f369a04b300 R15: 0000000000022000 [ 1815.587487] FAULT_INJECTION: forcing a failure. [ 1815.587487] name failslab, interval 1, probability 0, space 0, times 0 [ 1815.589336] CPU: 0 PID: 11078 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 1815.590448] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1815.591719] Call Trace: [ 1815.592119] dump_stack+0x107/0x167 [ 1815.592685] should_fail.cold+0x5/0xa [ 1815.593305] ? create_object.isra.0+0x3a/0xa20 [ 1815.593995] should_failslab+0x5/0x20 [ 1815.594009] kmem_cache_alloc+0x5b/0x310 [ 1815.594025] ? l2cap_sock_accept+0x530/0x530 [ 1815.594044] create_object.isra.0+0x3a/0xa20 [ 1815.594059] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1815.594082] __kmalloc+0x16e/0x390 [ 1815.598255] io_connect+0x3b1/0x610 [ 1815.598857] ? io_prep_rw+0x1050/0x1050 [ 1815.599539] ? lock_chain_count+0x20/0x20 [ 1815.600224] io_issue_sqe+0x1611/0x7700 [ 1815.600880] ? perf_trace_lock+0xac/0x490 [ 1815.601581] ? lock_chain_count+0x20/0x20 [ 1815.602309] ? __lockdep_reset_lock+0x180/0x180 [ 1815.603061] ? io_connect+0x610/0x610 [ 1815.603677] ? mark_held_locks+0x9e/0xe0 [ 1815.604358] ? find_held_lock+0x2c/0x110 [ 1815.605050] ? __fget_files+0x26d/0x4c0 [ 1815.605712] __io_queue_sqe+0x90/0x9d0 [ 1815.606365] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1815.607222] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1815.608103] ? trace_hardirqs_on+0x5b/0x180 [ 1815.608806] ? io_issue_sqe+0x7700/0x7700 [ 1815.609506] io_submit_sqes+0x4461/0x85c0 [ 1815.609562] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1815.610217] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1815.610232] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1815.610251] ? lock_downgrade+0x6d0/0x6d0 [ 1815.610263] ? find_held_lock+0x2c/0x110 [ 1815.610284] ? io_submit_sqes+0x85c0/0x85c0 [ 1815.610307] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1815.610326] ? wait_for_completion_io+0x270/0x270 [ 1815.610344] ? rcu_read_lock_any_held+0x75/0xa0 [ 1815.610356] ? vfs_write+0x354/0xa70 [ 1815.610380] ? fput_many+0x2f/0x1a0 [ 1815.619119] ? ksys_write+0x1a9/0x260 [ 1815.619759] ? __ia32_sys_read+0xb0/0xb0 [ 1815.620441] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1815.621304] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1815.622170] do_syscall_64+0x33/0x40 [ 1815.622787] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1815.623617] RIP: 0033:0x7f1a51fc5b19 [ 1815.624239] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1815.627283] RSP: 002b:00007f1a4f53b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1815.628539] RAX: ffffffffffffffda RBX: 00007f1a520d8f60 RCX: 00007f1a51fc5b19 [ 1815.629723] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1815.630909] RBP: 00007f1a4f53b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1815.632074] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1815.633260] R13: 00007ffe3ce1c42f R14: 00007f1a4f53b300 R15: 0000000000022000 [ 1815.634481] CPU: 1 PID: 11076 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1815.635911] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1815.637605] Call Trace: [ 1815.638159] dump_stack+0x107/0x167 [ 1815.638910] sysfs_warn_dup.cold+0x1c/0x29 [ 1815.639785] sysfs_do_create_link_sd+0x122/0x140 [ 1815.640753] sysfs_create_link+0x5f/0xc0 [ 1815.641584] device_add+0x703/0x1c50 [ 1815.642365] ? devlink_add_symlinks+0x970/0x970 [ 1815.643318] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1815.644387] wiphy_register+0x1da6/0x2850 [ 1815.645261] ? wiphy_unregister+0xb90/0xb90 [ 1815.646185] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1815.647280] ieee80211_register_hw+0x23c5/0x38b0 [ 1815.648273] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1815.649263] ? net_generic+0xdb/0x2b0 [ 1815.650055] ? lockdep_init_map_type+0x2c7/0x780 [ 1815.651036] ? memset+0x20/0x50 [ 1815.651712] ? __hrtimer_init+0x12c/0x270 [ 1815.652563] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1815.653605] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1815.654556] ? hwsim_new_radio_nl+0x967/0x1080 [ 1815.655493] ? memcpy+0x39/0x60 [ 1815.656177] hwsim_new_radio_nl+0x991/0x1080 [ 1815.657088] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1815.658181] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1815.659521] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1815.660856] genl_family_rcv_msg_doit+0x22d/0x330 [ 1815.661853] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1815.663216] ? cap_capable+0x1cd/0x230 [ 1815.664020] ? ns_capable+0xe2/0x110 [ 1815.664780] genl_rcv_msg+0x33c/0x5a0 [ 1815.665555] ? genl_get_cmd+0x480/0x480 [ 1815.666370] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1815.667416] ? lock_release+0x680/0x680 [ 1815.668233] ? __lockdep_reset_lock+0x180/0x180 [ 1815.669187] netlink_rcv_skb+0x14b/0x430 [ 1815.669481] FAULT_INJECTION: forcing a failure. [ 1815.669481] name failslab, interval 1, probability 0, space 0, times 0 [ 1815.670003] ? genl_get_cmd+0x480/0x480 [ 1815.670025] ? netlink_ack+0xab0/0xab0 [ 1815.670062] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1815.670082] ? is_vmalloc_addr+0x7b/0xb0 [ 1815.670107] genl_rcv+0x24/0x40 [ 1815.670123] netlink_unicast+0x549/0x7f0 [ 1815.670171] ? netlink_attachskb+0x870/0x870 [ 1815.670206] netlink_sendmsg+0x90f/0xdf0 [ 1815.670235] ? netlink_unicast+0x7f0/0x7f0 [ 1815.670270] ? netlink_unicast+0x7f0/0x7f0 [ 1815.670292] __sock_sendmsg+0x154/0x190 [ 1815.670313] ____sys_sendmsg+0x70d/0x870 [ 1815.670338] ? sock_write_iter+0x3d0/0x3d0 [ 1815.670355] ? do_recvmmsg+0x6d0/0x6d0 [ 1815.670375] ? perf_trace_lock+0xac/0x490 [ 1815.670398] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1815.670422] ? __lockdep_reset_lock+0x180/0x180 [ 1815.670442] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1815.670470] ___sys_sendmsg+0xf3/0x170 [ 1815.670494] ? sendmsg_copy_msghdr+0x160/0x160 [ 1815.689165] ? lock_downgrade+0x6d0/0x6d0 [ 1815.690022] ? find_held_lock+0x2c/0x110 [ 1815.690882] ? __fget_files+0x296/0x4c0 [ 1815.691716] ? __fget_light+0xea/0x290 [ 1815.692529] __sys_sendmsg+0xe5/0x1b0 [ 1815.693323] ? __sys_sendmsg_sock+0x40/0x40 [ 1815.694227] ? trace_hardirqs_on+0x5b/0x180 [ 1815.695149] do_syscall_64+0x33/0x40 [ 1815.695920] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1815.696971] RIP: 0033:0x7fd54fedeb19 [ 1815.697734] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1815.701498] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1815.703087] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 1815.704545] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1815.706012] RBP: 00007fd54d4541d0 R08: 0000000000000000 R09: 0000000000000000 [ 1815.707470] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1815.708931] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 [ 1815.710439] CPU: 0 PID: 11090 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1815.711505] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1815.712745] Call Trace: [ 1815.713153] dump_stack+0x107/0x167 [ 1815.713689] should_fail.cold+0x5/0xa [ 1815.714248] ? create_object.isra.0+0x3a/0xa20 [ 1815.714912] should_failslab+0x5/0x20 [ 1815.715451] kmem_cache_alloc+0x5b/0x310 [ 1815.716037] create_object.isra.0+0x3a/0xa20 21:22:21 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 21:22:21 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 14) 21:22:21 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 15) [ 1815.716652] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1815.717547] kmem_cache_alloc_trace+0x151/0x320 [ 1815.718223] __io_queue_sqe+0x666/0x9d0 [ 1815.718789] ? io_issue_sqe+0x7700/0x7700 [ 1815.719394] io_submit_sqes+0x4461/0x85c0 [ 1815.720023] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1815.720735] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1815.721405] ? lock_downgrade+0x6d0/0x6d0 [ 1815.721981] ? find_held_lock+0x2c/0x110 [ 1815.722553] ? io_submit_sqes+0x85c0/0x85c0 [ 1815.723164] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1815.723844] ? wait_for_completion_io+0x270/0x270 [ 1815.724524] ? rcu_read_lock_any_held+0x75/0xa0 [ 1815.725170] ? vfs_write+0x354/0xa70 [ 1815.725701] ? fput_many+0x2f/0x1a0 [ 1815.726241] ? ksys_write+0x1a9/0x260 [ 1815.726776] ? __ia32_sys_read+0xb0/0xb0 [ 1815.727343] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1815.728082] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1815.728804] do_syscall_64+0x33/0x40 [ 1815.729318] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1815.730018] RIP: 0033:0x7fd113b88b19 [ 1815.730547] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1815.733036] RSP: 002b:00007fd1110fe188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1815.734070] RAX: ffffffffffffffda RBX: 00007fd113c9bf60 RCX: 00007fd113b88b19 [ 1815.735052] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1815.736021] RBP: 00007fd1110fe1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1815.736980] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1815.737949] R13: 00007ffeed86c68f R14: 00007fd1110fe300 R15: 0000000000022000 [ 1815.818470] FAULT_INJECTION: forcing a failure. [ 1815.818470] name failslab, interval 1, probability 0, space 0, times 0 [ 1815.821364] CPU: 1 PID: 11093 Comm: syz-executor.7 Not tainted 5.10.205 #1 [ 1815.822761] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1815.824436] Call Trace: [ 1815.824976] dump_stack+0x107/0x167 [ 1815.825704] should_fail.cold+0x5/0xa [ 1815.826487] ? create_io_worker+0xe8/0x620 [ 1815.827334] should_failslab+0x5/0x20 [ 1815.828094] kmem_cache_alloc_node_trace+0x59/0x340 [ 1815.829111] create_io_worker+0xe8/0x620 [ 1815.829923] io_wqe_enqueue+0x69e/0xbe0 [ 1815.830745] ? create_worker_cb+0x260/0x260 [ 1815.831623] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1815.832546] ? io_prep_async_work+0x34e/0x550 [ 1815.833467] io_queue_async_work+0x26b/0x4f0 [ 1815.834366] __io_queue_sqe+0x5cc/0x9d0 [ 1815.835178] ? io_issue_sqe+0x7700/0x7700 [ 1815.836007] ? io_poll_queue_proc+0x50/0x50 [ 1815.836894] io_submit_sqes+0x4461/0x85c0 [ 1815.837772] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1815.838775] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1815.839761] ? lock_downgrade+0x6d0/0x6d0 [ 1815.840585] ? find_held_lock+0x2c/0x110 [ 1815.841413] ? io_submit_sqes+0x85c0/0x85c0 [ 1815.842300] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1815.843279] ? wait_for_completion_io+0x270/0x270 [ 1815.844259] ? rcu_read_lock_any_held+0x75/0xa0 [ 1815.845187] ? vfs_write+0x354/0xa70 [ 1815.845953] ? fput_many+0x2f/0x1a0 [ 1815.846719] ? ksys_write+0x1a9/0x260 [ 1815.847490] ? __ia32_sys_read+0xb0/0xb0 [ 1815.848319] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1815.849379] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1815.850438] do_syscall_64+0x33/0x40 [ 1815.851193] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1815.852241] RIP: 0033:0x7f2b60e93b19 [ 1815.852996] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1815.856659] RSP: 002b:00007f2b5e409188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1815.858161] RAX: ffffffffffffffda RBX: 00007f2b60fa6f60 RCX: 00007f2b60e93b19 [ 1815.859586] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1815.861027] RBP: 00007f2b5e4091d0 R08: 0000000000000000 R09: 0000000000000000 [ 1815.862470] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1815.863901] R13: 00007ffffc42e53f R14: 00007f2b5e409300 R15: 0000000000022000 21:22:35 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 16) 21:22:35 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) (fail_nth: 5) 21:22:35 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 17) 21:22:35 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 16) 21:22:35 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 8) 21:22:35 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 15) 21:22:35 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 13) [ 1829.589079] FAULT_INJECTION: forcing a failure. [ 1829.589079] name failslab, interval 1, probability 0, space 0, times 0 [ 1829.591041] CPU: 1 PID: 11109 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 1829.591841] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1829.592790] Call Trace: [ 1829.593096] dump_stack+0x107/0x167 [ 1829.593520] should_fail.cold+0x5/0xa [ 1829.593958] ? __io_queue_sqe+0x666/0x9d0 [ 1829.594463] should_failslab+0x5/0x20 [ 1829.594913] kmem_cache_alloc_trace+0x55/0x320 [ 1829.595454] __io_queue_sqe+0x666/0x9d0 [ 1829.595928] ? io_issue_sqe+0x7700/0x7700 [ 1829.596434] io_submit_sqes+0x4461/0x85c0 [ 1829.596926] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1829.597527] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1829.598132] ? lock_downgrade+0x6d0/0x6d0 [ 1829.598416] FAULT_INJECTION: forcing a failure. [ 1829.598416] name failslab, interval 1, probability 0, space 0, times 0 [ 1829.598649] ? find_held_lock+0x2c/0x110 [ 1829.598666] ? io_submit_sqes+0x85c0/0x85c0 [ 1829.598701] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1829.602624] ? wait_for_completion_io+0x270/0x270 [ 1829.603238] ? rcu_read_lock_any_held+0x75/0xa0 [ 1829.603808] ? vfs_write+0x354/0xa70 [ 1829.604274] ? fput_many+0x2f/0x1a0 [ 1829.604715] ? ksys_write+0x1a9/0x260 [ 1829.605198] ? __ia32_sys_read+0xb0/0xb0 [ 1829.605698] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1829.606321] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1829.606955] do_syscall_64+0x33/0x40 [ 1829.607414] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1829.608050] RIP: 0033:0x7f1a51fc5b19 [ 1829.608505] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1829.610767] RSP: 002b:00007f1a4f53b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1829.611705] RAX: ffffffffffffffda RBX: 00007f1a520d8f60 RCX: 00007f1a51fc5b19 [ 1829.612584] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1829.613423] RBP: 00007f1a4f53b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1829.614309] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1829.615188] R13: 00007ffe3ce1c42f R14: 00007f1a4f53b300 R15: 0000000000022000 [ 1829.616106] CPU: 0 PID: 11104 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1829.617585] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1829.619329] Call Trace: [ 1829.619894] dump_stack+0x107/0x167 [ 1829.620688] should_fail.cold+0x5/0xa [ 1829.621195] FAULT_INJECTION: forcing a failure. [ 1829.621195] name failslab, interval 1, probability 0, space 0, times 0 [ 1829.621501] should_failslab+0x5/0x20 [ 1829.623518] __kmalloc_node_track_caller+0x74/0x3b0 [ 1829.624553] ? netlink_sendmsg+0x998/0xdf0 [ 1829.625455] __alloc_skb+0xb1/0x5b0 [ 1829.626228] netlink_sendmsg+0x998/0xdf0 [ 1829.627105] ? netlink_unicast+0x7f0/0x7f0 [ 1829.628024] ? netlink_unicast+0x7f0/0x7f0 [ 1829.628919] __sock_sendmsg+0x154/0x190 [ 1829.629768] ____sys_sendmsg+0x70d/0x870 [ 1829.630642] ? sock_write_iter+0x3d0/0x3d0 [ 1829.631531] ? do_recvmmsg+0x6d0/0x6d0 [ 1829.632376] ___sys_sendmsg+0xf3/0x170 [ 1829.633212] ? sendmsg_copy_msghdr+0x160/0x160 [ 1829.634191] ? lock_downgrade+0x6d0/0x6d0 [ 1829.635110] ? __fget_files+0x296/0x4c0 [ 1829.635964] ? __fget_light+0xea/0x290 [ 1829.636793] __sys_sendmsg+0xe5/0x1b0 [ 1829.637611] ? __sys_sendmsg_sock+0x40/0x40 [ 1829.638544] ? trace_hardirqs_on+0x5b/0x180 [ 1829.639474] ? __sys_sendmsg+0x1b0/0x1b0 [ 1829.640347] ? __x64_sys_sendmsg+0x1/0xb0 [ 1829.641243] do_syscall_64+0x33/0x40 [ 1829.642045] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1829.643145] RIP: 0033:0x7fd54fedeb19 [ 1829.643940] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1829.647823] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1829.649428] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 1829.650950] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1829.652436] RBP: 00007fd54d4541d0 R08: 0000000000000000 R09: 0000000000000000 [ 1829.653944] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1829.655438] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 [ 1829.657002] CPU: 1 PID: 11103 Comm: syz-executor.7 Not tainted 5.10.205 #1 [ 1829.657795] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1829.658788] Call Trace: [ 1829.659100] dump_stack+0x107/0x167 [ 1829.659537] should_fail.cold+0x5/0xa [ 1829.659997] ? create_object.isra.0+0x3a/0xa20 [ 1829.660535] should_failslab+0x5/0x20 [ 1829.660993] kmem_cache_alloc+0x5b/0x310 [ 1829.661487] ? lock_acquire+0x197/0x470 [ 1829.661968] create_object.isra.0+0x3a/0xa20 [ 1829.662503] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1829.663118] kmem_cache_alloc_node_trace+0x16d/0x340 [ 1829.663720] create_io_worker+0xe8/0x620 [ 1829.664210] io_wqe_enqueue+0x69e/0xbe0 [ 1829.664683] ? create_worker_cb+0x260/0x260 [ 1829.665202] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1829.665736] ? io_prep_async_work+0x34e/0x550 [ 1829.666285] io_queue_async_work+0x26b/0x4f0 [ 1829.666836] __io_queue_sqe+0x5cc/0x9d0 [ 1829.667313] ? io_issue_sqe+0x7700/0x7700 [ 1829.667803] ? io_poll_queue_proc+0x50/0x50 [ 1829.668318] ? io_submit_sqes+0x2d4a/0x85c0 [ 1829.668841] io_submit_sqes+0x4461/0x85c0 [ 1829.669330] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1829.669930] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1829.670522] ? lock_downgrade+0x6d0/0x6d0 [ 1829.670987] ? find_held_lock+0x2c/0x110 [ 1829.671476] ? io_submit_sqes+0x85c0/0x85c0 [ 1829.671960] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1829.672580] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1829.673196] ? trace_hardirqs_on+0x5b/0x180 [ 1829.673713] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1829.674344] ? ksys_write+0x1a4/0x260 [ 1829.674802] ? __sanitizer_cov_trace_pc+0x45/0x60 [ 1829.675354] ? ksys_write+0x1a9/0x260 [ 1829.675809] ? __ia32_sys_read+0xb0/0xb0 [ 1829.676278] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1829.676906] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1829.677489] do_syscall_64+0x33/0x40 [ 1829.677928] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1829.678515] RIP: 0033:0x7f2b60e93b19 [ 1829.678960] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1829.679463] FAULT_INJECTION: forcing a failure. [ 1829.679463] name failslab, interval 1, probability 0, space 0, times 0 [ 1829.680992] RSP: 002b:00007f2b5e409188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1829.681004] RAX: ffffffffffffffda RBX: 00007f2b60fa6f60 RCX: 00007f2b60e93b19 [ 1829.681011] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1829.681017] RBP: 00007f2b5e4091d0 R08: 0000000000000000 R09: 0000000000000000 [ 1829.681024] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1829.681030] R13: 00007ffffc42e53f R14: 00007f2b5e409300 R15: 0000000000022000 [ 1829.694021] CPU: 0 PID: 11108 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 1829.695478] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1829.697206] Call Trace: [ 1829.697763] dump_stack+0x107/0x167 [ 1829.698538] should_fail.cold+0x5/0xa [ 1829.699360] ? create_object.isra.0+0x3a/0xa20 [ 1829.700306] ? create_object.isra.0+0x3a/0xa20 [ 1829.701274] should_failslab+0x5/0x20 [ 1829.702070] kmem_cache_alloc+0x5b/0x310 [ 1829.702943] ? lock_acquire+0x197/0x470 [ 1829.703776] create_object.isra.0+0x3a/0xa20 [ 1829.704729] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1829.705797] kmem_cache_alloc_node_trace+0x16d/0x340 [ 1829.706901] create_io_worker+0xe8/0x620 [ 1829.707759] io_wqe_enqueue+0x69e/0xbe0 [ 1829.708612] ? create_worker_cb+0x260/0x260 [ 1829.709505] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1829.710477] ? io_prep_async_work+0x34e/0x550 [ 1829.711415] io_queue_async_work+0x26b/0x4f0 [ 1829.712350] __io_queue_sqe+0x5cc/0x9d0 [ 1829.713200] ? io_issue_sqe+0x7700/0x7700 [ 1829.714073] ? io_poll_queue_proc+0x50/0x50 [ 1829.715012] io_submit_sqes+0x4461/0x85c0 [ 1829.715926] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1829.716978] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1829.718008] ? lock_downgrade+0x6d0/0x6d0 [ 1829.718885] ? find_held_lock+0x2c/0x110 [ 1829.719759] ? io_submit_sqes+0x85c0/0x85c0 [ 1829.720696] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1829.721714] ? wait_for_completion_io+0x270/0x270 [ 1829.722751] ? rcu_read_lock_any_held+0x75/0xa0 [ 1829.723735] ? vfs_write+0x354/0xa70 [ 1829.724533] ? fput_many+0x2f/0x1a0 [ 1829.725300] ? ksys_write+0x1a9/0x260 [ 1829.726127] ? __ia32_sys_read+0xb0/0xb0 [ 1829.727013] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1829.728125] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1829.729228] do_syscall_64+0x33/0x40 [ 1829.730022] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1829.731122] RIP: 0033:0x7fd08b847b19 [ 1829.731909] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1829.735815] RSP: 002b:00007fd088dbd188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1829.737428] RAX: ffffffffffffffda RBX: 00007fd08b95af60 RCX: 00007fd08b847b19 [ 1829.738973] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1829.740497] RBP: 00007fd088dbd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1829.742010] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1829.743531] R13: 00007ffe1fec748f R14: 00007fd088dbd300 R15: 0000000000022000 21:22:36 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 14) [ 1829.764669] FAULT_INJECTION: forcing a failure. [ 1829.764669] name failslab, interval 1, probability 0, space 0, times 0 [ 1829.765977] CPU: 1 PID: 11111 Comm: syz-executor.1 Not tainted 5.10.205 #1 21:22:36 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 17) 21:22:36 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 1) [ 1829.766758] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1829.767948] Call Trace: [ 1829.768262] dump_stack+0x107/0x167 [ 1829.768684] should_fail.cold+0x5/0xa [ 1829.769132] ? create_io_worker+0xe8/0x620 [ 1829.769609] should_failslab+0x5/0x20 [ 1829.770034] kmem_cache_alloc_node_trace+0x59/0x340 [ 1829.770604] create_io_worker+0xe8/0x620 [ 1829.771060] io_wqe_enqueue+0x69e/0xbe0 [ 1829.771504] ? create_worker_cb+0x260/0x260 [ 1829.771993] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1829.772487] ? io_prep_async_work+0x34e/0x550 [ 1829.772997] io_queue_async_work+0x26b/0x4f0 [ 1829.773487] __io_queue_sqe+0x5cc/0x9d0 [ 1829.773939] ? io_issue_sqe+0x7700/0x7700 [ 1829.774396] ? io_poll_queue_proc+0x50/0x50 [ 1829.774888] io_submit_sqes+0x4461/0x85c0 [ 1829.775367] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1829.775917] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1829.776456] ? lock_downgrade+0x6d0/0x6d0 [ 1829.776940] ? find_held_lock+0x2c/0x110 [ 1829.777410] ? io_submit_sqes+0x85c0/0x85c0 [ 1829.777536] FAULT_INJECTION: forcing a failure. [ 1829.777536] name failslab, interval 1, probability 0, space 0, times 0 [ 1829.777902] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1829.777917] ? wait_for_completion_io+0x270/0x270 [ 1829.777931] ? rcu_read_lock_any_held+0x75/0xa0 [ 1829.777942] ? vfs_write+0x354/0xa70 [ 1829.777955] ? fput_many+0x2f/0x1a0 [ 1829.777966] ? ksys_write+0x1a9/0x260 [ 1829.777978] ? __ia32_sys_read+0xb0/0xb0 [ 1829.778002] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1829.784170] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1829.784755] do_syscall_64+0x33/0x40 [ 1829.785182] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1829.785744] RIP: 0033:0x7fd113b88b19 [ 1829.786152] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1829.788234] RSP: 002b:00007fd1110fe188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1829.789060] RAX: ffffffffffffffda RBX: 00007fd113c9bf60 RCX: 00007fd113b88b19 [ 1829.789870] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1829.790661] RBP: 00007fd1110fe1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1829.791477] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1829.792298] R13: 00007ffeed86c68f R14: 00007fd1110fe300 R15: 0000000000022000 [ 1829.793165] CPU: 0 PID: 11105 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1829.794682] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1829.796431] Call Trace: [ 1829.797001] dump_stack+0x107/0x167 [ 1829.797782] should_fail.cold+0x5/0xa [ 1829.798622] ? copy_process+0x5d2/0x7800 [ 1829.799486] should_failslab+0x5/0x20 [ 1829.800306] kmem_cache_alloc_node+0x55/0x330 [ 1829.801258] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1829.802387] copy_process+0x5d2/0x7800 [ 1829.803227] ? stack_trace_save+0x8c/0xc0 [ 1829.804114] ? stack_trace_consume_entry+0x160/0x160 [ 1829.805201] ? kasan_save_stack+0x32/0x40 [ 1829.806074] ? kasan_save_stack+0x1b/0x40 [ 1829.806949] ? create_io_worker+0xe8/0x620 [ 1829.807839] ? io_wqe_enqueue+0x69e/0xbe0 [ 1829.808728] ? __cleanup_sighand+0xb0/0xb0 [ 1829.809628] ? __lockdep_reset_lock+0x180/0x180 [ 1829.810630] ? lock_acquire+0x197/0x470 [ 1829.811474] ? create_object.isra.0+0x3ad/0xa20 [ 1829.812475] ? lock_release+0x680/0x680 [ 1829.813303] ? find_held_lock+0x2c/0x110 [ 1829.814166] ? io_wqe_dec_running+0x220/0x220 [ 1829.815114] create_io_thread+0xb6/0xf0 [ 1829.815964] ? pidfd_pid+0x90/0x90 [ 1829.816711] ? mark_held_locks+0x9e/0xe0 [ 1829.817576] ? io_wqe_dec_running+0x220/0x220 [ 1829.818536] ? __init_swait_queue_head+0xc6/0x150 [ 1829.819572] create_io_worker+0x23a/0x620 [ 1829.820469] io_wqe_enqueue+0x69e/0xbe0 [ 1829.821342] ? create_worker_cb+0x260/0x260 [ 1829.822116] FAULT_INJECTION: forcing a failure. [ 1829.822116] name failslab, interval 1, probability 0, space 0, times 0 [ 1829.822279] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1829.824470] ? io_prep_async_work+0x34e/0x550 [ 1829.825438] io_queue_async_work+0x26b/0x4f0 [ 1829.826392] __io_queue_sqe+0x5cc/0x9d0 [ 1829.827256] ? io_issue_sqe+0x7700/0x7700 [ 1829.828141] ? io_poll_queue_proc+0x50/0x50 [ 1829.829079] io_submit_sqes+0x4461/0x85c0 [ 1829.830002] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1829.831072] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1829.832100] ? lock_downgrade+0x6d0/0x6d0 [ 1829.832979] ? find_held_lock+0x2c/0x110 [ 1829.833857] ? io_submit_sqes+0x85c0/0x85c0 [ 1829.834799] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1829.835835] ? wait_for_completion_io+0x270/0x270 [ 1829.836866] ? rcu_read_lock_any_held+0x75/0xa0 [ 1829.837852] ? vfs_write+0x354/0xa70 [ 1829.838655] ? fput_many+0x2f/0x1a0 [ 1829.839428] ? ksys_write+0x1a9/0x260 [ 1829.840241] ? __ia32_sys_read+0xb0/0xb0 [ 1829.841114] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1829.842241] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1829.843353] do_syscall_64+0x33/0x40 [ 1829.844164] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1829.845236] RIP: 0033:0x7f369cad5b19 [ 1829.846016] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1829.849876] RSP: 002b:00007f369a04b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1829.851485] RAX: ffffffffffffffda RBX: 00007f369cbe8f60 RCX: 00007f369cad5b19 [ 1829.852981] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1829.854516] RBP: 00007f369a04b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1829.856050] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1829.857571] R13: 00007ffcb9edce5f R14: 00007f369a04b300 R15: 0000000000022000 [ 1829.859141] CPU: 1 PID: 11119 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 1829.859946] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1829.860971] Call Trace: [ 1829.861270] dump_stack+0x107/0x167 [ 1829.861680] should_fail.cold+0x5/0xa [ 1829.862117] ? create_object.isra.0+0x3a/0xa20 [ 1829.862631] should_failslab+0x5/0x20 [ 1829.863059] kmem_cache_alloc+0x5b/0x310 [ 1829.863518] create_object.isra.0+0x3a/0xa20 [ 1829.864002] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1829.864571] kmem_cache_alloc_trace+0x151/0x320 [ 1829.865096] __io_queue_sqe+0x666/0x9d0 [ 1829.865549] ? io_issue_sqe+0x7700/0x7700 [ 1829.866032] io_submit_sqes+0x4461/0x85c0 [ 1829.866515] ? percpu_ref_tryget_many+0x1f/0x2d0 [ 1829.867039] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1829.867592] __do_sys_io_uring_enter+0x6b5/0x1920 21:22:36 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) (fail_nth: 6) [ 1829.868131] ? io_submit_sqes+0x85c0/0x85c0 [ 1829.868769] ? recalibrate_cpu_khz+0x10/0x10 [ 1829.869255] ? ktime_get+0x158/0x1f0 [ 1829.869667] ? setup_APIC_eilvt+0x2f0/0x2f0 [ 1829.870150] ? clockevents_program_event+0x131/0x360 [ 1829.870724] ? tick_program_event+0xa8/0x140 [ 1829.871213] ? hrtimer_interrupt+0x771/0x9b0 [ 1829.871713] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1829.872297] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1829.872873] do_syscall_64+0x33/0x40 [ 1829.873290] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1829.873866] RIP: 0033:0x7f1a51fc5b19 [ 1829.874281] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1829.876343] RSP: 002b:00007f1a4f53b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1829.877181] RAX: ffffffffffffffda RBX: 00007f1a520d8f60 RCX: 00007f1a51fc5b19 [ 1829.877975] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1829.878747] RBP: 00007f1a4f53b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1829.879547] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1829.880347] R13: 00007ffe3ce1c42f R14: 00007f1a4f53b300 R15: 0000000000022000 [ 1829.893428] FAULT_INJECTION: forcing a failure. [ 1829.893428] name failslab, interval 1, probability 0, space 0, times 0 [ 1829.896255] CPU: 0 PID: 11117 Comm: syz-executor.4 Not tainted 5.10.205 #1 [ 1829.897698] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1829.899427] Call Trace: [ 1829.899990] dump_stack+0x107/0x167 [ 1829.900772] should_fail.cold+0x5/0xa [ 1829.901597] should_failslab+0x5/0x20 [ 1829.902416] kmem_cache_alloc_bulk+0x4b/0x320 [ 1829.903389] io_submit_sqes+0x6f76/0x85c0 [ 1829.904298] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1829.905380] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1829.906459] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1829.907497] ? lock_downgrade+0x6d0/0x6d0 [ 1829.908382] ? find_held_lock+0x2c/0x110 [ 1829.909254] ? io_submit_sqes+0x85c0/0x85c0 [ 1829.910188] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1829.911228] ? wait_for_completion_io+0x270/0x270 [ 1829.912262] ? rcu_read_lock_any_held+0x75/0xa0 [ 1829.913245] ? vfs_write+0x354/0xa70 [ 1829.914045] ? fput_many+0x2f/0x1a0 [ 1829.914875] ? ksys_write+0x1a9/0x260 [ 1829.915691] ? __ia32_sys_read+0xb0/0xb0 [ 1829.916572] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1829.917690] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1829.918799] do_syscall_64+0x33/0x40 [ 1829.919597] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1829.920684] RIP: 0033:0x7f65ffeffb19 [ 1829.921485] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1829.925392] RSP: 002b:00007f65fd475188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1829.927037] RAX: ffffffffffffffda RBX: 00007f6600012f60 RCX: 00007f65ffeffb19 [ 1829.928554] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1829.930093] RBP: 00007f65fd4751d0 R08: 0000000000000000 R09: 0000000000000000 [ 1829.931626] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1829.933155] R13: 00007ffddf3c20bf R14: 00007f65fd475300 R15: 0000000000022000 [ 1829.941359] FAULT_INJECTION: forcing a failure. [ 1829.941359] name failslab, interval 1, probability 0, space 0, times 0 [ 1829.944383] CPU: 0 PID: 11115 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1829.945875] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1829.946176] FAULT_INJECTION: forcing a failure. [ 1829.946176] name failslab, interval 1, probability 0, space 0, times 0 [ 1829.947639] Call Trace: [ 1829.947661] dump_stack+0x107/0x167 [ 1829.947689] should_fail.cold+0x5/0xa [ 1829.951085] ? create_object.isra.0+0x3a/0xa20 [ 1829.952067] should_failslab+0x5/0x20 [ 1829.952893] kmem_cache_alloc+0x5b/0x310 [ 1829.953769] ? mark_held_locks+0x9e/0xe0 [ 1829.954649] create_object.isra.0+0x3a/0xa20 [ 1829.955598] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1829.956698] kmem_cache_alloc_bulk+0x168/0x320 [ 1829.957687] io_submit_sqes+0x6f76/0x85c0 [ 1829.958599] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1829.959669] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1829.960738] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1829.961785] ? lock_downgrade+0x6d0/0x6d0 [ 1829.962683] ? find_held_lock+0x2c/0x110 [ 1829.963579] ? io_submit_sqes+0x85c0/0x85c0 [ 1829.964500] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1829.965533] ? wait_for_completion_io+0x270/0x270 [ 1829.966571] ? rcu_read_lock_any_held+0x75/0xa0 [ 1829.967552] ? vfs_write+0x354/0xa70 [ 1829.968350] ? fput_many+0x2f/0x1a0 [ 1829.969119] ? ksys_write+0x1a9/0x260 [ 1829.969924] ? __ia32_sys_read+0xb0/0xb0 [ 1829.970795] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1829.971927] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1829.973026] do_syscall_64+0x33/0x40 [ 1829.973808] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1829.974906] RIP: 0033:0x7fb1fd6f6b19 [ 1829.975694] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1829.979575] RSP: 002b:00007fb1fac6c188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1829.981183] RAX: ffffffffffffffda RBX: 00007fb1fd809f60 RCX: 00007fb1fd6f6b19 [ 1829.982728] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1829.984269] RBP: 00007fb1fac6c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1829.985798] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1829.987347] R13: 00007ffc06ae2c8f R14: 00007fb1fac6c300 R15: 0000000000022000 [ 1829.988910] CPU: 1 PID: 11127 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1829.989715] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1829.990637] Call Trace: [ 1829.990923] dump_stack+0x107/0x167 [ 1829.991347] should_fail.cold+0x5/0xa [ 1829.991774] ? create_object.isra.0+0x3a/0xa20 [ 1829.992305] should_failslab+0x5/0x20 [ 1829.992733] kmem_cache_alloc+0x5b/0x310 [ 1829.993202] create_object.isra.0+0x3a/0xa20 [ 1829.993693] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1829.994276] __kmalloc_node_track_caller+0x1a6/0x3b0 [ 1829.994827] ? netlink_sendmsg+0x998/0xdf0 [ 1829.995312] __alloc_skb+0xb1/0x5b0 [ 1829.995721] netlink_sendmsg+0x998/0xdf0 [ 1829.996197] ? netlink_unicast+0x7f0/0x7f0 [ 1829.996670] ? netlink_unicast+0x7f0/0x7f0 [ 1829.997155] __sock_sendmsg+0x154/0x190 [ 1829.997610] ____sys_sendmsg+0x70d/0x870 [ 1829.998075] ? sock_write_iter+0x3d0/0x3d0 [ 1829.998551] ? do_recvmmsg+0x6d0/0x6d0 [ 1829.998969] ? perf_trace_lock+0xac/0x490 [ 1829.999435] ? __lockdep_reset_lock+0x180/0x180 [ 1829.999949] ? perf_trace_lock+0xac/0x490 [ 1830.000423] ? SOFTIRQ_verbose+0x10/0x10 [ 1830.000875] ___sys_sendmsg+0xf3/0x170 [ 1830.001308] ? sendmsg_copy_msghdr+0x160/0x160 [ 1830.001819] ? lock_downgrade+0x6d0/0x6d0 [ 1830.002273] ? find_held_lock+0x2c/0x110 [ 1830.002742] ? __fget_files+0x296/0x4c0 [ 1830.003185] ? __fget_light+0xea/0x290 [ 1830.003614] __sys_sendmsg+0xe5/0x1b0 [ 1830.004033] ? __sys_sendmsg_sock+0x40/0x40 [ 1830.004520] ? rcu_read_lock_any_held+0x75/0xa0 [ 1830.005042] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1830.005611] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1830.006183] ? trace_hardirqs_on+0x5b/0x180 [ 1830.006655] do_syscall_64+0x33/0x40 [ 1830.007061] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1830.007626] RIP: 0033:0x7fd54fedeb19 [ 1830.008025] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1830.010030] RSP: 002b:00007fd54d433188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1830.010868] RAX: ffffffffffffffda RBX: 00007fd54fff2020 RCX: 00007fd54fedeb19 [ 1830.011651] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1830.012427] RBP: 00007fd54d4331d0 R08: 0000000000000000 R09: 0000000000000000 [ 1830.013182] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1830.013966] R13: 00007fff36540caf R14: 00007fd54d433300 R15: 0000000000022000 [ 1830.040152] FAULT_INJECTION: forcing a failure. [ 1830.040152] name failslab, interval 1, probability 0, space 0, times 0 [ 1830.042868] CPU: 0 PID: 11122 Comm: syz-executor.7 Not tainted 5.10.205 #1 [ 1830.044307] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1830.046037] Call Trace: [ 1830.046594] dump_stack+0x107/0x167 [ 1830.047354] should_fail.cold+0x5/0xa [ 1830.048151] ? copy_process+0x5d2/0x7800 [ 1830.049028] should_failslab+0x5/0x20 [ 1830.049831] kmem_cache_alloc_node+0x55/0x330 [ 1830.050795] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1830.051905] copy_process+0x5d2/0x7800 [ 1830.051932] ? stack_trace_save+0x8c/0xc0 [ 1830.051957] ? stack_trace_consume_entry+0x160/0x160 [ 1830.053111] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1830.053299] ? kasan_save_stack+0x32/0x40 [ 1830.056418] ? kasan_save_stack+0x1b/0x40 [ 1830.057296] ? create_io_worker+0xe8/0x620 [ 1830.058189] ? io_wqe_enqueue+0x69e/0xbe0 [ 1830.059084] ? __cleanup_sighand+0xb0/0xb0 [ 1830.059987] ? __lockdep_reset_lock+0x180/0x180 [ 1830.060983] ? lock_acquire+0x197/0x470 [ 1830.061824] ? create_object.isra.0+0x3ad/0xa20 [ 1830.062834] ? lock_release+0x680/0x680 [ 1830.063680] ? find_held_lock+0x2c/0x110 [ 1830.064556] ? io_wqe_dec_running+0x220/0x220 [ 1830.065510] create_io_thread+0xb6/0xf0 [ 1830.066382] ? pidfd_pid+0x90/0x90 [ 1830.067138] ? mark_held_locks+0x9e/0xe0 [ 1830.068018] ? io_wqe_dec_running+0x220/0x220 [ 1830.068977] ? __init_swait_queue_head+0xc6/0x150 [ 1830.070013] create_io_worker+0x23a/0x620 [ 1830.070907] io_wqe_enqueue+0x69e/0xbe0 [ 1830.071766] ? create_worker_cb+0x260/0x260 [ 1830.072691] ? io_queue_async_work+0x1a8/0x4f0 [ 1830.073675] io_queue_async_work+0x26b/0x4f0 [ 1830.074628] ? __io_queue_sqe+0x2db/0x9d0 [ 1830.075520] __io_queue_sqe+0x5cc/0x9d0 [ 1830.076374] ? io_issue_sqe+0x7700/0x7700 [ 1830.077265] ? io_poll_queue_proc+0x50/0x50 [ 1830.078202] io_submit_sqes+0x4461/0x85c0 [ 1830.079135] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1830.080188] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1830.081225] ? lock_downgrade+0x6d0/0x6d0 [ 1830.082099] ? find_held_lock+0x2c/0x110 [ 1830.082980] ? io_submit_sqes+0x85c0/0x85c0 [ 1830.083902] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1830.084939] ? wait_for_completion_io+0x270/0x270 [ 1830.085963] ? rcu_read_lock_any_held+0x75/0xa0 [ 1830.086975] ? vfs_write+0x354/0xa70 [ 1830.087768] ? fput_many+0x2f/0x1a0 [ 1830.088551] ? ksys_write+0x1a9/0x260 [ 1830.089382] ? __ia32_sys_read+0xb0/0xb0 [ 1830.090264] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1830.091383] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1830.092497] do_syscall_64+0x33/0x40 [ 1830.093288] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1830.094405] RIP: 0033:0x7f2b60e93b19 [ 1830.095194] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1830.099136] RSP: 002b:00007f2b5e409188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1830.100746] RAX: ffffffffffffffda RBX: 00007f2b60fa6f60 RCX: 00007f2b60e93b19 [ 1830.102280] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1830.103812] RBP: 00007f2b5e4091d0 R08: 0000000000000000 R09: 0000000000000000 [ 1830.105342] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1830.106891] R13: 00007ffffc42e53f R14: 00007f2b5e409300 R15: 0000000000022000 [ 1830.108451] CPU: 1 PID: 11127 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1830.109260] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1830.110188] Call Trace: [ 1830.110500] dump_stack+0x107/0x167 [ 1830.110918] sysfs_warn_dup.cold+0x1c/0x29 [ 1830.111386] sysfs_do_create_link_sd+0x122/0x140 [ 1830.111914] sysfs_create_link+0x5f/0xc0 [ 1830.112366] device_add+0x703/0x1c50 [ 1830.112782] ? devlink_add_symlinks+0x970/0x970 [ 1830.113275] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1830.113864] wiphy_register+0x1da6/0x2850 [ 1830.114325] ? wiphy_unregister+0xb90/0xb90 [ 1830.114806] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1830.115390] ? ieee80211_register_hw+0x238b/0x38b0 [ 1830.115932] ? ieee80211_register_hw+0x239f/0x38b0 [ 1830.116451] ieee80211_register_hw+0x23c5/0x38b0 [ 1830.116986] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1830.117496] ? net_generic+0xdb/0x2b0 [ 1830.117925] ? lockdep_init_map_type+0x2c7/0x780 [ 1830.118439] ? memset+0x20/0x50 [ 1830.118806] ? __hrtimer_init+0x12c/0x270 [ 1830.119248] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1830.119816] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1830.120317] ? hwsim_new_radio_nl+0x967/0x1080 [ 1830.120825] ? memcpy+0x39/0x60 [ 1830.121182] hwsim_new_radio_nl+0x991/0x1080 [ 1830.121672] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1830.122236] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1830.122978] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1830.123667] genl_family_rcv_msg_doit+0x22d/0x330 [ 1830.124203] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1830.124931] ? cap_capable+0x1cd/0x230 [ 1830.125377] ? ns_capable+0xe2/0x110 [ 1830.125794] genl_rcv_msg+0x33c/0x5a0 [ 1830.126198] ? genl_get_cmd+0x480/0x480 [ 1830.126658] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1830.127205] ? genl_get_cmd+0x480/0x480 [ 1830.127652] netlink_rcv_skb+0x14b/0x430 [ 1830.128083] ? genl_get_cmd+0x480/0x480 [ 1830.128529] ? netlink_ack+0xab0/0xab0 [ 1830.128951] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1830.129457] ? is_vmalloc_addr+0x7b/0xb0 [ 1830.129894] genl_rcv+0x24/0x40 [ 1830.130257] netlink_unicast+0x549/0x7f0 [ 1830.130703] ? netlink_attachskb+0x870/0x870 [ 1830.131167] ? __virt_addr_valid+0x128/0x350 [ 1830.131640] netlink_sendmsg+0x90f/0xdf0 [ 1830.132093] ? netlink_unicast+0x7f0/0x7f0 [ 1830.132549] ? netlink_unicast+0x7f0/0x7f0 [ 1830.133014] __sock_sendmsg+0x154/0x190 [ 1830.133439] ____sys_sendmsg+0x70d/0x870 [ 1830.133889] ? sock_write_iter+0x3d0/0x3d0 [ 1830.134348] ? do_recvmmsg+0x6d0/0x6d0 [ 1830.134781] ? perf_trace_lock+0xac/0x490 [ 1830.135225] ? __lockdep_reset_lock+0x180/0x180 [ 1830.135737] ? perf_trace_lock+0xac/0x490 [ 1830.136178] ? SOFTIRQ_verbose+0x10/0x10 [ 1830.136638] ___sys_sendmsg+0xf3/0x170 [ 1830.137056] ? sendmsg_copy_msghdr+0x160/0x160 [ 1830.137563] ? lock_downgrade+0x6d0/0x6d0 [ 1830.138009] ? find_held_lock+0x2c/0x110 [ 1830.138484] ? __fget_files+0x296/0x4c0 [ 1830.138916] ? __fget_light+0xea/0x290 [ 1830.139357] __sys_sendmsg+0xe5/0x1b0 [ 1830.139766] ? __sys_sendmsg_sock+0x40/0x40 [ 1830.140262] ? rcu_read_lock_any_held+0x75/0xa0 [ 1830.140783] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1830.141369] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1830.141944] ? trace_hardirqs_on+0x5b/0x180 [ 1830.142424] do_syscall_64+0x33/0x40 [ 1830.142822] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1830.143386] RIP: 0033:0x7fd54fedeb19 [ 1830.143791] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1830.145844] RSP: 002b:00007fd54d433188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1830.146657] RAX: ffffffffffffffda RBX: 00007fd54fff2020 RCX: 00007fd54fedeb19 [ 1830.147410] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1830.148191] RBP: 00007fd54d4331d0 R08: 0000000000000000 R09: 0000000000000000 [ 1830.148960] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1830.149724] R13: 00007fff36540caf R14: 00007fd54d433300 R15: 0000000000022000 21:22:36 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 17) 21:22:36 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 16) 21:22:36 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 15) 21:22:36 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 18) [ 1830.242515] FAULT_INJECTION: forcing a failure. [ 1830.242515] name failslab, interval 1, probability 0, space 0, times 0 [ 1830.246135] CPU: 0 PID: 11133 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 1830.246288] FAULT_INJECTION: forcing a failure. [ 1830.246288] name failslab, interval 1, probability 0, space 0, times 0 [ 1830.247600] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1830.247609] Call Trace: [ 1830.247636] dump_stack+0x107/0x167 [ 1830.251891] should_fail.cold+0x5/0xa [ 1830.252689] ? copy_process+0x5d2/0x7800 [ 1830.253539] should_failslab+0x5/0x20 [ 1830.254358] kmem_cache_alloc_node+0x55/0x330 [ 1830.255315] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1830.256440] copy_process+0x5d2/0x7800 [ 1830.257276] ? stack_trace_save+0x8c/0xc0 [ 1830.258165] ? stack_trace_consume_entry+0x160/0x160 [ 1830.259267] ? kasan_save_stack+0x32/0x40 [ 1830.260158] ? kasan_save_stack+0x1b/0x40 [ 1830.261023] ? create_io_worker+0xe8/0x620 [ 1830.261923] ? io_wqe_enqueue+0x69e/0xbe0 [ 1830.262822] ? __cleanup_sighand+0xb0/0xb0 [ 1830.263725] ? __lockdep_reset_lock+0x180/0x180 [ 1830.264722] ? lock_acquire+0x197/0x470 [ 1830.265569] ? create_object.isra.0+0x3ad/0xa20 [ 1830.266578] ? lock_release+0x680/0x680 [ 1830.267430] ? find_held_lock+0x2c/0x110 [ 1830.268307] ? io_wqe_dec_running+0x220/0x220 [ 1830.269260] create_io_thread+0xb6/0xf0 [ 1830.270107] ? pidfd_pid+0x90/0x90 [ 1830.270867] ? mark_held_locks+0x9e/0xe0 [ 1830.271743] ? io_wqe_dec_running+0x220/0x220 [ 1830.272712] ? __init_swait_queue_head+0xc6/0x150 [ 1830.273748] create_io_worker+0x23a/0x620 [ 1830.274644] io_wqe_enqueue+0x69e/0xbe0 [ 1830.275499] ? create_worker_cb+0x260/0x260 [ 1830.276420] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1830.277386] ? io_prep_async_work+0x34e/0x550 [ 1830.278371] io_queue_async_work+0x26b/0x4f0 [ 1830.279321] __io_queue_sqe+0x5cc/0x9d0 [ 1830.280186] ? io_issue_sqe+0x7700/0x7700 [ 1830.281079] ? io_poll_queue_proc+0x50/0x50 [ 1830.282022] io_submit_sqes+0x4461/0x85c0 [ 1830.282953] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1830.284018] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1830.285042] ? lock_downgrade+0x6d0/0x6d0 [ 1830.285929] ? find_held_lock+0x2c/0x110 [ 1830.286809] ? io_submit_sqes+0x85c0/0x85c0 [ 1830.287742] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1830.288770] ? wait_for_completion_io+0x270/0x270 [ 1830.289808] ? rcu_read_lock_any_held+0x75/0xa0 [ 1830.290795] ? vfs_write+0x354/0xa70 [ 1830.291595] ? fput_many+0x2f/0x1a0 [ 1830.292367] ? ksys_write+0x1a9/0x260 [ 1830.293186] ? __ia32_sys_read+0xb0/0xb0 [ 1830.294026] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1830.295127] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1830.296223] do_syscall_64+0x33/0x40 [ 1830.297025] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1830.298105] RIP: 0033:0x7fd08b847b19 [ 1830.298933] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1830.302834] RSP: 002b:00007fd088dbd188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1830.304463] RAX: ffffffffffffffda RBX: 00007fd08b95af60 RCX: 00007fd08b847b19 [ 1830.305973] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1830.307496] RBP: 00007fd088dbd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1830.309012] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1830.310546] R13: 00007ffe1fec748f R14: 00007fd088dbd300 R15: 0000000000022000 [ 1830.312088] CPU: 1 PID: 11139 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1830.312901] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1830.313823] Call Trace: [ 1830.314118] dump_stack+0x107/0x167 [ 1830.314544] should_fail.cold+0x5/0xa [ 1830.314989] ? create_object.isra.0+0x3a/0xa20 [ 1830.315502] should_failslab+0x5/0x20 [ 1830.315608] FAULT_INJECTION: forcing a failure. [ 1830.315608] name failslab, interval 1, probability 0, space 0, times 0 [ 1830.315930] kmem_cache_alloc+0x5b/0x310 [ 1830.315947] create_object.isra.0+0x3a/0xa20 [ 1830.315958] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1830.315978] kmem_cache_alloc_node+0x169/0x330 [ 1830.320274] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1830.320862] copy_process+0x5d2/0x7800 [ 1830.321301] ? stack_trace_save+0x8c/0xc0 [ 1830.321756] ? stack_trace_consume_entry+0x160/0x160 [ 1830.322360] ? kasan_save_stack+0x32/0x40 [ 1830.322828] ? kasan_save_stack+0x1b/0x40 [ 1830.323304] ? create_io_worker+0xe8/0x620 [ 1830.323765] ? io_wqe_enqueue+0x69e/0xbe0 [ 1830.324249] ? __cleanup_sighand+0xb0/0xb0 [ 1830.324725] ? __lockdep_reset_lock+0x180/0x180 [ 1830.325254] ? lock_acquire+0x197/0x470 [ 1830.325693] ? create_object.isra.0+0x3ad/0xa20 [ 1830.326235] ? lock_release+0x680/0x680 [ 1830.326686] ? find_held_lock+0x2c/0x110 [ 1830.327136] ? io_wqe_dec_running+0x220/0x220 [ 1830.327638] create_io_thread+0xb6/0xf0 [ 1830.328089] ? pidfd_pid+0x90/0x90 [ 1830.328481] ? mark_held_locks+0x9e/0xe0 [ 1830.328941] ? io_wqe_dec_running+0x220/0x220 [ 1830.329457] ? __init_swait_queue_head+0xc6/0x150 [ 1830.330009] create_io_worker+0x23a/0x620 [ 1830.330480] io_wqe_enqueue+0x69e/0xbe0 [ 1830.330949] ? create_worker_cb+0x260/0x260 [ 1830.331418] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1830.331931] ? io_prep_async_work+0x34e/0x550 [ 1830.332418] io_queue_async_work+0x26b/0x4f0 [ 1830.332902] __io_queue_sqe+0x5cc/0x9d0 [ 1830.333350] ? io_issue_sqe+0x7700/0x7700 [ 1830.333796] ? io_poll_queue_proc+0x50/0x50 [ 1830.334293] io_submit_sqes+0x4461/0x85c0 [ 1830.334764] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1830.335342] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1830.335867] ? lock_downgrade+0x6d0/0x6d0 [ 1830.336342] ? find_held_lock+0x2c/0x110 [ 1830.336777] ? io_submit_sqes+0x85c0/0x85c0 [ 1830.337280] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1830.337803] ? wait_for_completion_io+0x270/0x270 [ 1830.338362] ? rcu_read_lock_any_held+0x75/0xa0 [ 1830.338883] ? vfs_write+0x354/0xa70 [ 1830.339309] ? fput_many+0x2f/0x1a0 [ 1830.339719] ? ksys_write+0x1a9/0x260 [ 1830.340156] ? __ia32_sys_read+0xb0/0xb0 [ 1830.340604] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1830.341168] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1830.341753] do_syscall_64+0x33/0x40 [ 1830.342160] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1830.342745] RIP: 0033:0x7f369cad5b19 [ 1830.343152] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1830.345208] RSP: 002b:00007f369a04b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1830.346031] RAX: ffffffffffffffda RBX: 00007f369cbe8f60 RCX: 00007f369cad5b19 [ 1830.346834] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1830.347621] RBP: 00007f369a04b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1830.348431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1830.349247] R13: 00007ffcb9edce5f R14: 00007f369a04b300 R15: 0000000000022000 [ 1830.350136] CPU: 0 PID: 11132 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1830.351621] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1830.353124] FAULT_INJECTION: forcing a failure. [ 1830.353124] name failslab, interval 1, probability 0, space 0, times 0 [ 1830.353373] Call Trace: [ 1830.353396] dump_stack+0x107/0x167 [ 1830.355909] should_fail.cold+0x5/0xa [ 1830.356725] ? create_object.isra.0+0x3a/0xa20 [ 1830.357703] should_failslab+0x5/0x20 [ 1830.358520] kmem_cache_alloc+0x5b/0x310 [ 1830.359393] ? lock_acquire+0x197/0x470 [ 1830.360250] create_object.isra.0+0x3a/0xa20 [ 1830.361193] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1830.362285] kmem_cache_alloc_node_trace+0x16d/0x340 [ 1830.363372] create_io_worker+0xe8/0x620 [ 1830.364242] io_wqe_enqueue+0x69e/0xbe0 [ 1830.365104] ? create_worker_cb+0x260/0x260 [ 1830.366028] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1830.367012] ? io_prep_async_work+0x34e/0x550 [ 1830.367978] io_queue_async_work+0x26b/0x4f0 [ 1830.368925] __io_queue_sqe+0x5cc/0x9d0 [ 1830.369776] ? io_issue_sqe+0x7700/0x7700 [ 1830.370658] ? io_poll_queue_proc+0x50/0x50 [ 1830.371589] io_submit_sqes+0x4461/0x85c0 [ 1830.372494] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1830.373554] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1830.374590] ? lock_downgrade+0x6d0/0x6d0 [ 1830.375472] ? find_held_lock+0x2c/0x110 [ 1830.376333] ? io_submit_sqes+0x85c0/0x85c0 [ 1830.377266] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1830.378299] ? wait_for_completion_io+0x270/0x270 [ 1830.379334] ? rcu_read_lock_any_held+0x75/0xa0 [ 1830.380326] ? vfs_write+0x354/0xa70 [ 1830.381123] ? fput_many+0x2f/0x1a0 [ 1830.381901] ? ksys_write+0x1a9/0x260 [ 1830.382719] ? __ia32_sys_read+0xb0/0xb0 [ 1830.383589] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1830.384696] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1830.385806] do_syscall_64+0x33/0x40 [ 1830.386599] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1830.387679] RIP: 0033:0x7fd113b88b19 [ 1830.388474] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1830.392338] RSP: 002b:00007fd1110fe188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1830.393945] RAX: ffffffffffffffda RBX: 00007fd113c9bf60 RCX: 00007fd113b88b19 [ 1830.395456] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1830.396953] RBP: 00007fd1110fe1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1830.398458] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1830.399955] R13: 00007ffeed86c68f R14: 00007fd1110fe300 R15: 0000000000022000 [ 1830.401474] CPU: 1 PID: 11138 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 1830.402241] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1830.403145] Call Trace: [ 1830.403435] dump_stack+0x107/0x167 [ 1830.403845] should_fail.cold+0x5/0xa [ 1830.404264] ? create_io_worker+0xe8/0x620 [ 1830.404734] should_failslab+0x5/0x20 [ 1830.405152] kmem_cache_alloc_node_trace+0x59/0x340 [ 1830.405709] create_io_worker+0xe8/0x620 [ 1830.406163] io_wqe_enqueue+0x69e/0xbe0 21:22:36 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 2) [ 1830.406627] ? create_worker_cb+0x260/0x260 [ 1830.407310] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1830.407908] ? io_prep_async_work+0x34e/0x550 [ 1830.408414] io_queue_async_work+0x26b/0x4f0 [ 1830.408916] __io_queue_sqe+0x5cc/0x9d0 [ 1830.409353] ? io_issue_sqe+0x7700/0x7700 [ 1830.409820] ? io_poll_queue_proc+0x50/0x50 [ 1830.410286] io_submit_sqes+0x4461/0x85c0 [ 1830.410776] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1830.411317] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1830.411828] ? lock_downgrade+0x6d0/0x6d0 [ 1830.412287] ? find_held_lock+0x2c/0x110 [ 1830.412725] ? io_submit_sqes+0x85c0/0x85c0 [ 1830.413209] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1830.413733] ? wait_for_completion_io+0x270/0x270 [ 1830.414265] ? rcu_read_lock_any_held+0x75/0xa0 [ 1830.414779] ? vfs_write+0x354/0xa70 [ 1830.415193] ? fput_many+0x2f/0x1a0 [ 1830.415577] ? ksys_write+0x1a9/0x260 [ 1830.416007] ? __ia32_sys_read+0xb0/0xb0 [ 1830.416442] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1830.417034] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1830.417600] do_syscall_64+0x33/0x40 [ 1830.418012] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1830.418563] RIP: 0033:0x7f1a51fc5b19 [ 1830.418984] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1830.420911] RSP: 002b:00007f1a4f53b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1830.421751] RAX: ffffffffffffffda RBX: 00007f1a520d8f60 RCX: 00007f1a51fc5b19 [ 1830.422534] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1830.423323] RBP: 00007f1a4f53b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1830.424096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1830.424870] R13: 00007ffe3ce1c42f R14: 00007f1a4f53b300 R15: 0000000000022000 [ 1830.438346] FAULT_INJECTION: forcing a failure. [ 1830.438346] name failslab, interval 1, probability 0, space 0, times 0 [ 1830.440018] CPU: 1 PID: 11141 Comm: syz-executor.4 Not tainted 5.10.205 #1 [ 1830.440771] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1830.441670] Call Trace: [ 1830.441965] dump_stack+0x107/0x167 [ 1830.442380] should_fail.cold+0x5/0xa [ 1830.442789] ? create_object.isra.0+0x3a/0xa20 [ 1830.443283] should_failslab+0x5/0x20 [ 1830.443687] kmem_cache_alloc+0x5b/0x310 [ 1830.444124] create_object.isra.0+0x3a/0xa20 [ 1830.444595] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1830.445145] kmem_cache_alloc_bulk+0x168/0x320 [ 1830.445641] io_submit_sqes+0x6f76/0x85c0 [ 1830.446087] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1830.446625] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1830.447164] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1830.447685] ? lock_downgrade+0x6d0/0x6d0 [ 1830.448123] ? find_held_lock+0x2c/0x110 [ 1830.448567] ? io_submit_sqes+0x85c0/0x85c0 [ 1830.449045] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1830.449560] ? wait_for_completion_io+0x270/0x270 [ 1830.450097] ? rcu_read_lock_any_held+0x75/0xa0 [ 1830.450594] ? vfs_write+0x354/0xa70 [ 1830.451016] ? fput_many+0x2f/0x1a0 [ 1830.451421] ? ksys_write+0x1a9/0x260 [ 1830.451852] ? __ia32_sys_read+0xb0/0xb0 [ 1830.452303] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1830.452888] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1830.453462] do_syscall_64+0x33/0x40 [ 1830.453880] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1830.454475] RIP: 0033:0x7f65ffeffb19 [ 1830.454895] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1830.456914] RSP: 002b:00007f65fd475188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1830.457754] RAX: ffffffffffffffda RBX: 00007f6600012f60 RCX: 00007f65ffeffb19 [ 1830.458547] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1830.459331] RBP: 00007f65fd4751d0 R08: 0000000000000000 R09: 0000000000000000 [ 1830.460113] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1830.460890] R13: 00007ffddf3c20bf R14: 00007f65fd475300 R15: 0000000000022000 21:22:36 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 9) [ 1830.477028] FAULT_INJECTION: forcing a failure. [ 1830.477028] name failslab, interval 1, probability 0, space 0, times 0 [ 1830.478726] CPU: 1 PID: 11143 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1830.479476] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1830.480372] Call Trace: [ 1830.480659] dump_stack+0x107/0x167 [ 1830.481051] should_fail.cold+0x5/0xa [ 1830.481473] ? create_object.isra.0+0x3a/0xa20 [ 1830.481965] should_failslab+0x5/0x20 [ 1830.482387] kmem_cache_alloc+0x5b/0x310 [ 1830.482839] create_object.isra.0+0x3a/0xa20 [ 1830.483327] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1830.483880] kmem_cache_alloc_bulk+0x168/0x320 [ 1830.484386] io_submit_sqes+0x6f76/0x85c0 [ 1830.484843] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1830.485384] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1830.485924] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1830.486485] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1830.487067] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1830.487582] ? trace_hardirqs_on+0x5b/0x180 [ 1830.488059] ? io_submit_sqes+0x85c0/0x85c0 [ 1830.488554] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1830.489049] ? finish_task_switch+0x126/0x5d0 [ 1830.489565] ? finish_task_switch+0xef/0x5d0 [ 1830.490061] ? __switch_to+0x572/0xf70 [ 1830.490521] ? __switch_to_asm+0x3a/0x60 [ 1830.490967] ? __switch_to_asm+0x34/0x60 [ 1830.491414] ? __schedule+0x82c/0x1ea0 [ 1830.491858] ? io_schedule_timeout+0x140/0x140 [ 1830.492363] ? copy_kernel_to_fpregs+0x9e/0xe0 [ 1830.492875] ? trace_event_raw_event_x86_fpu+0x390/0x390 21:22:36 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 18) [ 1830.493468] ? ksys_write+0x1a9/0x260 [ 1830.494020] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1830.494612] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1830.495186] do_syscall_64+0x33/0x40 [ 1830.495593] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1830.496138] RIP: 0033:0x7fb1fd6f6b19 [ 1830.496549] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1830.498584] RSP: 002b:00007fb1fac6c188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1830.499465] RAX: ffffffffffffffda RBX: 00007fb1fd809f60 RCX: 00007fb1fd6f6b19 [ 1830.500287] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1830.501076] RBP: 00007fb1fac6c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1830.501870] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1830.502671] R13: 00007ffc06ae2c8f R14: 00007fb1fac6c300 R15: 0000000000022000 21:22:36 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 3) 21:22:36 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 10) [ 1830.553175] FAULT_INJECTION: forcing a failure. [ 1830.553175] name failslab, interval 1, probability 0, space 0, times 0 [ 1830.554947] CPU: 1 PID: 11149 Comm: syz-executor.4 Not tainted 5.10.205 #1 [ 1830.555684] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1830.556559] Call Trace: [ 1830.556868] dump_stack+0x107/0x167 [ 1830.557272] should_fail.cold+0x5/0xa [ 1830.557682] ? create_object.isra.0+0x3a/0xa20 [ 1830.558192] should_failslab+0x5/0x20 [ 1830.558616] kmem_cache_alloc+0x5b/0x310 [ 1830.559081] create_object.isra.0+0x3a/0xa20 [ 1830.559555] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1830.560104] kmem_cache_alloc_bulk+0x168/0x320 [ 1830.560598] io_submit_sqes+0x6f76/0x85c0 [ 1830.561043] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1830.561573] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1830.562102] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1830.562628] ? lock_downgrade+0x6d0/0x6d0 [ 1830.563082] ? find_held_lock+0x2c/0x110 [ 1830.563529] ? io_submit_sqes+0x85c0/0x85c0 [ 1830.564013] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1830.564534] ? wait_for_completion_io+0x270/0x270 [ 1830.565056] ? rcu_read_lock_any_held+0x75/0xa0 [ 1830.565549] ? vfs_write+0x354/0xa70 [ 1830.565948] ? fput_many+0x2f/0x1a0 [ 1830.566360] ? ksys_write+0x1a9/0x260 [ 1830.566787] ? __ia32_sys_read+0xb0/0xb0 [ 1830.567239] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1830.567819] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1830.568396] do_syscall_64+0x33/0x40 [ 1830.568805] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1830.569370] RIP: 0033:0x7f65ffeffb19 [ 1830.569777] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1830.571846] RSP: 002b:00007f65fd475188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1830.572699] RAX: ffffffffffffffda RBX: 00007f6600012f60 RCX: 00007f65ffeffb19 [ 1830.573504] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1830.574285] RBP: 00007f65fd4751d0 R08: 0000000000000000 R09: 0000000000000000 [ 1830.575081] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1830.575862] R13: 00007ffddf3c20bf R14: 00007f65fd475300 R15: 0000000000022000 [ 1830.576885] FAULT_INJECTION: forcing a failure. [ 1830.576885] name failslab, interval 1, probability 0, space 0, times 0 [ 1830.579742] CPU: 0 PID: 11145 Comm: syz-executor.7 Not tainted 5.10.205 #1 [ 1830.581212] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1830.582987] Call Trace: [ 1830.583555] dump_stack+0x107/0x167 [ 1830.584347] should_fail.cold+0x5/0xa [ 1830.585170] ? create_object.isra.0+0x3a/0xa20 [ 1830.585921] FAULT_INJECTION: forcing a failure. [ 1830.585921] name failslab, interval 1, probability 0, space 0, times 0 [ 1830.586148] ? create_object.isra.0+0x3a/0xa20 [ 1830.586176] should_failslab+0x5/0x20 [ 1830.589189] kmem_cache_alloc+0x5b/0x310 [ 1830.590064] ? copy_process+0x5d2/0x7800 [ 1830.590951] create_object.isra.0+0x3a/0xa20 [ 1830.591897] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1830.592993] kmem_cache_alloc_node+0x169/0x330 [ 1830.593981] copy_process+0x5d2/0x7800 [ 1830.594828] ? stack_trace_save+0x8c/0xc0 [ 1830.595724] ? stack_trace_consume_entry+0x160/0x160 [ 1830.596832] ? kasan_save_stack+0x32/0x40 [ 1830.597722] ? kasan_save_stack+0x1b/0x40 [ 1830.598629] ? create_io_worker+0xe8/0x620 [ 1830.599533] ? io_wqe_enqueue+0x69e/0xbe0 [ 1830.600429] ? __cleanup_sighand+0xb0/0xb0 [ 1830.601341] ? __lockdep_reset_lock+0x180/0x180 [ 1830.602349] ? lock_acquire+0x197/0x470 [ 1830.603213] ? create_object.isra.0+0x3ad/0xa20 [ 1830.604200] ? lock_release+0x680/0x680 [ 1830.605028] ? find_held_lock+0x2c/0x110 [ 1830.605888] ? io_wqe_dec_running+0x220/0x220 [ 1830.606844] create_io_thread+0xb6/0xf0 [ 1830.607680] ? pidfd_pid+0x90/0x90 [ 1830.608423] ? mark_held_locks+0x9e/0xe0 [ 1830.609275] ? io_wqe_dec_running+0x220/0x220 [ 1830.610236] ? __init_swait_queue_head+0xc6/0x150 [ 1830.611262] create_io_worker+0x23a/0x620 [ 1830.612145] io_wqe_enqueue+0x69e/0xbe0 [ 1830.612985] ? create_worker_cb+0x260/0x260 [ 1830.613906] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1830.614872] ? io_prep_async_work+0x34e/0x550 [ 1830.615843] io_queue_async_work+0x26b/0x4f0 [ 1830.616797] __io_queue_sqe+0x5cc/0x9d0 [ 1830.617662] ? io_issue_sqe+0x7700/0x7700 [ 1830.618566] ? io_poll_queue_proc+0x50/0x50 [ 1830.619513] io_submit_sqes+0x4461/0x85c0 [ 1830.620440] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1830.621510] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1830.622541] ? lock_downgrade+0x6d0/0x6d0 [ 1830.623420] ? find_held_lock+0x2c/0x110 [ 1830.624294] ? io_submit_sqes+0x85c0/0x85c0 [ 1830.625229] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1830.626260] ? wait_for_completion_io+0x270/0x270 [ 1830.627308] ? rcu_read_lock_any_held+0x75/0xa0 [ 1830.628296] ? vfs_write+0x354/0xa70 [ 1830.629101] ? fput_many+0x2f/0x1a0 [ 1830.629878] ? ksys_write+0x1a9/0x260 [ 1830.630716] ? __ia32_sys_read+0xb0/0xb0 [ 1830.631578] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1830.632699] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1830.633799] do_syscall_64+0x33/0x40 [ 1830.634603] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1830.635692] RIP: 0033:0x7f2b60e93b19 [ 1830.636478] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1830.640356] RSP: 002b:00007f2b5e409188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1830.641977] RAX: ffffffffffffffda RBX: 00007f2b60fa6f60 RCX: 00007f2b60e93b19 [ 1830.643485] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1830.645015] RBP: 00007f2b5e4091d0 R08: 0000000000000000 R09: 0000000000000000 [ 1830.646535] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1830.648066] R13: 00007ffffc42e53f R14: 00007f2b5e409300 R15: 0000000000022000 [ 1830.649615] CPU: 1 PID: 11151 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1830.650411] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1830.651338] Call Trace: [ 1830.651632] dump_stack+0x107/0x167 [ 1830.652041] should_fail.cold+0x5/0xa [ 1830.652441] ? create_object.isra.0+0x3a/0xa20 [ 1830.652955] should_failslab+0x5/0x20 [ 1830.653355] kmem_cache_alloc+0x5b/0x310 [ 1830.653807] create_object.isra.0+0x3a/0xa20 [ 1830.654276] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1830.654855] kmem_cache_alloc_bulk+0x168/0x320 [ 1830.655343] io_submit_sqes+0x6f76/0x85c0 [ 1830.655806] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1830.656334] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1830.656877] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1830.657412] ? lock_downgrade+0x6d0/0x6d0 [ 1830.657864] ? find_held_lock+0x2c/0x110 [ 1830.658307] ? io_submit_sqes+0x85c0/0x85c0 [ 1830.658796] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1830.659339] ? wait_for_completion_io+0x270/0x270 [ 1830.659879] ? rcu_read_lock_any_held+0x75/0xa0 21:22:36 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) (fail_nth: 7) [ 1830.660478] ? vfs_write+0x354/0xa70 [ 1830.660948] ? fput_many+0x2f/0x1a0 [ 1830.661347] ? ksys_write+0x1a9/0x260 [ 1830.661765] ? __ia32_sys_read+0xb0/0xb0 [ 1830.662223] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1830.662813] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1830.663380] do_syscall_64+0x33/0x40 [ 1830.663790] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1830.664346] RIP: 0033:0x7fb1fd6f6b19 [ 1830.664759] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1830.666779] RSP: 002b:00007fb1fac6c188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1830.667605] RAX: ffffffffffffffda RBX: 00007fb1fd809f60 RCX: 00007fb1fd6f6b19 [ 1830.668392] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1830.669186] RBP: 00007fb1fac6c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1830.669959] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1830.670757] R13: 00007ffc06ae2c8f R14: 00007fb1fac6c300 R15: 0000000000022000 [ 1830.703490] FAULT_INJECTION: forcing a failure. [ 1830.703490] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1830.707392] CPU: 0 PID: 11153 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1830.708851] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1830.710647] Call Trace: [ 1830.711207] dump_stack+0x107/0x167 [ 1830.711989] should_fail.cold+0x5/0xa [ 1830.712810] _copy_from_iter_full+0x201/0xa60 [ 1830.713748] ? __virt_addr_valid+0x128/0x350 [ 1830.714678] ? __check_object_size+0x319/0x440 [ 1830.715665] netlink_sendmsg+0x879/0xdf0 [ 1830.716529] ? netlink_unicast+0x7f0/0x7f0 [ 1830.717441] ? netlink_unicast+0x7f0/0x7f0 [ 1830.718378] __sock_sendmsg+0x154/0x190 [ 1830.719228] ____sys_sendmsg+0x70d/0x870 [ 1830.720094] ? sock_write_iter+0x3d0/0x3d0 [ 1830.720996] ? do_recvmmsg+0x6d0/0x6d0 [ 1830.721826] ? perf_trace_lock+0xac/0x490 [ 1830.722746] ? __lockdep_reset_lock+0x180/0x180 [ 1830.723733] ___sys_sendmsg+0xf3/0x170 [ 1830.724552] ? sendmsg_copy_msghdr+0x160/0x160 [ 1830.725528] ? lock_downgrade+0x6d0/0x6d0 [ 1830.726417] ? find_held_lock+0x2c/0x110 [ 1830.727277] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1830.728363] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1830.729483] ? trace_hardirqs_on+0x5b/0x180 [ 1830.730387] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1830.731522] ? sockfd_lookup_light+0x73/0x180 [ 1830.732457] ? sockfd_lookup_light+0x9c/0x180 [ 1830.733419] __sys_sendmsg+0xe5/0x1b0 [ 1830.734206] ? __sys_sendmsg_sock+0x40/0x40 [ 1830.735148] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1830.736239] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1830.737333] ? trace_hardirqs_on+0x5b/0x180 [ 1830.738235] do_syscall_64+0x33/0x40 [ 1830.739040] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1830.740104] RIP: 0033:0x7fd54fedeb19 [ 1830.740880] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1830.744715] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1830.746296] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 1830.747790] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1830.749271] RBP: 00007fd54d4541d0 R08: 0000000000000000 R09: 0000000000000000 [ 1830.750775] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1830.752253] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 21:22:51 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 16) 21:22:51 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 19) 21:22:51 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) (fail_nth: 8) 21:22:51 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 18) 21:22:51 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 4) 21:22:51 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 19) 21:22:51 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 11) 21:22:51 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 17) [ 1845.677556] FAULT_INJECTION: forcing a failure. [ 1845.677556] name failslab, interval 1, probability 0, space 0, times 0 [ 1845.680705] CPU: 1 PID: 11169 Comm: syz-executor.4 Not tainted 5.10.205 #1 [ 1845.682124] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1845.683834] Call Trace: [ 1845.684378] dump_stack+0x107/0x167 [ 1845.685131] should_fail.cold+0x5/0xa [ 1845.685675] FAULT_INJECTION: forcing a failure. [ 1845.685675] name failslab, interval 1, probability 0, space 0, times 0 [ 1845.685909] ? create_object.isra.0+0x3a/0xa20 [ 1845.685934] should_failslab+0x5/0x20 [ 1845.685953] kmem_cache_alloc+0x5b/0x310 [ 1845.685984] ? mark_held_locks+0x9e/0xe0 [ 1845.691560] create_object.isra.0+0x3a/0xa20 [ 1845.692451] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1845.693483] kmem_cache_alloc_bulk+0x168/0x320 [ 1845.694420] io_submit_sqes+0x6f76/0x85c0 [ 1845.695290] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1845.696296] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1845.697307] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1845.698287] ? lock_downgrade+0x6d0/0x6d0 [ 1845.699131] ? find_held_lock+0x2c/0x110 [ 1845.699962] ? io_submit_sqes+0x85c0/0x85c0 [ 1845.700844] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1845.701853] ? wait_for_completion_io+0x270/0x270 [ 1845.702846] ? rcu_read_lock_any_held+0x75/0xa0 [ 1845.703781] ? vfs_write+0x354/0xa70 [ 1845.704538] ? fput_many+0x2f/0x1a0 [ 1845.705281] ? ksys_write+0x1a9/0x260 [ 1845.706052] ? __ia32_sys_read+0xb0/0xb0 [ 1845.706901] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1845.707957] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1845.709004] do_syscall_64+0x33/0x40 [ 1845.709752] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1845.710800] RIP: 0033:0x7f65ffeffb19 [ 1845.711551] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1845.715259] RSP: 002b:00007f65fd475188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1845.716790] RAX: ffffffffffffffda RBX: 00007f6600012f60 RCX: 00007f65ffeffb19 [ 1845.718231] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1845.719682] RBP: 00007f65fd4751d0 R08: 0000000000000000 R09: 0000000000000000 [ 1845.721119] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1845.722560] R13: 00007ffddf3c20bf R14: 00007f65fd475300 R15: 0000000000022000 [ 1845.724074] CPU: 0 PID: 11176 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1845.725553] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1845.727297] Call Trace: [ 1845.727871] dump_stack+0x107/0x167 [ 1845.728654] should_fail.cold+0x5/0xa [ 1845.728695] FAULT_INJECTION: forcing a failure. [ 1845.728695] name failslab, interval 1, probability 0, space 0, times 0 [ 1845.729456] ? io_connect+0x3b1/0x610 [ 1845.729483] should_failslab+0x5/0x20 [ 1845.729510] __kmalloc+0x72/0x390 [ 1845.733950] io_connect+0x3b1/0x610 [ 1845.734723] ? io_prep_rw+0x1050/0x1050 [ 1845.735581] ? __lock_acquire+0xbb1/0x5b00 [ 1845.736474] io_issue_sqe+0x1611/0x7700 [ 1845.737314] ? perf_trace_lock+0xac/0x490 [ 1845.738180] ? SOFTIRQ_verbose+0x10/0x10 [ 1845.739043] ? __lockdep_reset_lock+0x180/0x180 [ 1845.740014] ? io_connect+0x610/0x610 [ 1845.740818] ? lock_acquire+0x197/0x470 [ 1845.741647] ? find_held_lock+0x2c/0x110 [ 1845.742524] ? __fget_files+0x26d/0x4c0 [ 1845.743359] ? lock_downgrade+0x6d0/0x6d0 [ 1845.744236] __io_queue_sqe+0x90/0x9d0 [ 1845.745060] ? io_issue_sqe+0x7700/0x7700 [ 1845.745950] io_submit_sqes+0x4461/0x85c0 [ 1845.746867] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1845.747932] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1845.748932] ? lock_downgrade+0x6d0/0x6d0 [ 1845.749786] ? find_held_lock+0x2c/0x110 [ 1845.750640] ? io_submit_sqes+0x85c0/0x85c0 [ 1845.751542] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1845.752542] ? wait_for_completion_io+0x270/0x270 [ 1845.753544] ? rcu_read_lock_any_held+0x75/0xa0 [ 1845.754520] ? vfs_write+0x354/0xa70 [ 1845.755298] ? fput_many+0x2f/0x1a0 [ 1845.756067] ? ksys_write+0x1a9/0x260 [ 1845.756859] ? __ia32_sys_read+0xb0/0xb0 [ 1845.757715] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1845.758814] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1845.759902] do_syscall_64+0x33/0x40 [ 1845.760683] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1845.761750] RIP: 0033:0x7fb1fd6f6b19 [ 1845.762548] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1845.766382] RSP: 002b:00007fb1fac6c188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1845.767977] RAX: ffffffffffffffda RBX: 00007fb1fd809f60 RCX: 00007fb1fd6f6b19 [ 1845.769459] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1845.770955] RBP: 00007fb1fac6c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1845.772444] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1845.773947] R13: 00007ffc06ae2c8f R14: 00007fb1fac6c300 R15: 0000000000022000 [ 1845.775455] CPU: 1 PID: 11178 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1845.776865] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1845.778529] Call Trace: [ 1845.779069] dump_stack+0x107/0x167 [ 1845.779810] should_fail.cold+0x5/0xa [ 1845.780587] ? copy_process+0x5d2/0x7800 [ 1845.781421] should_failslab+0x5/0x20 [ 1845.782198] kmem_cache_alloc_node+0x55/0x330 [ 1845.783125] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1845.784196] copy_process+0x5d2/0x7800 [ 1845.784998] ? stack_trace_save+0x8c/0xc0 [ 1845.785840] ? stack_trace_consume_entry+0x160/0x160 [ 1845.786914] ? kasan_save_stack+0x32/0x40 [ 1845.787756] ? kasan_save_stack+0x1b/0x40 [ 1845.788592] ? create_io_worker+0xe8/0x620 [ 1845.789464] ? io_wqe_enqueue+0x69e/0xbe0 [ 1845.790317] ? __cleanup_sighand+0xb0/0xb0 [ 1845.791211] ? __lockdep_reset_lock+0x180/0x180 [ 1845.792164] ? lock_acquire+0x197/0x470 [ 1845.792972] ? create_object.isra.0+0x3ad/0xa20 [ 1845.793921] ? lock_release+0x680/0x680 [ 1845.794741] ? find_held_lock+0x2c/0x110 [ 1845.795575] ? io_wqe_dec_running+0x220/0x220 [ 1845.796480] create_io_thread+0xb6/0xf0 [ 1845.797287] ? pidfd_pid+0x90/0x90 [ 1845.798004] ? mark_held_locks+0x9e/0xe0 [ 1845.798840] ? io_wqe_dec_running+0x220/0x220 [ 1845.799760] ? __init_swait_queue_head+0xc6/0x150 [ 1845.800735] create_io_worker+0x23a/0x620 [ 1845.801577] io_wqe_enqueue+0x69e/0xbe0 [ 1845.802388] ? create_worker_cb+0x260/0x260 [ 1845.803278] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1845.804189] ? io_prep_async_work+0x34e/0x550 [ 1845.805096] io_queue_async_work+0x26b/0x4f0 [ 1845.805990] __io_queue_sqe+0x5cc/0x9d0 [ 1845.806811] ? io_issue_sqe+0x7700/0x7700 [ 1845.807048] FAULT_INJECTION: forcing a failure. [ 1845.807048] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1845.807632] ? io_poll_queue_proc+0x50/0x50 [ 1845.807669] io_submit_sqes+0x4461/0x85c0 [ 1845.807731] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1845.812775] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1845.813746] ? lock_downgrade+0x6d0/0x6d0 [ 1845.814587] ? find_held_lock+0x2c/0x110 [ 1845.815413] ? io_submit_sqes+0x85c0/0x85c0 [ 1845.816293] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1845.817272] ? wait_for_completion_io+0x270/0x270 [ 1845.818244] ? rcu_read_lock_any_held+0x75/0xa0 [ 1845.819186] ? vfs_write+0x354/0xa70 [ 1845.819941] ? fput_many+0x2f/0x1a0 [ 1845.820673] ? ksys_write+0x1a9/0x260 [ 1845.821441] ? __ia32_sys_read+0xb0/0xb0 [ 1845.822268] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1845.823324] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1845.824365] do_syscall_64+0x33/0x40 [ 1845.825117] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1845.826175] RIP: 0033:0x7fd113b88b19 [ 1845.826950] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1845.830619] RSP: 002b:00007fd1110fe188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1845.832146] RAX: ffffffffffffffda RBX: 00007fd113c9bf60 RCX: 00007fd113b88b19 [ 1845.833568] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1845.835006] RBP: 00007fd1110fe1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1845.836425] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1845.837852] R13: 00007ffeed86c68f R14: 00007fd1110fe300 R15: 0000000000022000 [ 1845.839342] CPU: 0 PID: 11166 Comm: syz-executor.7 Not tainted 5.10.205 #1 [ 1845.840427] FAULT_INJECTION: forcing a failure. [ 1845.840427] name failslab, interval 1, probability 0, space 0, times 0 [ 1845.840813] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1845.840822] Call Trace: [ 1845.840844] dump_stack+0x107/0x167 [ 1845.840874] should_fail.cold+0x5/0xa [ 1845.846969] __alloc_pages_nodemask+0x182/0x600 [ 1845.847958] ? lock_downgrade+0x6d0/0x6d0 [ 1845.848844] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1845.850126] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 1845.851250] ? kmem_cache_alloc_node+0x2bc/0x330 [ 1845.852270] copy_process+0x618/0x7800 [ 1845.853109] ? stack_trace_save+0x8c/0xc0 [ 1845.853992] ? stack_trace_consume_entry+0x160/0x160 [ 1845.855091] ? kasan_save_stack+0x32/0x40 [ 1845.855975] ? kasan_save_stack+0x1b/0x40 [ 1845.856855] ? create_io_worker+0xe8/0x620 [ 1845.857750] ? io_wqe_enqueue+0x69e/0xbe0 [ 1845.858658] ? __cleanup_sighand+0xb0/0xb0 [ 1845.859558] ? __lockdep_reset_lock+0x180/0x180 [ 1845.860551] ? lock_acquire+0x197/0x470 [ 1845.861399] ? create_object.isra.0+0x3ad/0xa20 [ 1845.862393] ? lock_release+0x680/0x680 [ 1845.863247] ? find_held_lock+0x2c/0x110 [ 1845.864119] ? io_wqe_dec_running+0x220/0x220 [ 1845.865073] create_io_thread+0xb6/0xf0 [ 1845.865918] ? pidfd_pid+0x90/0x90 [ 1845.866678] ? mark_held_locks+0x9e/0xe0 [ 1845.867551] ? io_wqe_dec_running+0x220/0x220 [ 1845.868521] ? __init_swait_queue_head+0xc6/0x150 [ 1845.869550] create_io_worker+0x23a/0x620 [ 1845.870436] io_wqe_enqueue+0x69e/0xbe0 [ 1845.871300] ? create_worker_cb+0x260/0x260 [ 1845.872219] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1845.873178] ? io_prep_async_work+0x34e/0x550 [ 1845.874135] io_queue_async_work+0x26b/0x4f0 [ 1845.875083] __io_queue_sqe+0x5cc/0x9d0 [ 1845.875931] ? io_issue_sqe+0x7700/0x7700 [ 1845.876810] ? io_poll_queue_proc+0x50/0x50 [ 1845.877740] io_submit_sqes+0x4461/0x85c0 [ 1845.878664] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1845.879726] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1845.880751] ? lock_downgrade+0x6d0/0x6d0 [ 1845.881626] ? find_held_lock+0x2c/0x110 [ 1845.882494] ? io_submit_sqes+0x85c0/0x85c0 [ 1845.883431] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1845.884460] ? wait_for_completion_io+0x270/0x270 [ 1845.885493] ? rcu_read_lock_any_held+0x75/0xa0 [ 1845.886474] ? vfs_write+0x354/0xa70 [ 1845.887278] ? fput_many+0x2f/0x1a0 [ 1845.888058] ? ksys_write+0x1a9/0x260 [ 1845.888862] ? __ia32_sys_read+0xb0/0xb0 [ 1845.889734] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1845.890853] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1845.891966] do_syscall_64+0x33/0x40 [ 1845.892752] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1845.893851] RIP: 0033:0x7f2b60e93b19 [ 1845.894643] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1845.898521] RSP: 002b:00007f2b5e409188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1845.900141] RAX: ffffffffffffffda RBX: 00007f2b60fa6f60 RCX: 00007f2b60e93b19 [ 1845.901650] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1845.903171] RBP: 00007f2b5e4091d0 R08: 0000000000000000 R09: 0000000000000000 [ 1845.904677] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1845.906184] R13: 00007ffffc42e53f R14: 00007f2b5e409300 R15: 0000000000022000 [ 1845.907737] CPU: 1 PID: 11175 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1845.909147] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1845.910822] Call Trace: [ 1845.911362] dump_stack+0x107/0x167 [ 1845.912105] should_fail.cold+0x5/0xa [ 1845.912885] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xdb/0x280 [ 1845.914190] should_failslab+0x5/0x20 [ 1845.914971] __kmalloc+0x72/0x390 [ 1845.915687] genl_family_rcv_msg_attrs_parse.constprop.0+0xdb/0x280 [ 1845.916995] genl_family_rcv_msg_doit+0xda/0x330 [ 1845.917954] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1845.919328] ? cap_capable+0x1cd/0x230 [ 1845.920122] ? security_capable+0x95/0xc0 [ 1845.920973] ? ns_capable+0xe2/0x110 [ 1845.921734] genl_rcv_msg+0x33c/0x5a0 [ 1845.922529] ? genl_get_cmd+0x480/0x480 [ 1845.923340] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1845.924385] ? lock_release+0x680/0x680 [ 1845.925183] ? __lockdep_reset_lock+0x180/0x180 [ 1845.926124] netlink_rcv_skb+0x14b/0x430 [ 1845.926964] ? genl_get_cmd+0x480/0x480 [ 1845.927773] ? netlink_ack+0xab0/0xab0 [ 1845.928605] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1845.929549] ? is_vmalloc_addr+0x7b/0xb0 [ 1845.930378] genl_rcv+0x24/0x40 [ 1845.931062] netlink_unicast+0x549/0x7f0 [ 1845.931887] ? netlink_attachskb+0x870/0x870 [ 1845.932774] ? __virt_addr_valid+0x128/0x350 [ 1845.933671] netlink_sendmsg+0x90f/0xdf0 [ 1845.934521] ? netlink_unicast+0x7f0/0x7f0 [ 1845.935393] ? netlink_unicast+0x7f0/0x7f0 [ 1845.936249] __sock_sendmsg+0x154/0x190 [ 1845.937057] ____sys_sendmsg+0x70d/0x870 [ 1845.937901] ? sock_write_iter+0x3d0/0x3d0 [ 1845.938764] ? do_recvmmsg+0x6d0/0x6d0 [ 1845.939562] ? perf_trace_lock+0xac/0x490 [ 1845.940401] ? mark_held_locks+0x9e/0xe0 [ 1845.941233] ? __lockdep_reset_lock+0x180/0x180 [ 1845.942177] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1845.943262] ___sys_sendmsg+0xf3/0x170 [ 1845.944054] ? sendmsg_copy_msghdr+0x160/0x160 [ 1845.944981] ? lock_downgrade+0x6d0/0x6d0 [ 1845.945820] ? find_held_lock+0x2c/0x110 [ 1845.946669] ? __fget_files+0x296/0x4c0 [ 1845.947490] ? __fget_light+0xea/0x290 [ 1845.948288] __sys_sendmsg+0xe5/0x1b0 [ 1845.949063] ? __sys_sendmsg_sock+0x40/0x40 [ 1845.949929] ? rcu_read_lock_any_held+0x75/0xa0 [ 1845.950908] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1845.951947] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1845.952985] ? trace_hardirqs_on+0x5b/0x180 [ 1845.953856] do_syscall_64+0x33/0x40 [ 1845.954629] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1845.955648] RIP: 0033:0x7fd54fedeb19 [ 1845.956415] FAULT_INJECTION: forcing a failure. [ 1845.956415] name failslab, interval 1, probability 0, space 0, times 0 [ 1845.956437] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1845.958604] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1845.958626] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 1845.958638] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1845.958649] RBP: 00007fd54d4541d0 R08: 0000000000000000 R09: 0000000000000000 [ 1845.958660] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1845.958671] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 [ 1845.974340] CPU: 0 PID: 11168 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 1845.975788] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1845.977515] Call Trace: [ 1845.978071] dump_stack+0x107/0x167 [ 1845.978851] should_fail.cold+0x5/0xa [ 1845.979655] ? create_object.isra.0+0x3a/0xa20 [ 1845.980628] should_failslab+0x5/0x20 [ 1845.981441] kmem_cache_alloc+0x5b/0x310 [ 1845.982316] create_object.isra.0+0x3a/0xa20 [ 1845.983270] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1845.984358] kmem_cache_alloc_node+0x169/0x330 [ 1845.985326] copy_process+0x5d2/0x7800 [ 1845.986164] ? stack_trace_save+0x8c/0xc0 [ 1845.987050] ? stack_trace_consume_entry+0x160/0x160 [ 1845.988140] ? kasan_save_stack+0x32/0x40 [ 1845.989005] ? kasan_save_stack+0x1b/0x40 [ 1845.989876] ? create_io_worker+0xe8/0x620 [ 1845.990798] ? io_wqe_enqueue+0x69e/0xbe0 [ 1845.991684] ? __cleanup_sighand+0xb0/0xb0 [ 1845.992582] ? __lockdep_reset_lock+0x180/0x180 [ 1845.993570] ? lock_acquire+0x197/0x470 [ 1845.994403] ? create_object.isra.0+0x3ad/0xa20 [ 1845.995410] ? lock_release+0x680/0x680 [ 1845.996246] ? find_held_lock+0x2c/0x110 [ 1845.997117] ? io_wqe_dec_running+0x220/0x220 [ 1845.998064] create_io_thread+0xb6/0xf0 [ 1845.998914] ? pidfd_pid+0x90/0x90 [ 1845.999677] ? mark_held_locks+0x9e/0xe0 [ 1846.000546] ? io_wqe_dec_running+0x220/0x220 [ 1846.001508] ? __init_swait_queue_head+0xc6/0x150 [ 1846.002534] create_io_worker+0x23a/0x620 [ 1846.003425] io_wqe_enqueue+0x69e/0xbe0 [ 1846.004282] ? create_worker_cb+0x260/0x260 [ 1846.005205] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1846.006153] ? io_prep_async_work+0x34e/0x550 [ 1846.007132] io_queue_async_work+0x26b/0x4f0 [ 1846.008076] __io_queue_sqe+0x5cc/0x9d0 [ 1846.008923] ? io_issue_sqe+0x7700/0x7700 [ 1846.009795] ? io_poll_queue_proc+0x50/0x50 [ 1846.010727] io_submit_sqes+0x4461/0x85c0 [ 1846.011658] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1846.012724] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1846.013761] ? io_submit_sqes+0x85c0/0x85c0 [ 1846.014694] ? recalibrate_cpu_khz+0x10/0x10 [ 1846.015401] FAULT_INJECTION: forcing a failure. [ 1846.015401] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1846.015623] ? ktime_get+0x158/0x1f0 [ 1846.015653] ? setup_APIC_eilvt+0x2f0/0x2f0 [ 1846.015682] ? clockevents_program_event+0x131/0x360 [ 1846.020715] ? tick_program_event+0xa8/0x140 [ 1846.021647] ? hrtimer_interrupt+0x771/0x9b0 [ 1846.022621] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1846.023730] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1846.024828] do_syscall_64+0x33/0x40 [ 1846.025614] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1846.026714] RIP: 0033:0x7fd08b847b19 [ 1846.027495] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1846.031381] RSP: 002b:00007fd088dbd188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1846.032990] RAX: ffffffffffffffda RBX: 00007fd08b95af60 RCX: 00007fd08b847b19 [ 1846.034487] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1846.035998] RBP: 00007fd088dbd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1846.037494] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1846.039015] R13: 00007ffe1fec748f R14: 00007fd088dbd300 R15: 0000000000022000 [ 1846.040553] CPU: 1 PID: 11174 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1846.041980] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1846.043681] Call Trace: [ 1846.044216] dump_stack+0x107/0x167 [ 1846.044960] should_fail.cold+0x5/0xa [ 1846.045770] __alloc_pages_nodemask+0x182/0x600 [ 1846.046797] ? lock_downgrade+0x6d0/0x6d0 [ 1846.047651] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1846.048884] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 1846.049942] ? kmem_cache_alloc_node+0x2bc/0x330 [ 1846.050899] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1846.051971] copy_process+0x618/0x7800 [ 1846.052774] ? stack_trace_save+0x8c/0xc0 [ 1846.053622] ? stack_trace_consume_entry+0x160/0x160 [ 1846.054677] ? kasan_save_stack+0x32/0x40 [ 1846.055518] ? kasan_save_stack+0x1b/0x40 [ 1846.056356] ? create_io_worker+0xe8/0x620 [ 1846.057210] ? io_wqe_enqueue+0x69e/0xbe0 [ 1846.058061] ? __cleanup_sighand+0xb0/0xb0 [ 1846.058940] ? __lockdep_reset_lock+0x180/0x180 [ 1846.059882] ? lock_acquire+0x197/0x470 [ 1846.060688] ? create_object.isra.0+0x3ad/0xa20 [ 1846.061637] ? lock_release+0x680/0x680 [ 1846.062439] ? find_held_lock+0x2c/0x110 [ 1846.063278] ? io_wqe_dec_running+0x220/0x220 [ 1846.064186] create_io_thread+0xb6/0xf0 [ 1846.064994] ? pidfd_pid+0x90/0x90 [ 1846.065715] ? mark_held_locks+0x9e/0xe0 [ 1846.066559] ? io_wqe_dec_running+0x220/0x220 [ 1846.067488] ? __init_swait_queue_head+0xc6/0x150 [ 1846.068466] create_io_worker+0x23a/0x620 [ 1846.069311] io_wqe_enqueue+0x69e/0xbe0 [ 1846.070120] ? create_worker_cb+0x260/0x260 [ 1846.071006] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1846.071919] ? io_prep_async_work+0x34e/0x550 [ 1846.072837] io_queue_async_work+0x26b/0x4f0 [ 1846.073740] __io_queue_sqe+0x5cc/0x9d0 [ 1846.074556] ? io_issue_sqe+0x7700/0x7700 [ 1846.075395] ? io_poll_queue_proc+0x50/0x50 [ 1846.076287] io_submit_sqes+0x4461/0x85c0 [ 1846.077163] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1846.078171] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1846.079170] ? lock_downgrade+0x6d0/0x6d0 [ 1846.080005] ? find_held_lock+0x2c/0x110 [ 1846.080832] ? io_submit_sqes+0x85c0/0x85c0 [ 1846.081716] ? __mutex_unlock_slowpath+0xe1/0x600 21:22:52 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 18) [ 1846.082704] ? wait_for_completion_io+0x270/0x270 [ 1846.083871] ? rcu_read_lock_any_held+0x75/0xa0 [ 1846.084828] ? vfs_write+0x354/0xa70 [ 1846.085593] ? fput_many+0x2f/0x1a0 21:22:52 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 5) [ 1846.086340] ? ksys_write+0x1a9/0x260 [ 1846.087409] ? __ia32_sys_read+0xb0/0xb0 [ 1846.088254] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1846.089320] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1846.090376] do_syscall_64+0x33/0x40 [ 1846.091152] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1846.092198] RIP: 0033:0x7f369cad5b19 [ 1846.092966] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1846.096690] RSP: 002b:00007f369a04b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1846.098238] RAX: ffffffffffffffda RBX: 00007f369cbe8f60 RCX: 00007f369cad5b19 [ 1846.099705] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1846.101152] RBP: 00007f369a04b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1846.102609] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1846.104067] R13: 00007ffcb9edce5f R14: 00007f369a04b300 R15: 0000000000022000 [ 1846.126126] FAULT_INJECTION: forcing a failure. [ 1846.126126] name failslab, interval 1, probability 0, space 0, times 0 [ 1846.129244] CPU: 1 PID: 11177 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 1846.130689] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1846.132387] Call Trace: [ 1846.132941] dump_stack+0x107/0x167 [ 1846.133705] should_fail.cold+0x5/0xa [ 1846.134523] ? create_object.isra.0+0x3a/0xa20 [ 1846.135481] should_failslab+0x5/0x20 [ 1846.136261] kmem_cache_alloc+0x5b/0x310 [ 1846.137099] create_object.isra.0+0x3a/0xa20 [ 1846.137997] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1846.139052] kmem_cache_alloc_node_trace+0x16d/0x340 [ 1846.140096] create_io_worker+0xe8/0x620 [ 1846.140935] io_wqe_enqueue+0x69e/0xbe0 [ 1846.141756] ? create_worker_cb+0x260/0x260 [ 1846.142654] ? io_wq_enqueue+0xf/0x60 [ 1846.143434] ? io_wq_enqueue+0x20/0x60 [ 1846.144243] io_queue_async_work+0x26b/0x4f0 [ 1846.145151] __io_queue_sqe+0x5cc/0x9d0 [ 1846.145974] ? io_issue_sqe+0x7700/0x7700 [ 1846.146843] ? io_poll_queue_proc+0x50/0x50 [ 1846.147745] io_submit_sqes+0x4461/0x85c0 [ 1846.148633] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1846.149655] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1846.150660] ? lock_downgrade+0x6d0/0x6d0 [ 1846.151507] ? find_held_lock+0x2c/0x110 [ 1846.152347] ? io_submit_sqes+0x85c0/0x85c0 [ 1846.153248] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1846.154238] ? wait_for_completion_io+0x270/0x270 [ 1846.155237] ? rcu_read_lock_any_held+0x75/0xa0 [ 1846.156184] ? vfs_write+0x354/0xa70 [ 1846.156958] ? fput_many+0x2f/0x1a0 [ 1846.157722] ? ksys_write+0x1a9/0x260 [ 1846.158519] ? __ia32_sys_read+0xb0/0xb0 [ 1846.159368] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1846.160455] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1846.161519] do_syscall_64+0x33/0x40 [ 1846.162296] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1846.163363] RIP: 0033:0x7f1a51fc5b19 [ 1846.164136] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1846.167927] RSP: 002b:00007f1a4f53b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1846.169313] FAULT_INJECTION: forcing a failure. [ 1846.169313] name failslab, interval 1, probability 0, space 0, times 0 [ 1846.169507] RAX: ffffffffffffffda RBX: 00007f1a520d8f60 RCX: 00007f1a51fc5b19 [ 1846.169531] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1846.174807] RBP: 00007f1a4f53b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1846.176289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1846.177752] R13: 00007ffe3ce1c42f R14: 00007f1a4f53b300 R15: 0000000000022000 [ 1846.179275] CPU: 0 PID: 11183 Comm: syz-executor.4 Not tainted 5.10.205 #1 [ 1846.180744] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1846.182464] Call Trace: [ 1846.183028] dump_stack+0x107/0x167 [ 1846.183796] should_fail.cold+0x5/0xa [ 1846.184594] ? create_object.isra.0+0x3a/0xa20 [ 1846.185549] should_failslab+0x5/0x20 [ 1846.186339] kmem_cache_alloc+0x5b/0x310 [ 1846.187193] ? mark_held_locks+0x9e/0xe0 [ 1846.188042] create_object.isra.0+0x3a/0xa20 [ 1846.188956] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1846.190016] kmem_cache_alloc_bulk+0x168/0x320 [ 1846.190990] io_submit_sqes+0x6f76/0x85c0 [ 1846.191861] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1846.192889] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1846.193916] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1846.194924] ? lock_downgrade+0x6d0/0x6d0 [ 1846.195769] ? find_held_lock+0x2c/0x110 [ 1846.196613] ? io_submit_sqes+0x85c0/0x85c0 [ 1846.197544] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1846.198551] ? wait_for_completion_io+0x270/0x270 [ 1846.199551] ? rcu_read_lock_any_held+0x75/0xa0 [ 1846.200502] ? vfs_write+0x354/0xa70 [ 1846.201277] ? fput_many+0x2f/0x1a0 [ 1846.202035] ? ksys_write+0x1a9/0x260 [ 1846.202842] ? __ia32_sys_read+0xb0/0xb0 [ 1846.203697] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1846.204782] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1846.205859] do_syscall_64+0x33/0x40 [ 1846.206642] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1846.207705] RIP: 0033:0x7f65ffeffb19 [ 1846.208478] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1846.212317] RSP: 002b:00007f65fd475188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1846.213914] RAX: ffffffffffffffda RBX: 00007f6600012f60 RCX: 00007f65ffeffb19 [ 1846.215404] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1846.216894] RBP: 00007f65fd4751d0 R08: 0000000000000000 R09: 0000000000000000 [ 1846.218382] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1846.219884] R13: 00007ffddf3c20bf R14: 00007f65fd475300 R15: 0000000000022000 [ 1846.259443] FAULT_INJECTION: forcing a failure. [ 1846.259443] name failslab, interval 1, probability 0, space 0, times 0 [ 1846.262231] CPU: 0 PID: 11182 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1846.263711] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1846.265432] Call Trace: [ 1846.265982] dump_stack+0x107/0x167 [ 1846.266756] should_fail.cold+0x5/0xa [ 1846.267551] ? create_object.isra.0+0x3a/0xa20 [ 1846.268507] should_failslab+0x5/0x20 [ 1846.269299] kmem_cache_alloc+0x5b/0x310 [ 1846.270158] create_object.isra.0+0x3a/0xa20 [ 1846.271082] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1846.272145] kmem_cache_alloc_node+0x169/0x330 [ 1846.273107] copy_process+0x5d2/0x7800 [ 1846.273926] ? stack_trace_save+0x8c/0xc0 [ 1846.274805] ? stack_trace_consume_entry+0x160/0x160 [ 1846.275879] ? kasan_save_stack+0x32/0x40 [ 1846.276739] ? kasan_save_stack+0x1b/0x40 [ 1846.277600] ? create_io_worker+0xe8/0x620 [ 1846.278477] ? io_wqe_enqueue+0x69e/0xbe0 [ 1846.279354] ? __cleanup_sighand+0xb0/0xb0 [ 1846.280235] ? __lockdep_reset_lock+0x180/0x180 [ 1846.281204] ? lock_acquire+0x197/0x470 [ 1846.282032] ? create_object.isra.0+0x3ad/0xa20 [ 1846.283016] ? lock_release+0x680/0x680 [ 1846.283842] ? find_held_lock+0x2c/0x110 [ 1846.284698] ? io_wqe_dec_running+0x220/0x220 [ 1846.285646] create_io_thread+0xb6/0xf0 [ 1846.286484] ? pidfd_pid+0x90/0x90 [ 1846.287251] ? mark_held_locks+0x9e/0xe0 [ 1846.288099] ? io_wqe_dec_running+0x220/0x220 [ 1846.289050] ? __init_swait_queue_head+0xc6/0x150 [ 1846.290060] create_io_worker+0x23a/0x620 [ 1846.290947] io_wqe_enqueue+0x69e/0xbe0 [ 1846.291795] ? create_worker_cb+0x260/0x260 [ 1846.292698] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1846.293649] ? io_prep_async_work+0x34e/0x550 [ 1846.294610] io_queue_async_work+0x26b/0x4f0 [ 1846.295537] __io_queue_sqe+0x5cc/0x9d0 [ 1846.296385] ? io_issue_sqe+0x7700/0x7700 [ 1846.297248] ? io_poll_queue_proc+0x50/0x50 [ 1846.298171] io_submit_sqes+0x4461/0x85c0 [ 1846.299093] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1846.300132] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1846.301137] ? lock_downgrade+0x6d0/0x6d0 [ 1846.302000] ? find_held_lock+0x2c/0x110 [ 1846.302864] ? io_submit_sqes+0x85c0/0x85c0 [ 1846.303773] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1846.304781] ? wait_for_completion_io+0x270/0x270 [ 1846.305789] ? rcu_read_lock_any_held+0x75/0xa0 [ 1846.306772] ? vfs_write+0x354/0xa70 [ 1846.307551] ? fput_many+0x2f/0x1a0 [ 1846.308309] ? ksys_write+0x1a9/0x260 [ 1846.309099] ? __ia32_sys_read+0xb0/0xb0 [ 1846.309948] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1846.311039] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1846.312118] do_syscall_64+0x33/0x40 [ 1846.312891] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1846.313951] RIP: 0033:0x7fd113b88b19 [ 1846.314737] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1846.318540] RSP: 002b:00007fd1110fe188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1846.320119] RAX: ffffffffffffffda RBX: 00007fd113c9bf60 RCX: 00007fd113b88b19 [ 1846.321594] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1846.323090] RBP: 00007fd1110fe1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1846.324564] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1846.326044] R13: 00007ffeed86c68f R14: 00007fd1110fe300 R15: 0000000000022000 21:22:52 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 20) 21:22:52 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 19) 21:22:52 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) (fail_nth: 9) 21:22:52 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 17) [ 1846.416441] FAULT_INJECTION: forcing a failure. [ 1846.416441] name failslab, interval 1, probability 0, space 0, times 0 [ 1846.419510] CPU: 0 PID: 11187 Comm: syz-executor.7 Not tainted 5.10.205 #1 [ 1846.420920] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1846.422624] Call Trace: [ 1846.423165] dump_stack+0x107/0x167 [ 1846.423916] should_fail.cold+0x5/0xa [ 1846.424702] ? __delayacct_tsk_init+0x1b/0x80 [ 1846.425639] should_failslab+0x5/0x20 [ 1846.426425] kmem_cache_alloc+0x5b/0x310 [ 1846.427276] __delayacct_tsk_init+0x1b/0x80 [ 1846.428178] copy_process+0x3319/0x7800 [ 1846.428997] ? stack_trace_save+0x8c/0xc0 [ 1846.429849] ? stack_trace_consume_entry+0x160/0x160 [ 1846.430925] ? kasan_save_stack+0x1b/0x40 [ 1846.431808] ? __cleanup_sighand+0xb0/0xb0 [ 1846.432699] ? __lockdep_reset_lock+0x180/0x180 [ 1846.433670] ? lock_acquire+0x197/0x470 [ 1846.434495] ? create_object.isra.0+0x3ad/0xa20 [ 1846.435491] ? lock_release+0x680/0x680 [ 1846.436318] ? find_held_lock+0x2c/0x110 [ 1846.437168] ? io_wqe_dec_running+0x220/0x220 [ 1846.438102] create_io_thread+0xb6/0xf0 [ 1846.438926] ? pidfd_pid+0x90/0x90 [ 1846.439670] ? mark_held_locks+0x9e/0xe0 [ 1846.440524] ? io_wqe_dec_running+0x220/0x220 [ 1846.441475] ? __init_swait_queue_head+0xc6/0x150 [ 1846.442475] create_io_worker+0x23a/0x620 [ 1846.442678] FAULT_INJECTION: forcing a failure. [ 1846.442678] name failslab, interval 1, probability 0, space 0, times 0 [ 1846.443334] io_wqe_enqueue+0x69e/0xbe0 [ 1846.443372] ? create_worker_cb+0x260/0x260 [ 1846.447320] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1846.448253] ? io_prep_async_work+0x34e/0x550 [ 1846.449194] io_queue_async_work+0x26b/0x4f0 [ 1846.450111] __io_queue_sqe+0x5cc/0x9d0 [ 1846.450947] ? io_issue_sqe+0x7700/0x7700 [ 1846.451794] ? io_poll_queue_proc+0x50/0x50 [ 1846.452702] io_submit_sqes+0x4461/0x85c0 [ 1846.453617] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1846.454651] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1846.455650] ? lock_downgrade+0x6d0/0x6d0 [ 1846.456504] ? find_held_lock+0x2c/0x110 [ 1846.457362] ? io_submit_sqes+0x85c0/0x85c0 [ 1846.458253] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1846.459260] ? wait_for_completion_io+0x270/0x270 [ 1846.460252] ? rcu_read_lock_any_held+0x75/0xa0 [ 1846.461216] ? vfs_write+0x354/0xa70 [ 1846.461981] ? fput_many+0x2f/0x1a0 [ 1846.462742] ? ksys_write+0x1a9/0x260 [ 1846.463525] ? __ia32_sys_read+0xb0/0xb0 [ 1846.464372] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1846.465440] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1846.466529] do_syscall_64+0x33/0x40 [ 1846.467297] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1846.468359] RIP: 0033:0x7f2b60e93b19 [ 1846.469124] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1846.472903] RSP: 002b:00007f2b5e409188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1846.474462] RAX: ffffffffffffffda RBX: 00007f2b60fa6f60 RCX: 00007f2b60e93b19 [ 1846.475936] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1846.477412] RBP: 00007f2b5e4091d0 R08: 0000000000000000 R09: 0000000000000000 [ 1846.478895] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1846.480370] R13: 00007ffffc42e53f R14: 00007f2b5e409300 R15: 0000000000022000 [ 1846.481877] CPU: 1 PID: 11193 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1846.483299] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1846.484972] Call Trace: [ 1846.485513] dump_stack+0x107/0x167 [ 1846.486259] should_fail.cold+0x5/0xa [ 1846.487042] ? create_object.isra.0+0x3a/0xa20 [ 1846.487976] should_failslab+0x5/0x20 [ 1846.488747] kmem_cache_alloc+0x5b/0x310 [ 1846.489575] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xdb/0x280 [ 1846.490918] create_object.isra.0+0x3a/0xa20 [ 1846.491812] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1846.492849] __kmalloc+0x16e/0x390 [ 1846.493581] genl_family_rcv_msg_attrs_parse.constprop.0+0xdb/0x280 [ 1846.494881] genl_family_rcv_msg_doit+0xda/0x330 [ 1846.495846] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1846.497161] ? cap_capable+0x1cd/0x230 [ 1846.497956] ? security_capable+0x95/0xc0 [ 1846.498816] ? ns_capable+0xe2/0x110 [ 1846.499580] genl_rcv_msg+0x33c/0x5a0 [ 1846.500351] ? genl_get_cmd+0x480/0x480 [ 1846.501160] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1846.502213] ? lock_release+0x680/0x680 [ 1846.503037] ? __lockdep_reset_lock+0x180/0x180 [ 1846.503982] netlink_rcv_skb+0x14b/0x430 [ 1846.504802] ? genl_get_cmd+0x480/0x480 [ 1846.505610] ? netlink_ack+0xab0/0xab0 [ 1846.506410] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1846.507347] genl_rcv+0x24/0x40 [ 1846.508013] netlink_unicast+0x549/0x7f0 [ 1846.508841] ? netlink_attachskb+0x870/0x870 [ 1846.509740] netlink_sendmsg+0x90f/0xdf0 [ 1846.510590] ? netlink_unicast+0x7f0/0x7f0 [ 1846.511460] ? netlink_unicast+0x7f0/0x7f0 21:22:52 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 6) [ 1846.512319] __sock_sendmsg+0x154/0x190 [ 1846.513269] ____sys_sendmsg+0x70d/0x870 [ 1846.514112] ? sock_write_iter+0x3d0/0x3d0 [ 1846.514977] ? do_recvmmsg+0x6d0/0x6d0 [ 1846.515773] ? perf_trace_lock+0xac/0x490 [ 1846.516620] ? __lockdep_reset_lock+0x180/0x180 [ 1846.517562] ? perf_trace_lock+0xac/0x490 [ 1846.518406] ? SOFTIRQ_verbose+0x10/0x10 [ 1846.519249] ___sys_sendmsg+0xf3/0x170 [ 1846.520043] ? sendmsg_copy_msghdr+0x160/0x160 [ 1846.520977] ? lock_downgrade+0x6d0/0x6d0 [ 1846.521820] ? find_held_lock+0x2c/0x110 [ 1846.522664] ? __fget_files+0x296/0x4c0 [ 1846.523482] ? __fget_light+0xea/0x290 [ 1846.524284] __sys_sendmsg+0xe5/0x1b0 [ 1846.525055] ? __sys_sendmsg_sock+0x40/0x40 [ 1846.525933] ? trace_hardirqs_on+0x5b/0x180 [ 1846.526833] ? __sys_sendmsg+0x1b0/0x1b0 [ 1846.527669] ? __x64_sys_sendmsg+0x1/0xb0 [ 1846.528511] do_syscall_64+0x33/0x40 [ 1846.529269] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1846.530299] RIP: 0033:0x7fd54fedeb19 [ 1846.531066] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1846.534722] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1846.536269] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 1846.537711] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1846.539173] RBP: 00007fd54d4541d0 R08: 0000000000000000 R09: 0000000000000000 [ 1846.540612] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1846.542050] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 [ 1846.575331] FAULT_INJECTION: forcing a failure. [ 1846.575331] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1846.578306] CPU: 1 PID: 11192 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 1846.579719] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1846.581391] Call Trace: [ 1846.581932] dump_stack+0x107/0x167 [ 1846.582685] should_fail.cold+0x5/0xa [ 1846.583469] __alloc_pages_nodemask+0x182/0x600 [ 1846.584414] ? lock_downgrade+0x6d0/0x6d0 [ 1846.585263] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1846.586487] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 1846.587560] ? kmem_cache_alloc_node+0x2bc/0x330 [ 1846.588532] copy_process+0x618/0x7800 [ 1846.589349] ? stack_trace_save+0x8c/0xc0 [ 1846.590196] ? stack_trace_consume_entry+0x160/0x160 [ 1846.591249] ? kasan_save_stack+0x32/0x40 [ 1846.592102] ? kasan_save_stack+0x1b/0x40 [ 1846.592946] ? create_io_worker+0xe8/0x620 [ 1846.593806] ? io_wqe_enqueue+0x69e/0xbe0 [ 1846.594682] ? __cleanup_sighand+0xb0/0xb0 [ 1846.595568] ? __lockdep_reset_lock+0x180/0x180 [ 1846.596513] ? lock_acquire+0x197/0x470 [ 1846.597317] ? create_object.isra.0+0x3ad/0xa20 [ 1846.598288] ? lock_release+0x680/0x680 [ 1846.599110] ? find_held_lock+0x2c/0x110 [ 1846.599947] ? io_wqe_dec_running+0x220/0x220 [ 1846.600863] create_io_thread+0xb6/0xf0 [ 1846.601668] ? pidfd_pid+0x90/0x90 [ 1846.602390] ? mark_held_locks+0x9e/0xe0 [ 1846.603237] ? io_wqe_dec_running+0x220/0x220 [ 1846.604162] ? __init_swait_queue_head+0xc6/0x150 [ 1846.605138] create_io_worker+0x23a/0x620 [ 1846.605986] io_wqe_enqueue+0x69e/0xbe0 [ 1846.606815] ? create_worker_cb+0x260/0x260 [ 1846.607696] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1846.608608] ? io_prep_async_work+0x34e/0x550 [ 1846.609531] io_queue_async_work+0x26b/0x4f0 [ 1846.610429] __io_queue_sqe+0x5cc/0x9d0 [ 1846.611263] ? io_issue_sqe+0x7700/0x7700 [ 1846.612100] ? io_poll_queue_proc+0x50/0x50 [ 1846.612990] io_submit_sqes+0x4461/0x85c0 [ 1846.613864] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1846.614880] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1846.615864] ? lock_downgrade+0x6d0/0x6d0 [ 1846.616709] ? find_held_lock+0x2c/0x110 [ 1846.617539] ? io_submit_sqes+0x85c0/0x85c0 [ 1846.618427] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1846.619412] ? wait_for_completion_io+0x270/0x270 [ 1846.620393] ? rcu_read_lock_any_held+0x75/0xa0 [ 1846.621359] ? vfs_write+0x354/0xa70 [ 1846.622120] ? fput_many+0x2f/0x1a0 [ 1846.622879] ? ksys_write+0x1a9/0x260 [ 1846.623656] ? __ia32_sys_read+0xb0/0xb0 [ 1846.624505] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1846.625576] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1846.626651] do_syscall_64+0x33/0x40 [ 1846.627422] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1846.628479] RIP: 0033:0x7fd08b847b19 [ 1846.629172] FAULT_INJECTION: forcing a failure. [ 1846.629172] name failslab, interval 1, probability 0, space 0, times 0 [ 1846.629245] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1846.629264] RSP: 002b:00007fd088dbd188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1846.636661] RAX: ffffffffffffffda RBX: 00007fd08b95af60 RCX: 00007fd08b847b19 [ 1846.638116] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1846.639566] RBP: 00007fd088dbd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1846.641023] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1846.642465] R13: 00007ffe1fec748f R14: 00007fd088dbd300 R15: 0000000000022000 [ 1846.644038] CPU: 0 PID: 11200 Comm: syz-executor.4 Not tainted 5.10.205 #1 [ 1846.645375] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1846.646947] Call Trace: [ 1846.647444] dump_stack+0x107/0x167 [ 1846.648164] should_fail.cold+0x5/0xa [ 1846.648894] ? create_object.isra.0+0x3a/0xa20 [ 1846.649784] should_failslab+0x5/0x20 [ 1846.650530] kmem_cache_alloc+0x5b/0x310 [ 1846.651331] ? io_uring_alloc_task_context+0xf5/0x6a0 [ 1846.652329] create_object.isra.0+0x3a/0xa20 [ 1846.653181] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1846.654137] __kmalloc+0x16e/0x390 [ 1846.654841] io_wq_create+0xeb/0xc00 [ 1846.655561] io_uring_alloc_task_context+0x1f1/0x6a0 [ 1846.656554] ? io_register_rsrc_update+0x9b0/0x9b0 [ 1846.657480] ? io_apoll_task_func+0x2d0/0x2d0 [ 1846.657579] FAULT_INJECTION: forcing a failure. [ 1846.657579] name failslab, interval 1, probability 0, space 0, times 0 [ 1846.658321] ? __io_req_find_next+0x300/0x300 [ 1846.658346] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1846.658368] __io_uring_add_tctx_node+0x2c6/0x520 [ 1846.658393] ? io_uring_alloc_task_context+0x6a0/0x6a0 [ 1846.664275] __do_sys_io_uring_enter+0x14de/0x1920 [ 1846.665207] ? lock_downgrade+0x6d0/0x6d0 [ 1846.665979] ? find_held_lock+0x2c/0x110 [ 1846.666753] ? io_submit_sqes+0x85c0/0x85c0 [ 1846.667567] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1846.668471] ? wait_for_completion_io+0x270/0x270 [ 1846.669379] ? rcu_read_lock_any_held+0x75/0xa0 [ 1846.670247] ? vfs_write+0x354/0xa70 [ 1846.670951] ? fput_many+0x2f/0x1a0 [ 1846.671626] ? ksys_write+0x1a9/0x260 [ 1846.672344] ? __ia32_sys_read+0xb0/0xb0 [ 1846.673108] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1846.674083] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1846.675066] do_syscall_64+0x33/0x40 [ 1846.675754] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1846.676712] RIP: 0033:0x7f65ffeffb19 [ 1846.677408] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1846.680804] RSP: 002b:00007f65fd454188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1846.682202] RAX: ffffffffffffffda RBX: 00007f6600013020 RCX: 00007f65ffeffb19 [ 1846.683515] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1846.684824] RBP: 00007f65fd4541d0 R08: 0000000000000000 R09: 0000000000000000 [ 1846.686148] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1846.687475] R13: 00007ffddf3c20bf R14: 00007f65fd454300 R15: 0000000000022000 [ 1846.688828] CPU: 1 PID: 11197 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 1846.690247] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1846.691939] Call Trace: [ 1846.692482] dump_stack+0x107/0x167 [ 1846.693235] should_fail.cold+0x5/0xa [ 1846.694021] ? copy_process+0x5d2/0x7800 [ 1846.694901] should_failslab+0x5/0x20 [ 1846.695684] kmem_cache_alloc_node+0x55/0x330 [ 1846.696601] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1846.697681] copy_process+0x5d2/0x7800 [ 1846.698482] ? stack_trace_save+0x8c/0xc0 [ 1846.699341] ? stack_trace_consume_entry+0x160/0x160 [ 1846.700392] ? kasan_save_stack+0x32/0x40 [ 1846.701244] ? kasan_save_stack+0x1b/0x40 [ 1846.702094] ? create_io_worker+0xe8/0x620 [ 1846.702979] ? io_wqe_enqueue+0x69e/0xbe0 [ 1846.703834] ? __cleanup_sighand+0xb0/0xb0 [ 1846.704701] ? __lockdep_reset_lock+0x180/0x180 [ 1846.705649] ? lock_acquire+0x197/0x470 [ 1846.706461] ? create_object.isra.0+0x3ad/0xa20 [ 1846.707434] ? lock_release+0x680/0x680 [ 1846.708246] ? find_held_lock+0x2c/0x110 [ 1846.709088] ? io_wqe_dec_running+0x220/0x220 [ 1846.710005] create_io_thread+0xb6/0xf0 [ 1846.710843] ? pidfd_pid+0x90/0x90 [ 1846.711577] ? mark_held_locks+0x9e/0xe0 [ 1846.712416] ? io_wqe_dec_running+0x220/0x220 [ 1846.713361] ? __init_swait_queue_head+0xc6/0x150 [ 1846.714350] create_io_worker+0x23a/0x620 [ 1846.715223] io_wqe_enqueue+0x69e/0xbe0 [ 1846.716050] ? create_worker_cb+0x260/0x260 [ 1846.716933] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1846.717864] ? io_prep_async_work+0x34e/0x550 [ 1846.718803] io_queue_async_work+0x26b/0x4f0 [ 1846.719720] __io_queue_sqe+0x5cc/0x9d0 [ 1846.720544] ? io_issue_sqe+0x7700/0x7700 [ 1846.721395] ? io_poll_queue_proc+0x50/0x50 [ 1846.722296] io_submit_sqes+0x4461/0x85c0 [ 1846.723190] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1846.724205] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1846.725195] ? lock_downgrade+0x6d0/0x6d0 [ 1846.726039] ? find_held_lock+0x2c/0x110 [ 1846.726999] ? io_submit_sqes+0x85c0/0x85c0 [ 1846.727897] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1846.728895] ? wait_for_completion_io+0x270/0x270 [ 1846.729885] ? rcu_read_lock_any_held+0x75/0xa0 [ 1846.730848] ? vfs_write+0x354/0xa70 [ 1846.731621] ? fput_many+0x2f/0x1a0 [ 1846.732369] ? ksys_write+0x1a9/0x260 [ 1846.733152] ? __ia32_sys_read+0xb0/0xb0 [ 1846.733991] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1846.735078] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1846.736138] do_syscall_64+0x33/0x40 [ 1846.736902] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1846.737947] RIP: 0033:0x7f1a51fc5b19 [ 1846.738717] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1846.742430] RSP: 002b:00007f1a4f53b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1846.743985] RAX: ffffffffffffffda RBX: 00007f1a520d8f60 RCX: 00007f1a51fc5b19 [ 1846.745440] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1846.746907] RBP: 00007f1a4f53b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1846.748357] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1846.749806] R13: 00007ffe3ce1c42f R14: 00007f1a4f53b300 R15: 0000000000022000 [ 1846.828457] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1846.830039] CPU: 0 PID: 11193 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1846.831230] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1846.832633] Call Trace: [ 1846.833096] dump_stack+0x107/0x167 [ 1846.833717] sysfs_warn_dup.cold+0x1c/0x29 [ 1846.834447] sysfs_do_create_link_sd+0x122/0x140 [ 1846.835266] sysfs_create_link+0x5f/0xc0 [ 1846.835968] device_add+0x703/0x1c50 [ 1846.836613] ? devlink_add_symlinks+0x970/0x970 [ 1846.837393] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1846.838296] wiphy_register+0x1da6/0x2850 [ 1846.839028] ? wiphy_unregister+0xb90/0xb90 [ 1846.839755] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1846.840689] ? rtnl_unlock+0x5/0x10 [ 1846.841323] ieee80211_register_hw+0x23c5/0x38b0 [ 1846.842130] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1846.842951] ? net_generic+0xdb/0x2b0 [ 1846.843601] ? lockdep_init_map_type+0x2c7/0x780 [ 1846.844392] ? memset+0x20/0x50 [ 1846.844946] ? __hrtimer_init+0x12c/0x270 [ 1846.845657] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1846.846555] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1846.847366] ? hwsim_new_radio_nl+0x967/0x1080 [ 1846.848150] ? memcpy+0x39/0x60 [ 1846.848721] hwsim_new_radio_nl+0x991/0x1080 [ 1846.849487] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1846.850386] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1846.851512] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1846.852626] genl_family_rcv_msg_doit+0x22d/0x330 [ 1846.853449] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1846.854572] ? cap_capable+0x1cd/0x230 [ 1846.855255] ? ns_capable+0xe2/0x110 [ 1846.855894] genl_rcv_msg+0x33c/0x5a0 [ 1846.856535] ? genl_get_cmd+0x480/0x480 [ 1846.857206] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1846.858075] ? lock_release+0x680/0x680 [ 1846.858755] ? __lockdep_reset_lock+0x180/0x180 [ 1846.859544] netlink_rcv_skb+0x14b/0x430 [ 1846.860227] ? genl_get_cmd+0x480/0x480 [ 1846.860897] ? netlink_ack+0xab0/0xab0 [ 1846.861564] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1846.862334] genl_rcv+0x24/0x40 [ 1846.862897] netlink_unicast+0x549/0x7f0 [ 1846.863574] ? netlink_attachskb+0x870/0x870 [ 1846.864324] netlink_sendmsg+0x90f/0xdf0 [ 1846.865024] ? netlink_unicast+0x7f0/0x7f0 [ 1846.865767] ? netlink_unicast+0x7f0/0x7f0 [ 1846.866478] __sock_sendmsg+0x154/0x190 [ 1846.867169] ____sys_sendmsg+0x70d/0x870 [ 1846.867848] ? sock_write_iter+0x3d0/0x3d0 [ 1846.868549] ? do_recvmmsg+0x6d0/0x6d0 [ 1846.869197] ? perf_trace_lock+0xac/0x490 [ 1846.869882] ? __lockdep_reset_lock+0x180/0x180 [ 1846.870659] ? perf_trace_lock+0xac/0x490 [ 1846.871352] ? SOFTIRQ_verbose+0x10/0x10 [ 1846.872028] ___sys_sendmsg+0xf3/0x170 [ 1846.872675] ? sendmsg_copy_msghdr+0x160/0x160 [ 1846.873450] ? lock_downgrade+0x6d0/0x6d0 [ 1846.874148] ? find_held_lock+0x2c/0x110 [ 1846.874837] ? __fget_files+0x296/0x4c0 [ 1846.875518] ? __fget_light+0xea/0x290 [ 1846.876166] __sys_sendmsg+0xe5/0x1b0 [ 1846.876799] ? __sys_sendmsg_sock+0x40/0x40 [ 1846.877508] ? trace_hardirqs_on+0x5b/0x180 [ 1846.878235] ? __sys_sendmsg+0x1b0/0x1b0 [ 1846.878938] ? __x64_sys_sendmsg+0x1/0xb0 [ 1846.879632] do_syscall_64+0x33/0x40 [ 1846.880263] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1846.881113] RIP: 0033:0x7fd54fedeb19 [ 1846.881743] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1846.884745] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1846.885996] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 1846.887180] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1846.888332] RBP: 00007fd54d4541d0 R08: 0000000000000000 R09: 0000000000000000 [ 1846.889477] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1846.890649] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 [ 1862.850059] FAULT_INJECTION: forcing a failure. [ 1862.850059] name failslab, interval 1, probability 0, space 0, times 0 [ 1862.851698] CPU: 1 PID: 11207 Comm: syz-executor.4 Not tainted 5.10.205 #1 [ 1862.852557] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1862.853579] Call Trace: [ 1862.853916] dump_stack+0x107/0x167 [ 1862.854376] should_fail.cold+0x5/0xa [ 1862.854877] ? create_object.isra.0+0x3a/0xa20 [ 1862.855455] should_failslab+0x5/0x20 [ 1862.855929] kmem_cache_alloc+0x5b/0x310 [ 1862.856431] ? mark_held_locks+0x9e/0xe0 [ 1862.856944] create_object.isra.0+0x3a/0xa20 [ 1862.857492] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1862.858139] kmem_cache_alloc_bulk+0x168/0x320 [ 1862.858723] io_submit_sqes+0x6f76/0x85c0 [ 1862.859273] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1862.859919] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1862.860561] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1862.861197] ? lock_downgrade+0x6d0/0x6d0 [ 1862.861728] ? find_held_lock+0x2c/0x110 [ 1862.862266] ? io_submit_sqes+0x85c0/0x85c0 [ 1862.862839] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1862.863464] ? wait_for_completion_io+0x270/0x270 [ 1862.864086] ? rcu_read_lock_any_held+0x75/0xa0 [ 1862.864686] ? vfs_write+0x354/0xa70 [ 1862.865169] ? fput_many+0x2f/0x1a0 [ 1862.865639] ? ksys_write+0x1a9/0x260 [ 1862.866127] ? __ia32_sys_read+0xb0/0xb0 [ 1862.866659] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1862.867351] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1862.868024] do_syscall_64+0x33/0x40 [ 1862.868709] entry_SYSCALL_64_after_hwframe+0x62/0xc7 21:23:09 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 19) 21:23:09 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) (fail_nth: 10) 21:23:09 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 18) 21:23:09 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 20) 21:23:09 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 12) 21:23:09 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 21) 21:23:09 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 20) 21:23:09 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 7) [ 1862.869522] RIP: 0033:0x7f65ffeffb19 [ 1862.870085] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1862.872484] RSP: 002b:00007f65fd475188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1862.873477] RAX: ffffffffffffffda RBX: 00007f6600012f60 RCX: 00007f65ffeffb19 [ 1862.874406] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1862.875340] RBP: 00007f65fd4751d0 R08: 0000000000000000 R09: 0000000000000000 [ 1862.876264] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1862.877179] R13: 00007ffddf3c20bf R14: 00007f65fd475300 R15: 0000000000022000 [ 1862.899574] FAULT_INJECTION: forcing a failure. [ 1862.899574] name failslab, interval 1, probability 0, space 0, times 0 [ 1862.901283] CPU: 1 PID: 11220 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1862.902190] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1862.903287] Call Trace: [ 1862.903630] dump_stack+0x107/0x167 [ 1862.904118] should_fail.cold+0x5/0xa [ 1862.904614] ? create_object.isra.0+0x3a/0xa20 [ 1862.905212] should_failslab+0x5/0x20 [ 1862.905707] kmem_cache_alloc+0x5b/0x310 [ 1862.906253] create_object.isra.0+0x3a/0xa20 [ 1862.906821] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1862.907463] __kmalloc+0x16e/0x390 [ 1862.907930] io_connect+0x3b1/0x610 [ 1862.908409] ? io_prep_rw+0x1050/0x1050 [ 1862.908945] ? __lock_acquire+0xbb1/0x5b00 [ 1862.909501] io_issue_sqe+0x1611/0x7700 [ 1862.910024] ? perf_trace_lock+0xac/0x490 [ 1862.910562] ? SOFTIRQ_verbose+0x10/0x10 [ 1862.911113] ? __lockdep_reset_lock+0x180/0x180 [ 1862.911719] ? io_connect+0x610/0x610 [ 1862.912220] ? lock_acquire+0x197/0x470 [ 1862.912734] ? find_held_lock+0x2c/0x110 [ 1862.913271] ? __fget_files+0x26d/0x4c0 [ 1862.913790] ? lock_downgrade+0x6d0/0x6d0 [ 1862.914337] __io_queue_sqe+0x90/0x9d0 [ 1862.914850] ? io_issue_sqe+0x7700/0x7700 [ 1862.915402] io_submit_sqes+0x4461/0x85c0 [ 1862.915961] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1862.916587] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1862.917217] ? lock_downgrade+0x6d0/0x6d0 [ 1862.917749] ? find_held_lock+0x2c/0x110 [ 1862.918283] ? io_submit_sqes+0x85c0/0x85c0 [ 1862.918851] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1862.919489] ? wait_for_completion_io+0x270/0x270 [ 1862.920121] ? rcu_read_lock_any_held+0x75/0xa0 [ 1862.920726] ? vfs_write+0x354/0xa70 [ 1862.921220] ? fput_many+0x2f/0x1a0 [ 1862.921688] ? ksys_write+0x1a9/0x260 [ 1862.922164] ? __ia32_sys_read+0xb0/0xb0 [ 1862.922679] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1862.923376] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1862.924042] do_syscall_64+0x33/0x40 [ 1862.924528] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1862.925196] RIP: 0033:0x7fb1fd6f6b19 [ 1862.925682] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1862.928031] RSP: 002b:00007fb1fac6c188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1862.929005] RAX: ffffffffffffffda RBX: 00007fb1fd809f60 RCX: 00007fb1fd6f6b19 [ 1862.929925] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1862.930099] FAULT_INJECTION: forcing a failure. [ 1862.930099] name failslab, interval 1, probability 0, space 0, times 0 [ 1862.930841] RBP: 00007fb1fac6c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1862.930850] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1862.930859] R13: 00007ffc06ae2c8f R14: 00007fb1fac6c300 R15: 0000000000022000 [ 1862.933243] FAULT_INJECTION: forcing a failure. [ 1862.933243] name failslab, interval 1, probability 0, space 0, times 0 [ 1862.933256] CPU: 1 PID: 11208 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 1862.933263] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1862.933267] Call Trace: [ 1862.933279] dump_stack+0x107/0x167 [ 1862.933296] should_fail.cold+0x5/0xa [ 1862.933311] ? __delayacct_tsk_init+0x1b/0x80 [ 1862.933325] should_failslab+0x5/0x20 [ 1862.933337] kmem_cache_alloc+0x5b/0x310 [ 1862.933355] __delayacct_tsk_init+0x1b/0x80 [ 1862.933369] copy_process+0x3319/0x7800 [ 1862.933385] ? stack_trace_save+0x8c/0xc0 [ 1862.933399] ? stack_trace_consume_entry+0x160/0x160 [ 1862.933422] ? kasan_save_stack+0x1b/0x40 [ 1862.933440] ? __cleanup_sighand+0xb0/0xb0 [ 1862.933453] ? __lockdep_reset_lock+0x180/0x180 [ 1862.933465] ? lock_acquire+0x197/0x470 [ 1862.933476] ? create_object.isra.0+0x3ad/0xa20 [ 1862.933492] ? lock_release+0x680/0x680 [ 1862.933503] ? find_held_lock+0x2c/0x110 [ 1862.933520] ? io_wqe_dec_running+0x220/0x220 [ 1862.933533] create_io_thread+0xb6/0xf0 [ 1862.933545] ? pidfd_pid+0x90/0x90 [ 1862.933561] ? mark_held_locks+0x9e/0xe0 [ 1862.933577] ? io_wqe_dec_running+0x220/0x220 [ 1862.933600] ? __init_swait_queue_head+0xc6/0x150 [ 1862.933615] create_io_worker+0x23a/0x620 [ 1862.933631] io_wqe_enqueue+0x69e/0xbe0 [ 1862.933647] ? create_worker_cb+0x260/0x260 [ 1862.933661] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1862.933678] ? io_prep_async_work+0x34e/0x550 [ 1862.933696] io_queue_async_work+0x26b/0x4f0 [ 1862.933714] __io_queue_sqe+0x5cc/0x9d0 [ 1862.933732] ? io_issue_sqe+0x7700/0x7700 [ 1862.933745] ? io_poll_queue_proc+0x50/0x50 [ 1862.933768] io_submit_sqes+0x4461/0x85c0 [ 1862.933803] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1862.933815] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1862.933831] ? lock_downgrade+0x6d0/0x6d0 [ 1862.933842] ? find_held_lock+0x2c/0x110 [ 1862.933859] ? io_submit_sqes+0x85c0/0x85c0 [ 1862.933877] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1862.933893] ? wait_for_completion_io+0x270/0x270 [ 1862.933908] ? rcu_read_lock_any_held+0x75/0xa0 [ 1862.933919] ? vfs_write+0x354/0xa70 [ 1862.933934] ? fput_many+0x2f/0x1a0 [ 1862.933948] ? ksys_write+0x1a9/0x260 [ 1862.933961] ? __ia32_sys_read+0xb0/0xb0 [ 1862.933977] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1862.933989] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1862.934006] do_syscall_64+0x33/0x40 [ 1862.934017] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1862.934026] RIP: 0033:0x7fd08b847b19 [ 1862.934038] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1862.934045] RSP: 002b:00007fd088dbd188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1862.934059] RAX: ffffffffffffffda RBX: 00007fd08b95af60 RCX: 00007fd08b847b19 [ 1862.934066] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1862.934073] RBP: 00007fd088dbd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1862.934082] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1862.934090] R13: 00007ffe1fec748f R14: 00007fd088dbd300 R15: 0000000000022000 [ 1862.938495] FAULT_INJECTION: forcing a failure. [ 1862.938495] name failslab, interval 1, probability 0, space 0, times 0 [ 1862.939087] CPU: 0 PID: 11216 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1863.002975] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1863.004699] Call Trace: [ 1863.005262] dump_stack+0x107/0x167 [ 1863.006042] should_fail.cold+0x5/0xa [ 1863.006868] should_failslab+0x5/0x20 [ 1863.007674] __kmalloc_track_caller+0x79/0x370 [ 1863.008628] ? hwsim_new_radio_nl+0x967/0x1080 [ 1863.009598] kstrndup+0x5f/0x110 [ 1863.010316] hwsim_new_radio_nl+0x967/0x1080 [ 1863.011261] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1863.012366] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1863.013753] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1863.015130] genl_family_rcv_msg_doit+0x22d/0x330 [ 1863.016131] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1863.017499] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1863.018587] ? cap_capable+0x1cd/0x230 [ 1863.019424] ? ns_capable+0xe2/0x110 [ 1863.020209] genl_rcv_msg+0x33c/0x5a0 [ 1863.021014] ? genl_get_cmd+0x480/0x480 [ 1863.021837] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1863.022990] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1863.024068] ? netlink_rcv_skb+0xf1/0x430 [ 1863.024939] netlink_rcv_skb+0x14b/0x430 [ 1863.025779] ? genl_get_cmd+0x480/0x480 [ 1863.026600] ? netlink_ack+0xab0/0xab0 [ 1863.027431] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1863.028387] ? is_vmalloc_addr+0x7b/0xb0 [ 1863.029238] genl_rcv+0x24/0x40 [ 1863.029929] netlink_unicast+0x549/0x7f0 [ 1863.030797] ? netlink_attachskb+0x870/0x870 [ 1863.031706] ? __virt_addr_valid+0x128/0x350 [ 1863.032639] netlink_sendmsg+0x90f/0xdf0 [ 1863.033497] ? netlink_unicast+0x7f0/0x7f0 [ 1863.034400] ? netlink_unicast+0x7f0/0x7f0 [ 1863.035300] __sock_sendmsg+0x154/0x190 [ 1863.036137] ____sys_sendmsg+0x70d/0x870 [ 1863.036995] ? sock_write_iter+0x3d0/0x3d0 [ 1863.037874] ? do_recvmmsg+0x6d0/0x6d0 [ 1863.038695] ? perf_trace_lock+0xac/0x490 [ 1863.039575] ? __lockdep_reset_lock+0x180/0x180 [ 1863.040541] ? perf_trace_lock+0xac/0x490 [ 1863.041415] ? SOFTIRQ_verbose+0x10/0x10 [ 1863.042275] ___sys_sendmsg+0xf3/0x170 [ 1863.043105] ? sendmsg_copy_msghdr+0x160/0x160 [ 1863.044075] ? lock_downgrade+0x6d0/0x6d0 [ 1863.044949] ? find_held_lock+0x2c/0x110 [ 1863.045807] ? __fget_files+0x296/0x4c0 [ 1863.046659] ? __fget_light+0xea/0x290 [ 1863.047507] __sys_sendmsg+0xe5/0x1b0 [ 1863.048324] ? __sys_sendmsg_sock+0x40/0x40 [ 1863.049229] ? rcu_read_lock_any_held+0x75/0xa0 [ 1863.050216] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1863.051309] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1863.052376] ? trace_hardirqs_on+0x5b/0x180 [ 1863.053289] do_syscall_64+0x33/0x40 [ 1863.054064] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1863.055134] RIP: 0033:0x7fd54fedeb19 [ 1863.055907] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1863.059710] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1863.061284] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 1863.062795] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1863.064268] RBP: 00007fd54d4541d0 R08: 0000000000000000 R09: 0000000000000000 [ 1863.065762] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1863.067236] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 [ 1863.068768] CPU: 1 PID: 11219 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1863.069596] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1863.070567] Call Trace: [ 1863.070887] dump_stack+0x107/0x167 [ 1863.071310] should_fail.cold+0x5/0xa [ 1863.071755] ? __delayacct_tsk_init+0x1b/0x80 [ 1863.072288] should_failslab+0x5/0x20 [ 1863.072729] kmem_cache_alloc+0x5b/0x310 [ 1863.073211] __delayacct_tsk_init+0x1b/0x80 [ 1863.073709] copy_process+0x3319/0x7800 [ 1863.074173] ? stack_trace_save+0x8c/0xc0 [ 1863.074655] ? stack_trace_consume_entry+0x160/0x160 [ 1863.075269] ? kasan_save_stack+0x1b/0x40 [ 1863.075757] ? __cleanup_sighand+0xb0/0xb0 [ 1863.076239] ? __lockdep_reset_lock+0x180/0x180 [ 1863.076772] ? lock_acquire+0x197/0x470 [ 1863.077224] ? create_object.isra.0+0x3ad/0xa20 [ 1863.077767] ? lock_release+0x680/0x680 [ 1863.078224] ? find_held_lock+0x2c/0x110 [ 1863.078695] ? io_wqe_dec_running+0x220/0x220 [ 1863.079228] create_io_thread+0xb6/0xf0 [ 1863.079686] ? pidfd_pid+0x90/0x90 [ 1863.080092] ? mark_held_locks+0x9e/0xe0 [ 1863.080560] ? io_wqe_dec_running+0x220/0x220 [ 1863.081081] ? __init_swait_queue_head+0xc6/0x150 [ 1863.081638] create_io_worker+0x23a/0x620 [ 1863.082117] io_wqe_enqueue+0x69e/0xbe0 [ 1863.082572] ? create_worker_cb+0x260/0x260 [ 1863.083076] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1863.083588] ? io_prep_async_work+0x34e/0x550 [ 1863.084107] io_queue_async_work+0x26b/0x4f0 [ 1863.084613] __io_queue_sqe+0x5cc/0x9d0 [ 1863.085074] ? io_issue_sqe+0x7700/0x7700 [ 1863.085546] ? io_poll_queue_proc+0x50/0x50 [ 1863.086055] io_submit_sqes+0x4461/0x85c0 [ 1863.086555] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1863.087138] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1863.087698] ? io_submit_sqes+0x85c0/0x85c0 [ 1863.088187] ? __mutex_unlock_slowpath+0x111/0x600 [ 1863.088747] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1863.089305] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1863.089906] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1863.090522] ? trace_hardirqs_on+0x5b/0x180 [ 1863.091031] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1863.091650] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1863.092242] do_syscall_64+0x33/0x40 [ 1863.092673] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1863.093250] RIP: 0033:0x7f369cad5b19 [ 1863.093674] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1863.095747] RSP: 002b:00007f369a04b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1863.096604] RAX: ffffffffffffffda RBX: 00007f369cbe8f60 RCX: 00007f369cad5b19 [ 1863.097406] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1863.098207] RBP: 00007f369a04b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1863.099020] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1863.099831] R13: 00007ffcb9edce5f R14: 00007f369a04b300 R15: 0000000000022000 [ 1863.135499] FAULT_INJECTION: forcing a failure. [ 1863.135499] name failslab, interval 1, probability 0, space 0, times 0 [ 1863.138223] CPU: 0 PID: 11217 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1863.139667] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1863.141398] Call Trace: [ 1863.141939] dump_stack+0x107/0x167 [ 1863.142703] should_fail.cold+0x5/0xa [ 1863.143502] ? create_object.isra.0+0x3a/0xa20 [ 1863.144446] should_failslab+0x5/0x20 [ 1863.145212] kmem_cache_alloc+0x5b/0x310 [ 1863.146069] create_object.isra.0+0x3a/0xa20 [ 1863.147008] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1863.148080] kmem_cache_alloc_node+0x169/0x330 [ 1863.149014] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1863.150117] copy_process+0x5d2/0x7800 [ 1863.150928] ? stack_trace_save+0x8c/0xc0 [ 1863.151796] ? stack_trace_consume_entry+0x160/0x160 [ 1863.152853] ? kasan_save_stack+0x32/0x40 [ 1863.153733] ? kasan_save_stack+0x1b/0x40 [ 1863.154593] ? create_io_worker+0xe8/0x620 [ 1863.155491] ? io_wqe_enqueue+0x69e/0xbe0 [ 1863.156369] ? __cleanup_sighand+0xb0/0xb0 [ 1863.157258] ? __lockdep_reset_lock+0x180/0x180 [ 1863.158244] ? lock_acquire+0x197/0x470 [ 1863.159077] ? create_object.isra.0+0x3ad/0xa20 [ 1863.160061] ? lock_release+0x680/0x680 [ 1863.160896] ? find_held_lock+0x2c/0x110 [ 1863.161753] ? io_wqe_dec_running+0x220/0x220 [ 1863.162680] create_io_thread+0xb6/0xf0 [ 1863.163542] ? pidfd_pid+0x90/0x90 [ 1863.164277] ? mark_held_locks+0x9e/0xe0 [ 1863.165131] ? io_wqe_dec_running+0x220/0x220 [ 1863.166065] ? __init_swait_queue_head+0xc6/0x150 [ 1863.167084] create_io_worker+0x23a/0x620 [ 1863.167952] io_wqe_enqueue+0x69e/0xbe0 [ 1863.168782] ? create_worker_cb+0x260/0x260 [ 1863.169671] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1863.170603] ? io_prep_async_work+0x34e/0x550 [ 1863.171554] io_queue_async_work+0x26b/0x4f0 [ 1863.172473] __io_queue_sqe+0x5cc/0x9d0 [ 1863.173300] ? io_issue_sqe+0x7700/0x7700 [ 1863.174164] ? io_poll_queue_proc+0x50/0x50 [ 1863.175080] io_submit_sqes+0x4461/0x85c0 [ 1863.175979] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1863.176999] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1863.178011] ? lock_downgrade+0x6d0/0x6d0 [ 1863.178891] ? find_held_lock+0x2c/0x110 [ 1863.179742] ? io_submit_sqes+0x85c0/0x85c0 [ 1863.180648] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1863.181648] ? wait_for_completion_io+0x270/0x270 [ 1863.182648] ? rcu_read_lock_any_held+0x75/0xa0 [ 1863.183623] ? vfs_write+0x354/0xa70 [ 1863.184398] ? fput_many+0x2f/0x1a0 [ 1863.185161] ? ksys_write+0x1a9/0x260 [ 1863.185954] ? __ia32_sys_read+0xb0/0xb0 [ 1863.186818] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1863.187913] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1863.188990] do_syscall_64+0x33/0x40 [ 1863.189774] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1863.190868] RIP: 0033:0x7fd113b88b19 [ 1863.191645] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1863.195468] RSP: 002b:00007fd1110fe188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1863.197057] RAX: ffffffffffffffda RBX: 00007fd113c9bf60 RCX: 00007fd113b88b19 [ 1863.198542] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1863.200072] RBP: 00007fd1110fe1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1863.200370] FAULT_INJECTION: forcing a failure. [ 1863.200370] name failslab, interval 1, probability 0, space 0, times 0 [ 1863.201540] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1863.201553] R13: 00007ffeed86c68f R14: 00007fd1110fe300 R15: 0000000000022000 [ 1863.204458] CPU: 1 PID: 11218 Comm: syz-executor.7 Not tainted 5.10.205 #1 [ 1863.205195] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1863.206082] Call Trace: [ 1863.206367] dump_stack+0x107/0x167 [ 1863.206768] should_fail.cold+0x5/0xa [ 1863.207172] ? create_object.isra.0+0x3a/0xa20 [ 1863.207659] should_failslab+0x5/0x20 [ 1863.208062] kmem_cache_alloc+0x5b/0x310 [ 1863.208502] create_object.isra.0+0x3a/0xa20 [ 1863.208978] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1863.209537] kmem_cache_alloc+0x159/0x310 [ 1863.209995] __delayacct_tsk_init+0x1b/0x80 [ 1863.210467] copy_process+0x3319/0x7800 [ 1863.210910] ? stack_trace_save+0x8c/0xc0 [ 1863.211356] ? stack_trace_consume_entry+0x160/0x160 [ 1863.211918] ? kasan_save_stack+0x1b/0x40 [ 1863.212362] ? __cleanup_sighand+0xb0/0xb0 [ 1863.212829] ? __lockdep_reset_lock+0x180/0x180 [ 1863.213324] ? lock_acquire+0x197/0x470 [ 1863.213756] ? create_object.isra.0+0x3ad/0xa20 [ 1863.214258] ? lock_release+0x680/0x680 [ 1863.214685] ? find_held_lock+0x2c/0x110 [ 1863.215138] ? io_wqe_dec_running+0x220/0x220 [ 1863.215628] create_io_thread+0xb6/0xf0 [ 1863.216052] ? pidfd_pid+0x90/0x90 [ 1863.216435] ? mark_held_locks+0x9e/0xe0 [ 1863.216876] ? io_wqe_dec_running+0x220/0x220 [ 1863.217363] ? __init_swait_queue_head+0xc6/0x150 [ 1863.217880] create_io_worker+0x23a/0x620 [ 1863.218325] io_wqe_enqueue+0x69e/0xbe0 [ 1863.218761] ? create_worker_cb+0x260/0x260 [ 1863.219221] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1863.219707] ? io_prep_async_work+0x34e/0x550 [ 1863.220191] io_queue_async_work+0x26b/0x4f0 [ 1863.220671] __io_queue_sqe+0x5cc/0x9d0 [ 1863.221100] ? io_issue_sqe+0x7700/0x7700 [ 1863.221542] ? io_poll_queue_proc+0x50/0x50 [ 1863.222014] io_submit_sqes+0x4461/0x85c0 [ 1863.222484] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1863.223025] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1863.223537] ? lock_downgrade+0x6d0/0x6d0 [ 1863.223985] ? find_held_lock+0x2c/0x110 [ 1863.224424] ? io_submit_sqes+0x85c0/0x85c0 [ 1863.224895] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1863.225420] ? wait_for_completion_io+0x270/0x270 [ 1863.225935] ? rcu_read_lock_any_held+0x75/0xa0 [ 1863.226430] ? vfs_write+0x354/0xa70 [ 1863.226850] ? fput_many+0x2f/0x1a0 [ 1863.227240] ? ksys_write+0x1a9/0x260 [ 1863.227653] ? __ia32_sys_read+0xb0/0xb0 [ 1863.228090] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1863.228655] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1863.229215] do_syscall_64+0x33/0x40 [ 1863.229619] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1863.230167] RIP: 0033:0x7f2b60e93b19 [ 1863.230564] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1863.232655] RSP: 002b:00007f2b5e409188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1863.233470] RAX: ffffffffffffffda RBX: 00007f2b60fa6f60 RCX: 00007f2b60e93b19 [ 1863.234232] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1863.235004] RBP: 00007f2b5e4091d0 R08: 0000000000000000 R09: 0000000000000000 [ 1863.235773] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1863.236535] R13: 00007ffffc42e53f R14: 00007f2b5e409300 R15: 0000000000022000 21:23:09 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 13) [ 1863.251216] FAULT_INJECTION: forcing a failure. [ 1863.251216] name failslab, interval 1, probability 0, space 0, times 0 [ 1863.254230] CPU: 0 PID: 11215 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 1863.255662] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1863.257373] Call Trace: [ 1863.257924] dump_stack+0x107/0x167 [ 1863.258679] should_fail.cold+0x5/0xa [ 1863.259473] ? create_object.isra.0+0x3a/0xa20 [ 1863.260414] should_failslab+0x5/0x20 [ 1863.261196] kmem_cache_alloc+0x5b/0x310 [ 1863.262046] create_object.isra.0+0x3a/0xa20 [ 1863.262971] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1863.264020] kmem_cache_alloc_node+0x169/0x330 [ 1863.264953] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1863.266037] copy_process+0x5d2/0x7800 [ 1863.266854] ? stack_trace_save+0x8c/0xc0 [ 1863.267707] ? stack_trace_consume_entry+0x160/0x160 [ 1863.268763] ? kasan_save_stack+0x32/0x40 [ 1863.269609] ? kasan_save_stack+0x1b/0x40 [ 1863.270454] ? create_io_worker+0xe8/0x620 [ 1863.271346] ? io_wqe_enqueue+0x69e/0xbe0 [ 1863.272200] ? __cleanup_sighand+0xb0/0xb0 [ 1863.273069] ? __lockdep_reset_lock+0x180/0x180 [ 1863.274019] ? lock_acquire+0x197/0x470 [ 1863.274841] ? create_object.isra.0+0x3ad/0xa20 [ 1863.275798] ? lock_release+0x680/0x680 [ 1863.276615] ? find_held_lock+0x2c/0x110 [ 1863.277452] ? io_wqe_dec_running+0x220/0x220 [ 1863.278367] create_io_thread+0xb6/0xf0 [ 1863.279195] ? pidfd_pid+0x90/0x90 [ 1863.279925] ? mark_held_locks+0x9e/0xe0 [ 1863.280764] ? io_wqe_dec_running+0x220/0x220 [ 1863.281698] ? __init_swait_queue_head+0xc6/0x150 [ 1863.282689] create_io_worker+0x23a/0x620 [ 1863.283559] io_wqe_enqueue+0x69e/0xbe0 [ 1863.284386] ? create_worker_cb+0x260/0x260 [ 1863.285271] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1863.286197] ? io_prep_async_work+0x34e/0x550 [ 1863.287161] io_queue_async_work+0x26b/0x4f0 [ 1863.288081] __io_queue_sqe+0x5cc/0x9d0 [ 1863.288908] ? io_issue_sqe+0x7700/0x7700 [ 1863.289758] ? io_poll_queue_proc+0x50/0x50 [ 1863.290668] io_submit_sqes+0x4461/0x85c0 [ 1863.291574] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1863.292606] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1863.293598] ? lock_downgrade+0x6d0/0x6d0 [ 1863.294454] ? find_held_lock+0x2c/0x110 [ 1863.295311] ? io_submit_sqes+0x85c0/0x85c0 [ 1863.296232] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1863.297246] ? wait_for_completion_io+0x270/0x270 [ 1863.298236] ? rcu_read_lock_any_held+0x75/0xa0 [ 1863.299198] ? vfs_write+0x354/0xa70 [ 1863.299971] ? fput_many+0x2f/0x1a0 [ 1863.300717] ? ksys_write+0x1a9/0x260 [ 1863.301494] ? __ia32_sys_read+0xb0/0xb0 [ 1863.302331] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1863.303403] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1863.304459] do_syscall_64+0x33/0x40 [ 1863.305230] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1863.306274] RIP: 0033:0x7f1a51fc5b19 [ 1863.307047] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1863.310812] RSP: 002b:00007f1a4f53b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1863.312379] RAX: ffffffffffffffda RBX: 00007f1a520d8f60 RCX: 00007f1a51fc5b19 [ 1863.313836] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1863.315304] RBP: 00007f1a4f53b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1863.316759] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1863.318235] R13: 00007ffe3ce1c42f R14: 00007f1a4f53b300 R15: 0000000000022000 21:23:09 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) (fail_nth: 11) 21:23:09 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 21) 21:23:09 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 22) [ 1863.372080] FAULT_INJECTION: forcing a failure. 21:23:09 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 20) [ 1863.372080] name failslab, interval 1, probability 0, space 0, times 0 [ 1863.373529] CPU: 1 PID: 11228 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1863.374321] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1863.375223] Call Trace: [ 1863.375521] dump_stack+0x107/0x167 [ 1863.375923] should_fail.cold+0x5/0xa [ 1863.376362] ? __io_queue_sqe+0x666/0x9d0 [ 1863.376815] should_failslab+0x5/0x20 [ 1863.377264] kmem_cache_alloc_trace+0x55/0x320 [ 1863.377767] __io_queue_sqe+0x666/0x9d0 [ 1863.378222] ? io_issue_sqe+0x7700/0x7700 [ 1863.378679] io_submit_sqes+0x4461/0x85c0 [ 1863.379191] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1863.379746] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1863.380299] ? lock_downgrade+0x6d0/0x6d0 [ 1863.380744] ? find_held_lock+0x2c/0x110 [ 1863.381209] ? io_submit_sqes+0x85c0/0x85c0 [ 1863.381689] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1863.382226] ? wait_for_completion_io+0x270/0x270 [ 1863.382771] ? rcu_read_lock_any_held+0x75/0xa0 [ 1863.383310] ? vfs_write+0x354/0xa70 [ 1863.383728] ? fput_many+0x2f/0x1a0 [ 1863.384145] ? ksys_write+0x1a9/0x260 [ 1863.384567] ? __ia32_sys_read+0xb0/0xb0 [ 1863.385052] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1863.385625] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1863.386232] do_syscall_64+0x33/0x40 [ 1863.386639] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1863.387226] RIP: 0033:0x7fb1fd6f6b19 [ 1863.387626] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1863.389706] RSP: 002b:00007fb1fac6c188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1863.390529] RAX: ffffffffffffffda RBX: 00007fb1fd809f60 RCX: 00007fb1fd6f6b19 [ 1863.391348] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1863.392151] RBP: 00007fb1fac6c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1863.392960] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1863.393780] R13: 00007ffc06ae2c8f R14: 00007fb1fac6c300 R15: 0000000000022000 21:23:09 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 19) [ 1863.417484] FAULT_INJECTION: forcing a failure. [ 1863.417484] name failslab, interval 1, probability 0, space 0, times 0 [ 1863.419206] CPU: 1 PID: 11232 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 1863.419958] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1863.420900] Call Trace: [ 1863.421180] dump_stack+0x107/0x167 [ 1863.421592] should_fail.cold+0x5/0xa [ 1863.422007] ? create_object.isra.0+0x3a/0xa20 [ 1863.422529] should_failslab+0x5/0x20 [ 1863.422955] kmem_cache_alloc+0x5b/0x310 [ 1863.423418] create_object.isra.0+0x3a/0xa20 [ 1863.423884] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 21:23:09 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 8) [ 1863.424475] kmem_cache_alloc+0x159/0x310 [ 1863.425083] __delayacct_tsk_init+0x1b/0x80 [ 1863.425572] copy_process+0x3319/0x7800 [ 1863.426003] ? stack_trace_save+0x8c/0xc0 [ 1863.426475] ? stack_trace_consume_entry+0x160/0x160 [ 1863.427049] ? kasan_save_stack+0x1b/0x40 [ 1863.427538] ? __cleanup_sighand+0xb0/0xb0 [ 1863.427991] ? __lockdep_reset_lock+0x180/0x180 21:23:09 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 21) [ 1863.428531] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1863.429205] ? io_wqe_dec_running+0x220/0x220 [ 1863.429720] create_io_thread+0xb6/0xf0 [ 1863.430159] ? pidfd_pid+0x90/0x90 [ 1863.430575] ? io_wqe_dec_running+0x220/0x220 [ 1863.431097] ? __init_swait_queue_head+0xc6/0x150 [ 1863.431655] create_io_worker+0x23a/0x620 [ 1863.432110] io_wqe_enqueue+0x69e/0xbe0 [ 1863.432562] ? create_worker_cb+0x260/0x260 [ 1863.433026] ? __sanitizer_cov_trace_pc+0x3c/0x60 [ 1863.433587] ? io_prep_async_work+0x34e/0x550 [ 1863.434086] io_queue_async_work+0x26b/0x4f0 [ 1863.434591] __io_queue_sqe+0x5cc/0x9d0 [ 1863.435025] ? io_issue_sqe+0x7700/0x7700 [ 1863.435514] ? io_poll_queue_proc+0x50/0x50 [ 1863.435984] io_submit_sqes+0x4461/0x85c0 [ 1863.436479] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1863.437018] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1863.437566] ? lock_downgrade+0x6d0/0x6d0 [ 1863.438011] ? find_held_lock+0x2c/0x110 [ 1863.438466] ? io_submit_sqes+0x85c0/0x85c0 [ 1863.438948] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1863.439571] ? trace_hardirqs_on+0x5b/0x180 [ 1863.440038] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1863.440677] ? fput_many+0x1c/0x1a0 [ 1863.441083] ? __kasan_check_write+0x4/0x10 [ 1863.441586] ? fput_many+0x2f/0x1a0 [ 1863.441988] ? ksys_write+0x1a9/0x260 [ 1863.442440] ? __ia32_sys_read+0xb0/0xb0 [ 1863.442916] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1863.443514] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1863.444077] do_syscall_64+0x33/0x40 [ 1863.444495] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1863.445048] RIP: 0033:0x7fd08b847b19 [ 1863.445469] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1863.447429] RSP: 002b:00007fd088dbd188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1863.448280] RAX: ffffffffffffffda RBX: 00007fd08b95af60 RCX: 00007fd08b847b19 [ 1863.449045] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1863.449887] RBP: 00007fd088dbd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1863.450675] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1863.451515] R13: 00007ffe1fec748f R14: 00007fd088dbd300 R15: 0000000000022000 [ 1863.461922] FAULT_INJECTION: forcing a failure. [ 1863.461922] name failslab, interval 1, probability 0, space 0, times 0 [ 1863.463236] CPU: 1 PID: 11238 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1863.464020] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1863.464926] Call Trace: [ 1863.465224] dump_stack+0x107/0x167 [ 1863.465625] should_fail.cold+0x5/0xa [ 1863.466080] ? __delayacct_tsk_init+0x1b/0x80 [ 1863.466563] should_failslab+0x5/0x20 [ 1863.467000] kmem_cache_alloc+0x5b/0x310 [ 1863.467437] __delayacct_tsk_init+0x1b/0x80 [ 1863.467932] copy_process+0x3319/0x7800 [ 1863.468382] ? stack_trace_save+0x8c/0xc0 [ 1863.468872] ? stack_trace_consume_entry+0x160/0x160 [ 1863.469427] ? kasan_save_stack+0x1b/0x40 [ 1863.469903] ? __cleanup_sighand+0xb0/0xb0 [ 1863.470375] ? __lockdep_reset_lock+0x180/0x180 [ 1863.470930] ? lock_acquire+0x197/0x470 [ 1863.471366] ? create_object.isra.0+0x3ad/0xa20 [ 1863.471906] ? lock_release+0x680/0x680 [ 1863.472326] ? find_held_lock+0x2c/0x110 [ 1863.472784] ? io_wqe_dec_running+0x220/0x220 [ 1863.473261] create_io_thread+0xb6/0xf0 [ 1863.473709] ? pidfd_pid+0x90/0x90 [ 1863.474092] ? mark_held_locks+0x9e/0xe0 [ 1863.474553] ? io_wqe_dec_running+0x220/0x220 [ 1863.475058] ? __init_swait_queue_head+0xc6/0x150 [ 1863.475612] create_io_worker+0x23a/0x620 [ 1863.476084] io_wqe_enqueue+0x69e/0xbe0 [ 1863.476540] ? create_worker_cb+0x260/0x260 [ 1863.477008] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1863.477518] ? io_prep_async_work+0x34e/0x550 [ 1863.478004] io_queue_async_work+0x26b/0x4f0 [ 1863.478515] __io_queue_sqe+0x5cc/0x9d0 [ 1863.478969] ? io_issue_sqe+0x7700/0x7700 [ 1863.479429] ? io_poll_queue_proc+0x50/0x50 [ 1863.479908] io_submit_sqes+0x4461/0x85c0 [ 1863.480415] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1863.480977] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1863.481532] ? lock_downgrade+0x6d0/0x6d0 [ 1863.481976] ? find_held_lock+0x2c/0x110 [ 1863.482436] ? io_submit_sqes+0x85c0/0x85c0 [ 1863.482925] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1863.483472] ? wait_for_completion_io+0x270/0x270 [ 1863.483988] ? rcu_read_lock_any_held+0x75/0xa0 [ 1863.484505] ? vfs_write+0x354/0xa70 [ 1863.484925] ? fput_many+0x2f/0x1a0 [ 1863.485343] ? ksys_write+0x1a9/0x260 [ 1863.485749] ? __ia32_sys_read+0xb0/0xb0 [ 1863.486208] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1863.486772] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1863.487354] do_syscall_64+0x33/0x40 [ 1863.487751] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1863.488334] RIP: 0033:0x7fd113b88b19 [ 1863.488733] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1863.490869] RSP: 002b:00007fd1110fe188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1863.491727] RAX: ffffffffffffffda RBX: 00007fd113c9bf60 RCX: 00007fd113b88b19 [ 1863.492556] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1863.493363] RBP: 00007fd1110fe1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1863.494192] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1863.495034] R13: 00007ffeed86c68f R14: 00007fd1110fe300 R15: 0000000000022000 [ 1863.512478] FAULT_INJECTION: forcing a failure. [ 1863.512478] name failslab, interval 1, probability 0, space 0, times 0 [ 1863.515500] CPU: 0 PID: 11241 Comm: syz-executor.4 Not tainted 5.10.205 #1 [ 1863.516927] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1863.518633] Call Trace: [ 1863.519209] dump_stack+0x107/0x167 [ 1863.519966] should_fail.cold+0x5/0xa [ 1863.520756] ? create_object.isra.0+0x3a/0xa20 [ 1863.521708] should_failslab+0x5/0x20 [ 1863.522493] kmem_cache_alloc+0x5b/0x310 [ 1863.523340] ? mark_held_locks+0x9e/0xe0 [ 1863.524180] create_object.isra.0+0x3a/0xa20 [ 1863.524990] FAULT_INJECTION: forcing a failure. [ 1863.524990] name failslab, interval 1, probability 0, space 0, times 0 [ 1863.525102] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1863.525132] kmem_cache_alloc_bulk+0x168/0x320 [ 1863.528345] io_submit_sqes+0x6f76/0x85c0 [ 1863.529212] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1863.530243] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1863.531283] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1863.532284] ? lock_downgrade+0x6d0/0x6d0 [ 1863.533141] ? find_held_lock+0x2c/0x110 [ 1863.533992] ? io_submit_sqes+0x85c0/0x85c0 [ 1863.534901] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1863.535908] ? wait_for_completion_io+0x270/0x270 [ 1863.536908] ? rcu_read_lock_any_held+0x75/0xa0 [ 1863.537869] ? vfs_write+0x354/0xa70 [ 1863.538638] ? fput_many+0x2f/0x1a0 [ 1863.539414] ? ksys_write+0x1a9/0x260 [ 1863.540206] ? __ia32_sys_read+0xb0/0xb0 [ 1863.541055] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1863.542137] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1863.543209] do_syscall_64+0x33/0x40 [ 1863.543979] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1863.545050] RIP: 0033:0x7f65ffeffb19 [ 1863.545815] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1863.549664] RSP: 002b:00007f65fd475188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1863.551264] RAX: ffffffffffffffda RBX: 00007f6600012f60 RCX: 00007f65ffeffb19 [ 1863.552756] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1863.554251] RBP: 00007f65fd4751d0 R08: 0000000000000000 R09: 0000000000000000 [ 1863.555743] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1863.557237] R13: 00007ffddf3c20bf R14: 00007f65fd475300 R15: 0000000000022000 [ 1863.558785] CPU: 1 PID: 11243 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1863.559564] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1863.560484] Call Trace: [ 1863.560774] dump_stack+0x107/0x167 [ 1863.561168] should_fail.cold+0x5/0xa [ 1863.561588] ? create_object.isra.0+0x3a/0xa20 [ 1863.562092] should_failslab+0x5/0x20 [ 1863.562509] kmem_cache_alloc+0x5b/0x310 [ 1863.562970] ? copy_process+0x5d2/0x7800 [ 1863.563425] create_object.isra.0+0x3a/0xa20 [ 1863.563911] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1863.564471] kmem_cache_alloc_node+0x169/0x330 [ 1863.564975] copy_process+0x5d2/0x7800 [ 1863.565414] ? stack_trace_save+0x8c/0xc0 [ 1863.565856] ? stack_trace_consume_entry+0x160/0x160 [ 1863.566402] ? kasan_save_stack+0x32/0x40 [ 1863.566862] ? kasan_save_stack+0x1b/0x40 [ 1863.567324] ? create_io_worker+0xe8/0x620 [ 1863.567777] ? io_wqe_enqueue+0x69e/0xbe0 [ 1863.568240] ? __cleanup_sighand+0xb0/0xb0 [ 1863.568700] ? __lockdep_reset_lock+0x180/0x180 [ 1863.569229] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1863.569824] ? io_wqe_dec_running+0x220/0x220 [ 1863.570318] create_io_thread+0xb6/0xf0 [ 1863.570751] ? pidfd_pid+0x90/0x90 [ 1863.571139] ? io_wqe_dec_running+0x220/0x220 [ 1863.571630] ? __init_swait_queue_head+0xc6/0x150 [ 1863.572169] create_io_worker+0x23a/0x620 [ 1863.572609] io_wqe_enqueue+0x69e/0xbe0 [ 1863.573056] ? create_worker_cb+0x260/0x260 [ 1863.573524] ? io_prep_async_work+0xf3/0x550 [ 1863.574008] ? io_prep_async_work+0x125/0x550 [ 1863.574400] FAULT_INJECTION: forcing a failure. [ 1863.574400] name failslab, interval 1, probability 0, space 0, times 0 [ 1863.574509] ? io_prep_async_work+0x34e/0x550 [ 1863.577271] io_queue_async_work+0x26b/0x4f0 [ 1863.577748] __io_queue_sqe+0x5cc/0x9d0 [ 1863.578193] ? io_issue_sqe+0x7700/0x7700 [ 1863.578640] ? io_poll_queue_proc+0x50/0x50 [ 1863.579130] io_submit_sqes+0x4461/0x85c0 [ 1863.579600] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1863.580151] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1863.580680] ? lock_downgrade+0x6d0/0x6d0 [ 1863.581129] ? find_held_lock+0x2c/0x110 [ 1863.581562] ? io_submit_sqes+0x85c0/0x85c0 [ 1863.582052] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1863.582568] ? wait_for_completion_io+0x270/0x270 [ 1863.583119] ? rcu_read_lock_any_held+0x75/0xa0 [ 1863.583619] ? vfs_write+0x354/0xa70 [ 1863.584027] ? fput_many+0x2f/0x1a0 [ 1863.584416] ? ksys_write+0x1a9/0x260 [ 1863.584829] ? __ia32_sys_read+0xb0/0xb0 [ 1863.585275] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1863.585841] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1863.586401] do_syscall_64+0x33/0x40 [ 1863.586810] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1863.587361] RIP: 0033:0x7f369cad5b19 [ 1863.587768] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1863.589757] RSP: 002b:00007f369a04b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1863.590574] RAX: ffffffffffffffda RBX: 00007f369cbe8f60 RCX: 00007f369cad5b19 [ 1863.591386] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1863.592164] RBP: 00007f369a04b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1863.592931] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1863.593706] R13: 00007ffcb9edce5f R14: 00007f369a04b300 R15: 0000000000022000 [ 1863.594515] CPU: 0 PID: 11236 Comm: syz-executor.7 Not tainted 5.10.205 #1 [ 1863.595983] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1863.597719] Call Trace: [ 1863.598270] dump_stack+0x107/0x167 [ 1863.599035] should_fail.cold+0x5/0xa [ 1863.599829] ? alloc_pid+0xd7/0xd30 [ 1863.600601] should_failslab+0x5/0x20 [ 1863.601387] kmem_cache_alloc+0x5b/0x310 [ 1863.602244] alloc_pid+0xd7/0xd30 [ 1863.602993] copy_process+0x3a8e/0x7800 [ 1863.603829] ? stack_trace_save+0x8c/0xc0 [ 1863.604688] ? stack_trace_consume_entry+0x160/0x160 [ 1863.605776] ? __cleanup_sighand+0xb0/0xb0 [ 1863.606655] ? __lockdep_reset_lock+0x180/0x180 [ 1863.607642] ? lock_acquire+0x197/0x470 [ 1863.608462] ? create_object.isra.0+0x3ad/0xa20 [ 1863.609434] ? lock_release+0x680/0x680 [ 1863.610263] ? find_held_lock+0x2c/0x110 [ 1863.611120] ? io_wqe_dec_running+0x220/0x220 [ 1863.612052] create_io_thread+0xb6/0xf0 [ 1863.612880] ? pidfd_pid+0x90/0x90 [ 1863.613629] ? mark_held_locks+0x9e/0xe0 [ 1863.614482] ? io_wqe_dec_running+0x220/0x220 [ 1863.615452] ? __init_swait_queue_head+0xc6/0x150 [ 1863.616466] create_io_worker+0x23a/0x620 [ 1863.617336] io_wqe_enqueue+0x69e/0xbe0 [ 1863.618178] ? create_worker_cb+0x260/0x260 [ 1863.619083] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1863.620026] ? io_prep_async_work+0x34e/0x550 [ 1863.620969] io_queue_async_work+0x26b/0x4f0 [ 1863.621891] __io_queue_sqe+0x5cc/0x9d0 [ 1863.622734] ? io_issue_sqe+0x7700/0x7700 [ 1863.623596] ? io_poll_queue_proc+0x50/0x50 [ 1863.624505] io_submit_sqes+0x4461/0x85c0 [ 1863.625411] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1863.626441] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1863.627455] ? lock_downgrade+0x6d0/0x6d0 [ 1863.628317] ? find_held_lock+0x2c/0x110 [ 1863.629166] ? io_submit_sqes+0x85c0/0x85c0 [ 1863.630074] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1863.631102] ? wait_for_completion_io+0x270/0x270 [ 1863.632113] ? rcu_read_lock_any_held+0x75/0xa0 [ 1863.633065] ? vfs_write+0x354/0xa70 [ 1863.633838] ? fput_many+0x2f/0x1a0 [ 1863.634587] ? ksys_write+0x1a9/0x260 [ 1863.635382] ? __ia32_sys_read+0xb0/0xb0 [ 1863.636222] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1863.637291] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1863.638355] do_syscall_64+0x33/0x40 [ 1863.639131] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1863.640186] RIP: 0033:0x7f2b60e93b19 [ 1863.640972] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1863.644732] RSP: 002b:00007f2b5e409188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1863.646299] RAX: ffffffffffffffda RBX: 00007f2b60fa6f60 RCX: 00007f2b60e93b19 [ 1863.647776] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1863.649239] RBP: 00007f2b5e4091d0 R08: 0000000000000000 R09: 0000000000000000 [ 1863.650714] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1863.652186] R13: 00007ffffc42e53f R14: 00007f2b5e409300 R15: 0000000000022000 [ 1863.672221] FAULT_INJECTION: forcing a failure. [ 1863.672221] name failslab, interval 1, probability 0, space 0, times 0 [ 1863.673526] CPU: 1 PID: 11247 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1863.674287] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1863.675193] Call Trace: [ 1863.675489] dump_stack+0x107/0x167 [ 1863.675907] should_fail.cold+0x5/0xa [ 1863.676338] ? create_object.isra.0+0x3a/0xa20 [ 1863.676853] should_failslab+0x5/0x20 [ 1863.677274] kmem_cache_alloc+0x5b/0x310 [ 1863.677713] ? do_syscall_64+0x33/0x40 [ 1863.678140] ? entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1863.678729] create_object.isra.0+0x3a/0xa20 [ 1863.679220] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1863.679791] __kmalloc_track_caller+0x177/0x370 [ 1863.680306] ? hwsim_new_radio_nl+0x967/0x1080 [ 1863.680812] kstrndup+0x5f/0x110 [ 1863.681194] hwsim_new_radio_nl+0x967/0x1080 [ 1863.681690] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1863.682273] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1863.683012] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1863.683722] genl_family_rcv_msg_doit+0x22d/0x330 [ 1863.684259] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1863.684969] ? cap_capable+0x1cd/0x230 [ 1863.685425] ? ns_capable+0xe2/0x110 [ 1863.685857] genl_rcv_msg+0x33c/0x5a0 [ 1863.686290] ? genl_get_cmd+0x480/0x480 [ 1863.686743] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1863.687278] FAULT_INJECTION: forcing a failure. [ 1863.687278] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1863.687339] ? lock_release+0x680/0x680 [ 1863.690166] ? __lockdep_reset_lock+0x180/0x180 [ 1863.690681] netlink_rcv_skb+0x14b/0x430 [ 1863.691156] ? genl_get_cmd+0x480/0x480 [ 1863.691578] ? netlink_ack+0xab0/0xab0 [ 1863.692036] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1863.692529] ? is_vmalloc_addr+0x7b/0xb0 [ 1863.692987] genl_rcv+0x24/0x40 [ 1863.693346] netlink_unicast+0x549/0x7f0 [ 1863.693804] ? netlink_attachskb+0x870/0x870 [ 1863.694309] netlink_sendmsg+0x90f/0xdf0 [ 1863.694766] ? netlink_unicast+0x7f0/0x7f0 [ 1863.695262] ? netlink_unicast+0x7f0/0x7f0 [ 1863.695730] __sock_sendmsg+0x154/0x190 [ 1863.696193] ____sys_sendmsg+0x70d/0x870 [ 1863.696638] ? sock_write_iter+0x3d0/0x3d0 [ 1863.697114] ? do_recvmmsg+0x6d0/0x6d0 [ 1863.697535] ? perf_trace_lock+0xac/0x490 [ 1863.698015] ? __lockdep_reset_lock+0x180/0x180 [ 1863.698527] ? perf_trace_lock+0xac/0x490 [ 1863.698995] ? SOFTIRQ_verbose+0x10/0x10 [ 1863.699447] ___sys_sendmsg+0xf3/0x170 [ 1863.699898] ? sendmsg_copy_msghdr+0x160/0x160 [ 1863.700416] ? lock_downgrade+0x6d0/0x6d0 [ 1863.700877] ? find_held_lock+0x2c/0x110 [ 1863.701337] ? __fget_files+0x296/0x4c0 [ 1863.701784] ? __fget_light+0xea/0x290 [ 1863.702225] __sys_sendmsg+0xe5/0x1b0 [ 1863.702637] ? __sys_sendmsg_sock+0x40/0x40 [ 1863.703141] ? rcu_read_lock_any_held+0x75/0xa0 [ 1863.703668] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1863.704263] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1863.704827] ? trace_hardirqs_on+0x5b/0x180 [ 1863.705319] do_syscall_64+0x33/0x40 [ 1863.705728] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1863.706297] RIP: 0033:0x7fd54fedeb19 [ 1863.706707] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1863.708729] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1863.709567] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 1863.710354] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1863.711166] RBP: 00007fd54d4541d0 R08: 0000000000000000 R09: 0000000000000000 [ 1863.711943] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1863.712728] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 [ 1863.713555] CPU: 0 PID: 11240 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 1863.715037] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1863.716789] Call Trace: [ 1863.717341] dump_stack+0x107/0x167 [ 1863.718111] should_fail.cold+0x5/0xa [ 1863.718923] __alloc_pages_nodemask+0x182/0x600 [ 1863.719897] ? lock_downgrade+0x6d0/0x6d0 [ 1863.720766] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1863.722020] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 1863.723120] ? kmem_cache_alloc_node+0x2bc/0x330 [ 1863.724114] copy_process+0x618/0x7800 [ 1863.724936] ? stack_trace_save+0x8c/0xc0 [ 1863.725804] ? stack_trace_consume_entry+0x160/0x160 [ 1863.726876] ? kasan_save_stack+0x32/0x40 [ 1863.727738] ? kasan_save_stack+0x1b/0x40 [ 1863.728601] ? create_io_worker+0xe8/0x620 [ 1863.729484] ? io_wqe_enqueue+0x69e/0xbe0 [ 1863.730351] ? __cleanup_sighand+0xb0/0xb0 [ 1863.731240] ? __lockdep_reset_lock+0x180/0x180 [ 1863.732223] ? lock_acquire+0x197/0x470 [ 1863.733055] ? create_object.isra.0+0x3ad/0xa20 [ 1863.734039] ? lock_release+0x680/0x680 [ 1863.734887] ? find_held_lock+0x2c/0x110 [ 1863.735748] ? io_wqe_dec_running+0x220/0x220 [ 1863.736697] create_io_thread+0xb6/0xf0 [ 1863.737530] ? pidfd_pid+0x90/0x90 [ 1863.738263] ? mark_held_locks+0x9e/0xe0 [ 1863.739129] ? io_wqe_dec_running+0x220/0x220 [ 1863.740078] ? __init_swait_queue_head+0xc6/0x150 [ 1863.741086] create_io_worker+0x23a/0x620 [ 1863.741953] io_wqe_enqueue+0x69e/0xbe0 [ 1863.742815] ? create_worker_cb+0x260/0x260 [ 1863.743717] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1863.744662] ? io_prep_async_work+0x34e/0x550 [ 1863.745596] io_queue_async_work+0x26b/0x4f0 [ 1863.746512] __io_queue_sqe+0x5cc/0x9d0 [ 1863.747352] ? io_issue_sqe+0x7700/0x7700 [ 1863.748210] ? io_poll_queue_proc+0x50/0x50 [ 1863.749114] io_submit_sqes+0x4461/0x85c0 [ 1863.750011] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1863.751046] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1863.752045] ? lock_downgrade+0x6d0/0x6d0 [ 1863.752902] ? find_held_lock+0x2c/0x110 [ 1863.753747] ? io_submit_sqes+0x85c0/0x85c0 [ 1863.754638] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1863.755648] ? wait_for_completion_io+0x270/0x270 [ 1863.756647] ? rcu_read_lock_any_held+0x75/0xa0 [ 1863.757601] ? vfs_write+0x354/0xa70 [ 1863.758370] ? fput_many+0x2f/0x1a0 [ 1863.759140] ? ksys_write+0x1a9/0x260 [ 1863.759924] ? __ia32_sys_read+0xb0/0xb0 [ 1863.760770] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1863.761850] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1863.762939] do_syscall_64+0x33/0x40 [ 1863.763699] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1863.764758] RIP: 0033:0x7f1a51fc5b19 [ 1863.765520] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1863.769382] RSP: 002b:00007f1a4f53b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1863.770962] RAX: ffffffffffffffda RBX: 00007f1a520d8f60 RCX: 00007f1a51fc5b19 [ 1863.772453] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1863.772475] RBP: 00007f1a4f53b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1863.774774] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1863.775147] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1863.776234] R13: 00007ffe3ce1c42f R14: 00007f1a4f53b300 R15: 0000000000022000 [ 1863.778100] CPU: 1 PID: 11247 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1863.778853] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1863.779728] Call Trace: [ 1863.780020] dump_stack+0x107/0x167 [ 1863.780417] sysfs_warn_dup.cold+0x1c/0x29 [ 1863.780889] sysfs_do_create_link_sd+0x122/0x140 [ 1863.781390] sysfs_create_link+0x5f/0xc0 [ 1863.781835] device_add+0x703/0x1c50 [ 1863.782235] ? devlink_add_symlinks+0x970/0x970 [ 1863.782753] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1863.783319] wiphy_register+0x1da6/0x2850 [ 1863.783783] ? wiphy_unregister+0xb90/0xb90 [ 1863.784252] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1863.784834] ? ieee80211_register_hw+0x239f/0x38b0 [ 1863.785379] ieee80211_register_hw+0x23c5/0x38b0 [ 1863.785904] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1863.786415] ? net_generic+0xdb/0x2b0 [ 1863.786840] ? lockdep_init_map_type+0x2c7/0x780 [ 1863.787347] ? memset+0x20/0x50 [ 1863.787704] ? __hrtimer_init+0x12c/0x270 [ 1863.788147] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1863.788690] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1863.789177] ? hwsim_new_radio_nl+0x967/0x1080 [ 1863.789664] ? memcpy+0x39/0x60 [ 1863.790026] hwsim_new_radio_nl+0x991/0x1080 [ 1863.790502] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1863.791084] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1863.791774] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1863.792466] genl_family_rcv_msg_doit+0x22d/0x330 [ 1863.792986] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1863.793686] ? cap_capable+0x1cd/0x230 [ 1863.794117] ? ns_capable+0xe2/0x110 [ 1863.794514] genl_rcv_msg+0x33c/0x5a0 [ 1863.794943] ? genl_get_cmd+0x480/0x480 [ 1863.795361] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1863.795922] ? lock_release+0x680/0x680 [ 1863.796348] ? __lockdep_reset_lock+0x180/0x180 [ 1863.796860] netlink_rcv_skb+0x14b/0x430 [ 1863.797288] ? genl_get_cmd+0x480/0x480 [ 1863.797714] ? netlink_ack+0xab0/0xab0 [ 1863.798139] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1863.798622] ? is_vmalloc_addr+0x7b/0xb0 [ 1863.799067] genl_rcv+0x24/0x40 [ 1863.799432] netlink_unicast+0x549/0x7f0 [ 1863.799887] ? netlink_attachskb+0x870/0x870 [ 1863.800384] netlink_sendmsg+0x90f/0xdf0 [ 1863.800841] ? netlink_unicast+0x7f0/0x7f0 [ 1863.801306] ? netlink_unicast+0x7f0/0x7f0 [ 1863.801761] __sock_sendmsg+0x154/0x190 [ 1863.802191] ____sys_sendmsg+0x70d/0x870 [ 1863.802624] ? sock_write_iter+0x3d0/0x3d0 [ 1863.803081] ? do_recvmmsg+0x6d0/0x6d0 [ 1863.803490] ? perf_trace_lock+0xac/0x490 [ 1863.803939] ? __lockdep_reset_lock+0x180/0x180 [ 1863.804441] ? perf_trace_lock+0xac/0x490 [ 1863.804885] ? SOFTIRQ_verbose+0x10/0x10 [ 1863.805324] ___sys_sendmsg+0xf3/0x170 [ 1863.805740] ? sendmsg_copy_msghdr+0x160/0x160 [ 1863.806227] ? lock_downgrade+0x6d0/0x6d0 [ 1863.806676] ? find_held_lock+0x2c/0x110 [ 1863.807119] ? __fget_files+0x296/0x4c0 [ 1863.807551] ? __fget_light+0xea/0x290 [ 1863.807980] __sys_sendmsg+0xe5/0x1b0 [ 1863.808393] ? __sys_sendmsg_sock+0x40/0x40 [ 1863.808859] ? rcu_read_lock_any_held+0x75/0xa0 [ 1863.809372] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1863.809932] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1863.810473] ? trace_hardirqs_on+0x5b/0x180 [ 1863.810966] do_syscall_64+0x33/0x40 [ 1863.811359] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1863.811917] RIP: 0033:0x7fd54fedeb19 [ 1863.812337] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1863.814325] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1863.815153] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 1863.815915] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1863.816656] RBP: 00007fd54d4541d0 R08: 0000000000000000 R09: 0000000000000000 [ 1863.817405] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1863.818153] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 21:23:09 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 22) 21:23:09 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 14) 21:23:09 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 21) 21:23:10 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 22) [ 1863.853209] FAULT_INJECTION: forcing a failure. [ 1863.853209] name failslab, interval 1, probability 0, space 0, times 0 [ 1863.854528] CPU: 1 PID: 11255 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1863.855258] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1863.856142] Call Trace: [ 1863.856455] dump_stack+0x107/0x167 [ 1863.856857] should_fail.cold+0x5/0xa [ 1863.857269] ? io_connect+0x3b1/0x610 [ 1863.857684] should_failslab+0x5/0x20 [ 1863.858086] __kmalloc+0x72/0x390 [ 1863.858460] io_connect+0x3b1/0x610 [ 1863.858864] ? io_prep_rw+0x1050/0x1050 [ 1863.859332] ? __lock_acquire+0xbb1/0x5b00 [ 1863.859830] io_issue_sqe+0x1611/0x7700 [ 1863.860274] ? perf_trace_lock+0xac/0x490 [ 1863.860745] ? SOFTIRQ_verbose+0x10/0x10 [ 1863.861197] ? __lockdep_reset_lock+0x180/0x180 [ 1863.861694] ? io_connect+0x610/0x610 [ 1863.862110] ? lock_acquire+0x197/0x470 [ 1863.862541] ? find_held_lock+0x2c/0x110 [ 1863.862993] ? __fget_files+0x26d/0x4c0 [ 1863.863421] ? lock_downgrade+0x6d0/0x6d0 [ 1863.863880] __io_queue_sqe+0x90/0x9d0 [ 1863.864301] ? io_issue_sqe+0x7700/0x7700 [ 1863.864768] io_submit_sqes+0x4461/0x85c0 [ 1863.865254] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1863.865815] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1863.866348] ? lock_downgrade+0x6d0/0x6d0 [ 1863.866809] ? find_held_lock+0x2c/0x110 [ 1863.867250] ? io_submit_sqes+0x85c0/0x85c0 [ 1863.867728] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1863.868265] ? wait_for_completion_io+0x270/0x270 [ 1863.868808] ? rcu_read_lock_any_held+0x75/0xa0 [ 1863.869330] ? vfs_write+0x354/0xa70 [ 1863.869737] ? fput_many+0x2f/0x1a0 [ 1863.870130] ? ksys_write+0x1a9/0x260 [ 1863.870542] ? __ia32_sys_read+0xb0/0xb0 [ 1863.871020] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1863.871591] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1863.872154] do_syscall_64+0x33/0x40 [ 1863.872547] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1863.873092] RIP: 0033:0x7fb1fd6f6b19 [ 1863.873488] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1863.875535] RSP: 002b:00007fb1fac6c188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1863.876371] RAX: ffffffffffffffda RBX: 00007fb1fd809f60 RCX: 00007fb1fd6f6b19 [ 1863.877133] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1863.877896] RBP: 00007fb1fac6c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1863.878668] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1863.879443] R13: 00007ffc06ae2c8f R14: 00007fb1fac6c300 R15: 0000000000022000 [ 1863.898099] FAULT_INJECTION: forcing a failure. [ 1863.898099] name failslab, interval 1, probability 0, space 0, times 0 [ 1863.900434] CPU: 1 PID: 11257 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 1863.901216] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1863.902096] Call Trace: [ 1863.902390] dump_stack+0x107/0x167 [ 1863.902817] should_fail.cold+0x5/0xa [ 1863.903253] ? alloc_pid+0xd7/0xd30 [ 1863.903651] should_failslab+0x5/0x20 [ 1863.904055] kmem_cache_alloc+0x5b/0x310 [ 1863.904498] alloc_pid+0xd7/0xd30 [ 1863.904889] copy_process+0x3a8e/0x7800 [ 1863.905315] ? stack_trace_save+0x8c/0xc0 [ 1863.905768] ? stack_trace_consume_entry+0x160/0x160 [ 1863.906363] ? __cleanup_sighand+0xb0/0xb0 [ 1863.906856] ? __lockdep_reset_lock+0x180/0x180 [ 1863.907384] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1863.907977] ? io_wqe_dec_running+0x220/0x220 [ 1863.908465] create_io_thread+0xb6/0xf0 [ 1863.908890] ? pidfd_pid+0x90/0x90 [ 1863.909285] ? io_wqe_dec_running+0x220/0x220 [ 1863.909783] ? __init_swait_queue_head+0xc6/0x150 [ 1863.910329] create_io_worker+0x23a/0x620 [ 1863.910806] io_wqe_enqueue+0x69e/0xbe0 [ 1863.911253] ? create_worker_cb+0x260/0x260 [ 1863.911721] ? io_prep_async_work+0x34e/0x550 [ 1863.912217] io_queue_async_work+0x26b/0x4f0 [ 1863.912719] __io_queue_sqe+0x5cc/0x9d0 [ 1863.913171] ? io_issue_sqe+0x7700/0x7700 [ 1863.913620] ? io_poll_queue_proc+0x50/0x50 [ 1863.914097] io_submit_sqes+0x4461/0x85c0 [ 1863.914568] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1863.915149] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1863.915671] ? lock_downgrade+0x6d0/0x6d0 [ 1863.916108] ? find_held_lock+0x2c/0x110 [ 1863.916544] ? io_submit_sqes+0x85c0/0x85c0 [ 1863.917037] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1863.917578] ? wait_for_completion_io+0x270/0x270 [ 1863.918128] ? rcu_read_lock_any_held+0x75/0xa0 [ 1863.918644] ? vfs_write+0x354/0xa70 [ 1863.919079] ? fput_many+0x2f/0x1a0 [ 1863.919494] ? ksys_write+0x1a9/0x260 [ 1863.919913] ? __ia32_sys_read+0xb0/0xb0 [ 1863.920378] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1863.920937] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1863.921494] do_syscall_64+0x33/0x40 [ 1863.921896] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1863.922441] RIP: 0033:0x7fd08b847b19 [ 1863.922869] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1863.924845] RSP: 002b:00007fd088dbd188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1863.925695] RAX: ffffffffffffffda RBX: 00007fd08b95af60 RCX: 00007fd08b847b19 [ 1863.926480] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1863.927258] RBP: 00007fd088dbd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1863.928054] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1863.928824] R13: 00007ffe1fec748f R14: 00007fd088dbd300 R15: 0000000000022000 21:23:10 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 9) 21:23:10 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 23) 21:23:10 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 20) [ 1863.942452] FAULT_INJECTION: forcing a failure. [ 1863.942452] name failslab, interval 1, probability 0, space 0, times 0 [ 1863.945468] CPU: 0 PID: 11250 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1863.946932] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1863.948669] Call Trace: [ 1863.949220] dump_stack+0x107/0x167 [ 1863.949999] should_fail.cold+0x5/0xa [ 1863.950822] ? create_object.isra.0+0x3a/0xa20 [ 1863.951361] FAULT_INJECTION: forcing a failure. [ 1863.951361] name failslab, interval 1, probability 0, space 0, times 0 [ 1863.951781] should_failslab+0x5/0x20 [ 1863.951806] kmem_cache_alloc+0x5b/0x310 [ 1863.954615] create_object.isra.0+0x3a/0xa20 [ 1863.955545] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1863.956619] kmem_cache_alloc+0x159/0x310 [ 1863.957502] __delayacct_tsk_init+0x1b/0x80 [ 1863.958417] copy_process+0x3319/0x7800 [ 1863.959280] ? stack_trace_save+0x8c/0xc0 [ 1863.960155] ? stack_trace_consume_entry+0x160/0x160 [ 1863.961237] ? kasan_save_stack+0x1b/0x40 [ 1863.962117] ? __cleanup_sighand+0xb0/0xb0 [ 1863.963016] ? __lockdep_reset_lock+0x180/0x180 [ 1863.964019] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1863.965123] ? io_wqe_dec_running+0x220/0x220 [ 1863.966061] create_io_thread+0xb6/0xf0 [ 1863.966915] ? pidfd_pid+0x90/0x90 [ 1863.967664] ? io_wqe_dec_running+0x220/0x220 [ 1863.968625] ? __init_swait_queue_head+0xc6/0x150 [ 1863.969638] create_io_worker+0x23a/0x620 [ 1863.970508] io_wqe_enqueue+0x69e/0xbe0 [ 1863.971360] ? create_worker_cb+0x260/0x260 [ 1863.972274] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1863.973230] ? io_prep_async_work+0x34e/0x550 [ 1863.974182] io_queue_async_work+0x26b/0x4f0 [ 1863.975119] __io_queue_sqe+0x5cc/0x9d0 [ 1863.975967] ? io_issue_sqe+0x7700/0x7700 [ 1863.976838] ? io_poll_queue_proc+0x50/0x50 [ 1863.977754] io_submit_sqes+0x4461/0x85c0 [ 1863.978667] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1863.979723] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1863.980749] ? io_submit_sqes+0x85c0/0x85c0 [ 1863.981658] ? recalibrate_cpu_khz+0x10/0x10 [ 1863.982578] ? ktime_get+0x158/0x1f0 [ 1863.983377] ? setup_APIC_eilvt+0x2f0/0x2f0 [ 1863.984285] ? clockevents_program_event+0x131/0x360 [ 1863.985355] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1863.986457] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1863.987603] ? trace_hardirqs_on+0x5b/0x180 [ 1863.988513] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1863.989664] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1863.990763] do_syscall_64+0x33/0x40 [ 1863.991542] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1863.992608] RIP: 0033:0x7fd113b88b19 [ 1863.993382] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1863.997212] RSP: 002b:00007fd1110fe188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1863.998805] RAX: ffffffffffffffda RBX: 00007fd113c9bf60 RCX: 00007fd113b88b19 [ 1864.000288] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1864.001766] RBP: 00007fd1110fe1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1864.003254] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1864.004727] R13: 00007ffeed86c68f R14: 00007fd1110fe300 R15: 0000000000022000 [ 1864.006225] CPU: 1 PID: 11260 Comm: syz-executor.7 Not tainted 5.10.205 #1 [ 1864.007069] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1864.008044] Call Trace: [ 1864.008357] dump_stack+0x107/0x167 [ 1864.008792] should_fail.cold+0x5/0xa [ 1864.009249] ? __delayacct_tsk_init+0x1b/0x80 [ 1864.009772] should_failslab+0x5/0x20 [ 1864.010215] kmem_cache_alloc+0x5b/0x310 [ 1864.010689] __delayacct_tsk_init+0x1b/0x80 [ 1864.011202] copy_process+0x3319/0x7800 [ 1864.011667] ? stack_trace_save+0x8c/0xc0 [ 1864.012158] ? stack_trace_consume_entry+0x160/0x160 [ 1864.012762] ? kasan_save_stack+0x1b/0x40 [ 1864.013254] ? __cleanup_sighand+0xb0/0xb0 [ 1864.013744] ? __lockdep_reset_lock+0x180/0x180 [ 1864.014286] ? lock_acquire+0x197/0x470 [ 1864.014778] ? create_object.isra.0+0x3ad/0xa20 [ 1864.015327] ? lock_release+0x680/0x680 [ 1864.015781] ? find_held_lock+0x2c/0x110 [ 1864.016259] ? io_wqe_dec_running+0x220/0x220 [ 1864.016793] create_io_thread+0xb6/0xf0 [ 1864.017261] ? pidfd_pid+0x90/0x90 [ 1864.017669] ? mark_held_locks+0x9e/0xe0 [ 1864.018141] ? io_wqe_dec_running+0x220/0x220 [ 1864.018669] ? __init_swait_queue_head+0xc6/0x150 [ 1864.019239] create_io_worker+0x23a/0x620 [ 1864.019720] io_wqe_enqueue+0x69e/0xbe0 [ 1864.020180] ? create_worker_cb+0x260/0x260 [ 1864.020677] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1864.021213] ? io_prep_async_work+0x34e/0x550 [ 1864.021741] io_queue_async_work+0x26b/0x4f0 [ 1864.022263] __io_queue_sqe+0x5cc/0x9d0 [ 1864.022731] ? io_issue_sqe+0x7700/0x7700 [ 1864.023216] ? io_poll_queue_proc+0x50/0x50 [ 1864.023720] io_submit_sqes+0x4461/0x85c0 [ 1864.024216] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1864.024787] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1864.025345] ? lock_downgrade+0x6d0/0x6d0 [ 1864.025832] ? find_held_lock+0x2c/0x110 [ 1864.026317] ? io_submit_sqes+0x85c0/0x85c0 [ 1864.026832] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1864.027387] ? wait_for_completion_io+0x270/0x270 [ 1864.027943] ? rcu_read_lock_any_held+0x75/0xa0 [ 1864.028480] ? vfs_write+0x354/0xa70 [ 1864.028914] ? fput_many+0x2f/0x1a0 [ 1864.029345] ? ksys_write+0x1a9/0x260 [ 1864.029789] ? __ia32_sys_read+0xb0/0xb0 [ 1864.030259] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1864.030875] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1864.031473] do_syscall_64+0x33/0x40 [ 1864.031898] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1864.032493] RIP: 0033:0x7f2b60e93b19 [ 1864.032924] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1864.035075] RSP: 002b:00007f2b5e409188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1864.035957] RAX: ffffffffffffffda RBX: 00007f2b60fa6f60 RCX: 00007f2b60e93b19 [ 1864.036773] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1864.037587] RBP: 00007f2b5e4091d0 R08: 0000000000000000 R09: 0000000000000000 [ 1864.038427] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1864.038473] FAULT_INJECTION: forcing a failure. [ 1864.038473] name failslab, interval 1, probability 0, space 0, times 0 [ 1864.039258] R13: 00007ffffc42e53f R14: 00007f2b5e409300 R15: 0000000000022000 [ 1864.043932] CPU: 0 PID: 11258 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1864.045334] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1864.047019] Call Trace: [ 1864.047555] dump_stack+0x107/0x167 [ 1864.048301] should_fail.cold+0x5/0xa [ 1864.049078] ? alloc_pid+0xd7/0xd30 [ 1864.049817] should_failslab+0x5/0x20 [ 1864.050581] kmem_cache_alloc+0x5b/0x310 [ 1864.051412] alloc_pid+0xd7/0xd30 [ 1864.052127] copy_process+0x3a8e/0x7800 [ 1864.052938] ? stack_trace_save+0x8c/0xc0 [ 1864.053782] ? stack_trace_consume_entry+0x160/0x160 [ 1864.054852] ? __cleanup_sighand+0xb0/0xb0 [ 1864.055708] ? __lockdep_reset_lock+0x180/0x180 [ 1864.056642] ? lock_acquire+0x197/0x470 [ 1864.057439] ? create_object.isra.0+0x3ad/0xa20 [ 1864.058383] ? lock_release+0x680/0x680 [ 1864.059191] ? find_held_lock+0x2c/0x110 [ 1864.060020] ? io_wqe_dec_running+0x220/0x220 [ 1864.060924] create_io_thread+0xb6/0xf0 [ 1864.061724] ? pidfd_pid+0x90/0x90 [ 1864.062443] ? mark_held_locks+0x9e/0xe0 [ 1864.063288] ? io_wqe_dec_running+0x220/0x220 [ 1864.064202] ? __init_swait_queue_head+0xc6/0x150 [ 1864.065174] create_io_worker+0x23a/0x620 [ 1864.066018] io_wqe_enqueue+0x69e/0xbe0 [ 1864.066836] ? create_worker_cb+0x260/0x260 [ 1864.067708] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1864.068617] ? io_prep_async_work+0x34e/0x550 [ 1864.069528] io_queue_async_work+0x26b/0x4f0 [ 1864.070422] __io_queue_sqe+0x5cc/0x9d0 [ 1864.071240] ? io_issue_sqe+0x7700/0x7700 [ 1864.072075] ? io_poll_queue_proc+0x50/0x50 [ 1864.072965] io_submit_sqes+0x4461/0x85c0 [ 1864.073823] ? __do_sys_io_uring_enter+0x1f2/0x1920 [ 1864.074856] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1864.075857] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1864.076842] ? io_submit_sqes+0x85c0/0x85c0 [ 1864.077710] ? recalibrate_cpu_khz+0x10/0x10 [ 1864.078594] ? ktime_get+0x158/0x1f0 [ 1864.079361] ? setup_APIC_eilvt+0x2f0/0x2f0 [ 1864.080229] ? clockevents_program_event+0x131/0x360 [ 1864.081259] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1864.082313] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1864.083404] ? trace_hardirqs_on+0x5b/0x180 [ 1864.084276] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1864.085372] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1864.086407] do_syscall_64+0x33/0x40 [ 1864.087166] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1864.088184] RIP: 0033:0x7f369cad5b19 [ 1864.088932] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1864.092581] RSP: 002b:00007f369a04b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1864.094093] RAX: ffffffffffffffda RBX: 00007f369cbe8f60 RCX: 00007f369cad5b19 [ 1864.095533] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1864.096953] RBP: 00007f369a04b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1864.098376] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1864.099806] R13: 00007ffcb9edce5f R14: 00007f369a04b300 R15: 0000000000022000 21:23:10 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 23) 21:23:10 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 15) [ 1864.128153] FAULT_INJECTION: forcing a failure. [ 1864.128153] name failslab, interval 1, probability 0, space 0, times 0 [ 1864.129488] CPU: 1 PID: 11263 Comm: syz-executor.4 Not tainted 5.10.205 #1 [ 1864.130283] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1864.131265] Call Trace: [ 1864.131582] dump_stack+0x107/0x167 [ 1864.132040] should_fail.cold+0x5/0xa [ 1864.132509] ? create_object.isra.0+0x3a/0xa20 [ 1864.133068] should_failslab+0x5/0x20 [ 1864.133526] kmem_cache_alloc+0x5b/0x310 [ 1864.134014] ? mark_held_locks+0x9e/0xe0 [ 1864.134491] create_object.isra.0+0x3a/0xa20 [ 1864.135054] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1864.135667] kmem_cache_alloc_bulk+0x168/0x320 [ 1864.136221] io_submit_sqes+0x6f76/0x85c0 [ 1864.136714] ? percpu_ref_tryget_many+0x166/0x2d0 [ 1864.137290] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1864.137889] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1864.138455] ? lock_downgrade+0x6d0/0x6d0 [ 1864.138948] ? find_held_lock+0x2c/0x110 [ 1864.139426] ? io_submit_sqes+0x85c0/0x85c0 [ 1864.139937] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1864.140500] ? wait_for_completion_io+0x270/0x270 [ 1864.141081] ? rcu_read_lock_any_held+0x75/0xa0 [ 1864.141619] ? vfs_write+0x354/0xa70 [ 1864.142057] ? fput_many+0x2f/0x1a0 [ 1864.142477] ? ksys_write+0x1a9/0x260 [ 1864.142938] ? __ia32_sys_read+0xb0/0xb0 [ 1864.143411] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1864.144027] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1864.144652] do_syscall_64+0x33/0x40 [ 1864.145098] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1864.145691] RIP: 0033:0x7f65ffeffb19 [ 1864.146127] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1864.148296] RSP: 002b:00007f65fd475188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1864.149175] RAX: ffffffffffffffda RBX: 00007f6600012f60 RCX: 00007f65ffeffb19 [ 1864.150015] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1864.150864] RBP: 00007f65fd4751d0 R08: 0000000000000000 R09: 0000000000000000 [ 1864.151690] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 1864.152514] R13: 00007ffddf3c20bf R14: 00007f65fd475300 R15: 0000000000022000 [ 1864.163554] FAULT_INJECTION: forcing a failure. [ 1864.163554] name failslab, interval 1, probability 0, space 0, times 0 [ 1864.164923] CPU: 1 PID: 11267 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 1864.165746] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1864.166713] Call Trace: [ 1864.167038] dump_stack+0x107/0x167 [ 1864.167442] should_fail.cold+0x5/0xa [ 1864.167858] ? __delayacct_tsk_init+0x1b/0x80 [ 1864.168353] should_failslab+0x5/0x20 [ 1864.168775] kmem_cache_alloc+0x5b/0x310 [ 1864.169225] __delayacct_tsk_init+0x1b/0x80 [ 1864.169693] copy_process+0x3319/0x7800 [ 1864.170140] ? stack_trace_save+0x8c/0xc0 [ 1864.170607] ? stack_trace_consume_entry+0x160/0x160 [ 1864.171186] ? kasan_save_stack+0x1b/0x40 [ 1864.171648] ? __cleanup_sighand+0xb0/0xb0 [ 1864.172113] ? __lockdep_reset_lock+0x180/0x180 [ 1864.172493] FAULT_INJECTION: forcing a failure. [ 1864.172493] name failslab, interval 1, probability 0, space 0, times 0 [ 1864.172632] ? lock_acquire+0x197/0x470 [ 1864.172642] ? create_object.isra.0+0x3ad/0xa20 [ 1864.172656] ? lock_release+0x680/0x680 [ 1864.172667] ? find_held_lock+0x2c/0x110 [ 1864.172682] ? io_wqe_dec_running+0x220/0x220 [ 1864.172694] create_io_thread+0xb6/0xf0 [ 1864.172705] ? pidfd_pid+0x90/0x90 [ 1864.172724] ? mark_held_locks+0x9e/0xe0 [ 1864.178436] ? io_wqe_dec_running+0x220/0x220 [ 1864.178963] ? __init_swait_queue_head+0xc6/0x150 [ 1864.179487] create_io_worker+0x23a/0x620 [ 1864.179947] io_wqe_enqueue+0x69e/0xbe0 [ 1864.180375] ? create_worker_cb+0x260/0x260 [ 1864.180846] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1864.181345] ? io_prep_async_work+0x34e/0x550 [ 1864.181844] io_queue_async_work+0x26b/0x4f0 [ 1864.182336] __io_queue_sqe+0x5cc/0x9d0 [ 1864.182777] ? io_issue_sqe+0x7700/0x7700 [ 1864.183242] ? io_poll_queue_proc+0x50/0x50 [ 1864.183726] io_submit_sqes+0x4461/0x85c0 [ 1864.184210] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1864.184747] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1864.185283] ? lock_downgrade+0x6d0/0x6d0 [ 1864.185739] ? find_held_lock+0x2c/0x110 [ 1864.186199] ? io_submit_sqes+0x85c0/0x85c0 [ 1864.186663] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1864.187209] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1864.187778] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1864.188379] ? trace_hardirqs_on+0x5b/0x180 [ 1864.188843] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1864.189430] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1864.189996] do_syscall_64+0x33/0x40 [ 1864.190397] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1864.190984] RIP: 0033:0x7fd08b847b19 [ 1864.191383] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1864.193387] RSP: 002b:00007fd088dbd188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1864.194233] RAX: ffffffffffffffda RBX: 00007fd08b95af60 RCX: 00007fd08b847b19 [ 1864.195032] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1864.195798] RBP: 00007fd088dbd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1864.196575] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1864.197355] R13: 00007ffe1fec748f R14: 00007fd088dbd300 R15: 0000000000022000 [ 1864.198171] CPU: 0 PID: 11264 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 1864.199532] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1864.201123] Call Trace: [ 1864.201645] dump_stack+0x107/0x167 [ 1864.202356] should_fail.cold+0x5/0xa [ 1864.203109] ? __delayacct_tsk_init+0x1b/0x80 [ 1864.203986] should_failslab+0x5/0x20 [ 1864.204726] kmem_cache_alloc+0x5b/0x310 [ 1864.205526] __delayacct_tsk_init+0x1b/0x80 [ 1864.206366] copy_process+0x3319/0x7800 [ 1864.207156] ? stack_trace_save+0x8c/0xc0 [ 1864.207963] ? stack_trace_consume_entry+0x160/0x160 [ 1864.208956] ? kasan_save_stack+0x1b/0x40 [ 1864.209767] ? __cleanup_sighand+0xb0/0xb0 [ 1864.210577] ? __lockdep_reset_lock+0x180/0x180 [ 1864.211489] ? lock_acquire+0x197/0x470 [ 1864.212252] ? create_object.isra.0+0x3ad/0xa20 [ 1864.213142] ? lock_release+0x680/0x680 [ 1864.213905] ? find_held_lock+0x2c/0x110 [ 1864.214692] ? io_wqe_dec_running+0x220/0x220 [ 1864.215553] create_io_thread+0xb6/0xf0 [ 1864.216321] ? pidfd_pid+0x90/0x90 [ 1864.217002] ? mark_held_locks+0x9e/0xe0 [ 1864.217787] ? io_wqe_dec_running+0x220/0x220 [ 1864.218689] ? __init_swait_queue_head+0xc6/0x150 [ 1864.219645] create_io_worker+0x23a/0x620 [ 1864.220450] io_wqe_enqueue+0x69e/0xbe0 [ 1864.221213] ? create_worker_cb+0x260/0x260 [ 1864.222038] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1864.222917] ? io_prep_async_work+0x34e/0x550 [ 1864.223784] io_queue_async_work+0x26b/0x4f0 [ 1864.224631] __io_queue_sqe+0x5cc/0x9d0 [ 1864.225421] ? io_issue_sqe+0x7700/0x7700 [ 1864.226230] ? io_poll_queue_proc+0x50/0x50 [ 1864.227112] io_submit_sqes+0x4461/0x85c0 [ 1864.227946] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1864.228945] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1864.229857] ? lock_downgrade+0x6d0/0x6d0 [ 1864.230634] ? find_held_lock+0x2c/0x110 [ 1864.231410] ? io_submit_sqes+0x85c0/0x85c0 [ 1864.232234] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1864.233144] ? wait_for_completion_io+0x270/0x270 [ 1864.234051] ? rcu_read_lock_any_held+0x75/0xa0 [ 1864.234932] ? vfs_write+0x354/0xa70 [ 1864.235637] ? fput_many+0x2f/0x1a0 [ 1864.236326] ? ksys_write+0x1a9/0x260 [ 1864.237046] ? __ia32_sys_read+0xb0/0xb0 [ 1864.237814] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1864.238813] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1864.239790] do_syscall_64+0x33/0x40 [ 1864.240523] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1864.241488] RIP: 0033:0x7f1a51fc5b19 [ 1864.242229] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1864.245692] RSP: 002b:00007f1a4f53b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1864.247128] RAX: ffffffffffffffda RBX: 00007f1a520d8f60 RCX: 00007f1a51fc5b19 [ 1864.248456] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1864.249804] RBP: 00007f1a4f53b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1864.251160] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1864.252514] R13: 00007ffe3ce1c42f R14: 00007f1a4f53b300 R15: 0000000000022000 [ 1864.289178] FAULT_INJECTION: forcing a failure. [ 1864.289178] name failslab, interval 1, probability 0, space 0, times 0 [ 1864.292112] CPU: 0 PID: 11269 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1864.293378] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1864.294911] Call Trace: [ 1864.295389] dump_stack+0x107/0x167 [ 1864.296056] should_fail.cold+0x5/0xa [ 1864.296762] ? create_io_worker+0xe8/0x620 [ 1864.297528] should_failslab+0x5/0x20 [ 1864.298234] kmem_cache_alloc_node_trace+0x59/0x340 [ 1864.299170] create_io_worker+0xe8/0x620 [ 1864.299920] io_wqe_enqueue+0x69e/0xbe0 [ 1864.300645] ? create_worker_cb+0x260/0x260 [ 1864.301424] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1864.302205] ? io_prep_async_work+0x34e/0x550 [ 1864.303052] io_queue_async_work+0x26b/0x4f0 [ 1864.303856] __io_queue_sqe+0x5cc/0x9d0 [ 1864.304594] ? io_issue_sqe+0x7700/0x7700 [ 1864.305383] ? io_poll_queue_proc+0x50/0x50 [ 1864.306190] io_submit_sqes+0x4461/0x85c0 [ 1864.307012] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1864.307933] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1864.308830] ? lock_downgrade+0x6d0/0x6d0 [ 1864.309591] ? find_held_lock+0x2c/0x110 [ 1864.310346] ? io_submit_sqes+0x85c0/0x85c0 [ 1864.311154] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1864.312059] ? wait_for_completion_io+0x270/0x270 [ 1864.312946] ? rcu_read_lock_any_held+0x75/0xa0 [ 1864.313779] ? vfs_write+0x354/0xa70 [ 1864.314451] ? fput_many+0x2f/0x1a0 [ 1864.315124] ? ksys_write+0x1a9/0x260 [ 1864.315822] ? __ia32_sys_read+0xb0/0xb0 [ 1864.316548] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1864.317505] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1864.318430] do_syscall_64+0x33/0x40 [ 1864.319131] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1864.320036] RIP: 0033:0x7fb1fd6f6b19 [ 1864.320711] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1864.324118] RSP: 002b:00007fb1fac6c188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1864.325527] RAX: ffffffffffffffda RBX: 00007fb1fd809f60 RCX: 00007fb1fd6f6b19 [ 1864.326866] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1864.328173] RBP: 00007fb1fac6c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1864.329473] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1864.330799] R13: 00007ffc06ae2c8f R14: 00007fb1fac6c300 R15: 0000000000022000 21:23:25 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) (fail_nth: 12) 21:23:25 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 24) 21:23:25 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 10) 21:23:25 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 24) [ 1879.007429] FAULT_INJECTION: forcing a failure. [ 1879.007429] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1879.011367] CPU: 0 PID: 11280 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1879.012821] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1879.014524] Call Trace: [ 1879.015084] dump_stack+0x107/0x167 [ 1879.015848] should_fail.cold+0x5/0xa [ 1879.016645] __alloc_pages_nodemask+0x182/0x600 [ 1879.017614] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1879.018865] ? lock_chain_count+0x20/0x20 [ 1879.019753] ? __lockdep_reset_lock+0x180/0x180 [ 1879.020741] alloc_pages_current+0x187/0x280 [ 1879.021685] kmalloc_order+0x35/0x160 21:23:25 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 23) 21:23:25 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 22) 21:23:25 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 21) 21:23:25 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 16) [ 1879.022502] kmalloc_order_trace+0x14/0xa0 [ 1879.023548] wiphy_new_nm+0x6f3/0x1e00 [ 1879.024375] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1879.025343] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1879.026436] ? __local_bh_enable_ip+0x9d/0x100 [ 1879.027401] ? trace_hardirqs_on+0x5b/0x180 [ 1879.028310] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1879.029337] ? mark_held_locks+0x9e/0xe0 [ 1879.030195] ? trace_hardirqs_on+0x5b/0x180 [ 1879.031109] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1879.032081] ? hwsim_new_radio_nl+0x967/0x1080 [ 1879.033038] ? memcpy+0x39/0x60 [ 1879.033734] hwsim_new_radio_nl+0x991/0x1080 [ 1879.034663] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1879.035762] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1879.037125] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1879.038480] genl_family_rcv_msg_doit+0x22d/0x330 [ 1879.039507] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1879.040870] ? cap_capable+0x1cd/0x230 [ 1879.041712] ? ns_capable+0xe2/0x110 [ 1879.042473] genl_rcv_msg+0x33c/0x5a0 [ 1879.043282] ? genl_get_cmd+0x480/0x480 [ 1879.044112] ? lock_acquire+0x1b9/0x470 [ 1879.044966] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1879.046083] ? lock_release+0x680/0x680 [ 1879.046946] ? __lockdep_reset_lock+0x180/0x180 [ 1879.047949] netlink_rcv_skb+0x14b/0x430 [ 1879.048815] ? genl_get_cmd+0x480/0x480 [ 1879.049669] ? netlink_ack+0xab0/0xab0 [ 1879.050511] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1879.051479] ? netlink_unicast+0x4c0/0x7f0 [ 1879.052393] genl_rcv+0x24/0x40 [ 1879.053092] netlink_unicast+0x549/0x7f0 [ 1879.053285] FAULT_INJECTION: forcing a failure. [ 1879.053285] name failslab, interval 1, probability 0, space 0, times 0 [ 1879.053957] ? netlink_attachskb+0x870/0x870 [ 1879.053993] netlink_sendmsg+0x90f/0xdf0 [ 1879.054021] ? netlink_unicast+0x7f0/0x7f0 [ 1879.054056] ? netlink_unicast+0x7f0/0x7f0 [ 1879.054077] __sock_sendmsg+0x154/0x190 [ 1879.054099] ____sys_sendmsg+0x70d/0x870 [ 1879.054123] ? sock_write_iter+0x3d0/0x3d0 [ 1879.054140] ? do_recvmmsg+0x6d0/0x6d0 [ 1879.054160] ? perf_trace_lock+0xac/0x490 [ 1879.054188] ? __lockdep_reset_lock+0x180/0x180 [ 1879.054205] ? perf_trace_lock+0xac/0x490 [ 1879.054224] ? SOFTIRQ_verbose+0x10/0x10 [ 1879.054250] ___sys_sendmsg+0xf3/0x170 [ 1879.054273] ? sendmsg_copy_msghdr+0x160/0x160 [ 1879.054301] ? lock_downgrade+0x6d0/0x6d0 [ 1879.054325] ? find_held_lock+0x2c/0x110 [ 1879.054358] ? __fget_files+0x296/0x4c0 [ 1879.054393] ? __fget_light+0xea/0x290 [ 1879.054423] __sys_sendmsg+0xe5/0x1b0 [ 1879.054443] ? __sys_sendmsg_sock+0x40/0x40 [ 1879.054462] ? rcu_read_lock_any_held+0x75/0xa0 [ 1879.054506] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1879.054526] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1879.054541] ? trace_hardirqs_on+0x5b/0x180 [ 1879.054567] do_syscall_64+0x33/0x40 [ 1879.054585] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1879.054599] RIP: 0033:0x7fd54fedeb19 [ 1879.054619] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1879.054631] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1879.054653] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 1879.054665] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1879.054676] RBP: 00007fd54d4541d0 R08: 0000000000000000 R09: 0000000000000000 [ 1879.054689] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1879.054711] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 [ 1879.093279] CPU: 1 PID: 11288 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1879.094756] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1879.096509] Call Trace: [ 1879.097036] dump_stack+0x107/0x167 [ 1879.097768] should_fail.cold+0x5/0xa [ 1879.098542] ? alloc_pid+0xd7/0xd30 [ 1879.099297] should_failslab+0x5/0x20 [ 1879.100074] kmem_cache_alloc+0x5b/0x310 [ 1879.100886] alloc_pid+0xd7/0xd30 [ 1879.101612] copy_process+0x3a8e/0x7800 [ 1879.102407] ? stack_trace_save+0x8c/0xc0 [ 1879.103257] ? stack_trace_consume_entry+0x160/0x160 [ 1879.104299] ? __cleanup_sighand+0xb0/0xb0 [ 1879.105181] ? __lockdep_reset_lock+0x180/0x180 [ 1879.106220] ? lock_acquire+0x197/0x470 [ 1879.107123] ? create_object.isra.0+0x3ad/0xa20 [ 1879.108177] ? lock_release+0x680/0x680 [ 1879.109066] ? find_held_lock+0x2c/0x110 [ 1879.109992] ? io_wqe_dec_running+0x220/0x220 [ 1879.111028] create_io_thread+0xb6/0xf0 [ 1879.111919] ? pidfd_pid+0x90/0x90 [ 1879.112720] ? mark_held_locks+0x9e/0xe0 [ 1879.113647] ? io_wqe_dec_running+0x220/0x220 [ 1879.114573] ? __init_swait_queue_head+0xc6/0x150 [ 1879.115540] create_io_worker+0x23a/0x620 [ 1879.116375] io_wqe_enqueue+0x69e/0xbe0 [ 1879.117183] ? create_worker_cb+0x260/0x260 [ 1879.118045] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1879.118958] ? io_prep_async_work+0x34e/0x550 [ 1879.119870] io_queue_async_work+0x26b/0x4f0 [ 1879.120750] __io_queue_sqe+0x5cc/0x9d0 [ 1879.121560] ? io_issue_sqe+0x7700/0x7700 [ 1879.122390] ? io_poll_queue_proc+0x50/0x50 [ 1879.123392] io_submit_sqes+0x4461/0x85c0 [ 1879.124345] ? __do_sys_io_uring_enter+0x1f2/0x1920 [ 1879.125482] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1879.126596] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1879.127694] ? lock_downgrade+0x6d0/0x6d0 [ 1879.128618] ? find_held_lock+0x2c/0x110 [ 1879.129545] ? io_submit_sqes+0x85c0/0x85c0 [ 1879.130534] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1879.131577] ? wait_for_completion_io+0x270/0x270 [ 1879.132553] ? rcu_read_lock_any_held+0x75/0xa0 [ 1879.133481] ? vfs_write+0x354/0xa70 [ 1879.134243] ? fput_many+0x2f/0x1a0 [ 1879.134981] ? ksys_write+0x1a9/0x260 [ 1879.135747] ? __ia32_sys_read+0xb0/0xb0 [ 1879.136566] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1879.137623] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1879.138685] do_syscall_64+0x33/0x40 [ 1879.139553] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1879.140708] RIP: 0033:0x7fd113b88b19 [ 1879.141548] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1879.145688] RSP: 002b:00007fd1110fe188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1879.147420] RAX: ffffffffffffffda RBX: 00007fd113c9bf60 RCX: 00007fd113b88b19 [ 1879.149032] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1879.150631] RBP: 00007fd1110fe1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1879.152224] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1879.153662] R13: 00007ffeed86c68f R14: 00007fd1110fe300 R15: 0000000000022000 [ 1879.169415] FAULT_INJECTION: forcing a failure. [ 1879.169415] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1879.172505] CPU: 0 PID: 11281 Comm: syz-executor.4 Not tainted 5.10.205 #1 [ 1879.173973] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1879.175741] Call Trace: [ 1879.176303] dump_stack+0x107/0x167 [ 1879.177079] should_fail.cold+0x5/0xa [ 1879.177891] _copy_from_user+0x2e/0x1b0 [ 1879.178746] move_addr_to_kernel.part.0+0x31/0x110 [ 1879.179801] move_addr_to_kernel+0x4f/0x70 [ 1879.180695] io_connect+0x47a/0x610 [ 1879.181466] ? io_prep_rw+0x1050/0x1050 [ 1879.182309] ? __lockdep_reset_lock+0x180/0x180 [ 1879.183307] ? lock_acquire+0x197/0x470 [ 1879.184160] ? __lock_acquire+0xbb1/0x5b00 [ 1879.185067] io_issue_sqe+0x1611/0x7700 [ 1879.185919] ? perf_trace_lock+0xac/0x490 [ 1879.186798] ? SOFTIRQ_verbose+0x10/0x10 [ 1879.187678] ? __lockdep_reset_lock+0x180/0x180 [ 1879.188658] ? io_connect+0x610/0x610 [ 1879.189475] ? lock_acquire+0x197/0x470 [ 1879.190316] ? find_held_lock+0x2c/0x110 [ 1879.191196] ? __fget_files+0x26d/0x4c0 [ 1879.192041] ? lock_downgrade+0x6d0/0x6d0 [ 1879.192930] __io_queue_sqe+0x90/0x9d0 [ 1879.193760] ? io_issue_sqe+0x7700/0x7700 [ 1879.194657] io_submit_sqes+0x4461/0x85c0 [ 1879.195575] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1879.196620] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1879.197648] ? lock_downgrade+0x6d0/0x6d0 [ 1879.198513] ? find_held_lock+0x2c/0x110 [ 1879.199398] ? io_submit_sqes+0x85c0/0x85c0 [ 1879.200331] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1879.201357] ? wait_for_completion_io+0x270/0x270 [ 1879.202389] ? rcu_read_lock_any_held+0x75/0xa0 [ 1879.203381] ? vfs_write+0x354/0xa70 [ 1879.204177] ? fput_many+0x2f/0x1a0 [ 1879.204952] ? ksys_write+0x1a9/0x260 [ 1879.205785] ? __ia32_sys_read+0xb0/0xb0 [ 1879.206677] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1879.207788] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1879.208881] do_syscall_64+0x33/0x40 [ 1879.209661] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1879.210741] RIP: 0033:0x7f65ffeffb19 [ 1879.211333] FAULT_INJECTION: forcing a failure. [ 1879.211333] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1879.211535] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1879.211548] RSP: 002b:00007f65fd475188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1879.211584] RAX: ffffffffffffffda RBX: 00007f6600012f60 RCX: 00007f65ffeffb19 [ 1879.211596] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1879.222877] RBP: 00007f65fd4751d0 R08: 0000000000000000 R09: 0000000000000000 [ 1879.224391] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1879.225832] R13: 00007ffddf3c20bf R14: 00007f65fd475300 R15: 0000000000022000 [ 1879.227352] CPU: 1 PID: 11287 Comm: syz-executor.7 Not tainted 5.10.205 #1 [ 1879.228865] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1879.230626] Call Trace: [ 1879.231219] dump_stack+0x107/0x167 [ 1879.232040] should_fail.cold+0x5/0xa [ 1879.232878] _copy_to_user+0x2e/0x180 [ 1879.233497] FAULT_INJECTION: forcing a failure. [ 1879.233497] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1879.233705] simple_read_from_buffer+0xcc/0x160 [ 1879.233735] proc_fail_nth_read+0x198/0x230 [ 1879.233763] ? proc_sessionid_read+0x230/0x230 [ 1879.233794] ? security_file_permission+0x24e/0x570 [ 1879.239695] ? proc_sessionid_read+0x230/0x230 [ 1879.240592] vfs_read+0x228/0x580 [ 1879.241318] ksys_read+0x12d/0x260 [ 1879.242028] ? vfs_write+0xa70/0xa70 [ 1879.242793] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1879.243890] do_syscall_64+0x33/0x40 [ 1879.244718] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1879.245844] RIP: 0033:0x7f2b60e4669c [ 1879.246655] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 1879.250533] RSP: 002b:00007f2b5e409170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1879.252159] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f2b60e4669c [ 1879.253699] RDX: 000000000000000f RSI: 00007f2b5e4091e0 RDI: 0000000000000006 [ 1879.255200] RBP: 00007f2b5e4091d0 R08: 0000000000000000 R09: 0000000000000000 [ 1879.256712] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1879.258259] R13: 00007ffffc42e53f R14: 00007f2b5e409300 R15: 0000000000022000 [ 1879.260427] CPU: 0 PID: 11286 Comm: syz-executor.5 Not tainted 5.10.205 #1 [ 1879.261870] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1879.263598] Call Trace: [ 1879.264146] dump_stack+0x107/0x167 [ 1879.264900] should_fail.cold+0x5/0xa [ 1879.265680] _copy_to_user+0x2e/0x180 [ 1879.266488] simple_read_from_buffer+0xcc/0x160 [ 1879.267494] proc_fail_nth_read+0x198/0x230 [ 1879.268416] ? proc_sessionid_read+0x230/0x230 [ 1879.269394] ? security_file_permission+0x24e/0x570 [ 1879.269449] FAULT_INJECTION: forcing a failure. [ 1879.269449] name failslab, interval 1, probability 0, space 0, times 0 [ 1879.270424] ? perf_trace_initcall_start+0x101/0x380 [ 1879.270457] ? proc_sessionid_read+0x230/0x230 [ 1879.270476] vfs_read+0x228/0x580 [ 1879.270505] ksys_read+0x12d/0x260 [ 1879.270524] ? vfs_write+0xa70/0xa70 [ 1879.270550] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1879.270569] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1879.270596] do_syscall_64+0x33/0x40 [ 1879.270613] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1879.270626] RIP: 0033:0x7fd08b7fa69c [ 1879.270646] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 1879.270657] RSP: 002b:00007fd088dbd170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1879.270678] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007fd08b7fa69c [ 1879.270690] RDX: 000000000000000f RSI: 00007fd088dbd1e0 RDI: 0000000000000006 [ 1879.270715] RBP: 00007fd088dbd1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1879.292150] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1879.293612] R13: 00007ffe1fec748f R14: 00007fd088dbd300 R15: 0000000000022000 [ 1879.295185] CPU: 1 PID: 11289 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 1879.296790] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1879.298664] Call Trace: [ 1879.299283] dump_stack+0x107/0x167 [ 1879.300134] should_fail.cold+0x5/0xa [ 1879.300228] FAULT_INJECTION: forcing a failure. [ 1879.300228] name failslab, interval 1, probability 0, space 0, times 0 [ 1879.301001] ? create_object.isra.0+0x3a/0xa20 [ 1879.301028] should_failslab+0x5/0x20 [ 1879.301049] kmem_cache_alloc+0x5b/0x310 [ 1879.301081] create_object.isra.0+0x3a/0xa20 [ 1879.301112] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1879.308306] kmem_cache_alloc+0x159/0x310 [ 1879.309269] __delayacct_tsk_init+0x1b/0x80 [ 1879.310261] copy_process+0x3319/0x7800 [ 1879.311199] ? stack_trace_save+0x8c/0xc0 [ 1879.312154] ? stack_trace_consume_entry+0x160/0x160 [ 1879.313339] ? kasan_save_stack+0x1b/0x40 [ 1879.314306] ? __cleanup_sighand+0xb0/0xb0 [ 1879.315304] ? __lockdep_reset_lock+0x180/0x180 [ 1879.316379] ? lock_acquire+0x197/0x470 [ 1879.317296] ? create_object.isra.0+0x3ad/0xa20 [ 1879.318368] ? lock_release+0x680/0x680 [ 1879.319291] ? find_held_lock+0x2c/0x110 [ 1879.320236] ? io_wqe_dec_running+0x220/0x220 [ 1879.321267] create_io_thread+0xb6/0xf0 [ 1879.322181] ? pidfd_pid+0x90/0x90 [ 1879.323181] ? mark_held_locks+0x9e/0xe0 [ 1879.324238] ? io_wqe_dec_running+0x220/0x220 [ 1879.325372] ? __init_swait_queue_head+0xc6/0x150 [ 1879.326569] create_io_worker+0x23a/0x620 [ 1879.327633] io_wqe_enqueue+0x69e/0xbe0 [ 1879.328659] ? create_worker_cb+0x260/0x260 [ 1879.329748] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1879.330871] ? io_prep_async_work+0x34e/0x550 [ 1879.332038] io_queue_async_work+0x26b/0x4f0 [ 1879.333156] __io_queue_sqe+0x5cc/0x9d0 [ 1879.334167] ? io_issue_sqe+0x7700/0x7700 [ 1879.335205] ? io_poll_queue_proc+0x50/0x50 [ 1879.336324] io_submit_sqes+0x4461/0x85c0 [ 1879.337396] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1879.338627] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1879.339851] ? lock_downgrade+0x6d0/0x6d0 [ 1879.340784] ? find_held_lock+0x2c/0x110 [ 1879.341843] ? io_submit_sqes+0x85c0/0x85c0 [ 1879.343027] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1879.344289] ? wait_for_completion_io+0x270/0x270 [ 1879.345544] ? rcu_read_lock_any_held+0x75/0xa0 [ 1879.346755] ? vfs_write+0x354/0xa70 [ 1879.347747] ? fput_many+0x2f/0x1a0 [ 1879.348697] ? ksys_write+0x1a9/0x260 [ 1879.349689] ? __ia32_sys_read+0xb0/0xb0 [ 1879.350752] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1879.352138] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1879.353502] do_syscall_64+0x33/0x40 [ 1879.354451] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1879.355728] RIP: 0033:0x7f1a51fc5b19 [ 1879.356699] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1879.361462] RSP: 002b:00007f1a4f53b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1879.363472] RAX: ffffffffffffffda RBX: 00007f1a520d8f60 RCX: 00007f1a51fc5b19 [ 1879.365338] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1879.367214] RBP: 00007f1a4f53b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1879.369066] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1879.370931] R13: 00007ffe3ce1c42f R14: 00007f1a4f53b300 R15: 0000000000022000 [ 1879.372450] CPU: 0 PID: 11291 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1879.373922] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1879.375682] Call Trace: [ 1879.376244] dump_stack+0x107/0x167 [ 1879.377024] should_fail.cold+0x5/0xa [ 1879.377840] ? create_object.isra.0+0x3a/0xa20 [ 1879.378800] should_failslab+0x5/0x20 [ 1879.379620] kmem_cache_alloc+0x5b/0x310 [ 1879.380484] create_object.isra.0+0x3a/0xa20 [ 1879.381404] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1879.382488] kmem_cache_alloc+0x159/0x310 [ 1879.383382] alloc_pid+0xd7/0xd30 [ 1879.384136] copy_process+0x3a8e/0x7800 [ 1879.384987] ? stack_trace_save+0x8c/0xc0 [ 1879.385859] ? stack_trace_consume_entry+0x160/0x160 [ 1879.386982] ? __cleanup_sighand+0xb0/0xb0 [ 1879.387863] ? __lockdep_reset_lock+0x180/0x180 [ 1879.388845] ? lock_acquire+0x197/0x470 [ 1879.389684] ? create_object.isra.0+0x3ad/0xa20 [ 1879.390676] ? lock_release+0x680/0x680 [ 1879.391533] ? find_held_lock+0x2c/0x110 [ 1879.392428] ? io_wqe_dec_running+0x220/0x220 [ 1879.393375] create_io_thread+0xb6/0xf0 [ 1879.394234] ? pidfd_pid+0x90/0x90 [ 1879.394998] ? mark_held_locks+0x9e/0xe0 [ 1879.395856] ? io_wqe_dec_running+0x220/0x220 [ 1879.396838] ? __init_swait_queue_head+0xc6/0x150 [ 1879.397863] create_io_worker+0x23a/0x620 [ 1879.398756] io_wqe_enqueue+0x69e/0xbe0 [ 1879.399618] ? create_worker_cb+0x260/0x260 [ 1879.400528] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1879.401481] ? io_prep_async_work+0x34e/0x550 [ 1879.402443] io_queue_async_work+0x26b/0x4f0 [ 1879.403386] __io_queue_sqe+0x5cc/0x9d0 [ 1879.404243] ? io_issue_sqe+0x7700/0x7700 [ 1879.405124] ? io_poll_queue_proc+0x50/0x50 [ 1879.406047] io_submit_sqes+0x4461/0x85c0 [ 1879.406976] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1879.408041] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1879.409066] ? io_submit_sqes+0x85c0/0x85c0 [ 1879.409987] ? recalibrate_cpu_khz+0x10/0x10 [ 1879.410919] ? ktime_get+0x158/0x1f0 [ 1879.411712] ? setup_APIC_eilvt+0x2f0/0x2f0 [ 1879.412616] ? clockevents_program_event+0x131/0x360 [ 1879.413703] ? tick_program_event+0xa8/0x140 [ 1879.414624] ? hrtimer_interrupt+0x771/0x9b0 [ 1879.415589] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1879.416680] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1879.417786] do_syscall_64+0x33/0x40 [ 1879.418571] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1879.419670] RIP: 0033:0x7f369cad5b19 [ 1879.420451] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1879.424364] RSP: 002b:00007f369a04b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1879.425967] RAX: ffffffffffffffda RBX: 00007f369cbe8f60 RCX: 00007f369cad5b19 [ 1879.427491] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1879.429002] RBP: 00007f369a04b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1879.430524] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 21:23:25 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 23) [ 1879.432040] R13: 00007ffcb9edce5f R14: 00007f369a04b300 R15: 0000000000022000 [ 1879.441435] FAULT_INJECTION: forcing a failure. [ 1879.441435] name failslab, interval 1, probability 0, space 0, times 0 [ 1879.444198] CPU: 0 PID: 11292 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1879.445642] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1879.447403] Call Trace: [ 1879.447958] dump_stack+0x107/0x167 [ 1879.448736] should_fail.cold+0x5/0xa [ 1879.449539] ? create_object.isra.0+0x3a/0xa20 [ 1879.450510] should_failslab+0x5/0x20 [ 1879.451347] kmem_cache_alloc+0x5b/0x310 [ 1879.452203] ? lock_acquire+0x197/0x470 [ 1879.453040] create_object.isra.0+0x3a/0xa20 [ 1879.453999] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1879.455078] kmem_cache_alloc_node_trace+0x16d/0x340 [ 1879.456162] create_io_worker+0xe8/0x620 [ 1879.457010] io_wqe_enqueue+0x69e/0xbe0 [ 1879.457849] ? create_worker_cb+0x260/0x260 [ 1879.458745] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1879.459695] ? io_prep_async_work+0x34e/0x550 [ 1879.460636] io_queue_async_work+0x26b/0x4f0 [ 1879.461561] __io_queue_sqe+0x5cc/0x9d0 [ 1879.462393] ? io_issue_sqe+0x7700/0x7700 [ 1879.463291] ? io_poll_queue_proc+0x50/0x50 [ 1879.464232] io_submit_sqes+0x4461/0x85c0 [ 1879.465131] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1879.466192] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1879.467209] ? lock_downgrade+0x6d0/0x6d0 [ 1879.468088] ? find_held_lock+0x2c/0x110 [ 1879.468941] ? io_submit_sqes+0x85c0/0x85c0 [ 1879.469847] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1879.470858] ? wait_for_completion_io+0x270/0x270 [ 1879.471912] ? rcu_read_lock_any_held+0x75/0xa0 [ 1879.472872] ? vfs_write+0x354/0xa70 [ 1879.473654] ? fput_many+0x2f/0x1a0 [ 1879.474418] ? ksys_write+0x1a9/0x260 [ 1879.475247] ? __ia32_sys_read+0xb0/0xb0 [ 1879.476096] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1879.477183] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1879.478257] do_syscall_64+0x33/0x40 [ 1879.479040] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1879.480129] RIP: 0033:0x7fb1fd6f6b19 [ 1879.480913] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1879.484767] RSP: 002b:00007fb1fac6c188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1879.486347] RAX: ffffffffffffffda RBX: 00007fb1fd809f60 RCX: 00007fb1fd6f6b19 [ 1879.487887] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1879.489361] RBP: 00007fb1fac6c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1879.490850] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1879.492338] R13: 00007ffc06ae2c8f R14: 00007fb1fac6c300 R15: 0000000000022000 [ 1879.613247] FAULT_INJECTION: forcing a failure. [ 1879.613247] name failslab, interval 1, probability 0, space 0, times 0 [ 1879.616234] CPU: 0 PID: 11299 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1879.617688] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1879.619431] Call Trace: [ 1879.619988] dump_stack+0x107/0x167 [ 1879.620756] should_fail.cold+0x5/0xa [ 1879.621564] ? create_object.isra.0+0x3a/0xa20 [ 1879.622530] should_failslab+0x5/0x20 [ 1879.623337] kmem_cache_alloc+0x5b/0x310 [ 1879.624251] create_object.isra.0+0x3a/0xa20 [ 1879.625175] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1879.626244] kmem_cache_alloc+0x159/0x310 [ 1879.627133] alloc_pid+0xd7/0xd30 [ 1879.627872] copy_process+0x3a8e/0x7800 [ 1879.628704] ? stack_trace_save+0x8c/0xc0 [ 1879.629562] ? stack_trace_consume_entry+0x160/0x160 [ 1879.630669] ? __cleanup_sighand+0xb0/0xb0 [ 1879.631576] ? __lockdep_reset_lock+0x180/0x180 [ 1879.632549] ? lock_acquire+0x197/0x470 [ 1879.633375] ? create_object.isra.0+0x3ad/0xa20 [ 1879.634368] ? lock_release+0x680/0x680 [ 1879.635233] ? find_held_lock+0x2c/0x110 [ 1879.636101] ? io_wqe_dec_running+0x220/0x220 [ 1879.637038] create_io_thread+0xb6/0xf0 [ 1879.637880] ? pidfd_pid+0x90/0x90 [ 1879.638623] ? mark_held_locks+0x9e/0xe0 [ 1879.639496] ? io_wqe_dec_running+0x220/0x220 [ 1879.640455] ? __init_swait_queue_head+0xc6/0x150 [ 1879.641462] create_io_worker+0x23a/0x620 [ 1879.642345] io_wqe_enqueue+0x69e/0xbe0 [ 1879.643170] ? create_worker_cb+0x260/0x260 [ 1879.644090] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1879.645029] ? io_prep_async_work+0x34e/0x550 [ 1879.645967] io_queue_async_work+0x26b/0x4f0 [ 1879.646888] __io_queue_sqe+0x5cc/0x9d0 [ 1879.647745] ? io_issue_sqe+0x7700/0x7700 [ 1879.648606] ? io_poll_queue_proc+0x50/0x50 [ 1879.649529] io_submit_sqes+0x4461/0x85c0 [ 1879.650427] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1879.651496] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1879.652508] ? lock_downgrade+0x6d0/0x6d0 [ 1879.653397] ? find_held_lock+0x2c/0x110 [ 1879.654257] ? io_submit_sqes+0x85c0/0x85c0 [ 1879.655192] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1879.656222] ? wait_for_completion_io+0x270/0x270 [ 1879.657234] ? rcu_read_lock_any_held+0x75/0xa0 [ 1879.658199] ? vfs_write+0x354/0xa70 [ 1879.658996] ? fput_many+0x2f/0x1a0 [ 1879.659756] ? ksys_write+0x1a9/0x260 [ 1879.660549] ? __ia32_sys_read+0xb0/0xb0 [ 1879.661426] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1879.662535] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1879.663634] do_syscall_64+0x33/0x40 [ 1879.664413] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1879.665478] RIP: 0033:0x7fd113b88b19 [ 1879.666254] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1879.670215] RSP: 002b:00007fd1110fe188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1879.671853] RAX: ffffffffffffffda RBX: 00007fd113c9bf60 RCX: 00007fd113b88b19 [ 1879.673386] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1879.674903] RBP: 00007fd1110fe1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1879.676412] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1879.677914] R13: 00007ffeed86c68f R14: 00007fd1110fe300 R15: 0000000000022000 21:23:39 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) 21:23:39 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 17) 21:23:39 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 24) 21:23:39 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 11) 21:23:39 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) (fail_nth: 13) 21:23:39 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 22) 21:23:39 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 24) 21:23:39 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) [ 1893.631159] FAULT_INJECTION: forcing a failure. [ 1893.631159] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1893.632543] CPU: 0 PID: 11314 Comm: syz-executor.3 Not tainted 5.10.205 #1 [ 1893.633326] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1893.634169] Call Trace: [ 1893.634482] dump_stack+0x107/0x167 [ 1893.634881] should_fail.cold+0x5/0xa [ 1893.635301] _copy_to_user+0x2e/0x180 [ 1893.635697] simple_read_from_buffer+0xcc/0x160 [ 1893.636180] proc_fail_nth_read+0x198/0x230 [ 1893.636642] ? proc_sessionid_read+0x230/0x230 [ 1893.637126] ? security_file_permission+0x24e/0x570 [ 1893.637636] ? perf_trace_initcall_start+0x101/0x380 [ 1893.638159] ? proc_sessionid_read+0x230/0x230 [ 1893.638661] vfs_read+0x228/0x580 [ 1893.639039] ksys_read+0x12d/0x260 [ 1893.639434] ? vfs_write+0xa70/0xa70 [ 1893.639826] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1893.640362] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1893.640897] do_syscall_64+0x33/0x40 [ 1893.641323] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1893.641907] RIP: 0033:0x7f369ca8869c [ 1893.642332] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 1893.644424] RSP: 002b:00007f369a04b170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1893.645297] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f369ca8869c [ 1893.646089] RDX: 000000000000000f RSI: 00007f369a04b1e0 RDI: 0000000000000006 [ 1893.646892] RBP: 00007f369a04b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1893.647709] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1893.648534] R13: 00007ffcb9edce5f R14: 00007f369a04b300 R15: 0000000000022000 [ 1893.656466] FAULT_INJECTION: forcing a failure. [ 1893.656466] name failslab, interval 1, probability 0, space 0, times 0 [ 1893.659077] CPU: 1 PID: 11317 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1893.659108] FAULT_INJECTION: forcing a failure. [ 1893.659108] name failslab, interval 1, probability 0, space 0, times 0 [ 1893.660472] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1893.660481] Call Trace: [ 1893.660508] dump_stack+0x107/0x167 [ 1893.660541] should_fail.cold+0x5/0xa [ 1893.665367] ? create_object.isra.0+0x3a/0xa20 [ 1893.666314] should_failslab+0x5/0x20 [ 1893.667103] kmem_cache_alloc+0x5b/0x310 [ 1893.667942] create_object.isra.0+0x3a/0xa20 [ 1893.668838] ? kasan_unpoison_shadow+0x33/0x50 [ 1893.669774] kmalloc_order+0xfe/0x160 [ 1893.670558] kmalloc_order_trace+0x14/0xa0 [ 1893.671432] wiphy_new_nm+0x6f3/0x1e00 [ 1893.672238] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1893.673189] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1893.674255] ? __local_bh_enable_ip+0x9d/0x100 [ 1893.675201] ? trace_hardirqs_on+0x5b/0x180 [ 1893.676088] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1893.677089] ? mark_held_locks+0x9e/0xe0 [ 1893.677926] ? trace_hardirqs_on+0x5b/0x180 [ 1893.678808] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1893.679756] ? hwsim_new_radio_nl+0x967/0x1080 [ 1893.680689] ? memcpy+0x39/0x60 [ 1893.681372] hwsim_new_radio_nl+0x991/0x1080 [ 1893.682274] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1893.683363] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1893.684698] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1893.686031] genl_family_rcv_msg_doit+0x22d/0x330 [ 1893.687017] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1893.688361] ? cap_capable+0x1cd/0x230 [ 1893.689175] ? ns_capable+0xe2/0x110 [ 1893.689942] genl_rcv_msg+0x33c/0x5a0 [ 1893.690720] ? genl_get_cmd+0x480/0x480 [ 1893.691547] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1893.692601] ? lock_release+0x680/0x680 [ 1893.693415] ? __lockdep_reset_lock+0x180/0x180 [ 1893.694369] netlink_rcv_skb+0x14b/0x430 [ 1893.695209] ? genl_get_cmd+0x480/0x480 [ 1893.696021] ? netlink_ack+0xab0/0xab0 [ 1893.696832] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1893.697758] ? netlink_unicast+0x512/0x7f0 [ 1893.698624] genl_rcv+0x24/0x40 [ 1893.699304] netlink_unicast+0x549/0x7f0 [ 1893.700145] ? netlink_attachskb+0x870/0x870 [ 1893.701047] ? netlink_sendmsg+0x8d0/0xdf0 [ 1893.701911] netlink_sendmsg+0x90f/0xdf0 [ 1893.702747] ? netlink_unicast+0x7f0/0x7f0 [ 1893.703646] ? netlink_unicast+0x7f0/0x7f0 [ 1893.704509] __sock_sendmsg+0x154/0x190 [ 1893.705323] ____sys_sendmsg+0x70d/0x870 [ 1893.706161] ? sock_write_iter+0x3d0/0x3d0 [ 1893.707019] ? do_recvmmsg+0x6d0/0x6d0 [ 1893.707820] ? perf_trace_lock+0xac/0x490 [ 1893.708671] ? __lockdep_reset_lock+0x180/0x180 [ 1893.709612] ? perf_trace_lock+0xac/0x490 [ 1893.710468] ___sys_sendmsg+0xf3/0x170 [ 1893.711281] ? sendmsg_copy_msghdr+0x160/0x160 [ 1893.712221] ? lock_downgrade+0x6d0/0x6d0 [ 1893.713079] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1893.714144] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1893.715247] ? trace_hardirqs_on+0x5b/0x180 [ 1893.716129] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1893.717241] ? sockfd_lookup_light+0x112/0x180 [ 1893.718179] ? kcov_remote_stop+0x310/0x310 [ 1893.719072] __sys_sendmsg+0xe5/0x1b0 [ 1893.719863] ? __sys_sendmsg_sock+0x40/0x40 [ 1893.720736] ? trace_hardirqs_on+0x5b/0x180 [ 1893.721629] ? __sys_sendmsg+0x1b0/0x1b0 [ 1893.722459] ? __x64_sys_sendmsg+0x1/0xb0 [ 1893.723332] do_syscall_64+0x33/0x40 [ 1893.724091] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1893.725132] RIP: 0033:0x7fd54fedeb19 [ 1893.725891] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1893.729619] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1893.731186] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 1893.732630] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1893.734082] RBP: 00007fd54d4541d0 R08: 0000000000000000 R09: 0000000000000000 [ 1893.735534] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1893.736990] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 [ 1893.738468] CPU: 0 PID: 11310 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 1893.739278] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1893.740215] Call Trace: [ 1893.740512] dump_stack+0x107/0x167 [ 1893.740928] should_fail.cold+0x5/0xa [ 1893.741369] ? alloc_pid+0xd7/0xd30 [ 1893.741777] should_failslab+0x5/0x20 [ 1893.742209] kmem_cache_alloc+0x5b/0x310 [ 1893.742669] alloc_pid+0xd7/0xd30 [ 1893.743069] copy_process+0x3a8e/0x7800 [ 1893.743533] ? stack_trace_save+0x8c/0xc0 [ 1893.744013] ? stack_trace_consume_entry+0x160/0x160 [ 1893.744602] ? __cleanup_sighand+0xb0/0xb0 [ 1893.745078] ? __lockdep_reset_lock+0x180/0x180 [ 1893.745598] ? lock_acquire+0x197/0x470 [ 1893.746046] ? create_object.isra.0+0x3ad/0xa20 [ 1893.746573] ? lock_release+0x680/0x680 [ 1893.747020] ? find_held_lock+0x2c/0x110 [ 1893.747139] FAULT_INJECTION: forcing a failure. [ 1893.747139] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1893.747503] ? io_wqe_dec_running+0x220/0x220 [ 1893.750254] create_io_thread+0xb6/0xf0 [ 1893.750712] ? pidfd_pid+0x90/0x90 [ 1893.751073] ? mark_held_locks+0x9e/0xe0 [ 1893.751546] ? io_wqe_dec_running+0x220/0x220 [ 1893.752008] ? __init_swait_queue_head+0xc6/0x150 [ 1893.752575] create_io_worker+0x23a/0x620 [ 1893.753060] io_wqe_enqueue+0x69e/0xbe0 [ 1893.753527] ? create_worker_cb+0x260/0x260 [ 1893.754041] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1893.754561] ? io_prep_async_work+0x34e/0x550 [ 1893.755076] io_queue_async_work+0x26b/0x4f0 [ 1893.755601] __io_queue_sqe+0x5cc/0x9d0 [ 1893.756075] ? io_issue_sqe+0x7700/0x7700 [ 1893.756553] ? io_poll_queue_proc+0x50/0x50 [ 1893.757073] io_submit_sqes+0x4461/0x85c0 [ 1893.757563] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1893.758100] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1893.758662] ? lock_downgrade+0x6d0/0x6d0 [ 1893.759152] ? find_held_lock+0x2c/0x110 [ 1893.759634] ? io_submit_sqes+0x85c0/0x85c0 [ 1893.760137] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1893.760715] ? wait_for_completion_io+0x270/0x270 [ 1893.761282] ? rcu_read_lock_any_held+0x75/0xa0 [ 1893.761815] ? vfs_write+0x354/0xa70 [ 1893.762246] ? fput_many+0x2f/0x1a0 [ 1893.762672] ? ksys_write+0x1a9/0x260 [ 1893.763119] ? __ia32_sys_read+0xb0/0xb0 [ 1893.763597] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1893.764203] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1893.764800] do_syscall_64+0x33/0x40 [ 1893.765232] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1893.765830] RIP: 0033:0x7f1a51fc5b19 [ 1893.766256] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1893.768394] RSP: 002b:00007f1a4f53b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1893.769284] RAX: ffffffffffffffda RBX: 00007f1a520d8f60 RCX: 00007f1a51fc5b19 [ 1893.770116] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1893.770945] RBP: 00007f1a4f53b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1893.771675] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1893.772517] R13: 00007ffe3ce1c42f R14: 00007f1a4f53b300 R15: 0000000000022000 [ 1893.773267] CPU: 1 PID: 11318 Comm: syz-executor.1 Not tainted 5.10.205 #1 [ 1893.774671] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1893.776363] Call Trace: [ 1893.776894] dump_stack+0x107/0x167 [ 1893.777632] should_fail.cold+0x5/0xa [ 1893.778405] _copy_to_user+0x2e/0x180 [ 1893.779189] simple_read_from_buffer+0xcc/0x160 [ 1893.780138] proc_fail_nth_read+0x198/0x230 [ 1893.781011] ? proc_sessionid_read+0x230/0x230 [ 1893.781931] ? security_file_permission+0x24e/0x570 [ 1893.782936] ? perf_trace_initcall_start+0x101/0x380 [ 1893.783976] ? proc_sessionid_read+0x230/0x230 [ 1893.784897] vfs_read+0x228/0x580 [ 1893.785605] ksys_read+0x12d/0x260 [ 1893.786322] ? vfs_write+0xa70/0xa70 [ 1893.787079] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1893.788152] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1893.789197] do_syscall_64+0x33/0x40 [ 1893.789945] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1893.790975] RIP: 0033:0x7fd113b3b69c [ 1893.791727] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 1893.795435] RSP: 002b:00007fd1110fe170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1893.796967] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007fd113b3b69c [ 1893.798394] RDX: 000000000000000f RSI: 00007fd1110fe1e0 RDI: 0000000000000006 [ 1893.799863] RBP: 00007fd1110fe1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1893.801289] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1893.802722] R13: 00007ffeed86c68f R14: 00007fd1110fe300 R15: 0000000000022000 [ 1893.824529] FAULT_INJECTION: forcing a failure. [ 1893.824529] name failslab, interval 1, probability 0, space 0, times 0 [ 1893.827416] CPU: 1 PID: 11319 Comm: syz-executor.4 Not tainted 5.10.205 #1 [ 1893.828828] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1893.830486] Call Trace: [ 1893.831025] dump_stack+0x107/0x167 [ 1893.831788] should_fail.cold+0x5/0xa [ 1893.832558] ? io_connect+0x3b1/0x610 [ 1893.833327] ? io_connect+0x3b1/0x610 [ 1893.834103] should_failslab+0x5/0x20 [ 1893.834872] __kmalloc+0x72/0x390 [ 1893.835600] io_connect+0x3b1/0x610 [ 1893.836348] ? io_prep_rw+0x1050/0x1050 [ 1893.837185] ? __lock_acquire+0xbb1/0x5b00 [ 1893.838056] io_issue_sqe+0x1611/0x7700 [ 1893.838879] ? perf_trace_lock+0xac/0x490 [ 1893.839748] ? SOFTIRQ_verbose+0x10/0x10 [ 1893.840587] ? __lockdep_reset_lock+0x180/0x180 [ 1893.841532] ? io_connect+0x610/0x610 [ 1893.842315] ? lock_acquire+0x197/0x470 [ 1893.843133] ? find_held_lock+0x2c/0x110 [ 1893.843970] ? __fget_files+0x26d/0x4c0 [ 1893.844784] ? lock_downgrade+0x6d0/0x6d0 [ 1893.844818] __io_queue_sqe+0x90/0x9d0 [ 1893.846124] ? io_issue_sqe+0x7700/0x7700 [ 1893.846993] io_submit_sqes+0x4461/0x85c0 [ 1893.847888] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1893.848901] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1893.849886] ? lock_downgrade+0x6d0/0x6d0 [ 1893.850054] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1893.850726] ? find_held_lock+0x2c/0x110 [ 1893.850754] ? io_submit_sqes+0x85c0/0x85c0 [ 1893.850786] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1893.854360] ? wait_for_completion_io+0x270/0x270 [ 1893.855354] ? rcu_read_lock_any_held+0x75/0xa0 [ 1893.856302] ? vfs_write+0x354/0xa70 [ 1893.857067] ? fput_many+0x2f/0x1a0 [ 1893.857811] ? ksys_write+0x1a9/0x260 [ 1893.858587] ? __ia32_sys_read+0xb0/0xb0 [ 1893.859434] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1893.860501] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1893.861561] do_syscall_64+0x33/0x40 [ 1893.862324] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1893.863382] RIP: 0033:0x7f65ffeffb19 [ 1893.864144] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1893.867888] RSP: 002b:00007f65fd475188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1893.869441] RAX: ffffffffffffffda RBX: 00007f6600012f60 RCX: 00007f65ffeffb19 [ 1893.870897] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1893.872358] RBP: 00007f65fd4751d0 R08: 0000000000000000 R09: 0000000000000000 [ 1893.873807] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1893.875274] R13: 00007ffddf3c20bf R14: 00007f65fd475300 R15: 0000000000022000 [ 1893.876755] CPU: 0 PID: 11317 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1893.877605] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1893.878576] Call Trace: [ 1893.878886] dump_stack+0x107/0x167 [ 1893.879316] sysfs_warn_dup.cold+0x1c/0x29 [ 1893.879832] sysfs_do_create_link_sd+0x122/0x140 [ 1893.880381] sysfs_create_link+0x5f/0xc0 [ 1893.880878] device_add+0x703/0x1c50 [ 1893.881312] ? devlink_add_symlinks+0x970/0x970 [ 1893.881872] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1893.882491] wiphy_register+0x1da6/0x2850 [ 1893.883004] ? wiphy_unregister+0xb90/0xb90 [ 1893.883557] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1893.884208] ieee80211_register_hw+0x23c5/0x38b0 [ 1893.884782] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1893.885369] ? net_generic+0xdb/0x2b0 [ 1893.885839] ? lockdep_init_map_type+0x2c7/0x780 [ 1893.886399] ? mac80211_hwsim_new_radio+0x1752/0x4250 [ 1893.887031] ? memset+0x20/0x50 [ 1893.887432] ? __hrtimer_init+0x12c/0x270 [ 1893.887952] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1893.888585] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1893.889166] ? hwsim_new_radio_nl+0x967/0x1080 [ 1893.889248] FAULT_INJECTION: forcing a failure. [ 1893.889248] name failslab, interval 1, probability 0, space 0, times 0 [ 1893.889713] ? memcpy+0x39/0x60 [ 1893.889728] hwsim_new_radio_nl+0x991/0x1080 [ 1893.889742] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1893.889764] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1893.889775] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1893.889790] genl_family_rcv_msg_doit+0x22d/0x330 [ 1893.889803] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1893.889814] ? cap_capable+0x1cd/0x230 [ 1893.889835] ? ns_capable+0xe2/0x110 [ 1893.889849] genl_rcv_msg+0x33c/0x5a0 [ 1893.889862] ? genl_get_cmd+0x480/0x480 [ 1893.889872] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1893.889887] ? lock_release+0x680/0x680 [ 1893.889897] ? __lockdep_reset_lock+0x180/0x180 [ 1893.889918] netlink_rcv_skb+0x14b/0x430 [ 1893.900261] ? genl_get_cmd+0x480/0x480 [ 1893.900697] ? netlink_ack+0xab0/0xab0 [ 1893.901162] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1893.901709] ? netlink_unicast+0x512/0x7f0 [ 1893.902225] genl_rcv+0x24/0x40 [ 1893.902617] netlink_unicast+0x549/0x7f0 [ 1893.903149] ? netlink_attachskb+0x870/0x870 [ 1893.903679] ? netlink_sendmsg+0x8d0/0xdf0 [ 1893.904190] netlink_sendmsg+0x90f/0xdf0 [ 1893.904682] ? netlink_unicast+0x7f0/0x7f0 [ 1893.905210] ? netlink_unicast+0x7f0/0x7f0 [ 1893.905719] __sock_sendmsg+0x154/0x190 [ 1893.906212] ____sys_sendmsg+0x70d/0x870 [ 1893.906695] ? sock_write_iter+0x3d0/0x3d0 [ 1893.907205] ? do_recvmmsg+0x6d0/0x6d0 [ 1893.907660] ? perf_trace_lock+0xac/0x490 [ 1893.908189] ? __lockdep_reset_lock+0x180/0x180 [ 1893.908731] ? perf_trace_lock+0xac/0x490 [ 1893.909237] ___sys_sendmsg+0xf3/0x170 [ 1893.909694] ? sendmsg_copy_msghdr+0x160/0x160 [ 1893.910243] ? lock_downgrade+0x6d0/0x6d0 [ 1893.910737] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1893.911375] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1893.912020] ? trace_hardirqs_on+0x5b/0x180 [ 1893.912523] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1893.913182] ? sockfd_lookup_light+0x112/0x180 [ 1893.913718] ? kcov_remote_stop+0x310/0x310 [ 1893.914234] __sys_sendmsg+0xe5/0x1b0 [ 1893.914683] ? __sys_sendmsg_sock+0x40/0x40 [ 1893.915207] ? trace_hardirqs_on+0x5b/0x180 [ 1893.915722] ? __sys_sendmsg+0x1b0/0x1b0 [ 1893.916210] ? __x64_sys_sendmsg+0x1/0xb0 [ 1893.916708] do_syscall_64+0x33/0x40 [ 1893.917172] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1893.917776] RIP: 0033:0x7fd54fedeb19 [ 1893.918231] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1893.920465] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1893.921388] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 1893.922263] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1893.923151] RBP: 00007fd54d4541d0 R08: 0000000000000000 R09: 0000000000000000 [ 1893.924021] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1893.924866] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 [ 1893.925751] CPU: 1 PID: 11309 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1893.927178] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1893.928849] Call Trace: [ 1893.929377] dump_stack+0x107/0x167 [ 1893.930124] should_fail.cold+0x5/0xa [ 1893.930896] ? copy_process+0x5d2/0x7800 [ 1893.931726] should_failslab+0x5/0x20 [ 1893.932490] kmem_cache_alloc_node+0x55/0x330 [ 1893.933397] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1893.934476] copy_process+0x5d2/0x7800 [ 1893.935300] ? stack_trace_save+0x8c/0xc0 [ 1893.936139] ? stack_trace_consume_entry+0x160/0x160 [ 1893.937197] ? kasan_save_stack+0x32/0x40 [ 1893.938047] ? kasan_save_stack+0x1b/0x40 [ 1893.938879] ? create_io_worker+0xe8/0x620 [ 1893.939740] ? io_wqe_enqueue+0x69e/0xbe0 [ 1893.940587] ? __cleanup_sighand+0xb0/0xb0 [ 1893.941466] ? __lockdep_reset_lock+0x180/0x180 [ 1893.942415] ? lock_acquire+0x197/0x470 [ 1893.943251] ? create_object.isra.0+0x3ad/0xa20 [ 1893.944200] ? lock_release+0x680/0x680 [ 1893.945004] ? find_held_lock+0x2c/0x110 [ 1893.945837] ? io_wqe_dec_running+0x220/0x220 [ 1893.946750] create_io_thread+0xb6/0xf0 [ 1893.947580] ? pidfd_pid+0x90/0x90 [ 1893.948298] ? mark_held_locks+0x9e/0xe0 [ 1893.949136] ? io_wqe_dec_running+0x220/0x220 [ 1893.950085] ? __init_swait_queue_head+0xc6/0x150 [ 1893.951076] create_io_worker+0x23a/0x620 [ 1893.951944] io_wqe_enqueue+0x69e/0xbe0 [ 1893.952759] ? create_worker_cb+0x260/0x260 [ 1893.953622] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1893.954523] ? io_prep_async_work+0x34e/0x550 [ 1893.955455] io_queue_async_work+0x26b/0x4f0 [ 1893.956356] __io_queue_sqe+0x5cc/0x9d0 [ 1893.957176] ? io_issue_sqe+0x7700/0x7700 [ 1893.958017] ? io_poll_queue_proc+0x50/0x50 [ 1893.958903] io_submit_sqes+0x4461/0x85c0 [ 1893.959788] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1893.960801] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1893.961795] ? lock_downgrade+0x6d0/0x6d0 [ 1893.962633] ? find_held_lock+0x2c/0x110 [ 1893.963489] ? io_submit_sqes+0x85c0/0x85c0 [ 1893.964384] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1893.965377] ? wait_for_completion_io+0x270/0x270 [ 1893.966363] ? rcu_read_lock_any_held+0x75/0xa0 [ 1893.967306] ? vfs_write+0x354/0xa70 [ 1893.968075] ? copy_kernel_to_fpregs+0x9e/0xe0 [ 1893.969008] ? trace_event_raw_event_x86_fpu+0x390/0x390 [ 1893.970106] ? ksys_write+0x1a9/0x260 [ 1893.970885] ? __ia32_sys_read+0xb0/0xb0 [ 1893.971728] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1893.972795] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1893.973853] do_syscall_64+0x33/0x40 [ 1893.974608] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1893.975660] RIP: 0033:0x7fb1fd6f6b19 [ 1893.976415] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1893.980165] RSP: 002b:00007fb1fac6c188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1893.981718] RAX: ffffffffffffffda RBX: 00007fb1fd809f60 RCX: 00007fb1fd6f6b19 [ 1893.983183] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1893.984649] RBP: 00007fb1fac6c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1893.986099] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1893.987556] R13: 00007ffc06ae2c8f R14: 00007fb1fac6c300 R15: 0000000000022000 21:23:55 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) 21:23:55 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) (fail_nth: 14) 21:23:55 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 12) 21:23:55 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) 21:23:55 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) 21:23:55 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) 21:23:55 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 23) 21:23:55 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 18) [ 1909.344494] FAULT_INJECTION: forcing a failure. [ 1909.344494] name failslab, interval 1, probability 0, space 0, times 0 [ 1909.348203] CPU: 0 PID: 11336 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1909.349814] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1909.351746] Call Trace: [ 1909.352367] dump_stack+0x107/0x167 [ 1909.353225] should_fail.cold+0x5/0xa [ 1909.354122] should_failslab+0x5/0x20 [ 1909.354997] __kmalloc_track_caller+0x79/0x370 [ 1909.356067] ? kstrdup_const+0x53/0x80 [ 1909.356975] kstrdup+0x36/0x70 [ 1909.357718] kstrdup_const+0x53/0x80 [ 1909.358575] kvasprintf_const+0x10c/0x1a0 [ 1909.359542] kobject_set_name_vargs+0x56/0x150 [ 1909.360591] dev_set_name+0xbb/0xf0 [ 1909.361430] ? device_initialize+0x620/0x620 [ 1909.362449] ? trace_event_raw_event_rpcgss_svc_authenticate+0x3c0/0x3c0 [ 1909.364028] wiphy_new_nm+0x17d5/0x1e00 [ 1909.364954] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1909.366025] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1909.367227] ? __local_bh_enable_ip+0x9d/0x100 [ 1909.368292] ? trace_hardirqs_on+0x5b/0x180 [ 1909.369291] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1909.370412] ? mark_held_locks+0x9e/0xe0 [ 1909.371354] ? trace_hardirqs_on+0x5b/0x180 [ 1909.372339] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1909.373390] ? hwsim_new_radio_nl+0x967/0x1080 [ 1909.374436] ? memcpy+0x39/0x60 [ 1909.375198] hwsim_new_radio_nl+0x991/0x1080 [ 1909.376214] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1909.377414] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1909.378907] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1909.380419] genl_family_rcv_msg_doit+0x22d/0x330 [ 1909.381520] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1909.383015] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1909.384023] FAULT_INJECTION: forcing a failure. [ 1909.384023] name failslab, interval 1, probability 0, space 0, times 0 [ 1909.384274] ? netlink_ns_capable+0xfd/0x130 [ 1909.384300] ? __sanitizer_cov_trace_pc+0x4/0x60 [ 1909.387880] genl_rcv_msg+0x33c/0x5a0 [ 1909.388751] ? genl_get_cmd+0x480/0x480 [ 1909.389656] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1909.390830] ? genl_get_cmd+0x480/0x480 [ 1909.391757] netlink_rcv_skb+0x14b/0x430 [ 1909.392681] ? genl_get_cmd+0x480/0x480 [ 1909.393589] ? netlink_ack+0xab0/0xab0 [ 1909.394493] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1909.395530] ? netlink_unicast+0x1a2/0x7f0 [ 1909.396490] genl_rcv+0x24/0x40 [ 1909.397235] netlink_unicast+0x549/0x7f0 [ 1909.398161] ? netlink_attachskb+0x870/0x870 [ 1909.399150] ? __virt_addr_valid+0x128/0x350 [ 1909.400176] netlink_sendmsg+0x90f/0xdf0 [ 1909.401104] ? netlink_unicast+0x7f0/0x7f0 [ 1909.402080] ? netlink_unicast+0x7f0/0x7f0 [ 1909.403036] __sock_sendmsg+0x154/0x190 [ 1909.403946] ____sys_sendmsg+0x70d/0x870 [ 1909.404871] ? sock_write_iter+0x3d0/0x3d0 [ 1909.405822] ? do_recvmmsg+0x6d0/0x6d0 [ 1909.406703] ? perf_trace_lock+0xac/0x490 [ 1909.407657] ? __lockdep_reset_lock+0x180/0x180 [ 1909.408702] ? perf_trace_lock+0xac/0x490 [ 1909.409635] ? SOFTIRQ_verbose+0x10/0x10 [ 1909.410561] ___sys_sendmsg+0xf3/0x170 [ 1909.411459] ? sendmsg_copy_msghdr+0x160/0x160 [ 1909.412501] ? lock_downgrade+0x6d0/0x6d0 [ 1909.413442] ? find_held_lock+0x2c/0x110 [ 1909.414377] ? __fget_files+0x296/0x4c0 [ 1909.415303] ? __fget_light+0xea/0x290 [ 1909.416199] __sys_sendmsg+0xe5/0x1b0 [ 1909.417064] ? __sys_sendmsg_sock+0x40/0x40 [ 1909.418037] ? rcu_read_lock_any_held+0x75/0xa0 [ 1909.419109] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1909.420296] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1909.421455] ? trace_hardirqs_on+0x5b/0x180 [ 1909.422439] do_syscall_64+0x33/0x40 [ 1909.423277] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1909.424456] RIP: 0033:0x7fd54fedeb19 [ 1909.425297] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1909.429412] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1909.431112] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 1909.432713] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1909.434309] RBP: 00007fd54d4541d0 R08: 0000000000000000 R09: 0000000000000000 [ 1909.435928] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1909.437544] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 [ 1909.439179] CPU: 1 PID: 11340 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1909.440055] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1909.441048] Call Trace: [ 1909.441371] dump_stack+0x107/0x167 [ 1909.441823] should_fail.cold+0x5/0xa [ 1909.442282] ? create_object.isra.0+0x3a/0xa20 [ 1909.442829] ? create_object.isra.0+0x3a/0xa20 [ 1909.443383] should_failslab+0x5/0x20 [ 1909.443843] kmem_cache_alloc+0x5b/0x310 [ 1909.444332] create_object.isra.0+0x3a/0xa20 [ 1909.444860] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1909.445496] kmem_cache_alloc_node+0x169/0x330 [ 1909.446064] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1909.446732] copy_process+0x5d2/0x7800 [ 1909.447228] ? stack_trace_save+0x8c/0xc0 [ 1909.447760] ? stack_trace_consume_entry+0x160/0x160 [ 1909.448406] ? kasan_save_stack+0x32/0x40 [ 1909.448908] ? kasan_save_stack+0x1b/0x40 [ 1909.449442] ? create_io_worker+0xe8/0x620 [ 1909.449972] ? io_wqe_enqueue+0x69e/0xbe0 [ 1909.450496] ? __cleanup_sighand+0xb0/0xb0 [ 1909.451032] ? __lockdep_reset_lock+0x180/0x180 [ 1909.451627] ? lock_acquire+0x197/0x470 [ 1909.452128] ? create_object.isra.0+0x3ad/0xa20 [ 1909.452712] ? lock_release+0x680/0x680 [ 1909.453220] ? find_held_lock+0x2c/0x110 [ 1909.453733] ? io_wqe_dec_running+0x220/0x220 [ 1909.454301] create_io_thread+0xb6/0xf0 [ 1909.454802] ? pidfd_pid+0x90/0x90 [ 1909.455247] ? mark_held_locks+0x9e/0xe0 [ 1909.455773] ? io_wqe_dec_running+0x220/0x220 [ 1909.456349] ? __init_swait_queue_head+0xc6/0x150 [ 1909.456956] create_io_worker+0x23a/0x620 [ 1909.457483] io_wqe_enqueue+0x69e/0xbe0 [ 1909.457988] ? create_worker_cb+0x260/0x260 [ 1909.458531] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1909.459103] ? io_prep_async_work+0x34e/0x550 [ 1909.459683] io_queue_async_work+0x26b/0x4f0 [ 1909.460223] __io_queue_sqe+0x5cc/0x9d0 [ 1909.460726] ? io_issue_sqe+0x7700/0x7700 [ 1909.461243] ? io_poll_queue_proc+0x50/0x50 [ 1909.461796] io_submit_sqes+0x4461/0x85c0 [ 1909.462338] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1909.462962] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1909.463566] ? lock_downgrade+0x6d0/0x6d0 [ 1909.464082] ? find_held_lock+0x2c/0x110 [ 1909.464593] ? io_submit_sqes+0x85c0/0x85c0 [ 1909.465135] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1909.465740] ? wait_for_completion_io+0x270/0x270 [ 1909.466338] ? rcu_read_lock_any_held+0x75/0xa0 [ 1909.466916] ? vfs_write+0x354/0xa70 [ 1909.467397] ? fput_many+0x2f/0x1a0 [ 1909.467853] ? ksys_write+0x1a9/0x260 [ 1909.468326] ? __ia32_sys_read+0xb0/0xb0 [ 1909.468831] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1909.469476] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1909.470116] do_syscall_64+0x33/0x40 [ 1909.470570] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1909.471204] RIP: 0033:0x7fb1fd6f6b19 [ 1909.471685] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1909.473949] RSP: 002b:00007fb1fac6c188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1909.474895] RAX: ffffffffffffffda RBX: 00007fb1fd809f60 RCX: 00007fb1fd6f6b19 [ 1909.475818] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1909.476712] RBP: 00007fb1fac6c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1909.477606] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1909.478492] R13: 00007ffc06ae2c8f R14: 00007fb1fac6c300 R15: 0000000000022000 [ 1909.481100] FAULT_INJECTION: forcing a failure. [ 1909.481100] name failslab, interval 1, probability 0, space 0, times 0 [ 1909.482553] CPU: 1 PID: 11332 Comm: syz-executor.4 Not tainted 5.10.205 #1 [ 1909.483412] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1909.484432] Call Trace: [ 1909.484759] dump_stack+0x107/0x167 [ 1909.485207] should_fail.cold+0x5/0xa [ 1909.485686] ? create_object.isra.0+0x3a/0xa20 [ 1909.486264] should_failslab+0x5/0x20 [ 1909.486737] kmem_cache_alloc+0x5b/0x310 [ 1909.487244] create_object.isra.0+0x3a/0xa20 [ 1909.487791] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1909.488422] __kmalloc+0x16e/0x390 [ 1909.488885] io_connect+0x3b1/0x610 [ 1909.489339] ? io_prep_rw+0x1050/0x1050 [ 1909.489852] ? __lock_acquire+0xbb1/0x5b00 [ 1909.490387] io_issue_sqe+0x1611/0x7700 [ 1909.490895] ? perf_trace_lock+0xac/0x490 [ 1909.491426] ? SOFTIRQ_verbose+0x10/0x10 [ 1909.491934] ? __lockdep_reset_lock+0x180/0x180 [ 1909.492510] ? io_connect+0x610/0x610 [ 1909.492984] ? lock_acquire+0x197/0x470 [ 1909.493474] ? find_held_lock+0x2c/0x110 [ 1909.493986] ? __fget_files+0x26d/0x4c0 [ 1909.494494] ? lock_downgrade+0x6d0/0x6d0 [ 1909.495012] __io_queue_sqe+0x90/0x9d0 [ 1909.495519] ? io_issue_sqe+0x7700/0x7700 [ 1909.496047] io_submit_sqes+0x4461/0x85c0 [ 1909.496592] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1909.497215] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1909.497818] ? lock_downgrade+0x6d0/0x6d0 [ 1909.498327] ? find_held_lock+0x2c/0x110 [ 1909.498829] ? io_submit_sqes+0x85c0/0x85c0 [ 1909.499373] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1909.499971] ? wait_for_completion_io+0x270/0x270 [ 1909.500559] ? rcu_read_lock_any_held+0x75/0xa0 [ 1909.501132] ? vfs_write+0x354/0xa70 [ 1909.501596] ? fput_many+0x2f/0x1a0 [ 1909.502045] ? ksys_write+0x1a9/0x260 [ 1909.502509] ? __ia32_sys_read+0xb0/0xb0 [ 1909.503023] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1909.503683] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1909.504319] do_syscall_64+0x33/0x40 [ 1909.504762] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1909.505397] RIP: 0033:0x7f65ffeffb19 [ 1909.505854] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1909.508115] RSP: 002b:00007f65fd475188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1909.509050] RAX: ffffffffffffffda RBX: 00007f6600012f60 RCX: 00007f65ffeffb19 [ 1909.509940] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1909.510808] RBP: 00007f65fd4751d0 R08: 0000000000000000 R09: 0000000000000000 [ 1909.511692] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1909.512568] R13: 00007ffddf3c20bf R14: 00007f65fd475300 R15: 0000000000022000 [ 1909.529276] FAULT_INJECTION: forcing a failure. [ 1909.529276] name failslab, interval 1, probability 0, space 0, times 0 21:23:55 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) [ 1909.530698] CPU: 1 PID: 11338 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 1909.531674] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1909.532612] Call Trace: [ 1909.532919] dump_stack+0x107/0x167 [ 1909.533336] should_fail.cold+0x5/0xa [ 1909.533763] ? create_object.isra.0+0x3a/0xa20 [ 1909.534273] should_failslab+0x5/0x20 [ 1909.534716] kmem_cache_alloc+0x5b/0x310 [ 1909.535188] create_object.isra.0+0x3a/0xa20 [ 1909.535693] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1909.536258] kmem_cache_alloc+0x159/0x310 [ 1909.536723] alloc_pid+0xd7/0xd30 [ 1909.537128] copy_process+0x3a8e/0x7800 [ 1909.537605] ? stack_trace_save+0x8c/0xc0 [ 1909.538073] ? stack_trace_consume_entry+0x160/0x160 [ 1909.538647] ? __cleanup_sighand+0xb0/0xb0 [ 1909.539109] ? __lockdep_reset_lock+0x180/0x180 [ 1909.539637] ? lock_acquire+0x197/0x470 [ 1909.540097] ? create_object.isra.0+0x3ad/0xa20 [ 1909.540659] ? lock_release+0x680/0x680 [ 1909.541133] ? find_held_lock+0x2c/0x110 [ 1909.541646] ? io_wqe_dec_running+0x220/0x220 [ 1909.542212] create_io_thread+0xb6/0xf0 [ 1909.542713] ? pidfd_pid+0x90/0x90 [ 1909.543173] ? mark_held_locks+0x9e/0xe0 [ 1909.543665] ? io_wqe_dec_running+0x220/0x220 [ 1909.544242] ? __init_swait_queue_head+0xc6/0x150 [ 1909.544840] create_io_worker+0x23a/0x620 [ 1909.545360] io_wqe_enqueue+0x69e/0xbe0 [ 1909.545853] ? create_worker_cb+0x260/0x260 [ 1909.546380] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1909.546938] ? io_prep_async_work+0x34e/0x550 [ 1909.547500] io_queue_async_work+0x26b/0x4f0 [ 1909.548053] __io_queue_sqe+0x5cc/0x9d0 [ 1909.548515] ? io_issue_sqe+0x7700/0x7700 [ 1909.548998] ? io_poll_queue_proc+0x50/0x50 [ 1909.549549] io_submit_sqes+0x4461/0x85c0 [ 1909.550084] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1909.550711] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1909.551318] ? lock_downgrade+0x6d0/0x6d0 [ 1909.551825] ? find_held_lock+0x2c/0x110 [ 1909.552300] ? io_submit_sqes+0x85c0/0x85c0 [ 1909.552803] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1909.553373] ? wait_for_completion_io+0x270/0x270 [ 1909.553925] ? rcu_read_lock_any_held+0x75/0xa0 [ 1909.554496] ? vfs_write+0x354/0xa70 [ 1909.554967] ? fput_many+0x2f/0x1a0 [ 1909.555439] ? ksys_write+0x1a9/0x260 [ 1909.555891] ? __ia32_sys_read+0xb0/0xb0 [ 1909.556378] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1909.556981] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1909.557575] do_syscall_64+0x33/0x40 [ 1909.558002] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1909.558635] RIP: 0033:0x7f1a51fc5b19 [ 1909.559092] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1909.561355] RSP: 002b:00007f1a4f53b188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1909.562310] RAX: ffffffffffffffda RBX: 00007f1a520d8f60 RCX: 00007f1a51fc5b19 [ 1909.563183] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1909.564019] RBP: 00007f1a4f53b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1909.564898] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1909.565748] R13: 00007ffe3ce1c42f R14: 00007f1a4f53b300 R15: 0000000000022000 21:23:55 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 19) 21:23:55 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x2, 0x0, 0x0, 0x0) 21:23:55 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x2, 0x0, 0x0, 0x0) 21:23:55 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x2, 0x0, 0x0, 0x0) 21:23:55 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) 21:23:55 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 13) 21:23:56 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x3, 0x0, 0x0, 0x0) 21:23:56 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x3, 0x0, 0x0, 0x0) [ 1909.768423] FAULT_INJECTION: forcing a failure. [ 1909.768423] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1909.771267] CPU: 0 PID: 11363 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1909.772713] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1909.774433] Call Trace: [ 1909.774985] dump_stack+0x107/0x167 [ 1909.775757] should_fail.cold+0x5/0xa [ 1909.776549] __alloc_pages_nodemask+0x182/0x600 [ 1909.777508] ? lock_downgrade+0x6d0/0x6d0 [ 1909.778371] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1909.779612] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 1909.780681] ? kmem_cache_alloc_node+0x2bc/0x330 [ 1909.781658] copy_process+0x618/0x7800 [ 1909.782469] ? stack_trace_save+0x8c/0xc0 [ 1909.783344] ? stack_trace_consume_entry+0x160/0x160 [ 1909.784406] ? kasan_save_stack+0x32/0x40 [ 1909.785255] ? kasan_save_stack+0x1b/0x40 [ 1909.786108] ? create_io_worker+0xe8/0x620 [ 1909.786966] ? io_wqe_enqueue+0x69e/0xbe0 [ 1909.787834] ? __cleanup_sighand+0xb0/0xb0 [ 1909.788706] ? __lockdep_reset_lock+0x180/0x180 [ 1909.789665] ? lock_acquire+0x197/0x470 [ 1909.790478] ? create_object.isra.0+0x3ad/0xa20 [ 1909.791458] ? lock_release+0x680/0x680 [ 1909.792274] ? find_held_lock+0x2c/0x110 [ 1909.793120] ? io_wqe_dec_running+0x220/0x220 [ 1909.794053] create_io_thread+0xb6/0xf0 [ 1909.794863] ? pidfd_pid+0x90/0x90 [ 1909.795598] ? mark_held_locks+0x9e/0xe0 [ 1909.796437] ? io_wqe_dec_running+0x220/0x220 [ 1909.797381] ? __init_swait_queue_head+0xc6/0x150 [ 1909.798377] create_io_worker+0x23a/0x620 [ 1909.799231] io_wqe_enqueue+0x69e/0xbe0 [ 1909.800082] ? create_worker_cb+0x260/0x260 [ 1909.800978] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1909.801914] ? io_prep_async_work+0x34e/0x550 [ 1909.802847] io_queue_async_work+0x26b/0x4f0 [ 1909.803800] __io_queue_sqe+0x5cc/0x9d0 [ 1909.804628] ? io_issue_sqe+0x7700/0x7700 [ 1909.805503] ? io_poll_queue_proc+0x50/0x50 [ 1909.806410] io_submit_sqes+0x4461/0x85c0 [ 1909.807343] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1909.808378] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1909.809404] ? lock_downgrade+0x6d0/0x6d0 [ 1909.810279] ? find_held_lock+0x2c/0x110 [ 1909.811121] ? io_submit_sqes+0x85c0/0x85c0 [ 1909.812018] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1909.813012] ? wait_for_completion_io+0x270/0x270 [ 1909.814002] ? rcu_read_lock_any_held+0x75/0xa0 [ 1909.814955] ? vfs_write+0x354/0xa70 [ 1909.815751] ? fput_many+0x2f/0x1a0 [ 1909.816499] ? ksys_write+0x1a9/0x260 [ 1909.817294] ? __ia32_sys_read+0xb0/0xb0 [ 1909.818138] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1909.819230] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1909.820312] do_syscall_64+0x33/0x40 [ 1909.821091] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1909.822158] RIP: 0033:0x7fb1fd6f6b19 [ 1909.822920] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1909.826795] RSP: 002b:00007fb1fac6c188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1909.828359] RAX: ffffffffffffffda RBX: 00007fb1fd809f60 RCX: 00007fb1fd6f6b19 [ 1909.829811] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1909.831262] RBP: 00007fb1fac6c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1909.832772] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1909.834224] R13: 00007ffc06ae2c8f R14: 00007fb1fac6c300 R15: 0000000000022000 [ 1909.879171] FAULT_INJECTION: forcing a failure. [ 1909.879171] name failslab, interval 1, probability 0, space 0, times 0 [ 1909.882178] CPU: 0 PID: 11389 Comm: syz-executor.4 Not tainted 5.10.205 #1 [ 1909.883592] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1909.885267] Call Trace: [ 1909.885810] dump_stack+0x107/0x167 [ 1909.886557] should_fail.cold+0x5/0xa [ 1909.887342] ? __io_queue_sqe+0x666/0x9d0 [ 1909.888190] should_failslab+0x5/0x20 [ 1909.888969] kmem_cache_alloc_trace+0x55/0x320 [ 1909.889905] __io_queue_sqe+0x666/0x9d0 [ 1909.890723] ? io_issue_sqe+0x7700/0x7700 [ 1909.891607] io_submit_sqes+0x4461/0x85c0 [ 1909.892489] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1909.893519] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1909.894506] ? lock_downgrade+0x6d0/0x6d0 [ 1909.895357] ? find_held_lock+0x2c/0x110 [ 1909.896194] ? io_submit_sqes+0x85c0/0x85c0 [ 1909.897092] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1909.898079] ? wait_for_completion_io+0x270/0x270 [ 1909.899065] ? rcu_read_lock_any_held+0x75/0xa0 [ 1909.900026] ? vfs_write+0x354/0xa70 [ 1909.900795] ? fput_many+0x2f/0x1a0 [ 1909.901539] ? ksys_write+0x1a9/0x260 [ 1909.902319] ? __ia32_sys_read+0xb0/0xb0 [ 1909.903156] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1909.904233] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1909.905296] do_syscall_64+0x33/0x40 [ 1909.906056] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1909.907100] RIP: 0033:0x7f65ffeffb19 [ 1909.907879] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1909.911611] RSP: 002b:00007f65fd475188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1909.913159] RAX: ffffffffffffffda RBX: 00007f6600012f60 RCX: 00007f65ffeffb19 [ 1909.914606] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1909.916063] RBP: 00007f65fd4751d0 R08: 0000000000000000 R09: 0000000000000000 [ 1909.917511] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1909.918961] R13: 00007ffddf3c20bf R14: 00007f65fd475300 R15: 0000000000022000 21:24:11 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) (fail_nth: 15) 21:24:11 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x4, 0x0, 0x0, 0x0) 21:24:11 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 14) 21:24:11 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 24) 21:24:11 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x3, 0x0, 0x0, 0x0) 21:24:11 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x4, 0x0, 0x0, 0x0) 21:24:11 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x2, 0x0, 0x0, 0x0) 21:24:11 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 20) [ 1924.978334] FAULT_INJECTION: forcing a failure. [ 1924.978334] name failslab, interval 1, probability 0, space 0, times 0 [ 1924.981160] CPU: 1 PID: 11410 Comm: syz-executor.4 Not tainted 5.10.205 #1 [ 1924.982558] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1924.984237] Call Trace: [ 1924.984775] dump_stack+0x107/0x167 [ 1924.985518] should_fail.cold+0x5/0xa [ 1924.986301] ? create_object.isra.0+0x3a/0xa20 [ 1924.987229] should_failslab+0x5/0x20 [ 1924.988014] kmem_cache_alloc+0x5b/0x310 [ 1924.988841] create_object.isra.0+0x3a/0xa20 [ 1924.989726] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1924.990756] kmem_cache_alloc_trace+0x151/0x320 [ 1924.991718] __io_queue_sqe+0x666/0x9d0 [ 1924.992525] ? io_issue_sqe+0x7700/0x7700 [ 1924.993383] io_submit_sqes+0x4461/0x85c0 [ 1924.994256] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1924.995271] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1924.996273] ? lock_downgrade+0x6d0/0x6d0 [ 1924.997101] ? find_held_lock+0x2c/0x110 [ 1924.997924] ? io_submit_sqes+0x85c0/0x85c0 [ 1924.998798] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1924.999788] ? wait_for_completion_io+0x270/0x270 [ 1925.000755] ? rcu_read_lock_any_held+0x75/0xa0 [ 1925.001685] ? vfs_write+0x354/0xa70 [ 1925.002459] ? fput_many+0x2f/0x1a0 [ 1925.003199] ? ksys_write+0x1a9/0x260 [ 1925.003994] ? __ia32_sys_read+0xb0/0xb0 [ 1925.004840] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1925.005909] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1925.006964] do_syscall_64+0x33/0x40 [ 1925.007739] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1925.008392] FAULT_INJECTION: forcing a failure. [ 1925.008392] name failslab, interval 1, probability 0, space 0, times 0 [ 1925.008788] RIP: 0033:0x7f65ffeffb19 [ 1925.008809] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1925.008821] RSP: 002b:00007f65fd475188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1925.008850] RAX: ffffffffffffffda RBX: 00007f6600012f60 RCX: 00007f65ffeffb19 [ 1925.018645] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1925.020104] RBP: 00007f65fd4751d0 R08: 0000000000000000 R09: 0000000000000000 [ 1925.021568] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1925.023041] R13: 00007ffddf3c20bf R14: 00007f65fd475300 R15: 0000000000022000 [ 1925.024541] CPU: 0 PID: 11407 Comm: syz-executor.6 Not tainted 5.10.205 #1 [ 1925.026046] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1925.027850] Call Trace: [ 1925.028431] dump_stack+0x107/0x167 [ 1925.029230] should_fail.cold+0x5/0xa [ 1925.030184] ? __delayacct_tsk_init+0x1b/0x80 [ 1925.031385] should_failslab+0x5/0x20 [ 1925.032417] kmem_cache_alloc+0x5b/0x310 [ 1925.033367] __delayacct_tsk_init+0x1b/0x80 [ 1925.034315] copy_process+0x3319/0x7800 [ 1925.035202] ? stack_trace_save+0x8c/0xc0 [ 1925.036249] ? stack_trace_consume_entry+0x160/0x160 [ 1925.037347] ? kasan_save_stack+0x1b/0x40 [ 1925.038265] ? __cleanup_sighand+0xb0/0xb0 [ 1925.039175] ? __lockdep_reset_lock+0x180/0x180 [ 1925.040190] ? lock_acquire+0x197/0x470 [ 1925.041042] ? create_object.isra.0+0x3ad/0xa20 [ 1925.042049] ? lock_release+0x680/0x680 [ 1925.042917] ? find_held_lock+0x2c/0x110 [ 1925.043820] ? io_wqe_dec_running+0x220/0x220 [ 1925.044785] create_io_thread+0xb6/0xf0 [ 1925.045649] ? pidfd_pid+0x90/0x90 [ 1925.046425] ? mark_held_locks+0x9e/0xe0 [ 1925.047322] ? io_wqe_dec_running+0x220/0x220 [ 1925.048048] FAULT_INJECTION: forcing a failure. [ 1925.048048] name failslab, interval 1, probability 0, space 0, times 0 [ 1925.048327] ? __init_swait_queue_head+0xc6/0x150 [ 1925.048353] create_io_worker+0x23a/0x620 [ 1925.052511] io_wqe_enqueue+0x69e/0xbe0 [ 1925.053373] ? create_worker_cb+0x260/0x260 [ 1925.054310] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1925.055276] ? io_prep_async_work+0x34e/0x550 [ 1925.056267] io_queue_async_work+0x26b/0x4f0 [ 1925.057214] __io_queue_sqe+0x5cc/0x9d0 [ 1925.058065] ? io_issue_sqe+0x7700/0x7700 [ 1925.058951] ? io_poll_queue_proc+0x50/0x50 [ 1925.059901] io_submit_sqes+0x4461/0x85c0 [ 1925.060830] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1925.061895] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1925.062924] ? lock_downgrade+0x6d0/0x6d0 [ 1925.063837] ? find_held_lock+0x2c/0x110 [ 1925.064795] ? io_submit_sqes+0x85c0/0x85c0 [ 1925.065742] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1925.066837] ? wait_for_completion_io+0x270/0x270 [ 1925.067880] ? rcu_read_lock_any_held+0x75/0xa0 [ 1925.068870] ? vfs_write+0x354/0xa70 [ 1925.069688] ? fput_many+0x2f/0x1a0 [ 1925.070473] ? ksys_write+0x1a9/0x260 [ 1925.071307] ? __ia32_sys_read+0xb0/0xb0 [ 1925.072201] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1925.073402] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1925.074519] do_syscall_64+0x33/0x40 [ 1925.075308] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1925.076392] RIP: 0033:0x7fb1fd6f6b19 [ 1925.077181] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1925.081043] RSP: 002b:00007fb1fac6c188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1925.082679] RAX: ffffffffffffffda RBX: 00007fb1fd809f60 RCX: 00007fb1fd6f6b19 [ 1925.084480] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1925.086255] RBP: 00007fb1fac6c1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1925.088047] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1925.089819] R13: 00007ffc06ae2c8f R14: 00007fb1fac6c300 R15: 0000000000022000 [ 1925.091643] CPU: 1 PID: 11408 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1925.093100] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1925.094826] Call Trace: [ 1925.095395] dump_stack+0x107/0x167 [ 1925.096172] should_fail.cold+0x5/0xa [ 1925.096973] ? create_object.isra.0+0x3a/0xa20 [ 1925.097953] should_failslab+0x5/0x20 [ 1925.098744] kmem_cache_alloc+0x5b/0x310 [ 1925.099620] create_object.isra.0+0x3a/0xa20 [ 1925.100526] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1925.101584] __kmalloc_track_caller+0x177/0x370 [ 1925.102536] ? kstrdup_const+0x53/0x80 [ 1925.103352] kstrdup+0x36/0x70 [ 1925.104030] kstrdup_const+0x53/0x80 [ 1925.104795] kvasprintf_const+0x10c/0x1a0 [ 1925.105651] kobject_set_name_vargs+0x56/0x150 [ 1925.106620] dev_set_name+0xbb/0xf0 [ 1925.107370] ? device_initialize+0x620/0x620 [ 1925.108287] ? trace_event_raw_event_rpcgss_svc_authenticate+0x3c0/0x3c0 [ 1925.109699] wiphy_new_nm+0x17d5/0x1e00 [ 1925.110526] ieee80211_alloc_hw_nm+0x37a/0x2320 [ 1925.111483] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1925.112556] ? __local_bh_enable_ip+0x9d/0x100 [ 1925.113481] ? trace_hardirqs_on+0x5b/0x180 [ 1925.114380] mac80211_hwsim_new_radio+0x1cd/0x4250 [ 1925.115407] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1925.116370] ? hwsim_new_radio_nl+0x967/0x1080 [ 1925.117306] ? memcpy+0x39/0x60 [ 1925.117984] hwsim_new_radio_nl+0x991/0x1080 [ 1925.118906] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1925.119992] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1925.121322] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1925.122659] genl_family_rcv_msg_doit+0x22d/0x330 [ 1925.123665] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1925.125035] ? cap_capable+0x1cd/0x230 [ 1925.125857] ? ns_capable+0xe2/0x110 [ 1925.126634] genl_rcv_msg+0x33c/0x5a0 [ 1925.127428] ? genl_get_cmd+0x480/0x480 [ 1925.128266] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1925.129354] ? lock_release+0x680/0x680 [ 1925.130172] ? __lockdep_reset_lock+0x180/0x180 [ 1925.131144] netlink_rcv_skb+0x14b/0x430 [ 1925.131985] ? genl_get_cmd+0x480/0x480 [ 1925.132800] ? netlink_ack+0xab0/0xab0 [ 1925.133628] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1925.134571] ? is_vmalloc_addr+0x7b/0xb0 [ 1925.135398] genl_rcv+0x24/0x40 [ 1925.136086] netlink_unicast+0x549/0x7f0 [ 1925.136931] ? netlink_attachskb+0x870/0x870 [ 1925.137829] ? __virt_addr_valid+0x128/0x350 [ 1925.138736] netlink_sendmsg+0x90f/0xdf0 [ 1925.139576] ? netlink_unicast+0x7f0/0x7f0 [ 1925.140456] ? netlink_unicast+0x7f0/0x7f0 [ 1925.141345] __sock_sendmsg+0x154/0x190 [ 1925.142177] ____sys_sendmsg+0x70d/0x870 [ 1925.143024] ? sock_write_iter+0x3d0/0x3d0 [ 1925.143903] ? do_recvmmsg+0x6d0/0x6d0 [ 1925.144705] ? perf_trace_lock+0xac/0x490 [ 1925.145565] ? __lockdep_reset_lock+0x180/0x180 [ 1925.146515] ? perf_trace_lock+0xac/0x490 [ 1925.147368] ? SOFTIRQ_verbose+0x10/0x10 [ 1925.148218] ___sys_sendmsg+0xf3/0x170 [ 1925.149024] ? sendmsg_copy_msghdr+0x160/0x160 [ 1925.149968] ? lock_downgrade+0x6d0/0x6d0 [ 1925.150823] ? find_held_lock+0x2c/0x110 [ 1925.151691] ? __fget_files+0x296/0x4c0 [ 1925.152529] ? __fget_light+0xea/0x290 [ 1925.153344] __sys_sendmsg+0xe5/0x1b0 [ 1925.154138] ? __sys_sendmsg_sock+0x40/0x40 [ 1925.155019] ? rcu_read_lock_any_held+0x75/0xa0 [ 1925.156005] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1925.157083] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1925.158140] ? trace_hardirqs_on+0x5b/0x180 [ 1925.159036] do_syscall_64+0x33/0x40 [ 1925.159810] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1925.160873] RIP: 0033:0x7fd54fedeb19 [ 1925.161640] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1925.165444] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1925.167021] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 1925.168497] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1925.169970] RBP: 00007fd54d4541d0 R08: 0000000000000000 R09: 0000000000000000 [ 1925.171438] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1925.172913] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 21:24:11 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x4, 0x0, 0x0, 0x0) [ 1925.215227] FAULT_INJECTION: forcing a failure. [ 1925.215227] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1925.217919] CPU: 1 PID: 11411 Comm: syz-executor.2 Not tainted 5.10.205 #1 [ 1925.219378] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1925.221070] Call Trace: [ 1925.221609] dump_stack+0x107/0x167 [ 1925.222364] should_fail.cold+0x5/0xa [ 1925.223160] _copy_to_user+0x2e/0x180 [ 1925.223972] simple_read_from_buffer+0xcc/0x160 [ 1925.224933] proc_fail_nth_read+0x198/0x230 [ 1925.225816] ? proc_sessionid_read+0x230/0x230 [ 1925.226745] ? security_file_permission+0x24e/0x570 [ 1925.227760] ? perf_trace_initcall_start+0x101/0x380 [ 1925.228809] ? proc_sessionid_read+0x230/0x230 [ 1925.229756] vfs_read+0x228/0x580 [ 1925.230484] ksys_read+0x12d/0x260 [ 1925.231219] ? vfs_write+0xa70/0xa70 [ 1925.232001] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1925.233091] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1925.234153] do_syscall_64+0x33/0x40 21:24:11 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 15) 21:24:11 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x3, 0x0, 0x0, 0x0) [ 1925.234921] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1925.236181] RIP: 0033:0x7f1a51f7869c [ 1925.236966] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 1925.240803] RSP: 002b:00007f1a4f53b170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 1925.242383] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f1a51f7869c [ 1925.243881] RDX: 000000000000000f RSI: 00007f1a4f53b1e0 RDI: 0000000000000006 [ 1925.245355] RBP: 00007f1a4f53b1d0 R08: 0000000000000000 R09: 0000000000000000 [ 1925.246827] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1925.248298] R13: 00007ffe3ce1c42f R14: 00007f1a4f53b300 R15: 0000000000022000 [ 1925.321492] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1925.323420] CPU: 0 PID: 11408 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1925.324888] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1925.326607] Call Trace: [ 1925.327165] dump_stack+0x107/0x167 [ 1925.327938] sysfs_warn_dup.cold+0x1c/0x29 [ 1925.328821] sysfs_do_create_link_sd+0x122/0x140 [ 1925.329807] sysfs_create_link+0x5f/0xc0 [ 1925.330645] device_add+0x703/0x1c50 [ 1925.331444] ? devlink_add_symlinks+0x970/0x970 [ 1925.332441] ? __mutex_lock+0x4fe/0x10b0 [ 1925.333316] wiphy_register+0x1da6/0x2850 [ 1925.334204] ? wiphy_unregister+0xb90/0xb90 [ 1925.335133] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1925.336281] ieee80211_register_hw+0x23c5/0x38b0 [ 1925.337307] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1925.338335] ? __hrtimer_init+0xeb/0x270 [ 1925.339190] ? __hrtimer_init+0xf9/0x270 [ 1925.340063] ? __hrtimer_init+0x12c/0x270 [ 1925.340957] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1925.342028] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1925.343005] ? hwsim_new_radio_nl+0x967/0x1080 [ 1925.344002] ? memcpy+0x39/0x60 [ 1925.344705] hwsim_new_radio_nl+0x991/0x1080 [ 1925.345640] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1925.346746] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1925.348135] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1925.349511] genl_family_rcv_msg_doit+0x22d/0x330 [ 1925.350526] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1925.351924] ? cap_capable+0x1cd/0x230 [ 1925.352770] ? ns_capable+0xe2/0x110 21:24:11 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x5, 0x0, 0x0, 0x0) [ 1925.353566] genl_rcv_msg+0x33c/0x5a0 [ 1925.354576] ? genl_get_cmd+0x480/0x480 [ 1925.355413] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1925.356529] ? lock_release+0x680/0x680 [ 1925.357343] ? __lockdep_reset_lock+0x180/0x180 [ 1925.358304] netlink_rcv_skb+0x14b/0x430 [ 1925.359141] ? genl_get_cmd+0x480/0x480 [ 1925.359987] ? netlink_ack+0xab0/0xab0 [ 1925.360810] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1925.361746] ? is_vmalloc_addr+0x7b/0xb0 [ 1925.362583] genl_rcv+0x24/0x40 [ 1925.363263] netlink_unicast+0x549/0x7f0 [ 1925.364127] ? netlink_attachskb+0x870/0x870 [ 1925.365040] ? __virt_addr_valid+0x128/0x350 [ 1925.365967] netlink_sendmsg+0x90f/0xdf0 [ 1925.366827] ? netlink_unicast+0x7f0/0x7f0 [ 1925.367738] ? netlink_unicast+0x7f0/0x7f0 [ 1925.368631] __sock_sendmsg+0x154/0x190 [ 1925.369467] ____sys_sendmsg+0x70d/0x870 [ 1925.370322] ? sock_write_iter+0x3d0/0x3d0 [ 1925.371208] ? do_recvmmsg+0x6d0/0x6d0 [ 1925.372042] ? perf_trace_lock+0xac/0x490 [ 1925.372940] ? __lockdep_reset_lock+0x180/0x180 [ 1925.373903] ? perf_trace_lock+0xac/0x490 [ 1925.374764] ? SOFTIRQ_verbose+0x10/0x10 [ 1925.375630] ___sys_sendmsg+0xf3/0x170 [ 1925.376437] ? sendmsg_copy_msghdr+0x160/0x160 [ 1925.377386] ? lock_downgrade+0x6d0/0x6d0 [ 1925.378243] ? find_held_lock+0x2c/0x110 [ 1925.379101] ? __fget_files+0x296/0x4c0 [ 1925.379954] ? __fget_light+0xea/0x290 [ 1925.380766] __sys_sendmsg+0xe5/0x1b0 [ 1925.381559] ? __sys_sendmsg_sock+0x40/0x40 [ 1925.382460] ? rcu_read_lock_any_held+0x75/0xa0 [ 1925.383461] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1925.384568] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1925.385657] ? trace_hardirqs_on+0x5b/0x180 [ 1925.386573] do_syscall_64+0x33/0x40 [ 1925.387344] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1925.388428] RIP: 0033:0x7fd54fedeb19 [ 1925.389215] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1925.393090] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1925.394675] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 1925.396192] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1925.397685] RBP: 00007fd54d4541d0 R08: 0000000000000000 R09: 0000000000000000 [ 1925.399174] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1925.400686] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 21:24:11 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x5, 0x0, 0x0, 0x0) 21:24:11 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 21) [ 1925.496264] FAULT_INJECTION: forcing a failure. [ 1925.496264] name failslab, interval 1, probability 0, space 0, times 0 [ 1925.499242] CPU: 0 PID: 11437 Comm: syz-executor.4 Not tainted 5.10.205 #1 [ 1925.500678] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1925.502389] Call Trace: [ 1925.502937] dump_stack+0x107/0x167 [ 1925.503711] should_fail.cold+0x5/0xa [ 1925.504506] ? create_io_worker+0xe8/0x620 [ 1925.505393] should_failslab+0x5/0x20 [ 1925.506190] kmem_cache_alloc_node_trace+0x59/0x340 [ 1925.507245] create_io_worker+0xe8/0x620 [ 1925.508138] io_wqe_enqueue+0x69e/0xbe0 [ 1925.508963] ? create_worker_cb+0x260/0x260 [ 1925.509879] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1925.510813] ? io_prep_async_work+0x34e/0x550 [ 1925.511778] io_queue_async_work+0x26b/0x4f0 [ 1925.512692] __io_queue_sqe+0x5cc/0x9d0 [ 1925.513544] ? io_issue_sqe+0x7700/0x7700 [ 1925.514422] ? io_poll_queue_proc+0x50/0x50 [ 1925.515346] io_submit_sqes+0x4461/0x85c0 [ 1925.516260] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1925.517284] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1925.518299] ? lock_downgrade+0x6d0/0x6d0 [ 1925.519148] ? find_held_lock+0x2c/0x110 [ 1925.520013] ? io_submit_sqes+0x85c0/0x85c0 [ 1925.520940] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1925.521976] ? wait_for_completion_io+0x270/0x270 [ 1925.523002] ? rcu_read_lock_any_held+0x75/0xa0 [ 1925.524016] ? vfs_write+0x354/0xa70 [ 1925.524816] ? fput_many+0x2f/0x1a0 [ 1925.525579] ? ksys_write+0x1a9/0x260 [ 1925.526382] ? __ia32_sys_read+0xb0/0xb0 [ 1925.527245] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1925.528360] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1925.529462] do_syscall_64+0x33/0x40 [ 1925.530257] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1925.531341] RIP: 0033:0x7f65ffeffb19 [ 1925.532135] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1925.535991] RSP: 002b:00007f65fd475188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1925.537586] RAX: ffffffffffffffda RBX: 00007f6600012f60 RCX: 00007f65ffeffb19 [ 1925.539092] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1925.540588] RBP: 00007f65fd4751d0 R08: 0000000000000000 R09: 0000000000000000 [ 1925.542092] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1925.543583] R13: 00007ffddf3c20bf R14: 00007f65fd475300 R15: 0000000000022000 21:24:11 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x8, 0x0, 0x0, 0x0) 21:24:11 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x4, 0x0, 0x0, 0x0) 21:24:32 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x203, 0x0, 0x0, 0x0) 21:24:32 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x5, 0x0, 0x0, 0x0) 21:24:32 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 21:24:32 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 16) 21:24:32 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) [ 1946.223800] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' 21:24:32 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x5, 0x0, 0x0, 0x0) [ 1946.224989] CPU: 0 PID: 11466 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1946.225997] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1946.227024] Call Trace: [ 1946.227357] dump_stack+0x107/0x167 [ 1946.227834] sysfs_warn_dup.cold+0x1c/0x29 [ 1946.228359] sysfs_do_create_link_sd+0x122/0x140 [ 1946.228950] sysfs_create_link+0x5f/0xc0 [ 1946.229473] device_add+0x703/0x1c50 [ 1946.229954] ? devlink_add_symlinks+0x970/0x970 [ 1946.230549] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1946.231217] wiphy_register+0x1da6/0x2850 [ 1946.231763] ? wiphy_unregister+0xb90/0xb90 [ 1946.232336] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1946.233024] ieee80211_register_hw+0x23c5/0x38b0 [ 1946.233639] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1946.234261] ? net_generic+0xdb/0x2b0 [ 1946.234743] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1946.235463] ? memset+0x20/0x50 [ 1946.235896] ? __hrtimer_init+0x12c/0x270 [ 1946.236417] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1946.237060] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1946.237641] ? hwsim_new_radio_nl+0x967/0x1080 [ 1946.238219] ? memcpy+0x39/0x60 [ 1946.238638] hwsim_new_radio_nl+0x991/0x1080 [ 1946.239202] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1946.239872] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1946.240702] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 21:24:32 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x8, 0x0, 0x0, 0x0) [ 1946.241517] genl_family_rcv_msg_doit+0x22d/0x330 [ 1946.242153] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1946.242941] ? cap_capable+0x1cd/0x230 [ 1946.243409] ? ns_capable+0xe2/0x110 [ 1946.243869] genl_rcv_msg+0x33c/0x5a0 [ 1946.244327] ? genl_get_cmd+0x480/0x480 [ 1946.244808] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1946.245429] ? lock_release+0x680/0x680 [ 1946.245902] ? __lockdep_reset_lock+0x180/0x180 [ 1946.246460] netlink_rcv_skb+0x14b/0x430 [ 1946.246953] ? genl_get_cmd+0x480/0x480 [ 1946.247421] ? netlink_ack+0xab0/0xab0 [ 1946.247917] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1946.248466] ? is_vmalloc_addr+0x7b/0xb0 [ 1946.248954] genl_rcv+0x24/0x40 [ 1946.249345] netlink_unicast+0x549/0x7f0 [ 1946.249845] ? netlink_attachskb+0x870/0x870 [ 1946.250378] ? __virt_addr_valid+0x128/0x350 [ 1946.250909] netlink_sendmsg+0x90f/0xdf0 [ 1946.251408] ? netlink_unicast+0x7f0/0x7f0 [ 1946.251946] ? ____sys_sendmsg+0x268/0x870 [ 1946.252483] ? netlink_unicast+0x7f0/0x7f0 [ 1946.253020] __sock_sendmsg+0x154/0x190 [ 1946.253520] ____sys_sendmsg+0x70d/0x870 [ 1946.254045] ? sock_write_iter+0x3d0/0x3d0 [ 1946.254573] ? do_recvmmsg+0x6d0/0x6d0 [ 1946.255069] ? perf_trace_lock+0xac/0x490 [ 1946.255595] ? __lockdep_reset_lock+0x180/0x180 [ 1946.256198] ? perf_trace_lock+0xac/0x490 [ 1946.256717] ___sys_sendmsg+0xf3/0x170 [ 1946.257201] ? sendmsg_copy_msghdr+0x160/0x160 [ 1946.257773] ? lock_downgrade+0x6d0/0x6d0 [ 1946.258290] ? __fget_files+0x1f5/0x4c0 [ 1946.258775] ? __fget_files+0x255/0x4c0 [ 1946.259277] ? __fget_files+0x296/0x4c0 [ 1946.259788] ? __fget_light+0xea/0x290 [ 1946.260274] __sys_sendmsg+0xe5/0x1b0 [ 1946.260740] ? __sys_sendmsg_sock+0x40/0x40 [ 1946.261280] ? io_schedule_timeout+0x140/0x140 [ 1946.261859] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1946.262498] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1946.263137] ? trace_hardirqs_on+0x5b/0x180 [ 1946.263680] do_syscall_64+0x33/0x40 [ 1946.264125] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1946.264752] RIP: 0033:0x7fd54fedeb19 [ 1946.265205] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1946.267473] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1946.268450] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 1946.269335] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1946.270217] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 1946.271103] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1946.272015] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 21:24:32 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) [ 1946.362373] FAULT_INJECTION: forcing a failure. [ 1946.362373] name failslab, interval 1, probability 0, space 0, times 0 [ 1946.365538] CPU: 1 PID: 11467 Comm: syz-executor.4 Not tainted 5.10.205 #1 [ 1946.366957] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1946.368666] Call Trace: 21:24:32 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x8, 0x0, 0x0, 0x0) [ 1946.369205] dump_stack+0x107/0x167 [ 1946.370151] should_fail.cold+0x5/0xa [ 1946.370935] ? create_io_worker+0xe8/0x620 [ 1946.371806] should_failslab+0x5/0x20 [ 1946.372586] kmem_cache_alloc_node_trace+0x59/0x340 [ 1946.373619] create_io_worker+0xe8/0x620 [ 1946.374462] io_wqe_enqueue+0x69e/0xbe0 [ 1946.375288] ? create_worker_cb+0x260/0x260 21:24:32 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x300, 0x0, 0x0, 0x0) [ 1946.376177] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1946.377242] ? io_prep_async_work+0x34e/0x550 [ 1946.378184] io_queue_async_work+0x26b/0x4f0 [ 1946.379080] __io_queue_sqe+0x5cc/0x9d0 [ 1946.379935] ? io_issue_sqe+0x7700/0x7700 [ 1946.380788] ? io_poll_queue_proc+0x50/0x50 [ 1946.381694] io_submit_sqes+0x4461/0x85c0 [ 1946.382585] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1946.383610] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1946.384618] ? lock_downgrade+0x6d0/0x6d0 [ 1946.385480] ? find_held_lock+0x2c/0x110 [ 1946.386334] ? io_submit_sqes+0x85c0/0x85c0 [ 1946.387233] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1946.388239] ? wait_for_completion_io+0x270/0x270 [ 1946.389246] ? rcu_read_lock_any_held+0x75/0xa0 [ 1946.390210] ? vfs_write+0x354/0xa70 [ 1946.390980] ? fput_many+0x2f/0x1a0 [ 1946.391727] ? ksys_write+0x1a9/0x260 [ 1946.392537] ? __ia32_sys_read+0xb0/0xb0 [ 1946.393382] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1946.394444] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1946.395510] do_syscall_64+0x33/0x40 [ 1946.396282] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1946.397337] RIP: 0033:0x7f65ffeffb19 [ 1946.398098] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1946.401891] RSP: 002b:00007f65fd475188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1946.403455] RAX: ffffffffffffffda RBX: 00007f6600012f60 RCX: 00007f65ffeffb19 [ 1946.404955] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1946.406411] RBP: 00007f65fd4751d0 R08: 0000000000000000 R09: 0000000000000000 [ 1946.407904] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1946.409367] R13: 00007ffddf3c20bf R14: 00007f65fd475300 R15: 0000000000022000 21:24:32 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x300, 0x0, 0x0, 0x0) 21:24:32 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x2ed, 0x0, 0x0, 0x0) 21:24:32 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x31b, 0x0, 0x0, 0x0) 21:24:32 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) 21:24:32 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) 21:24:32 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x302, 0x0, 0x0, 0x0) 21:24:32 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 17) 21:24:32 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 21:24:32 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x500, 0x0, 0x0, 0x0) 21:24:32 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x300, 0x0, 0x0, 0x0) 21:24:32 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x8, 0x0, 0x0, 0x0) 21:24:32 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x2, 0x0, 0x0, 0x0) [ 1946.716353] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1946.717324] CPU: 0 PID: 11531 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1946.718080] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1946.718985] Call Trace: [ 1946.719285] dump_stack+0x107/0x167 [ 1946.719695] sysfs_warn_dup.cold+0x1c/0x29 [ 1946.720191] sysfs_do_create_link_sd+0x122/0x140 [ 1946.720707] sysfs_create_link+0x5f/0xc0 [ 1946.721163] device_add+0x703/0x1c50 [ 1946.721570] ? devlink_add_symlinks+0x970/0x970 [ 1946.722071] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1946.722645] wiphy_register+0x1da6/0x2850 [ 1946.723121] ? wiphy_unregister+0xb90/0xb90 [ 1946.723613] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1946.724198] ieee80211_register_hw+0x23c5/0x38b0 [ 1946.724739] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1946.725292] ? net_generic+0xdb/0x2b0 [ 1946.725720] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1946.726354] ? memset+0x20/0x50 [ 1946.726727] ? __hrtimer_init+0x12c/0x270 [ 1946.727212] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1946.727808] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1946.728318] ? hwsim_new_radio_nl+0x967/0x1080 [ 1946.728856] ? memcpy+0x39/0x60 [ 1946.729240] hwsim_new_radio_nl+0x991/0x1080 [ 1946.729728] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1946.730302] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1946.731030] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1946.731769] genl_family_rcv_msg_doit+0x22d/0x330 [ 1946.732322] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1946.733067] ? cap_capable+0x1cd/0x230 [ 1946.733540] ? ns_capable+0xe2/0x110 [ 1946.733978] genl_rcv_msg+0x33c/0x5a0 [ 1946.734424] ? genl_get_cmd+0x480/0x480 [ 1946.734892] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1946.735485] ? lock_release+0x680/0x680 [ 1946.735929] ? __lockdep_reset_lock+0x180/0x180 [ 1946.736444] netlink_rcv_skb+0x14b/0x430 [ 1946.736892] ? genl_get_cmd+0x480/0x480 [ 1946.737334] ? netlink_ack+0xab0/0xab0 [ 1946.737772] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1946.738279] genl_rcv+0x24/0x40 [ 1946.738640] netlink_unicast+0x549/0x7f0 [ 1946.739097] ? netlink_attachskb+0x870/0x870 [ 1946.739576] ? __virt_addr_valid+0x128/0x350 [ 1946.740077] netlink_sendmsg+0x90f/0xdf0 [ 1946.740545] ? netlink_unicast+0x7f0/0x7f0 [ 1946.741050] ? netlink_unicast+0x7f0/0x7f0 [ 1946.741529] __sock_sendmsg+0x154/0x190 [ 1946.741982] ____sys_sendmsg+0x70d/0x870 [ 1946.742440] ? sock_write_iter+0x3d0/0x3d0 [ 1946.742907] ? do_recvmmsg+0x6d0/0x6d0 [ 1946.743359] ? perf_trace_lock+0xac/0x490 [ 1946.743855] ? __lockdep_reset_lock+0x180/0x180 [ 1946.744389] ? __lock_acquire+0xbb1/0x5b00 [ 1946.744895] ___sys_sendmsg+0xf3/0x170 [ 1946.745338] ? sendmsg_copy_msghdr+0x160/0x160 [ 1946.745850] ? lock_downgrade+0x6d0/0x6d0 [ 1946.746307] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1946.746922] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1946.747529] ? trace_hardirqs_on+0x5b/0x180 [ 1946.748002] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1946.748610] ? __fget_light+0xea/0x290 [ 1946.749040] ? __sanitizer_cov_trace_pc+0xd/0x60 [ 1946.749556] ? __fget_light+0xea/0x290 [ 1946.750018] __sys_sendmsg+0xe5/0x1b0 [ 1946.750454] ? __sys_sendmsg_sock+0x40/0x40 [ 1946.750955] ? __do_sys_futex+0x2bb/0x480 [ 1946.751421] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1946.752016] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1946.752606] ? trace_hardirqs_on+0x5b/0x180 [ 1946.753110] do_syscall_64+0x33/0x40 [ 1946.753512] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1946.754081] RIP: 0033:0x7fd54fedeb19 [ 1946.754490] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1946.756546] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1946.757411] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 1946.758229] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1946.759062] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 1946.759886] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1946.760717] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 [ 1946.817128] FAULT_INJECTION: forcing a failure. [ 1946.817128] name failslab, interval 1, probability 0, space 0, times 0 [ 1946.820180] CPU: 1 PID: 11522 Comm: syz-executor.4 Not tainted 5.10.205 #1 [ 1946.821583] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1946.823265] Call Trace: [ 1946.823816] dump_stack+0x107/0x167 [ 1946.824572] should_fail.cold+0x5/0xa [ 1946.825353] ? create_object.isra.0+0x3a/0xa20 [ 1946.826280] ? create_object.isra.0+0x3a/0xa20 [ 1946.827233] should_failslab+0x5/0x20 [ 1946.828030] kmem_cache_alloc+0x5b/0x310 [ 1946.828869] ? lock_acquire+0x197/0x470 [ 1946.829687] create_object.isra.0+0x3a/0xa20 [ 1946.830581] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1946.831631] kmem_cache_alloc_node_trace+0x16d/0x340 [ 1946.832690] create_io_worker+0xe8/0x620 [ 1946.833520] io_wqe_enqueue+0x69e/0xbe0 [ 1946.834333] ? create_worker_cb+0x260/0x260 [ 1946.835210] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1946.836159] ? io_prep_async_work+0x34e/0x550 [ 1946.837077] io_queue_async_work+0x26b/0x4f0 [ 1946.837975] __io_queue_sqe+0x5cc/0x9d0 [ 1946.838786] ? io_issue_sqe+0x7700/0x7700 [ 1946.839628] ? io_poll_queue_proc+0x50/0x50 [ 1946.840539] io_submit_sqes+0x4461/0x85c0 [ 1946.841421] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1946.842446] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1946.843427] ? lock_downgrade+0x6d0/0x6d0 [ 1946.844270] ? find_held_lock+0x2c/0x110 [ 1946.845099] ? io_submit_sqes+0x85c0/0x85c0 [ 1946.845992] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1946.846976] ? wait_for_completion_io+0x270/0x270 [ 1946.847974] ? rcu_read_lock_any_held+0x75/0xa0 [ 1946.848994] ? vfs_write+0x354/0xa70 [ 1946.849773] ? fput_many+0x2f/0x1a0 [ 1946.850521] ? ksys_write+0x1a9/0x260 [ 1946.851299] ? __ia32_sys_read+0xb0/0xb0 [ 1946.852139] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1946.853204] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1946.854286] do_syscall_64+0x33/0x40 [ 1946.855046] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1946.856095] RIP: 0033:0x7f65ffeffb19 [ 1946.856857] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1946.860619] RSP: 002b:00007f65fd475188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1946.862172] RAX: ffffffffffffffda RBX: 00007f6600012f60 RCX: 00007f65ffeffb19 [ 1946.863613] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1946.865065] RBP: 00007f65fd4751d0 R08: 0000000000000000 R09: 0000000000000000 [ 1946.866519] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1946.867977] R13: 00007ffddf3c20bf R14: 00007f65fd475300 R15: 0000000000022000 21:24:33 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x500, 0x0, 0x0, 0x0) 21:24:33 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xcc0, 0x0, 0x0, 0x0) 21:24:33 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x500, 0x0, 0x0, 0x0) [ 1947.025041] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1947.026004] CPU: 0 PID: 11564 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1947.026749] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1947.027651] Call Trace: [ 1947.027959] dump_stack+0x107/0x167 [ 1947.028369] sysfs_warn_dup.cold+0x1c/0x29 [ 1947.028843] sysfs_do_create_link_sd+0x122/0x140 [ 1947.029380] sysfs_create_link+0x5f/0xc0 [ 1947.029844] device_add+0x703/0x1c50 [ 1947.030260] ? devlink_add_symlinks+0x970/0x970 [ 1947.030772] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1947.031347] wiphy_register+0x1da6/0x2850 [ 1947.031826] ? wiphy_unregister+0xb90/0xb90 [ 1947.032310] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1947.032908] ieee80211_register_hw+0x23c5/0x38b0 [ 1947.033438] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1947.033977] ? net_generic+0xdb/0x2b0 [ 1947.034408] ? lockdep_init_map_type+0x2c7/0x780 [ 1947.034924] ? memset+0x20/0x50 [ 1947.035285] ? __hrtimer_init+0x12c/0x270 [ 1947.035754] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1947.036330] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1947.036832] ? hwsim_new_radio_nl+0x967/0x1080 [ 1947.037337] ? memcpy+0x39/0x60 [ 1947.037703] hwsim_new_radio_nl+0x991/0x1080 [ 1947.038181] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1947.038752] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1947.039463] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1947.040193] genl_family_rcv_msg_doit+0x22d/0x330 [ 1947.040719] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1947.041424] ? cap_capable+0x1cd/0x230 [ 1947.041860] ? ns_capable+0xe2/0x110 [ 1947.042269] genl_rcv_msg+0x33c/0x5a0 [ 1947.042689] ? genl_get_cmd+0x480/0x480 [ 1947.043121] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1947.043683] ? lock_release+0x680/0x680 [ 1947.044128] ? __lockdep_reset_lock+0x180/0x180 [ 1947.044634] netlink_rcv_skb+0x14b/0x430 [ 1947.045070] ? genl_get_cmd+0x480/0x480 [ 1947.045519] ? netlink_ack+0xab0/0xab0 [ 1947.045949] ? genl_pernet_exit+0x80/0x80 [ 1947.046397] ? netlink_unicast+0x51f/0x7f0 [ 1947.046859] genl_rcv+0x24/0x40 [ 1947.047218] netlink_unicast+0x549/0x7f0 [ 1947.047669] ? netlink_attachskb+0x870/0x870 [ 1947.048171] ? __virt_addr_valid+0x128/0x350 [ 1947.048653] netlink_sendmsg+0x90f/0xdf0 [ 1947.049100] ? netlink_unicast+0x7f0/0x7f0 [ 1947.049563] ? netlink_unicast+0x7f0/0x7f0 [ 1947.050026] __sock_sendmsg+0x154/0x190 [ 1947.050460] ____sys_sendmsg+0x70d/0x870 [ 1947.050907] ? sock_write_iter+0x3d0/0x3d0 [ 1947.051363] ? do_recvmmsg+0x6d0/0x6d0 [ 1947.051793] ? perf_trace_lock+0xac/0x490 [ 1947.052260] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1947.052853] ? __lockdep_reset_lock+0x180/0x180 [ 1947.053363] ___sys_sendmsg+0xf3/0x170 [ 1947.053792] ? sendmsg_copy_msghdr+0x160/0x160 [ 1947.054298] ? lock_downgrade+0x6d0/0x6d0 [ 1947.054750] ? finish_task_switch+0x126/0x5d0 [ 1947.055236] ? lock_downgrade+0x6d0/0x6d0 [ 1947.055689] ? __fget_files+0x296/0x4c0 [ 1947.056148] ? __fget_light+0xea/0x290 [ 1947.056577] __sys_sendmsg+0xe5/0x1b0 [ 1947.056992] ? __sys_sendmsg_sock+0x40/0x40 [ 1947.057460] ? io_schedule_timeout+0x140/0x140 [ 1947.057970] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1947.058532] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1947.059096] ? trace_hardirqs_on+0x5b/0x180 [ 1947.059571] do_syscall_64+0x33/0x40 [ 1947.059993] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1947.060555] RIP: 0033:0x7fd54fedeb19 [ 1947.060962] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1947.062962] RSP: 002b:00007fd54d412188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1947.063801] RAX: ffffffffffffffda RBX: 00007fd54fff20e0 RCX: 00007fd54fedeb19 [ 1947.064579] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1947.065371] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 1947.066145] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1947.066919] R13: 00007fff36540caf R14: 00007fd54d412300 R15: 0000000000022000 21:24:48 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x2, 0x0, 0x0, 0x0) 21:24:48 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x2, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 21:24:48 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 18) 21:24:48 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xcc0, 0x0, 0x0, 0x0) 21:24:48 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x3, 0x0, 0x0, 0x0) 21:24:48 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x2ce, 0x0, 0x0, 0x0) 21:24:48 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xcc0, 0x0, 0x0, 0x0) [ 1962.321929] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1962.322999] CPU: 0 PID: 11579 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1962.323757] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1962.324687] Call Trace: [ 1962.324980] dump_stack+0x107/0x167 [ 1962.325387] sysfs_warn_dup.cold+0x1c/0x29 [ 1962.325860] sysfs_do_create_link_sd+0x122/0x140 [ 1962.326381] sysfs_create_link+0x5f/0xc0 [ 1962.326829] device_add+0x703/0x1c50 [ 1962.327243] ? devlink_add_symlinks+0x970/0x970 [ 1962.327754] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1962.328353] wiphy_register+0x1da6/0x2850 [ 1962.328821] ? wiphy_unregister+0xb90/0xb90 [ 1962.329321] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1962.329906] ieee80211_register_hw+0x23c5/0x38b0 [ 1962.330445] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1962.330972] ? net_generic+0xdb/0x2b0 [ 1962.331407] ? lockdep_init_map_type+0x2c7/0x780 [ 1962.331950] ? memset+0x20/0x50 [ 1962.332318] ? __hrtimer_init+0x12c/0x270 [ 1962.332781] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1962.333349] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1962.333852] ? hwsim_new_radio_nl+0x967/0x1080 [ 1962.334355] ? memcpy+0x39/0x60 [ 1962.334723] hwsim_new_radio_nl+0x991/0x1080 [ 1962.335209] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1962.335797] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1962.336529] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1962.337279] genl_family_rcv_msg_doit+0x22d/0x330 [ 1962.337828] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1962.338573] ? cap_capable+0x1cd/0x230 [ 1962.339028] ? ns_capable+0xe2/0x110 [ 1962.339458] genl_rcv_msg+0x33c/0x5a0 [ 1962.339897] ? genl_get_cmd+0x480/0x480 [ 1962.340362] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1962.340973] ? lock_release+0x680/0x680 [ 1962.341430] ? __lockdep_reset_lock+0x180/0x180 [ 1962.341942] netlink_rcv_skb+0x14b/0x430 [ 1962.342393] ? genl_get_cmd+0x480/0x480 [ 1962.342837] ? netlink_ack+0xab0/0xab0 [ 1962.343273] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1962.343769] ? is_vmalloc_addr+0x7b/0xb0 [ 1962.344224] genl_rcv+0x24/0x40 [ 1962.344583] netlink_unicast+0x549/0x7f0 [ 1962.345044] ? netlink_attachskb+0x870/0x870 [ 1962.345529] ? __sanitizer_cov_trace_const_cmp8+0x4/0x20 [ 1962.346131] netlink_sendmsg+0x90f/0xdf0 [ 1962.346576] ? netlink_unicast+0x7f0/0x7f0 [ 1962.347046] ? netlink_unicast+0x7f0/0x7f0 [ 1962.347509] __sock_sendmsg+0x154/0x190 [ 1962.348002] ____sys_sendmsg+0x70d/0x870 [ 1962.348453] ? sock_write_iter+0x3d0/0x3d0 [ 1962.348917] ? do_recvmmsg+0x6d0/0x6d0 [ 1962.349351] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1962.349928] ? trace_hardirqs_on+0x5b/0x180 [ 1962.350433] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1962.351056] ___sys_sendmsg+0xf3/0x170 [ 1962.351493] ? sendmsg_copy_msghdr+0x160/0x160 [ 1962.352035] ? lock_downgrade+0x6d0/0x6d0 [ 1962.352515] ? __lockdep_reset_lock+0x180/0x180 [ 1962.353047] ? futex_exit_release+0x220/0x220 [ 1962.353569] ? __fget_files+0x296/0x4c0 [ 1962.354032] ? __fget_light+0xea/0x290 [ 1962.354487] __sys_sendmsg+0xe5/0x1b0 [ 1962.354930] ? __sys_sendmsg_sock+0x40/0x40 [ 1962.355417] ? __do_sys_futex+0x2bb/0x480 [ 1962.355910] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1962.356518] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1962.357102] ? trace_hardirqs_on+0x5b/0x180 [ 1962.357584] do_syscall_64+0x33/0x40 [ 1962.358008] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1962.358594] RIP: 0033:0x7fd54fedeb19 [ 1962.359022] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1962.361117] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1962.361978] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 1962.362752] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1962.363567] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 1962.364358] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1962.365174] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 21:24:48 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x1b03, 0x0, 0x0, 0x0) [ 1962.403793] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1962.404809] CPU: 0 PID: 11589 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1962.405556] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1962.406458] Call Trace: [ 1962.406761] dump_stack+0x107/0x167 [ 1962.407170] sysfs_warn_dup.cold+0x1c/0x29 [ 1962.407641] sysfs_do_create_link_sd+0x122/0x140 [ 1962.408175] sysfs_create_link+0x5f/0xc0 [ 1962.408622] device_add+0x703/0x1c50 [ 1962.409033] ? devlink_add_symlinks+0x970/0x970 [ 1962.409538] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1962.410115] wiphy_register+0x1da6/0x2850 [ 1962.410599] ? wiphy_unregister+0xb90/0xb90 [ 1962.411088] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1962.411677] ieee80211_register_hw+0x23c5/0x38b0 [ 1962.411740] FAULT_INJECTION: forcing a failure. [ 1962.411740] name failslab, interval 1, probability 0, space 0, times 0 [ 1962.412214] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1962.412226] ? net_generic+0xdb/0x2b0 [ 1962.412243] ? lockdep_init_map_type+0x2c7/0x780 [ 1962.412259] ? memset+0x20/0x50 [ 1962.412271] ? __hrtimer_init+0x12c/0x270 [ 1962.412285] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1962.412313] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1962.418000] ? hwsim_new_radio_nl+0x967/0x1080 [ 1962.418526] ? memcpy+0x39/0x60 [ 1962.418908] hwsim_new_radio_nl+0x991/0x1080 [ 1962.419410] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1962.420018] ? trace_hardirqs_on+0x5b/0x180 [ 1962.420508] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1962.421127] genl_family_rcv_msg_doit+0x22d/0x330 [ 1962.421684] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1962.422453] ? cap_capable+0x1cd/0x230 [ 1962.422926] ? ns_capable+0xe2/0x110 [ 1962.423367] genl_rcv_msg+0x33c/0x5a0 [ 1962.423812] ? genl_get_cmd+0x480/0x480 [ 1962.424280] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1962.424886] ? genl_get_cmd+0x480/0x480 [ 1962.425356] netlink_rcv_skb+0x14b/0x430 [ 1962.425807] ? genl_get_cmd+0x480/0x480 [ 1962.426273] ? netlink_ack+0xab0/0xab0 [ 1962.426731] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1962.427265] ? is_vmalloc_addr+0x7b/0xb0 [ 1962.427730] genl_rcv+0x24/0x40 [ 1962.428128] netlink_unicast+0x549/0x7f0 [ 1962.428603] ? netlink_attachskb+0x870/0x870 [ 1962.429121] ? __virt_addr_valid+0x128/0x350 [ 1962.429642] netlink_sendmsg+0x90f/0xdf0 [ 1962.430131] ? netlink_unicast+0x7f0/0x7f0 [ 1962.430631] ? netlink_unicast+0x7f0/0x7f0 [ 1962.431138] __sock_sendmsg+0x154/0x190 [ 1962.431595] ____sys_sendmsg+0x70d/0x870 [ 1962.432097] ? sock_write_iter+0x3d0/0x3d0 [ 1962.432578] ? do_recvmmsg+0x6d0/0x6d0 [ 1962.433040] ? perf_trace_lock+0xac/0x490 [ 1962.433520] ? __lockdep_reset_lock+0x180/0x180 [ 1962.434069] ? perf_trace_lock+0xac/0x490 [ 1962.434558] ___sys_sendmsg+0xf3/0x170 [ 1962.435018] ? sendmsg_copy_msghdr+0x160/0x160 [ 1962.435551] ? lock_downgrade+0x6d0/0x6d0 [ 1962.436050] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1962.436647] ? trace_hardirqs_on+0x5b/0x180 [ 1962.437156] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1962.437798] ? __fget_files+0x296/0x4c0 [ 1962.438276] ? __fget_light+0xea/0x290 [ 1962.438737] __sys_sendmsg+0xe5/0x1b0 [ 1962.439188] ? __sys_sendmsg_sock+0x40/0x40 [ 1962.439687] ? io_schedule_timeout+0x140/0x140 [ 1962.440271] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1962.440884] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1962.441475] ? trace_hardirqs_on+0x5b/0x180 [ 1962.441993] do_syscall_64+0x33/0x40 [ 1962.442422] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1962.443033] RIP: 0033:0x7fd54fedeb19 [ 1962.443464] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1962.445621] RSP: 002b:00007fd54d433188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1962.446513] RAX: ffffffffffffffda RBX: 00007fd54fff2020 RCX: 00007fd54fedeb19 [ 1962.447349] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1962.448192] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 1962.449022] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1962.449863] R13: 00007fff36540caf R14: 00007fd54d433300 R15: 0000000000022000 [ 1962.450738] CPU: 1 PID: 11575 Comm: syz-executor.4 Not tainted 5.10.205 #1 [ 1962.452193] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1962.453864] Call Trace: [ 1962.454427] dump_stack+0x107/0x167 [ 1962.455172] should_fail.cold+0x5/0xa [ 1962.455970] ? create_object.isra.0+0x3a/0xa20 [ 1962.456905] ? create_object.isra.0+0x3a/0xa20 [ 1962.457840] should_failslab+0x5/0x20 [ 1962.458606] kmem_cache_alloc+0x5b/0x310 [ 1962.459434] ? copy_process+0x5d2/0x7800 [ 1962.460275] create_object.isra.0+0x3a/0xa20 [ 1962.461159] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 1962.462209] kmem_cache_alloc_node+0x169/0x330 [ 1962.463121] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1962.464211] copy_process+0x5d2/0x7800 [ 1962.465001] ? stack_trace_save+0x8c/0xc0 [ 1962.465853] ? stack_trace_consume_entry+0x160/0x160 [ 1962.466877] ? kasan_save_stack+0x32/0x40 [ 1962.467736] ? kasan_save_stack+0x1b/0x40 [ 1962.468599] ? create_io_worker+0xe8/0x620 [ 1962.469445] ? io_wqe_enqueue+0x69e/0xbe0 [ 1962.470292] ? __cleanup_sighand+0xb0/0xb0 [ 1962.471147] ? __lockdep_reset_lock+0x180/0x180 [ 1962.472112] ? lock_acquire+0x197/0x470 [ 1962.472930] ? create_object.isra.0+0x3ad/0xa20 [ 1962.473883] ? lock_release+0x680/0x680 [ 1962.474708] ? find_held_lock+0x2c/0x110 [ 1962.475526] ? io_wqe_dec_running+0x220/0x220 [ 1962.476468] create_io_thread+0xb6/0xf0 [ 1962.477257] ? pidfd_pid+0x90/0x90 [ 1962.477973] ? mark_held_locks+0x9e/0xe0 [ 1962.478793] ? io_wqe_dec_running+0x220/0x220 [ 1962.479714] ? __init_swait_queue_head+0xc6/0x150 [ 1962.480709] create_io_worker+0x23a/0x620 [ 1962.481562] io_wqe_enqueue+0x69e/0xbe0 [ 1962.482395] ? create_worker_cb+0x260/0x260 [ 1962.483288] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1962.484209] ? io_prep_async_work+0x34e/0x550 [ 1962.485128] io_queue_async_work+0x26b/0x4f0 [ 1962.486026] __io_queue_sqe+0x5cc/0x9d0 [ 1962.486847] ? io_issue_sqe+0x7700/0x7700 [ 1962.487688] ? io_poll_queue_proc+0x50/0x50 [ 1962.488596] io_submit_sqes+0x4461/0x85c0 [ 1962.489480] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1962.490486] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1962.491472] ? lock_downgrade+0x6d0/0x6d0 [ 1962.492333] ? find_held_lock+0x2c/0x110 [ 1962.493144] ? io_submit_sqes+0x85c0/0x85c0 [ 1962.494014] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1962.494962] ? wait_for_completion_io+0x270/0x270 [ 1962.495912] ? rcu_read_lock_any_held+0x75/0xa0 [ 1962.496838] ? vfs_write+0x354/0xa70 [ 1962.497574] ? fput_many+0x2f/0x1a0 [ 1962.498293] ? ksys_write+0x1a9/0x260 [ 1962.499035] ? __ia32_sys_read+0xb0/0xb0 [ 1962.499857] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1962.500898] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1962.501950] do_syscall_64+0x33/0x40 [ 1962.502693] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1962.503720] RIP: 0033:0x7f65ffeffb19 [ 1962.504464] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1962.508075] RSP: 002b:00007f65fd475188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1962.509575] RAX: ffffffffffffffda RBX: 00007f6600012f60 RCX: 00007f65ffeffb19 [ 1962.510996] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1962.512426] RBP: 00007f65fd4751d0 R08: 0000000000000000 R09: 0000000000000000 [ 1962.513819] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1962.515241] R13: 00007ffddf3c20bf R14: 00007f65fd475300 R15: 0000000000022000 21:25:03 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 19) 21:25:03 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x300, 0x0, 0x0, 0x0) 21:25:03 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x2000, 0x0, 0x0, 0x0) 21:25:03 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x2000, 0x0, 0x0, 0x0) 21:25:03 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x4, 0x0, 0x0, 0x0) 21:25:03 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x2000, 0x0, 0x0, 0x0) 21:25:03 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 21:25:03 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x3, 0x0, 0x0, 0x0) [ 1977.679302] FAULT_INJECTION: forcing a failure. [ 1977.679302] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 1977.682076] CPU: 1 PID: 11607 Comm: syz-executor.4 Not tainted 5.10.205 #1 [ 1977.683477] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1977.685174] Call Trace: [ 1977.685716] dump_stack+0x107/0x167 [ 1977.686461] should_fail.cold+0x5/0xa [ 1977.687247] __alloc_pages_nodemask+0x182/0x600 [ 1977.688203] ? lock_downgrade+0x6d0/0x6d0 [ 1977.689055] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130 [ 1977.690283] ? memcg_slab_post_alloc_hook+0x17a/0x430 [ 1977.691349] ? kmem_cache_alloc_node+0x2bc/0x330 [ 1977.692345] copy_process+0x618/0x7800 [ 1977.693149] ? stack_trace_save+0x8c/0xc0 [ 1977.693998] ? stack_trace_consume_entry+0x160/0x160 [ 1977.695049] ? kasan_save_stack+0x32/0x40 [ 1977.695894] ? kasan_save_stack+0x1b/0x40 [ 1977.696759] ? create_io_worker+0xe8/0x620 [ 1977.697624] ? io_wqe_enqueue+0x69e/0xbe0 [ 1977.698491] ? __cleanup_sighand+0xb0/0xb0 [ 1977.699371] ? __lockdep_reset_lock+0x180/0x180 [ 1977.700347] ? lock_acquire+0x197/0x470 [ 1977.701167] ? create_object.isra.0+0x3ad/0xa20 [ 1977.702130] ? lock_release+0x680/0x680 [ 1977.702948] ? find_held_lock+0x2c/0x110 [ 1977.703787] ? io_wqe_dec_running+0x220/0x220 [ 1977.704711] create_io_thread+0xb6/0xf0 [ 1977.705523] ? pidfd_pid+0x90/0x90 [ 1977.706249] ? mark_held_locks+0x9e/0xe0 [ 1977.707085] ? io_wqe_dec_running+0x220/0x220 [ 1977.708015] ? __init_swait_queue_head+0xc6/0x150 [ 1977.709019] create_io_worker+0x23a/0x620 [ 1977.709872] io_wqe_enqueue+0x69e/0xbe0 [ 1977.710692] ? create_worker_cb+0x260/0x260 [ 1977.711576] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1977.712506] ? io_prep_async_work+0x34e/0x550 [ 1977.713433] io_queue_async_work+0x26b/0x4f0 [ 1977.714342] __io_queue_sqe+0x5cc/0x9d0 [ 1977.715166] ? io_issue_sqe+0x7700/0x7700 [ 1977.716016] ? io_poll_queue_proc+0x50/0x50 [ 1977.716921] io_submit_sqes+0x4461/0x85c0 [ 1977.717809] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1977.718823] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1977.719810] ? lock_downgrade+0x6d0/0x6d0 [ 1977.720672] ? find_held_lock+0x2c/0x110 [ 1977.721518] ? io_submit_sqes+0x85c0/0x85c0 [ 1977.722413] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1977.723493] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1977.724616] ? trace_hardirqs_on+0x5b/0x180 [ 1977.725512] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1977.726648] ? ksys_write+0x203/0x260 [ 1977.727441] ? copy_kernel_to_fpregs+0x9e/0xe0 [ 1977.728390] ? trace_event_raw_event_x86_fpu+0x390/0x390 [ 1977.729508] ? ksys_write+0x1a9/0x260 [ 1977.730291] ? __ia32_sys_read+0xb0/0xb0 [ 1977.731127] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1977.732198] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1977.733268] do_syscall_64+0x33/0x40 [ 1977.734025] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1977.735072] RIP: 0033:0x7f65ffeffb19 [ 1977.735832] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1977.739554] RSP: 002b:00007f65fd475188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1977.741105] RAX: ffffffffffffffda RBX: 00007f6600012f60 RCX: 00007f65ffeffb19 [ 1977.742546] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1977.743991] RBP: 00007f65fd4751d0 R08: 0000000000000000 R09: 0000000000000000 [ 1977.745451] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1977.746892] R13: 00007ffddf3c20bf R14: 00007f65fd475300 R15: 0000000000022000 21:25:03 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x2c51, 0x0, 0x0, 0x0) 21:25:03 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x500, 0x0, 0x0, 0x0) 21:25:03 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x2c38, 0x0, 0x0, 0x0) [ 1977.762293] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1977.765342] CPU: 1 PID: 11617 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1977.766784] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1977.768520] Call Trace: [ 1977.769072] dump_stack+0x107/0x167 [ 1977.769849] sysfs_warn_dup.cold+0x1c/0x29 [ 1977.770737] sysfs_do_create_link_sd+0x122/0x140 [ 1977.771723] sysfs_create_link+0x5f/0xc0 [ 1977.772597] device_add+0x703/0x1c50 [ 1977.773360] ? devlink_add_symlinks+0x970/0x970 [ 1977.774320] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1977.775398] wiphy_register+0x1da6/0x2850 [ 1977.776275] ? wiphy_unregister+0xb90/0xb90 [ 1977.777193] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1977.778304] ieee80211_register_hw+0x23c5/0x38b0 [ 1977.779308] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1977.780319] ? net_generic+0xdb/0x2b0 [ 1977.781106] ? lockdep_init_map_type+0x2c7/0x780 [ 1977.782090] ? memset+0x20/0x50 [ 1977.782778] ? __hrtimer_init+0x12c/0x270 [ 1977.783631] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1977.784678] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1977.785627] ? hwsim_new_radio_nl+0x967/0x1080 [ 1977.786569] ? memcpy+0x39/0x60 [ 1977.787256] hwsim_new_radio_nl+0x991/0x1080 [ 1977.788170] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1977.789255] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1977.790622] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1977.791956] genl_family_rcv_msg_doit+0x22d/0x330 [ 1977.792952] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1977.794296] ? cap_capable+0x1cd/0x230 [ 1977.795107] ? ns_capable+0xe2/0x110 [ 1977.795880] genl_rcv_msg+0x33c/0x5a0 [ 1977.796687] ? genl_get_cmd+0x480/0x480 [ 1977.797501] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1977.798554] ? lock_release+0x680/0x680 [ 1977.799361] ? __lockdep_reset_lock+0x180/0x180 [ 1977.800318] netlink_rcv_skb+0x14b/0x430 [ 1977.801142] ? genl_get_cmd+0x480/0x480 [ 1977.801962] ? netlink_ack+0xab0/0xab0 [ 1977.802773] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1977.803701] ? is_vmalloc_addr+0x7b/0xb0 [ 1977.804535] genl_rcv+0x24/0x40 [ 1977.805203] netlink_unicast+0x549/0x7f0 [ 1977.806050] ? netlink_attachskb+0x870/0x870 [ 1977.806959] ? __virt_addr_valid+0x128/0x350 [ 1977.807873] netlink_sendmsg+0x90f/0xdf0 [ 1977.808726] ? netlink_unicast+0x7f0/0x7f0 [ 1977.809598] ? __sanitizer_cov_trace_pc+0x4/0x60 [ 1977.810561] ? netlink_unicast+0x7f0/0x7f0 [ 1977.811417] __sock_sendmsg+0x154/0x190 [ 1977.812233] ____sys_sendmsg+0x70d/0x870 [ 1977.813062] ? sock_write_iter+0x3d0/0x3d0 [ 1977.813916] ? do_recvmmsg+0x6d0/0x6d0 [ 1977.814705] ? perf_trace_lock+0xac/0x490 [ 1977.815553] ? __lockdep_reset_lock+0x180/0x180 [ 1977.816520] ___sys_sendmsg+0xf3/0x170 [ 1977.817314] ? sendmsg_copy_msghdr+0x160/0x160 [ 1977.818255] ? lock_downgrade+0x6d0/0x6d0 [ 1977.819116] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1977.820217] ? trace_hardirqs_on+0x5b/0x180 [ 1977.821103] ? __fget_files+0x296/0x4c0 [ 1977.821925] ? __fget_light+0xea/0x290 [ 1977.822728] __sys_sendmsg+0xe5/0x1b0 [ 1977.823502] ? __sys_sendmsg_sock+0x40/0x40 [ 1977.824393] ? trace_hardirqs_on+0x5b/0x180 [ 1977.825288] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1977.826330] ? syscall_enter_from_user_mode+0x27/0x50 [ 1977.827379] do_syscall_64+0x33/0x40 [ 1977.828144] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1977.829195] RIP: 0033:0x7fd54fedeb19 [ 1977.829958] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1977.833693] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1977.835230] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 1977.836679] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1977.838121] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 1977.839563] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1977.841034] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 21:25:04 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x5, 0x0, 0x0, 0x0) 21:25:04 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x3f00, 0x0, 0x0, 0x0) 21:25:04 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xcc0, 0x0, 0x0, 0x0) 21:25:04 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x382c, 0x0, 0x0, 0x0) 21:25:04 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x4, 0x0, 0x0, 0x0) [ 1978.083522] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1978.085314] CPU: 1 PID: 11671 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1978.086737] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1978.088442] Call Trace: [ 1978.088993] dump_stack+0x107/0x167 [ 1978.089759] sysfs_warn_dup.cold+0x1c/0x29 [ 1978.090642] sysfs_do_create_link_sd+0x122/0x140 [ 1978.091626] sysfs_create_link+0x5f/0xc0 [ 1978.092495] device_add+0x703/0x1c50 [ 1978.093273] ? devlink_add_symlinks+0x970/0x970 [ 1978.094226] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1978.095304] wiphy_register+0x1da6/0x2850 [ 1978.096173] ? wiphy_unregister+0xb90/0xb90 [ 1978.097081] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1978.098175] ieee80211_register_hw+0x23c5/0x38b0 [ 1978.099168] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1978.100169] ? net_generic+0xdb/0x2b0 [ 1978.100960] ? lockdep_init_map_type+0x2c7/0x780 [ 1978.101952] ? memset+0x20/0x50 [ 1978.102640] ? __hrtimer_init+0x12c/0x270 [ 1978.103493] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1978.104550] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1978.105492] ? hwsim_new_radio_nl+0x967/0x1080 [ 1978.106436] ? memcpy+0x39/0x60 [ 1978.107114] hwsim_new_radio_nl+0x991/0x1080 [ 1978.108032] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1978.109124] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1978.110488] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1978.111830] genl_family_rcv_msg_doit+0x22d/0x330 [ 1978.112848] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1978.114193] ? cap_capable+0x1cd/0x230 [ 1978.115007] ? ns_capable+0xe2/0x110 [ 1978.115777] genl_rcv_msg+0x33c/0x5a0 [ 1978.116577] ? genl_get_cmd+0x480/0x480 [ 1978.117391] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1978.118445] ? lock_release+0x680/0x680 [ 1978.119257] ? __lockdep_reset_lock+0x180/0x180 [ 1978.120235] netlink_rcv_skb+0x14b/0x430 [ 1978.121068] ? genl_get_cmd+0x480/0x480 [ 1978.121875] ? netlink_ack+0xab0/0xab0 [ 1978.122692] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1978.123625] ? is_vmalloc_addr+0x7b/0xb0 [ 1978.124472] genl_rcv+0x24/0x40 [ 1978.125156] netlink_unicast+0x549/0x7f0 [ 1978.126008] ? netlink_attachskb+0x870/0x870 [ 1978.126904] ? __virt_addr_valid+0x128/0x350 [ 1978.127813] netlink_sendmsg+0x90f/0xdf0 [ 1978.128666] ? netlink_unicast+0x7f0/0x7f0 [ 1978.129541] ? netlink_unicast+0x7f0/0x7f0 [ 1978.130399] __sock_sendmsg+0x154/0x190 [ 1978.131210] ____sys_sendmsg+0x70d/0x870 [ 1978.132038] ? sock_write_iter+0x3d0/0x3d0 [ 1978.132906] ? do_recvmmsg+0x6d0/0x6d0 [ 1978.133697] ? perf_trace_lock+0xac/0x490 [ 1978.134548] ? __lockdep_reset_lock+0x180/0x180 [ 1978.135495] ? perf_trace_lock+0xac/0x490 [ 1978.136364] ___sys_sendmsg+0xf3/0x170 [ 1978.137173] ? sendmsg_copy_msghdr+0x160/0x160 [ 1978.138126] ? lock_downgrade+0x6d0/0x6d0 [ 1978.138987] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1978.140053] ? trace_hardirqs_on+0x5b/0x180 [ 1978.140943] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1978.142073] ? __fget_files+0x296/0x4c0 [ 1978.142904] ? __fget_light+0xea/0x290 [ 1978.143709] __sys_sendmsg+0xe5/0x1b0 [ 1978.144507] ? __sys_sendmsg_sock+0x40/0x40 [ 1978.145390] ? io_schedule_timeout+0x140/0x140 [ 1978.146363] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1978.147431] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1978.148524] ? trace_hardirqs_on+0x5b/0x180 [ 1978.149410] do_syscall_64+0x33/0x40 [ 1978.150187] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1978.151232] RIP: 0033:0x7fd54fedeb19 [ 1978.152005] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1978.155741] RSP: 002b:00007fd54d433188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1978.157317] RAX: ffffffffffffffda RBX: 00007fd54fff2020 RCX: 00007fd54fedeb19 [ 1978.158759] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1978.160221] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 1978.161667] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1978.163112] R13: 00007fff36540caf R14: 00007fd54d433300 R15: 0000000000022000 21:25:20 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x3f00, 0x0, 0x0, 0x0) 21:25:20 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x2000, 0x0, 0x0, 0x0) 21:25:20 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x2c5b, 0x0, 0x0, 0x0) 21:25:20 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x8, 0x0, 0x0, 0x0) 21:25:20 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 20) 21:25:20 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x4000, 0x0, 0x0, 0x0) 21:25:20 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x5, 0x0, 0x0, 0x0) 21:25:20 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x4, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) [ 1994.544840] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1994.546181] CPU: 1 PID: 11689 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1994.547044] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1994.548054] Call Trace: [ 1994.548408] dump_stack+0x107/0x167 [ 1994.548871] sysfs_warn_dup.cold+0x1c/0x29 [ 1994.549396] sysfs_do_create_link_sd+0x122/0x140 [ 1994.549988] sysfs_create_link+0x5f/0xc0 [ 1994.550481] device_add+0x703/0x1c50 [ 1994.550950] ? devlink_add_symlinks+0x970/0x970 [ 1994.551507] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1994.552181] wiphy_register+0x1da6/0x2850 [ 1994.552703] ? wiphy_unregister+0xb90/0xb90 [ 1994.553226] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1994.553852] ieee80211_register_hw+0x23c5/0x38b0 [ 1994.554455] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1994.555093] ? net_generic+0xdb/0x2b0 [ 1994.555585] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1994.556304] ? memset+0x20/0x50 [ 1994.556728] ? __hrtimer_init+0x12c/0x270 [ 1994.557254] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1994.557902] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1994.558501] ? hwsim_new_radio_nl+0x967/0x1080 [ 1994.559040] ? memcpy+0x39/0x60 [ 1994.559437] hwsim_new_radio_nl+0x991/0x1080 [ 1994.560016] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1994.560722] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1994.561555] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1994.562408] genl_family_rcv_msg_doit+0x22d/0x330 [ 1994.562978] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1994.563751] ? cap_capable+0x1cd/0x230 [ 1994.564237] ? ns_capable+0xe2/0x110 [ 1994.564708] genl_rcv_msg+0x33c/0x5a0 [ 1994.565201] ? genl_get_cmd+0x480/0x480 [ 1994.565722] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1994.566399] ? lock_release+0x680/0x680 [ 1994.566886] ? __lockdep_reset_lock+0x180/0x180 [ 1994.567467] netlink_rcv_skb+0x14b/0x430 [ 1994.567948] ? genl_get_cmd+0x480/0x480 [ 1994.568481] ? netlink_ack+0xab0/0xab0 [ 1994.569001] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1994.569578] ? is_vmalloc_addr+0x7b/0xb0 [ 1994.570114] genl_rcv+0x24/0x40 [ 1994.570532] netlink_unicast+0x549/0x7f0 [ 1994.571069] ? netlink_attachskb+0x870/0x870 [ 1994.571615] ? __virt_addr_valid+0x128/0x350 [ 1994.572143] netlink_sendmsg+0x90f/0xdf0 [ 1994.572675] ? netlink_unicast+0x7f0/0x7f0 [ 1994.573236] ? netlink_unicast+0x7f0/0x7f0 [ 1994.573765] __sock_sendmsg+0x154/0x190 [ 1994.574288] ____sys_sendmsg+0x70d/0x870 [ 1994.574787] ? trace_hardirqs_on+0x5b/0x180 [ 1994.575348] ? sock_write_iter+0x3d0/0x3d0 [ 1994.575882] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1994.576611] ___sys_sendmsg+0xf3/0x170 [ 1994.577123] ? sendmsg_copy_msghdr+0x160/0x160 [ 1994.577681] ? lock_downgrade+0x6d0/0x6d0 [ 1994.578206] ? __lockdep_reset_lock+0x180/0x180 [ 1994.578809] ? futex_exit_release+0x220/0x220 [ 1994.579392] ? __fget_files+0x296/0x4c0 [ 1994.579912] ? __fget_light+0xea/0x290 [ 1994.580408] __sys_sendmsg+0xe5/0x1b0 [ 1994.580909] ? __sys_sendmsg_sock+0x40/0x40 [ 1994.581459] ? __do_sys_futex+0x2bb/0x480 [ 1994.582006] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1994.582682] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1994.583344] ? trace_hardirqs_on+0x5b/0x180 [ 1994.583868] do_syscall_64+0x33/0x40 [ 1994.584319] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1994.584968] RIP: 0033:0x7fd54fedeb19 [ 1994.585441] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1994.587836] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1994.588832] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 1994.589728] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1994.590582] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 1994.591502] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1994.592431] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 21:25:20 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x512c, 0x0, 0x0, 0x0) 21:25:20 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x4000, 0x0, 0x0, 0x0) [ 1994.720506] FAULT_INJECTION: forcing a failure. [ 1994.720506] name failslab, interval 1, probability 0, space 0, times 0 21:25:20 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xc00c, 0x0, 0x0, 0x0) [ 1994.724133] CPU: 0 PID: 11679 Comm: syz-executor.4 Not tainted 5.10.205 #1 [ 1994.725750] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1994.727469] Call Trace: [ 1994.728037] dump_stack+0x107/0x167 [ 1994.728819] should_fail.cold+0x5/0xa [ 1994.729648] ? __delayacct_tsk_init+0x1b/0x80 [ 1994.730590] should_failslab+0x5/0x20 [ 1994.731378] kmem_cache_alloc+0x5b/0x310 [ 1994.732246] __delayacct_tsk_init+0x1b/0x80 [ 1994.733165] copy_process+0x3319/0x7800 [ 1994.733989] ? stack_trace_save+0x8c/0xc0 [ 1994.734852] ? stack_trace_consume_entry+0x160/0x160 [ 1994.735968] ? kasan_save_stack+0x1b/0x40 [ 1994.736871] ? __cleanup_sighand+0xb0/0xb0 [ 1994.737768] ? __lockdep_reset_lock+0x180/0x180 [ 1994.738751] ? lock_acquire+0x197/0x470 [ 1994.739595] ? create_object.isra.0+0x3ad/0xa20 [ 1994.740596] ? lock_release+0x680/0x680 [ 1994.741454] ? find_held_lock+0x2c/0x110 [ 1994.742324] ? io_wqe_dec_running+0x220/0x220 [ 1994.743287] create_io_thread+0xb6/0xf0 [ 1994.744118] ? pidfd_pid+0x90/0x90 [ 1994.744870] ? mark_held_locks+0x9e/0xe0 [ 1994.745722] ? io_wqe_dec_running+0x220/0x220 [ 1994.746672] ? __init_swait_queue_head+0xc6/0x150 [ 1994.747681] create_io_worker+0x23a/0x620 [ 1994.748573] io_wqe_enqueue+0x69e/0xbe0 [ 1994.749413] ? create_worker_cb+0x260/0x260 [ 1994.750317] ? _raw_spin_unlock_irq+0x1f/0x30 [ 1994.751257] ? io_prep_async_work+0x34e/0x550 [ 1994.752204] io_queue_async_work+0x26b/0x4f0 [ 1994.753139] __io_queue_sqe+0x5cc/0x9d0 [ 1994.753979] ? io_issue_sqe+0x7700/0x7700 [ 1994.754845] ? io_poll_queue_proc+0x50/0x50 [ 1994.755762] io_submit_sqes+0x4461/0x85c0 [ 1994.756670] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 1994.757706] __do_sys_io_uring_enter+0x6b5/0x1920 [ 1994.758714] ? lock_downgrade+0x6d0/0x6d0 [ 1994.759575] ? find_held_lock+0x2c/0x110 [ 1994.760442] ? io_submit_sqes+0x85c0/0x85c0 [ 1994.761352] ? __mutex_unlock_slowpath+0xe1/0x600 [ 1994.762361] ? wait_for_completion_io+0x270/0x270 [ 1994.763380] ? rcu_read_lock_any_held+0x75/0xa0 [ 1994.764355] ? vfs_write+0x354/0xa70 [ 1994.765149] ? fput_many+0x2f/0x1a0 [ 1994.765911] ? ksys_write+0x1a9/0x260 [ 1994.766710] ? __ia32_sys_read+0xb0/0xb0 [ 1994.767568] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1994.768699] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1994.769805] do_syscall_64+0x33/0x40 [ 1994.770592] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1994.771685] RIP: 0033:0x7f65ffeffb19 [ 1994.772486] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1994.776370] RSP: 002b:00007f65fd475188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 1994.777978] RAX: ffffffffffffffda RBX: 00007f6600012f60 RCX: 00007f65ffeffb19 [ 1994.779471] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 1994.780964] RBP: 00007f65fd4751d0 R08: 0000000000000000 R09: 0000000000000000 [ 1994.782443] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1994.783925] R13: 00007ffddf3c20bf R14: 00007f65fd475300 R15: 0000000000022000 21:25:20 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x2c3b, 0x0, 0x0, 0x0) 21:25:21 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x3f00, 0x0, 0x0, 0x0) 21:25:21 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x8, 0x0, 0x0, 0x0) 21:25:21 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x300, 0x0, 0x0, 0x0) 21:25:21 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xc00c, 0x0, 0x0, 0x0) 21:25:21 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x800000, 0x0, 0x0, 0x0) [ 1994.914028] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 1994.915824] CPU: 0 PID: 11729 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 1994.917311] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 1994.919032] Call Trace: [ 1994.919599] dump_stack+0x107/0x167 [ 1994.920376] sysfs_warn_dup.cold+0x1c/0x29 [ 1994.921288] sysfs_do_create_link_sd+0x122/0x140 [ 1994.922282] sysfs_create_link+0x5f/0xc0 [ 1994.923129] device_add+0x703/0x1c50 [ 1994.923937] ? devlink_add_symlinks+0x970/0x970 [ 1994.924931] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 1994.926034] wiphy_register+0x1da6/0x2850 [ 1994.926928] ? wiphy_unregister+0xb90/0xb90 [ 1994.927852] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 1994.929005] ieee80211_register_hw+0x23c5/0x38b0 [ 1994.930005] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 1994.931022] ? net_generic+0xdb/0x2b0 [ 1994.931826] ? lockdep_init_map_type+0x2c7/0x780 [ 1994.932830] ? memset+0x20/0x50 [ 1994.933523] ? __hrtimer_init+0x12c/0x270 [ 1994.934391] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 1994.935458] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 1994.936440] ? hwsim_new_radio_nl+0x967/0x1080 [ 1994.937398] ? memcpy+0x39/0x60 [ 1994.938099] hwsim_new_radio_nl+0x991/0x1080 [ 1994.939030] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1994.940134] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 1994.941510] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 1994.942875] genl_family_rcv_msg_doit+0x22d/0x330 [ 1994.943884] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 1994.945272] ? cap_capable+0x1cd/0x230 [ 1994.946103] ? ns_capable+0xe2/0x110 [ 1994.946887] genl_rcv_msg+0x33c/0x5a0 [ 1994.947696] ? genl_get_cmd+0x480/0x480 [ 1994.948544] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 1994.949637] ? lock_release+0x680/0x680 [ 1994.950470] ? __lockdep_reset_lock+0x180/0x180 [ 1994.951436] netlink_rcv_skb+0x14b/0x430 [ 1994.952287] ? genl_get_cmd+0x480/0x480 [ 1994.953153] ? netlink_ack+0xab0/0xab0 [ 1994.953992] ? netlink_deliver_tap+0x1c4/0xcd0 [ 1994.954949] ? is_vmalloc_addr+0x7b/0xb0 [ 1994.955804] genl_rcv+0x24/0x40 [ 1994.956502] netlink_unicast+0x549/0x7f0 [ 1994.957378] ? netlink_attachskb+0x870/0x870 [ 1994.958302] ? __virt_addr_valid+0x128/0x350 [ 1994.959243] netlink_sendmsg+0x90f/0xdf0 [ 1994.960098] ? netlink_unicast+0x7f0/0x7f0 [ 1994.960999] ? netlink_unicast+0x7f0/0x7f0 [ 1994.961877] __sock_sendmsg+0x154/0x190 [ 1994.962705] ____sys_sendmsg+0x70d/0x870 [ 1994.963553] ? trace_hardirqs_on+0x5b/0x180 [ 1994.964461] ? sock_write_iter+0x3d0/0x3d0 [ 1994.965336] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 1994.966486] ___sys_sendmsg+0xf3/0x170 [ 1994.967298] ? sendmsg_copy_msghdr+0x160/0x160 [ 1994.968256] ? lock_downgrade+0x6d0/0x6d0 [ 1994.969147] ? __fget_files+0x296/0x4c0 [ 1994.969986] ? __fget_light+0xea/0x290 [ 1994.970810] __sys_sendmsg+0xe5/0x1b0 [ 1994.971603] ? __sys_sendmsg_sock+0x40/0x40 [ 1994.972541] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 1994.973642] ? syscall_enter_from_user_mode+0x1d/0x50 [ 1994.974706] ? trace_hardirqs_on+0x5b/0x180 [ 1994.975606] do_syscall_64+0x33/0x40 [ 1994.976386] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 1994.977445] RIP: 0033:0x7fd54fedeb19 [ 1994.978218] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 1994.982029] RSP: 002b:00007fd54d433188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1994.983606] RAX: ffffffffffffffda RBX: 00007fd54fff2020 RCX: 00007fd54fedeb19 [ 1994.985088] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 1994.986564] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 1994.988042] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1994.989522] R13: 00007fff36540caf R14: 00007fd54d433300 R15: 0000000000022000 21:25:36 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x5, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 21:25:36 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x2fb, 0x0, 0x0, 0x0) 21:25:36 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x307, 0x0, 0x0, 0x0) 21:25:36 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x800000, 0x0, 0x0, 0x0) 21:25:36 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 21) 21:25:36 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x2000000, 0x0, 0x0, 0x0) 21:25:36 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x3b2c, 0x0, 0x0, 0x0) 21:25:36 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x4000, 0x0, 0x0, 0x0) [ 2010.580515] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2010.582866] CPU: 0 PID: 11764 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2010.584417] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2010.586143] Call Trace: [ 2010.586692] dump_stack+0x107/0x167 [ 2010.587449] sysfs_warn_dup.cold+0x1c/0x29 [ 2010.588324] sysfs_do_create_link_sd+0x122/0x140 [ 2010.589309] sysfs_create_link+0x5f/0xc0 [ 2010.590153] device_add+0x703/0x1c50 [ 2010.590926] ? devlink_add_symlinks+0x970/0x970 [ 2010.591896] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2010.592997] wiphy_register+0x1da6/0x2850 [ 2010.593866] ? wiphy_unregister+0xb90/0xb90 [ 2010.594766] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2010.595871] ieee80211_register_hw+0x23c5/0x38b0 [ 2010.596885] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2010.597884] ? net_generic+0xdb/0x2b0 [ 2010.598673] ? lockdep_init_map_type+0x2c7/0x780 [ 2010.599655] ? memset+0x20/0x50 [ 2010.600332] ? __hrtimer_init+0x12c/0x270 [ 2010.601202] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2010.602244] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2010.603196] ? hwsim_new_radio_nl+0x967/0x1080 [ 2010.604138] ? memcpy+0x39/0x60 [ 2010.604840] hwsim_new_radio_nl+0x991/0x1080 [ 2010.605744] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2010.606794] ? trace_hardirqs_on+0x5b/0x180 [ 2010.607691] ? genl_family_rcv_msg_doit+0xec/0x330 [ 2010.608703] ? genl_family_rcv_msg_doit+0xfe/0x330 [ 2010.609710] genl_family_rcv_msg_doit+0x22d/0x330 [ 2010.610703] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2010.612043] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2010.613155] ? trace_hardirqs_on+0x5b/0x180 [ 2010.614051] ? genl_rcv_msg+0x4d7/0x5a0 [ 2010.614880] genl_rcv_msg+0x33c/0x5a0 [ 2010.615671] ? genl_get_cmd+0x480/0x480 [ 2010.616491] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2010.617560] ? genl_get_cmd+0x480/0x480 [ 2010.618390] netlink_rcv_skb+0x14b/0x430 [ 2010.619233] ? genl_get_cmd+0x480/0x480 [ 2010.620058] ? netlink_ack+0xab0/0xab0 [ 2010.620893] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2010.621836] ? is_vmalloc_addr+0x7b/0xb0 [ 2010.622681] genl_rcv+0x24/0x40 [ 2010.623361] netlink_unicast+0x549/0x7f0 [ 2010.624205] ? netlink_attachskb+0x870/0x870 [ 2010.625125] ? __sanitizer_cov_trace_pc+0x4/0x60 [ 2010.626112] netlink_sendmsg+0x90f/0xdf0 [ 2010.626952] ? netlink_unicast+0x7f0/0x7f0 [ 2010.627810] ? netlink_unicast+0x7f0/0x7f0 [ 2010.628692] ? __sock_sendmsg+0x146/0x190 [ 2010.629539] ? netlink_unicast+0x7f0/0x7f0 [ 2010.630408] __sock_sendmsg+0x154/0x190 [ 2010.631225] ____sys_sendmsg+0x70d/0x870 [ 2010.632059] ? sock_write_iter+0x3d0/0x3d0 [ 2010.632938] ? do_recvmmsg+0x6d0/0x6d0 [ 2010.633742] ? perf_trace_lock+0xac/0x490 [ 2010.634613] ? __lockdep_reset_lock+0x180/0x180 [ 2010.635583] ___sys_sendmsg+0xf3/0x170 [ 2010.636398] ? sendmsg_copy_msghdr+0x160/0x160 [ 2010.637345] ? lock_downgrade+0x6d0/0x6d0 [ 2010.638218] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2010.639353] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2010.640468] ? trace_hardirqs_on+0x5b/0x180 [ 2010.641592] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2010.642724] ? sockfd_lookup_light+0x69/0x180 [ 2010.643840] ? __sanitizer_cov_trace_const_cmp8+0x4/0x20 [ 2010.644988] __sys_sendmsg+0xe5/0x1b0 [ 2010.645939] ? __sys_sendmsg_sock+0x40/0x40 [ 2010.646859] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2010.648155] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2010.649510] ? trace_hardirqs_on+0x5b/0x180 [ 2010.650599] do_syscall_64+0x33/0x40 [ 2010.651526] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2010.652825] RIP: 0033:0x7fd54fedeb19 [ 2010.653726] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2010.657598] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2010.659201] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 2010.660714] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2010.662221] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2010.663739] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2010.665264] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 [ 2010.670053] FAULT_INJECTION: forcing a failure. [ 2010.670053] name failslab, interval 1, probability 0, space 0, times 0 [ 2010.672808] CPU: 1 PID: 11768 Comm: syz-executor.4 Not tainted 5.10.205 #1 [ 2010.674235] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2010.675932] Call Trace: [ 2010.676483] dump_stack+0x107/0x167 [ 2010.677264] should_fail.cold+0x5/0xa [ 2010.678052] ? create_object.isra.0+0x3a/0xa20 [ 2010.678983] ? create_object.isra.0+0x3a/0xa20 [ 2010.679926] should_failslab+0x5/0x20 [ 2010.680732] kmem_cache_alloc+0x5b/0x310 [ 2010.681578] create_object.isra.0+0x3a/0xa20 [ 2010.682480] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2010.683533] kmem_cache_alloc+0x159/0x310 [ 2010.684413] __delayacct_tsk_init+0x1b/0x80 [ 2010.685369] copy_process+0x3319/0x7800 [ 2010.686215] ? stack_trace_save+0x8c/0xc0 [ 2010.687076] ? stack_trace_consume_entry+0x160/0x160 [ 2010.688139] ? kasan_save_stack+0x1b/0x40 [ 2010.689029] ? __cleanup_sighand+0xb0/0xb0 [ 2010.689893] ? __lockdep_reset_lock+0x180/0x180 [ 2010.690833] ? lock_acquire+0x197/0x470 [ 2010.691633] ? create_object.isra.0+0x3ad/0xa20 [ 2010.692629] ? lock_release+0x680/0x680 [ 2010.693458] ? find_held_lock+0x2c/0x110 [ 2010.694326] ? io_wqe_dec_running+0x220/0x220 [ 2010.695264] create_io_thread+0xb6/0xf0 [ 2010.696087] ? pidfd_pid+0x90/0x90 [ 2010.696865] ? mark_held_locks+0x9e/0xe0 [ 2010.697726] ? io_wqe_dec_running+0x220/0x220 [ 2010.698671] ? __init_swait_queue_head+0xc6/0x150 [ 2010.699664] create_io_worker+0x23a/0x620 [ 2010.700507] io_wqe_enqueue+0x69e/0xbe0 [ 2010.701329] ? create_worker_cb+0x260/0x260 [ 2010.702206] ? _raw_spin_unlock_irq+0x1f/0x30 [ 2010.703121] ? io_prep_async_work+0x34e/0x550 [ 2010.704040] io_queue_async_work+0x26b/0x4f0 [ 2010.704955] __io_queue_sqe+0x5cc/0x9d0 [ 2010.705775] ? io_issue_sqe+0x7700/0x7700 [ 2010.706612] ? io_poll_queue_proc+0x50/0x50 [ 2010.707499] io_submit_sqes+0x4461/0x85c0 [ 2010.708372] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 2010.709401] __do_sys_io_uring_enter+0x6b5/0x1920 [ 2010.710379] ? lock_downgrade+0x6d0/0x6d0 [ 2010.711210] ? find_held_lock+0x2c/0x110 [ 2010.712038] ? io_submit_sqes+0x85c0/0x85c0 [ 2010.712952] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2010.713940] ? wait_for_completion_io+0x270/0x270 [ 2010.714914] ? rcu_read_lock_any_held+0x75/0xa0 [ 2010.715848] ? vfs_write+0x354/0xa70 [ 2010.716625] ? fput_many+0x2f/0x1a0 [ 2010.717365] ? ksys_write+0x1a9/0x260 [ 2010.718140] ? __ia32_sys_read+0xb0/0xb0 [ 2010.718970] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2010.720030] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2010.721104] do_syscall_64+0x33/0x40 [ 2010.721865] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2010.722925] RIP: 0033:0x7f65ffeffb19 [ 2010.723678] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2010.727448] RSP: 002b:00007f65fd475188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 2010.729021] RAX: ffffffffffffffda RBX: 00007f6600012f60 RCX: 00007f65ffeffb19 [ 2010.730466] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 2010.731915] RBP: 00007f65fd4751d0 R08: 0000000000000000 R09: 0000000000000000 [ 2010.733390] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2010.734838] R13: 00007ffddf3c20bf R14: 00007f65fd475300 R15: 0000000000022000 21:25:36 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x300, 0x0, 0x0, 0x0) 21:25:36 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x500, 0x0, 0x0, 0x0) 21:25:36 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x2030000, 0x0, 0x0, 0x0) 21:25:36 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x2000000, 0x0, 0x0, 0x0) [ 2010.810940] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2010.812777] CPU: 1 PID: 11788 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2010.814213] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2010.815912] Call Trace: [ 2010.816462] dump_stack+0x107/0x167 [ 2010.817266] sysfs_warn_dup.cold+0x1c/0x29 [ 2010.818140] sysfs_do_create_link_sd+0x122/0x140 [ 2010.819118] sysfs_create_link+0x5f/0xc0 [ 2010.819970] device_add+0x703/0x1c50 [ 2010.820765] ? devlink_add_symlinks+0x970/0x970 [ 2010.821737] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2010.822831] wiphy_register+0x1da6/0x2850 [ 2010.823711] ? wiphy_unregister+0xb90/0xb90 [ 2010.824654] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2010.825764] ieee80211_register_hw+0x23c5/0x38b0 [ 2010.826788] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2010.827784] ? net_generic+0xdb/0x2b0 [ 2010.828600] ? lockdep_init_map_type+0x2c7/0x780 [ 2010.829594] ? memset+0x20/0x50 [ 2010.830282] ? __hrtimer_init+0x12c/0x270 [ 2010.831134] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2010.832189] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2010.833167] ? hwsim_new_radio_nl+0x967/0x1080 [ 2010.834118] ? memcpy+0x39/0x60 [ 2010.834808] hwsim_new_radio_nl+0x991/0x1080 [ 2010.835731] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2010.836819] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2010.838181] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2010.839523] genl_family_rcv_msg_doit+0x22d/0x330 [ 2010.840523] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2010.841881] ? cap_capable+0x1cd/0x230 [ 2010.842708] ? ns_capable+0xe2/0x110 [ 2010.843482] genl_rcv_msg+0x33c/0x5a0 [ 2010.844290] ? genl_get_cmd+0x480/0x480 [ 2010.845133] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2010.846219] ? lock_release+0x680/0x680 [ 2010.847044] ? __lockdep_reset_lock+0x180/0x180 [ 2010.848022] netlink_rcv_skb+0x14b/0x430 [ 2010.848882] ? genl_get_cmd+0x480/0x480 [ 2010.849720] ? netlink_ack+0xab0/0xab0 [ 2010.850560] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2010.851506] ? is_vmalloc_addr+0x7b/0xb0 [ 2010.852353] genl_rcv+0x24/0x40 [ 2010.853080] netlink_unicast+0x549/0x7f0 [ 2010.853934] ? netlink_attachskb+0x870/0x870 [ 2010.854842] ? __virt_addr_valid+0x128/0x350 [ 2010.855767] netlink_sendmsg+0x90f/0xdf0 [ 2010.856627] ? netlink_unicast+0x7f0/0x7f0 [ 2010.857516] ? netlink_unicast+0x7f0/0x7f0 [ 2010.858397] __sock_sendmsg+0x154/0x190 [ 2010.859236] ____sys_sendmsg+0x70d/0x870 [ 2010.860083] ? sock_write_iter+0x3d0/0x3d0 [ 2010.860982] ? do_recvmmsg+0x6d0/0x6d0 [ 2010.861786] ? perf_trace_lock+0xac/0x490 [ 2010.862663] ? __lockdep_reset_lock+0x180/0x180 [ 2010.863646] ___sys_sendmsg+0xf3/0x170 [ 2010.864458] ? sendmsg_copy_msghdr+0x160/0x160 [ 2010.865463] ? lock_downgrade+0x6d0/0x6d0 [ 2010.866332] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2010.867434] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2010.868560] ? trace_hardirqs_on+0x5b/0x180 [ 2010.869470] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2010.870603] ? sockfd_lookup_light+0xe1/0x180 [ 2010.871538] ? sockfd_lookup_light+0x108/0x180 [ 2010.872496] __sys_sendmsg+0xe5/0x1b0 [ 2010.873301] ? __sys_sendmsg_sock+0x40/0x40 [ 2010.874217] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2010.875298] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2010.876364] ? trace_hardirqs_on+0x5b/0x180 [ 2010.877301] do_syscall_64+0x33/0x40 [ 2010.878086] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2010.879130] RIP: 0033:0x7fd54fedeb19 [ 2010.879914] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2010.883724] RSP: 002b:00007fd54d433188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2010.885309] RAX: ffffffffffffffda RBX: 00007fd54fff2020 RCX: 00007fd54fedeb19 [ 2010.886764] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2010.888220] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2010.889721] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2010.891181] R13: 00007fff36540caf R14: 00007fd54d433300 R15: 0000000000022000 21:25:37 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x5b2c, 0x0, 0x0, 0x0) 21:25:37 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x3f00, 0x0, 0x0, 0x0) 21:25:37 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 22) 21:25:37 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x6, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 21:25:37 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x3000000, 0x0, 0x0, 0x0) 21:25:37 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x3000000, 0x0, 0x0, 0x0) 21:25:37 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x703, 0x0, 0x0, 0x0) 21:25:37 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x500, 0x0, 0x0, 0x0) [ 2011.237386] FAULT_INJECTION: forcing a failure. [ 2011.237386] name failslab, interval 1, probability 0, space 0, times 0 [ 2011.240322] CPU: 1 PID: 11824 Comm: syz-executor.4 Not tainted 5.10.205 #1 [ 2011.241775] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2011.243489] Call Trace: [ 2011.244047] dump_stack+0x107/0x167 [ 2011.244849] should_fail.cold+0x5/0xa [ 2011.245646] ? alloc_pid+0xd7/0xd30 [ 2011.246412] should_failslab+0x5/0x20 [ 2011.247212] kmem_cache_alloc+0x5b/0x310 [ 2011.248046] alloc_pid+0xd7/0xd30 [ 2011.248798] copy_process+0x3a8e/0x7800 [ 2011.249629] ? stack_trace_save+0x8c/0xc0 [ 2011.250486] ? stack_trace_consume_entry+0x160/0x160 [ 2011.251541] ? __cleanup_sighand+0xb0/0xb0 [ 2011.252407] ? __lockdep_reset_lock+0x180/0x180 [ 2011.253382] ? lock_acquire+0x197/0x470 [ 2011.254211] ? create_object.isra.0+0x3ad/0xa20 [ 2011.255159] ? lock_release+0x680/0x680 [ 2011.255962] ? find_held_lock+0x2c/0x110 [ 2011.256845] ? io_wqe_dec_running+0x220/0x220 [ 2011.257751] create_io_thread+0xb6/0xf0 [ 2011.258572] ? pidfd_pid+0x90/0x90 [ 2011.259312] ? mark_held_locks+0x9e/0xe0 [ 2011.260171] ? io_wqe_dec_running+0x220/0x220 [ 2011.261153] ? __init_swait_queue_head+0xc6/0x150 [ 2011.262134] create_io_worker+0x23a/0x620 [ 2011.263000] io_wqe_enqueue+0x69e/0xbe0 [ 2011.263829] ? create_worker_cb+0x260/0x260 [ 2011.264771] ? _raw_spin_unlock_irq+0x1f/0x30 [ 2011.265712] ? io_prep_async_work+0x34e/0x550 [ 2011.266639] io_queue_async_work+0x26b/0x4f0 [ 2011.267571] __io_queue_sqe+0x5cc/0x9d0 [ 2011.268396] ? io_issue_sqe+0x7700/0x7700 [ 2011.268418] ? io_poll_queue_proc+0x50/0x50 [ 2011.268459] io_submit_sqes+0x4461/0x85c0 [ 2011.268522] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 2011.272319] __do_sys_io_uring_enter+0x6b5/0x1920 [ 2011.273331] ? lock_downgrade+0x6d0/0x6d0 [ 2011.274187] ? find_held_lock+0x2c/0x110 [ 2011.275029] ? io_submit_sqes+0x85c0/0x85c0 [ 2011.275931] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2011.276968] ? wait_for_completion_io+0x270/0x270 [ 2011.277957] ? rcu_read_lock_any_held+0x75/0xa0 [ 2011.278904] ? vfs_write+0x354/0xa70 [ 2011.279676] ? fput_many+0x2f/0x1a0 [ 2011.280437] ? ksys_write+0x1a9/0x260 [ 2011.281257] ? __ia32_sys_read+0xb0/0xb0 [ 2011.282122] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2011.282329] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2011.283180] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2011.283210] do_syscall_64+0x33/0x40 [ 2011.283229] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2011.283243] RIP: 0033:0x7f65ffeffb19 [ 2011.283266] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2011.283277] RSP: 002b:00007f65fd475188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 2011.283298] RAX: ffffffffffffffda RBX: 00007f6600012f60 RCX: 00007f65ffeffb19 [ 2011.283310] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 2011.283322] RBP: 00007f65fd4751d0 R08: 0000000000000000 R09: 0000000000000000 [ 2011.283344] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2011.302694] R13: 00007ffddf3c20bf R14: 00007f65fd475300 R15: 0000000000022000 [ 2011.303939] CPU: 0 PID: 11823 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2011.305426] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2011.307201] Call Trace: [ 2011.307774] dump_stack+0x107/0x167 [ 2011.308563] sysfs_warn_dup.cold+0x1c/0x29 [ 2011.309474] sysfs_do_create_link_sd+0x122/0x140 [ 2011.310466] sysfs_create_link+0x5f/0xc0 [ 2011.311332] device_add+0x703/0x1c50 [ 2011.312128] ? devlink_add_symlinks+0x970/0x970 [ 2011.313144] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2011.314260] wiphy_register+0x1da6/0x2850 [ 2011.315161] ? wiphy_unregister+0xb90/0xb90 [ 2011.316088] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2011.317271] ? ieee80211_register_hw+0x238b/0x38b0 [ 2011.318307] ? ieee80211_register_hw+0x239f/0x38b0 [ 2011.319370] ieee80211_register_hw+0x23c5/0x38b0 [ 2011.320394] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2011.321445] ? net_generic+0xdb/0x2b0 [ 2011.322284] ? lockdep_init_map_type+0x2c7/0x780 [ 2011.323308] ? memset+0x20/0x50 [ 2011.324019] ? __hrtimer_init+0x12c/0x270 [ 2011.324919] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2011.326011] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2011.326991] ? hwsim_new_radio_nl+0x967/0x1080 [ 2011.327963] ? memcpy+0x39/0x60 [ 2011.328689] hwsim_new_radio_nl+0x991/0x1080 [ 2011.329649] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2011.330777] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2011.332170] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2011.333546] genl_family_rcv_msg_doit+0x22d/0x330 [ 2011.334571] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2011.335954] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2011.337088] ? cap_capable+0x1cd/0x230 [ 2011.337931] ? ns_capable+0xe2/0x110 [ 2011.338729] genl_rcv_msg+0x33c/0x5a0 [ 2011.339547] ? genl_get_cmd+0x480/0x480 [ 2011.340376] ? lock_acquire+0x1b9/0x470 [ 2011.341231] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2011.342337] ? lock_release+0x680/0x680 [ 2011.343183] netlink_rcv_skb+0x14b/0x430 [ 2011.344049] ? genl_get_cmd+0x480/0x480 [ 2011.344904] ? netlink_ack+0xab0/0xab0 [ 2011.345745] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2011.346704] ? is_vmalloc_addr+0x7b/0xb0 [ 2011.347577] genl_rcv+0x24/0x40 [ 2011.348280] netlink_unicast+0x549/0x7f0 [ 2011.349160] ? netlink_attachskb+0x870/0x870 [ 2011.350099] netlink_sendmsg+0x90f/0xdf0 [ 2011.350964] ? netlink_unicast+0x7f0/0x7f0 [ 2011.351862] ? netlink_unicast+0x7f0/0x7f0 [ 2011.352768] __sock_sendmsg+0x154/0x190 [ 2011.353613] ____sys_sendmsg+0x70d/0x870 [ 2011.354477] ? sock_write_iter+0x3d0/0x3d0 [ 2011.355369] ? do_recvmmsg+0x6d0/0x6d0 [ 2011.356193] ? perf_trace_lock+0xac/0x490 [ 2011.357081] ? __lockdep_reset_lock+0x180/0x180 [ 2011.358072] ___sys_sendmsg+0xf3/0x170 [ 2011.358891] ? sendmsg_copy_msghdr+0x160/0x160 [ 2011.359865] ? lock_downgrade+0x6d0/0x6d0 [ 2011.360762] ? __fget_files+0x3a5/0x4c0 [ 2011.361617] ? __fget_files+0x296/0x4c0 [ 2011.362463] ? __fget_light+0xea/0x290 [ 2011.363305] __sys_sendmsg+0xe5/0x1b0 [ 2011.364094] ? __sys_sendmsg_sock+0x40/0x40 [ 2011.365032] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2011.366135] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2011.367209] ? trace_hardirqs_on+0x5b/0x180 [ 2011.368116] do_syscall_64+0x33/0x40 [ 2011.368911] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2011.369986] RIP: 0033:0x7fd54fedeb19 [ 2011.370775] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2011.374594] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2011.376194] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 2011.377701] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2011.379178] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2011.380665] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2011.382153] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 [ 2011.511843] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2011.513686] CPU: 1 PID: 11842 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2011.515105] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2011.516796] Call Trace: [ 2011.517350] dump_stack+0x107/0x167 [ 2011.518109] sysfs_warn_dup.cold+0x1c/0x29 [ 2011.518973] sysfs_do_create_link_sd+0x122/0x140 [ 2011.519938] sysfs_create_link+0x5f/0xc0 [ 2011.520776] device_add+0x703/0x1c50 [ 2011.521549] ? devlink_add_symlinks+0x970/0x970 [ 2011.522494] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2011.523564] wiphy_register+0x1da6/0x2850 [ 2011.524420] ? wiphy_unregister+0xb90/0xb90 [ 2011.525350] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2011.526447] ieee80211_register_hw+0x23c5/0x38b0 [ 2011.527428] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2011.528401] ? net_generic+0xdb/0x2b0 [ 2011.529222] ? memset+0x20/0x50 [ 2011.529895] ? __hrtimer_init+0x12c/0x270 [ 2011.530738] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2011.531781] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2011.532742] ? hwsim_new_radio_nl+0x967/0x1080 [ 2011.533678] ? memcpy+0x39/0x60 [ 2011.534354] hwsim_new_radio_nl+0x991/0x1080 [ 2011.535250] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2011.536318] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2011.537677] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2011.539039] genl_family_rcv_msg_doit+0x22d/0x330 [ 2011.540036] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2011.541410] ? cap_capable+0x1cd/0x230 [ 2011.542242] ? ns_capable+0xe2/0x110 [ 2011.543015] genl_rcv_msg+0x33c/0x5a0 [ 2011.543806] ? genl_get_cmd+0x480/0x480 [ 2011.544643] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2011.545716] ? lock_release+0x680/0x680 [ 2011.546533] ? __lockdep_reset_lock+0x180/0x180 [ 2011.547477] netlink_rcv_skb+0x14b/0x430 [ 2011.548298] ? genl_get_cmd+0x480/0x480 [ 2011.549112] ? netlink_ack+0xab0/0xab0 [ 2011.549923] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2011.550849] ? is_vmalloc_addr+0x7b/0xb0 [ 2011.551675] genl_rcv+0x24/0x40 [ 2011.552344] netlink_unicast+0x549/0x7f0 [ 2011.553193] ? netlink_attachskb+0x870/0x870 [ 2011.554099] netlink_sendmsg+0x90f/0xdf0 [ 2011.554939] ? netlink_unicast+0x7f0/0x7f0 [ 2011.555814] ? netlink_unicast+0x7f0/0x7f0 [ 2011.556681] __sock_sendmsg+0x154/0x190 [ 2011.557490] ____sys_sendmsg+0x70d/0x870 [ 2011.558318] ? sock_write_iter+0x3d0/0x3d0 [ 2011.559187] ? do_recvmmsg+0x6d0/0x6d0 [ 2011.559977] ? perf_trace_lock+0xac/0x490 [ 2011.560840] ? __lockdep_reset_lock+0x180/0x180 [ 2011.561794] ___sys_sendmsg+0xf3/0x170 [ 2011.562606] ? sendmsg_copy_msghdr+0x160/0x160 [ 2011.563541] ? lock_downgrade+0x6d0/0x6d0 [ 2011.564415] ? __fget_files+0x296/0x4c0 [ 2011.565250] ? __fget_light+0xea/0x290 [ 2011.566059] __sys_sendmsg+0xe5/0x1b0 [ 2011.566832] ? __sys_sendmsg_sock+0x40/0x40 [ 2011.567750] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2011.568823] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2011.569884] ? trace_hardirqs_on+0x5b/0x180 [ 2011.570767] do_syscall_64+0x33/0x40 [ 2011.571520] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2011.572574] RIP: 0033:0x7fd54fedeb19 [ 2011.573332] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2011.577032] RSP: 002b:00007fd54d433188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2011.578571] RAX: ffffffffffffffda RBX: 00007fd54fff2020 RCX: 00007fd54fedeb19 [ 2011.580004] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2011.581456] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2011.582891] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2011.584334] R13: 00007fff36540caf R14: 00007fd54d433300 R15: 0000000000022000 21:25:54 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xcc0, 0x0, 0x0, 0x0) 21:25:54 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x7, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 21:25:54 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x4000000, 0x0, 0x0, 0x0) 21:25:54 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xc00c, 0x0, 0x0, 0x0) [ 2028.445162] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2028.446627] CPU: 1 PID: 11851 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2028.447626] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2028.448833] Call Trace: [ 2028.449215] dump_stack+0x107/0x167 [ 2028.449735] sysfs_warn_dup.cold+0x1c/0x29 [ 2028.450329] sysfs_do_create_link_sd+0x122/0x140 [ 2028.451008] sysfs_create_link+0x5f/0xc0 [ 2028.451592] device_add+0x703/0x1c50 [ 2028.452125] ? devlink_add_symlinks+0x970/0x970 [ 2028.452799] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2028.453549] wiphy_register+0x1da6/0x2850 [ 2028.454144] ? wiphy_unregister+0xb90/0xb90 [ 2028.454763] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2028.455512] ieee80211_register_hw+0x23c5/0x38b0 [ 2028.456199] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2028.456902] ? __hrtimer_init+0x1d2/0x270 [ 2028.457502] ? __hrtimer_init+0x1dd/0x270 [ 2028.458089] ? __sanitizer_cov_trace_pc+0x4/0x60 [ 2028.458763] ? __hrtimer_init+0x12c/0x270 [ 2028.459361] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2028.460078] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2028.460743] ? hwsim_new_radio_nl+0x967/0x1080 [ 2028.461474] ? memcpy+0x39/0x60 [ 2028.461960] hwsim_new_radio_nl+0x991/0x1080 [ 2028.462602] ? mac80211_hwsim_new_radio+0x4250/0x4250 21:25:54 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x4000000, 0x0, 0x0, 0x0) 21:25:54 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 23) 21:25:54 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x4000, 0x0, 0x0, 0x0) 21:25:54 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xcc0, 0x0, 0x0, 0x0) [ 2028.463380] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2028.464564] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2028.465554] genl_family_rcv_msg_doit+0x22d/0x330 [ 2028.466262] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2028.467249] ? cap_capable+0x1cd/0x230 [ 2028.467821] ? ns_capable+0xe2/0x110 [ 2028.468360] genl_rcv_msg+0x33c/0x5a0 [ 2028.468967] ? genl_get_cmd+0x480/0x480 [ 2028.469538] ? lock_acquire+0x1b9/0x470 [ 2028.470131] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2028.470878] ? lock_release+0x680/0x680 [ 2028.471432] ? __lockdep_reset_lock+0x180/0x180 [ 2028.472146] netlink_rcv_skb+0x14b/0x430 [ 2028.472731] ? genl_get_cmd+0x480/0x480 [ 2028.473346] ? netlink_ack+0xab0/0xab0 [ 2028.473921] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2028.474576] ? is_vmalloc_addr+0x7b/0xb0 [ 2028.475152] genl_rcv+0x24/0x40 [ 2028.475639] netlink_unicast+0x549/0x7f0 [ 2028.476256] ? netlink_attachskb+0x870/0x870 [ 2028.476905] ? __virt_addr_valid+0x128/0x350 [ 2028.477590] netlink_sendmsg+0x90f/0xdf0 [ 2028.478207] ? netlink_unicast+0x7f0/0x7f0 [ 2028.478838] ? netlink_unicast+0x7f0/0x7f0 [ 2028.479448] __sock_sendmsg+0x154/0x190 [ 2028.480072] ____sys_sendmsg+0x70d/0x870 [ 2028.480680] ? sock_write_iter+0x3d0/0x3d0 [ 2028.481280] ? do_recvmmsg+0x6d0/0x6d0 [ 2028.481831] ? perf_trace_lock+0xac/0x490 [ 2028.482447] ? __lockdep_reset_lock+0x180/0x180 [ 2028.483132] ___sys_sendmsg+0xf3/0x170 [ 2028.483711] ? sendmsg_copy_msghdr+0x160/0x160 [ 2028.484392] ? lock_downgrade+0x6d0/0x6d0 [ 2028.485019] ? find_held_lock+0x2c/0x110 [ 2028.485596] ? clockevents_program_event+0x14b/0x360 [ 2028.486384] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2028.487121] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2028.487883] ? trace_hardirqs_on+0x5b/0x180 [ 2028.488535] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2028.489352] ? __sys_sendmsg+0xcc/0x1b0 [ 2028.489922] __sys_sendmsg+0xe5/0x1b0 [ 2028.490507] ? __sys_sendmsg_sock+0x40/0x40 [ 2028.491140] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2028.491884] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2028.492593] ? trace_hardirqs_on+0x5b/0x180 [ 2028.493234] do_syscall_64+0x33/0x40 [ 2028.493761] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2028.494511] RIP: 0033:0x7fd54fedeb19 [ 2028.495038] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2028.497631] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2028.498736] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 2028.499789] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2028.500821] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2028.501820] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2028.502800] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 [ 2028.599402] FAULT_INJECTION: forcing a failure. [ 2028.599402] name failslab, interval 1, probability 0, space 0, times 0 21:25:54 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xed02, 0x0, 0x0, 0x0) [ 2028.600996] CPU: 1 PID: 11858 Comm: syz-executor.4 Not tainted 5.10.205 #1 [ 2028.602068] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2028.603166] Call Trace: [ 2028.603514] dump_stack+0x107/0x167 [ 2028.604018] should_fail.cold+0x5/0xa [ 2028.604528] ? create_object.isra.0+0x3a/0xa20 [ 2028.605177] should_failslab+0x5/0x20 [ 2028.605677] kmem_cache_alloc+0x5b/0x310 [ 2028.606237] create_object.isra.0+0x3a/0xa20 [ 2028.606807] ? __kasan_kmalloc.constprop.0+0xc9/0xd0 [ 2028.607469] kmem_cache_alloc+0x159/0x310 [ 2028.608011] alloc_pid+0xd7/0xd30 [ 2028.608469] copy_process+0x3a8e/0x7800 [ 2028.608995] ? stack_trace_save+0x8c/0xc0 [ 2028.609541] ? stack_trace_consume_entry+0x160/0x160 [ 2028.610256] ? __cleanup_sighand+0xb0/0xb0 [ 2028.610827] ? __lockdep_reset_lock+0x180/0x180 [ 2028.611453] ? lock_acquire+0x197/0x470 [ 2028.611990] ? create_object.isra.0+0x3ad/0xa20 [ 2028.612620] ? lock_release+0x680/0x680 [ 2028.613165] ? find_held_lock+0x2c/0x110 [ 2028.613716] ? io_wqe_dec_running+0x220/0x220 [ 2028.614322] create_io_thread+0xb6/0xf0 [ 2028.614850] ? pidfd_pid+0x90/0x90 [ 2028.615329] ? mark_held_locks+0x9e/0xe0 [ 2028.615884] ? io_wqe_dec_running+0x220/0x220 [ 2028.616500] ? __init_swait_queue_head+0xc6/0x150 [ 2028.617170] create_io_worker+0x23a/0x620 [ 2028.617733] io_wqe_enqueue+0x69e/0xbe0 [ 2028.618282] ? create_worker_cb+0x260/0x260 [ 2028.618860] ? _raw_spin_unlock_irq+0x1f/0x30 [ 2028.619470] ? io_prep_async_work+0x34e/0x550 [ 2028.620089] io_queue_async_work+0x26b/0x4f0 [ 2028.620691] __io_queue_sqe+0x5cc/0x9d0 [ 2028.621251] ? io_issue_sqe+0x7700/0x7700 [ 2028.621809] ? io_poll_queue_proc+0x50/0x50 [ 2028.622403] io_submit_sqes+0x4461/0x85c0 [ 2028.622987] ? __do_sys_io_uring_enter+0x6b5/0x1920 [ 2028.623659] __do_sys_io_uring_enter+0x6b5/0x1920 [ 2028.624306] ? lock_downgrade+0x6d0/0x6d0 [ 2028.624866] ? find_held_lock+0x2c/0x110 [ 2028.625406] ? io_submit_sqes+0x85c0/0x85c0 [ 2028.625990] ? __mutex_unlock_slowpath+0xe1/0x600 [ 2028.626645] ? wait_for_completion_io+0x270/0x270 [ 2028.627288] ? rcu_read_lock_any_held+0x75/0xa0 [ 2028.627911] ? vfs_write+0x354/0xa70 [ 2028.628395] ? fput_many+0x2f/0x1a0 [ 2028.628901] ? ksys_write+0x1a9/0x260 [ 2028.629414] ? __ia32_sys_read+0xb0/0xb0 [ 2028.629961] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2028.630669] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2028.631366] do_syscall_64+0x33/0x40 [ 2028.631861] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2028.632528] RIP: 0033:0x7f65ffeffb19 [ 2028.633023] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2028.635487] RSP: 002b:00007f65fd475188 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa [ 2028.636514] RAX: ffffffffffffffda RBX: 00007f6600012f60 RCX: 00007f65ffeffb19 [ 2028.637502] RDX: 0000000000000000 RSI: 0000000000007e66 RDI: 0000000000000003 [ 2028.638453] RBP: 00007f65fd4751d0 R08: 0000000000000000 R09: 0000000000000000 [ 2028.639416] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2028.640334] R13: 00007ffddf3c20bf R14: 00007f65fd475300 R15: 0000000000022000 [ 2028.652482] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2028.653725] CPU: 1 PID: 11874 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2028.654581] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2028.655643] Call Trace: [ 2028.655986] dump_stack+0x107/0x167 [ 2028.656449] sysfs_warn_dup.cold+0x1c/0x29 [ 2028.656993] sysfs_do_create_link_sd+0x122/0x140 [ 2028.657592] sysfs_create_link+0x5f/0xc0 [ 2028.658106] device_add+0x703/0x1c50 [ 2028.658579] ? devlink_add_symlinks+0x970/0x970 [ 2028.659160] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2028.659819] wiphy_register+0x1da6/0x2850 [ 2028.660350] ? wiphy_unregister+0xb90/0xb90 [ 2028.660921] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2028.661590] ieee80211_register_hw+0x23c5/0x38b0 [ 2028.662224] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2028.662850] ? net_generic+0xdb/0x2b0 [ 2028.663358] ? lockdep_init_map_type+0x2c7/0x780 [ 2028.663981] ? mac80211_hwsim_new_radio+0x2568/0x4250 [ 2028.664662] ? memset+0x20/0x50 [ 2028.665111] ? __hrtimer_init+0x12c/0x270 [ 2028.665657] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2028.666339] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2028.666956] ? hwsim_new_radio_nl+0x967/0x1080 [ 2028.667560] ? memcpy+0x39/0x60 [ 2028.668001] hwsim_new_radio_nl+0x991/0x1080 [ 2028.668587] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2028.669289] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2028.670144] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2028.671006] genl_family_rcv_msg_doit+0x22d/0x330 [ 2028.671645] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2028.672519] ? cap_capable+0x1cd/0x230 [ 2028.673044] ? ns_capable+0xe2/0x110 [ 2028.673538] genl_rcv_msg+0x33c/0x5a0 [ 2028.674043] ? genl_get_cmd+0x480/0x480 [ 2028.674564] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2028.675254] ? lock_release+0x680/0x680 [ 2028.675778] ? __lockdep_reset_lock+0x180/0x180 [ 2028.676395] netlink_rcv_skb+0x14b/0x430 [ 2028.676935] ? genl_get_cmd+0x480/0x480 [ 2028.677459] ? netlink_ack+0xab0/0xab0 [ 2028.677975] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2028.678567] ? is_vmalloc_addr+0x7b/0xb0 [ 2028.679102] genl_rcv+0x24/0x40 [ 2028.679532] netlink_unicast+0x549/0x7f0 [ 2028.680077] ? netlink_attachskb+0x870/0x870 [ 2028.680655] ? __virt_addr_valid+0x128/0x350 [ 2028.681249] netlink_sendmsg+0x90f/0xdf0 21:25:54 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xc00c, 0x0, 0x0, 0x0) 21:25:54 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x5000000, 0x0, 0x0, 0x0) [ 2028.681785] ? netlink_unicast+0x7f0/0x7f0 [ 2028.682488] ? netlink_unicast+0x7f0/0x7f0 [ 2028.683031] __sock_sendmsg+0x154/0x190 [ 2028.683550] ____sys_sendmsg+0x70d/0x870 [ 2028.684065] ? sock_write_iter+0x3d0/0x3d0 [ 2028.684586] ? do_recvmmsg+0x6d0/0x6d0 [ 2028.685098] ? perf_trace_lock+0xac/0x490 [ 2028.685614] ? __lockdep_reset_lock+0x180/0x180 [ 2028.686205] ? __lockdep_reset_lock+0x180/0x180 [ 2028.686774] ___sys_sendmsg+0xf3/0x170 [ 2028.687265] ? sendmsg_copy_msghdr+0x160/0x160 [ 2028.687830] ? lock_downgrade+0x6d0/0x6d0 [ 2028.688346] ? lock_downgrade+0x6d0/0x6d0 [ 2028.688866] ? futex_exit_release+0x220/0x220 [ 2028.689431] ? __fget_files+0x296/0x4c0 [ 2028.689929] ? __fget_light+0xea/0x290 [ 2028.690430] __sys_sendmsg+0xe5/0x1b0 [ 2028.690899] ? __sys_sendmsg_sock+0x40/0x40 [ 2028.691443] ? __do_sys_futex+0x2bb/0x480 21:25:54 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x5000000, 0x0, 0x0, 0x0) [ 2028.691966] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2028.692705] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2028.693369] ? trace_hardirqs_on+0x5b/0x180 [ 2028.693906] do_syscall_64+0x33/0x40 [ 2028.694387] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2028.695051] RIP: 0033:0x7fd54fedeb19 [ 2028.695523] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2028.697830] RSP: 002b:00007fd54d433188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2028.698785] RAX: ffffffffffffffda RBX: 00007fd54fff2020 RCX: 00007fd54fedeb19 [ 2028.699683] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2028.700576] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2028.701444] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2028.702334] R13: 00007fff36540caf R14: 00007fd54d433300 R15: 0000000000022000 21:25:55 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x2000, 0x0, 0x0, 0x0) 21:25:55 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xce02, 0x0, 0x0, 0x0) 21:25:55 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x8000000, 0x0, 0x0, 0x0) 21:25:55 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x2000, 0x0, 0x0, 0x0) 21:26:10 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x2cde, 0x0, 0x0, 0x0) 21:26:10 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x800000, 0x0, 0x0, 0x0) 21:26:10 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x8000000, 0x0, 0x0, 0x0) 21:26:10 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x8, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 21:26:10 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x800000, 0x0, 0x0, 0x0) 21:26:10 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x1b030000, 0x0, 0x0, 0x0) 21:26:10 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) (fail_nth: 24) 21:26:10 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x2ce9, 0x0, 0x0, 0x0) [ 2043.979335] FAULT_INJECTION: forcing a failure. [ 2043.979335] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 2043.982420] CPU: 1 PID: 11930 Comm: syz-executor.4 Not tainted 5.10.205 #1 [ 2043.983845] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2043.985571] Call Trace: [ 2043.986119] dump_stack+0x107/0x167 [ 2043.986879] should_fail.cold+0x5/0xa [ 2043.987680] _copy_to_user+0x2e/0x180 [ 2043.988476] simple_read_from_buffer+0xcc/0x160 [ 2043.989452] proc_fail_nth_read+0x198/0x230 [ 2043.990336] ? proc_sessionid_read+0x230/0x230 [ 2043.991275] ? security_file_permission+0x24e/0x570 [ 2043.992297] ? perf_trace_initcall_start+0x101/0x380 [ 2043.993362] ? proc_sessionid_read+0x230/0x230 [ 2043.994301] vfs_read+0x228/0x580 [ 2043.995024] ksys_read+0x12d/0x260 [ 2043.995756] ? vfs_write+0xa70/0xa70 [ 2043.996532] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2043.997619] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2043.998682] do_syscall_64+0x33/0x40 [ 2043.999444] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2044.000495] RIP: 0033:0x7f65ffeb269c [ 2044.001270] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48 [ 2044.005045] RSP: 002b:00007f65fd475170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 2044.006630] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f65ffeb269c [ 2044.008101] RDX: 000000000000000f RSI: 00007f65fd4751e0 RDI: 0000000000000006 [ 2044.009589] RBP: 00007f65fd4751d0 R08: 0000000000000000 R09: 0000000000000000 [ 2044.011058] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 2044.012556] R13: 00007ffddf3c20bf R14: 00007f65fd475300 R15: 0000000000022000 [ 2044.035479] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2044.037426] CPU: 1 PID: 11920 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2044.038875] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2044.040586] Call Trace: [ 2044.041142] dump_stack+0x107/0x167 [ 2044.041902] sysfs_warn_dup.cold+0x1c/0x29 [ 2044.042771] sysfs_do_create_link_sd+0x122/0x140 [ 2044.043741] sysfs_create_link+0x5f/0xc0 [ 2044.044575] device_add+0x703/0x1c50 [ 2044.045368] ? devlink_add_symlinks+0x970/0x970 [ 2044.046320] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2044.047399] wiphy_register+0x1da6/0x2850 [ 2044.048264] ? wiphy_unregister+0xb90/0xb90 [ 2044.049187] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2044.050301] ieee80211_register_hw+0x23c5/0x38b0 [ 2044.051308] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2044.052314] ? net_generic+0xdb/0x2b0 [ 2044.053116] ? lockdep_init_map_type+0x2c7/0x780 [ 2044.054104] ? memset+0x20/0x50 [ 2044.054792] ? __hrtimer_init+0x12c/0x270 [ 2044.055657] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2044.056714] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2044.057691] ? hwsim_new_radio_nl+0x967/0x1080 [ 2044.058655] ? memcpy+0x39/0x60 [ 2044.059338] hwsim_new_radio_nl+0x991/0x1080 [ 2044.060243] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2044.061322] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2044.062680] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2044.064041] genl_family_rcv_msg_doit+0x22d/0x330 [ 2044.065058] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2044.066426] ? cap_capable+0x1cd/0x230 [ 2044.067254] ? ns_capable+0xe2/0x110 [ 2044.068024] genl_rcv_msg+0x33c/0x5a0 [ 2044.068810] ? genl_get_cmd+0x480/0x480 [ 2044.069632] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2044.070692] ? lock_release+0x680/0x680 [ 2044.071505] ? __lockdep_reset_lock+0x180/0x180 [ 2044.072462] netlink_rcv_skb+0x14b/0x430 [ 2044.073312] ? genl_get_cmd+0x480/0x480 [ 2044.074133] ? netlink_ack+0xab0/0xab0 [ 2044.074945] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2044.075883] ? is_vmalloc_addr+0x7b/0xb0 [ 2044.076718] genl_rcv+0x24/0x40 [ 2044.077398] netlink_unicast+0x549/0x7f0 [ 2044.078245] ? netlink_attachskb+0x870/0x870 [ 2044.079139] ? __virt_addr_valid+0x128/0x350 [ 2044.080063] netlink_sendmsg+0x90f/0xdf0 [ 2044.080909] ? netlink_unicast+0x7f0/0x7f0 [ 2044.081821] ? netlink_unicast+0x7f0/0x7f0 [ 2044.082695] __sock_sendmsg+0x154/0x190 [ 2044.083517] ____sys_sendmsg+0x70d/0x870 [ 2044.084357] ? sock_write_iter+0x3d0/0x3d0 [ 2044.085238] ? do_recvmmsg+0x6d0/0x6d0 [ 2044.086041] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2044.087108] ? trace_hardirqs_on+0x5b/0x180 [ 2044.087994] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2044.089117] ___sys_sendmsg+0xf3/0x170 [ 2044.089917] ? sendmsg_copy_msghdr+0x160/0x160 [ 2044.090858] ? lock_downgrade+0x6d0/0x6d0 [ 2044.091702] ? find_held_lock+0x2c/0x110 [ 2044.092540] ? clockevents_program_event+0x14b/0x360 [ 2044.093599] ? __fget_files+0x296/0x4c0 [ 2044.094427] ? __fget_light+0xea/0x290 [ 2044.095234] __sys_sendmsg+0xe5/0x1b0 [ 2044.096013] ? __sys_sendmsg_sock+0x40/0x40 [ 2044.096920] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2044.097994] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2044.099040] ? trace_hardirqs_on+0x5b/0x180 [ 2044.099926] do_syscall_64+0x33/0x40 [ 2044.100686] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2044.101741] RIP: 0033:0x7fd54fedeb19 [ 2044.102507] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2044.106280] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2044.107836] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 2044.109297] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2044.110767] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2044.112205] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2044.113655] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 21:26:10 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x3f00, 0x0, 0x0, 0x0) 21:26:10 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x20000000, 0x0, 0x0, 0x0) 21:26:10 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x3f00, 0x0, 0x0, 0x0) 21:26:10 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x2000000, 0x0, 0x0, 0x0) 21:26:10 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x20000000, 0x0, 0x0, 0x0) 21:26:10 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x2000000, 0x0, 0x0, 0x0) 21:26:10 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x382c0000, 0x0, 0x0, 0x0) 21:26:10 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x3000000, 0x0, 0x0, 0x0) 21:26:10 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) [ 2044.541044] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2044.542872] CPU: 0 PID: 11984 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2044.544318] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2044.546041] Call Trace: [ 2044.546591] dump_stack+0x107/0x167 [ 2044.547354] sysfs_warn_dup.cold+0x1c/0x29 [ 2044.548232] sysfs_do_create_link_sd+0x122/0x140 [ 2044.549238] sysfs_create_link+0x5f/0xc0 [ 2044.550082] device_add+0x703/0x1c50 [ 2044.550866] ? devlink_add_symlinks+0x970/0x970 [ 2044.551849] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2044.552990] wiphy_register+0x1da6/0x2850 [ 2044.553876] ? wiphy_unregister+0xb90/0xb90 [ 2044.554797] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2044.555928] ieee80211_register_hw+0x23c5/0x38b0 [ 2044.556944] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2044.557978] ? net_generic+0xdb/0x2b0 [ 2044.558791] ? lockdep_init_map_type+0x2c7/0x780 [ 2044.559800] ? memset+0x20/0x50 [ 2044.560496] ? __hrtimer_init+0x12c/0x270 [ 2044.561388] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2044.562474] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2044.563450] ? hwsim_new_radio_nl+0x967/0x1080 [ 2044.564412] ? memcpy+0x39/0x60 [ 2044.565127] hwsim_new_radio_nl+0x991/0x1080 [ 2044.566057] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2044.567162] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2044.568543] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2044.569946] genl_family_rcv_msg_doit+0x22d/0x330 [ 2044.570978] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2044.572386] ? cap_capable+0x1cd/0x230 [ 2044.573242] ? ns_capable+0xe2/0x110 [ 2044.574035] genl_rcv_msg+0x33c/0x5a0 [ 2044.574844] ? genl_get_cmd+0x480/0x480 [ 2044.575681] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2044.576778] ? lock_release+0x680/0x680 [ 2044.577629] ? __lockdep_reset_lock+0x180/0x180 [ 2044.578627] netlink_rcv_skb+0x14b/0x430 [ 2044.579482] ? genl_get_cmd+0x480/0x480 [ 2044.580320] ? netlink_ack+0xab0/0xab0 [ 2044.581158] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2044.582111] ? is_vmalloc_addr+0x7b/0xb0 [ 2044.582975] genl_rcv+0x24/0x40 [ 2044.583661] netlink_unicast+0x549/0x7f0 [ 2044.584520] ? netlink_attachskb+0x870/0x870 [ 2044.585457] ? __virt_addr_valid+0x128/0x350 [ 2044.586406] netlink_sendmsg+0x90f/0xdf0 [ 2044.587305] ? netlink_unicast+0x7f0/0x7f0 [ 2044.588227] ? netlink_unicast+0x7f0/0x7f0 [ 2044.589160] __sock_sendmsg+0x154/0x190 [ 2044.590017] ____sys_sendmsg+0x70d/0x870 [ 2044.590880] ? sock_write_iter+0x3d0/0x3d0 [ 2044.591774] ? do_recvmmsg+0x6d0/0x6d0 [ 2044.592594] ? perf_trace_lock+0xac/0x490 [ 2044.593489] ? lock_chain_count+0x20/0x20 [ 2044.594377] ? __lockdep_reset_lock+0x180/0x180 [ 2044.595373] ___sys_sendmsg+0xf3/0x170 [ 2044.596220] ? sendmsg_copy_msghdr+0x160/0x160 [ 2044.597209] ? lock_downgrade+0x6d0/0x6d0 [ 2044.598095] ? perf_trace_lock+0xac/0x490 [ 2044.598973] ? SOFTIRQ_verbose+0x10/0x10 [ 2044.599863] ? __fget_files+0x296/0x4c0 [ 2044.600748] ? __fget_light+0xea/0x290 [ 2044.601608] __sys_sendmsg+0xe5/0x1b0 [ 2044.602414] ? __sys_sendmsg_sock+0x40/0x40 [ 2044.603327] ? kfree+0x1ab/0x340 [ 2044.604052] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2044.605201] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2044.606305] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2044.607400] ? trace_hardirqs_on+0x5b/0x180 [ 2044.608333] do_syscall_64+0x33/0x40 [ 2044.609166] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2044.610241] RIP: 0033:0x7fd54fedeb19 [ 2044.611014] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2044.614828] RSP: 002b:00007fd54d412188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2044.616396] RAX: ffffffffffffffda RBX: 00007fd54fff20e0 RCX: 00007fd54fedeb19 [ 2044.617886] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2044.619379] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2044.620851] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2044.622365] R13: 00007fff36540caf R14: 00007fd54d412300 R15: 0000000000022000 21:26:25 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x4000, 0x0, 0x0, 0x0) 21:26:25 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x0, 0x0, 0x0) 21:26:25 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x9, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 21:26:25 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x3000000, 0x0, 0x0, 0x0) 21:26:25 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x4000000, 0x0, 0x0, 0x0) 21:26:25 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x3f000000, 0x0, 0x0, 0x0) 21:26:25 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x3f000000, 0x0, 0x0, 0x0) 21:26:25 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x4000, 0x0, 0x0, 0x0) 21:26:25 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x4000000, 0x0, 0x0, 0x0) 21:26:25 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xc00c, 0x0, 0x0, 0x0) [ 2059.566304] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2059.569343] CPU: 0 PID: 11991 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2059.570833] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2059.572555] Call Trace: [ 2059.573117] dump_stack+0x107/0x167 [ 2059.573890] sysfs_warn_dup.cold+0x1c/0x29 [ 2059.574773] sysfs_do_create_link_sd+0x122/0x140 [ 2059.575766] sysfs_create_link+0x5f/0xc0 [ 2059.576617] device_add+0x703/0x1c50 [ 2059.577419] ? devlink_add_symlinks+0x970/0x970 [ 2059.578394] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2059.579487] wiphy_register+0x1da6/0x2850 [ 2059.580376] ? wiphy_unregister+0xb90/0xb90 [ 2059.581316] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2059.582430] ieee80211_register_hw+0x23c5/0x38b0 [ 2059.583441] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2059.584453] ? net_generic+0xdb/0x2b0 [ 2059.585263] ? lockdep_init_map_type+0x2c7/0x780 [ 2059.586262] ? memset+0x20/0x50 [ 2059.586954] ? __hrtimer_init+0x12c/0x270 [ 2059.587821] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2059.588898] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2059.589874] ? hwsim_new_radio_nl+0x967/0x1080 [ 2059.590826] ? memcpy+0x39/0x60 [ 2059.591523] hwsim_new_radio_nl+0x991/0x1080 [ 2059.592441] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2059.593541] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2059.594905] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2059.596262] genl_family_rcv_msg_doit+0x22d/0x330 [ 2059.597282] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2059.598648] ? cap_capable+0x1cd/0x230 [ 2059.599480] ? ns_capable+0xe2/0x110 [ 2059.600263] genl_rcv_msg+0x33c/0x5a0 [ 2059.601070] ? genl_get_cmd+0x480/0x480 [ 2059.601904] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2059.602983] ? lock_release+0x680/0x680 [ 2059.603809] ? __lockdep_reset_lock+0x180/0x180 [ 2059.604781] netlink_rcv_skb+0x14b/0x430 [ 2059.605640] ? genl_get_cmd+0x480/0x480 [ 2059.606469] ? netlink_ack+0xab0/0xab0 [ 2059.607298] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2059.608248] ? is_vmalloc_addr+0x7b/0xb0 [ 2059.609097] genl_rcv+0x24/0x40 [ 2059.609790] netlink_unicast+0x549/0x7f0 [ 2059.610649] ? netlink_attachskb+0x870/0x870 [ 2059.611562] ? __virt_addr_valid+0x128/0x350 [ 2059.612491] netlink_sendmsg+0x90f/0xdf0 [ 2059.613365] ? netlink_unicast+0x7f0/0x7f0 [ 2059.614262] ? netlink_unicast+0x7f0/0x7f0 [ 2059.615143] __sock_sendmsg+0x154/0x190 [ 2059.615972] ____sys_sendmsg+0x70d/0x870 [ 2059.616821] ? sock_write_iter+0x3d0/0x3d0 [ 2059.617703] ? do_recvmmsg+0x6d0/0x6d0 [ 2059.618513] ? perf_trace_lock+0xac/0x490 [ 2059.619390] ? __lockdep_reset_lock+0x180/0x180 [ 2059.620367] ___sys_sendmsg+0xf3/0x170 [ 2059.621196] ? sendmsg_copy_msghdr+0x160/0x160 [ 2059.622164] ? lock_downgrade+0x6d0/0x6d0 [ 2059.623051] ? __fget_files+0x296/0x4c0 [ 2059.623894] ? __fget_light+0xea/0x290 [ 2059.624717] __sys_sendmsg+0xe5/0x1b0 21:26:25 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x5000000, 0x0, 0x0, 0x0) [ 2059.625517] ? __sys_sendmsg_sock+0x40/0x40 [ 2059.626593] ? trace_hardirqs_on+0x5b/0x180 [ 2059.627524] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2059.628592] ? syscall_enter_from_user_mode+0x27/0x50 [ 2059.629696] do_syscall_64+0x33/0x40 [ 2059.630480] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2059.631554] RIP: 0033:0x7fd54fedeb19 [ 2059.632331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2059.636137] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e 21:26:25 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xde2c, 0x0, 0x0, 0x0) [ 2059.637772] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 2059.639252] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2059.640733] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2059.642233] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2059.643709] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 21:26:41 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xa, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 21:26:41 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xc00c, 0x0, 0x0, 0x0) 21:26:41 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x800000, 0x0, 0x0, 0x0) 21:26:41 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x40000000, 0x0, 0x0, 0x0) 21:26:41 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x5000000, 0x0, 0x0, 0x0) 21:26:41 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x2, 0x0, 0x0, 0x0) 21:26:41 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x40000000, 0x0, 0x0, 0x0) 21:26:41 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x8000000, 0x0, 0x0, 0x0) [ 2074.891596] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2074.893076] CPU: 0 PID: 12057 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2074.894212] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2074.895545] Call Trace: [ 2074.895963] dump_stack+0x107/0x167 [ 2074.896553] sysfs_warn_dup.cold+0x1c/0x29 [ 2074.897228] sysfs_do_create_link_sd+0x122/0x140 [ 2074.897991] sysfs_create_link+0x5f/0xc0 [ 2074.898661] device_add+0x703/0x1c50 [ 2074.899292] ? devlink_add_symlinks+0x970/0x970 [ 2074.900063] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2074.900922] wiphy_register+0x1da6/0x2850 [ 2074.901621] ? wiphy_unregister+0xb90/0xb90 [ 2074.902372] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2074.903223] ieee80211_register_hw+0x23c5/0x38b0 [ 2074.904021] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2074.904822] ? net_generic+0xdb/0x2b0 [ 2074.905479] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2074.906389] ? memset+0x20/0x50 [ 2074.906932] ? __hrtimer_init+0x12c/0x270 [ 2074.907613] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2074.908407] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2074.909187] ? hwsim_new_radio_nl+0x967/0x1080 [ 2074.909947] ? memcpy+0x39/0x60 [ 2074.910477] hwsim_new_radio_nl+0x991/0x1080 [ 2074.911183] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2074.912010] ? trace_hardirqs_on+0x5b/0x180 [ 2074.912737] ? genl_family_rcv_msg_doit+0xec/0x330 [ 2074.913548] genl_family_rcv_msg_doit+0x22d/0x330 [ 2074.914331] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2074.915423] ? cap_capable+0x1cd/0x230 [ 2074.916088] ? ns_capable+0xe2/0x110 [ 2074.916713] genl_rcv_msg+0x33c/0x5a0 [ 2074.917354] ? genl_get_cmd+0x480/0x480 [ 2074.918016] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2074.918861] ? lock_release+0x680/0x680 [ 2074.919494] ? __lockdep_reset_lock+0x180/0x180 [ 2074.920250] netlink_rcv_skb+0x14b/0x430 [ 2074.920929] ? genl_get_cmd+0x480/0x480 [ 2074.921577] ? netlink_ack+0xab0/0xab0 [ 2074.922246] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2074.922981] ? is_vmalloc_addr+0x7b/0xb0 [ 2074.923651] genl_rcv+0x24/0x40 [ 2074.924185] netlink_unicast+0x549/0x7f0 [ 2074.924875] ? netlink_attachskb+0x870/0x870 [ 2074.925596] ? __virt_addr_valid+0x128/0x350 [ 2074.926320] netlink_sendmsg+0x90f/0xdf0 [ 2074.927004] ? netlink_unicast+0x7f0/0x7f0 [ 2074.927705] ? netlink_unicast+0x7f0/0x7f0 [ 2074.928411] __sock_sendmsg+0x154/0x190 [ 2074.929086] ____sys_sendmsg+0x70d/0x870 [ 2074.929770] ? sock_write_iter+0x3d0/0x3d0 [ 2074.930447] ? do_recvmmsg+0x6d0/0x6d0 [ 2074.931052] ? perf_trace_lock+0xac/0x490 [ 2074.931744] ? __lockdep_reset_lock+0x180/0x180 [ 2074.932489] ___sys_sendmsg+0xf3/0x170 [ 2074.933129] ? sendmsg_copy_msghdr+0x160/0x160 [ 2074.933898] ? lock_downgrade+0x6d0/0x6d0 [ 2074.934596] ? find_held_lock+0x2c/0x110 [ 2074.935271] ? clockevents_program_event+0x14b/0x360 [ 2074.936103] ? __fget_files+0x296/0x4c0 [ 2074.936770] ? __fget_light+0xea/0x290 [ 2074.937400] __sys_sendmsg+0xe5/0x1b0 [ 2074.938007] ? __sys_sendmsg_sock+0x40/0x40 [ 2074.938746] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2074.939607] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2074.940408] ? trace_hardirqs_on+0x5b/0x180 [ 2074.941111] do_syscall_64+0x33/0x40 [ 2074.941718] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2074.942558] RIP: 0033:0x7fd54fedeb19 [ 2074.943152] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2074.946103] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2074.947345] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 2074.948505] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2074.949694] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2074.950820] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2074.951933] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 21:26:41 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x2000000, 0x0, 0x0, 0x0) 21:26:41 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x20000000, 0x0, 0x0, 0x0) 21:26:41 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x3, 0x0, 0x0, 0x0) 21:26:41 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xe92c, 0x0, 0x0, 0x0) 21:26:41 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x512c0000, 0x0, 0x0, 0x0) 21:26:41 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x3000000, 0x0, 0x0, 0x0) 21:26:41 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x8000000, 0x0, 0x0, 0x0) 21:26:41 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x80ffffff, 0x0, 0x0, 0x0) 21:26:41 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 21:26:41 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x3f000000, 0x0, 0x0, 0x0) 21:26:41 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x4000000, 0x0, 0x0, 0x0) 21:26:41 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x4, 0x0, 0x0, 0x0) 21:26:41 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x20000000, 0x0, 0x0, 0x0) 21:26:41 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x80ffffff, 0x0, 0x0, 0x0) 21:26:41 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x81ffffff, 0x0, 0x0, 0x0) [ 2075.465042] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2075.466503] CPU: 0 PID: 12126 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2075.467599] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2075.468941] Call Trace: [ 2075.469370] dump_stack+0x107/0x167 [ 2075.469954] sysfs_warn_dup.cold+0x1c/0x29 [ 2075.470623] sysfs_do_create_link_sd+0x122/0x140 [ 2075.471367] sysfs_create_link+0x5f/0xc0 [ 2075.472018] device_add+0x703/0x1c50 [ 2075.472608] ? devlink_add_symlinks+0x970/0x970 [ 2075.473365] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2075.474214] wiphy_register+0x1da6/0x2850 [ 2075.474908] ? wiphy_unregister+0xb90/0xb90 [ 2075.475632] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2075.476484] ieee80211_register_hw+0x23c5/0x38b0 [ 2075.477282] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2075.478070] ? net_generic+0xdb/0x2b0 [ 2075.478736] ? lockdep_init_map_type+0x2c7/0x780 [ 2075.479595] ? memset+0x20/0x50 [ 2075.480176] ? __hrtimer_init+0x12c/0x270 [ 2075.480873] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2075.481738] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2075.482531] ? hwsim_new_radio_nl+0x967/0x1080 [ 2075.483294] ? memcpy+0x39/0x60 [ 2075.483862] hwsim_new_radio_nl+0x991/0x1080 [ 2075.484611] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2075.485504] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2075.486581] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2075.487674] genl_family_rcv_msg_doit+0x22d/0x330 [ 2075.488528] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2075.489718] ? cap_capable+0x1cd/0x230 [ 2075.490414] ? ns_capable+0xe2/0x110 [ 2075.491079] genl_rcv_msg+0x33c/0x5a0 [ 2075.491712] ? genl_get_cmd+0x480/0x480 [ 2075.492357] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2075.493228] ? lock_release+0x680/0x680 [ 2075.493907] ? __lockdep_reset_lock+0x180/0x180 [ 2075.494675] netlink_rcv_skb+0x14b/0x430 [ 2075.495343] ? genl_get_cmd+0x480/0x480 [ 2075.495988] ? netlink_ack+0xab0/0xab0 [ 2075.496659] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2075.497450] ? is_vmalloc_addr+0x7b/0xb0 [ 2075.498166] genl_rcv+0x24/0x40 [ 2075.498722] netlink_unicast+0x549/0x7f0 [ 2075.499407] ? netlink_attachskb+0x870/0x870 [ 2075.500148] ? __virt_addr_valid+0x128/0x350 [ 2075.500924] netlink_sendmsg+0x90f/0xdf0 [ 2075.501662] ? netlink_unicast+0x7f0/0x7f0 [ 2075.502404] ? netlink_unicast+0x7f0/0x7f0 [ 2075.503157] __sock_sendmsg+0x154/0x190 [ 2075.503812] ____sys_sendmsg+0x70d/0x870 [ 2075.504508] ? sock_write_iter+0x3d0/0x3d0 [ 2075.505233] ? do_recvmmsg+0x6d0/0x6d0 [ 2075.505898] ? perf_trace_lock+0xac/0x490 [ 2075.506605] ? __lockdep_reset_lock+0x180/0x180 [ 2075.507388] ? perf_trace_lock+0xac/0x490 [ 2075.508097] ___sys_sendmsg+0xf3/0x170 [ 2075.508784] ? sendmsg_copy_msghdr+0x160/0x160 [ 2075.509590] ? lock_downgrade+0x6d0/0x6d0 [ 2075.510312] ? __fget_files+0x265/0x4c0 [ 2075.511016] ? __fget_files+0x296/0x4c0 [ 2075.511722] ? __fget_light+0xea/0x290 [ 2075.512377] __sys_sendmsg+0xe5/0x1b0 [ 2075.513015] ? __sys_sendmsg_sock+0x40/0x40 [ 2075.513742] ? io_schedule_timeout+0x140/0x140 [ 2075.514499] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2075.515428] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2075.516350] ? trace_hardirqs_on+0x5b/0x180 [ 2075.517103] do_syscall_64+0x33/0x40 [ 2075.517800] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2075.518643] RIP: 0033:0x7fd54fedeb19 [ 2075.519248] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2075.522312] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2075.523559] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 2075.524752] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2075.525983] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2075.527201] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2075.528422] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 [ 2075.651774] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2075.653600] CPU: 1 PID: 12142 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2075.655017] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2075.656737] Call Trace: [ 2075.657295] dump_stack+0x107/0x167 [ 2075.658077] sysfs_warn_dup.cold+0x1c/0x29 [ 2075.658958] sysfs_do_create_link_sd+0x122/0x140 [ 2075.659947] sysfs_create_link+0x5f/0xc0 [ 2075.660798] device_add+0x703/0x1c50 [ 2075.661607] ? devlink_add_symlinks+0x970/0x970 [ 2075.662580] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2075.663682] wiphy_register+0x1da6/0x2850 [ 2075.664554] ? wiphy_unregister+0xb90/0xb90 [ 2075.665482] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2075.666582] ieee80211_register_hw+0x23c5/0x38b0 [ 2075.667590] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2075.668578] ? net_generic+0xdb/0x2b0 [ 2075.669389] ? lockdep_init_map_type+0x2c7/0x780 [ 2075.670366] ? memset+0x20/0x50 [ 2075.671062] ? __hrtimer_init+0x12c/0x270 [ 2075.671933] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2075.672985] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2075.673934] ? hwsim_new_radio_nl+0x967/0x1080 [ 2075.674871] ? memcpy+0x39/0x60 [ 2075.675558] hwsim_new_radio_nl+0x991/0x1080 [ 2075.676468] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2075.677566] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2075.678912] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2075.680255] genl_family_rcv_msg_doit+0x22d/0x330 [ 2075.681261] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2075.682633] ? cap_capable+0x1cd/0x230 [ 2075.683453] ? ns_capable+0xe2/0x110 [ 2075.684228] genl_rcv_msg+0x33c/0x5a0 [ 2075.685015] ? genl_get_cmd+0x480/0x480 [ 2075.685837] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2075.686906] ? lock_release+0x680/0x680 [ 2075.687731] ? __lockdep_reset_lock+0x180/0x180 [ 2075.688691] netlink_rcv_skb+0x14b/0x430 [ 2075.689548] ? genl_get_cmd+0x480/0x480 [ 2075.690371] ? netlink_ack+0xab0/0xab0 [ 2075.691196] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2075.692129] ? is_vmalloc_addr+0x7b/0xb0 [ 2075.692964] genl_rcv+0x24/0x40 [ 2075.693650] netlink_unicast+0x549/0x7f0 [ 2075.694493] ? netlink_attachskb+0x870/0x870 [ 2075.695389] ? __virt_addr_valid+0x128/0x350 [ 2075.696311] netlink_sendmsg+0x90f/0xdf0 [ 2075.697154] ? netlink_unicast+0x7f0/0x7f0 [ 2075.698060] ? netlink_unicast+0x7f0/0x7f0 [ 2075.698932] __sock_sendmsg+0x154/0x190 [ 2075.699748] ____sys_sendmsg+0x70d/0x870 [ 2075.700591] ? sock_write_iter+0x3d0/0x3d0 [ 2075.701462] ? do_recvmmsg+0x6d0/0x6d0 [ 2075.702265] ? perf_trace_lock+0xac/0x490 [ 2075.703114] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2075.704229] ? __lockdep_reset_lock+0x180/0x180 [ 2075.705195] ___sys_sendmsg+0xf3/0x170 [ 2075.706010] ? sendmsg_copy_msghdr+0x160/0x160 [ 2075.706959] ? lock_downgrade+0x6d0/0x6d0 [ 2075.707809] ? find_held_lock+0x2c/0x110 [ 2075.708649] ? clockevents_program_event+0x14b/0x360 [ 2075.709704] ? __fget_files+0x296/0x4c0 [ 2075.710533] ? __fget_light+0xea/0x290 [ 2075.711351] __sys_sendmsg+0xe5/0x1b0 [ 2075.712134] ? __sys_sendmsg_sock+0x40/0x40 [ 2075.713042] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2075.714131] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2075.715188] ? trace_hardirqs_on+0x5b/0x180 [ 2075.716083] do_syscall_64+0x33/0x40 [ 2075.716851] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2075.717906] RIP: 0033:0x7fd54fedeb19 [ 2075.718670] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2075.722464] RSP: 002b:00007fd54d433188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2075.724020] RAX: ffffffffffffffda RBX: 00007fd54fff2020 RCX: 00007fd54fedeb19 [ 2075.725502] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2075.726957] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2075.728417] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2075.729884] R13: 00007fff36540caf R14: 00007fd54d433300 R15: 0000000000022000 21:26:58 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x3b2c0000, 0x0, 0x0, 0x0) 21:26:58 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x48, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 21:26:58 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xc00c0000, 0x0, 0x0, 0x0) 21:26:58 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x5000000, 0x0, 0x0, 0x0) 21:26:58 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x5, 0x0, 0x0, 0x0) 21:26:58 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x81ffffff, 0x0, 0x0, 0x0) 21:26:58 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x40000000, 0x0, 0x0, 0x0) 21:26:58 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xfb02, 0x0, 0x0, 0x0) 21:26:58 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x5b2c0000, 0x0, 0x0, 0x0) [ 2092.428408] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2092.430385] CPU: 1 PID: 12150 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2092.431764] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2092.433430] Call Trace: [ 2092.433991] dump_stack+0x107/0x167 [ 2092.434737] sysfs_warn_dup.cold+0x1c/0x29 [ 2092.435588] sysfs_do_create_link_sd+0x122/0x140 [ 2092.436531] sysfs_create_link+0x5f/0xc0 [ 2092.437343] device_add+0x703/0x1c50 [ 2092.438100] ? devlink_add_symlinks+0x970/0x970 [ 2092.439025] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2092.440088] wiphy_register+0x1da6/0x2850 [ 2092.440962] ? wiphy_unregister+0xb90/0xb90 [ 2092.441862] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2092.442927] ieee80211_register_hw+0x23c5/0x38b0 [ 2092.443900] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2092.444875] ? net_generic+0xdb/0x2b0 [ 2092.445654] ? lockdep_init_map_type+0x2c7/0x780 [ 2092.446622] ? memset+0x20/0x50 [ 2092.447282] ? __hrtimer_init+0x12c/0x270 [ 2092.448110] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2092.449143] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2092.450065] ? hwsim_new_radio_nl+0x967/0x1080 [ 2092.450978] ? memcpy+0x39/0x60 [ 2092.451648] hwsim_new_radio_nl+0x991/0x1080 [ 2092.452529] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2092.453599] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2092.454904] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2092.456190] genl_family_rcv_msg_doit+0x22d/0x330 [ 2092.457150] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2092.458461] ? cap_capable+0x1cd/0x230 [ 2092.459270] ? ns_capable+0xe2/0x110 [ 2092.460029] genl_rcv_msg+0x33c/0x5a0 [ 2092.460796] ? genl_get_cmd+0x480/0x480 [ 2092.461611] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2092.462659] ? lock_release+0x680/0x680 [ 2092.463457] ? __lockdep_reset_lock+0x180/0x180 [ 2092.464396] netlink_rcv_skb+0x14b/0x430 [ 2092.465213] ? genl_get_cmd+0x480/0x480 [ 2092.466021] ? netlink_ack+0xab0/0xab0 [ 2092.466813] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2092.467719] ? is_vmalloc_addr+0x7b/0xb0 [ 2092.468539] genl_rcv+0x24/0x40 [ 2092.469194] netlink_unicast+0x549/0x7f0 [ 2092.470026] ? netlink_attachskb+0x870/0x870 [ 2092.470906] ? __virt_addr_valid+0x128/0x350 [ 2092.471794] netlink_sendmsg+0x90f/0xdf0 [ 2092.472608] ? netlink_unicast+0x7f0/0x7f0 [ 2092.473450] ? netlink_unicast+0x7f0/0x7f0 [ 2092.474297] __sock_sendmsg+0x154/0x190 [ 2092.475080] ____sys_sendmsg+0x70d/0x870 [ 2092.475896] ? sock_write_iter+0x3d0/0x3d0 [ 2092.476718] ? do_recvmmsg+0x6d0/0x6d0 [ 2092.477510] ___sys_sendmsg+0xf3/0x170 [ 2092.478289] ? sendmsg_copy_msghdr+0x160/0x160 [ 2092.479194] ? lock_downgrade+0x6d0/0x6d0 [ 2092.480039] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2092.481064] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2092.482135] ? trace_hardirqs_on+0x5b/0x180 [ 2092.482995] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2092.484094] ? __fget_light+0xd4/0x290 [ 2092.484867] ? __fget_light+0xea/0x290 [ 2092.485669] __sys_sendmsg+0xe5/0x1b0 [ 2092.486418] ? __sys_sendmsg_sock+0x40/0x40 [ 2092.487284] ? trace_hardirqs_on+0x5b/0x180 [ 2092.488166] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2092.489184] ? syscall_enter_from_user_mode+0x27/0x50 [ 2092.490211] do_syscall_64+0x33/0x40 [ 2092.490948] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2092.491962] RIP: 0033:0x7fd54fedeb19 [ 2092.492703] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2092.496335] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2092.497867] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 2092.499289] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2092.500684] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2092.502093] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2092.503506] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 21:26:58 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x3f000000, 0x0, 0x0, 0x0) 21:26:58 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xc00c0000, 0x0, 0x0, 0x0) 21:26:58 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x800000, 0x0, 0x0, 0x0) 21:26:58 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x7030000, 0x0, 0x0, 0x0) 21:26:58 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xe4ffffff, 0x0, 0x0, 0x0) [ 2092.833402] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2092.835387] CPU: 1 PID: 12205 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2092.836691] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2092.838297] Call Trace: [ 2092.838814] dump_stack+0x107/0x167 [ 2092.839523] sysfs_warn_dup.cold+0x1c/0x29 [ 2092.840329] sysfs_do_create_link_sd+0x122/0x140 [ 2092.841204] sysfs_create_link+0x5f/0xc0 [ 2092.841989] device_add+0x703/0x1c50 [ 2092.842706] ? devlink_add_symlinks+0x970/0x970 [ 2092.843554] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2092.844567] wiphy_register+0x1da6/0x2850 [ 2092.845352] ? wiphy_unregister+0xb90/0xb90 [ 2092.846213] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2092.847189] ieee80211_register_hw+0x23c5/0x38b0 [ 2092.848114] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2092.848994] ? __hrtimer_init+0x1d2/0x270 [ 2092.849795] ? kcov_remote_stop+0x310/0x310 [ 2092.850585] ? __hrtimer_init+0x12c/0x270 [ 2092.851344] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2092.852271] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2092.853105] ? hwsim_new_radio_nl+0x967/0x1080 [ 2092.853948] ? memcpy+0x39/0x60 [ 2092.854564] hwsim_new_radio_nl+0x991/0x1080 [ 2092.855369] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2092.856330] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2092.857526] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2092.858735] genl_family_rcv_msg_doit+0x22d/0x330 [ 2092.859633] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2092.860802] ? cap_capable+0x1cd/0x230 [ 2092.861552] ? ns_capable+0xe2/0x110 [ 2092.862222] genl_rcv_msg+0x33c/0x5a0 [ 2092.862932] ? genl_get_cmd+0x480/0x480 [ 2092.863640] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2092.864602] ? lock_release+0x680/0x680 [ 2092.865306] ? __lockdep_reset_lock+0x180/0x180 [ 2092.866174] netlink_rcv_skb+0x14b/0x430 [ 2092.866887] ? genl_get_cmd+0x480/0x480 [ 2092.867606] ? netlink_ack+0xab0/0xab0 [ 2092.868326] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2092.869146] ? kcov_remote_stop+0x310/0x310 [ 2092.869937] ? is_vmalloc_addr+0x7b/0xb0 [ 2092.870674] genl_rcv+0x24/0x40 [ 2092.871268] netlink_unicast+0x549/0x7f0 [ 2092.872011] ? netlink_attachskb+0x870/0x870 [ 2092.872802] ? __virt_addr_valid+0x128/0x350 [ 2092.873620] netlink_sendmsg+0x90f/0xdf0 [ 2092.874363] ? netlink_unicast+0x7f0/0x7f0 [ 2092.875144] ? netlink_unicast+0x7f0/0x7f0 [ 2092.875912] __sock_sendmsg+0x154/0x190 [ 2092.876636] ____sys_sendmsg+0x70d/0x870 [ 2092.877369] ? sock_write_iter+0x3d0/0x3d0 [ 2092.878158] ? do_recvmmsg+0x6d0/0x6d0 [ 2092.878869] ? perf_trace_lock+0xac/0x490 [ 2092.879615] ? __lockdep_reset_lock+0x180/0x180 [ 2092.880454] ? perf_trace_lock+0xac/0x490 [ 2092.881216] ___sys_sendmsg+0xf3/0x170 [ 2092.881935] ? sendmsg_copy_msghdr+0x160/0x160 [ 2092.882772] ? lock_downgrade+0x6d0/0x6d0 [ 2092.883532] ? __fget_files+0x26d/0x4c0 [ 2092.884250] ? lock_release+0x10/0x680 [ 2092.884961] ? __fget_files+0x296/0x4c0 [ 2092.885706] ? __fget_light+0xea/0x290 [ 2092.886424] __sys_sendmsg+0xe5/0x1b0 [ 2092.887097] ? __sys_sendmsg_sock+0x40/0x40 [ 2092.887858] ? trace_hardirqs_on+0x5b/0x180 [ 2092.888652] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2092.889581] ? syscall_enter_from_user_mode+0x27/0x50 [ 2092.890497] do_syscall_64+0x33/0x40 [ 2092.891173] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2092.892076] RIP: 0033:0x7fd54fedeb19 [ 2092.892745] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2092.895986] RSP: 002b:00007fd54d433188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2092.897341] RAX: ffffffffffffffda RBX: 00007fd54fff2020 RCX: 00007fd54fedeb19 [ 2092.898623] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2092.899880] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2092.901155] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2092.902449] R13: 00007fff36540caf R14: 00007fd54d433300 R15: 0000000000022000 21:27:14 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x4c, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 21:27:14 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xf5ffffff, 0x0, 0x0, 0x0) 21:27:14 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x40000000, 0x0, 0x0, 0x0) 21:27:14 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x80ffffff, 0x0, 0x0, 0x0) 21:27:14 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x8, 0x0, 0x0, 0x0) 21:27:14 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x2000000, 0x0, 0x0, 0x0) 21:27:14 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xe4ffffff, 0x0, 0x0, 0x0) 21:27:14 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x8000000, 0x0, 0x0, 0x0) [ 2108.516415] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2108.518179] CPU: 1 PID: 12214 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2108.519535] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2108.521154] Call Trace: [ 2108.521678] dump_stack+0x107/0x167 [ 2108.522413] sysfs_warn_dup.cold+0x1c/0x29 [ 2108.523241] sysfs_do_create_link_sd+0x122/0x140 [ 2108.524187] sysfs_create_link+0x5f/0xc0 [ 2108.524984] device_add+0x703/0x1c50 [ 2108.525731] ? devlink_add_symlinks+0x970/0x970 [ 2108.526694] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2108.527784] wiphy_register+0x1da6/0x2850 [ 2108.528643] ? wiphy_unregister+0xb90/0xb90 [ 2108.529532] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2108.530625] ieee80211_register_hw+0x23c5/0x38b0 [ 2108.531608] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2108.532582] ? net_generic+0xdb/0x2b0 [ 2108.533372] ? lockdep_init_map_type+0x2c7/0x780 [ 2108.534357] ? memset+0x20/0x50 [ 2108.535018] ? __hrtimer_init+0x12c/0x270 [ 2108.535866] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2108.536902] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2108.537864] ? hwsim_new_radio_nl+0x967/0x1080 [ 2108.538807] ? memcpy+0x39/0x60 [ 2108.539497] hwsim_new_radio_nl+0x991/0x1080 [ 2108.540414] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2108.541499] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2108.542846] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2108.544182] genl_family_rcv_msg_doit+0x22d/0x330 [ 2108.545162] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2108.546499] ? cap_capable+0x1cd/0x230 [ 2108.547307] ? ns_capable+0xe2/0x110 [ 2108.548089] genl_rcv_msg+0x33c/0x5a0 [ 2108.549165] ? genl_get_cmd+0x480/0x480 [ 2108.550051] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2108.551111] ? lock_release+0x680/0x680 [ 2108.551916] ? __lockdep_reset_lock+0x180/0x180 [ 2108.552870] netlink_rcv_skb+0x14b/0x430 [ 2108.553711] ? genl_get_cmd+0x480/0x480 [ 2108.554563] ? netlink_ack+0xab0/0xab0 [ 2108.555385] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2108.556321] ? is_vmalloc_addr+0x7b/0xb0 [ 2108.557167] genl_rcv+0x24/0x40 [ 2108.557869] netlink_unicast+0x549/0x7f0 [ 2108.558712] ? netlink_attachskb+0x870/0x870 [ 2108.559605] ? __virt_addr_valid+0x128/0x350 [ 2108.560523] netlink_sendmsg+0x90f/0xdf0 [ 2108.561354] ? netlink_unicast+0x7f0/0x7f0 [ 2108.562240] ? netlink_unicast+0x7f0/0x7f0 [ 2108.563117] __sock_sendmsg+0x154/0x190 [ 2108.563904] ____sys_sendmsg+0x70d/0x870 [ 2108.564712] ? sock_write_iter+0x3d0/0x3d0 [ 2108.565542] ? do_recvmmsg+0x6d0/0x6d0 [ 2108.566338] ? perf_trace_lock+0xac/0x490 [ 2108.567178] ? __lockdep_reset_lock+0x180/0x180 [ 2108.568115] ___sys_sendmsg+0xf3/0x170 [ 2108.568909] ? sendmsg_copy_msghdr+0x160/0x160 [ 2108.569856] ? lock_downgrade+0x6d0/0x6d0 [ 2108.570702] ? __fget_files+0x265/0x4c0 [ 2108.571525] ? __fget_files+0x296/0x4c0 [ 2108.572356] ? __fget_light+0xea/0x290 [ 2108.573159] __sys_sendmsg+0xe5/0x1b0 [ 2108.573951] ? __sys_sendmsg_sock+0x40/0x40 [ 2108.574835] ? trace_hardirqs_on+0x5b/0x180 [ 2108.575748] do_syscall_64+0x33/0x40 [ 2108.576498] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2108.577535] RIP: 0033:0x7fd54fedeb19 [ 2108.578311] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2108.582028] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2108.583568] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 2108.585008] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2108.586466] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2108.587884] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2108.589299] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 21:27:14 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x20000000, 0x0, 0x0, 0x0) 21:27:14 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x81ffffff, 0x0, 0x0, 0x0) 21:27:14 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x80ffffff, 0x0, 0x0, 0x0) 21:27:14 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xffffff80, 0x0, 0x0, 0x0) [ 2108.881240] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2108.883042] CPU: 1 PID: 12262 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2108.884440] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2108.886125] Call Trace: [ 2108.886665] dump_stack+0x107/0x167 [ 2108.887413] sysfs_warn_dup.cold+0x1c/0x29 [ 2108.888262] sysfs_do_create_link_sd+0x122/0x140 [ 2108.889218] sysfs_create_link+0x5f/0xc0 [ 2108.890071] device_add+0x703/0x1c50 [ 2108.890817] ? devlink_add_symlinks+0x970/0x970 [ 2108.891737] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2108.892781] wiphy_register+0x1da6/0x2850 [ 2108.893628] ? wiphy_unregister+0xb90/0xb90 [ 2108.894518] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2108.895561] ieee80211_register_hw+0x23c5/0x38b0 [ 2108.896526] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2108.897466] ? net_generic+0xdb/0x2b0 [ 2108.898259] ? lockdep_init_map_type+0x2c7/0x780 [ 2108.899232] ? memset+0x20/0x50 [ 2108.899891] ? __hrtimer_init+0x12c/0x270 [ 2108.900726] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2108.901769] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2108.902678] ? hwsim_new_radio_nl+0x967/0x1080 [ 2108.903561] ? memcpy+0x39/0x60 [ 2108.904236] hwsim_new_radio_nl+0x991/0x1080 [ 2108.905111] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2108.906144] ? trace_hardirqs_on+0x5b/0x180 [ 2108.907026] ? genl_family_rcv_msg_doit+0x203/0x330 [ 2108.908018] genl_family_rcv_msg_doit+0x22d/0x330 [ 2108.908966] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2108.910333] genl_rcv_msg+0x33c/0x5a0 [ 2108.911089] ? genl_get_cmd+0x480/0x480 [ 2108.911885] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2108.912905] ? lock_release+0x680/0x680 [ 2108.913681] ? __lockdep_reset_lock+0x180/0x180 [ 2108.914619] netlink_rcv_skb+0x14b/0x430 [ 2108.915413] ? genl_get_cmd+0x480/0x480 [ 2108.916211] ? netlink_ack+0xab0/0xab0 [ 2108.917024] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2108.917970] ? is_vmalloc_addr+0x7b/0xb0 [ 2108.918772] genl_rcv+0x24/0x40 [ 2108.919421] netlink_unicast+0x549/0x7f0 [ 2108.920232] ? netlink_attachskb+0x870/0x870 [ 2108.921087] ? __virt_addr_valid+0x128/0x350 [ 2108.921973] netlink_sendmsg+0x90f/0xdf0 [ 2108.922785] ? netlink_unicast+0x7f0/0x7f0 [ 2108.923626] ? netlink_unicast+0x7f0/0x7f0 [ 2108.924453] __sock_sendmsg+0x154/0x190 [ 2108.925252] ____sys_sendmsg+0x70d/0x870 [ 2108.926078] ? sock_write_iter+0x3d0/0x3d0 [ 2108.926921] ? do_recvmmsg+0x6d0/0x6d0 [ 2108.927675] ? perf_trace_lock+0xac/0x490 [ 2108.928508] ? __lockdep_reset_lock+0x180/0x180 [ 2108.929411] ? __lockdep_reset_lock+0x180/0x180 [ 2108.930359] ___sys_sendmsg+0xf3/0x170 [ 2108.931128] ? sendmsg_copy_msghdr+0x160/0x160 [ 2108.932041] ? lock_downgrade+0x6d0/0x6d0 [ 2108.932910] ? __fget_files+0x296/0x4c0 [ 2108.933711] ? __fget_light+0xea/0x290 [ 2108.934512] __sys_sendmsg+0xe5/0x1b0 [ 2108.935261] ? __sys_sendmsg_sock+0x40/0x40 [ 2108.936119] ? __do_sys_futex+0x2bb/0x480 [ 2108.936976] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2108.938023] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2108.939024] ? trace_hardirqs_on+0x5b/0x180 [ 2108.939881] do_syscall_64+0x33/0x40 [ 2108.940614] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2108.941643] RIP: 0033:0x7fd54fedeb19 [ 2108.942397] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2108.946076] RSP: 002b:00007fd54d433188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2108.947579] RAX: ffffffffffffffda RBX: 00007fd54fff2020 RCX: 00007fd54fedeb19 [ 2108.949005] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2108.950403] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2108.951826] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2108.953260] R13: 00007fff36540caf R14: 00007fd54d433300 R15: 0000000000022000 21:27:29 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x68, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 21:27:29 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xf5ffffff, 0x0, 0x0, 0x0) 21:27:29 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xffffff81, 0x0, 0x0, 0x0) 21:27:29 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xc00c0000, 0x0, 0x0, 0x0) 21:27:29 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x3000000, 0x0, 0x0, 0x0) 21:27:29 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x300, 0x0, 0x0, 0x0) 21:27:29 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x3f000000, 0x0, 0x0, 0x0) 21:27:29 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x81ffffff, 0x0, 0x0, 0x0) [ 2123.503425] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2123.504718] CPU: 1 PID: 12277 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2123.505599] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2123.506687] Call Trace: [ 2123.507044] dump_stack+0x107/0x167 [ 2123.507516] sysfs_warn_dup.cold+0x1c/0x29 [ 2123.508065] sysfs_do_create_link_sd+0x122/0x140 [ 2123.508692] sysfs_create_link+0x5f/0xc0 [ 2123.509218] device_add+0x703/0x1c50 [ 2123.509709] ? devlink_add_symlinks+0x970/0x970 [ 2123.510330] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2123.511019] wiphy_register+0x1da6/0x2850 [ 2123.511564] ? wiphy_unregister+0xb90/0xb90 [ 2123.512148] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2123.512843] ieee80211_register_hw+0x23c5/0x38b0 [ 2123.513461] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2123.514081] ? net_generic+0xdb/0x2b0 [ 2123.514584] ? lockdep_init_map_type+0x2c7/0x780 [ 2123.515187] ? memset+0x20/0x50 [ 2123.515624] ? __hrtimer_init+0x12c/0x270 [ 2123.516177] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2123.516848] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2123.517464] ? hwsim_new_radio_nl+0x967/0x1080 [ 2123.518098] ? memcpy+0x39/0x60 [ 2123.518535] hwsim_new_radio_nl+0x991/0x1080 [ 2123.519122] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2123.519827] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2123.520688] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2123.521538] genl_family_rcv_msg_doit+0x22d/0x330 [ 2123.522168] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2123.523043] ? cap_capable+0x1cd/0x230 [ 2123.523563] ? ns_capable+0xe2/0x110 [ 2123.524058] genl_rcv_msg+0x33c/0x5a0 [ 2123.524554] ? genl_get_cmd+0x480/0x480 [ 2123.525072] ? lock_acquire+0x1b9/0x470 [ 2123.525583] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2123.526281] ? lock_release+0x680/0x680 [ 2123.526806] ? __lockdep_reset_lock+0x180/0x180 [ 2123.527422] netlink_rcv_skb+0x14b/0x430 [ 2123.527969] ? genl_get_cmd+0x480/0x480 [ 2123.528499] ? netlink_ack+0xab0/0xab0 [ 2123.529034] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2123.529643] genl_rcv+0x24/0x40 [ 2123.530090] netlink_unicast+0x549/0x7f0 [ 2123.530635] ? netlink_attachskb+0x870/0x870 [ 2123.531214] ? __virt_addr_valid+0x128/0x350 [ 2123.531805] netlink_sendmsg+0x90f/0xdf0 [ 2123.532347] ? netlink_unicast+0x7f0/0x7f0 [ 2123.532921] ? netlink_unicast+0x7f0/0x7f0 [ 2123.533473] __sock_sendmsg+0x154/0x190 [ 2123.534011] ____sys_sendmsg+0x70d/0x870 [ 2123.534546] ? sock_write_iter+0x3d0/0x3d0 [ 2123.535103] ? do_recvmmsg+0x6d0/0x6d0 [ 2123.535613] ? perf_trace_lock+0xac/0x490 [ 2123.536147] ? __lockdep_reset_lock+0x180/0x180 [ 2123.536753] ? perf_trace_lock+0xac/0x490 [ 2123.537322] ___sys_sendmsg+0xf3/0x170 [ 2123.537842] ? sendmsg_copy_msghdr+0x160/0x160 [ 2123.538454] ? lock_downgrade+0x6d0/0x6d0 [ 2123.539004] ? finish_task_switch+0x126/0x5d0 [ 2123.539589] ? lock_downgrade+0x6d0/0x6d0 [ 2123.540132] ? __fget_files+0x296/0x4c0 [ 2123.540661] ? __fget_light+0xea/0x290 [ 2123.541186] __sys_sendmsg+0xe5/0x1b0 [ 2123.541673] ? __sys_sendmsg_sock+0x40/0x40 [ 2123.542265] ? io_schedule_timeout+0x140/0x140 [ 2123.542880] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2123.543561] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2123.544241] ? trace_hardirqs_on+0x5b/0x180 [ 2123.544810] do_syscall_64+0x33/0x40 [ 2123.545286] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2123.545944] RIP: 0033:0x7fd54fedeb19 [ 2123.546402] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2123.548816] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2123.549823] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 2123.550754] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2123.551688] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2123.552614] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2123.553569] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 21:27:29 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x40000000, 0x0, 0x0, 0x0) [ 2123.647699] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2123.648886] CPU: 1 PID: 12290 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2123.649706] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2123.650724] Call Trace: [ 2123.651054] dump_stack+0x107/0x167 [ 2123.651515] sysfs_warn_dup.cold+0x1c/0x29 [ 2123.652043] sysfs_do_create_link_sd+0x122/0x140 [ 2123.652616] sysfs_create_link+0x5f/0xc0 [ 2123.653108] device_add+0x703/0x1c50 [ 2123.653554] ? devlink_add_symlinks+0x970/0x970 [ 2123.654133] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2123.654759] wiphy_register+0x1da6/0x2850 [ 2123.655266] ? wiphy_unregister+0xb90/0xb90 [ 2123.655788] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2123.656426] ieee80211_register_hw+0x23c5/0x38b0 [ 2123.657025] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2123.657585] ? net_generic+0xdb/0x2b0 [ 2123.658047] ? lockdep_init_map_type+0x2c7/0x780 [ 2123.658589] ? mac80211_hwsim_new_radio+0x170e/0x4250 [ 2123.659196] ? memset+0x20/0x50 [ 2123.659584] ? __hrtimer_init+0x12c/0x270 [ 2123.660068] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2123.660658] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2123.661201] ? hwsim_new_radio_nl+0x967/0x1080 [ 2123.661764] ? memcpy+0x39/0x60 [ 2123.662173] hwsim_new_radio_nl+0x991/0x1080 [ 2123.662691] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2123.663301] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2123.664094] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2123.664892] genl_family_rcv_msg_doit+0x22d/0x330 [ 2123.665511] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2123.666336] ? cap_capable+0x1cd/0x230 [ 2123.666815] ? ns_capable+0xe2/0x110 [ 2123.667276] genl_rcv_msg+0x33c/0x5a0 [ 2123.667748] ? genl_get_cmd+0x480/0x480 [ 2123.668233] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2123.668866] ? lock_release+0x680/0x680 [ 2123.669358] ? __lockdep_reset_lock+0x180/0x180 [ 2123.669936] netlink_rcv_skb+0x14b/0x430 [ 2123.670408] ? genl_get_cmd+0x480/0x480 [ 2123.670894] ? netlink_ack+0xab0/0xab0 [ 2123.671375] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2123.671932] ? is_vmalloc_addr+0x7b/0xb0 [ 2123.672445] genl_rcv+0x24/0x40 [ 2123.672869] netlink_unicast+0x549/0x7f0 [ 2123.673366] ? netlink_attachskb+0x870/0x870 [ 2123.673908] netlink_sendmsg+0x90f/0xdf0 [ 2123.674413] ? netlink_unicast+0x7f0/0x7f0 [ 2123.674929] ? netlink_unicast+0x7f0/0x7f0 [ 2123.675446] __sock_sendmsg+0x154/0x190 [ 2123.675923] ____sys_sendmsg+0x70d/0x870 [ 2123.676418] ? sock_write_iter+0x3d0/0x3d0 [ 2123.676909] ? do_recvmmsg+0x6d0/0x6d0 [ 2123.677382] ? perf_trace_lock+0xac/0x490 [ 2123.677885] ? __lockdep_reset_lock+0x180/0x180 [ 2123.678456] ? perf_trace_lock+0xac/0x490 [ 2123.678986] ___sys_sendmsg+0xf3/0x170 [ 2123.679456] ? sendmsg_copy_msghdr+0x160/0x160 [ 2123.680012] ? lock_downgrade+0x6d0/0x6d0 [ 2123.680517] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2123.681142] ? trace_hardirqs_on+0x5b/0x180 [ 2123.681663] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2123.682308] ? __fget_files+0x296/0x4c0 [ 2123.682794] ? __fget_light+0xea/0x290 [ 2123.683277] __sys_sendmsg+0xe5/0x1b0 [ 2123.683750] ? __sys_sendmsg_sock+0x40/0x40 [ 2123.684287] ? io_schedule_timeout+0x140/0x140 [ 2123.684867] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2123.685507] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2123.686135] ? trace_hardirqs_on+0x5b/0x180 [ 2123.686656] do_syscall_64+0x33/0x40 [ 2123.687104] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2123.687723] RIP: 0033:0x7fd54fedeb19 [ 2123.688175] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2123.690393] RSP: 002b:00007fd54d433188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2123.691317] RAX: ffffffffffffffda RBX: 00007fd54fff2020 RCX: 00007fd54fedeb19 [ 2123.692170] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2123.693032] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2123.693844] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2123.694716] R13: 00007fff36540caf R14: 00007fd54d433300 R15: 0000000000022000 21:27:29 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xc00c0000, 0x0, 0x0, 0x0) 21:27:29 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xe4ffffff, 0x0, 0x0, 0x0) 21:27:29 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xffffff80, 0x0, 0x0, 0x0) 21:27:29 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x31b, 0x0, 0x0, 0x0) 21:27:30 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x4000000, 0x0, 0x0, 0x0) 21:27:43 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xed020000, 0x0, 0x0, 0x0) 21:27:43 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xffffffe4, 0x0, 0x0, 0x0) [ 2137.450640] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2137.452053] CPU: 0 PID: 12337 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2137.452982] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2137.454078] Call Trace: [ 2137.454426] dump_stack+0x107/0x167 [ 2137.454881] sysfs_warn_dup.cold+0x1c/0x29 [ 2137.455391] sysfs_do_create_link_sd+0x122/0x140 [ 2137.455971] sysfs_create_link+0x5f/0xc0 [ 2137.456466] device_add+0x703/0x1c50 [ 2137.456928] ? devlink_add_symlinks+0x970/0x970 [ 2137.457525] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2137.458214] wiphy_register+0x1da6/0x2850 [ 2137.458755] ? wiphy_unregister+0xb90/0xb90 [ 2137.459314] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2137.459963] ieee80211_register_hw+0x23c5/0x38b0 [ 2137.460572] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2137.461205] ? __hrtimer_init+0x1f1/0x270 [ 2137.461744] ? __hrtimer_init+0x8a/0x270 [ 2137.462298] ? __sanitizer_cov_trace_pc+0x4/0x60 [ 2137.462948] ? __hrtimer_init+0x12c/0x270 [ 2137.463507] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2137.464220] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2137.464837] ? hwsim_new_radio_nl+0x967/0x1080 [ 2137.465439] ? memcpy+0x39/0x60 [ 2137.465886] hwsim_new_radio_nl+0x991/0x1080 [ 2137.466481] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2137.467166] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2137.468033] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2137.468897] genl_family_rcv_msg_doit+0x22d/0x330 [ 2137.469537] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2137.470414] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2137.471129] ? cap_capable+0x1cd/0x230 [ 2137.471660] ? ns_capable+0xe2/0x110 [ 2137.472157] genl_rcv_msg+0x33c/0x5a0 [ 2137.472655] ? genl_get_cmd+0x480/0x480 [ 2137.473379] ? lock_acquire+0x1b9/0x470 [ 2137.473911] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2137.474605] ? lock_release+0x680/0x680 [ 2137.475129] ? __lockdep_reset_lock+0x180/0x180 [ 2137.475749] netlink_rcv_skb+0x14b/0x430 [ 2137.476288] ? genl_get_cmd+0x480/0x480 [ 2137.476817] ? netlink_ack+0xab0/0xab0 [ 2137.477341] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2137.477947] genl_rcv+0x24/0x40 [ 2137.478384] netlink_unicast+0x549/0x7f0 [ 2137.478913] ? netlink_attachskb+0x870/0x870 [ 2137.479493] netlink_sendmsg+0x90f/0xdf0 [ 2137.480038] ? netlink_unicast+0x7f0/0x7f0 [ 2137.480598] ? netlink_unicast+0x7f0/0x7f0 [ 2137.481160] __sock_sendmsg+0x154/0x190 [ 2137.481680] ____sys_sendmsg+0x70d/0x870 [ 2137.482224] ? sock_write_iter+0x3d0/0x3d0 [ 2137.482790] ? do_recvmmsg+0x6d0/0x6d0 [ 2137.483303] ? perf_trace_lock+0xac/0x490 [ 2137.483856] ? __lockdep_reset_lock+0x180/0x180 [ 2137.484462] ? perf_trace_lock+0xac/0x490 [ 2137.485014] ___sys_sendmsg+0xf3/0x170 [ 2137.485533] ? sendmsg_copy_msghdr+0x160/0x160 [ 2137.486160] ? lock_downgrade+0x6d0/0x6d0 [ 2137.486709] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2137.487400] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2137.488095] ? __fget_files+0x296/0x4c0 [ 2137.488622] ? __fget_light+0xea/0x290 [ 2137.489132] __sys_sendmsg+0xe5/0x1b0 [ 2137.489624] ? __sys_sendmsg_sock+0x40/0x40 [ 2137.490199] ? io_schedule_timeout+0x140/0x140 [ 2137.490814] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2137.491497] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2137.492173] ? trace_hardirqs_on+0x5b/0x180 [ 2137.492751] do_syscall_64+0x33/0x40 [ 2137.493242] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2137.493917] RIP: 0033:0x7fd54fedeb19 [ 2137.494401] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2137.496825] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2137.497836] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 2137.498805] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2137.499758] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2137.500712] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2137.501649] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 21:27:43 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xffffff81, 0x0, 0x0, 0x0) 21:27:43 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x80ffffff, 0x0, 0x0, 0x0) 21:27:43 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x500, 0x0, 0x0, 0x0) 21:27:43 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x5000000, 0x0, 0x0, 0x0) 21:27:43 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x6c, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 21:27:43 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xce020000, 0x0, 0x0, 0x0) 21:27:43 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x8000000, 0x0, 0x0, 0x0) 21:27:43 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xcc0, 0x0, 0x0, 0x0) 21:27:43 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xf5ffffff, 0x0, 0x0, 0x0) 21:27:43 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x20000000, 0x0, 0x0, 0x0) 21:27:43 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xe4ffffff, 0x0, 0x0, 0x0) [ 2137.705853] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2137.706943] CPU: 0 PID: 12374 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2137.707735] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2137.708619] Call Trace: [ 2137.708909] dump_stack+0x107/0x167 [ 2137.709314] sysfs_warn_dup.cold+0x1c/0x29 [ 2137.709767] sysfs_do_create_link_sd+0x122/0x140 [ 2137.710276] sysfs_create_link+0x5f/0xc0 [ 2137.710712] device_add+0x703/0x1c50 [ 2137.711115] ? ieee80211_set_bitrate_flags+0x3c3/0x620 21:27:43 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xffffffe4, 0x0, 0x0, 0x0) [ 2137.711674] ? devlink_add_symlinks+0x970/0x970 [ 2137.712293] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2137.712858] wiphy_register+0x1da6/0x2850 [ 2137.713310] ? wiphy_unregister+0xb90/0xb90 [ 2137.713785] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2137.714373] ieee80211_register_hw+0x23c5/0x38b0 [ 2137.714902] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2137.715421] ? net_generic+0xdb/0x2b0 [ 2137.715836] ? lockdep_init_map_type+0x2c7/0x780 [ 2137.716364] ? memset+0x20/0x50 [ 2137.716739] ? __hrtimer_init+0x12c/0x270 [ 2137.717215] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2137.717797] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2137.718324] ? hwsim_new_radio_nl+0x967/0x1080 [ 2137.718857] ? memcpy+0x39/0x60 [ 2137.719236] hwsim_new_radio_nl+0x991/0x1080 [ 2137.719740] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2137.720320] ? trace_hardirqs_on+0x5b/0x180 [ 2137.720827] genl_family_rcv_msg_doit+0x22d/0x330 [ 2137.721373] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2137.722131] ? cap_capable+0x1cd/0x230 [ 2137.722611] ? ns_capable+0xe2/0x110 [ 2137.723040] genl_rcv_msg+0x33c/0x5a0 [ 2137.723471] ? genl_get_cmd+0x480/0x480 [ 2137.723924] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2137.724509] ? lock_release+0x680/0x680 [ 2137.724951] ? __lockdep_reset_lock+0x180/0x180 [ 2137.725478] netlink_rcv_skb+0x14b/0x430 [ 2137.725931] ? genl_get_cmd+0x480/0x480 [ 2137.726395] ? netlink_ack+0xab0/0xab0 [ 2137.726842] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2137.727357] ? is_vmalloc_addr+0x7b/0xb0 [ 2137.727823] genl_rcv+0x24/0x40 [ 2137.728186] netlink_unicast+0x549/0x7f0 [ 2137.728646] ? netlink_attachskb+0x870/0x870 [ 2137.729140] ? __virt_addr_valid+0x128/0x350 [ 2137.729647] netlink_sendmsg+0x90f/0xdf0 [ 2137.730116] ? netlink_unicast+0x7f0/0x7f0 [ 2137.730608] ? netlink_unicast+0x7f0/0x7f0 [ 2137.731092] __sock_sendmsg+0x154/0x190 [ 2137.731544] ____sys_sendmsg+0x70d/0x870 [ 2137.732009] ? sock_write_iter+0x3d0/0x3d0 [ 2137.732478] ? do_recvmmsg+0x6d0/0x6d0 [ 2137.732920] ? perf_trace_lock+0xac/0x490 [ 2137.733393] ? __lockdep_reset_lock+0x180/0x180 [ 2137.733916] ? perf_trace_lock+0xac/0x490 [ 2137.734399] ___sys_sendmsg+0xf3/0x170 [ 2137.734833] ? sendmsg_copy_msghdr+0x160/0x160 [ 2137.735348] ? lock_downgrade+0x6d0/0x6d0 [ 2137.735816] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2137.736400] ? trace_hardirqs_on+0x5b/0x180 [ 2137.736895] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2137.737505] ? __fget_files+0x296/0x4c0 [ 2137.737956] ? __fget_light+0xea/0x290 [ 2137.738411] __sys_sendmsg+0xe5/0x1b0 [ 2137.738837] ? __sys_sendmsg_sock+0x40/0x40 [ 2137.739321] ? io_schedule_timeout+0x140/0x140 [ 2137.739850] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2137.740436] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2137.741002] ? trace_hardirqs_on+0x5b/0x180 [ 2137.741486] do_syscall_64+0x33/0x40 [ 2137.741901] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2137.742482] RIP: 0033:0x7fd54fedeb19 [ 2137.742914] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2137.745267] RSP: 002b:00007fd54d433188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2137.746126] RAX: ffffffffffffffda RBX: 00007fd54fff2020 RCX: 00007fd54fedeb19 [ 2137.746929] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2137.747717] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2137.748536] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2137.749327] R13: 00007fff36540caf R14: 00007fd54d433300 R15: 0000000000022000 21:27:43 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x81ffffff, 0x0, 0x0, 0x0) 21:27:44 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xfffffff5, 0x0, 0x0, 0x0) 21:27:44 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x1b03, 0x0, 0x0, 0x0) 21:27:44 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xffffff80, 0x0, 0x0, 0x0) 21:27:44 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x3f000000, 0x0, 0x0, 0x0) 21:27:44 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xfffffff5, 0x0, 0x0, 0x0) 21:27:44 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x2, 0x0, 0x0) 21:27:44 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x2000, 0x0, 0x0, 0x0) 21:27:44 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x74, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 21:27:44 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xc00c0000, 0x0, 0x0, 0x0) [ 2138.049753] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2138.050784] CPU: 0 PID: 12427 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2138.051548] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2138.052465] Call Trace: [ 2138.052771] dump_stack+0x107/0x167 [ 2138.053191] sysfs_warn_dup.cold+0x1c/0x29 [ 2138.053666] sysfs_do_create_link_sd+0x122/0x140 [ 2138.054208] sysfs_create_link+0x5f/0xc0 [ 2138.054666] device_add+0x703/0x1c50 [ 2138.055079] ? devlink_add_symlinks+0x970/0x970 [ 2138.055594] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2138.056185] wiphy_register+0x1da6/0x2850 [ 2138.056658] ? wiphy_unregister+0xb90/0xb90 [ 2138.057146] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2138.057754] ieee80211_register_hw+0x23c5/0x38b0 [ 2138.058301] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2138.058848] ? trace_hardirqs_on+0x5b/0x180 [ 2138.059346] ? __hrtimer_init+0x12c/0x270 [ 2138.059824] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2138.060431] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2138.060978] ? hwsim_new_radio_nl+0x967/0x1080 [ 2138.061513] ? memcpy+0x39/0x60 [ 2138.061903] hwsim_new_radio_nl+0x991/0x1080 [ 2138.062417] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2138.063027] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2138.063781] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2138.064541] genl_family_rcv_msg_doit+0x22d/0x330 [ 2138.065116] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2138.065892] ? cap_capable+0x1cd/0x230 [ 2138.066380] ? ns_capable+0xe2/0x110 [ 2138.066816] genl_rcv_msg+0x33c/0x5a0 [ 2138.067265] ? genl_get_cmd+0x480/0x480 [ 2138.067730] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2138.068328] ? lock_release+0x680/0x680 [ 2138.068795] ? __lockdep_reset_lock+0x180/0x180 [ 2138.069340] netlink_rcv_skb+0x14b/0x430 [ 2138.069788] ? genl_get_cmd+0x480/0x480 [ 2138.070251] ? netlink_ack+0xab0/0xab0 [ 2138.070720] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2138.071243] ? is_vmalloc_addr+0x7b/0xb0 [ 2138.071720] genl_rcv+0x24/0x40 [ 2138.072114] netlink_unicast+0x549/0x7f0 [ 2138.072609] ? netlink_attachskb+0x870/0x870 [ 2138.073126] ? __virt_addr_valid+0x128/0x350 [ 2138.073657] netlink_sendmsg+0x90f/0xdf0 [ 2138.074152] ? netlink_unicast+0x7f0/0x7f0 [ 2138.074660] ? netlink_unicast+0x7f0/0x7f0 [ 2138.075150] __sock_sendmsg+0x154/0x190 [ 2138.075612] ____sys_sendmsg+0x70d/0x870 [ 2138.076103] ? sock_write_iter+0x3d0/0x3d0 [ 2138.076599] ? do_recvmmsg+0x6d0/0x6d0 [ 2138.077058] ? perf_trace_lock+0xac/0x490 [ 2138.077552] ? __lockdep_reset_lock+0x180/0x180 [ 2138.078095] ? perf_trace_lock+0xac/0x490 [ 2138.078598] ___sys_sendmsg+0xf3/0x170 [ 2138.079063] ? sendmsg_copy_msghdr+0x160/0x160 [ 2138.079598] ? lock_downgrade+0x6d0/0x6d0 [ 2138.080048] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2138.080651] ? trace_hardirqs_on+0x5b/0x180 [ 2138.081153] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2138.081788] ? __fget_files+0x296/0x4c0 [ 2138.082264] ? __fget_light+0xea/0x290 [ 2138.082722] __sys_sendmsg+0xe5/0x1b0 [ 2138.083168] ? __sys_sendmsg_sock+0x40/0x40 [ 2138.083669] ? io_schedule_timeout+0x140/0x140 [ 2138.084212] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2138.084819] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2138.085407] ? trace_hardirqs_on+0x5b/0x180 [ 2138.085936] do_syscall_64+0x33/0x40 [ 2138.086380] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2138.086995] RIP: 0033:0x7fd54fedeb19 [ 2138.087419] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2138.089608] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2138.090464] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 2138.091287] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2138.092110] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2138.092935] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2138.093758] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 [ 2138.202441] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2138.204936] CPU: 1 PID: 12434 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2138.206360] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2138.208051] Call Trace: [ 2138.208596] dump_stack+0x107/0x167 [ 2138.209355] sysfs_warn_dup.cold+0x1c/0x29 [ 2138.210255] sysfs_do_create_link_sd+0x122/0x140 [ 2138.211235] sysfs_create_link+0x5f/0xc0 [ 2138.212058] device_add+0x703/0x1c50 [ 2138.212813] ? devlink_add_symlinks+0x970/0x970 [ 2138.213746] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2138.214818] wiphy_register+0x1da6/0x2850 [ 2138.215670] ? wiphy_unregister+0xb90/0xb90 [ 2138.216557] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2138.217636] ieee80211_register_hw+0x23c5/0x38b0 [ 2138.218631] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2138.219604] ? net_generic+0xdb/0x2b0 [ 2138.220387] ? lockdep_init_map_type+0x2c7/0x780 [ 2138.221352] ? memset+0x20/0x50 [ 2138.222028] ? __hrtimer_init+0x12c/0x270 [ 2138.222908] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2138.223957] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2138.224902] ? hwsim_new_radio_nl+0x967/0x1080 [ 2138.225838] ? memcpy+0x39/0x60 [ 2138.226532] hwsim_new_radio_nl+0x991/0x1080 [ 2138.227438] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2138.228516] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2138.229831] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2138.231157] genl_family_rcv_msg_doit+0x22d/0x330 [ 2138.232135] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2138.233452] ? cap_capable+0x1cd/0x230 [ 2138.234271] ? ns_capable+0xe2/0x110 [ 2138.235023] genl_rcv_msg+0x33c/0x5a0 [ 2138.235796] ? genl_get_cmd+0x480/0x480 [ 2138.236598] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2138.237651] ? lock_release+0x680/0x680 [ 2138.238470] ? __lockdep_reset_lock+0x180/0x180 [ 2138.239424] netlink_rcv_skb+0x14b/0x430 [ 2138.240254] ? genl_get_cmd+0x480/0x480 [ 2138.241072] ? netlink_ack+0xab0/0xab0 [ 2138.241889] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2138.242835] ? is_vmalloc_addr+0x7b/0xb0 [ 2138.243670] genl_rcv+0x24/0x40 [ 2138.244347] netlink_unicast+0x549/0x7f0 [ 2138.245192] ? netlink_attachskb+0x870/0x870 [ 2138.246100] ? __virt_addr_valid+0x128/0x350 [ 2138.247010] netlink_sendmsg+0x90f/0xdf0 [ 2138.247863] ? netlink_unicast+0x7f0/0x7f0 [ 2138.248731] ? netlink_unicast+0x7f0/0x7f0 [ 2138.249591] __sock_sendmsg+0x154/0x190 [ 2138.250430] ____sys_sendmsg+0x70d/0x870 [ 2138.251267] ? sock_write_iter+0x3d0/0x3d0 [ 2138.252115] ? do_recvmmsg+0x6d0/0x6d0 [ 2138.252903] ? perf_trace_lock+0xac/0x490 [ 2138.253742] ? __lockdep_reset_lock+0x180/0x180 [ 2138.254707] ___sys_sendmsg+0xf3/0x170 [ 2138.255500] ? sendmsg_copy_msghdr+0x160/0x160 [ 2138.256450] ? lock_downgrade+0x6d0/0x6d0 [ 2138.257278] ? find_held_lock+0x2c/0x110 [ 2138.258099] ? clockevents_program_event+0x14b/0x360 [ 2138.259142] ? __fget_files+0x296/0x4c0 [ 2138.259955] ? __fget_light+0xea/0x290 [ 2138.260748] __sys_sendmsg+0xe5/0x1b0 [ 2138.261521] ? __sys_sendmsg_sock+0x40/0x40 [ 2138.262394] ? trace_hardirqs_on+0x5b/0x180 [ 2138.263278] ? __sys_sendmsg+0x1b0/0x1b0 [ 2138.264108] ? __x64_sys_sendmsg+0x1/0xb0 [ 2138.264960] do_syscall_64+0x33/0x40 [ 2138.265722] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2138.266774] RIP: 0033:0x7fd54fedeb19 [ 2138.267545] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2138.271314] RSP: 002b:00007fd54d433188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2138.272867] RAX: ffffffffffffffda RBX: 00007fd54fff2020 RCX: 00007fd54fedeb19 [ 2138.274305] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2138.275723] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2138.277138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2138.278574] R13: 00007fff36540caf R14: 00007fd54d433300 R15: 0000000000022000 21:28:03 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x7a, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 21:28:03 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xde2c0000, 0x0, 0x0, 0x0) 21:28:03 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xf5ffffff, 0x0, 0x0, 0x0) 21:28:03 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xffffff81, 0x0, 0x0, 0x0) 21:28:03 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x40000000, 0x0, 0x0, 0x0) 21:28:03 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x3, 0x0, 0x0) 21:28:03 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x2ed2, 0x0, 0x0, 0x0) 21:28:03 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x2, 0x0, 0x0) [ 2157.203349] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2157.206362] CPU: 1 PID: 12457 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2157.207782] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2157.209485] Call Trace: [ 2157.210059] dump_stack+0x107/0x167 [ 2157.210850] sysfs_warn_dup.cold+0x1c/0x29 [ 2157.211729] sysfs_do_create_link_sd+0x122/0x140 [ 2157.212683] sysfs_create_link+0x5f/0xc0 [ 2157.213502] device_add+0x703/0x1c50 [ 2157.214256] ? devlink_add_symlinks+0x970/0x970 [ 2157.215229] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2157.216309] wiphy_register+0x1da6/0x2850 [ 2157.217163] ? wiphy_unregister+0xb90/0xb90 [ 2157.218026] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2157.219107] ieee80211_register_hw+0x23c5/0x38b0 [ 2157.220132] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2157.221084] ? net_generic+0xdb/0x2b0 [ 2157.221855] ? lockdep_init_map_type+0x2c7/0x780 [ 2157.222821] ? memset+0x20/0x50 [ 2157.223476] ? __hrtimer_init+0x12c/0x270 [ 2157.224299] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2157.225310] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2157.226229] ? hwsim_new_radio_nl+0x967/0x1080 [ 2157.227161] ? memcpy+0x39/0x60 [ 2157.227848] hwsim_new_radio_nl+0x991/0x1080 [ 2157.228737] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2157.229779] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2157.231090] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2157.232389] genl_family_rcv_msg_doit+0x22d/0x330 [ 2157.233347] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2157.234659] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2157.235692] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2157.236773] ? genl_rcv_msg+0x30c/0x5a0 [ 2157.237560] genl_rcv_msg+0x33c/0x5a0 [ 2157.238326] ? genl_get_cmd+0x480/0x480 [ 2157.239194] ? lock_acquire+0x1b9/0x470 [ 2157.239985] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2157.241046] ? lock_release+0x680/0x680 [ 2157.241839] netlink_rcv_skb+0x14b/0x430 [ 2157.242659] ? genl_get_cmd+0x480/0x480 [ 2157.243448] ? netlink_ack+0xab0/0xab0 [ 2157.244268] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2157.245172] ? is_vmalloc_addr+0x7b/0xb0 [ 2157.246014] genl_rcv+0x24/0x40 [ 2157.246712] netlink_unicast+0x549/0x7f0 [ 2157.247540] ? netlink_attachskb+0x870/0x870 [ 2157.248408] ? __virt_addr_valid+0x128/0x350 [ 2157.249296] netlink_sendmsg+0x90f/0xdf0 [ 2157.250115] ? netlink_unicast+0x7f0/0x7f0 [ 2157.251005] ? netlink_unicast+0x7f0/0x7f0 [ 2157.251846] __sock_sendmsg+0x154/0x190 [ 2157.252653] ____sys_sendmsg+0x70d/0x870 [ 2157.253487] ? trace_hardirqs_on+0x5b/0x180 [ 2157.254379] ? sock_write_iter+0x3d0/0x3d0 [ 2157.255245] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2157.256370] ___sys_sendmsg+0xf3/0x170 [ 2157.257174] ? sendmsg_copy_msghdr+0x160/0x160 [ 2157.258116] ? lock_downgrade+0x6d0/0x6d0 [ 2157.258988] ? __fget_files+0x1a0/0x4c0 [ 2157.259827] ? __fget_files+0x296/0x4c0 [ 2157.260656] ? __fget_light+0xea/0x290 [ 2157.261448] __sys_sendmsg+0xe5/0x1b0 [ 2157.262225] ? __sys_sendmsg_sock+0x40/0x40 [ 2157.263102] ? trace_hardirqs_on+0x5b/0x180 [ 2157.264000] ? __sys_sendmsg+0x1b0/0x1b0 [ 2157.264819] ? __x64_sys_sendmsg+0x1/0xb0 [ 2157.265669] do_syscall_64+0x33/0x40 [ 2157.266426] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2157.267468] RIP: 0033:0x7fd54fedeb19 [ 2157.268228] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2157.272055] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2157.273571] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 2157.275026] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2157.276442] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2157.277865] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2157.279299] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 21:28:03 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xffffffe4, 0x0, 0x0, 0x0) 21:28:03 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xe4ffffff, 0x0, 0x0, 0x0) 21:28:03 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x3f00, 0x0, 0x0, 0x0) 21:28:03 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x3, 0x0, 0x0) 21:28:03 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x4, 0x0, 0x0) 21:28:19 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xa0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 21:28:19 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x80ffffff, 0x0, 0x0, 0x0) 21:28:19 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x5, 0x0, 0x0) 21:28:19 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x4000, 0x0, 0x0, 0x0) 21:28:19 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xffffff80, 0x0, 0x0, 0x0) 21:28:19 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xfffffff5, 0x0, 0x0, 0x0) 21:28:19 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xf5ffffff, 0x0, 0x0, 0x0) 21:28:19 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x4, 0x0, 0x0) 21:28:20 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xffffff81, 0x0, 0x0, 0x0) 21:28:20 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x2, 0x0, 0x0) [ 2173.825450] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2173.827327] CPU: 1 PID: 12508 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2173.828740] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2173.830388] Call Trace: [ 2173.830933] dump_stack+0x107/0x167 [ 2173.831684] sysfs_warn_dup.cold+0x1c/0x29 [ 2173.832530] sysfs_do_create_link_sd+0x122/0x140 [ 2173.833481] sysfs_create_link+0x5f/0xc0 [ 2173.834296] device_add+0x703/0x1c50 [ 2173.835101] ? devlink_add_symlinks+0x970/0x970 [ 2173.836039] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2173.837104] wiphy_register+0x1da6/0x2850 [ 2173.837953] ? wiphy_unregister+0xb90/0xb90 [ 2173.838891] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2173.839968] ieee80211_register_hw+0x23c5/0x38b0 [ 2173.840981] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2173.841942] ? net_generic+0xdb/0x2b0 [ 2173.842771] ? lockdep_init_map_type+0x2c7/0x780 [ 2173.843738] ? memset+0x20/0x50 [ 2173.844430] ? __hrtimer_init+0x12c/0x270 [ 2173.845265] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2173.846333] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2173.847273] ? hwsim_new_radio_nl+0x967/0x1080 [ 2173.848190] ? memcpy+0x39/0x60 [ 2173.848864] hwsim_new_radio_nl+0x991/0x1080 [ 2173.849776] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2173.850854] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2173.852209] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2173.853522] genl_family_rcv_msg_doit+0x22d/0x330 [ 2173.854497] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2173.855840] ? cap_capable+0x1cd/0x230 [ 2173.856647] ? ns_capable+0xe2/0x110 [ 2173.857414] genl_rcv_msg+0x33c/0x5a0 [ 2173.858189] ? genl_get_cmd+0x480/0x480 [ 2173.859016] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2173.860054] ? lock_release+0x680/0x680 [ 2173.860850] ? __lockdep_reset_lock+0x180/0x180 [ 2173.861801] netlink_rcv_skb+0x14b/0x430 [ 2173.862652] ? genl_get_cmd+0x480/0x480 [ 2173.863455] ? netlink_ack+0xab0/0xab0 [ 2173.864286] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2173.865196] ? is_vmalloc_addr+0x7b/0xb0 [ 2173.866044] genl_rcv+0x24/0x40 [ 2173.866715] netlink_unicast+0x549/0x7f0 [ 2173.867566] ? netlink_attachskb+0x870/0x870 [ 2173.868474] ? __virt_addr_valid+0x128/0x350 [ 2173.869372] netlink_sendmsg+0x90f/0xdf0 [ 2173.870209] ? netlink_unicast+0x7f0/0x7f0 [ 2173.871119] ? netlink_unicast+0x7f0/0x7f0 [ 2173.871982] __sock_sendmsg+0x154/0x190 [ 2173.872803] ____sys_sendmsg+0x70d/0x870 [ 2173.873630] ? sock_write_iter+0x3d0/0x3d0 [ 2173.874501] ? do_recvmmsg+0x6d0/0x6d0 [ 2173.875315] ? perf_trace_lock+0xac/0x490 [ 2173.876181] ? __lockdep_reset_lock+0x180/0x180 [ 2173.877136] ___sys_sendmsg+0xf3/0x170 [ 2173.877918] ? sendmsg_copy_msghdr+0x160/0x160 [ 2173.878883] ? lock_downgrade+0x6d0/0x6d0 [ 2173.879732] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2173.880812] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2173.881918] ? trace_hardirqs_on+0x5b/0x180 [ 2173.882836] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2173.884049] __sys_sendmsg+0xe5/0x1b0 [ 2173.884896] ? __sys_sendmsg_sock+0x40/0x40 [ 2173.885825] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2173.886933] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2173.887972] ? trace_hardirqs_on+0x5b/0x180 [ 2173.888901] do_syscall_64+0x33/0x40 [ 2173.889742] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2173.890880] RIP: 0033:0x7fd54fedeb19 [ 2173.891707] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2173.895684] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2173.897209] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 2173.898691] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2173.900116] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2173.901590] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2173.903041] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 21:28:20 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xffffff80, 0x0, 0x0, 0x0) 21:28:20 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x81ffffff, 0x0, 0x0, 0x0) 21:28:20 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xffffffe4, 0x0, 0x0, 0x0) 21:28:20 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x3, 0x0, 0x0) 21:28:20 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xc00c, 0x0, 0x0, 0x0) 21:28:35 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xf0, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 21:28:35 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xfffffff5, 0x0, 0x0, 0x0) 21:28:35 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x5, 0x0, 0x0) 21:28:35 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xc00c0000, 0x0, 0x0, 0x0) 21:28:35 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x8, 0x0, 0x0) 21:28:35 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xffffff81, 0x0, 0x0, 0x0) 21:28:35 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xd22e, 0x0, 0x0, 0x0) 21:28:35 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x4, 0x0, 0x0) [ 2189.011423] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2189.013270] CPU: 0 PID: 12586 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2189.014754] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2189.016424] Call Trace: [ 2189.016987] dump_stack+0x107/0x167 [ 2189.017758] sysfs_warn_dup.cold+0x1c/0x29 [ 2189.018655] sysfs_do_create_link_sd+0x122/0x140 [ 2189.019673] sysfs_create_link+0x5f/0xc0 [ 2189.020539] device_add+0x703/0x1c50 [ 2189.021338] ? devlink_add_symlinks+0x970/0x970 [ 2189.022318] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2189.023429] wiphy_register+0x1da6/0x2850 [ 2189.024313] ? wiphy_unregister+0xb90/0xb90 [ 2189.025213] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2189.026357] ? ieee80211_register_hw+0x239f/0x38b0 [ 2189.027431] ieee80211_register_hw+0x23c5/0x38b0 [ 2189.028443] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2189.029464] ? net_generic+0xdb/0x2b0 [ 2189.030270] ? lockdep_init_map_type+0x2c7/0x780 [ 2189.031287] ? memset+0x20/0x50 [ 2189.031983] ? __hrtimer_init+0x12c/0x270 [ 2189.032880] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2189.033958] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2189.034956] ? hwsim_new_radio_nl+0x967/0x1080 [ 2189.035909] ? memcpy+0x39/0x60 [ 2189.036592] hwsim_new_radio_nl+0x991/0x1080 [ 2189.037510] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2189.038611] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2189.039995] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2189.041329] genl_family_rcv_msg_doit+0x22d/0x330 [ 2189.042337] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2189.043731] ? cap_capable+0x1cd/0x230 [ 2189.044535] ? ns_capable+0xe2/0x110 [ 2189.045330] genl_rcv_msg+0x33c/0x5a0 [ 2189.046146] ? genl_get_cmd+0x480/0x480 [ 2189.046984] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2189.048076] ? lock_release+0x680/0x680 [ 2189.048899] ? __lockdep_reset_lock+0x180/0x180 [ 2189.049891] netlink_rcv_skb+0x14b/0x430 [ 2189.050756] ? genl_get_cmd+0x480/0x480 [ 2189.051605] ? netlink_ack+0xab0/0xab0 [ 2189.052428] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2189.053400] ? is_vmalloc_addr+0x7b/0xb0 [ 2189.054256] genl_rcv+0x24/0x40 [ 2189.054956] netlink_unicast+0x549/0x7f0 [ 2189.055817] ? netlink_attachskb+0x870/0x870 [ 2189.056729] ? __virt_addr_valid+0x128/0x350 [ 2189.057650] netlink_sendmsg+0x90f/0xdf0 [ 2189.058508] ? netlink_unicast+0x7f0/0x7f0 [ 2189.059405] ? netlink_unicast+0x7f0/0x7f0 [ 2189.060281] __sock_sendmsg+0x154/0x190 [ 2189.061096] ____sys_sendmsg+0x70d/0x870 [ 2189.061947] ? sock_write_iter+0x3d0/0x3d0 [ 2189.062821] ? do_recvmmsg+0x6d0/0x6d0 [ 2189.063622] ? perf_trace_lock+0xac/0x490 [ 2189.064466] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2189.065576] ? __lockdep_reset_lock+0x180/0x180 [ 2189.066574] ___sys_sendmsg+0xf3/0x170 [ 2189.067407] ? sendmsg_copy_msghdr+0x160/0x160 [ 2189.068366] ? lock_downgrade+0x6d0/0x6d0 [ 2189.069232] ? find_held_lock+0x2c/0x110 [ 2189.070094] ? clockevents_program_event+0x14b/0x360 [ 2189.071199] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2189.072292] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2189.073417] ? trace_hardirqs_on+0x5b/0x180 [ 2189.074324] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2189.075493] __sys_sendmsg+0xe5/0x1b0 [ 2189.076292] ? __sys_sendmsg_sock+0x40/0x40 [ 2189.077218] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2189.078322] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2189.079405] ? trace_hardirqs_on+0x5b/0x180 [ 2189.080318] do_syscall_64+0x33/0x40 [ 2189.081106] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2189.082176] RIP: 0033:0x7fd54fedeb19 [ 2189.082989] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2189.086707] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2189.088336] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 2189.089852] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2189.091391] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2189.092925] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2189.094457] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 21:28:35 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x2, 0x0, 0x0) 21:28:35 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xffffffe4, 0x0, 0x0, 0x0) 21:28:35 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xe4ffffff, 0x0, 0x0, 0x0) 21:28:35 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x8, 0x0, 0x0) 21:28:35 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x5, 0x0, 0x0) 21:28:35 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x800000, 0x0, 0x0, 0x0) 21:28:35 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x300, 0x0, 0x0) 21:28:35 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xe92c0000, 0x0, 0x0, 0x0) 21:28:51 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xfffffff5, 0x0, 0x0, 0x0) 21:28:51 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x3, 0x0, 0x0) 21:28:51 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xf5ffffff, 0x0, 0x0, 0x0) 21:28:51 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x289, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 21:28:51 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x2000000, 0x0, 0x0, 0x0) 21:28:51 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x31b, 0x0, 0x0) 21:28:51 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x203, 0x0, 0x0) 21:28:51 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x8, 0x0, 0x0) 21:28:51 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x500, 0x0, 0x0) 21:28:51 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x2ed, 0x0, 0x0) [ 2205.158361] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2205.161266] CPU: 0 PID: 12659 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2205.162703] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2205.164443] Call Trace: [ 2205.165025] dump_stack+0x107/0x167 [ 2205.165799] sysfs_warn_dup.cold+0x1c/0x29 [ 2205.166701] sysfs_do_create_link_sd+0x122/0x140 [ 2205.167697] sysfs_create_link+0x5f/0xc0 [ 2205.168552] device_add+0x703/0x1c50 [ 2205.169338] ? devlink_add_symlinks+0x970/0x970 [ 2205.170307] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2205.171428] wiphy_register+0x1da6/0x2850 [ 2205.172304] ? wiphy_unregister+0xb90/0xb90 [ 2205.173227] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2205.174336] ieee80211_register_hw+0x23c5/0x38b0 [ 2205.175370] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2205.176365] ? net_generic+0xdb/0x2b0 [ 2205.177183] ? lockdep_init_map_type+0x2c7/0x780 [ 2205.178182] ? memset+0x20/0x50 [ 2205.178884] ? __hrtimer_init+0x12c/0x270 [ 2205.179754] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2205.180827] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2205.181797] ? hwsim_new_radio_nl+0x967/0x1080 [ 2205.182756] ? memcpy+0x39/0x60 [ 2205.183465] hwsim_new_radio_nl+0x991/0x1080 [ 2205.184396] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2205.185509] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2205.186889] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2205.188263] genl_family_rcv_msg_doit+0x22d/0x330 [ 2205.189282] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2205.190667] ? cap_capable+0x1cd/0x230 [ 2205.191512] ? ns_capable+0xe2/0x110 [ 2205.192302] genl_rcv_msg+0x33c/0x5a0 [ 2205.193109] ? genl_get_cmd+0x480/0x480 [ 2205.193944] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2205.195036] ? lock_release+0x680/0x680 [ 2205.195874] ? __lockdep_reset_lock+0x180/0x180 [ 2205.196832] netlink_rcv_skb+0x14b/0x430 [ 2205.197684] ? genl_get_cmd+0x480/0x480 [ 2205.198502] ? netlink_ack+0xab0/0xab0 [ 2205.199351] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2205.200284] ? is_vmalloc_addr+0x7b/0xb0 [ 2205.201136] genl_rcv+0x24/0x40 [ 2205.201847] netlink_unicast+0x549/0x7f0 [ 2205.202708] ? netlink_attachskb+0x870/0x870 [ 2205.203633] ? __virt_addr_valid+0x128/0x350 [ 2205.204567] netlink_sendmsg+0x90f/0xdf0 [ 2205.205421] ? netlink_unicast+0x7f0/0x7f0 [ 2205.206327] ? netlink_unicast+0x7f0/0x7f0 [ 2205.207224] __sock_sendmsg+0x154/0x190 [ 2205.208057] ____sys_sendmsg+0x70d/0x870 [ 2205.208912] ? sock_write_iter+0x3d0/0x3d0 [ 2205.209789] ? do_recvmmsg+0x6d0/0x6d0 [ 2205.210602] ? perf_trace_lock+0xac/0x490 [ 2205.211475] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2205.212608] ? __lockdep_reset_lock+0x180/0x180 [ 2205.213587] ___sys_sendmsg+0xf3/0x170 [ 2205.214401] ? sendmsg_copy_msghdr+0x160/0x160 [ 2205.215386] ? lock_downgrade+0x6d0/0x6d0 [ 2205.216230] ? find_held_lock+0x2c/0x110 [ 2205.217089] ? clockevents_program_event+0x14b/0x360 [ 2205.218129] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2205.219227] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2205.220325] ? trace_hardirqs_on+0x5b/0x180 [ 2205.221213] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2205.222337] __sys_sendmsg+0xe5/0x1b0 [ 2205.223131] ? __sys_sendmsg_sock+0x40/0x40 [ 2205.224007] ? trace_hardirqs_on+0x5b/0x180 [ 2205.224908] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2205.225955] ? syscall_enter_from_user_mode+0x27/0x50 [ 2205.227031] do_syscall_64+0x33/0x40 [ 2205.227784] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2205.228847] RIP: 0033:0x7fd54fedeb19 [ 2205.229605] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2205.233317] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2205.234840] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 2205.236294] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2205.237726] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2205.239186] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2205.240661] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 21:28:51 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x300, 0x0, 0x0) 21:28:51 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x300, 0x0, 0x0) 21:28:51 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x2, 0x0, 0x0) 21:28:51 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x4, 0x0, 0x0) 21:28:51 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xfb020000, 0x0, 0x0, 0x0) 21:29:06 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x302, 0x0, 0x0) 21:29:06 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xcc0, 0x0, 0x0) 21:29:06 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x300, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 21:29:06 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xffffff80, 0x0, 0x0, 0x0) 21:29:06 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x500, 0x0, 0x0) 21:29:06 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x3, 0x0, 0x0) 21:29:06 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x5, 0x0, 0x0) 21:29:06 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x3000000, 0x0, 0x0, 0x0) 21:29:06 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x500, 0x0, 0x0) 21:29:06 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xcc0, 0x0, 0x0) [ 2220.086152] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2220.089249] CPU: 0 PID: 12719 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2220.090680] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2220.092431] Call Trace: [ 2220.092991] dump_stack+0x107/0x167 [ 2220.093764] sysfs_warn_dup.cold+0x1c/0x29 [ 2220.094647] sysfs_do_create_link_sd+0x122/0x140 [ 2220.095648] sysfs_create_link+0x5f/0xc0 [ 2220.096525] device_add+0x703/0x1c50 [ 2220.097310] ? devlink_add_symlinks+0x970/0x970 [ 2220.098286] ? __mutex_lock+0x4fe/0x10b0 [ 2220.099176] wiphy_register+0x1da6/0x2850 [ 2220.100074] ? wiphy_unregister+0xb90/0xb90 [ 2220.101021] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2220.102146] ieee80211_register_hw+0x23c5/0x38b0 [ 2220.103175] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2220.104175] ? net_generic+0xdb/0x2b0 [ 2220.104971] ? lockdep_init_map_type+0x2c7/0x780 [ 2220.105965] ? memset+0x20/0x50 [ 2220.106654] ? __hrtimer_init+0x12c/0x270 [ 2220.107536] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2220.108605] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2220.109556] ? hwsim_new_radio_nl+0x967/0x1080 [ 2220.110510] ? memcpy+0x39/0x60 [ 2220.111205] hwsim_new_radio_nl+0x991/0x1080 [ 2220.112127] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2220.113236] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2220.114626] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2220.116026] genl_family_rcv_msg_doit+0x22d/0x330 [ 2220.117035] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2220.118400] ? security_capable+0x78/0xc0 [ 2220.119291] ? ns_capable+0xe2/0x110 [ 2220.120063] genl_rcv_msg+0x33c/0x5a0 [ 2220.120872] ? genl_get_cmd+0x480/0x480 [ 2220.121690] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2220.122816] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2220.123904] netlink_rcv_skb+0x14b/0x430 [ 2220.124750] ? genl_get_cmd+0x480/0x480 [ 2220.125589] ? netlink_ack+0xab0/0xab0 [ 2220.126428] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2220.127433] genl_rcv+0x24/0x40 [ 2220.128126] netlink_unicast+0x549/0x7f0 [ 2220.128974] ? netlink_attachskb+0x870/0x870 [ 2220.129903] netlink_sendmsg+0x90f/0xdf0 [ 2220.130760] ? netlink_unicast+0x7f0/0x7f0 [ 2220.131672] ? netlink_unicast+0x7f0/0x7f0 [ 2220.132549] __sock_sendmsg+0x154/0x190 [ 2220.133374] ____sys_sendmsg+0x70d/0x870 [ 2220.134227] ? sock_write_iter+0x3d0/0x3d0 [ 2220.135133] ? do_recvmmsg+0x6d0/0x6d0 [ 2220.135953] ? ___sys_sendmsg+0x8b/0x170 [ 2220.136804] ___sys_sendmsg+0xf3/0x170 [ 2220.137616] ? sendmsg_copy_msghdr+0x160/0x160 [ 2220.138581] ? lock_downgrade+0x6d0/0x6d0 [ 2220.139475] ? __fget_files+0x296/0x4c0 [ 2220.140319] ? __fget_light+0xea/0x290 [ 2220.141143] __sys_sendmsg+0xe5/0x1b0 [ 2220.141937] ? __sys_sendmsg_sock+0x40/0x40 [ 2220.142851] ? trace_hardirqs_on+0x5b/0x180 [ 2220.143807] ? __sys_sendmsg+0x1b0/0x1b0 [ 2220.144649] ? __x64_sys_sendmsg+0x1/0xb0 [ 2220.145536] do_syscall_64+0x33/0x40 [ 2220.146334] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2220.147435] RIP: 0033:0x7fd54fedeb19 [ 2220.148225] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2220.152100] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2220.153675] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 2220.155207] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2220.156710] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2220.158204] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2220.159741] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 21:29:06 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x4, 0x0, 0x0) 21:29:06 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xffffff81, 0x0, 0x0, 0x0) 21:29:06 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x8, 0x0, 0x0) 21:29:06 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x4000000, 0x0, 0x0, 0x0) 21:29:06 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xcc0, 0x0, 0x0) 21:29:06 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x1b03, 0x0, 0x0) 21:29:24 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x3e7, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 21:29:24 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x2000, 0x0, 0x0) 21:29:24 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x2ce, 0x0, 0x0) 21:29:24 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xffffffe4, 0x0, 0x0, 0x0) 21:29:24 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x5, 0x0, 0x0) 21:29:24 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x2000, 0x0, 0x0) 21:29:24 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x5000000, 0x0, 0x0, 0x0) 21:29:24 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x2000, 0x0, 0x0) 21:29:24 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x300, 0x0, 0x0) 21:29:24 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x2c5b, 0x0, 0x0) 21:29:24 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xfffffff5, 0x0, 0x0, 0x0) 21:29:24 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x8, 0x0, 0x0) 21:29:24 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x2c51, 0x0, 0x0) [ 2238.653350] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2238.654482] CPU: 0 PID: 12789 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2238.655372] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2238.656546] Call Trace: [ 2238.656930] dump_stack+0x107/0x167 [ 2238.657458] sysfs_warn_dup.cold+0x1c/0x29 [ 2238.658066] sysfs_do_create_link_sd+0x122/0x140 [ 2238.658708] sysfs_create_link+0x5f/0xc0 [ 2238.659247] device_add+0x703/0x1c50 [ 2238.659795] ? devlink_add_symlinks+0x970/0x970 [ 2238.660389] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2238.661068] wiphy_register+0x1da6/0x2850 [ 2238.661608] ? wiphy_unregister+0xb90/0xb90 [ 2238.662230] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2238.662924] ieee80211_register_hw+0x23c5/0x38b0 [ 2238.663565] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2238.664235] ? net_generic+0xdb/0x2b0 [ 2238.664786] ? lockdep_init_map_type+0x2c7/0x780 [ 2238.665454] ? memset+0x20/0x50 [ 2238.665885] ? __hrtimer_init+0x12c/0x270 [ 2238.666467] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2238.667184] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2238.667788] ? hwsim_new_radio_nl+0x967/0x1080 [ 2238.668431] ? memcpy+0x39/0x60 [ 2238.668903] hwsim_new_radio_nl+0x991/0x1080 [ 2238.669484] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2238.670159] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2238.671087] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2238.671937] genl_family_rcv_msg_doit+0x22d/0x330 [ 2238.672617] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2238.673503] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2238.674278] ? ns_capable+0xe2/0x110 [ 2238.674800] ? netlink_ns_capable+0xf5/0x130 [ 2238.675430] genl_rcv_msg+0x33c/0x5a0 [ 2238.675964] ? genl_get_cmd+0x480/0x480 [ 2238.676516] ? lock_acquire+0x1b9/0x470 [ 2238.677068] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2238.677793] ? lock_release+0x680/0x680 [ 2238.678350] ? __lockdep_reset_lock+0x180/0x180 [ 2238.679003] netlink_rcv_skb+0x14b/0x430 [ 2238.679583] ? genl_get_cmd+0x480/0x480 [ 2238.680135] ? netlink_ack+0xab0/0xab0 [ 2238.680685] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2238.681330] ? is_vmalloc_addr+0x7b/0xb0 [ 2238.681873] genl_rcv+0x24/0x40 [ 2238.682343] netlink_unicast+0x549/0x7f0 [ 2238.682918] ? netlink_attachskb+0x870/0x870 [ 2238.683579] netlink_sendmsg+0x90f/0xdf0 [ 2238.684153] ? netlink_unicast+0x7f0/0x7f0 [ 2238.684756] ? netlink_unicast+0x7f0/0x7f0 [ 2238.685327] __sock_sendmsg+0x154/0x190 [ 2238.685882] ____sys_sendmsg+0x70d/0x870 [ 2238.686458] ? trace_hardirqs_on+0x5b/0x180 [ 2238.687055] ? sock_write_iter+0x3d0/0x3d0 [ 2238.687651] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2238.688421] ___sys_sendmsg+0xf3/0x170 [ 2238.688966] ? sendmsg_copy_msghdr+0x160/0x160 [ 2238.689628] ? lock_downgrade+0x6d0/0x6d0 [ 2238.690219] ? __fget_files+0x5e/0x4c0 [ 2238.690777] ? __fget_files+0x296/0x4c0 [ 2238.691343] ? __fget_light+0xea/0x290 [ 2238.691912] __sys_sendmsg+0xe5/0x1b0 [ 2238.692442] ? __sys_sendmsg_sock+0x40/0x40 [ 2238.693069] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2238.693797] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2238.694500] ? trace_hardirqs_on+0x5b/0x180 [ 2238.695103] do_syscall_64+0x33/0x40 [ 2238.695629] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2238.696337] RIP: 0033:0x7fd54fedeb19 [ 2238.696857] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2238.699415] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2238.700469] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 2238.701472] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2238.702475] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2238.703470] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2238.704462] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 21:29:24 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x2c38, 0x0, 0x0) 21:29:25 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x500, 0x0, 0x0) 21:29:25 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x8000000, 0x0, 0x0, 0x0) 21:29:42 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x500, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 21:29:42 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x3f00, 0x0, 0x0) 21:29:42 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x1b030000, 0x0, 0x0, 0x0) 21:29:42 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x3f00, 0x0, 0x0) 21:29:42 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x382c, 0x0, 0x0) 21:29:42 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x2, 0x0, 0x0) 21:29:42 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x300, 0x0, 0x0) 21:29:42 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xcc0, 0x0, 0x0) [ 2256.483263] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2256.484844] CPU: 1 PID: 12849 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2256.485777] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2256.486847] Call Trace: [ 2256.487201] dump_stack+0x107/0x167 [ 2256.487707] sysfs_warn_dup.cold+0x1c/0x29 [ 2256.488261] sysfs_do_create_link_sd+0x122/0x140 [ 2256.488909] sysfs_create_link+0x5f/0xc0 [ 2256.489438] device_add+0x703/0x1c50 [ 2256.489932] ? devlink_add_symlinks+0x970/0x970 [ 2256.490537] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2256.491240] wiphy_register+0x1da6/0x2850 [ 2256.491814] ? wiphy_unregister+0xb90/0xb90 [ 2256.492394] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2256.493093] ieee80211_register_hw+0x23c5/0x38b0 [ 2256.493732] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2256.494347] ? net_generic+0xdb/0x2b0 [ 2256.494902] ? lockdep_init_map_type+0x2c7/0x780 [ 2256.495593] ? memset+0x20/0x50 [ 2256.496062] ? __hrtimer_init+0x12c/0x270 [ 2256.496664] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2256.497379] ? mark_held_locks+0x9e/0xe0 [ 2256.497976] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2256.498652] hwsim_new_radio_nl+0x991/0x1080 [ 2256.499285] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2256.500063] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2256.500997] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2256.501926] genl_family_rcv_msg_doit+0x22d/0x330 [ 2256.502609] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2256.503553] ? cap_capable+0x1cd/0x230 [ 2256.504145] ? ns_capable+0xe2/0x110 [ 2256.504676] genl_rcv_msg+0x33c/0x5a0 [ 2256.505230] ? genl_get_cmd+0x480/0x480 [ 2256.505733] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2256.506466] ? lock_release+0x680/0x680 [ 2256.507020] ? __lockdep_reset_lock+0x180/0x180 [ 2256.507722] netlink_rcv_skb+0x14b/0x430 [ 2256.508309] ? genl_get_cmd+0x480/0x480 [ 2256.508878] ? netlink_ack+0xab0/0xab0 [ 2256.509436] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2256.510087] ? netlink_unicast+0x1a2/0x7f0 [ 2256.510704] genl_rcv+0x24/0x40 [ 2256.511168] netlink_unicast+0x549/0x7f0 [ 2256.511762] ? netlink_attachskb+0x870/0x870 [ 2256.512389] ? __virt_addr_valid+0x128/0x350 [ 2256.513048] netlink_sendmsg+0x90f/0xdf0 [ 2256.513625] ? netlink_unicast+0x7f0/0x7f0 [ 2256.514240] ? netlink_unicast+0x7f0/0x7f0 [ 2256.514840] __sock_sendmsg+0x154/0x190 [ 2256.515406] ____sys_sendmsg+0x70d/0x870 [ 2256.516004] ? sock_write_iter+0x3d0/0x3d0 [ 2256.516600] ? do_recvmmsg+0x6d0/0x6d0 [ 2256.517151] ? perf_trace_lock+0xac/0x490 [ 2256.517750] ? __lockdep_reset_lock+0x180/0x180 [ 2256.518397] ? __lock_acquire+0xbb1/0x5b00 [ 2256.518998] ___sys_sendmsg+0xf3/0x170 [ 2256.519542] ? sendmsg_copy_msghdr+0x160/0x160 [ 2256.520207] ? lock_downgrade+0x6d0/0x6d0 [ 2256.520772] ? __lockdep_reset_lock+0x180/0x180 [ 2256.521404] ? futex_exit_release+0x220/0x220 [ 2256.522019] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2256.522731] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2256.523458] ? trace_hardirqs_on+0x5b/0x180 [ 2256.524053] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2256.524801] __sys_sendmsg+0xe5/0x1b0 [ 2256.525286] ? __sys_sendmsg_sock+0x40/0x40 [ 2256.525876] ? __do_sys_futex+0x2bb/0x480 [ 2256.526455] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2256.527160] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2256.527872] ? trace_hardirqs_on+0x5b/0x180 [ 2256.528458] do_syscall_64+0x33/0x40 [ 2256.528957] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2256.529648] RIP: 0033:0x7fd54fedeb19 [ 2256.530149] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2256.532627] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2256.533651] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 2256.534617] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2256.535583] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2256.536548] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2256.537514] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 21:29:42 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x4000, 0x0, 0x0) 21:29:42 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x4000, 0x0, 0x0) 21:29:42 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x3f00, 0x0, 0x0) 21:29:42 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x307, 0x0, 0x0) 21:29:42 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x3, 0x0, 0x0) 21:29:42 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x2000, 0x0, 0x0) 21:29:42 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x4000, 0x0, 0x0) 21:29:42 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x4, 0x0, 0x0) 21:29:57 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x5b2c, 0x0, 0x0) 21:29:57 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x512c, 0x0, 0x0) 21:29:57 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x20000000, 0x0, 0x0, 0x0) 21:29:57 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xc00c, 0x0, 0x0) 21:29:57 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x500, 0x0, 0x0) 21:29:57 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x2c3b, 0x0, 0x0) 21:29:57 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x5, 0x0, 0x0) 21:29:57 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x600, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 21:29:57 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x3b2c, 0x0, 0x0) 21:29:57 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x703, 0x0, 0x0) 21:29:57 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xc00c, 0x0, 0x0) [ 2271.290244] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2271.292187] CPU: 1 PID: 12911 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2271.293589] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2271.295298] Call Trace: [ 2271.295868] dump_stack+0x107/0x167 [ 2271.296626] sysfs_warn_dup.cold+0x1c/0x29 [ 2271.297499] sysfs_do_create_link_sd+0x122/0x140 [ 2271.298463] sysfs_create_link+0x5f/0xc0 [ 2271.299302] device_add+0x703/0x1c50 [ 2271.300080] ? devlink_add_symlinks+0x970/0x970 [ 2271.301034] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2271.302123] wiphy_register+0x1da6/0x2850 [ 2271.303000] ? wiphy_unregister+0xb90/0xb90 [ 2271.303915] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2271.305009] ieee80211_register_hw+0x23c5/0x38b0 [ 2271.305997] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2271.306981] ? net_generic+0xdb/0x2b0 [ 2271.307795] ? lockdep_init_map_type+0x2c7/0x780 [ 2271.308775] ? memset+0x20/0x50 [ 2271.309472] ? __hrtimer_init+0x12c/0x270 [ 2271.310325] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2271.311370] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2271.312323] ? hwsim_new_radio_nl+0x967/0x1080 [ 2271.313274] ? memcpy+0x39/0x60 [ 2271.313974] hwsim_new_radio_nl+0x991/0x1080 [ 2271.314878] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2271.315969] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2271.317309] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2271.318641] genl_family_rcv_msg_doit+0x22d/0x330 [ 2271.319640] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2271.320997] ? cap_capable+0x1cd/0x230 [ 2271.321814] ? ns_capable+0xe2/0x110 [ 2271.322584] genl_rcv_msg+0x33c/0x5a0 [ 2271.323369] ? genl_get_cmd+0x480/0x480 [ 2271.324197] ? lock_acquire+0x1b9/0x470 [ 2271.325006] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2271.326077] ? lock_release+0x680/0x680 [ 2271.326898] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2271.328016] netlink_rcv_skb+0x14b/0x430 [ 2271.328845] ? genl_get_cmd+0x480/0x480 [ 2271.329662] ? netlink_ack+0xab0/0xab0 [ 2271.330475] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2271.331406] ? netlink_skb_set_owner_r+0x12f/0x1f0 [ 2271.332417] genl_rcv+0x24/0x40 [ 2271.333099] netlink_unicast+0x549/0x7f0 [ 2271.333947] ? netlink_attachskb+0x870/0x870 [ 2271.334843] ? __virt_addr_valid+0x128/0x350 [ 2271.335775] netlink_sendmsg+0x90f/0xdf0 [ 2271.336611] ? netlink_unicast+0x7f0/0x7f0 [ 2271.337491] ? netlink_unicast+0x7f0/0x7f0 [ 2271.338361] __sock_sendmsg+0x154/0x190 [ 2271.339186] ____sys_sendmsg+0x70d/0x870 [ 2271.340037] ? sock_write_iter+0x3d0/0x3d0 [ 2271.340897] ? do_recvmmsg+0x6d0/0x6d0 [ 2271.341727] ___sys_sendmsg+0xf3/0x170 [ 2271.342524] ? sendmsg_copy_msghdr+0x160/0x160 [ 2271.343488] ? lock_downgrade+0x6d0/0x6d0 [ 2271.344379] ? __fget_files+0x5e/0x4c0 [ 2271.345183] ? __fget_files+0x296/0x4c0 [ 2271.346014] ? __fget_light+0xea/0x290 [ 2271.346827] __sys_sendmsg+0xe5/0x1b0 [ 2271.347604] ? __sys_sendmsg_sock+0x40/0x40 [ 2271.348497] ? trace_hardirqs_on+0x5b/0x180 [ 2271.349411] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2271.350476] ? syscall_enter_from_user_mode+0x27/0x50 [ 2271.351547] do_syscall_64+0x33/0x40 [ 2271.352317] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2271.353362] RIP: 0033:0x7fd54fedeb19 [ 2271.354132] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2271.357911] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2271.359467] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 2271.360935] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2271.362398] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2271.363869] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2271.365332] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 21:29:57 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x8, 0x0, 0x0) 21:29:57 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xc00c, 0x0, 0x0) 21:29:57 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x3f00, 0x0, 0x0) 21:29:57 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x3f000000, 0x0, 0x0, 0x0) [ 2271.664151] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2271.667239] CPU: 1 PID: 12951 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2271.668671] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2271.670361] Call Trace: [ 2271.670902] dump_stack+0x107/0x167 [ 2271.671651] sysfs_warn_dup.cold+0x1c/0x29 [ 2271.672529] sysfs_do_create_link_sd+0x122/0x140 [ 2271.673489] sysfs_create_link+0x5f/0xc0 [ 2271.674329] device_add+0x703/0x1c50 [ 2271.675099] ? devlink_add_symlinks+0x970/0x970 [ 2271.676079] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2271.677166] wiphy_register+0x1da6/0x2850 [ 2271.678032] ? wiphy_unregister+0xb90/0xb90 [ 2271.678938] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2271.680046] ieee80211_register_hw+0x23c5/0x38b0 [ 2271.681037] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2271.682024] ? trace_hardirqs_on+0x5b/0x180 [ 2271.682924] ? memset+0x20/0x50 [ 2271.683604] ? __hrtimer_init+0x12c/0x270 [ 2271.684477] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2271.685539] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2271.686481] ? hwsim_new_radio_nl+0x967/0x1080 [ 2271.687429] ? memcpy+0x39/0x60 [ 2271.688122] hwsim_new_radio_nl+0x991/0x1080 [ 2271.689027] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2271.690109] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2271.691458] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2271.692809] genl_family_rcv_msg_doit+0x22d/0x330 [ 2271.693802] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2271.695144] ? cap_capable+0x1cd/0x230 [ 2271.695981] ? ns_capable+0xe2/0x110 [ 2271.696746] genl_rcv_msg+0x33c/0x5a0 [ 2271.697530] ? genl_get_cmd+0x480/0x480 [ 2271.698345] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2271.699407] ? lock_release+0x680/0x680 [ 2271.700225] ? __lockdep_reset_lock+0x180/0x180 [ 2271.701185] netlink_rcv_skb+0x14b/0x430 [ 2271.702013] ? genl_get_cmd+0x480/0x480 [ 2271.702823] ? netlink_ack+0xab0/0xab0 [ 2271.703644] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2271.704583] ? is_vmalloc_addr+0x7b/0xb0 [ 2271.705416] genl_rcv+0x24/0x40 [ 2271.706087] netlink_unicast+0x549/0x7f0 [ 2271.706928] ? netlink_attachskb+0x870/0x870 [ 2271.707856] netlink_sendmsg+0x90f/0xdf0 [ 2271.708695] ? netlink_unicast+0x7f0/0x7f0 [ 2271.709574] ? netlink_unicast+0x7f0/0x7f0 [ 2271.710447] __sock_sendmsg+0x154/0x190 [ 2271.711264] ____sys_sendmsg+0x70d/0x870 [ 2271.712117] ? sock_write_iter+0x3d0/0x3d0 [ 2271.712982] ? do_recvmmsg+0x6d0/0x6d0 [ 2271.713785] ? perf_trace_lock+0xac/0x490 [ 2271.714636] ? __lockdep_reset_lock+0x180/0x180 [ 2271.715590] ? __lockdep_reset_lock+0x180/0x180 [ 2271.716560] ___sys_sendmsg+0xf3/0x170 [ 2271.717363] ? sendmsg_copy_msghdr+0x160/0x160 [ 2271.718302] ? lock_downgrade+0x6d0/0x6d0 [ 2271.719162] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2271.720249] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2271.721353] ? trace_hardirqs_on+0x5b/0x180 [ 2271.722232] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2271.723364] ? kcov_remote_stop+0x310/0x310 [ 2271.724263] ? __fget_light+0xea/0x290 [ 2271.725070] __sys_sendmsg+0xe5/0x1b0 [ 2271.725865] ? __sys_sendmsg_sock+0x40/0x40 [ 2271.726748] ? trace_hardirqs_on+0x5b/0x180 [ 2271.727657] do_syscall_64+0x33/0x40 [ 2271.728434] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2271.729479] RIP: 0033:0x7fd54fedeb19 [ 2271.730241] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2271.733986] RSP: 002b:00007fd54d433188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2271.735541] RAX: ffffffffffffffda RBX: 00007fd54fff2020 RCX: 00007fd54fedeb19 [ 2271.737009] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2271.738458] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2271.739921] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2271.741365] R13: 00007fff36540caf R14: 00007fd54d433300 R15: 0000000000022000 21:30:14 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x700, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 21:30:14 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x4000, 0x0, 0x0) 21:30:14 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x2fb, 0x0, 0x0) 21:30:14 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xed02, 0x0, 0x0) 21:30:14 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x800000, 0x0, 0x0) 21:30:14 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x40000000, 0x0, 0x0, 0x0) 21:30:14 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x800000, 0x0, 0x0) 21:30:14 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xcc0, 0x0, 0x0) 21:30:14 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x2000, 0x0, 0x0) 21:30:14 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x2000000, 0x0, 0x0) [ 2287.906172] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2287.909360] CPU: 1 PID: 12972 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2287.910767] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2287.912463] Call Trace: 21:30:14 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x2000000, 0x0, 0x0) 21:30:14 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x300, 0x0, 0x0) 21:30:14 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xc00c, 0x0, 0x0) [ 2287.913003] dump_stack+0x107/0x167 [ 2287.913972] sysfs_warn_dup.cold+0x1c/0x29 [ 2287.914840] sysfs_do_create_link_sd+0x122/0x140 [ 2287.915806] sysfs_create_link+0x5f/0xc0 [ 2287.916645] device_add+0x703/0x1c50 [ 2287.917410] ? devlink_add_symlinks+0x970/0x970 [ 2287.918380] ? __mutex_lock+0x4fe/0x10b0 [ 2287.919206] wiphy_register+0x1da6/0x2850 [ 2287.920065] ? wiphy_unregister+0xb90/0xb90 [ 2287.920963] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2287.922053] ieee80211_register_hw+0x23c5/0x38b0 [ 2287.923053] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2287.924057] ? net_generic+0xdb/0x2b0 [ 2287.924871] ? lockdep_init_map_type+0x2c7/0x780 [ 2287.925843] ? memset+0x20/0x50 [ 2287.926522] ? __hrtimer_init+0x12c/0x270 [ 2287.927388] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2287.928465] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2287.929407] ? hwsim_new_radio_nl+0x967/0x1080 [ 2287.930337] ? memcpy+0x39/0x60 [ 2287.931017] hwsim_new_radio_nl+0x991/0x1080 [ 2287.931921] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2287.933012] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2287.934350] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2287.935692] genl_family_rcv_msg_doit+0x22d/0x330 [ 2287.936686] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2287.938081] genl_rcv_msg+0x33c/0x5a0 [ 2287.938866] ? genl_get_cmd+0x480/0x480 [ 2287.939677] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2287.940750] ? genl_get_cmd+0x480/0x480 [ 2287.941573] netlink_rcv_skb+0x14b/0x430 [ 2287.942397] ? genl_get_cmd+0x480/0x480 [ 2287.943209] ? netlink_ack+0xab0/0xab0 [ 2287.944034] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2287.944959] ? netlink_unicast+0x1a2/0x7f0 [ 2287.945820] genl_rcv+0x24/0x40 [ 2287.946501] netlink_unicast+0x549/0x7f0 [ 2287.947350] ? netlink_attachskb+0x870/0x870 [ 2287.948259] ? netlink_sendmsg+0x8d0/0xdf0 [ 2287.949124] netlink_sendmsg+0x90f/0xdf0 [ 2287.949961] ? netlink_unicast+0x7f0/0x7f0 [ 2287.950844] ? netlink_unicast+0x7f0/0x7f0 [ 2287.951708] __sock_sendmsg+0x154/0x190 [ 2287.952537] ____sys_sendmsg+0x70d/0x870 [ 2287.953366] ? sock_write_iter+0x3d0/0x3d0 [ 2287.954223] ? do_recvmmsg+0x6d0/0x6d0 [ 2287.955016] ? perf_trace_lock+0xac/0x490 [ 2287.955867] ? __lockdep_reset_lock+0x180/0x180 [ 2287.956834] ___sys_sendmsg+0xf3/0x170 [ 2287.957636] ? sendmsg_copy_msghdr+0x160/0x160 [ 2287.958574] ? lock_downgrade+0x6d0/0x6d0 [ 2287.959412] ? find_held_lock+0x2c/0x110 [ 2287.960268] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2287.961333] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2287.962425] ? trace_hardirqs_on+0x5b/0x180 [ 2287.963310] ? __fget_files+0x296/0x4c0 [ 2287.964145] ? __fget_light+0xea/0x290 [ 2287.964950] __sys_sendmsg+0xe5/0x1b0 [ 2287.965726] ? __sys_sendmsg_sock+0x40/0x40 [ 2287.966631] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2287.967705] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2287.968754] ? trace_hardirqs_on+0x5b/0x180 [ 2287.969643] do_syscall_64+0x33/0x40 [ 2287.970397] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2287.971431] RIP: 0033:0x7fd54fedeb19 [ 2287.972203] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2287.975918] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2287.977473] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 2287.978923] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2287.980391] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2287.981829] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2287.983273] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 21:30:14 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x800000, 0x0, 0x0) 21:30:14 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x2030000, 0x0, 0x0) 21:30:14 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x500, 0x0, 0x0) [ 2288.178410] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2288.180269] CPU: 1 PID: 13009 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2288.181665] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2288.183340] Call Trace: [ 2288.183883] dump_stack+0x107/0x167 [ 2288.184644] sysfs_warn_dup.cold+0x1c/0x29 [ 2288.185504] sysfs_do_create_link_sd+0x122/0x140 [ 2288.186464] sysfs_create_link+0x5f/0xc0 [ 2288.187290] device_add+0x703/0x1c50 [ 2288.188067] ? devlink_add_symlinks+0x970/0x970 [ 2288.189013] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2288.190083] wiphy_register+0x1da6/0x2850 [ 2288.190944] ? wiphy_unregister+0xb90/0xb90 [ 2288.191841] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2288.192968] ieee80211_register_hw+0x23c5/0x38b0 [ 2288.193953] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2288.194925] ? net_generic+0xdb/0x2b0 [ 2288.195707] ? lockdep_init_map_type+0x2c7/0x780 [ 2288.196680] ? memset+0x20/0x50 [ 2288.197349] ? __hrtimer_init+0x12c/0x270 [ 2288.198193] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2288.199228] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2288.200178] ? hwsim_new_radio_nl+0x967/0x1080 [ 2288.201104] ? memcpy+0x39/0x60 [ 2288.201785] hwsim_new_radio_nl+0x991/0x1080 [ 2288.202682] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2288.203747] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2288.205085] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2288.206405] genl_family_rcv_msg_doit+0x22d/0x330 [ 2288.207386] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2288.208724] ? cap_capable+0x1cd/0x230 [ 2288.209535] ? ns_capable+0xe2/0x110 [ 2288.210296] genl_rcv_msg+0x33c/0x5a0 [ 2288.211073] ? genl_get_cmd+0x480/0x480 [ 2288.211879] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2288.212943] ? lock_release+0x680/0x680 [ 2288.213748] ? __lockdep_reset_lock+0x180/0x180 [ 2288.214697] netlink_rcv_skb+0x14b/0x430 [ 2288.215555] ? genl_get_cmd+0x480/0x480 [ 2288.216372] ? netlink_ack+0xab0/0xab0 [ 2288.217179] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2288.218100] ? is_vmalloc_addr+0x7b/0xb0 [ 2288.218929] genl_rcv+0x24/0x40 [ 2288.219594] netlink_unicast+0x549/0x7f0 [ 2288.220431] ? netlink_attachskb+0x870/0x870 [ 2288.221317] ? __virt_addr_valid+0x128/0x350 [ 2288.222221] netlink_sendmsg+0x90f/0xdf0 [ 2288.223051] ? netlink_unicast+0x7f0/0x7f0 [ 2288.223923] ? netlink_unicast+0x7f0/0x7f0 [ 2288.224796] __sock_sendmsg+0x154/0x190 [ 2288.225604] ____sys_sendmsg+0x70d/0x870 [ 2288.226430] ? sock_write_iter+0x3d0/0x3d0 [ 2288.227281] ? do_recvmmsg+0x6d0/0x6d0 [ 2288.228078] ? perf_trace_lock+0xac/0x490 [ 2288.228947] ? __lockdep_reset_lock+0x180/0x180 [ 2288.229901] ___sys_sendmsg+0xf3/0x170 [ 2288.230688] ? sendmsg_copy_msghdr+0x160/0x160 [ 2288.231628] ? lock_downgrade+0x6d0/0x6d0 [ 2288.232484] ? find_held_lock+0x2c/0x110 [ 2288.233321] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2288.234398] ? __fget_files+0x296/0x4c0 [ 2288.235223] ? __fget_light+0xea/0x290 [ 2288.236045] __sys_sendmsg+0xe5/0x1b0 [ 2288.236818] ? __sys_sendmsg_sock+0x40/0x40 [ 2288.237715] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2288.238794] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2288.239842] ? trace_hardirqs_on+0x5b/0x180 [ 2288.240749] do_syscall_64+0x33/0x40 [ 2288.241523] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2288.242571] RIP: 0033:0x7fd54fedeb19 [ 2288.243339] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2288.247117] RSP: 002b:00007fd54d433188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2288.248682] RAX: ffffffffffffffda RBX: 00007fd54fff2020 RCX: 00007fd54fedeb19 [ 2288.250152] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2288.251619] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2288.253094] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2288.254554] R13: 00007fff36540caf R14: 00007fd54d433300 R15: 0000000000022000 21:30:31 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x900, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 21:30:31 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x3000000, 0x0, 0x0) 21:30:31 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xcc0, 0x0, 0x0) 21:30:31 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x80ffffff, 0x0, 0x0, 0x0) 21:30:31 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xce02, 0x0, 0x0) 21:30:31 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x2cde, 0x0, 0x0) 21:30:31 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x3000000, 0x0, 0x0) 21:30:31 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x2000000, 0x0, 0x0) 21:30:31 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x3000000, 0x0, 0x0) 21:30:31 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x4000000, 0x0, 0x0) 21:30:31 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x4000000, 0x0, 0x0) 21:30:31 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x4000000, 0x0, 0x0) 21:30:31 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x2000, 0x0, 0x0) 21:30:31 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x800000, 0x0, 0x0) 21:30:31 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x3f00, 0x0, 0x0) [ 2305.057249] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2305.059170] CPU: 0 PID: 13028 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2305.060626] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2305.062347] Call Trace: [ 2305.062912] dump_stack+0x107/0x167 [ 2305.063693] sysfs_warn_dup.cold+0x1c/0x29 [ 2305.064620] sysfs_do_create_link_sd+0x122/0x140 [ 2305.065621] sysfs_create_link+0x5f/0xc0 [ 2305.066485] device_add+0x703/0x1c50 [ 2305.067267] ? devlink_add_symlinks+0x970/0x970 [ 2305.068241] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2305.069327] wiphy_register+0x1da6/0x2850 [ 2305.070203] ? wiphy_unregister+0xb90/0xb90 [ 2305.071117] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2305.072248] ieee80211_register_hw+0x23c5/0x38b0 [ 2305.073251] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2305.074246] ? net_generic+0xdb/0x2b0 [ 2305.075042] ? lockdep_init_map_type+0x2c7/0x780 [ 2305.076028] ? memset+0x20/0x50 [ 2305.076719] ? __hrtimer_init+0x12c/0x270 [ 2305.077580] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2305.078631] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2305.079584] ? hwsim_new_radio_nl+0x967/0x1080 [ 2305.080535] ? memcpy+0x39/0x60 [ 2305.081222] hwsim_new_radio_nl+0x991/0x1080 [ 2305.082138] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2305.083225] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2305.084602] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2305.085946] genl_family_rcv_msg_doit+0x22d/0x330 [ 2305.086940] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2305.088296] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2305.089368] ? cap_capable+0x1cd/0x230 [ 2305.090187] ? ns_capable+0xe2/0x110 [ 2305.090959] genl_rcv_msg+0x33c/0x5a0 [ 2305.091748] ? genl_get_cmd+0x480/0x480 [ 2305.092576] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2305.093638] ? genl_get_cmd+0x480/0x480 [ 2305.094468] netlink_rcv_skb+0x14b/0x430 [ 2305.095303] ? genl_get_cmd+0x480/0x480 [ 2305.096124] ? netlink_ack+0xab0/0xab0 [ 2305.096965] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2305.097836] ? netlink_trim+0x121/0x250 [ 2305.098583] genl_rcv+0x24/0x40 [ 2305.099275] netlink_unicast+0x549/0x7f0 [ 2305.100134] ? netlink_attachskb+0x870/0x870 [ 2305.101097] netlink_sendmsg+0x90f/0xdf0 [ 2305.101968] ? netlink_unicast+0x7f0/0x7f0 [ 2305.102888] ? netlink_unicast+0x7f0/0x7f0 [ 2305.103760] __sock_sendmsg+0x154/0x190 [ 2305.104620] ____sys_sendmsg+0x70d/0x870 [ 2305.105469] ? sock_write_iter+0x3d0/0x3d0 [ 2305.106365] ? do_recvmmsg+0x6d0/0x6d0 [ 2305.107167] ? perf_trace_lock+0xac/0x490 [ 2305.108058] ? __lockdep_reset_lock+0x180/0x180 [ 2305.109043] ___sys_sendmsg+0xf3/0x170 [ 2305.109864] ? sendmsg_copy_msghdr+0x160/0x160 [ 2305.110821] ? lock_downgrade+0x6d0/0x6d0 [ 2305.111690] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2305.112833] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2305.113958] ? trace_hardirqs_on+0x5b/0x180 [ 2305.114849] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2305.115982] ? sockfd_lookup_light+0x73/0x180 [ 2305.116934] ? kcov_remote_stop+0x310/0x310 [ 2305.117850] __sys_sendmsg+0xe5/0x1b0 [ 2305.118647] ? __sys_sendmsg_sock+0x40/0x40 [ 2305.119548] ? trace_hardirqs_on+0x5b/0x180 [ 2305.120481] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2305.121550] ? syscall_enter_from_user_mode+0x27/0x50 [ 2305.122639] do_syscall_64+0x33/0x40 [ 2305.123411] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2305.124489] RIP: 0033:0x7fd54fedeb19 [ 2305.125263] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2305.129101] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2305.130684] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 2305.132161] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2305.133638] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2305.135105] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2305.136576] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 21:30:31 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x81ffffff, 0x0, 0x0, 0x0) 21:30:48 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x5000000, 0x0, 0x0) 21:30:48 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x5000000, 0x0, 0x0) 21:30:48 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x5000000, 0x0, 0x0) 21:30:48 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x4000, 0x0, 0x0) 21:30:48 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0xa00, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 21:30:48 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xc00c0000, 0x0, 0x0, 0x0) 21:30:48 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x2ce9, 0x0, 0x0) 21:30:48 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x2000000, 0x0, 0x0) [ 2322.298283] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2322.300315] CPU: 0 PID: 13092 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2322.301741] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2322.303441] Call Trace: 21:30:48 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xc00c, 0x0, 0x0) 21:30:48 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x8000000, 0x0, 0x0) 21:30:48 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x8000000, 0x0, 0x0) [ 2322.303992] dump_stack+0x107/0x167 [ 2322.304985] sysfs_warn_dup.cold+0x1c/0x29 [ 2322.305858] sysfs_do_create_link_sd+0x122/0x140 [ 2322.306835] sysfs_create_link+0x5f/0xc0 [ 2322.307698] device_add+0x703/0x1c50 [ 2322.308484] ? devlink_add_symlinks+0x970/0x970 [ 2322.309442] ? __mutex_lock+0x4fe/0x10b0 [ 2322.310316] wiphy_register+0x1da6/0x2850 [ 2322.311179] ? wiphy_unregister+0xb90/0xb90 [ 2322.312106] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2322.313258] ieee80211_register_hw+0x23c5/0x38b0 [ 2322.314278] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2322.315294] ? net_generic+0xdb/0x2b0 [ 2322.316107] ? lockdep_init_map_type+0x2c7/0x780 [ 2322.317113] ? memset+0x20/0x50 [ 2322.317808] ? __hrtimer_init+0x12c/0x270 [ 2322.318689] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2322.319756] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2322.320739] ? hwsim_new_radio_nl+0x967/0x1080 [ 2322.321705] ? memcpy+0x39/0x60 [ 2322.322407] hwsim_new_radio_nl+0x991/0x1080 [ 2322.323339] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2322.324456] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2322.325856] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2322.327244] genl_family_rcv_msg_doit+0x22d/0x330 [ 2322.328264] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2322.329667] ? cap_capable+0x1cd/0x230 [ 2322.330504] ? ns_capable+0xe2/0x110 [ 2322.331294] genl_rcv_msg+0x33c/0x5a0 [ 2322.332109] ? genl_get_cmd+0x480/0x480 [ 2322.332955] ? lock_acquire+0x1b9/0x470 [ 2322.333800] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2322.334891] ? lock_release+0x680/0x680 [ 2322.335727] ? __lockdep_reset_lock+0x180/0x180 [ 2322.336734] netlink_rcv_skb+0x14b/0x430 [ 2322.337586] ? genl_get_cmd+0x480/0x480 [ 2322.338421] ? netlink_ack+0xab0/0xab0 [ 2322.339259] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2322.340221] ? netlink_unicast+0x1a2/0x7f0 [ 2322.341121] genl_rcv+0x24/0x40 [ 2322.341808] netlink_unicast+0x549/0x7f0 [ 2322.342667] ? netlink_attachskb+0x870/0x870 [ 2322.343599] netlink_sendmsg+0x90f/0xdf0 [ 2322.344474] ? netlink_unicast+0x7f0/0x7f0 [ 2322.345369] ? netlink_unicast+0x7f0/0x7f0 [ 2322.346250] __sock_sendmsg+0x154/0x190 [ 2322.347080] ____sys_sendmsg+0x70d/0x870 [ 2322.347936] ? sock_write_iter+0x3d0/0x3d0 [ 2322.348861] ? do_recvmmsg+0x6d0/0x6d0 [ 2322.349734] ___sys_sendmsg+0xf3/0x170 [ 2322.350557] ? sendmsg_copy_msghdr+0x160/0x160 [ 2322.351531] ? lock_downgrade+0x6d0/0x6d0 [ 2322.352409] ? find_held_lock+0x2c/0x110 [ 2322.353258] ? clockevents_program_event+0x14b/0x360 [ 2322.354334] ? __fget_files+0x296/0x4c0 [ 2322.355164] ? __fget_light+0xea/0x290 [ 2322.355996] __sys_sendmsg+0xe5/0x1b0 [ 2322.356785] ? __sys_sendmsg_sock+0x40/0x40 [ 2322.357668] ? trace_hardirqs_on+0x5b/0x180 [ 2322.358608] do_syscall_64+0x33/0x40 [ 2322.359386] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2322.360459] RIP: 0033:0x7fd54fedeb19 [ 2322.361241] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2322.365077] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2322.366667] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 2322.368151] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2322.369644] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2322.371128] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2322.372630] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 21:30:48 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x3000000, 0x0, 0x0) 21:30:48 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x8000000, 0x0, 0x0) 21:30:48 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x3f00, 0x0, 0x0) 21:30:48 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xd22e0000, 0x0, 0x0, 0x0) 21:30:48 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x20000000, 0x0, 0x0) 21:31:03 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x4000, 0x0, 0x0) 21:31:03 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x20000000, 0x0, 0x0) 21:31:03 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x2000, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 21:31:03 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xe4ffffff, 0x0, 0x0, 0x0) 21:31:03 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x1b030000, 0x0, 0x0) 21:31:03 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x4000000, 0x0, 0x0) 21:31:03 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x3f000000, 0x0, 0x0) 21:31:03 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xde2c, 0x0, 0x0) 21:31:04 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x3f000000, 0x0, 0x0) 21:31:04 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x800000, 0x0, 0x0) [ 2337.766223] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2337.768081] CPU: 1 PID: 13144 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2337.769501] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2337.771216] Call Trace: [ 2337.771786] dump_stack+0x107/0x167 [ 2337.772543] sysfs_warn_dup.cold+0x1c/0x29 [ 2337.773418] sysfs_do_create_link_sd+0x122/0x140 [ 2337.774409] sysfs_create_link+0x5f/0xc0 [ 2337.775257] device_add+0x703/0x1c50 [ 2337.776032] ? devlink_add_symlinks+0x970/0x970 [ 2337.777011] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2337.778113] wiphy_register+0x1da6/0x2850 [ 2337.778982] ? wiphy_unregister+0xb90/0xb90 [ 2337.779898] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 21:31:04 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x5000000, 0x0, 0x0) 21:31:04 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xc00c, 0x0, 0x0) [ 2337.781019] ieee80211_register_hw+0x23c5/0x38b0 [ 2337.782258] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2337.783231] ? net_generic+0xdb/0x2b0 [ 2337.784171] ? lockdep_init_map_type+0x2c7/0x780 [ 2337.785184] ? memset+0x20/0x50 [ 2337.785997] ? __hrtimer_init+0x12c/0x270 [ 2337.786841] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2337.788068] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2337.789013] ? hwsim_new_radio_nl+0x967/0x1080 [ 2337.790114] ? memcpy+0x39/0x60 [ 2337.790795] hwsim_new_radio_nl+0x991/0x1080 [ 2337.791869] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2337.793157] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2337.794732] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2337.796307] genl_family_rcv_msg_doit+0x22d/0x330 [ 2337.797422] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2337.798759] ? cap_capable+0x1cd/0x230 [ 2337.799570] ? ns_capable+0xe2/0x110 [ 2337.800330] genl_rcv_msg+0x33c/0x5a0 [ 2337.801131] ? genl_get_cmd+0x480/0x480 [ 2337.801934] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2337.802988] ? lock_release+0x680/0x680 [ 2337.803793] ? __lockdep_reset_lock+0x180/0x180 [ 2337.804765] netlink_rcv_skb+0x14b/0x430 [ 2337.805585] ? genl_get_cmd+0x480/0x480 [ 2337.806388] ? netlink_ack+0xab0/0xab0 [ 2337.807183] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2337.808095] ? is_vmalloc_addr+0x7b/0xb0 [ 2337.808935] genl_rcv+0x24/0x40 [ 2337.809600] netlink_unicast+0x549/0x7f0 [ 2337.810421] ? netlink_attachskb+0x870/0x870 [ 2337.811297] ? __virt_addr_valid+0x128/0x350 [ 2337.812200] netlink_sendmsg+0x90f/0xdf0 [ 2337.813046] ? netlink_unicast+0x7f0/0x7f0 [ 2337.813907] ? netlink_unicast+0x7f0/0x7f0 [ 2337.814753] __sock_sendmsg+0x154/0x190 [ 2337.815556] ____sys_sendmsg+0x70d/0x870 [ 2337.816367] ? trace_hardirqs_on+0x5b/0x180 [ 2337.817265] ? sock_write_iter+0x3d0/0x3d0 [ 2337.818109] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2337.819225] ___sys_sendmsg+0xf3/0x170 [ 2337.820019] ? sendmsg_copy_msghdr+0x160/0x160 [ 2337.820958] ? lock_downgrade+0x6d0/0x6d0 [ 2337.821817] ? __fget_files+0x296/0x4c0 [ 2337.822639] ? __fget_light+0xea/0x290 [ 2337.823435] __sys_sendmsg+0xe5/0x1b0 [ 2337.824214] ? __sys_sendmsg_sock+0x40/0x40 [ 2337.825098] ? trace_hardirqs_on+0x5b/0x180 [ 2337.826000] ? __sys_sendmsg+0x1b0/0x1b0 [ 2337.826831] ? __x64_sys_sendmsg+0x1/0xb0 [ 2337.827680] do_syscall_64+0x33/0x40 [ 2337.828429] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2337.829466] RIP: 0033:0x7fd54fedeb19 [ 2337.830215] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2337.833945] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2337.835479] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 2337.836953] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2337.838386] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2337.839835] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2337.841266] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 21:31:04 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x40000000, 0x0, 0x0) 21:31:04 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xf5ffffff, 0x0, 0x0, 0x0) 21:31:04 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xe92c, 0x0, 0x0) 21:31:04 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x512c0000, 0x0, 0x0) 21:31:04 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x40000000, 0x0, 0x0) 21:31:04 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x2000000, 0x0, 0x0) [ 2338.250290] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2338.252221] CPU: 0 PID: 13196 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2338.253681] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2338.255378] Call Trace: [ 2338.255935] dump_stack+0x107/0x167 [ 2338.256727] sysfs_warn_dup.cold+0x1c/0x29 [ 2338.257603] sysfs_do_create_link_sd+0x122/0x140 [ 2338.258580] sysfs_create_link+0x5f/0xc0 [ 2338.259419] device_add+0x703/0x1c50 [ 2338.260197] ? devlink_add_symlinks+0x970/0x970 [ 2338.261171] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2338.262263] wiphy_register+0x1da6/0x2850 [ 2338.263132] ? wiphy_unregister+0xb90/0xb90 [ 2338.264040] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2338.265161] ieee80211_register_hw+0x23c5/0x38b0 [ 2338.266160] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2338.267150] ? net_generic+0xdb/0x2b0 [ 2338.267950] ? lockdep_init_map_type+0x2c7/0x780 [ 2338.268939] ? memset+0x20/0x50 [ 2338.269623] ? __hrtimer_init+0x12c/0x270 [ 2338.270483] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2338.271534] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2338.272488] ? hwsim_new_radio_nl+0x967/0x1080 [ 2338.273461] ? memcpy+0x39/0x60 [ 2338.274156] hwsim_new_radio_nl+0x991/0x1080 [ 2338.275074] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2338.276163] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2338.277545] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2338.278903] genl_family_rcv_msg_doit+0x22d/0x330 [ 2338.279905] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2338.281298] ? cap_capable+0x1cd/0x230 [ 2338.282145] ? ns_capable+0xe2/0x110 [ 2338.282945] genl_rcv_msg+0x33c/0x5a0 [ 2338.283761] ? genl_get_cmd+0x480/0x480 [ 2338.284611] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2338.285719] ? lock_release+0x680/0x680 [ 2338.286565] ? __lockdep_reset_lock+0x180/0x180 [ 2338.287557] netlink_rcv_skb+0x14b/0x430 [ 2338.288417] ? genl_get_cmd+0x480/0x480 [ 2338.289268] ? netlink_ack+0xab0/0xab0 [ 2338.290111] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2338.291077] ? is_vmalloc_addr+0x7b/0xb0 [ 2338.291940] genl_rcv+0x24/0x40 [ 2338.292655] netlink_unicast+0x549/0x7f0 [ 2338.293524] ? netlink_attachskb+0x870/0x870 [ 2338.294451] ? __virt_addr_valid+0x128/0x350 [ 2338.295393] netlink_sendmsg+0x90f/0xdf0 [ 2338.296258] ? netlink_unicast+0x7f0/0x7f0 [ 2338.297172] ? netlink_unicast+0x7f0/0x7f0 [ 2338.298072] __sock_sendmsg+0x154/0x190 [ 2338.298914] ____sys_sendmsg+0x70d/0x870 [ 2338.299779] ? sock_write_iter+0x3d0/0x3d0 [ 2338.300685] ? do_recvmmsg+0x6d0/0x6d0 [ 2338.301511] ? perf_trace_lock+0xac/0x490 [ 2338.302400] ? __lockdep_reset_lock+0x180/0x180 [ 2338.303394] ___sys_sendmsg+0xf3/0x170 [ 2338.304222] ? sendmsg_copy_msghdr+0x160/0x160 [ 2338.305217] ? lock_downgrade+0x6d0/0x6d0 [ 2338.306080] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2338.307160] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2338.308274] ? trace_hardirqs_on+0x5b/0x180 [ 2338.309184] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2338.310321] ? __fget_light+0xea/0x290 [ 2338.311130] ? __sanitizer_cov_trace_pc+0x52/0x60 [ 2338.312135] ? __fget_light+0xea/0x290 [ 2338.312963] __sys_sendmsg+0xe5/0x1b0 [ 2338.313763] ? __sys_sendmsg_sock+0x40/0x40 [ 2338.314667] ? trace_hardirqs_on+0x5b/0x180 [ 2338.315588] ? __sys_sendmsg+0x1b0/0x1b0 [ 2338.316446] ? __x64_sys_sendmsg+0x1/0xb0 [ 2338.317342] do_syscall_64+0x33/0x40 [ 2338.318130] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2338.319207] RIP: 0033:0x7fd54fedeb19 [ 2338.319992] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2338.323844] RSP: 002b:00007fd54d433188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2338.325435] RAX: ffffffffffffffda RBX: 00007fd54fff2020 RCX: 00007fd54fedeb19 [ 2338.326904] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2338.328386] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2338.329891] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2338.331369] R13: 00007fff36540caf R14: 00007fd54d433300 R15: 0000000000022000 21:31:20 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x3f00, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 21:31:20 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x8000000, 0x0, 0x0) 21:31:20 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x5b2c0000, 0x0, 0x0) 21:31:20 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x80ffffff, 0x0, 0x0) 21:31:20 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x20000000, 0x0, 0x0) 21:31:20 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xfb02, 0x0, 0x0) 21:31:20 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xffffff80, 0x0, 0x0, 0x0) 21:31:20 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x3000000, 0x0, 0x0) 21:31:21 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x4000000, 0x0, 0x0) 21:31:21 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x81ffffff, 0x0, 0x0) 21:31:21 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x382c0000, 0x0, 0x0) [ 2354.852376] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2354.853721] CPU: 1 PID: 13216 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2354.854674] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2354.855827] Call Trace: [ 2354.856199] dump_stack+0x107/0x167 [ 2354.856722] sysfs_warn_dup.cold+0x1c/0x29 [ 2354.857349] sysfs_do_create_link_sd+0x122/0x140 [ 2354.858017] sysfs_create_link+0x5f/0xc0 [ 2354.858584] device_add+0x703/0x1c50 [ 2354.859119] ? devlink_add_symlinks+0x970/0x970 [ 2354.859782] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2354.860562] wiphy_register+0x1da6/0x2850 [ 2354.861176] ? wiphy_unregister+0xb90/0xb90 [ 2354.861787] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2354.862564] ? ieee80211_register_hw+0x18a9/0x38b0 [ 2354.863254] ? ieee80211_register_hw+0x190a/0x38b0 [ 2354.863962] ieee80211_register_hw+0x23c5/0x38b0 21:31:21 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x800000, 0x0, 0x0) [ 2354.864651] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2354.865526] ? net_generic+0xdb/0x2b0 [ 2354.866074] ? lockdep_init_map_type+0x2c7/0x780 [ 2354.866749] ? memset+0x20/0x50 [ 2354.867221] ? __hrtimer_init+0x12c/0x270 [ 2354.867814] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2354.868531] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2354.869189] ? hwsim_new_radio_nl+0x967/0x1080 [ 2354.869832] ? memcpy+0x39/0x60 [ 2354.870298] hwsim_new_radio_nl+0x991/0x1080 [ 2354.870924] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2354.871666] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2354.872600] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2354.873529] genl_family_rcv_msg_doit+0x22d/0x330 [ 2354.874211] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2354.875130] ? cap_capable+0x1cd/0x230 [ 2354.875695] ? ns_capable+0xe2/0x110 [ 2354.876226] genl_rcv_msg+0x33c/0x5a0 [ 2354.876766] ? genl_get_cmd+0x480/0x480 [ 2354.877339] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2354.878064] ? lock_release+0x680/0x680 [ 2354.878625] ? __lockdep_reset_lock+0x180/0x180 [ 2354.879322] netlink_rcv_skb+0x14b/0x430 [ 2354.879899] ? genl_get_cmd+0x480/0x480 [ 2354.880457] ? netlink_ack+0xab0/0xab0 [ 2354.881030] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2354.881670] ? is_vmalloc_addr+0x7b/0xb0 [ 2354.882252] genl_rcv+0x24/0x40 [ 2354.882721] netlink_unicast+0x549/0x7f0 [ 2354.883294] ? netlink_attachskb+0x870/0x870 [ 2354.883916] ? __virt_addr_valid+0x128/0x350 [ 2354.884556] netlink_sendmsg+0x90f/0xdf0 [ 2354.885156] ? netlink_unicast+0x7f0/0x7f0 [ 2354.885764] ? netlink_unicast+0x7f0/0x7f0 [ 2354.886358] __sock_sendmsg+0x154/0x190 [ 2354.886916] ____sys_sendmsg+0x70d/0x870 [ 2354.887487] ? sock_write_iter+0x3d0/0x3d0 [ 2354.888118] ? do_recvmmsg+0x6d0/0x6d0 [ 2354.888672] ? perf_trace_lock+0xac/0x490 [ 2354.889297] ? __lockdep_reset_lock+0x180/0x180 [ 2354.889960] ___sys_sendmsg+0xf3/0x170 [ 2354.890543] ? sendmsg_copy_msghdr+0x160/0x160 [ 2354.891186] ? lock_downgrade+0x6d0/0x6d0 [ 2354.891810] ? find_held_lock+0x2c/0x110 [ 2354.892392] ? clockevents_program_event+0x14b/0x360 [ 2354.893171] ? __fget_files+0x296/0x4c0 [ 2354.893740] ? __fget_light+0xea/0x290 [ 2354.894333] __sys_sendmsg+0xe5/0x1b0 [ 2354.894870] ? __sys_sendmsg_sock+0x40/0x40 [ 2354.895543] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2354.896269] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2354.897048] ? trace_hardirqs_on+0x5b/0x180 [ 2354.897658] do_syscall_64+0x33/0x40 [ 2354.898173] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2354.898884] RIP: 0033:0x7fd54fedeb19 [ 2354.899403] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2354.901954] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2354.903008] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 2354.903986] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2354.904981] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2354.905957] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2354.906937] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 21:31:21 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x20000000, 0x0, 0x0) 21:31:21 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x80ffffff, 0x0, 0x0) 21:31:21 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xc00c0000, 0x0, 0x0) 21:31:21 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xffffff81, 0x0, 0x0, 0x0) [ 2355.149265] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2355.151059] CPU: 0 PID: 13252 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2355.152520] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2355.154261] Call Trace: [ 2355.154823] dump_stack+0x107/0x167 [ 2355.155594] sysfs_warn_dup.cold+0x1c/0x29 [ 2355.156499] sysfs_do_create_link_sd+0x122/0x140 [ 2355.157514] sysfs_create_link+0x5f/0xc0 [ 2355.158363] device_add+0x703/0x1c50 [ 2355.159149] ? devlink_add_symlinks+0x970/0x970 [ 2355.160132] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2355.163245] wiphy_register+0x1da6/0x2850 [ 2355.164186] ? wiphy_unregister+0xb90/0xb90 [ 2355.165175] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2355.166352] ieee80211_register_hw+0x23c5/0x38b0 [ 2355.167396] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2355.168410] ? net_generic+0xdb/0x2b0 [ 2355.169238] ? lockdep_init_map_type+0x2c7/0x780 [ 2355.170233] ? memset+0x20/0x50 [ 2355.170923] ? __hrtimer_init+0x12c/0x270 [ 2355.173802] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2355.174870] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2355.175838] ? hwsim_new_radio_nl+0x967/0x1080 [ 2355.176802] ? memcpy+0x39/0x60 [ 2355.177509] hwsim_new_radio_nl+0x991/0x1080 [ 2355.178442] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2355.179534] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2355.180915] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2355.182276] genl_family_rcv_msg_doit+0x22d/0x330 [ 2355.183286] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2355.184652] ? cap_capable+0x1cd/0x230 [ 2355.185501] ? ns_capable+0xe2/0x110 [ 2355.186286] genl_rcv_msg+0x33c/0x5a0 [ 2355.187087] ? genl_get_cmd+0x480/0x480 [ 2355.187922] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2355.189025] ? check_memory_region+0x198/0x1f0 [ 2355.189990] netlink_rcv_skb+0x14b/0x430 [ 2355.190838] ? genl_get_cmd+0x480/0x480 [ 2355.191670] ? netlink_ack+0xab0/0xab0 [ 2355.192501] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2355.193486] genl_rcv+0x24/0x40 [ 2355.194178] netlink_unicast+0x549/0x7f0 [ 2355.195037] ? netlink_attachskb+0x870/0x870 [ 2355.195973] netlink_sendmsg+0x90f/0xdf0 [ 2355.196843] ? netlink_unicast+0x7f0/0x7f0 [ 2355.197742] ? netlink_unicast+0x7f0/0x7f0 [ 2355.198628] __sock_sendmsg+0x154/0x190 [ 2355.199464] ____sys_sendmsg+0x70d/0x870 [ 2355.200317] ? sock_write_iter+0x3d0/0x3d0 [ 2355.201204] ? do_recvmmsg+0x6d0/0x6d0 [ 2355.202015] ? perf_trace_lock+0xac/0x490 [ 2355.202885] ? __lockdep_reset_lock+0x180/0x180 [ 2355.203865] ___sys_sendmsg+0xf3/0x170 [ 2355.204693] ? sendmsg_copy_msghdr+0x160/0x160 [ 2355.205695] ? lock_downgrade+0x6d0/0x6d0 [ 2355.206592] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2355.207702] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2355.208842] ? trace_hardirqs_on+0x5b/0x180 [ 2355.209745] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2355.210905] ? sockfd_lookup_light+0x73/0x180 [ 2355.211848] ? kcov_remote_stop+0x310/0x310 [ 2355.212765] __sys_sendmsg+0xe5/0x1b0 [ 2355.213572] ? __sys_sendmsg_sock+0x40/0x40 [ 2355.214470] ? trace_hardirqs_on+0x5b/0x180 [ 2355.215398] do_syscall_64+0x33/0x40 [ 2355.216171] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2355.217252] RIP: 0033:0x7fd54fedeb19 [ 2355.218029] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2355.221847] RSP: 002b:00007fd54d433188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2355.223434] RAX: ffffffffffffffda RBX: 00007fd54fff2020 RCX: 00007fd54fedeb19 [ 2355.224922] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2355.226398] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2355.227877] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2355.229378] R13: 00007fff36540caf R14: 00007fd54d433300 R15: 0000000000022000 21:31:34 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x5000000, 0x0, 0x0) 21:31:34 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x4000, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 21:31:34 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x3f000000, 0x0, 0x0) 21:31:34 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x2000000, 0x0, 0x0) 21:31:34 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x3b2c0000, 0x0, 0x0) 21:31:34 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x81ffffff, 0x0, 0x0) 21:31:34 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xe4ffffff, 0x0, 0x0) 21:31:34 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xffffffe4, 0x0, 0x0, 0x0) 21:31:35 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xc00c0000, 0x0, 0x0) 21:31:35 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x3f000000, 0x0, 0x0) 21:31:35 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x7030000, 0x0, 0x0) 21:31:35 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x3000000, 0x0, 0x0) 21:31:35 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xf5ffffff, 0x0, 0x0) 21:31:35 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x40000000, 0x0, 0x0) [ 2368.887233] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2368.889210] CPU: 0 PID: 13265 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2368.890652] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2368.892387] Call Trace: [ 2368.892947] dump_stack+0x107/0x167 [ 2368.893738] sysfs_warn_dup.cold+0x1c/0x29 [ 2368.894617] sysfs_do_create_link_sd+0x122/0x140 [ 2368.895611] sysfs_create_link+0x5f/0xc0 [ 2368.896461] device_add+0x703/0x1c50 [ 2368.897251] ? devlink_add_symlinks+0x970/0x970 [ 2368.898221] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2368.899320] wiphy_register+0x1da6/0x2850 [ 2368.900197] ? wiphy_unregister+0xb90/0xb90 [ 2368.901138] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2368.902255] ieee80211_register_hw+0x23c5/0x38b0 [ 2368.903260] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2368.904263] ? net_generic+0xdb/0x2b0 [ 2368.905082] ? lockdep_init_map_type+0x2c7/0x780 [ 2368.906071] ? memset+0x20/0x50 [ 2368.906761] ? __hrtimer_init+0x12c/0x270 [ 2368.907630] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2368.908689] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2368.909659] ? hwsim_new_radio_nl+0x967/0x1080 [ 2368.910613] ? memcpy+0x39/0x60 [ 2368.911306] hwsim_new_radio_nl+0x991/0x1080 [ 2368.912225] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2368.913352] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2368.914718] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2368.916089] genl_family_rcv_msg_doit+0x22d/0x330 [ 2368.917104] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2368.918470] ? cap_capable+0x1cd/0x230 [ 2368.919295] ? ns_capable+0xe2/0x110 [ 2368.920086] genl_rcv_msg+0x33c/0x5a0 [ 2368.920885] ? genl_get_cmd+0x480/0x480 [ 2368.921734] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2368.922812] ? lock_release+0x680/0x680 [ 2368.923638] ? __lockdep_reset_lock+0x180/0x180 [ 2368.924610] netlink_rcv_skb+0x14b/0x430 [ 2368.925464] ? genl_get_cmd+0x480/0x480 [ 2368.926293] ? netlink_ack+0xab0/0xab0 [ 2368.927123] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2368.928073] ? is_vmalloc_addr+0x7b/0xb0 [ 2368.928922] genl_rcv+0x24/0x40 [ 2368.929620] netlink_unicast+0x549/0x7f0 [ 2368.930473] ? netlink_attachskb+0x870/0x870 [ 2368.931383] ? __virt_addr_valid+0x128/0x350 [ 2368.932312] netlink_sendmsg+0x90f/0xdf0 [ 2368.933186] ? netlink_unicast+0x7f0/0x7f0 [ 2368.934081] ? netlink_unicast+0x7f0/0x7f0 [ 2368.934973] __sock_sendmsg+0x154/0x190 [ 2368.935803] ____sys_sendmsg+0x70d/0x870 [ 2368.936651] ? sock_write_iter+0x3d0/0x3d0 [ 2368.937532] ? do_recvmmsg+0x6d0/0x6d0 [ 2368.938350] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2368.939450] ? trace_hardirqs_on+0x5b/0x180 [ 2368.940356] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2368.941505] ___sys_sendmsg+0xf3/0x170 [ 2368.942326] ? sendmsg_copy_msghdr+0x160/0x160 [ 2368.943303] ? lock_downgrade+0x6d0/0x6d0 [ 2368.944169] ? find_held_lock+0x2c/0x110 [ 2368.945045] ? clockevents_program_event+0x14b/0x360 [ 2368.946131] ? __fget_files+0x296/0x4c0 [ 2368.946981] ? __fget_light+0xea/0x290 [ 2368.947803] __sys_sendmsg+0xe5/0x1b0 [ 2368.948596] ? __sys_sendmsg_sock+0x40/0x40 [ 2368.949501] ? trace_hardirqs_on+0x5b/0x180 [ 2368.950421] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2368.951490] ? syscall_enter_from_user_mode+0x27/0x50 [ 2368.952565] do_syscall_64+0x33/0x40 [ 2368.953356] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2368.954424] RIP: 0033:0x7fd54fedeb19 [ 2368.955197] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2368.959028] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2368.960610] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 2368.962091] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2368.963571] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2368.965066] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2368.966547] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 21:31:35 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x40000000, 0x0, 0x0) 21:31:35 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0xfffffff5, 0x0, 0x0, 0x0) 21:31:35 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x8000000, 0x0, 0x0) [ 2369.246026] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2369.249296] CPU: 0 PID: 13318 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2369.250754] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2369.252490] Call Trace: [ 2369.253060] dump_stack+0x107/0x167 [ 2369.253833] sysfs_warn_dup.cold+0x1c/0x29 [ 2369.254715] sysfs_do_create_link_sd+0x122/0x140 [ 2369.255699] sysfs_create_link+0x5f/0xc0 [ 2369.256545] device_add+0x703/0x1c50 [ 2369.257344] ? devlink_add_symlinks+0x970/0x970 [ 2369.258312] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2369.259408] wiphy_register+0x1da6/0x2850 [ 2369.260285] ? wiphy_unregister+0xb90/0xb90 [ 2369.261210] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2369.262324] ieee80211_register_hw+0x23c5/0x38b0 [ 2369.263337] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2369.264345] ? net_generic+0xdb/0x2b0 [ 2369.265166] ? lockdep_init_map_type+0x2c7/0x780 [ 2369.266163] ? memset+0x20/0x50 [ 2369.266863] ? __hrtimer_init+0x12c/0x270 [ 2369.267741] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2369.268809] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2369.269798] ? hwsim_new_radio_nl+0x967/0x1080 [ 2369.270753] ? memcpy+0x39/0x60 [ 2369.271450] hwsim_new_radio_nl+0x991/0x1080 [ 2369.272371] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2369.273474] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2369.274837] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2369.276190] genl_family_rcv_msg_doit+0x22d/0x330 [ 2369.277209] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2369.278577] ? cap_capable+0x1cd/0x230 [ 2369.279401] ? ns_capable+0xe2/0x110 [ 2369.280183] genl_rcv_msg+0x33c/0x5a0 [ 2369.280986] ? genl_get_cmd+0x480/0x480 [ 2369.281813] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2369.282894] ? lock_release+0x680/0x680 [ 2369.283718] ? __lockdep_reset_lock+0x180/0x180 [ 2369.284686] netlink_rcv_skb+0x14b/0x430 [ 2369.285535] ? genl_get_cmd+0x480/0x480 [ 2369.286360] ? netlink_ack+0xab0/0xab0 [ 2369.287183] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2369.288129] ? is_vmalloc_addr+0x7b/0xb0 [ 2369.288997] genl_rcv+0x24/0x40 [ 2369.289685] netlink_unicast+0x549/0x7f0 [ 2369.290534] ? netlink_attachskb+0x870/0x870 [ 2369.291442] ? __virt_addr_valid+0x128/0x350 [ 2369.292367] netlink_sendmsg+0x90f/0xdf0 [ 2369.293227] ? netlink_unicast+0x7f0/0x7f0 [ 2369.294119] ? netlink_unicast+0x7f0/0x7f0 [ 2369.295001] __sock_sendmsg+0x154/0x190 [ 2369.295829] ____sys_sendmsg+0x70d/0x870 [ 2369.296681] ? sock_write_iter+0x3d0/0x3d0 [ 2369.297565] ? do_recvmmsg+0x6d0/0x6d0 [ 2369.298375] ? perf_trace_lock+0xac/0x490 [ 2369.299247] ? __lockdep_reset_lock+0x180/0x180 [ 2369.300218] ? perf_trace_lock+0xac/0x490 [ 2369.301104] ___sys_sendmsg+0xf3/0x170 [ 2369.301914] ? sendmsg_copy_msghdr+0x160/0x160 [ 2369.302865] ? lock_downgrade+0x6d0/0x6d0 [ 2369.303722] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2369.304811] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2369.305898] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2369.307009] ? trace_hardirqs_on+0x5b/0x180 [ 2369.307899] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2369.309032] ? sockfd_lookup_light+0x69/0x180 [ 2369.309954] ? sockfd_lookup_light+0x73/0x180 [ 2369.310883] ? __sanitizer_cov_trace_pc+0x4/0x60 [ 2369.311871] __sys_sendmsg+0xe5/0x1b0 [ 2369.312658] ? __sys_sendmsg_sock+0x40/0x40 [ 2369.313570] ? io_schedule_timeout+0x140/0x140 [ 2369.314531] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2369.315609] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2369.316665] ? trace_hardirqs_on+0x5b/0x180 [ 2369.317570] do_syscall_64+0x33/0x40 [ 2369.318340] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2369.319395] RIP: 0033:0x7fd54fedeb19 [ 2369.320173] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2369.323964] RSP: 002b:00007fd54d433188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2369.325541] RAX: ffffffffffffffda RBX: 00007fd54fff2020 RCX: 00007fd54fedeb19 [ 2369.327012] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2369.328477] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2369.329951] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2369.331422] R13: 00007fff36540caf R14: 00007fd54d433300 R15: 0000000000022000 21:31:51 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x4084, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 21:31:51 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x80ffffff, 0x0, 0x0) 21:31:51 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xffffff80, 0x0, 0x0) 21:31:51 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xe4ffffff, 0x0, 0x0) 21:31:51 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x4000000, 0x0, 0x0) 21:31:51 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x80ffffff, 0x0, 0x0) 21:31:51 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x2, 0x0, 0x0) 21:31:51 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x20000000, 0x0, 0x0) [ 2385.031250] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2385.032461] CPU: 1 PID: 13327 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2385.033423] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2385.034562] Call Trace: [ 2385.034940] dump_stack+0x107/0x167 [ 2385.035443] sysfs_warn_dup.cold+0x1c/0x29 [ 2385.036028] sysfs_do_create_link_sd+0x122/0x140 [ 2385.036680] sysfs_create_link+0x5f/0xc0 [ 2385.037243] device_add+0x703/0x1c50 [ 2385.037757] ? devlink_add_symlinks+0x970/0x970 [ 2385.038401] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2385.039131] wiphy_register+0x1da6/0x2850 [ 2385.039729] ? wiphy_unregister+0xb90/0xb90 [ 2385.040340] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2385.041141] ? ieee80211_register_hw+0x17da/0x38b0 [ 2385.041874] ieee80211_register_hw+0x23c5/0x38b0 [ 2385.042561] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2385.043253] ? net_generic+0xdb/0x2b0 [ 2385.043813] ? lockdep_init_map_type+0x2c7/0x780 [ 2385.044512] ? memset+0x20/0x50 [ 2385.044990] ? __hrtimer_init+0x12c/0x270 [ 2385.045605] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2385.046343] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2385.047020] ? hwsim_new_radio_nl+0x967/0x1080 [ 2385.047676] ? memcpy+0x39/0x60 [ 2385.048149] hwsim_new_radio_nl+0x991/0x1080 [ 2385.048790] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2385.049564] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2385.050508] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2385.051456] genl_family_rcv_msg_doit+0x22d/0x330 [ 2385.052148] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2385.053086] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2385.053861] ? trace_hardirqs_on+0x5b/0x180 [ 2385.054473] ? cap_capable+0x1cd/0x230 [ 2385.055045] ? ns_capable+0xe2/0x110 [ 2385.055594] genl_rcv_msg+0x33c/0x5a0 [ 2385.056150] ? genl_get_cmd+0x480/0x480 [ 2385.056720] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2385.057487] ? lock_release+0x680/0x680 [ 2385.058055] ? __lockdep_reset_lock+0x180/0x180 [ 2385.058731] netlink_rcv_skb+0x14b/0x430 [ 2385.059307] ? genl_get_cmd+0x480/0x480 [ 2385.059873] ? netlink_ack+0xab0/0xab0 [ 2385.060439] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2385.061091] ? is_vmalloc_addr+0x7b/0xb0 [ 2385.061705] genl_rcv+0x24/0x40 [ 2385.062173] netlink_unicast+0x549/0x7f0 [ 2385.062753] ? netlink_attachskb+0x870/0x870 [ 2385.063394] ? __check_heap_object+0x43/0x110 [ 2385.064056] netlink_sendmsg+0x90f/0xdf0 [ 2385.064648] ? netlink_unicast+0x7f0/0x7f0 [ 2385.065298] ? netlink_unicast+0x7f0/0x7f0 [ 2385.065916] __sock_sendmsg+0x154/0x190 [ 2385.066484] ____sys_sendmsg+0x70d/0x870 [ 2385.067060] ? sock_write_iter+0x3d0/0x3d0 [ 2385.067664] ? do_recvmmsg+0x6d0/0x6d0 [ 2385.068225] ? perf_trace_lock+0xac/0x490 [ 2385.068825] ? __lockdep_reset_lock+0x180/0x180 [ 2385.069515] ___sys_sendmsg+0xf3/0x170 [ 2385.070069] ? sendmsg_copy_msghdr+0x160/0x160 [ 2385.070721] ? lock_downgrade+0x6d0/0x6d0 [ 2385.071312] ? find_held_lock+0x2c/0x110 [ 2385.071908] ? clockevents_program_event+0x14b/0x360 [ 2385.072639] ? __fget_files+0x296/0x4c0 [ 2385.073224] ? __fget_light+0xea/0x290 [ 2385.073791] __sys_sendmsg+0xe5/0x1b0 [ 2385.074333] ? __sys_sendmsg_sock+0x40/0x40 [ 2385.074959] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2385.075704] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2385.076420] ? trace_hardirqs_on+0x5b/0x180 [ 2385.077035] do_syscall_64+0x33/0x40 [ 2385.077568] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2385.078310] RIP: 0033:0x7fd54fedeb19 [ 2385.078846] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2385.081440] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2385.082512] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 2385.083533] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2385.084544] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2385.085573] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2385.086606] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 21:31:51 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xffffff81, 0x0, 0x0) 21:31:51 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x81ffffff, 0x0, 0x0) 21:31:51 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x5000000, 0x0, 0x0) 21:31:51 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x81ffffff, 0x0, 0x0) 21:31:51 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x3, 0x0, 0x0) 21:31:51 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x8000000, 0x0, 0x0) 21:31:51 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xed020000, 0x0, 0x0) [ 2385.431947] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2385.435136] CPU: 1 PID: 13375 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2385.436610] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2385.438357] Call Trace: [ 2385.438925] dump_stack+0x107/0x167 [ 2385.439715] sysfs_warn_dup.cold+0x1c/0x29 [ 2385.440611] sysfs_do_create_link_sd+0x122/0x140 [ 2385.441637] sysfs_create_link+0x5f/0xc0 [ 2385.442503] device_add+0x703/0x1c50 [ 2385.443320] ? devlink_add_symlinks+0x970/0x970 [ 2385.444343] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2385.445506] wiphy_register+0x1da6/0x2850 [ 2385.446428] ? wiphy_unregister+0xb90/0xb90 [ 2385.447397] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2385.448568] ieee80211_register_hw+0x23c5/0x38b0 [ 2385.449633] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2385.450690] ? net_generic+0xdb/0x2b0 [ 2385.451504] ? lockdep_init_map_type+0x2c7/0x780 [ 2385.452492] ? memset+0x20/0x50 [ 2385.453236] ? __hrtimer_init+0x12c/0x270 [ 2385.454158] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2385.455283] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2385.456300] ? hwsim_new_radio_nl+0x967/0x1080 [ 2385.457319] ? memcpy+0x39/0x60 [ 2385.458063] hwsim_new_radio_nl+0x991/0x1080 [ 2385.459047] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2385.460213] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2385.461687] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2385.463141] genl_family_rcv_msg_doit+0x22d/0x330 [ 2385.464130] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2385.465608] ? cap_capable+0x1cd/0x230 [ 2385.466500] ? ns_capable+0xe2/0x110 [ 2385.467343] genl_rcv_msg+0x33c/0x5a0 [ 2385.468200] ? genl_get_cmd+0x480/0x480 [ 2385.469086] ? lock_acquire+0x1b9/0x470 [ 2385.469941] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2385.471080] ? lock_release+0x680/0x680 [ 2385.471974] ? __lockdep_reset_lock+0x180/0x180 [ 2385.473023] netlink_rcv_skb+0x14b/0x430 [ 2385.473944] ? genl_get_cmd+0x480/0x480 [ 2385.474847] ? netlink_ack+0xab0/0xab0 [ 2385.475746] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2385.476796] genl_rcv+0x24/0x40 [ 2385.477549] netlink_unicast+0x549/0x7f0 [ 2385.478480] ? netlink_attachskb+0x870/0x870 [ 2385.479460] ? __virt_addr_valid+0x128/0x350 [ 2385.480377] netlink_sendmsg+0x90f/0xdf0 [ 2385.481340] ? netlink_unicast+0x7f0/0x7f0 [ 2385.482313] ? netlink_unicast+0x7f0/0x7f0 [ 2385.483284] __sock_sendmsg+0x154/0x190 [ 2385.484089] ____sys_sendmsg+0x70d/0x870 [ 2385.484924] ? sock_write_iter+0x3d0/0x3d0 [ 2385.485786] ? do_recvmmsg+0x6d0/0x6d0 [ 2385.486628] ? perf_trace_lock+0xac/0x490 [ 2385.487590] ? __lockdep_reset_lock+0x180/0x180 [ 2385.488610] ? perf_trace_lock+0xac/0x490 [ 2385.489467] ___sys_sendmsg+0xf3/0x170 [ 2385.490280] ? sendmsg_copy_msghdr+0x160/0x160 [ 2385.491352] ? lock_downgrade+0x6d0/0x6d0 [ 2385.492319] ? __fget_files+0x265/0x4c0 [ 2385.493272] ? __fget_files+0x296/0x4c0 [ 2385.494226] ? __fget_light+0xea/0x290 [ 2385.495150] __sys_sendmsg+0xe5/0x1b0 [ 2385.495950] ? __sys_sendmsg_sock+0x40/0x40 [ 2385.496906] ? trace_hardirqs_on+0x5b/0x180 [ 2385.497989] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2385.499194] ? syscall_enter_from_user_mode+0x27/0x50 [ 2385.500275] do_syscall_64+0x33/0x40 [ 2385.501153] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2385.502371] RIP: 0033:0x7fd54fedeb19 [ 2385.503256] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2385.507420] RSP: 002b:00007fd54d433188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2385.509074] RAX: ffffffffffffffda RBX: 00007fd54fff2020 RCX: 00007fd54fedeb19 [ 2385.510777] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2385.512295] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2385.513739] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2385.515171] R13: 00007fff36540caf R14: 00007fd54d433300 R15: 0000000000022000 21:32:07 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x4, 0x0, 0x0) 21:32:07 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x4800, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 21:32:07 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x3f000000, 0x0, 0x0) 21:32:07 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xc00c0000, 0x0, 0x0) 21:32:07 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xffffffe4, 0x0, 0x0) 21:32:07 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x20000000, 0x0, 0x0) 21:32:07 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xc00c0000, 0x0, 0x0) 21:32:07 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xf5ffffff, 0x0, 0x0) [ 2401.112177] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2401.113320] CPU: 0 PID: 13397 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2401.114208] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2401.115275] Call Trace: [ 2401.115618] dump_stack+0x107/0x167 [ 2401.116094] sysfs_warn_dup.cold+0x1c/0x29 [ 2401.116649] sysfs_do_create_link_sd+0x122/0x140 [ 2401.117276] sysfs_create_link+0x5f/0xc0 [ 2401.117818] device_add+0x703/0x1c50 [ 2401.118306] ? devlink_add_symlinks+0x970/0x970 [ 2401.118916] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2401.119618] wiphy_register+0x1da6/0x2850 [ 2401.120178] ? wiphy_unregister+0xb90/0xb90 [ 2401.120763] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2401.121487] ieee80211_register_hw+0x23c5/0x38b0 [ 2401.122136] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2401.122767] ? net_generic+0xdb/0x2b0 [ 2401.123277] ? lockdep_init_map_type+0x2c7/0x780 [ 2401.123912] ? memset+0x20/0x50 [ 2401.124354] ? __hrtimer_init+0x12c/0x270 [ 2401.124921] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2401.125624] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2401.126247] ? hwsim_new_radio_nl+0x967/0x1080 [ 2401.126858] ? memcpy+0x39/0x60 [ 2401.127296] hwsim_new_radio_nl+0x991/0x1080 [ 2401.127880] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2401.128574] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2401.129449] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2401.130306] genl_family_rcv_msg_doit+0x22d/0x330 [ 2401.130956] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2401.131827] ? cap_capable+0x1cd/0x230 [ 2401.132357] ? ns_capable+0xe2/0x110 [ 2401.132848] genl_rcv_msg+0x33c/0x5a0 [ 2401.133344] ? genl_get_cmd+0x480/0x480 [ 2401.133891] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2401.134572] ? lock_release+0x680/0x680 [ 2401.135080] ? __lockdep_reset_lock+0x180/0x180 [ 2401.135679] netlink_rcv_skb+0x14b/0x430 [ 2401.136192] ? genl_get_cmd+0x480/0x480 [ 2401.136706] ? netlink_ack+0xab0/0xab0 [ 2401.137218] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2401.137845] genl_rcv+0x24/0x40 [ 2401.138270] netlink_unicast+0x549/0x7f0 [ 2401.138795] ? netlink_attachskb+0x870/0x870 [ 2401.139381] ? __virt_addr_valid+0x128/0x350 [ 2401.139977] netlink_sendmsg+0x90f/0xdf0 [ 2401.140525] ? netlink_unicast+0x7f0/0x7f0 [ 2401.141092] ? netlink_unicast+0x7f0/0x7f0 [ 2401.141676] __sock_sendmsg+0x154/0x190 [ 2401.142215] ____sys_sendmsg+0x70d/0x870 [ 2401.142764] ? sock_write_iter+0x3d0/0x3d0 [ 2401.143310] ? do_recvmmsg+0x6d0/0x6d0 [ 2401.143823] ? perf_trace_lock+0xac/0x490 [ 2401.144372] ? __lockdep_reset_lock+0x180/0x180 [ 2401.144990] ? __lock_acquire+0xbb1/0x5b00 [ 2401.145560] ___sys_sendmsg+0xf3/0x170 [ 2401.146077] ? sendmsg_copy_msghdr+0x160/0x160 [ 2401.146686] ? lock_downgrade+0x6d0/0x6d0 [ 2401.147240] ? __lockdep_reset_lock+0x180/0x180 [ 2401.147857] ? futex_exit_release+0x220/0x220 [ 2401.148455] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2401.149146] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2401.149883] ? trace_hardirqs_on+0x5b/0x180 [ 2401.150449] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2401.151171] ? sockfd_lookup_light+0xca/0x180 [ 2401.151735] __sys_sendmsg+0xe5/0x1b0 [ 2401.152225] ? __sys_sendmsg_sock+0x40/0x40 [ 2401.152793] ? __do_sys_futex+0x2bb/0x480 [ 2401.153371] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2401.154074] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2401.154749] ? trace_hardirqs_on+0x5b/0x180 [ 2401.155327] do_syscall_64+0x33/0x40 [ 2401.155824] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2401.156493] RIP: 0033:0x7fd54fedeb19 [ 2401.156983] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2401.159382] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2401.160373] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 2401.161274] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2401.162232] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2401.163165] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2401.164106] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 21:32:07 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x3f000000, 0x0, 0x0) 21:32:07 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xfffffff5, 0x0, 0x0) 21:32:07 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xffffff80, 0x0, 0x0) 21:32:07 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xce020000, 0x0, 0x0) 21:32:07 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xe4ffffff, 0x0, 0x0) 21:32:07 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x40000000, 0x0, 0x0) 21:32:07 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x5, 0x0, 0x0) 21:32:07 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xffffff81, 0x0, 0x0) [ 2401.521795] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2401.523507] CPU: 1 PID: 13439 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2401.524896] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2401.526580] Call Trace: [ 2401.527113] dump_stack+0x107/0x167 [ 2401.527850] sysfs_warn_dup.cold+0x1c/0x29 [ 2401.528728] sysfs_do_create_link_sd+0x122/0x140 [ 2401.529685] sysfs_create_link+0x5f/0xc0 [ 2401.530497] device_add+0x703/0x1c50 [ 2401.531241] ? devlink_add_symlinks+0x970/0x970 [ 2401.532172] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2401.533220] wiphy_register+0x1da6/0x2850 [ 2401.534092] ? wiphy_unregister+0xb90/0xb90 [ 2401.534955] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2401.536043] ? ieee80211_register_hw+0x18a9/0x38b0 [ 2401.537024] ieee80211_register_hw+0x23c5/0x38b0 [ 2401.537998] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2401.538952] ? net_generic+0xdb/0x2b0 [ 2401.539727] ? lockdep_init_map_type+0x2c7/0x780 [ 2401.540675] ? memset+0x20/0x50 [ 2401.541340] ? __hrtimer_init+0x12c/0x270 [ 2401.542189] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2401.543208] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2401.544129] ? hwsim_new_radio_nl+0x967/0x1080 [ 2401.545047] ? memcpy+0x39/0x60 [ 2401.545732] hwsim_new_radio_nl+0x991/0x1080 [ 2401.546622] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2401.547674] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2401.548981] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2401.550300] genl_family_rcv_msg_doit+0x22d/0x330 [ 2401.551265] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2401.552581] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2401.553658] ? cap_capable+0x1cd/0x230 [ 2401.554454] ? ns_capable+0xe2/0x110 [ 2401.555210] genl_rcv_msg+0x33c/0x5a0 [ 2401.555974] ? genl_get_cmd+0x480/0x480 [ 2401.556772] ? lock_acquire+0x1b9/0x470 [ 2401.557579] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2401.558614] ? lock_release+0x680/0x680 [ 2401.559414] netlink_rcv_skb+0x14b/0x430 [ 2401.560226] ? genl_get_cmd+0x480/0x480 [ 2401.561022] ? netlink_ack+0xab0/0xab0 [ 2401.561832] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2401.562745] ? is_vmalloc_addr+0x7b/0xb0 [ 2401.563560] genl_rcv+0x24/0x40 [ 2401.564216] netlink_unicast+0x549/0x7f0 [ 2401.565035] ? netlink_attachskb+0x870/0x870 [ 2401.565920] ? __virt_addr_valid+0x128/0x350 [ 2401.566816] netlink_sendmsg+0x90f/0xdf0 [ 2401.567639] ? netlink_unicast+0x7f0/0x7f0 [ 2401.568505] ? netlink_unicast+0x7f0/0x7f0 [ 2401.569347] __sock_sendmsg+0x154/0x190 [ 2401.570167] ____sys_sendmsg+0x70d/0x870 [ 2401.570986] ? sock_write_iter+0x3d0/0x3d0 [ 2401.571830] ? do_recvmmsg+0x6d0/0x6d0 [ 2401.572615] ? perf_trace_lock+0xac/0x490 [ 2401.573464] ? __lockdep_reset_lock+0x180/0x180 [ 2401.574386] ? __lockdep_reset_lock+0x180/0x180 [ 2401.575323] ___sys_sendmsg+0xf3/0x170 [ 2401.576102] ? sendmsg_copy_msghdr+0x160/0x160 [ 2401.577027] ? lock_downgrade+0x6d0/0x6d0 [ 2401.577868] ? lock_downgrade+0x6d0/0x6d0 [ 2401.578698] ? futex_exit_release+0x220/0x220 [ 2401.579599] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2401.580642] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2401.581736] ? trace_hardirqs_on+0x5b/0x180 [ 2401.582600] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2401.583706] __sys_sendmsg+0xe5/0x1b0 [ 2401.584469] ? __sys_sendmsg_sock+0x40/0x40 [ 2401.585326] ? __do_sys_futex+0x2bb/0x480 [ 2401.586182] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2401.587224] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2401.588244] ? trace_hardirqs_on+0x5b/0x180 [ 2401.589113] do_syscall_64+0x33/0x40 [ 2401.589877] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2401.590907] RIP: 0033:0x7fd54fedeb19 [ 2401.591654] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2401.595314] RSP: 002b:00007fd54d433188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2401.596832] RAX: ffffffffffffffda RBX: 00007fd54fff2020 RCX: 00007fd54fedeb19 [ 2401.598256] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2401.599676] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2401.601094] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2401.602524] R13: 00007fff36540caf R14: 00007fd54d433300 R15: 0000000000022000 21:32:22 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x4c00, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 21:32:22 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xffffffe4, 0x0, 0x0) 21:32:22 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x40000000, 0x0, 0x0) 21:32:22 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x80000000000000, 0x0, 0x0) 21:32:22 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xe4ffffff, 0x0, 0x0) 21:32:22 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x80ffffff, 0x0, 0x0) 21:32:22 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xf5ffffff, 0x0, 0x0) 21:32:22 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x8, 0x0, 0x0) 21:32:22 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xffffff80, 0x0, 0x0) 21:32:22 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x200000000000000, 0x0, 0x0) 21:32:22 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xfffffff5, 0x0, 0x0) 21:32:22 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xf5ffffff, 0x0, 0x0) 21:32:22 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x80ffffff, 0x0, 0x0) [ 2416.075986] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2416.077941] CPU: 1 PID: 13456 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2416.079403] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2416.081153] Call Trace: [ 2416.081733] dump_stack+0x107/0x167 [ 2416.082521] sysfs_warn_dup.cold+0x1c/0x29 [ 2416.083430] sysfs_do_create_link_sd+0x122/0x140 [ 2416.084441] sysfs_create_link+0x5f/0xc0 [ 2416.085315] device_add+0x703/0x1c50 [ 2416.086143] ? devlink_add_symlinks+0x970/0x970 [ 2416.087138] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2416.088268] wiphy_register+0x1da6/0x2850 [ 2416.089178] ? wiphy_unregister+0xb90/0xb90 [ 2416.090133] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2416.091273] ieee80211_register_hw+0x23c5/0x38b0 [ 2416.092310] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2416.093337] ? net_generic+0xdb/0x2b0 [ 2416.094175] ? lockdep_init_map_type+0x2c7/0x780 [ 2416.095193] ? memset+0x20/0x50 [ 2416.095893] ? __hrtimer_init+0x12c/0x270 [ 2416.096788] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2416.097904] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2416.098885] ? hwsim_new_radio_nl+0x967/0x1080 [ 2416.099861] ? memcpy+0x39/0x60 [ 2416.100572] hwsim_new_radio_nl+0x991/0x1080 [ 2416.101511] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2416.102640] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2416.104034] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2416.105423] genl_family_rcv_msg_doit+0x22d/0x330 [ 2416.106475] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2416.107863] ? cap_capable+0x1cd/0x230 [ 2416.108718] ? ns_capable+0xe2/0x110 [ 2416.109511] genl_rcv_msg+0x33c/0x5a0 [ 2416.110339] ? genl_get_cmd+0x480/0x480 [ 2416.111189] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2416.112297] ? lock_release+0x680/0x680 [ 2416.113144] ? __lockdep_reset_lock+0x180/0x180 [ 2416.114182] netlink_rcv_skb+0x14b/0x430 [ 2416.115047] ? genl_get_cmd+0x480/0x480 [ 2416.115898] ? netlink_ack+0xab0/0xab0 [ 2416.116752] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2416.117744] ? is_vmalloc_addr+0x7b/0xb0 [ 2416.118615] genl_rcv+0x24/0x40 [ 2416.119310] netlink_unicast+0x549/0x7f0 [ 2416.120187] ? netlink_attachskb+0x870/0x870 [ 2416.121130] ? __virt_addr_valid+0x128/0x350 [ 2416.122088] netlink_sendmsg+0x90f/0xdf0 [ 2416.122959] ? netlink_unicast+0x7f0/0x7f0 [ 2416.123884] ? netlink_unicast+0x7f0/0x7f0 [ 2416.124786] __sock_sendmsg+0x154/0x190 [ 2416.125657] ____sys_sendmsg+0x70d/0x870 [ 2416.126523] ? sock_write_iter+0x3d0/0x3d0 [ 2416.127414] ? do_recvmmsg+0x6d0/0x6d0 [ 2416.128243] ? perf_trace_lock+0xac/0x490 [ 2416.129127] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2416.130292] ? __lockdep_reset_lock+0x180/0x180 [ 2416.131293] ___sys_sendmsg+0xf3/0x170 [ 2416.132125] ? sendmsg_copy_msghdr+0x160/0x160 [ 2416.133097] ? lock_downgrade+0x6d0/0x6d0 [ 2416.133996] ? find_held_lock+0x2c/0x110 [ 2416.134866] ? clockevents_program_event+0x14b/0x360 [ 2416.135943] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2416.137048] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2416.138196] ? trace_hardirqs_on+0x5b/0x180 [ 2416.139117] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2416.140288] __sys_sendmsg+0xe5/0x1b0 [ 2416.141105] ? __sys_sendmsg_sock+0x40/0x40 [ 2416.142036] ? trace_hardirqs_on+0x5b/0x180 [ 2416.142972] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2416.144053] ? syscall_enter_from_user_mode+0x27/0x50 [ 2416.145157] do_syscall_64+0x33/0x40 [ 2416.145964] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2416.147050] RIP: 0033:0x7fd54fedeb19 [ 2416.147843] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2416.151720] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2416.153326] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 2416.154851] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2416.156354] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2416.157864] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2416.159386] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 21:32:22 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x203000000000000, 0x0, 0x0) 21:32:22 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xffffff80, 0x0, 0x0) [ 2416.270671] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2416.271683] CPU: 0 PID: 13501 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2416.272449] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2416.273379] Call Trace: [ 2416.273694] dump_stack+0x107/0x167 [ 2416.274104] sysfs_warn_dup.cold+0x1c/0x29 [ 2416.274575] sysfs_do_create_link_sd+0x122/0x140 [ 2416.275109] sysfs_create_link+0x5f/0xc0 [ 2416.275560] device_add+0x703/0x1c50 [ 2416.275976] ? devlink_add_symlinks+0x970/0x970 [ 2416.276490] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2416.277077] wiphy_register+0x1da6/0x2850 [ 2416.277567] ? wiphy_unregister+0xb90/0xb90 [ 2416.278066] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2416.278660] ieee80211_register_hw+0x23c5/0x38b0 [ 2416.279222] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2416.279781] ? net_generic+0xdb/0x2b0 [ 2416.280228] ? lockdep_init_map_type+0x2c7/0x780 [ 2416.280778] ? memset+0x20/0x50 [ 2416.281146] ? __hrtimer_init+0x12c/0x270 [ 2416.281638] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2416.282219] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2416.282729] ? hwsim_new_radio_nl+0x967/0x1080 [ 2416.283255] ? memcpy+0x39/0x60 [ 2416.283625] hwsim_new_radio_nl+0x991/0x1080 [ 2416.284136] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2416.284731] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2416.285478] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2416.286201] genl_family_rcv_msg_doit+0x22d/0x330 [ 2416.286764] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2416.287523] ? cap_capable+0x1cd/0x230 [ 2416.287997] ? ns_capable+0xe2/0x110 [ 2416.288436] genl_rcv_msg+0x33c/0x5a0 [ 2416.288867] ? genl_get_cmd+0x480/0x480 [ 2416.289322] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2416.289942] ? lock_release+0x680/0x680 [ 2416.290393] ? __lockdep_reset_lock+0x180/0x180 [ 2416.290931] netlink_rcv_skb+0x14b/0x430 [ 2416.291398] ? genl_get_cmd+0x480/0x480 [ 2416.291845] ? netlink_ack+0xab0/0xab0 [ 2416.292307] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2416.292834] ? is_vmalloc_addr+0x7b/0xb0 [ 2416.293293] genl_rcv+0x24/0x40 [ 2416.293682] netlink_unicast+0x549/0x7f0 [ 2416.294162] ? netlink_attachskb+0x870/0x870 [ 2416.294673] ? __virt_addr_valid+0x128/0x350 [ 2416.295184] netlink_sendmsg+0x90f/0xdf0 [ 2416.295668] ? netlink_unicast+0x7f0/0x7f0 [ 2416.296163] ? netlink_unicast+0x7f0/0x7f0 [ 2416.296653] __sock_sendmsg+0x154/0x190 [ 2416.297108] ____sys_sendmsg+0x70d/0x870 [ 2416.297584] ? sock_write_iter+0x3d0/0x3d0 [ 2416.298055] ? do_recvmmsg+0x6d0/0x6d0 [ 2416.298510] ? perf_trace_lock+0xac/0x490 [ 2416.298976] ? __lockdep_reset_lock+0x180/0x180 [ 2416.299508] ? perf_trace_lock+0xac/0x490 [ 2416.299988] ___sys_sendmsg+0xf3/0x170 [ 2416.300438] ? sendmsg_copy_msghdr+0x160/0x160 [ 2416.300967] ? lock_downgrade+0x6d0/0x6d0 [ 2416.301431] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2416.302051] ? trace_hardirqs_on+0x5b/0x180 [ 2416.302540] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 2416.303147] ? __fget_files+0x296/0x4c0 [ 2416.303619] ? __fget_light+0xea/0x290 [ 2416.304075] __sys_sendmsg+0xe5/0x1b0 [ 2416.304498] ? __sys_sendmsg_sock+0x40/0x40 [ 2416.304974] ? io_schedule_timeout+0x140/0x140 [ 2416.305506] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2416.306091] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2416.306667] ? trace_hardirqs_on+0x5b/0x180 [ 2416.307149] do_syscall_64+0x33/0x40 [ 2416.307569] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2416.308140] RIP: 0033:0x7fd54fedeb19 [ 2416.308558] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2416.310592] RSP: 002b:00007fd54d433188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2416.311455] RAX: ffffffffffffffda RBX: 00007fd54fff2020 RCX: 00007fd54fedeb19 [ 2416.312276] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2416.313083] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2416.313915] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2416.314727] R13: 00007fff36540caf R14: 00007fd54d433300 R15: 0000000000022000 21:32:37 executing program 0: openat$bsg(0xffffffffffffff9c, 0x0, 0x0, 0x0) setsockopt$netlink_NETLINK_PKTINFO(0xffffffffffffffff, 0x10e, 0x3, 0x0, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, 0x0, 0x0) ioctl$BTRFS_IOC_QUOTA_CTL(0xffffffffffffffff, 0xc0109428, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4307, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x6800, &(0x7f0000000480)={&(0x7f00000004c0)={0x28, 0x1d, 0xc21, 0x0, 0x0, {0x4, 0x0, 0x2}, [@nested={0x14, 0x11, 0x0, 0x1, [@generic="809801a7b0c7dba09475f251c743092f"]}]}, 0x28}}, 0x0) 21:32:37 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x81ffffff, 0x0, 0x0) 21:32:37 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xffffff81, 0x0, 0x0) 21:32:37 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xffffff81, 0x0, 0x0) 21:32:37 executing program 4: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_TIMEOUT={0xb, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x268802, 0x60) mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x100000e, 0x13, r0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x300, 0x0, 0x0) 21:32:37 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x81ffffff, 0x0, 0x0) 21:32:37 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x80000000000000, 0x0, 0x0) 21:32:37 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x300000000000000, 0x0, 0x0) 21:32:38 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xffffffe4, 0x0, 0x0) 21:32:38 executing program 6: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xc00c0000, 0x0, 0x0) [ 2431.806310] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2431.809244] CPU: 1 PID: 13505 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2431.810655] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2431.812329] Call Trace: [ 2431.812889] dump_stack+0x107/0x167 [ 2431.813654] sysfs_warn_dup.cold+0x1c/0x29 [ 2431.814554] sysfs_do_create_link_sd+0x122/0x140 [ 2431.815541] sysfs_create_link+0x5f/0xc0 [ 2431.816382] device_add+0x703/0x1c50 [ 2431.817159] ? devlink_add_symlinks+0x970/0x970 [ 2431.818154] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2431.819241] wiphy_register+0x1da6/0x2850 [ 2431.820114] ? wiphy_unregister+0xb90/0xb90 [ 2431.821032] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2431.822144] ieee80211_register_hw+0x23c5/0x38b0 [ 2431.823130] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2431.824105] ? net_generic+0xdb/0x2b0 [ 2431.824889] ? lockdep_init_map_type+0x2c7/0x780 [ 2431.825879] ? memset+0x20/0x50 [ 2431.826564] ? __hrtimer_init+0x12c/0x270 [ 2431.827422] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2431.828477] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2431.829442] ? hwsim_new_radio_nl+0x967/0x1080 [ 2431.830393] ? memcpy+0x39/0x60 [ 2431.831086] hwsim_new_radio_nl+0x991/0x1080 [ 2431.832001] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2431.833086] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2431.834451] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2431.835794] genl_family_rcv_msg_doit+0x22d/0x330 [ 2431.836788] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2431.838145] ? cap_capable+0x1cd/0x230 [ 2431.838956] ? ns_capable+0xe2/0x110 [ 2431.839722] genl_rcv_msg+0x33c/0x5a0 [ 2431.840507] ? genl_get_cmd+0x480/0x480 [ 2431.841319] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2431.842388] ? lock_release+0x680/0x680 [ 2431.843198] ? __lockdep_reset_lock+0x180/0x180 [ 2431.844150] netlink_rcv_skb+0x14b/0x430 [ 2431.844978] ? genl_get_cmd+0x480/0x480 [ 2431.845805] ? netlink_ack+0xab0/0xab0 [ 2431.846621] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2431.847553] ? is_vmalloc_addr+0x7b/0xb0 [ 2431.848383] genl_rcv+0x24/0x40 [ 2431.849055] netlink_unicast+0x549/0x7f0 [ 2431.849916] ? netlink_attachskb+0x870/0x870 [ 2431.850814] ? __virt_addr_valid+0x128/0x350 [ 2431.851741] netlink_sendmsg+0x90f/0xdf0 [ 2431.852584] ? netlink_unicast+0x7f0/0x7f0 [ 2431.853472] ? netlink_unicast+0x7f0/0x7f0 [ 2431.854350] __sock_sendmsg+0x154/0x190 [ 2431.855171] ____sys_sendmsg+0x70d/0x870 [ 2431.856004] ? sock_write_iter+0x3d0/0x3d0 [ 2431.856874] ? do_recvmmsg+0x6d0/0x6d0 [ 2431.857668] ? perf_trace_lock+0xac/0x490 [ 2431.858534] ? __lockdep_reset_lock+0x180/0x180 [ 2431.859506] ___sys_sendmsg+0xf3/0x170 [ 2431.860307] ? sendmsg_copy_msghdr+0x160/0x160 [ 2431.861252] ? lock_downgrade+0x6d0/0x6d0 [ 2431.862119] ? find_held_lock+0x2c/0x110 [ 2431.862963] ? clockevents_program_event+0x14b/0x360 [ 2431.864030] ? __fget_files+0x296/0x4c0 [ 2431.864865] ? __fget_light+0xea/0x290 [ 2431.865672] __sys_sendmsg+0xe5/0x1b0 [ 2431.866461] ? __sys_sendmsg_sock+0x40/0x40 [ 2431.867369] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2431.868434] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2431.869479] ? trace_hardirqs_on+0x5b/0x180 [ 2431.870379] do_syscall_64+0x33/0x40 [ 2431.871138] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2431.872183] RIP: 0033:0x7fd54fedeb19 [ 2431.872940] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2431.876685] RSP: 002b:00007fd54d454188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2431.878244] RAX: ffffffffffffffda RBX: 00007fd54fff1f60 RCX: 00007fd54fedeb19 [ 2431.879693] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2431.881142] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2431.882607] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2431.884059] R13: 00007fff36540caf R14: 00007fd54d454300 R15: 0000000000022000 21:32:38 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x200000000000000, 0x0, 0x0) 21:32:38 executing program 5: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xfffffff5, 0x0, 0x0) 21:32:38 executing program 7: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) syz_io_uring_submit(0x0, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xffffffe4, 0x0, 0x0) 21:32:38 executing program 2: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0xc00c0000, 0x0, 0x0) 21:32:38 executing program 3: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x400000000000000, 0x0, 0x0) 21:32:38 executing program 1: r0 = syz_io_uring_setup(0x7f02, &(0x7f0000000240), &(0x7f00000a0000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000200)=0x0, &(0x7f00000000c0)=0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0) shutdown(r3, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000180)=@sco={0x1f, @none}}, 0x0) perf_event_open(&(0x7f0000001d80)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) io_uring_enter(r0, 0x7e66, 0x0, 0x300000000000000, 0x0, 0x0) [ 2432.064726] sysfs: cannot create duplicate filename '/class/ieee80211/€˜§°ÇÛ ”uòQÇC !' [ 2432.066721] CPU: 1 PID: 13552 Comm: syz-executor.0 Not tainted 5.10.205 #1 [ 2432.068148] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS 1.12.0-1 04/01/2014 [ 2432.069866] Call Trace: [ 2432.070419] dump_stack+0x107/0x167 [ 2432.071180] sysfs_warn_dup.cold+0x1c/0x29 [ 2432.072066] sysfs_do_create_link_sd+0x122/0x140 [ 2432.073039] sysfs_create_link+0x5f/0xc0 [ 2432.073880] device_add+0x703/0x1c50 [ 2432.074650] ? devlink_add_symlinks+0x970/0x970 [ 2432.075601] ? ieee80211_set_bitrate_flags+0x202/0x620 [ 2432.076677] wiphy_register+0x1da6/0x2850 [ 2432.077561] ? wiphy_unregister+0xb90/0xb90 [ 2432.078531] ? ieee80211_init_rate_ctrl_alg+0x121/0x500 [ 2432.079629] ieee80211_register_hw+0x23c5/0x38b0 [ 2432.080632] ? ieee80211_ifa6_changed+0x4d0/0x4d0 [ 2432.081636] ? net_generic+0xdb/0x2b0 [ 2432.082457] ? lockdep_init_map_type+0x2c7/0x780 [ 2432.083433] ? memset+0x20/0x50 [ 2432.084117] ? __hrtimer_init+0x12c/0x270 [ 2432.084987] mac80211_hwsim_new_radio+0x1ce0/0x4250 [ 2432.086044] ? hwsim_send_nullfunc_ps+0x80/0x80 [ 2432.087000] ? hwsim_new_radio_nl+0x967/0x1080 [ 2432.087943] ? memcpy+0x39/0x60 [ 2432.088631] hwsim_new_radio_nl+0x991/0x1080 [ 2432.089547] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2432.090634] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1bb/0x280 [ 2432.091976] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x280 [ 2432.093305] genl_family_rcv_msg_doit+0x22d/0x330 [ 2432.094314] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x280/0x280 [ 2432.095662] ? cap_capable+0x1cd/0x230 [ 2432.096472] ? ns_capable+0xe2/0x110 [ 2432.097237] genl_rcv_msg+0x33c/0x5a0 [ 2432.098041] ? genl_get_cmd+0x480/0x480 [ 2432.098856] ? mac80211_hwsim_new_radio+0x4250/0x4250 [ 2432.099912] ? lock_release+0x680/0x680 [ 2432.100720] ? __lockdep_reset_lock+0x180/0x180 [ 2432.101670] netlink_rcv_skb+0x14b/0x430 [ 2432.102518] ? genl_get_cmd+0x480/0x480 [ 2432.103331] ? netlink_ack+0xab0/0xab0 [ 2432.104138] ? netlink_deliver_tap+0x1c4/0xcd0 [ 2432.105067] ? is_vmalloc_addr+0x7b/0xb0 [ 2432.105908] genl_rcv+0x24/0x40 [ 2432.106585] netlink_unicast+0x549/0x7f0 [ 2432.107432] ? netlink_attachskb+0x870/0x870 [ 2432.108333] ? __virt_addr_valid+0x128/0x350 [ 2432.109256] netlink_sendmsg+0x90f/0xdf0 [ 2432.110108] ? netlink_unicast+0x7f0/0x7f0 [ 2432.111000] ? netlink_unicast+0x7f0/0x7f0 [ 2432.111876] __sock_sendmsg+0x154/0x190 [ 2432.112701] ____sys_sendmsg+0x70d/0x870 [ 2432.113548] ? sock_write_iter+0x3d0/0x3d0 [ 2432.114437] ? do_recvmmsg+0x6d0/0x6d0 [ 2432.115241] ? perf_trace_lock+0xac/0x490 [ 2432.116101] ? __lockdep_reset_lock+0x180/0x180 [ 2432.117069] ___sys_sendmsg+0xf3/0x170 [ 2432.117874] ? sendmsg_copy_msghdr+0x160/0x160 [ 2432.118819] ? lock_downgrade+0x6d0/0x6d0 [ 2432.119651] ? find_held_lock+0x2c/0x110 [ 2432.120503] ? clockevents_program_event+0x14b/0x360 [ 2432.121544] ? __fget_files+0x296/0x4c0 [ 2432.122395] ? __fget_light+0xea/0x290 [ 2432.123206] __sys_sendmsg+0xe5/0x1b0 [ 2432.123996] ? __sys_sendmsg_sock+0x40/0x40 [ 2432.124905] ? lockdep_hardirqs_on_prepare+0x277/0x3e0 [ 2432.125978] ? syscall_enter_from_user_mode+0x1d/0x50 [ 2432.127028] ? trace_hardirqs_on+0x5b/0x180 [ 2432.127906] do_syscall_64+0x33/0x40 [ 2432.128676] entry_SYSCALL_64_after_hwframe+0x62/0xc7 [ 2432.129717] RIP: 0033:0x7fd54fedeb19 [ 2432.130493] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 2432.134251] RSP: 002b:00007fd54d433188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 2432.135800] RAX: ffffffffffffffda RBX: 00007fd54fff2020 RCX: 00007fd54fedeb19 [ 2432.137244] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 2432.138685] RBP: 00007fd54ff38f6d R08: 0000000000000000 R09: 0000000000000000 [ 2432.140126] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 2432.141574] R13: 00007fff36540caf R14: 00007fd54d433300 R15: 0000000000022000 VM DIAGNOSIS: 21:37:39 Registers: info registers vcpu 0 RAX=ffffffff83e5e480 RBX=0000000000000000 RCX=ffffffff83e4653c RDX=0000000000000000 RSI=0000000000000000 RDI=ffffffff83e5ea88 RBP=fffffbfff09c6450 RSP=ffffffff84e07e38 R8 =0000000000000001 R9 =ffff88806ce3c12b R10=ffffed100d9c7825 R11=0000000000000001 R12=0000000000000000 R13=ffffffff85672788 R14=0000000000000000 R15=dffffc0000000000 RIP=ffffffff83e5e48e RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806ce00000 00000000 00000000 LDT=0000 fffffe0f00000000 00000000 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f8be82a4010 CR3=000000000e138000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000600 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00e102fe016c6c6f502e726567616e61 XMM02=000000000000000040f71a0000000000 XMM03=0000060101d8f84db7fc0101039aff0f XMM04=6578650b006574616469646e61632063 XMM05=6d20636578650d006567616972742063 XMM06=657320636578650a00657a696d696e69 XMM07=657220726f7475636578651100736465 XMM08=6e6567206365786508006c61746f7420 XMM09=6574616469646e616320636578650e00 XMM10=650d0065676169727420636578650b00 XMM11=78650a00657a696d696e696d20636578 XMM12=74756365786511007364656573206365 XMM13=6578650900737472617473657220726f XMM14=616d7320636578650a007a7a75662063 XMM15=000073746e696820636578650a006873 info registers vcpu 1 RAX=ffffffff83e5e480 RBX=0000000000000001 RCX=ffffffff83e4653c RDX=0000000000000000 RSI=0000000000000000 RDI=ffffffff83e5ea88 RBP=ffffed100112f000 RSP=ffff888008987e70 R8 =0000000000000001 R9 =ffff88806cf3c12b R10=ffffed100d9e7825 R11=0000000000000001 R12=0000000000000001 R13=ffffffff85672788 R14=0000000000000000 R15=dffffc0000000000 RIP=ffffffff83e5e48e RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 00000000 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 00000000 00000000 FS =0000 0000000000000000 00000000 00000000 GS =0000 ffff88806cf00000 00000000 00000000 LDT=0000 fffffe5800000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000560fcf144678 CR3=000000000e138000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000ffff0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000004184aac340000000 XMM03=0000ff00000000000000000000000000 XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962 XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000