0, r4}, {r2}, {}, {r3}, {r2}, {}, {r3, r4}, {}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3}, {r2, r4}, {}, {r2}, {}, {}, {0x0, r4}, {}, {r3}, {r2}, {}, {}, {}, {0x0, r4}, {r3}, {}, {}, {0x0, r4}, {r2}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3, r4}, {}, {}, {0x0, r4}, {}, {r2}, {0x0, r4}, {}, {r3}, {r2, r4}, {0x0, r4}, {r2}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r2}, {r2, r4}, {}, {0x0, r4}, {r2, r4}, {0x0, r4}, {r3, r4}, {r2, r4}, {r3}, {}, {r2, r4}, {r2}, {r3, r4}, {}, {r2}, {r2, r4}, {}, {}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3, r4}, {}, {}, {r2, r4}, {0x0, r4}, {r3, r4}, {r2, r4}, {r3, r4}, {0x0, r4}, {}, {r3, r4}, {r3}, {}, {0x0, r4}, {r2}, {0x0, r4}, {r3, r4}, {r2}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {r2}, {}, {}, {}, {0x0, r4}, {r2, r4}, {r3, r4}, {}, {}, {}, {r3}, {0x0, r4}, {}, {}, {r2}, {r2}, {0x0, r4}, {r2, r4}, {r3, r4}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {r3}, {r2, r4}, {r2, r4}, {0x0, r4}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {r2}, {}, {r2}, {r3}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r3, r4}, {0x0, r4}, {}, {r3, r4}, {r2, r4}, {r3}, {r3, r4}, {}, {}, {<r5=>r2}, {}, {r2}, {r3}, {}, {r2, r4}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {r3}, {r3}, {}, {}, {r3}, {0x0, r4}, {0x0, r4}, {r2, r4}, {r2}, {}, {0x0, r4}, {}, {}, {r3, r4}, {r2}, {0x0, r4}, {r2}, {r3, r4}, {r2, r4}, {r3, r4}, {r3}, {r2, r4}, {}, {}, {r3}, {r2, r4}, {0x0, r4}, {r2, <r6=>r4}, {0x0, r4}, {r3}, {r3}, {}, {0x0, r4}, {r3, r4}, {}, {0x0, r4}, {}, {}, {0x0, r4}, {r2, r4}], 0x1, "2156816c73038c"})
r7 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r7, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r8 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r8, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r7, 0x81f8943c, &(0x7f0000000440)={<r9=>0x0, ""/256, <r10=>0x0, <r11=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r8, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r11}, {0x0, r11}, {r10}, {r10}, {r10, r11}, {}, {}, {0x0, r11}, {}, {r10, r11}, {0x0, r11}, {}, {r9, r11}, {0x0, r11}, {}, {r10, r11}, {0x0, r11}, {}, {}, {}, {0x0, r11}, {r10}, {0x0, r11}, {0x0, r11}, {r10}, {0x0, r11}, {r9}, {}, {r9}, {0x0, r11}, {}, {}, {r9, r11}, {r10}, {}, {0x0, r11}, {r10, r11}, {0x0, r11}, {r9, r11}, {}, {0x0, r11}, {r10}, {}, {0x0, r11}, {r10}, {0x0, r11}, {r10}, {0x0, r11}, {}, {r9, r11}, {0x0, r11}, {r9}, {}, {r10}, {r9}, {}, {r10, r11}, {}, {0x0, r11}, {0x0, r11}, {0x0, r11}, {0x0, r11}, {r10, r11}, {0x0, r11}, {0x0, r11}, {0x0, r11}, {r10}, {r9, r11}, {}, {r9}, {}, {}, {0x0, r11}, {}, {r10}, {r9}, {}, {}, {}, {0x0, r11}, {r10}, {}, {}, {0x0, r11}, {r9}, {0x0, r11}, {0x0, r11}, {0x0, r11}, {r10, r11}, {}, {}, {0x0, r11}, {}, {r9}, {0x0, r11}, {}, {r10}, {r9, r11}, {0x0, r11}, {r9}, {r10, r11}, {0x0, r11}, {0x0, r11}, {0x0, r11}, {}, {0x0, r11}, {r9}, {r9, r11}, {}, {0x0, r11}, {r9, r11}, {0x0, r11}, {r10, r11}, {r9, r11}, {r10}, {}, {r9, r11}, {r9}, {r10, r11}, {<r12=>0x0}, {r9}, {r9, r11}, {}, {}, {0x0, r11}, {0x0, r11}, {0x0, r11}, {r10, r11}, {}, {}, {r9, r11}, {0x0, r11}, {r10, r11}, {r9, r11}, {r10, r11}, {0x0, r11}, {}, {r10, r11}, {r10}, {}, {0x0, r11}, {r9}, {0x0, r11}, {r10, r11}, {r9}, {0x0, r11}, {r10, r11}, {0x0, r11}, {0x0, r11}, {}, {0x0, r11}, {r10}, {0x0, r11}, {r10}, {r9}, {}, {}, {}, {0x0, r11}, {r9, r11}, {r10, r11}, {}, {}, {}, {r10}, {0x0, r11}, {}, {}, {r9}, {r9}, {0x0, r11}, {r9, r11}, {r10, r11}, {0x0, r11}, {r9}, {}, {r9}, {0x0, r11}, {r10}, {r9, r11}, {r9, r11}, {0x0, r11}, {0x0, r11}, {}, {}, {0x0, r11}, {r10}, {r9}, {}, {r9}, {r10}, {0x0, r11}, {r10, r11}, {0x0, r11}, {r10, r11}, {0x0, r11}, {}, {r10, r11}, {r9, r11}, {r10}, {r10, r11}, {}, {}, {r9}, {}, {r9}, {r10}, {}, {r9, r11}, {}, {}, {0x0, r11}, {r10}, {0x0, r11}, {r9}, {r10}, {r10}, {}, {}, {r10}, {0x0, r11}, {0x0, r11}, {r9, r11}, {r9}, {}, {0x0, r11}, {}, {}, {r10, r11}, {r9}, {0x0, r11}, {r9}, {r10, r11}, {r9, r11}, {r10, r11}, {r10}, {r9, r11}, {}, {}, {r10}, {r9, r11}, {0x0, r11}, {r9, r11}, {0x0, r11}, {r10}, {r10}, {0x0, <r13=>0x0}, {0x0, r11}, {r10, r11}, {}, {0x0, r11}, {}, {}, {0x0, r11}, {r9, r11}], 0x1, "2156816c73038c"})
r14 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r14, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r15 = perf_event_open(&(0x7f00000003c0)={0x5, 0x80, 0x0, 0x0, 0x0, 0xff, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x2010, 0x1000000000000000, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r15, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r14, 0x81f8943c, &(0x7f0000000440)={<r16=>0x0, ""/256, <r17=>0x0, <r18=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r15, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r18}, {0x0, r18}, {r17}, {r17}, {r17, r18}, {}, {}, {0x0, r18}, {}, {r17, r18}, {0x0, r18}, {}, {r16, r18}, {0x0, r18}, {}, {r17, r18}, {0x0, r18}, {}, {}, {}, {0x0, r18}, {r17}, {0x0, r18}, {0x0, r18}, {r17}, {0x0, r18}, {r16}, {}, {r16}, {0x0, r18}, {}, {}, {r16, r18}, {r17}, {}, {0x0, r18}, {r17, r18}, {0x0, r18}, {r16, r18}, {}, {0x0, r18}, {r17}, {}, {0x0, r18}, {r17}, {0x0, r18}, {r17}, {0x0, r18}, {}, {r16, r18}, {0x0, r18}, {r16}, {}, {r17}, {r16}, {}, {r17, r18}, {}, {0x0, r18}, {0x0, r18}, {0x0, r18}, {0x0, r18}, {r17, r18}, {0x0, r18}, {0x0, r18}, {0x0, r18}, {r17}, {r16, r18}, {}, {r16}, {}, {}, {0x0, r18}, {}, {r17}, {r16}, {}, {}, {}, {0x0, r18}, {r17}, {}, {}, {0x0, r18}, {r16}, {0x0, r18}, {0x0, r18}, {0x0, r18}, {r17, r18}, {}, {}, {0x0, r18}, {}, {r16}, {0x0, r18}, {}, {r17}, {r16, r18}, {0x0, r18}, {r16}, {r17, r18}, {0x0, r18}, {0x0, r18}, {0x0, r18}, {}, {0x0, r18}, {r16}, {r16, r18}, {}, {0x0, r18}, {r16, r18}, {0x0, r18}, {r17, r18}, {r16, r18}, {r17}, {}, {r16, r18}, {r16}, {r17, r18}, {}, {r16}, {r16, r18}, {}, {0x0, r6}, {0x0, r18}, {0x0, r18}, {0x0, r18}, {r17, r18}, {}, {}, {r16, r18}, {0x0, r18}, {r17, r18}, {r16, r18}, {r17, r18}, {0x0, r18}, {}, {r17, r18}, {r17}, {}, {0x0, r18}, {r16}, {0x0, r18}, {r17, r18}, {r16}, {0x0, r18}, {r17, r18}, {0x0, r18}, {0x0, r18}, {}, {0x0, r18}, {r17}, {0x0, r18}, {r17}, {r16}, {}, {}, {0x0, r13}, {0x0, r18}, {r12, r18}, {r17, r18}, {}, {}, {}, {r17}, {0x0, r18}, {}, {}, {r16}, {r16}, {0x0, r18}, {r16, r18}, {r17, r18}, {0x0, r18}, {r16}, {}, {r16}, {0x0, r18}, {r17}, {r16, r18}, {r16, r18}, {0x0, r18}, {0x0, r18}, {}, {}, {0x0, r18}, {r17}, {r16}, {r5}, {r16}, {r17}, {0x0, r18}, {r17, r18}, {0x0, r18}, {r17, r18}, {0x0, r18}, {}, {r17, r18}, {r16, r18}, {r17}, {r17, r18}, {}, {}, {r16}, {}, {r16}, {r17}, {}, {r16, r18}, {}, {}, {0x0, r18}, {r17}, {0x0, r18}, {r16}, {r17}, {r17}, {}, {}, {r17}, {0x0, r18}, {0x0, r18}, {r16, r18}, {r16}, {}, {0x0, r18}, {}, {}, {r17, r18}, {r16}, {0x0, r18}, {r16}, {r17, r18}, {r16, r18}, {r17, r18}, {r17}, {r16, r18}, {}, {}, {r17}, {r16, r18}, {0x0, r18}, {r16, r18}, {0x0, r18}, {r17}, {r17}, {}, {0x0, r18}, {r17, r18}, {}, {0x0, r18}, {}, {}, {0x0, r18}, {r16, r18}], 0x1, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f000005f380)={0x4, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r4}, {}, {r10, r18}], 0x3, "0a88fa262bb6b6"})
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

19:53:35 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, &(0x7f0000000340), &(0x7f0000000380), &(0x7f00000003c0), {0x3a}, &(0x7f00000004c0)=""/240, 0xf0, &(0x7f0000000400)=""/126, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

19:53:35 executing program 4:
r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, &(0x7f0000000340), &(0x7f0000000380), &(0x7f00000003c0), {0x3a}, &(0x7f00000004c0)=""/240, 0xf0, &(0x7f0000000400)=""/126, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

[  231.008106][    C1] scsi_io_completion_action: 20 callbacks suppressed
[  231.008133][    C1] sd 0:0:1:0: tag#7843 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  231.024665][    C1] sd 0:0:1:0: tag#7843 CDB: opcode=0xe5 (vendor)
[  231.031017][    C1] sd 0:0:1:0: tag#7843 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  231.040049][    C1] sd 0:0:1:0: tag#7843 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  231.049102][    C1] sd 0:0:1:0: tag#7843 CDB[20]: ba
19:53:35 executing program 5:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x0, &(0x7f0000000340), &(0x7f0000000380), &(0x7f00000003c0), {0x3a}, &(0x7f00000004c0)=""/240, 0xf0, &(0x7f0000000400)=""/126, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

[  231.104684][T18982] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  231.113432][T18987] debugfs: Directory 'sg0' with parent 'block' already present!
[  231.136653][T18987] blktrace: debugfs_dir not present for sg0 so skipping
19:53:35 executing program 4:
r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, &(0x7f0000000340), &(0x7f0000000380), &(0x7f00000003c0), {0x3a}, &(0x7f00000004c0)=""/240, 0xf0, &(0x7f0000000400)=""/126, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

[  231.146966][    C1] sd 0:0:1:0: tag#7844 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  231.156792][    C1] sd 0:0:1:0: tag#7844 CDB: opcode=0xe5 (vendor)
[  231.163126][    C1] sd 0:0:1:0: tag#7844 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  231.172177][    C1] sd 0:0:1:0: tag#7844 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  231.181219][    C1] sd 0:0:1:0: tag#7844 CDB[20]: ba
19:53:35 executing program 5:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, &(0x7f0000000380), &(0x7f00000003c0), {0x3a}, &(0x7f00000004c0)=""/240, 0xf0, &(0x7f0000000400)=""/126, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

19:53:35 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})
r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
r3 = openat$incfs(r2, &(0x7f0000000000)='.log\x00', 0xc4900, 0x40)
ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x2400, 0x1000)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
r4 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r4, 0x0)
preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(r1, 0x2405, r4)
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)

[  231.238667][    C1] sd 0:0:1:0: tag#7845 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  231.248508][    C1] sd 0:0:1:0: tag#7845 CDB: opcode=0xe5 (vendor)
[  231.254831][    C1] sd 0:0:1:0: tag#7845 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  231.263884][    C1] sd 0:0:1:0: tag#7845 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  231.272918][    C1] sd 0:0:1:0: tag#7845 CDB[20]: ba
[  231.278077][    C1] sd 0:0:1:0: tag#7846 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
19:53:36 executing program 4:
r0 = openat(0xffffffffffffffff, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, &(0x7f0000000340), &(0x7f0000000380), &(0x7f00000003c0), {0x3a}, &(0x7f00000004c0)=""/240, 0xf0, &(0x7f0000000400)=""/126, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

[  231.287900][    C1] sd 0:0:1:0: tag#7846 CDB: opcode=0xe5 (vendor)
[  231.294221][    C1] sd 0:0:1:0: tag#7846 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  231.303246][    C1] sd 0:0:1:0: tag#7846 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  231.312289][    C1] sd 0:0:1:0: tag#7846 CDB[20]: ba
[  231.321934][T19001] debugfs: Directory 'sg0' with parent 'block' already present!
19:53:36 executing program 5:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, &(0x7f00000003c0), {0x3a}, &(0x7f00000004c0)=""/240, 0xf0, &(0x7f0000000400)=""/126, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

[  231.355703][T19001] blktrace: debugfs_dir not present for sg0 so skipping
[  231.385745][T19006] debugfs: Directory 'sg0' with parent 'block' already present!
[  231.395528][T19006] blktrace: debugfs_dir not present for sg0 so skipping
19:53:36 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, &(0x7f0000000340), &(0x7f0000000380), &(0x7f00000003c0), {0x3a}, &(0x7f00000004c0)=""/240, 0xf0, &(0x7f0000000400)=""/126, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

19:53:36 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r0, 0xc020660b, 0x0)
read(r0, &(0x7f0000000200)=""/75, 0x4b)
r1 = perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = clone3(&(0x7f0000007500)={0x30000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pidfd_open(r2, 0x0)
r3 = openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r5, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r5, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x7, 0x8, 0x1, 0x6, 0x0, 0x3, 0x8, 0xf, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, @perf_config_ext={0x8000, 0x1}, 0x42200, 0x2, 0x1fb, 0x5, 0x5, 0x4, 0x20, 0x0, 0x6, 0x0, 0x2}, r2, 0x6, r3, 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000480)='/sys/power/disk', 0x4000, 0x0)
ioctl$BTRFS_IOC_SNAP_DESTROY(r1, 0x5000940f, &(0x7f00000004c0)={{r3}, "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"})

19:53:36 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})
r1 = fork()
r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x380000d, 0x4000010, r2, 0x1000)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
r3 = perf_event_open(&(0x7f0000000040)={0x5, 0x80, 0x7f, 0x0, 0x9, 0x0, 0x0, 0x3ff, 0xa12a0, 0xc, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0xf5, 0x0, @perf_bp={&(0x7f0000000000), 0x1}, 0x810a, 0x6, 0x4, 0x2, 0x4, 0x2, 0xeb, 0x0, 0x2, 0x0, 0xca}, r1, 0x7, r2, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r4, 0xc020660b, 0x0)
splice(r3, &(0x7f00000000c0)=0x9, r4, &(0x7f0000000180)=0x4, 0x2, 0x1)

19:53:36 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, &(0x7f0000000340), &(0x7f0000000380), &(0x7f00000003c0), {0x3a}, &(0x7f00000004c0)=""/240, 0xf0, &(0x7f0000000400)=""/126, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

19:53:36 executing program 5:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0x3a}, &(0x7f00000004c0)=""/240, 0xf0, &(0x7f0000000400)=""/126, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

[  231.909918][T19028] debugfs: Directory 'sg0' with parent 'block' already present!
[  231.932723][T19028] blktrace: debugfs_dir not present for sg0 so skipping
19:53:36 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, &(0x7f0000000340), &(0x7f0000000380), &(0x7f00000003c0), {0x3a}, &(0x7f00000004c0)=""/240, 0xf0, &(0x7f0000000400)=""/126, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

19:53:36 executing program 5:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, &(0x7f00000004c0)=""/240, 0xf0, &(0x7f0000000400)=""/126, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

[  231.969714][T19033] debugfs: Directory 'sg0' with parent 'block' already present!
[  231.977988][T19031] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  231.994964][T19033] blktrace: debugfs_dir not present for sg0 so skipping
19:53:36 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

19:53:36 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x10, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, &(0x7f0000000340), &(0x7f0000000380), &(0x7f00000003c0), {0x3a}, &(0x7f00000004c0)=""/240, 0xf0, &(0x7f0000000400)=""/126, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

19:53:36 executing program 5:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, &(0x7f0000000400)=""/126, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

19:53:36 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x10, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, &(0x7f0000000340), &(0x7f0000000380), &(0x7f00000003c0), {0x3a}, &(0x7f00000004c0)=""/240, 0xf0, &(0x7f0000000400)=""/126, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

19:53:36 executing program 5:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

19:53:36 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x10, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, &(0x7f0000000340), &(0x7f0000000380), &(0x7f00000003c0), {0x3a}, &(0x7f00000004c0)=""/240, 0xf0, &(0x7f0000000400)=""/126, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

19:53:37 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r0, 0xc020660b, 0x0)
read(r0, &(0x7f0000000200)=""/75, 0x4b)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = clone3(&(0x7f0000007500)={0x30000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pidfd_open(r1, 0x0)
r2 = openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r4, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r4, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x7, 0x8, 0x1, 0x6, 0x0, 0x3, 0x8, 0xf, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, @perf_config_ext={0x8000, 0x1}, 0x42200, 0x2, 0x1fb, 0x5, 0x5, 0x4, 0x20, 0x0, 0x6, 0x0, 0x2}, r1, 0x6, r2, 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000480)='/sys/power/disk', 0x4000, 0x0)

19:53:37 executing program 5:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r0}}, 0x58)

19:53:37 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, 0xffffffffffffffff, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, &(0x7f0000000340), &(0x7f0000000380), &(0x7f00000003c0), {0x3a}, &(0x7f00000004c0)=""/240, 0xf0, &(0x7f0000000400)=""/126, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

19:53:37 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x4c0081, 0x0)
ioctl$BLKTRACESTOP(r1, 0x1275, 0x0)
ioctl$BLKTRACETEARDOWN(r1, 0x1276, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_STATION(0xffffffffffffffff, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)={0x2c, r3, 0x401, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_STA_SUPPORTED_CHANNELS={0x4}]}, 0x2c}}, 0x0)
sendmsg$NL80211_CMD_SET_NOACK_MAP(0xffffffffffffffff, &(0x7f0000001180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x3c, 0x0, 0x20, 0x70bd28, 0x25dfdbff, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x4e50}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0x9}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0xfff}, @NL80211_ATTR_NOACK_MAP={0x6, 0x95, 0xfff9}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40440c0}, 0x4004000)
ioctl$sock_SIOCGIFCONF(r2, 0xc020660b, 0x0)
ioctl$BTRFS_IOC_SNAP_DESTROY(r2, 0x5000940f, &(0x7f0000000180)={{r0}, "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"})

[  232.791986][T19076] debugfs: Directory 'sg0' with parent 'block' already present!
[  232.817340][T19076] blktrace: debugfs_dir not present for sg0 so skipping
19:53:37 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, 0xffffffffffffffff, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, &(0x7f0000000340), &(0x7f0000000380), &(0x7f00000003c0), {0x3a}, &(0x7f00000004c0)=""/240, 0xf0, &(0x7f0000000400)=""/126, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

[  232.843117][T19077] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
19:53:37 executing program 5:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  232.889716][T19081] debugfs: Directory 'sg0' with parent 'block' already present!
[  232.899566][T19081] blktrace: debugfs_dir not present for sg0 so skipping
19:53:37 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, 0xffffffffffffffff, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, &(0x7f0000000340), &(0x7f0000000380), &(0x7f00000003c0), {0x3a}, &(0x7f00000004c0)=""/240, 0xf0, &(0x7f0000000400)=""/126, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

19:53:37 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000040)={'\x00', 0x0, 0x400800, 0x60b, 0x0, 0x20000000000})
r1 = syz_open_dev$vcsn(&(0x7f0000000000), 0x81, 0x4000)
recvmmsg$unix(r1, &(0x7f00000037c0)=[{{&(0x7f0000000180)=@abs, 0x6e, &(0x7f0000000240)=[{&(0x7f0000000200)=""/51, 0x33}], 0x1, &(0x7f0000000280)=[@cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xf0}}, {{&(0x7f0000000380)=@abs, 0x6e, &(0x7f00000005c0)=[{&(0x7f0000000400)=""/54, 0x36}, {&(0x7f0000000440)=""/226, 0xe2}, {&(0x7f0000000540)=""/108, 0x6c}], 0x3, &(0x7f0000000600)=[@rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x50}}, {{&(0x7f0000000680), 0x6e, &(0x7f0000001d00)=[{&(0x7f0000000700)=""/187, 0xbb}, {&(0x7f00000007c0)=""/167, 0xa7}, {&(0x7f0000000880)=""/214, 0xd6}, {&(0x7f0000000980)=""/194, 0xc2}, {&(0x7f0000000a80)=""/4096, 0x1000}, {&(0x7f0000001a80)=""/237, 0xed}, {&(0x7f0000001b80)=""/5, 0x5}, {&(0x7f0000001bc0)=""/58, 0x3a}, {&(0x7f0000001c00)=""/23, 0x17}, {&(0x7f0000001c40)=""/179, 0xb3}], 0xa, &(0x7f0000001dc0)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r2=>0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0xb0}}, {{&(0x7f0000001e80), 0x6e, &(0x7f0000001fc0)=[{&(0x7f0000001f00)=""/55, 0x37}, {&(0x7f0000001f40)=""/50, 0x32}, {&(0x7f0000002080)=""/206, 0xce}, {&(0x7f0000001f80)=""/33, 0x21}], 0x4}}, {{&(0x7f0000002180), 0x6e, &(0x7f0000002700)=[{&(0x7f0000002200)=""/117, 0x75}, {&(0x7f0000002280)=""/111, 0x6f}, {&(0x7f0000002300)=""/67, 0x43}, {&(0x7f0000002380)=""/178, 0xb2}, {&(0x7f0000002440)=""/118, 0x76}, {&(0x7f0000002000)=""/1, 0x1}, {&(0x7f00000024c0)=""/222, 0xde}, {&(0x7f00000025c0)=""/93, 0x5d}, {&(0x7f0000002640)=""/187, 0xbb}], 0x9, &(0x7f00000027c0)=ANY=[@ANYBLOB="140000a6ec0040000000", @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000020000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="18000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="0000000020000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32], 0xb0}}, {{&(0x7f0000002880), 0x6e, &(0x7f0000002b40)=[{&(0x7f0000002900)=""/206, 0xce}, {&(0x7f0000002a00)=""/213, 0xd5}, {&(0x7f0000002b00)=""/1, 0x1}], 0x3, &(0x7f0000002b80)=[@cred={{0x1c}}, @rights={{0x10}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, <r3=>0xffffffffffffffff, 0xffffffffffffffff]}}], 0x88}}, {{0x0, 0x0, &(0x7f0000002f80)=[{&(0x7f0000002c40)=""/33, 0x21}, {&(0x7f0000002c80)=""/206, 0xce}, {&(0x7f0000002d80)=""/43, 0x2b}, {&(0x7f0000002dc0)=""/205, 0xcd}, {&(0x7f0000002ec0)=""/144, 0x90}], 0x5, &(0x7f0000003000)=[@cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x38, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x120}}, {{&(0x7f0000003140), 0x6e, &(0x7f0000003400)=[{&(0x7f00000031c0)=""/156, 0x9c}, {&(0x7f0000003280)=""/44, 0x2c}, {&(0x7f00000032c0)=""/149, 0x95}, {&(0x7f0000003380)=""/96, 0x60}], 0x4, &(0x7f0000003440)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x58}}, {{0x0, 0x0, &(0x7f0000003640)=[{&(0x7f00000034c0)=""/205, 0xcd}, {&(0x7f00000035c0)=""/92, 0x5c}], 0x2, &(0x7f0000003680)=[@cred={{0x1c, 0x1, 0x2, {<r4=>0x0}}}, @cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x10}}, @cred={{0x1c}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x110}}], 0x9, 0x3, 0x0)
perf_event_open(&(0x7f0000000100)={0x2, 0x80, 0x7f, 0x2, 0x0, 0xd9, 0x0, 0xffffffff, 0x8460, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x2, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x5ba, 0x4, @perf_bp={&(0x7f00000000c0), 0xa}, 0x401, 0xfffffffffffffff7, 0x3, 0x4, 0x8, 0x5, 0x100, 0x0, 0xfffffff8, 0x0, 0x1}, r4, 0x2, r1, 0x1)
ioctl$BLKTRACESTOP(r1, 0x1275, 0x0)
write(r2, &(0x7f0000003a00)="d450bdb86db4a9b6c9ce320c108b71f5b2e3964d15b1c1da16eba40b7b1242471e6550c117aa25e3dc4a743420609509a841347f4d1e6850d756ba89d33b7b8fdc379fd0a6a5679e4d3ada00f63999d49ad7f97bda5cc962f15e862b96935662fd87b2b9d4e38637bee1c06727b650d147df05afca7d83c76ad5c9d34a5d799054fc9c051ffa13fc1ba28de470d3bf051524d2fcfc0d9083b7d04ddfa91eb78c827314e18490aaa468de33254423753a80b5dfbaec2f0e4211119db801719a4c01a367f26cc303fa7a6dea6244ae929a25660c", 0xd3)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r5, 0xc020660b, 0x0)
ioctl$sock_SIOCGIFCONF(0xffffffffffffffff, 0xc020660b, 0x0)
fstatfs(r3, &(0x7f0000003b00)=""/133)
ioctl$FICLONE(r5, 0x40049409, 0xffffffffffffffff)

19:53:37 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000340)={0x0, 0x0, 0xa1, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000040)="3a1b58f2d9ceedc50ba8b4af302e85edaf7dd7eafe5a7715256edac7c833a95b23853f7d645ae03b20bd1805e77461e81ec93844ea0264ea2b7377cd8d52dfe04fa8036710bb3d01889d9382813302e2605446af26ab8aa498b94e9d0d61ed7640dd02f258a872dc4c3608dd7c7b78962fba66a6156df9eb3edc641854a234b18e601f83dd7d32e15f617af17865ccd0e4034a162a31de1ec0f0a96800795f5a3a", &(0x7f0000000280)=""/117, 0x1, 0x8001, 0x2, &(0x7f0000000300)})
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x0, 0x0, @scatter={0x0, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0})
r1 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={<r2=>0x0, ""/256, <r3=>0x0, <r4=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r4}, {0x0, r4}, {r3}, {r3}, {}, {}, {}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {r3}, {r2, r4}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {}, {}, {r2, r4}, {r3}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r2, r4}, {}, {0x0, r4}, {r3}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {0x0, r4}, {}, {r2, r4}, {0x0, r4}, {r2}, {}, {r3}, {r2}, {}, {r3, r4}, {}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3}, {r2, r4}, {r2}, {r2}, {}, {}, {0x0, r4}, {}, {r3}, {r2}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {}, {}, {0x0, r4}, {r2}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r2, r4}, {}, {}, {0x0, r4}, {}, {r2}, {0x0, r4}, {}, {r3}, {r2, r4}, {}, {r2}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r2}, {r2, r4}, {}, {0x0, r4}, {r2, r4}, {}, {r3, r4}, {r2}, {r3}, {}, {r2, r4}, {r2}, {0x0, r4}, {}, {r2}, {r2, r4}, {}, {}, {0x0, r4}, {}, {0x0, r4}, {r3, r4}, {}, {}, {r2, r4}, {0x0, r4}, {r3, r4}, {r2, r4}, {r3, r4}, {}, {}, {r3, r4}, {r3}, {}, {0x0, r4}, {r2}, {0x0, r4}, {r3, r4}, {r2}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {r2}, {}, {}, {}, {0x0, r4}, {r2, r4}, {r3, r4}, {}, {}, {}, {r3, <r5=>r4}, {0x0, r4}, {}, {}, {r2}, {r2}, {0x0, r4}, {r2, r4}, {r3, r4}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {r3}, {r2, r4}, {r2, r4}, {0x0, r4}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {r2}, {}, {r2}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r3, r4}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {r3}, {r3}, {}, {}, {r2}, {}, {r2}, {r3}, {}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {r3}, {r3}, {}, {}, {r3}, {0x0, r4}, {0x0, r4}, {r2, r4}, {r2}, {}, {0x0, r4}, {0x0, r4}, {}, {r3, r4}, {}, {0x0, r4}, {r2}, {r3, r4}, {r2, r4}, {r3, r4}, {r3}, {r2, r4}, {}, {}, {r3}, {r2, r4}, {0x0, r4}, {r2, r4}, {0x0, r4}, {r3}, {r3}, {r2}, {0x0, r4}, {r3, r4}, {r3}, {0x0, r4}, {}, {}, {}, {r2, r4}], 0x1, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f000005b580)={0x151272b0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r5}], 0x80, "09e90fd4c70903"})
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r6, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r7 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r7, 0xd000943d, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

19:53:37 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, &(0x7f0000000340), &(0x7f0000000380), &(0x7f00000003c0), {0x3a}, &(0x7f00000004c0)=""/240, 0xf0, &(0x7f0000000400)=""/126, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

[  233.022999][T19100] debugfs: Directory 'sg0' with parent 'block' already present!
[  233.044378][T19100] blktrace: debugfs_dir not present for sg0 so skipping
[  233.055289][T19105] debugfs: Directory 'sg0' with parent 'block' already present!
[  233.067755][T19105] blktrace: debugfs_dir not present for sg0 so skipping
[  233.076806][    C0] sd 0:0:1:0: tag#7847 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  233.086634][    C0] sd 0:0:1:0: tag#7847 CDB: opcode=0xe5 (vendor)
[  233.092940][    C0] sd 0:0:1:0: tag#7847 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  233.101973][    C0] sd 0:0:1:0: tag#7847 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  233.111014][    C0] sd 0:0:1:0: tag#7847 CDB[20]: ba
19:53:37 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f0000000180)={0x4, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r1=>0x0}], 0x2, "2a71cda14f379b"})
ioctl$BTRFS_IOC_TREE_SEARCH(r0, 0xd0009411, &(0x7f0000002080)={{<r2=>0x0, 0x5, 0x7, 0x81, 0x3, 0x1287, 0x0, 0x2659, 0xff, 0x750e, 0x9, 0x9, 0x42, 0x7, 0xffff}})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f0000003080)={r1, r2, "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", "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"})
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

19:53:37 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000340)={0x0, 0x0, 0xa1, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000040)="3a1b58f2d9ceedc50ba8b4af302e85edaf7dd7eafe5a7715256edac7c833a95b23853f7d645ae03b20bd1805e77461e81ec93844ea0264ea2b7377cd8d52dfe04fa8036710bb3d01889d9382813302e2605446af26ab8aa498b94e9d0d61ed7640dd02f258a872dc4c3608dd7c7b78962fba66a6156df9eb3edc641854a234b18e601f83dd7d32e15f617af17865ccd0e4034a162a31de1ec0f0a96800795f5a3a", &(0x7f0000000280)=""/117, 0x1, 0x8001, 0x2, &(0x7f0000000300)})
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x0, 0x0, @scatter={0x0, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0})
r1 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={<r2=>0x0, ""/256, <r3=>0x0, <r4=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r4}, {0x0, r4}, {r3}, {r3}, {}, {}, {}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {r3}, {r2, r4}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {}, {}, {r2, r4}, {r3}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r2, r4}, {}, {0x0, r4}, {r3}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {0x0, r4}, {}, {r2, r4}, {0x0, r4}, {r2}, {}, {r3}, {r2}, {}, {r3, r4}, {}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3}, {r2, r4}, {r2}, {r2}, {}, {}, {0x0, r4}, {}, {r3}, {r2}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {}, {}, {0x0, r4}, {r2}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r2, r4}, {}, {}, {0x0, r4}, {}, {r2}, {0x0, r4}, {}, {r3}, {r2, r4}, {}, {r2}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r2}, {r2, r4}, {}, {0x0, r4}, {r2, r4}, {}, {r3, r4}, {r2}, {r3}, {}, {r2, r4}, {r2}, {0x0, r4}, {}, {r2}, {r2, r4}, {}, {}, {0x0, r4}, {}, {0x0, r4}, {r3, r4}, {}, {}, {r2, r4}, {0x0, r4}, {r3, r4}, {r2, r4}, {r3, r4}, {}, {}, {r3, r4}, {r3}, {}, {0x0, r4}, {r2}, {0x0, r4}, {r3, r4}, {r2}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {r2}, {}, {}, {}, {0x0, r4}, {r2, r4}, {r3, r4}, {}, {}, {}, {r3, <r5=>r4}, {0x0, r4}, {}, {}, {r2}, {r2}, {0x0, r4}, {r2, r4}, {r3, r4}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {r3}, {r2, r4}, {r2, r4}, {0x0, r4}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {r2}, {}, {r2}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r3, r4}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {r3}, {r3, r4}, {}, {}, {}, {}, {r2}, {r3}, {}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {r3}, {r3}, {}, {}, {r3}, {0x0, r4}, {0x0, r4}, {r2, r4}, {r2}, {}, {0x0, r4}, {0x0, r4}, {}, {r3, r4}, {}, {0x0, r4}, {r2}, {r3, r4}, {r2, r4}, {r3, r4}, {r3}, {r2, r4}, {}, {}, {r3}, {r2, r4}, {0x0, r4}, {r2, r4}, {0x0, r4}, {r3}, {r3}, {r2}, {0x0, r4}, {r3, r4}, {r3}, {0x0, r4}, {}, {}, {}, {r2, r4}], 0x1, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f000005b580)={0x151272b0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r5}], 0x80, "09e90fd4c70903"})
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r6, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r7 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r7, 0xd000943d, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

[  233.117218][T19104] debugfs: Directory 'sg0' with parent 'block' already present!
[  233.125072][T19104] blktrace: debugfs_dir not present for sg0 so skipping
[  233.179577][T19114] debugfs: Directory 'sg0' with parent 'block' already present!
[  233.194908][T19114] blktrace: debugfs_dir not present for sg0 so skipping
[  233.203177][    C1] sd 0:0:1:0: tag#7848 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  233.213004][    C1] sd 0:0:1:0: tag#7848 CDB: opcode=0xe5 (vendor)
[  233.219352][    C1] sd 0:0:1:0: tag#7848 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  233.228386][    C1] sd 0:0:1:0: tag#7848 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  233.237424][    C1] sd 0:0:1:0: tag#7848 CDB[20]: ba
[  233.247400][T19115] debugfs: Directory 'sg0' with parent 'block' already present!
[  233.255181][T19115] blktrace: debugfs_dir not present for sg0 so skipping
19:53:38 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r0, 0xc020660b, 0x0)
read(r0, &(0x7f0000000200)=""/75, 0x4b)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = clone3(&(0x7f0000007500)={0x30000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pidfd_open(r1, 0x0)
r2 = openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r4, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r4, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x7, 0x8, 0x1, 0x6, 0x0, 0x3, 0x8, 0xf, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, @perf_config_ext={0x8000, 0x1}, 0x42200, 0x2, 0x1fb, 0x5, 0x5, 0x4, 0x20, 0x0, 0x6, 0x0, 0x2}, r1, 0x6, r2, 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000480)='/sys/power/disk', 0x4000, 0x0)

19:53:38 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, &(0x7f0000000340), &(0x7f0000000380), &(0x7f00000003c0), {0x3a}, &(0x7f00000004c0)=""/240, 0xf0, &(0x7f0000000400)=""/126, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

19:53:38 executing program 0:
r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_INTERFACE(r0, &(0x7f00000014c0)={&(0x7f0000001400)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000001480)={&(0x7f0000001440)={0x14, 0x0, 0x200, 0x70bd2b, 0x25dfdbff, {{}, {@void, @void}}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x2000080}, 0x8800)
r1 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001300)={0x0, 0xfffffffffffffffe, 0x32, 0x4, @scatter={0x3, 0x0, &(0x7f0000001180)=[{&(0x7f0000000000)=""/59, 0x3b}, {&(0x7f0000000040)=""/158, 0x9e}, {&(0x7f0000000180)=""/4096, 0x1000}]}, &(0x7f00000011c0)="d371144fb7c82dd4e9dba0e3b95a601f89f96f0d0edb84b6e96fbb3fbe34fefe8f37ee063a5a70ecfaf2595b909d8ca1f843", &(0x7f0000001200)=""/132, 0xb8, 0x10012, 0x2, &(0x7f00000012c0)})
r2 = openat$vcs(0xffffffffffffff9c, &(0x7f00000013c0), 0x101080, 0x0)
r3 = openat(r2, &(0x7f0000001380)='./file0\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0)
preadv(r3, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x7fff, 0x0, 0x0, 0xffffffffffffffff})

19:53:38 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000340)={0x0, 0x0, 0xa1, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000040)="3a1b58f2d9ceedc50ba8b4af302e85edaf7dd7eafe5a7715256edac7c833a95b23853f7d645ae03b20bd1805e77461e81ec93844ea0264ea2b7377cd8d52dfe04fa8036710bb3d01889d9382813302e2605446af26ab8aa498b94e9d0d61ed7640dd02f258a872dc4c3608dd7c7b78962fba66a6156df9eb3edc641854a234b18e601f83dd7d32e15f617af17865ccd0e4034a162a31de1ec0f0a96800795f5a3a", &(0x7f0000000280)=""/117, 0x1, 0x8001, 0x2, &(0x7f0000000300)})
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x0, 0x0, @scatter={0x0, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0})
r1 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={<r2=>0x0, ""/256, <r3=>0x0, <r4=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r4}, {0x0, r4}, {r3}, {r3}, {}, {}, {}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {r3}, {r2, r4}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {}, {}, {r2, r4}, {r3}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r2, r4}, {}, {0x0, r4}, {r3}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {0x0, r4}, {}, {r2, r4}, {0x0, r4}, {r2}, {}, {r3}, {r2}, {}, {r3, r4}, {}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3}, {r2, r4}, {r2}, {r2}, {}, {}, {0x0, r4}, {}, {r3}, {r2}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {}, {}, {0x0, r4}, {r2}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r2, r4}, {}, {}, {0x0, r4}, {}, {r2}, {0x0, r4}, {}, {r3}, {r2, r4}, {}, {r2}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r2}, {r2, r4}, {}, {0x0, r4}, {r2, r4}, {}, {r3, r4}, {r2}, {r3}, {}, {r2, r4}, {r2}, {0x0, r4}, {}, {r2}, {r2, r4}, {}, {}, {0x0, r4}, {}, {0x0, r4}, {r3, r4}, {}, {}, {r2, r4}, {0x0, r4}, {r3, r4}, {r2, r4}, {r3, r4}, {}, {}, {r3, r4}, {r3}, {}, {0x0, r4}, {r2}, {0x0, r4}, {r3, r4}, {r2}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {r2}, {}, {}, {}, {0x0, r4}, {r2, r4}, {r3, r4}, {}, {}, {}, {r3, <r5=>r4}, {0x0, r4}, {}, {}, {r2}, {r2}, {0x0, r4}, {r2, r4}, {r3, r4}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {r3}, {r2, r4}, {r2, r4}, {0x0, r4}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {r2}, {}, {r2}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r3, r4}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {r3}, {r3, r4}, {}, {}, {r2}, {}, {}, {r3}, {}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {r3}, {r3}, {}, {}, {r3}, {0x0, r4}, {0x0, r4}, {r2, r4}, {r2}, {}, {0x0, r4}, {0x0, r4}, {}, {r3, r4}, {}, {0x0, r4}, {r2}, {r3, r4}, {r2, r4}, {r3, r4}, {r3}, {r2, r4}, {}, {}, {r3}, {r2, r4}, {0x0, r4}, {r2, r4}, {0x0, r4}, {r3}, {r3}, {r2}, {0x0, r4}, {r3, r4}, {r3}, {0x0, r4}, {}, {}, {}, {r2, r4}], 0x1, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f000005b580)={0x151272b0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r5}], 0x80, "09e90fd4c70903"})
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r6, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r7 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r7, 0xd000943d, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

[  233.685764][    C0] sd 0:0:1:0: tag#7849 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  233.695609][    C0] sd 0:0:1:0: tag#7849 CDB: opcode=0xe5 (vendor)
[  233.701931][    C0] sd 0:0:1:0: tag#7849 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  233.710978][    C0] sd 0:0:1:0: tag#7849 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  233.720016][    C0] sd 0:0:1:0: tag#7849 CDB[20]: ba
19:53:38 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})
ioctl$SG_IO(r0, 0x2285, &(0x7f0000001440)={0x53, 0xfffffffffffffffb, 0x1000, 0x2, @scatter={0x7, 0x0, &(0x7f0000001340)=[{&(0x7f0000000000)=""/105, 0x69}, {&(0x7f0000000080)=""/62, 0x3e}, {&(0x7f0000000180)=""/98, 0x62}, {&(0x7f0000000200)=""/4096, 0x1000}, {&(0x7f00000000c0)=""/62, 0x3e}, {&(0x7f0000001200)=""/26, 0x1a}, {&(0x7f0000001240)=""/235, 0xeb}]}, &(0x7f0000002080)="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", &(0x7f00000013c0)=""/15, 0xffffffff, 0x5, 0xffffffffffffffff, &(0x7f0000001400)})
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)

[  233.739145][T19127] debugfs: Directory 'sg0' with parent 'block' already present!
[  233.745870][T19128] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  233.749055][T19127] blktrace: debugfs_dir not present for sg0 so skipping
19:53:38 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, &(0x7f0000000340), &(0x7f0000000380), &(0x7f00000003c0), {0x3a}, &(0x7f00000004c0)=""/240, 0xf0, &(0x7f0000000400)=""/126, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

19:53:38 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000340)={0x0, 0x0, 0xa1, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000040)="3a1b58f2d9ceedc50ba8b4af302e85edaf7dd7eafe5a7715256edac7c833a95b23853f7d645ae03b20bd1805e77461e81ec93844ea0264ea2b7377cd8d52dfe04fa8036710bb3d01889d9382813302e2605446af26ab8aa498b94e9d0d61ed7640dd02f258a872dc4c3608dd7c7b78962fba66a6156df9eb3edc641854a234b18e601f83dd7d32e15f617af17865ccd0e4034a162a31de1ec0f0a96800795f5a3a", &(0x7f0000000280)=""/117, 0x1, 0x8001, 0x2, &(0x7f0000000300)})
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x0, 0x0, @scatter={0x0, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0})
r1 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={<r2=>0x0, ""/256, <r3=>0x0, <r4=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r4}, {0x0, r4}, {r3}, {r3}, {}, {}, {}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {r3}, {r2, r4}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {}, {}, {r2, r4}, {r3}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r2, r4}, {}, {0x0, r4}, {r3}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {0x0, r4}, {}, {r2, r4}, {0x0, r4}, {r2}, {}, {r3}, {r2}, {}, {r3, r4}, {}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3}, {r2, r4}, {r2}, {r2}, {}, {}, {0x0, r4}, {}, {r3}, {r2}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {}, {}, {0x0, r4}, {r2}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r2, r4}, {}, {}, {0x0, r4}, {}, {r2}, {0x0, r4}, {}, {r3}, {r2, r4}, {}, {r2}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r2}, {r2, r4}, {}, {0x0, r4}, {r2, r4}, {}, {r3, r4}, {r2}, {r3}, {}, {r2, r4}, {r2}, {0x0, r4}, {}, {r2}, {r2, r4}, {}, {}, {0x0, r4}, {}, {0x0, r4}, {r3, r4}, {}, {}, {r2, r4}, {0x0, r4}, {r3, r4}, {r2, r4}, {r3, r4}, {}, {}, {r3, r4}, {r3}, {}, {0x0, r4}, {r2}, {0x0, r4}, {r3, r4}, {r2}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {r2}, {}, {}, {}, {0x0, r4}, {r2, r4}, {r3, r4}, {}, {}, {}, {r3, <r5=>r4}, {0x0, r4}, {}, {}, {r2}, {r2}, {0x0, r4}, {r2, r4}, {r3, r4}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {r3}, {r2, r4}, {r2, r4}, {0x0, r4}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {r2}, {}, {r2}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r3, r4}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {r3}, {r3, r4}, {}, {}, {r2}, {}, {}, {r3}, {}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {r3}, {r3}, {}, {}, {r3}, {0x0, r4}, {0x0, r4}, {r2, r4}, {r2}, {}, {0x0, r4}, {0x0, r4}, {}, {r3, r4}, {}, {0x0, r4}, {r2}, {r3, r4}, {r2, r4}, {r3, r4}, {r3}, {r2, r4}, {}, {}, {r3}, {r2, r4}, {0x0, r4}, {r2, r4}, {0x0, r4}, {r3}, {r3}, {r2}, {0x0, r4}, {r3, r4}, {r3}, {0x0, r4}, {}, {}, {}, {r2, r4}], 0x1, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f000005b580)={0x151272b0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r5}], 0x80, "09e90fd4c70903"})
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r6, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r7 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r7, 0xd000943d, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

[  233.793113][T19133] debugfs: Directory 'sg0' with parent 'block' already present!
[  233.811940][T19133] blktrace: debugfs_dir not present for sg0 so skipping
[  233.830009][T19137] debugfs: Directory 'sg0' with parent 'block' already present!
[  233.853552][T19137] blktrace: debugfs_dir not present for sg0 so skipping
[  233.870708][    C0] sd 0:0:1:0: tag#7850 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  233.880548][    C0] sd 0:0:1:0: tag#7850 CDB: opcode=0xe5 (vendor)
[  233.886902][    C0] sd 0:0:1:0: tag#7850 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
19:53:38 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, 0x0, 0x0, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, &(0x7f0000000340), &(0x7f0000000380), &(0x7f00000003c0), {0x3a}, &(0x7f00000004c0)=""/240, 0xf0, &(0x7f0000000400)=""/126, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

19:53:38 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = clone3(&(0x7f0000007500)={0x30000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r2 = pidfd_open(r1, 0x0)
perf_event_open(&(0x7f0000000180)={0x4, 0x80, 0xa0, 0x2, 0x2, 0x4, 0x0, 0xffffffffffffff01, 0x10, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x3f, 0x3, @perf_bp={&(0x7f00000000c0), 0x1}, 0x1802, 0x4, 0x3, 0x1, 0x0, 0x5, 0x400, 0x0, 0x7f, 0x0, 0x400}, r1, 0x6, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000000000)={<r3=>0xffffffffffffffff}, 0x800)
ioctl$SG_IO(r0, 0x2285, &(0x7f0000000680)={0x53, 0xfffffffffffffffe, 0x31, 0xf7, @buffer={0x0, 0x73, &(0x7f0000000340)=""/115}, &(0x7f0000000500)="7fab70893a60aee3f8bb05cd17082e741846754f6302646091052df02ce357159f7bdcf65309061bdbb8ed7c5484f91c13", &(0x7f0000000540)=""/217, 0x8, 0x0, 0x2, &(0x7f0000000640)})
r4 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r4, 0x0)
preadv(r4, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
ioctl$PERF_EVENT_IOC_SET_OUTPUT(0xffffffffffffffff, 0x2405, r4)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})
syz_open_dev$sg(&(0x7f0000000080), 0x26, 0x200402)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = signalfd4(r2, &(0x7f00000003c0)={[0xffffffffffffffe0]}, 0x8, 0x800)
sendmsg$SEG6_CMD_SETHMAC(r6, &(0x7f00000004c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x40, 0x0, 0x20, 0x70bd28, 0x25dfdbfd, {}, [@SEG6_ATTR_SECRET={0xc, 0x4, [0x6c3, 0x1]}, @SEG6_ATTR_SECRETLEN={0x5, 0x5, 0x3}, @SEG6_ATTR_SECRET={0x10, 0x4, [0x9, 0x5, 0x2]}, @SEG6_ATTR_DSTLEN={0x8, 0x2, 0xef80}]}, 0x40}, 0x1, 0x0, 0x0, 0x4000}, 0x40000)
ioctl$sock_SIOCGIFCONF(r5, 0xc020660b, 0x0)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), r3)
sendmsg$NL80211_CMD_SET_WIPHY(r5, &(0x7f0000000300)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000280)={0x1c, r7, 0x822, 0x70bd2a, 0x25dfdbfd, {}, [@NL80211_ATTR_WIPHY_COVERAGE_CLASS={0x5, 0x59, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4000414}, 0x44084)

19:53:38 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000340)={0x0, 0x0, 0xa1, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000040)="3a1b58f2d9ceedc50ba8b4af302e85edaf7dd7eafe5a7715256edac7c833a95b23853f7d645ae03b20bd1805e77461e81ec93844ea0264ea2b7377cd8d52dfe04fa8036710bb3d01889d9382813302e2605446af26ab8aa498b94e9d0d61ed7640dd02f258a872dc4c3608dd7c7b78962fba66a6156df9eb3edc641854a234b18e601f83dd7d32e15f617af17865ccd0e4034a162a31de1ec0f0a96800795f5a3a", &(0x7f0000000280)=""/117, 0x1, 0x8001, 0x2, &(0x7f0000000300)})
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x0, 0x0, @scatter={0x0, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0})
r1 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={<r2=>0x0, ""/256, <r3=>0x0, <r4=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r4}, {0x0, r4}, {r3}, {r3}, {}, {}, {}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {r3}, {r2, r4}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {}, {}, {r2, r4}, {r3}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r2, r4}, {}, {0x0, r4}, {r3}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {0x0, r4}, {}, {r2, r4}, {0x0, r4}, {r2}, {}, {r3}, {r2}, {}, {r3, r4}, {}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3}, {r2, r4}, {r2}, {r2}, {}, {}, {0x0, r4}, {}, {r3}, {r2}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {}, {}, {0x0, r4}, {r2}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r2, r4}, {}, {}, {0x0, r4}, {}, {r2}, {0x0, r4}, {}, {r3}, {r2, r4}, {}, {r2}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r2}, {r2, r4}, {}, {0x0, r4}, {r2, r4}, {}, {r3, r4}, {r2}, {r3}, {}, {r2, r4}, {r2}, {0x0, r4}, {}, {r2}, {r2, r4}, {}, {}, {0x0, r4}, {}, {0x0, r4}, {r3, r4}, {}, {}, {r2, r4}, {0x0, r4}, {r3, r4}, {r2, r4}, {r3, r4}, {}, {}, {r3, r4}, {r3}, {}, {0x0, r4}, {r2}, {0x0, r4}, {r3, r4}, {r2}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {r2}, {}, {}, {}, {0x0, r4}, {r2, r4}, {r3, r4}, {}, {}, {}, {r3, <r5=>r4}, {0x0, r4}, {}, {}, {r2}, {r2}, {0x0, r4}, {r2, r4}, {r3, r4}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {r3}, {r2, r4}, {r2, r4}, {0x0, r4}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {r2}, {}, {r2}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r3, r4}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {r3}, {r3, r4}, {}, {}, {r2}, {}, {}, {r3}, {}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {r3}, {r3}, {}, {}, {r3}, {0x0, r4}, {0x0, r4}, {r2, r4}, {r2}, {}, {0x0, r4}, {0x0, r4}, {}, {r3, r4}, {}, {0x0, r4}, {r2}, {r3, r4}, {r2, r4}, {r3, r4}, {r3}, {r2, r4}, {}, {}, {r3}, {r2, r4}, {0x0, r4}, {r2, r4}, {0x0, r4}, {r3}, {r3}, {r2}, {0x0, r4}, {r3, r4}, {r3}, {0x0, r4}, {}, {}, {}, {r2, r4}], 0x1, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f000005b580)={0x151272b0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r5}], 0x80, "09e90fd4c70903"})
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r6, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r7 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r7, 0xd000943d, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

[  233.895939][    C0] sd 0:0:1:0: tag#7850 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  233.904994][    C0] sd 0:0:1:0: tag#7850 CDB[20]: ba
[  233.910964][T19140] debugfs: Directory 'sg0' with parent 'block' already present!
[  233.925761][T19140] blktrace: debugfs_dir not present for sg0 so skipping
[  233.986841][T19146] debugfs: Directory 'sg0' with parent 'block' already present!
[  234.008704][T19146] blktrace: debugfs_dir not present for sg0 so skipping
[  234.023628][    C0] sd 0:0:1:0: tag#7852 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
19:53:38 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, 0x0, 0x0, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, &(0x7f0000000340), &(0x7f0000000380), &(0x7f00000003c0), {0x3a}, &(0x7f00000004c0)=""/240, 0xf0, &(0x7f0000000400)=""/126, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

[  234.033456][    C0] sd 0:0:1:0: tag#7852 CDB: opcode=0xe5 (vendor)
[  234.039826][    C0] sd 0:0:1:0: tag#7852 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  234.048862][    C0] sd 0:0:1:0: tag#7852 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  234.057910][    C0] sd 0:0:1:0: tag#7852 CDB[20]: ba
[  234.068311][T19153] debugfs: Directory 'sg0' with parent 'block' already present!
[  234.077598][T19153] blktrace: debugfs_dir not present for sg0 so skipping
19:53:38 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000340)={0x0, 0x0, 0xa1, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000040)="3a1b58f2d9ceedc50ba8b4af302e85edaf7dd7eafe5a7715256edac7c833a95b23853f7d645ae03b20bd1805e77461e81ec93844ea0264ea2b7377cd8d52dfe04fa8036710bb3d01889d9382813302e2605446af26ab8aa498b94e9d0d61ed7640dd02f258a872dc4c3608dd7c7b78962fba66a6156df9eb3edc641854a234b18e601f83dd7d32e15f617af17865ccd0e4034a162a31de1ec0f0a96800795f5a3a", &(0x7f0000000280)=""/117, 0x1, 0x8001, 0x2, &(0x7f0000000300)})
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x0, 0x0, @scatter={0x0, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0})
r1 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={<r2=>0x0, ""/256, <r3=>0x0, <r4=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r4}, {0x0, r4}, {r3}, {r3}, {}, {}, {}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {r3}, {r2, r4}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {}, {}, {r2, r4}, {r3}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r2, r4}, {}, {0x0, r4}, {r3}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {0x0, r4}, {}, {r2, r4}, {0x0, r4}, {r2}, {}, {r3}, {r2}, {}, {r3, r4}, {}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3}, {r2, r4}, {r2}, {r2}, {}, {}, {0x0, r4}, {}, {r3}, {r2}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {}, {}, {0x0, r4}, {r2}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r2, r4}, {}, {}, {0x0, r4}, {}, {r2}, {0x0, r4}, {}, {r3}, {r2, r4}, {}, {r2}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r2}, {r2, r4}, {}, {0x0, r4}, {r2, r4}, {}, {r3, r4}, {r2}, {r3}, {}, {r2, r4}, {r2}, {0x0, r4}, {}, {r2}, {r2, r4}, {}, {}, {0x0, r4}, {}, {0x0, r4}, {r3, r4}, {}, {}, {r2, r4}, {0x0, r4}, {r3, r4}, {r2, r4}, {r3, r4}, {}, {}, {r3, r4}, {r3}, {}, {0x0, r4}, {r2}, {0x0, r4}, {r3, r4}, {r2}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {r2}, {}, {}, {}, {0x0, r4}, {r2, r4}, {r3, r4}, {}, {}, {}, {r3, <r5=>r4}, {0x0, r4}, {}, {}, {r2}, {r2}, {0x0, r4}, {r2, r4}, {r3, r4}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {r3}, {r2, r4}, {r2, r4}, {0x0, r4}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {r2}, {}, {r2}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r3, r4}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {r3}, {r3, r4}, {}, {}, {r2}, {}, {r2}, {r3}, {}, {}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {r3}, {r3}, {}, {}, {r3}, {0x0, r4}, {0x0, r4}, {r2, r4}, {r2}, {}, {0x0, r4}, {0x0, r4}, {}, {r3, r4}, {}, {0x0, r4}, {r2}, {r3, r4}, {r2, r4}, {r3, r4}, {r3}, {r2, r4}, {}, {}, {r3}, {r2, r4}, {0x0, r4}, {r2, r4}, {0x0, r4}, {r3}, {r3}, {r2}, {0x0, r4}, {r3, r4}, {r3}, {0x0, r4}, {}, {}, {}, {r2, r4}], 0x1, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f000005b580)={0x151272b0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r5}], 0x80, "09e90fd4c70903"})
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r6, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r7 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r7, 0xd000943d, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

[  234.092080][T19146] debugfs: Directory 'sg0' with parent 'block' already present!
[  234.100448][T19146] blktrace: debugfs_dir not present for sg0 so skipping
[  234.151527][    C0] sd 0:0:1:0: tag#7854 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  234.161367][    C0] sd 0:0:1:0: tag#7854 CDB: opcode=0xe5 (vendor)
[  234.167719][    C0] sd 0:0:1:0: tag#7854 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  234.176750][    C0] sd 0:0:1:0: tag#7854 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  234.185776][    C0] sd 0:0:1:0: tag#7854 CDB[20]: ba
[  234.200491][T19161] debugfs: Directory 'sg0' with parent 'block' already present!
[  234.215001][T19161] blktrace: debugfs_dir not present for sg0 so skipping
19:53:39 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r0, 0xc020660b, 0x0)
read(r0, &(0x7f0000000200)=""/75, 0x4b)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = clone3(&(0x7f0000007500)={0x30000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pidfd_open(r1, 0x0)
r2 = openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r4, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r4, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x7, 0x8, 0x1, 0x6, 0x0, 0x3, 0x8, 0xf, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, @perf_config_ext={0x8000, 0x1}, 0x42200, 0x2, 0x1fb, 0x5, 0x5, 0x4, 0x20, 0x0, 0x6, 0x0, 0x2}, r1, 0x6, r2, 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000480)='/sys/power/disk', 0x4000, 0x0)

19:53:39 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = clone3(&(0x7f0000007500)={0x30000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pidfd_open(r1, 0x0)
pidfd_open(r1, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x84, 0x0, r1})

19:53:39 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, 0x0, 0x0, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, &(0x7f0000000340), &(0x7f0000000380), &(0x7f00000003c0), {0x3a}, &(0x7f00000004c0)=""/240, 0xf0, &(0x7f0000000400)=""/126, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

19:53:39 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
epoll_ctl$EPOLL_CTL_DEL(0xffffffffffffffff, 0x2, r0)
ioctl$BLKTRACESETUP(r0, 0x2205, 0x0)
r1 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={<r2=>0x0, ""/256, <r3=>0x0, <r4=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r4}, {0x0, r4}, {r3}, {r3}, {r3, r4}, {}, {}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {}, {r2, r4}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {}, {}, {r2, r4}, {r3}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r2, r4}, {}, {0x0, r4}, {r3}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {0x0, r4}, {}, {r2, r4}, {0x0, r4}, {r2}, {}, {r3}, {r2}, {}, {r3, r4}, {}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3}, {r2, r4}, {}, {r2}, {}, {}, {0x0, r4}, {}, {r3}, {r2}, {}, {}, {}, {0x0, r4}, {r3}, {}, {}, {0x0, r4}, {r2}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3, r4}, {}, {}, {0x0, r4}, {}, {r2}, {0x0, r4}, {}, {r3}, {r2, r4}, {0x0, r4}, {r2}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r2}, {r2, r4}, {}, {0x0, r4}, {r2, r4}, {0x0, r4}, {r3, r4}, {r2, r4}, {r3}, {}, {r2, r4}, {r2}, {r3, r4}, {}, {r2}, {r2, r4}, {}, {}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3, r4}, {}, {}, {r2, r4}, {0x0, r4}, {r3, r4}, {r2, r4}, {r3, r4}, {0x0, r4}, {}, {r3, r4}, {r3}, {}, {0x0, r4}, {r2}, {0x0, r4}, {r3, r4}, {r2}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {r2}, {}, {}, {}, {0x0, r4}, {r2, r4}, {r3, r4}, {}, {}, {}, {r3}, {0x0, r4}, {}, {}, {r2}, {r2}, {0x0, r4}, {r2, r4}, {r3, r4}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {r3}, {r2, r4}, {r2, r4}, {0x0, r4}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {r2}, {}, {r2}, {r3}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r3, r4}, {0x0, r4}, {}, {r3, r4}, {r2, r4}, {r3}, {r3, r4}, {}, {}, {r2}, {}, {r2}, {r3}, {}, {r2, r4}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {r3}, {r3}, {}, {}, {r3}, {0x0, r4}, {0x0, r4}, {r2, r4}, {r2}, {}, {0x0, r4}, {}, {}, {r3, r4}, {r2}, {0x0, r4}, {r2}, {r3, r4}, {r2, r4}, {r3, r4}, {r3}, {r2, r4}, {}, {}, {r3}, {r2, r4}, {0x0, r4}, {r2, r4}, {0x0, r4}, {r3}, {r3}, {}, {0x0, r4}, {r3, r4}, {}, {0x0, r4}, {}, {}, {0x0, r4}, {r2, r4}], 0x1, "2156816c73038c"})
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r5, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r6 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r6, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r5, 0x81f8943c, &(0x7f0000000440)={<r7=>0x0, ""/256, <r8=>0x0, <r9=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r6, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r9}, {0x0, r9}, {r8}, {r8}, {r8, r9}, {}, {}, {0x0, r9}, {}, {r8, r9}, {0x0, r9}, {}, {r7, r9}, {0x0, r9}, {}, {r8, r9}, {0x0, r9}, {}, {}, {}, {0x0, r9}, {r8}, {0x0, r9}, {0x0, r9}, {r8}, {0x0, r9}, {r7}, {}, {r7}, {0x0, r9}, {}, {}, {r7, r9}, {r8}, {}, {0x0, r9}, {r8, r9}, {0x0, r9}, {r7, r9}, {}, {0x0, r9}, {r8}, {}, {0x0, r9}, {r8}, {0x0, r9}, {r8}, {0x0, r9}, {}, {r7, r9}, {0x0, r9}, {r7}, {}, {r8}, {r7}, {}, {r8, r9}, {}, {0x0, r9}, {0x0, r9}, {0x0, r9}, {0x0, r9}, {r8, r9}, {0x0, r9}, {0x0, r9}, {0x0, r9}, {r8}, {r7, r9}, {}, {r7}, {}, {}, {0x0, r9}, {}, {r8}, {r7}, {}, {}, {}, {0x0, r9}, {r8}, {}, {}, {0x0, r9}, {r7}, {0x0, r9}, {0x0, r9}, {0x0, r9}, {r8, r9}, {}, {}, {0x0, r9}, {}, {r7}, {0x0, r9}, {}, {r8}, {r7, r9}, {0x0, r9}, {r7}, {r8, r9}, {0x0, r9}, {0x0, r9}, {0x0, r9}, {}, {0x0, r9}, {r7}, {r7, r9}, {}, {0x0, r9}, {r7, r9}, {0x0, r9}, {r8, r9}, {r7, r9}, {r8}, {}, {r7, r9}, {r7}, {r8, r9}, {}, {r7}, {r7, r9}, {}, {}, {0x0, r9}, {0x0, r9}, {0x0, r9}, {r8, r9}, {}, {}, {r7, r9}, {0x0, r9}, {r8, r9}, {r7, r9}, {r8, r9}, {0x0, r9}, {}, {r8, r9}, {r8}, {}, {0x0, r9}, {r7}, {0x0, r9}, {r8, r9}, {r7}, {0x0, r9}, {r8, r9}, {0x0, r9}, {0x0, r9}, {}, {0x0, r9}, {r8}, {0x0, r9}, {r8}, {r7}, {}, {}, {}, {0x0, r9}, {r7, r9}, {r8, r9}, {}, {}, {}, {r8}, {0x0, r9}, {}, {}, {r7}, {r7}, {0x0, r9}, {r7, r9}, {r8, r9}, {0x0, r9}, {r7}, {}, {r7}, {0x0, r9}, {r8}, {r7, r9}, {r7, r9}, {0x0, r9}, {0x0, r9}, {}, {}, {0x0, r9}, {r8}, {r7}, {}, {r7}, {r8}, {0x0, r9}, {r8, r9}, {0x0, r9}, {r8, r9}, {0x0, r9}, {}, {r8, r9}, {r7, r9}, {r8}, {r8, r9}, {}, {}, {r7}, {}, {r7}, {r8}, {}, {r7, r9}, {}, {}, {0x0, r9}, {r8}, {0x0, r9}, {r7}, {r8}, {r8}, {}, {}, {r8}, {0x0, r9}, {0x0, r9}, {r7, r9}, {r7}, {}, {0x0, r9}, {}, {}, {r8, r9}, {r7}, {0x0, r9}, {r7}, {r8, r9}, {r7, r9}, {r8, r9}, {r8}, {r7, r9}, {}, {}, {r8}, {r7, r9}, {0x0, r9}, {r7, r9}, {0x0, r9}, {r8}, {r8}, {}, {0x0, r9}, {r8, r9}, {}, {0x0, r9}, {}, {}, {0x0, r9}, {r7, r9}], 0x1, "2156816c73038c"})
r10 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r10, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r11 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r11, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r10, 0x81f8943c, &(0x7f0000000440)={<r12=>0x0, ""/256, <r13=>0x0, <r14=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r11, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r14}, {0x0, r14}, {r13}, {r13}, {r13, r14}, {}, {}, {0x0, r14}, {}, {r13, r14}, {0x0, r14}, {}, {r12, r14}, {0x0, r14}, {}, {r13, r14}, {0x0, r14}, {}, {}, {}, {0x0, r14}, {r13}, {0x0, r14}, {0x0, r14}, {r13}, {0x0, r14}, {r12}, {}, {r12}, {0x0, r14}, {}, {}, {r12, r14}, {r13}, {}, {0x0, r14}, {r13, r14}, {0x0, r14}, {r12, r14}, {}, {0x0, r14}, {r13}, {}, {0x0, r14}, {r13}, {0x0, r14}, {r13}, {0x0, r14}, {}, {r12, r14}, {0x0, r14}, {r12}, {}, {r13}, {r12}, {}, {r13, r14}, {}, {0x0, r14}, {0x0, r14}, {0x0, r14}, {0x0, r14}, {r13, r14}, {0x0, r14}, {0x0, r14}, {0x0, r14}, {r13}, {r12, r14}, {}, {r12}, {}, {}, {0x0, r14}, {}, {r13}, {r12}, {}, {}, {}, {0x0, r14}, {r13}, {}, {}, {0x0, r14}, {r12}, {0x0, r14}, {0x0, r14}, {0x0, r14}, {r13, r14}, {}, {}, {0x0, r14}, {}, {r12}, {0x0, r14}, {}, {r13}, {r12, r14}, {0x0, r14}, {r12}, {r13, r14}, {0x0, r14}, {0x0, r14}, {0x0, r14}, {}, {0x0, r14}, {r12}, {r12, r14}, {}, {0x0, r14}, {r12, r14}, {0x0, r14}, {r13, r14}, {r12, r14}, {r13}, {}, {r12, r14}, {r12}, {r13, r14}, {}, {r12}, {r12, r14}, {}, {}, {0x0, r14}, {0x0, r14}, {0x0, r14}, {r13, r14}, {}, {}, {r12, r14}, {0x0, r14}, {r13, r14}, {r12, r14}, {r13, r14}, {0x0, r14}, {}, {r13, r14}, {r13}, {}, {0x0, r14}, {r12}, {0x0, r14}, {r13, r14}, {r12}, {0x0, r14}, {r13, r14}, {0x0, r14}, {0x0, r14}, {}, {0x0, r14}, {r13}, {0x0, r14}, {r13}, {r12}, {}, {}, {}, {0x0, r14}, {r12, r14}, {r13, r14}, {}, {}, {}, {r13}, {0x0, r14}, {}, {}, {r12}, {r12}, {0x0, r14}, {r12, r14}, {r13, r14}, {0x0, r14}, {r12}, {}, {r12}, {0x0, r14}, {r13}, {r12, r14}, {r12, r14}, {0x0, r14}, {0x0, r14}, {}, {}, {0x0, r14}, {r13}, {r12}, {}, {r12}, {r13}, {0x0, r14}, {r13, r14}, {0x0, r14}, {r13, r14}, {0x0, r14}, {}, {r13, r14}, {r12, r14}, {r13}, {r13, r14}, {}, {}, {r12}, {}, {r12}, {r13}, {}, {r12, r14}, {}, {}, {0x0, r14}, {r13}, {0x0, r14}, {r12}, {r13}, {r13}, {}, {}, {r13}, {0x0, r14}, {0x0, r14}, {r12, r14}, {r12}, {}, {0x0, r14}, {}, {}, {r13, r14}, {r12}, {0x0, r14}, {r12}, {r13, r14}, {r12, r14}, {r13, r14}, {r13}, {r12, r14}, {}, {}, {r13}, {r12, r14}, {0x0, r14}, {r12, r14}, {0x0, r14}, {r13}, {r13}, {}, {0x0, r14}, {r13, r14}, {}, {0x0, r14}, {}, {}, {0x0, r14}, {r12, r14}], 0x1, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000055940)={0x800000, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r2}, {r8}, {r12}], 0x8, "1297bc280bf064"})

19:53:39 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r1 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={<r2=>0x0, ""/256, <r3=>0x0, <r4=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r4}, {0x0, r4}, {r3}, {r3}, {r3, r4}, {}, {}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {}, {r2, r4}, {0x0, r4}, {}, {r3, r4}, {<r5=>0x0, r4}, {}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {}, {}, {r2, r4}, {r3}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r2, r4}, {}, {0x0, r4}, {r3}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {0x0, r4}, {}, {r2, r4}, {0x0, r4}, {r2}, {}, {r3}, {r2}, {}, {r3, r4}, {}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3}, {r2, r4}, {}, {r2}, {}, {}, {0x0, r4}, {}, {r3}, {r2}, {}, {}, {}, {0x0, r4}, {r3}, {}, {}, {0x0, r4}, {r2}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3, r4}, {}, {}, {0x0, r4}, {}, {r2}, {0x0, r4}, {}, {r3}, {r2, r4}, {0x0, r4}, {r2}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r2}, {r2, r4}, {}, {0x0, r4}, {r2, r4}, {0x0, r4}, {r3, r4}, {r2, r4}, {r3}, {}, {r2, r4}, {r2}, {r3, r4}, {}, {r2}, {r2, r4}, {}, {}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3, r4}, {}, {}, {r2, r4}, {0x0, r4}, {r3, r4}, {r2, r4}, {r3, r4}, {0x0, r4}, {}, {r3, r4}, {r3}, {}, {0x0, r4}, {r2}, {0x0, r4}, {r3, r4}, {r2}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {r2}, {}, {}, {}, {0x0, r4}, {r2, r4}, {r3, r4}, {}, {}, {}, {r3}, {0x0, r4}, {}, {}, {r2}, {r2}, {0x0, r4}, {r2, r4}, {r3, r4}, {0x0, r4}, {r2, <r6=>0x0}, {}, {r2}, {0x0, r4}, {r3}, {r2, r4}, {r2, r4}, {0x0, r4}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {r2}, {}, {r2}, {r3}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r3, r4}, {0x0, r4}, {}, {r3, r4}, {r2, r4}, {r3}, {r3, r4}, {}, {}, {r2}, {}, {r2}, {r3}, {}, {r2, r4}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {r3}, {r3}, {}, {}, {r3}, {0x0, r4}, {0x0, r4}, {r2, r4}, {r2}, {}, {0x0, r4}, {}, {}, {r3, r4}, {r2}, {0x0, r4}, {r2}, {r3, r4}, {r2, r4}, {r3, r4}, {r3}, {r2, r4}, {}, {}, {r3}, {r2, r4}, {0x0, r4}, {r2, r4}, {0x0, r4}, {r3}, {r3}, {}, {0x0, r4}, {r3, r4}, {}, {0x0, r4}, {}, {}, {0x0, r4}, {r2, r4}], 0x1, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f000005d200)={0x200, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r7=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r6}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r8=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r5}], 0x7, "6fa8a499678de7"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f000005e200)={<r9=>0x0})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f000005e400)={<r10=>0x0, 0x0, "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", "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"})
r11 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r11, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r12 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r12, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r11, 0x81f8943c, &(0x7f0000000440)={<r13=>0x0, ""/256, <r14=>0x0, <r15=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r12, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r15}, {0x0, r15}, {r14}, {r14}, {r14, r15}, {}, {}, {0x0, r15}, {}, {r14, r15}, {0x0, r15}, {}, {r13, r15}, {0x0, r15}, {}, {r14, r15}, {0x0, r15}, {}, {}, {}, {0x0, r15}, {r14}, {0x0, r15}, {0x0, r15}, {r14}, {0x0, r15}, {r13}, {}, {r13}, {0x0, r15}, {}, {}, {r13, r15}, {r14}, {}, {0x0, r15}, {r14, r15}, {0x0, r15}, {r13, r15}, {}, {0x0, r15}, {r14}, {}, {0x0, r15}, {r14}, {0x0, r15}, {r14}, {0x0, r15}, {}, {r13, r15}, {0x0, r15}, {r13}, {}, {r14}, {r13}, {}, {r14, r15}, {}, {0x0, r15}, {0x0, r15}, {0x0, r15}, {0x0, r15}, {r14, r15}, {0x0, r15}, {0x0, r15}, {0x0, r15}, {r14}, {r13, r15}, {}, {r13}, {}, {}, {0x0, r15}, {}, {r14}, {r13}, {}, {}, {}, {0x0, r15}, {r14}, {}, {}, {0x0, r15}, {r13}, {0x0, r15}, {0x0, r15}, {0x0, r15}, {r14, r15}, {}, {}, {0x0, r15}, {}, {r13}, {0x0, r15}, {}, {r14}, {r13, r15}, {0x0, r15}, {r13}, {r14, r15}, {0x0, r15}, {0x0, r15}, {0x0, r15}, {}, {0x0, r15}, {r13}, {r13, r15}, {}, {0x0, r15}, {r13, r15}, {0x0, r15}, {r14, r15}, {r13, r15}, {r14}, {}, {r13, r15}, {r13}, {r14, r15}, {}, {r13}, {r13, r15}, {}, {}, {0x0, r15}, {0x0, r15}, {0x0, r15}, {r14, r15}, {}, {}, {r13, r15}, {0x0, r15}, {r14, r15}, {r13, r15}, {r14, r15}, {0x0, r15}, {}, {r14, r15}, {r14}, {}, {0x0, r15}, {r13}, {0x0, r15}, {r14, r15}, {r13}, {0x0, r15}, {r14, r15}, {0x0, r15}, {0x0, r15}, {}, {0x0, r15}, {r14}, {0x0, r15}, {r14}, {r13}, {}, {}, {}, {0x0, r15}, {r13, r15}, {r14, r15}, {}, {}, {}, {r14}, {0x0, r15}, {}, {}, {r13}, {r13}, {0x0, r15}, {r13, r15}, {r14, r15}, {0x0, r15}, {r13}, {}, {r13}, {0x0, r15}, {r14}, {r13, r15}, {r13, r15}, {0x0, r15}, {0x0, r15}, {}, {}, {0x0, r15}, {r14}, {r13}, {}, {r13}, {r14}, {0x0, r15}, {r14, r15}, {0x0, r15}, {r14, r15}, {0x0, r15}, {}, {r14, r15}, {r13, r15}, {r14}, {r14, r15}, {}, {}, {r13}, {}, {r13}, {r14}, {}, {r13, r15}, {}, {}, {0x0, r15}, {r14}, {0x0, r15}, {r13}, {r14}, {r14}, {}, {}, {r14}, {0x0, r15}, {0x0, r15}, {r13, r15}, {r13}, {}, {0x0, r15}, {}, {}, {r14, r15}, {r13}, {0x0, r15}, {r13}, {r14, r15}, {r13, r15}, {r14, r15}, {r14}, {r13, r15}, {}, {}, {r14}, {r13, r15}, {0x0, r15}, {r13, r15}, {0x0, r15}, {r14}, {r14}, {}, {0x0, r15}, {r14, r15}, {}, {0x0, r15}, {}, {}, {0x0, r15}, {r13, r15}], 0x1, "2156816c73038c"})
ioctl$BTRFS_IOC_TREE_SEARCH_V2(r0, 0xc0709411, &(0x7f000005f400)={{<r16=>0x0, 0x8, 0x493, 0x34, 0x7ff, 0x10cb695b00000000, 0xfd, 0x0, 0x80000001, 0x8, 0x6e0f42a5, 0x2, 0x80000001, 0x5, 0x100000001}, 0x18, [0x0, 0x0, 0x0]})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000005f4c0)={0x45c, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r2, r7}, {r9, r10}, {r13}, {r16}], 0x0, "c13873a4d2fbe2"})
r17 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})
ioctl$BLKTRACETEARDOWN(r17, 0x1276, 0x0)

19:53:39 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000340)={0x0, 0x0, 0xa1, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000040)="3a1b58f2d9ceedc50ba8b4af302e85edaf7dd7eafe5a7715256edac7c833a95b23853f7d645ae03b20bd1805e77461e81ec93844ea0264ea2b7377cd8d52dfe04fa8036710bb3d01889d9382813302e2605446af26ab8aa498b94e9d0d61ed7640dd02f258a872dc4c3608dd7c7b78962fba66a6156df9eb3edc641854a234b18e601f83dd7d32e15f617af17865ccd0e4034a162a31de1ec0f0a96800795f5a3a", &(0x7f0000000280)=""/117, 0x1, 0x8001, 0x2, &(0x7f0000000300)})
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x0, 0x0, @scatter={0x0, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0})
r1 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={<r2=>0x0, ""/256, <r3=>0x0, <r4=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r4}, {0x0, r4}, {r3}, {r3}, {}, {}, {}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {r3}, {r2, r4}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {}, {}, {r2, r4}, {r3}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r2, r4}, {}, {0x0, r4}, {r3}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {0x0, r4}, {}, {r2, r4}, {0x0, r4}, {r2}, {}, {r3}, {r2}, {}, {r3, r4}, {}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3}, {r2, r4}, {r2}, {r2}, {}, {}, {0x0, r4}, {}, {r3}, {r2}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {}, {}, {0x0, r4}, {r2}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r2, r4}, {}, {}, {0x0, r4}, {}, {r2}, {0x0, r4}, {}, {r3}, {r2, r4}, {}, {r2}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r2}, {r2, r4}, {}, {0x0, r4}, {r2, r4}, {}, {r3, r4}, {r2}, {r3}, {}, {r2, r4}, {r2}, {0x0, r4}, {}, {r2}, {r2, r4}, {}, {}, {0x0, r4}, {}, {0x0, r4}, {r3, r4}, {}, {}, {r2, r4}, {0x0, r4}, {r3, r4}, {r2, r4}, {r3, r4}, {}, {}, {r3, r4}, {r3}, {}, {0x0, r4}, {r2}, {0x0, r4}, {r3, r4}, {r2}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {r2}, {}, {}, {}, {0x0, r4}, {r2, r4}, {r3, r4}, {}, {}, {}, {r3, <r5=>r4}, {0x0, r4}, {}, {}, {r2}, {r2}, {0x0, r4}, {r2, r4}, {r3, r4}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {r3}, {r2, r4}, {r2, r4}, {0x0, r4}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {r2}, {}, {r2}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r3, r4}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {r3}, {r3, r4}, {}, {}, {r2}, {}, {r2}, {r3}, {}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {r3}, {r3}, {}, {}, {r3}, {0x0, r4}, {0x0, r4}, {r2, r4}, {}, {}, {0x0, r4}, {0x0, r4}, {}, {r3, r4}, {}, {0x0, r4}, {r2}, {r3, r4}, {r2, r4}, {r3, r4}, {r3}, {r2, r4}, {}, {}, {r3}, {r2, r4}, {0x0, r4}, {r2, r4}, {0x0, r4}, {r3}, {r3}, {r2}, {0x0, r4}, {r3, r4}, {r3}, {0x0, r4}, {}, {}, {}, {r2, r4}], 0x1, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f000005b580)={0x151272b0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r5}], 0x80, "09e90fd4c70903"})
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r6, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r7 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r7, 0xd000943d, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

19:53:39 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0x0, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, &(0x7f0000000340), &(0x7f0000000380), &(0x7f00000003c0), {0x3a}, &(0x7f00000004c0)=""/240, 0xf0, &(0x7f0000000400)=""/126, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

19:53:39 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
r1 = clone3(&(0x7f0000007500)={0x30000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pidfd_open(r1, 0x0)
r2 = perf_event_open(0x0, r1, 0xb, 0xffffffffffffffff, 0x8)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x2000000000, 0xffffffffffffffff})
ioctl$SCSI_IOCTL_START_UNIT(r2, 0x5)

[  234.542045][T19172] debugfs: Directory 'sg0' with parent 'block' already present!
[  234.559861][T19172] blktrace: debugfs_dir not present for sg0 so skipping
[  234.567057][T19175] debugfs: Directory 'sg0' with parent 'block' already present!
[  234.584030][T19175] blktrace: debugfs_dir not present for sg0 so skipping
[  234.618104][T19181] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  234.627191][T19191] debugfs: Directory 'sg0' with parent 'block' already present!
[  234.645950][T19191] blktrace: debugfs_dir not present for sg0 so skipping
[  234.653038][T19187] debugfs: Directory 'sg0' with parent 'block' already present!
19:53:39 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0x0, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, &(0x7f0000000340), &(0x7f0000000380), &(0x7f00000003c0), {0x3a}, &(0x7f00000004c0)=""/240, 0xf0, &(0x7f0000000400)=""/126, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

19:53:39 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000340)={0x0, 0x0, 0xa1, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000040)="3a1b58f2d9ceedc50ba8b4af302e85edaf7dd7eafe5a7715256edac7c833a95b23853f7d645ae03b20bd1805e77461e81ec93844ea0264ea2b7377cd8d52dfe04fa8036710bb3d01889d9382813302e2605446af26ab8aa498b94e9d0d61ed7640dd02f258a872dc4c3608dd7c7b78962fba66a6156df9eb3edc641854a234b18e601f83dd7d32e15f617af17865ccd0e4034a162a31de1ec0f0a96800795f5a3a", &(0x7f0000000280)=""/117, 0x1, 0x8001, 0x2, &(0x7f0000000300)})
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x0, 0x0, @scatter={0x0, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0})
r1 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={<r2=>0x0, ""/256, <r3=>0x0, <r4=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r4}, {0x0, r4}, {r3}, {r3}, {}, {}, {}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {r3}, {r2, r4}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {}, {}, {r2, r4}, {r3}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r2, r4}, {}, {0x0, r4}, {r3}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {0x0, r4}, {}, {r2, r4}, {0x0, r4}, {r2}, {}, {r3}, {r2}, {}, {r3, r4}, {}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3}, {r2, r4}, {r2}, {r2}, {}, {}, {0x0, r4}, {}, {r3}, {r2}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {}, {}, {0x0, r4}, {r2}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r2, r4}, {}, {}, {0x0, r4}, {}, {r2}, {0x0, r4}, {}, {r3}, {r2, r4}, {}, {r2}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r2}, {r2, r4}, {}, {0x0, r4}, {r2, r4}, {}, {r3, r4}, {r2}, {r3}, {}, {r2, r4}, {r2}, {0x0, r4}, {}, {r2}, {r2, r4}, {}, {}, {0x0, r4}, {}, {0x0, r4}, {r3, r4}, {}, {}, {r2, r4}, {0x0, r4}, {r3, r4}, {r2, r4}, {r3, r4}, {}, {}, {r3, r4}, {r3}, {}, {0x0, r4}, {r2}, {0x0, r4}, {r3, r4}, {r2}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {r2}, {}, {}, {}, {0x0, r4}, {r2, r4}, {r3, r4}, {}, {}, {}, {r3, <r5=>r4}, {0x0, r4}, {}, {}, {r2}, {r2}, {0x0, r4}, {r2, r4}, {r3, r4}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {r3}, {r2, r4}, {r2, r4}, {0x0, r4}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {r2}, {}, {r2}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r3, r4}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {r3}, {r3, r4}, {}, {}, {r2}, {}, {r2}, {r3}, {}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {r3}, {r3}, {}, {}, {r3}, {0x0, r4}, {0x0, r4}, {r2, r4}, {}, {}, {0x0, r4}, {0x0, r4}, {}, {r3, r4}, {}, {0x0, r4}, {r2}, {r3, r4}, {r2, r4}, {r3, r4}, {r3}, {r2, r4}, {}, {}, {r3}, {r2, r4}, {0x0, r4}, {r2, r4}, {0x0, r4}, {r3}, {r3}, {r2}, {0x0, r4}, {r3, r4}, {r3}, {0x0, r4}, {}, {}, {}, {r2, r4}], 0x1, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f000005b580)={0x151272b0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r5}], 0x80, "09e90fd4c70903"})
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r6, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r7 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r7, 0xd000943d, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

19:53:39 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x800, 0xfa102)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x1)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0xffff, 0x5, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

[  234.663028][T19187] blktrace: debugfs_dir not present for sg0 so skipping
[  234.670275][T19185] debugfs: Directory 'sg0' with parent 'block' already present!
[  234.679567][T19185] blktrace: debugfs_dir not present for sg0 so skipping
[  234.690313][T19196] debugfs: Directory 'sg0' with parent 'block' already present!
[  234.703858][T19196] blktrace: debugfs_dir not present for sg0 so skipping
19:53:39 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x6, 0x200)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0xfffffffffffffffd, 0xffffffffffffffff})

[  234.756020][T19204] debugfs: Directory 'sg0' with parent 'block' already present!
[  234.763966][T19204] blktrace: debugfs_dir not present for sg0 so skipping
[  234.783821][T19210] debugfs: Directory 'sg0' with parent 'block' already present!
[  234.801062][T19210] blktrace: debugfs_dir not present for sg0 so skipping
19:53:40 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r0, 0xc020660b, 0x0)
read(r0, &(0x7f0000000200)=""/75, 0x4b)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = clone3(&(0x7f0000007500)={0x30000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pidfd_open(r1, 0x0)
r2 = openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r4, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r4, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)
perf_event_open(&(0x7f0000000000)={0x2, 0x80, 0x7, 0x8, 0x1, 0x6, 0x0, 0x3, 0x8, 0xf, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, @perf_config_ext={0x8000, 0x1}, 0x42200, 0x2, 0x1fb, 0x5, 0x5, 0x4, 0x20, 0x0, 0x6, 0x0, 0x2}, r1, 0x6, r2, 0x0)

19:53:40 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0x0, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, &(0x7f0000000340), &(0x7f0000000380), &(0x7f00000003c0), {0x3a}, &(0x7f00000004c0)=""/240, 0xf0, &(0x7f0000000400)=""/126, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

19:53:40 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000340)={0x0, 0x0, 0xa1, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000040)="3a1b58f2d9ceedc50ba8b4af302e85edaf7dd7eafe5a7715256edac7c833a95b23853f7d645ae03b20bd1805e77461e81ec93844ea0264ea2b7377cd8d52dfe04fa8036710bb3d01889d9382813302e2605446af26ab8aa498b94e9d0d61ed7640dd02f258a872dc4c3608dd7c7b78962fba66a6156df9eb3edc641854a234b18e601f83dd7d32e15f617af17865ccd0e4034a162a31de1ec0f0a96800795f5a3a", &(0x7f0000000280)=""/117, 0x1, 0x8001, 0x2, &(0x7f0000000300)})
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x0, 0x0, @scatter={0x0, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0})
r1 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={<r2=>0x0, ""/256, <r3=>0x0, <r4=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r4}, {0x0, r4}, {r3}, {r3}, {}, {}, {}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {r3}, {r2, r4}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {}, {}, {r2, r4}, {r3}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r2, r4}, {}, {0x0, r4}, {r3}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {0x0, r4}, {}, {r2, r4}, {0x0, r4}, {r2}, {}, {r3}, {r2}, {}, {r3, r4}, {}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3}, {r2, r4}, {r2}, {r2}, {}, {}, {0x0, r4}, {}, {r3}, {r2}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {}, {}, {0x0, r4}, {r2}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r2, r4}, {}, {}, {0x0, r4}, {}, {r2}, {0x0, r4}, {}, {r3}, {r2, r4}, {}, {r2}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r2}, {r2, r4}, {}, {0x0, r4}, {r2, r4}, {}, {r3, r4}, {r2}, {r3}, {}, {r2, r4}, {r2}, {0x0, r4}, {}, {r2}, {r2, r4}, {}, {}, {0x0, r4}, {}, {0x0, r4}, {r3, r4}, {}, {}, {r2, r4}, {0x0, r4}, {r3, r4}, {r2, r4}, {r3, r4}, {}, {}, {r3, r4}, {r3}, {}, {0x0, r4}, {r2}, {0x0, r4}, {r3, r4}, {r2}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {r2}, {}, {}, {}, {0x0, r4}, {r2, r4}, {r3, r4}, {}, {}, {}, {r3, <r5=>r4}, {0x0, r4}, {}, {}, {r2}, {r2}, {0x0, r4}, {r2, r4}, {r3, r4}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {r3}, {r2, r4}, {r2, r4}, {0x0, r4}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {r2}, {}, {r2}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r3, r4}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {r3}, {r3, r4}, {}, {}, {r2}, {}, {r2}, {r3}, {}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {r3}, {r3}, {}, {}, {r3}, {0x0, r4}, {0x0, r4}, {r2, r4}, {r2}, {}, {0x0, r4}, {0x0, r4}, {}, {r3, r4}, {}, {0x0, r4}, {r2}, {0x0, r4}, {r2, r4}, {r3, r4}, {r3}, {r2, r4}, {}, {}, {r3}, {r2, r4}, {0x0, r4}, {r2, r4}, {0x0, r4}, {r3}, {r3}, {r2}, {0x0, r4}, {r3, r4}, {r3}, {0x0, r4}, {}, {}, {}, {r2, r4}], 0x1, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f000005b580)={0x151272b0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r5}], 0x80, "09e90fd4c70903"})
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r6, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r7 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r7, 0xd000943d, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

19:53:40 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0xfffffffffffffffd, 0x0, 0xffffffffffffffff})
perf_event_open(&(0x7f0000000000)={0x1, 0x80, 0x3, 0x4, 0x5d, 0xff, 0x0, 0x2, 0x4008, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x6, 0x2, @perf_config_ext={0x9, 0xfb}, 0x1004, 0x5, 0x7ff, 0x4, 0x2, 0x8013, 0x1, 0x0, 0x1, 0x0, 0x3}, 0x0, 0x10, r1, 0x2)

19:53:40 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x8, 0x5af480)
r1 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={<r2=>0x0, ""/256, <r3=>0x0, <r4=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r4}, {0x0, r4}, {r3}, {r3}, {r3, r4}, {}, {}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {}, {r2, r4}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {}, {}, {r2, r4}, {r3}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r2, r4}, {}, {0x0, r4}, {r3}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {0x0, r4}, {}, {r2, r4}, {0x0, r4}, {r2}, {}, {r3}, {r2}, {}, {r3, r4}, {}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3}, {r3, r4}, {}, {r2}, {}, {}, {0x0, r4}, {}, {r3}, {r2}, {}, {}, {}, {0x0, r4}, {r3}, {}, {}, {0x0, r4}, {r2}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3, r4}, {}, {}, {0x0, r4}, {}, {r2}, {0x0, r4}, {}, {r3}, {r2, r4}, {0x0, r4}, {r2}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r2}, {r2, r4}, {}, {0x0, r4}, {r2, r4}, {0x0, r4}, {r3, r4}, {r2, r4}, {r3}, {}, {r2, r4}, {r2}, {r3, r4}, {}, {r2}, {r2, r4}, {}, {}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3, r4}, {}, {}, {r2, r4}, {0x0, r4}, {r3, r4}, {r2, r4}, {r3, r4}, {0x0, r4}, {}, {r3, r4}, {r3}, {}, {0x0, r4}, {r2}, {0x0, r4}, {r3, r4}, {r2}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {r2}, {}, {}, {}, {0x0, r4}, {r2, r4}, {r3, r4}, {}, {}, {}, {r3}, {0x0, r4}, {}, {}, {r2}, {r2}, {0x0, r4}, {r2, r4}, {r3, r4}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {r3}, {r2, r4}, {r2, r4}, {0x0, r4}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {r2}, {}, {r2}, {r3}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r3, r4}, {0x0, r4}, {}, {r3, r4}, {r2, r4}, {r3}, {r3, r4}, {}, {}, {r2}, {}, {r2}, {r3}, {}, {r2, r4}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {r3}, {r3}, {}, {}, {r3}, {0x0, r4}, {0x0, r4}, {r2, r4}, {r2}, {}, {0x0, r4}, {}, {}, {r3, r4}, {r2}, {0x0, r4}, {r2}, {r3, r4}, {r2, r4}, {r3, r4}, {r3}, {r2, r4}, {}, {}, {r3}, {r2, r4}, {0x0, r4}, {r2, r4}, {0x0, r4}, {r3}, {r3}, {}, {0x0, r4}, {r3, r4}, {}, {0x0, r4}, {}, {}, {0x0, r4}, {r2, r4}], 0x1, "2156816c73038c"})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f000005f8c0)={<r5=>0x0, 0x0, "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", "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"})
ioctl$BTRFS_IOC_TREE_SEARCH(r0, 0xd0009411, &(0x7f00000608c0)={{<r6=>0x0, 0x6, 0x1, 0x7ff, 0x7, 0x3, 0x4, 0x400, 0x0, 0x1, 0x6, 0xff, 0xd325, 0x7, 0x101}})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f00000618c0)={<r7=>0x0, 0x0, "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", "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"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f00000628c0)={0x2aa, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r8=>0x0}, {}, {<r9=>0x0}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r10=>0x0}], 0x22, "52a759dca0932d"})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f00000638c0)={<r11=>0x0, 0x0, "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", "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"})
r12 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r12, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r13 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r13, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r12, 0x81f8943c, &(0x7f0000000440)={<r14=>0x0, ""/256, <r15=>0x0, <r16=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r13, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r16}, {0x0, r16}, {r15}, {r15}, {r15, r16}, {}, {}, {0x0, r16}, {}, {r15, r16}, {0x0, r16}, {}, {r14, r16}, {0x0, r16}, {}, {r15, r16}, {0x0, r16}, {}, {}, {}, {0x0, r16}, {r15}, {0x0, r16}, {0x0, r16}, {r15}, {0x0, r16}, {r14}, {}, {r14}, {0x0, r16}, {}, {}, {r14, r16}, {r15}, {}, {0x0, r16}, {r15, r16}, {0x0, r16}, {r14, r16}, {}, {0x0, r16}, {r15}, {}, {0x0, r16}, {r15}, {0x0, r16}, {r15}, {0x0, r16}, {}, {r14, r16}, {0x0, r16}, {r14}, {}, {r15}, {r14}, {}, {r15, r16}, {}, {0x0, r16}, {0x0, r16}, {0x0, r16}, {0x0, r16}, {r15, r16}, {0x0, r16}, {0x0, r16}, {0x0, r16}, {r15}, {r14, r16}, {}, {r14}, {}, {}, {0x0, r16}, {}, {r15}, {r14}, {}, {}, {}, {0x0, r16}, {r15}, {}, {}, {0x0, r16}, {r14}, {0x0, r16}, {0x0, r16}, {0x0, r16}, {r15, r16}, {}, {}, {0x0, r16}, {}, {r14}, {0x0, r16}, {}, {r15}, {r14, r16}, {0x0, r16}, {r14}, {r15, r16}, {0x0, r16}, {0x0, r16}, {0x0, r16}, {}, {0x0, r16}, {r14}, {r14, r16}, {}, {0x0, r16}, {r14, r16}, {0x0, r16}, {r15, r16}, {r14, r16}, {r15}, {}, {r14, r16}, {r14}, {r15, r16}, {}, {r14}, {r14, r16}, {}, {}, {0x0, r16}, {0x0, r16}, {0x0, r16}, {r15, r16}, {}, {}, {r14, r16}, {0x0, r16}, {r15, r16}, {r14, r16}, {r15, r16}, {0x0, r16}, {}, {r15, r16}, {r15}, {}, {0x0, r16}, {r14}, {0x0, r16}, {r15, r16}, {r14}, {0x0, r16}, {r15, r16}, {0x0, r16}, {0x0, r16}, {}, {0x0, r16}, {r15}, {0x0, r16}, {r15}, {r14}, {}, {}, {}, {0x0, r16}, {r14, r16}, {r15, r16}, {}, {}, {}, {r15}, {0x0, r16}, {}, {}, {r14}, {r14}, {0x0, r16}, {r14, r16}, {r15, r16}, {0x0, r16}, {r14}, {}, {r14}, {0x0, r16}, {r15}, {r14, r16}, {r14, r16}, {0x0, r16}, {0x0, r16}, {}, {}, {0x0, r16}, {r15}, {r14}, {}, {r14}, {r15}, {0x0, r16}, {r15, r16}, {0x0, r16}, {r15, r16}, {0x0, r16}, {}, {r15, r16}, {r14, r16}, {r15}, {r15, r16}, {}, {}, {r14}, {}, {r14}, {r15}, {}, {r14, r16}, {}, {}, {0x0, r16}, {r15}, {0x0, r16}, {r14}, {r15}, {r15}, {}, {}, {r15}, {0x0, r16}, {0x0, r16}, {r14, r16}, {r14}, {}, {0x0, r16}, {}, {}, {r15, r16}, {r14}, {0x0, r16}, {r14}, {r15, r16}, {r14, r16}, {r15, r16}, {r15}, {r14, r16}, {}, {}, {r15}, {r14, r16}, {0x0, r16}, {r14, r16}, {0x0, r16}, {r15}, {r15}, {}, {0x0, r16}, {r15, r16}, {}, {0x0, r16}, {}, {}, {0x0, r16}, {r14, r16}], 0x1, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f00000648c0)={0x3f, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r10}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r9}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r2, r5}, {r6}, {0x0, r7}, {0x0, r8}, {0x0, r11}, {r15}], 0x4, "ba2d0ac94361ca"})
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})
r17 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000040), 0x401, 0x0)
ioctl$SG_IO(r17, 0x2285, &(0x7f00000011c0)={0x0, 0xfffffffffffffffb, 0x24, 0x0, @buffer={0x0, 0x28, &(0x7f0000000080)=""/40}, &(0x7f00000000c0)="ed93a3a1783e7af4c4f6855ac86898210650de77be53f7e92d38a3fb0673a46f8d65444f", &(0x7f0000000180)=""/4096, 0xffffffff, 0x22, 0x2, &(0x7f0000001180)})

19:53:40 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000340)={0x0, 0x0, 0xa1, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000040)="3a1b58f2d9ceedc50ba8b4af302e85edaf7dd7eafe5a7715256edac7c833a95b23853f7d645ae03b20bd1805e77461e81ec93844ea0264ea2b7377cd8d52dfe04fa8036710bb3d01889d9382813302e2605446af26ab8aa498b94e9d0d61ed7640dd02f258a872dc4c3608dd7c7b78962fba66a6156df9eb3edc641854a234b18e601f83dd7d32e15f617af17865ccd0e4034a162a31de1ec0f0a96800795f5a3a", &(0x7f0000000280)=""/117, 0x1, 0x8001, 0x2, &(0x7f0000000300)})
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x0, 0x0, @scatter={0x0, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0})
r1 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={<r2=>0x0, ""/256, <r3=>0x0, <r4=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r4}, {0x0, r4}, {r3}, {r3}, {}, {}, {}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {r3}, {r2, r4}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {}, {}, {r2, r4}, {r3}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r2, r4}, {}, {0x0, r4}, {r3}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {0x0, r4}, {}, {r2, r4}, {0x0, r4}, {r2}, {}, {r3}, {r2}, {}, {r3, r4}, {}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3}, {r2, r4}, {r2}, {r2}, {}, {}, {0x0, r4}, {}, {r3}, {r2}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {}, {}, {0x0, r4}, {r2}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r2, r4}, {}, {}, {0x0, r4}, {}, {r2}, {0x0, r4}, {}, {r3}, {r2, r4}, {}, {r2}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r2}, {r2, r4}, {}, {0x0, r4}, {r2, r4}, {}, {r3, r4}, {r2}, {r3}, {}, {r2, r4}, {r2}, {0x0, r4}, {}, {r2}, {r2, r4}, {}, {}, {0x0, r4}, {}, {0x0, r4}, {r3, r4}, {}, {}, {r2, r4}, {0x0, r4}, {r3, r4}, {r2, r4}, {r3, r4}, {}, {}, {r3, r4}, {r3}, {}, {0x0, r4}, {r2}, {0x0, r4}, {r3, r4}, {r2}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {r2}, {}, {}, {}, {0x0, r4}, {r2, r4}, {r3, r4}, {}, {}, {}, {r3, <r5=>r4}, {0x0, r4}, {}, {}, {r2}, {r2}, {0x0, r4}, {r2, r4}, {r3, r4}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {r3}, {r2, r4}, {r2, r4}, {0x0, r4}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {r2}, {}, {r2}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r3, r4}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {r3}, {r3, r4}, {}, {}, {r2}, {}, {r2}, {r3}, {}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {r3}, {r3}, {}, {}, {r3}, {0x0, r4}, {0x0, r4}, {r2, r4}, {r2}, {}, {0x0, r4}, {0x0, r4}, {}, {r3, r4}, {}, {0x0, r4}, {r2}, {r3, r4}, {r2}, {r3, r4}, {r3}, {r2, r4}, {}, {}, {r3}, {r2, r4}, {0x0, r4}, {r2, r4}, {0x0, r4}, {r3}, {r3}, {r2}, {0x0, r4}, {r3, r4}, {r3}, {0x0, r4}, {}, {}, {}, {r2, r4}], 0x1, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f000005b580)={0x151272b0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r5}], 0x80, "09e90fd4c70903"})
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r6, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r7 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r7, 0xd000943d, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

19:53:40 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x2, 0x20000)
r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
preadv(r1, &(0x7f0000000480)=[{&(0x7f0000000180)=""/194, 0xc2}, {&(0x7f0000000080)=""/115, 0x73}, {&(0x7f0000000280)=""/241, 0xf1}, {&(0x7f0000000380)=""/252, 0xfc}], 0x4, 0xd9f, 0x0)
ioctl$SCSI_IOCTL_GET_PCI(r1, 0x5387, &(0x7f0000000040))
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

[  235.397276][T19220] debugfs: Directory 'sg0' with parent 'block' already present!
[  235.405303][T19220] blktrace: debugfs_dir not present for sg0 so skipping
[  235.412474][T19223] debugfs: Directory 'sg0' with parent 'block' already present!
[  235.435341][T19223] blktrace: debugfs_dir not present for sg0 so skipping
19:53:40 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(0x0, 0x0)

19:53:40 executing program 3:
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={'\x00', 0x1e11, 0xaa, 0x608, 0x2, 0x0, 0xffffffffffffffff})
r0 = syz_open_dev$loop(&(0x7f0000000000), 0x6, 0x141000)
ioctl$BLKTRACESTOP(r0, 0x1275, 0x0)
r1 = epoll_create1(0x80000)
preadv(r1, &(0x7f0000000080)=[{&(0x7f0000000040)=""/15, 0xf}, {&(0x7f0000000180)=""/140, 0x8c}, {&(0x7f0000000240)=""/4096, 0x1000}], 0x3, 0x7, 0xffffffff)

[  235.464543][T19227] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  235.465867][T19231] debugfs: Directory 'sg0' with parent 'block' already present!
19:53:40 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(0x0, 0x0)

19:53:40 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000480), 0xffffffff, 0x40300)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = open_tree(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x0)
ioctl$SG_IO(r1, 0x2285, &(0x7f00000003c0)={0x53, 0xfffffffffffffffe, 0xfb, 0x40, @scatter={0x8, 0x0, &(0x7f0000000980)=[{&(0x7f00000004c0)=""/221, 0xdd}, {&(0x7f0000000a00)=""/172, 0xac}, {&(0x7f0000000680)=""/181, 0xb5}, {&(0x7f00000000c0)=""/30, 0x1e}, {&(0x7f0000000740)=""/236, 0xec}, {&(0x7f0000000840)=""/57, 0x39}, {&(0x7f0000000880)=""/1, 0x1}, {&(0x7f00000008c0)=""/164, 0xa4}]}, &(0x7f0000000180)="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", &(0x7f0000000280)=""/224, 0xc5, 0x14, 0x3, &(0x7f0000000380)})
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})
ioctl$BLKTRACETEARDOWN(0xffffffffffffffff, 0x1276, 0x0)
umount2(&(0x7f0000000440)='./file0\x00', 0xc)

19:53:40 executing program 3:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
setsockopt$packet_buf(0xffffffffffffffff, 0x107, 0xf, &(0x7f0000000100)="000000c5", 0x4)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'vlan0\x00', <r1=>0x0})
bind$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @dev}, 0x14)
sendmsg$BATADV_CMD_GET_BLA_CLAIM(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000440)={&(0x7f00000004c0)=ANY=[@ANYBLOB="240089a1a4d2be9a78a65bce4a0e17eaa36e213f0c582bb1d88a", @ANYRESHEX=r0, @ANYBLOB="10002abd7000fddbdf250b000000050035000300000008000600", @ANYRES32=r1, @ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x4080}, 0x20008051)
ioctl$sock_inet_SIOCRTMSG(r0, 0x890d, &(0x7f0000000000)={0x0, {0x2, 0x4e24, @local}, {0x2, 0x4e21, @loopback}, {0x2, 0x4e21, @empty}, 0x140, 0x0, 0x0, 0x0, 0xb9, 0x0, 0x5, 0x935c, 0xfff})
r2 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
r3 = gettid()
wait4(0x0, 0x0, 0x80000002, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f00000000c0)=[{0x0}, {0x0}, {0x0}, {&(0x7f0000000280)="860c3fe93c1242f4e7b126b097aaa769be6d05c41bd34e677d114b654b49938ca8db38f8c44f7b7d9c40000000ffffffe687cfac79b04c2e1fea4b80c58561ed4930302a65986d18955c117a3dfc8ea6a7efefe4d21810262f4adaf1e8eab06db4ec53303739b6d1438b4b6a8fd8fbf026387e787780178155460d3043c1639b7f800066cee117a2f866daf8a5896da99a1a70705979002ad573d2d52c911496d98eda0a8837d712041d5e37af3a928cd46e1bd001f1d77f1498ada0d14987f2ebbea5fd739914ba392e2840a0c41ed9e4f8d64b6bbfb419c5e097aee476381efadd2bddccf34fe6a048b5f6c49c6b03a6492f17f61e760fde14959db3409afb9109db3eebcb25b92d6f26185220a2675c89c7c6ebb81f10a4c5fae28dca12dd95e6ab3fd408c553ea90b68fcbd1eb6ee1263da9adc9c65bb69fdf8f9d7bbbee593416c7fc903ca369085cfcb88be688d09e616e498bb63695b87cbbd3697d9fd9056bc70517918bd5ba6718f13c66cee5875aa20d85e604002e61de94096269c1bd24d397755841396a81e4f844f0edecf81ea4dd526ab295b4c2db3f1a3020131947a4de26c6f52e6475507bdd8a", 0x1af}], 0x4, 0x0)
ptrace$setopts(0x4206, r3, 0xfffffffffffffffc, 0x4d)
tkill(r3, 0x3a)
sendmsg$TIPC_NL_MON_GET(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000001c0)={0xfffffffffffffffc}, 0x1, 0x0, 0x0, 0x4000041}, 0x40000)
ptrace$cont(0x18, r3, 0x0, 0x0)
ptrace$setregs(0xd, r3, 0x0, &(0x7f0000000080))
exit_group(0x0)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

[  235.521937][T19231] blktrace: debugfs_dir not present for sg0 so skipping
[  235.545537][T19237] debugfs: Directory 'sg0' with parent 'block' already present!
[  235.553733][T19237] blktrace: debugfs_dir not present for sg0 so skipping
[  235.605929][T19252] debugfs: Directory 'sg0' with parent 'block' already present!
[  235.613610][T19252] blktrace: debugfs_dir not present for sg0 so skipping
[  235.621533][T19252] debugfs: Directory 'sg0' with parent 'block' already present!
[  235.629707][T19252] blktrace: debugfs_dir not present for sg0 so skipping
19:53:40 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r0, 0xc020660b, 0x0)
read(r0, &(0x7f0000000200)=""/75, 0x4b)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = clone3(&(0x7f0000007500)={0x30000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pidfd_open(r1, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r3, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r3, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

19:53:40 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000340)={0x0, 0x0, 0xa1, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000040)="3a1b58f2d9ceedc50ba8b4af302e85edaf7dd7eafe5a7715256edac7c833a95b23853f7d645ae03b20bd1805e77461e81ec93844ea0264ea2b7377cd8d52dfe04fa8036710bb3d01889d9382813302e2605446af26ab8aa498b94e9d0d61ed7640dd02f258a872dc4c3608dd7c7b78962fba66a6156df9eb3edc641854a234b18e601f83dd7d32e15f617af17865ccd0e4034a162a31de1ec0f0a96800795f5a3a", &(0x7f0000000280)=""/117, 0x1, 0x8001, 0x2, &(0x7f0000000300)})
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x0, 0x0, @scatter={0x0, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0})
r1 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={<r2=>0x0, ""/256, <r3=>0x0, <r4=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r4}, {0x0, r4}, {r3}, {r3}, {}, {}, {}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {r3}, {r2, r4}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {}, {}, {r2, r4}, {r3}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r2, r4}, {}, {0x0, r4}, {r3}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {0x0, r4}, {}, {r2, r4}, {0x0, r4}, {r2}, {}, {r3}, {r2}, {}, {r3, r4}, {}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3}, {r2, r4}, {r2}, {r2}, {}, {}, {0x0, r4}, {}, {r3}, {r2}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {}, {}, {0x0, r4}, {r2}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r2, r4}, {}, {}, {0x0, r4}, {}, {r2}, {0x0, r4}, {}, {r3}, {r2, r4}, {}, {r2}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r2}, {r2, r4}, {}, {0x0, r4}, {r2, r4}, {}, {r3, r4}, {r2}, {r3}, {}, {r2, r4}, {r2}, {0x0, r4}, {}, {r2}, {r2, r4}, {}, {}, {0x0, r4}, {}, {0x0, r4}, {r3, r4}, {}, {}, {r2, r4}, {0x0, r4}, {r3, r4}, {r2, r4}, {r3, r4}, {}, {}, {r3, r4}, {r3}, {}, {0x0, r4}, {r2}, {0x0, r4}, {r3, r4}, {r2}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {r2}, {}, {}, {}, {0x0, r4}, {r2, r4}, {r3, r4}, {}, {}, {}, {r3, <r5=>r4}, {0x0, r4}, {}, {}, {r2}, {r2}, {0x0, r4}, {r2, r4}, {r3, r4}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {r3}, {r2, r4}, {r2, r4}, {0x0, r4}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {r2}, {}, {r2}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r3, r4}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {r3}, {r3, r4}, {}, {}, {r2}, {}, {r2}, {r3}, {}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {r3}, {r3}, {}, {}, {r3}, {0x0, r4}, {0x0, r4}, {r2, r4}, {r2}, {}, {0x0, r4}, {0x0, r4}, {}, {r3, r4}, {}, {0x0, r4}, {r2}, {r3, r4}, {r2, r4}, {r3, r4}, {r3}, {r2, r4}, {}, {}, {r3}, {r2, r4}, {}, {r2, r4}, {0x0, r4}, {r3}, {r3}, {r2}, {0x0, r4}, {r3, r4}, {r3}, {0x0, r4}, {}, {}, {}, {r2, r4}], 0x1, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f000005b580)={0x151272b0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r5}], 0x80, "09e90fd4c70903"})
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r6, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r7 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r7, 0xd000943d, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

19:53:40 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})
r1 = accept$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14)
r2 = dup(r1)
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f0000000180))

19:53:40 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(0x0, 0x0)

19:53:40 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000000180), 0x2, 0x600240)
r1 = dup3(r0, r0, 0x0)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000001300)={0x0, 0xfffffffffffffffe, 0xa3, 0x7f, @buffer={0x0, 0x11, &(0x7f0000000000)=""/17}, &(0x7f0000000240)="d7bf2d6f094b17f405ae99ab6577f160a342e8f50dd7b03d11611789b0ebb9edd9fadf6203780385ca4fe49409786e622323d737882a9904d2c11472b1bffa8df35705c7e14d8887f83fb4206d856af6b04af2f1699412c0e9375ba4c16b52ce26aa4814533448cac05dfeb8c1f7da7a4b853731d7a802c415a0c5450b3f89eed651b881c5a857a01dda9e1472c56ba4032fe4d05dde5ee8290a4c1a729325770ff3ce", &(0x7f0000000300)=""/4096, 0x40, 0x0, 0x1, &(0x7f0000000040)})
r2 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})
ioctl$SG_GET_PACK_ID(r0, 0x227c, &(0x7f00000000c0))
ioctl$F2FS_IOC_MOVE_RANGE(r2, 0xc020f509, &(0x7f0000000080)={<r3=>r2, 0x54dd2b3, 0x5eb3, 0x2})
perf_event_open(&(0x7f00000001c0)={0x3, 0x80, 0x0, 0x20, 0x7, 0x18, 0x0, 0x1, 0x1090, 0x4, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x8000002, 0x1, @perf_config_ext={0xede, 0x100000001}, 0x60009, 0x40, 0x65, 0x4, 0xfffffffffffffffb, 0x0, 0x2, 0x0, 0x4, 0x0, 0x8}, 0xffffffffffffffff, 0xffffffffffffffff, r3, 0xa)

[  236.269742][    C0] scsi_io_completion_action: 10 callbacks suppressed
[  236.269765][    C0] sd 0:0:1:0: tag#7865 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  236.271542][T19264] debugfs: Directory 'sg0' with parent 'block' already present!
[  236.276488][    C0] sd 0:0:1:0: tag#7865 CDB: opcode=0xe5 (vendor)
[  236.276516][    C0] sd 0:0:1:0: tag#7865 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  236.309276][    C0] sd 0:0:1:0: tag#7865 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
19:53:41 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x0, &(0x7f0000000340), &(0x7f0000000380), &(0x7f00000003c0), {0x3a}, &(0x7f00000004c0)=""/240, 0xf0, &(0x7f0000000400)=""/126, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

[  236.316374][T19264] blktrace: debugfs_dir not present for sg0 so skipping
[  236.318308][    C0] sd 0:0:1:0: tag#7865 CDB[20]: ba
[  236.337049][T19263] debugfs: Directory 'sg0' with parent 'block' already present!
[  236.346164][T19263] blktrace: debugfs_dir not present for sg0 so skipping
[  236.355873][T19264] debugfs: Directory 'sg0' with parent 'block' already present!
19:53:41 executing program 0:
syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x80000, 0x80000, 0xffffffffffffffff})

19:53:41 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0xa00, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

19:53:41 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)

[  236.366912][T19264] blktrace: debugfs_dir not present for sg0 so skipping
19:53:41 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x0, &(0x7f0000000340), &(0x7f0000000380), &(0x7f00000003c0), {0x3a}, &(0x7f00000004c0)=""/240, 0xf0, &(0x7f0000000400)=""/126, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

[  236.404816][T19274] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  236.415756][T19280] debugfs: Directory 'sg0' with parent 'block' already present!
[  236.425061][T19280] blktrace: debugfs_dir not present for sg0 so skipping
[  236.432097][T19283] debugfs: Directory 'sg0' with parent 'block' already present!
[  236.442470][T19283] blktrace: debugfs_dir not present for sg0 so skipping
19:53:41 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0xa00, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

19:53:41 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/consoles\x00', 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x3, 0x2, 0xfffffffffffffffe, 0x8, 0xffffffffffffffff})

[  236.454802][T19283] debugfs: Directory 'sg0' with parent 'block' already present!
[  236.462707][T19283] blktrace: debugfs_dir not present for sg0 so skipping
[  236.486538][T19291] debugfs: Directory 'sg0' with parent 'block' already present!
[  236.521845][T19291] blktrace: debugfs_dir not present for sg0 so skipping
[  236.534695][T19295] debugfs: Directory 'sg0' with parent 'block' already present!
[  236.569793][T19295] blktrace: debugfs_dir not present for sg0 so skipping
19:53:41 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r0, 0xc020660b, 0x0)
read(r0, &(0x7f0000000200)=""/75, 0x4b)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = clone3(&(0x7f0000007500)={0x30000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pidfd_open(r1, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r3, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)

19:53:41 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x39bd97fd, 0x0)
r1 = clone3(&(0x7f0000007500)={0x30000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pidfd_open(r1, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000080)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, r1})
r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x8400, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r3, 0xc020660b, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0, 0x12, r3, 0x1f7ac000)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
preadv(r3, &(0x7f0000000000)=[{&(0x7f0000000100)=""/151, 0x97}], 0x1, 0x200, 0xfff)
ioctl$BLKTRACETEARDOWN(r2, 0x1276, 0x0)

19:53:41 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x7a, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

19:53:41 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x0, &(0x7f0000000340), &(0x7f0000000380), &(0x7f00000003c0), {0x3a}, &(0x7f00000004c0)=""/240, 0xf0, &(0x7f0000000400)=""/126, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

19:53:41 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x313000, 0xf)
r3 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
r4 = pidfd_getfd(0xffffffffffffffff, r3, 0x0)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000001640)={0x53, 0x0, 0x4d, 0x0, @scatter={0x5, 0x0, &(0x7f0000000ec0)=[{&(0x7f0000000140)=""/218, 0xda}, {&(0x7f00000013c0)=""/57, 0x39}, {&(0x7f0000000240)=""/22, 0x16}, {&(0x7f0000000300)=""/186, 0xba}, {&(0x7f0000001580)=""/191, 0xbf}]}, &(0x7f00000000c0)="75689d2db59d502e99c5d5c3caa87e479e83968fd1eefb4ba6d941a22fb928f2f16a60e192ae2cb7afbf6e22e9fd0fe9f3f6c490df0b642685262142cd523b15e8a63a0243602599d5edb2df3f", 0x0, 0x0, 0x0, 0x0, 0x0})
r5 = perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r3, 0x81f8943c, &(0x7f0000001000)={0x0, ""/256, 0x0, <r6=>0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0, <r7=>0x0})
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r8, 0x8914, &(0x7f0000000040)='lo\x00\x96o\xd6Q\xb9Y\xa9\xc8J,\x00\xd2\x97\x04\x03\xdc\r')
flock(r4, 0x1)
ioctl$PERF_EVENT_IOC_SET_FILTER(r8, 0x8923, &(0x7f0000000680)='lo\x00\x96o8\x0fd\xa1\xe3\xd7]b}\x1f\xa1Y\xad4\x90\x9d`\xd2\x98\x00\x00\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\x1b\xe7\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\x186\xc5q@n\xb4\xb6s\xb0\x00\x00\x00\x00\x00\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2aj\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x16\x7fT\x11\xd3\r7\xe6\"f\xcf\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xf8s2\x9cVF\xd5\x18\xfe\x0e\x8f \x01\x00\x00y.\xfc*\x82\xa5\xa1p5\xc8{\xf7\xef\xab\xe8\x99\xebw#\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\xb9\rh^J-\xd1\xbaUn\x04\'l\x1b\xe0o\xdb\xc8\x91%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x03\x93\xe1\xcc\xe7m\x80\'\xf0\xa5\xed(\r\xa8\x0f&\xb1\xf3\xff0\f\x82%_\x92\x8bD\xb9\xd9\xe7\xf2\xe4\xc1i#\xdc\x87A\xb9\xc7\r\x92\xfa\x11\x11\xb5\x1f\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02P\xc3!N\xa1\x86\"\xd7\x04\xf1\xc0!\xed\xff\xee$\xc89\x8cB0\xd1dD\xe0IP\x88\xa2\xf2Y\x9af$$\xf1\x81\x96\xf7P\xac\xca\x80:!\xb4\x94#\xcb^\x9f\'\x03\xe3\x93\xb9\x82\xbf\xcf\xc4\xe3\xf7\x03Oh\xf2r\xca\x8ff\xbb/\x9f*\xaf\x1a \xa5\xa0?%M\xa5\x86\x98\xfa4\'1\xc7\f<\xcc@\xe8\x8a\xac.\xde\xe4\xc7\xf5\x9ck\xa40!\xe9\x14$\xb3\x05m\xb5m\xed\ft\x93\xd8\xa3\x80\'Y\xb9\x05\xbbt|\xbe\xbcz\n\xf3\xf5p\xf8\x9f~\x1b\xd0\v\x1cQ')
sendmsg$NLBL_CIPSOV4_C_REMOVE(r8, &(0x7f0000000240)={&(0x7f0000000fc0)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000200)={&(0x7f0000002980)=ANY=[@ANYBLOB="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", @ANYRES64=r7, @ANYRESHEX, @ANYRES32=r6, @ANYRESOCT, @ANYRES64, @ANYRESHEX=r5], 0x3}, 0x1, 0x0, 0x0, 0x4}, 0x40025)
ioctl$BTRFS_IOC_RM_DEV_V2(r1, 0x5000943a, &(0x7f0000000200)={{r0}, r7, 0x20, @inherit={0x50, &(0x7f0000000180)=ANY=[@ANYBLOB="00000000000000000100000000000000c1fffff609fffffee40000000000000001000000000000008802000000000000fbffffffffffffff270000000000000009000001000000000200000000000000"]}, @name="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"})
ioctl$BLKTRACESTOP(r2, 0x1275, 0x0)
r9 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r9, 0x0)
preadv(r9, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
name_to_handle_at(r9, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080)=@FILEID_UDF_WITHOUT_PARENT={0xc, 0x51, {0x7f, 0x81, 0x177, 0x10000}}, &(0x7f00000000c0), 0x1000)

[  237.144185][T19306] debugfs: Directory 'sg0' with parent 'block' already present!
[  237.164467][T19306] blktrace: debugfs_dir not present for sg0 so skipping
[  237.172072][T19310] debugfs: Directory 'sg0' with parent 'block' already present!
[  237.179992][T19310] blktrace: debugfs_dir not present for sg0 so skipping
19:53:41 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})
r1 = syz_open_dev$loop(&(0x7f0000000000), 0x6, 0x242300)
ioctl$BLKTRACESTART(r1, 0x1274, 0x0)

19:53:41 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000340)={0x0, 0x0, 0xa1, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000040)="3a1b58f2d9ceedc50ba8b4af302e85edaf7dd7eafe5a7715256edac7c833a95b23853f7d645ae03b20bd1805e77461e81ec93844ea0264ea2b7377cd8d52dfe04fa8036710bb3d01889d9382813302e2605446af26ab8aa498b94e9d0d61ed7640dd02f258a872dc4c3608dd7c7b78962fba66a6156df9eb3edc641854a234b18e601f83dd7d32e15f617af17865ccd0e4034a162a31de1ec0f0a96800795f5a3a", &(0x7f0000000280)=""/117, 0x1, 0x8001, 0x2, &(0x7f0000000300)})
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x0, 0x0, @scatter={0x0, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0})
r1 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={<r2=>0x0, ""/256, <r3=>0x0, <r4=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r4}, {0x0, r4}, {r3}, {r3}, {}, {}, {}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {r3}, {r2, r4}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {}, {}, {r2, r4}, {r3}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r2, r4}, {}, {0x0, r4}, {r3}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {0x0, r4}, {}, {r2, r4}, {0x0, r4}, {r2}, {}, {r3}, {r2}, {}, {r3, r4}, {}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3}, {r2, r4}, {r2}, {r2}, {}, {}, {0x0, r4}, {}, {r3}, {r2}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {}, {}, {0x0, r4}, {r2}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r2, r4}, {}, {}, {0x0, r4}, {}, {r2}, {0x0, r4}, {}, {r3}, {r2, r4}, {}, {r2}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r2}, {r2, r4}, {}, {0x0, r4}, {r2, r4}, {}, {r3, r4}, {r2}, {r3}, {}, {r2, r4}, {r2}, {0x0, r4}, {}, {r2}, {r2, r4}, {}, {}, {0x0, r4}, {}, {0x0, r4}, {r3, r4}, {}, {}, {r2, r4}, {0x0, r4}, {r3, r4}, {r2, r4}, {r3, r4}, {}, {}, {r3, r4}, {r3}, {}, {0x0, r4}, {r2}, {0x0, r4}, {r3, r4}, {r2}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {r2}, {}, {}, {}, {0x0, r4}, {r2, r4}, {r3, r4}, {}, {}, {}, {r3, <r5=>r4}, {0x0, r4}, {}, {}, {r2}, {r2}, {0x0, r4}, {r2, r4}, {r3, r4}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {r3}, {r2, r4}, {r2, r4}, {0x0, r4}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {r2}, {}, {r2}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r3, r4}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {r3}, {r3, r4}, {}, {}, {r2}, {}, {r2}, {r3}, {}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {r3}, {r3}, {}, {}, {r3}, {0x0, r4}, {0x0, r4}, {r2, r4}, {r2}, {}, {0x0, r4}, {0x0, r4}, {}, {r3, r4}, {}, {0x0, r4}, {r2}, {r3, r4}, {r2, r4}, {r3, r4}, {r3}, {r2, r4}, {}, {}, {r3}, {r2, r4}, {0x0, r4}, {r2, r4}, {0x0, r4}, {r3}, {r3}, {r2}, {0x0, r4}, {r3, r4}, {r3}, {0x0, r4}, {}, {}, {}, {r2, r4}], 0x1, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f000005b580)={0x151272b0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r5}], 0x80, "09e90fd4c70903"})
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r6, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r7 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r7, 0xd000943d, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

19:53:41 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, &(0x7f0000000380), &(0x7f00000003c0), {0x3a}, &(0x7f00000004c0)=""/240, 0xf0, &(0x7f0000000400)=""/126, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

[  237.212262][T19313] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  237.224066][    C0] sd 0:0:1:0: tag#7866 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  237.233915][    C0] sd 0:0:1:0: tag#7866 CDB: opcode=0x75 (reserved)
[  237.240467][    C0] sd 0:0:1:0: tag#7866 CDB[00]: 75 68 9d 2d b5 9d 50 2e 99 c5 d5 c3 ca a8 7e 47
[  237.249520][    C0] sd 0:0:1:0: tag#7866 CDB[10]: 9e 83 96 8f d1 ee fb 4b a6 d9 41 a2 2f b9 28 f2
[  237.258573][    C0] sd 0:0:1:0: tag#7866 CDB[20]: f1 6a 60 e1 92 ae 2c b7 af bf 6e 22 e9 fd 0f e9
[  237.267611][    C0] sd 0:0:1:0: tag#7866 CDB[30]: f3 f6 c4 90 df 0b 64 26 85 26 21 42 cd 52 3b 15
[  237.276650][    C0] sd 0:0:1:0: tag#7866 CDB[40]: e8 a6 3a 02 43 60 25 99 d5 ed b2 df 3f
[  237.286169][T19317] device lo entered promiscuous mode
[  237.308054][T19310] Y­4��`Ò˜: renamed from lo
[  237.315646][T19317] debugfs: Directory 'sg0' with parent 'block' already present!
[  237.317600][    C0] sd 0:0:1:0: tag#7867 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  237.333089][    C0] sd 0:0:1:0: tag#7867 CDB: opcode=0xe5 (vendor)
[  237.339436][    C0] sd 0:0:1:0: tag#7867 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  237.341926][T19317] blktrace: debugfs_dir not present for sg0 so skipping
[  237.348458][    C0] sd 0:0:1:0: tag#7867 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  237.355643][T19324] debugfs: Directory 'sg0' with parent 'block' already present!
[  237.364422][    C0] sd 0:0:1:0: tag#7867 CDB[20]: ba
[  237.391407][    C1] sd 0:0:1:0: tag#7870 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  237.396688][T19324] blktrace: debugfs_dir not present for sg0 so skipping
[  237.401242][    C1] sd 0:0:1:0: tag#7870 CDB: opcode=0x75 (reserved)
[  237.412378][T19323] debugfs: Directory 'sg0' with parent 'block' already present!
[  237.414658][    C1] sd 0:0:1:0: tag#7870 CDB[00]: 75 68 9d 2d b5 9d 50 2e 99 c5 d5 c3 ca a8 7e 47
[  237.431273][    C1] sd 0:0:1:0: tag#7870 CDB[10]: 9e 83 96 8f d1 ee fb 4b a6 d9 41 a2 2f b9 28 f2
[  237.433591][T19323] blktrace: debugfs_dir not present for sg0 so skipping
[  237.440301][    C1] sd 0:0:1:0: tag#7870 CDB[20]: f1 6a 60 e1 92 ae 2c b7 af bf 6e 22 e9 fd 0f e9
[  237.440320][    C1] sd 0:0:1:0: tag#7870 CDB[30]: f3 f6 c4 90 df 0b 64 26 85 26 21 42 cd 52 3b 15
19:53:42 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, &(0x7f00000003c0), {0x3a}, &(0x7f00000004c0)=""/240, 0xf0, &(0x7f0000000400)=""/126, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

19:53:42 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000340)={0x0, 0x0, 0xa1, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000040)="3a1b58f2d9ceedc50ba8b4af302e85edaf7dd7eafe5a7715256edac7c833a95b23853f7d645ae03b20bd1805e77461e81ec93844ea0264ea2b7377cd8d52dfe04fa8036710bb3d01889d9382813302e2605446af26ab8aa498b94e9d0d61ed7640dd02f258a872dc4c3608dd7c7b78962fba66a6156df9eb3edc641854a234b18e601f83dd7d32e15f617af17865ccd0e4034a162a31de1ec0f0a96800795f5a3a", &(0x7f0000000280)=""/117, 0x1, 0x8001, 0x2, &(0x7f0000000300)})
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x0, 0x0, @scatter={0x0, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0})
r1 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x0, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={<r2=>0x0, ""/256, <r3=>0x0, <r4=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r4}, {0x0, r4}, {r3}, {r3}, {}, {}, {}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {r3}, {r2, r4}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {}, {}, {r2, r4}, {r3}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r2, r4}, {}, {0x0, r4}, {r3}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {0x0, r4}, {}, {r2, r4}, {0x0, r4}, {r2}, {}, {r3}, {r2}, {}, {r3, r4}, {}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3}, {r2, r4}, {r2}, {r2}, {}, {}, {0x0, r4}, {}, {r3}, {r2}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {}, {}, {0x0, r4}, {r2}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r2, r4}, {}, {}, {0x0, r4}, {}, {r2}, {0x0, r4}, {}, {r3}, {r2, r4}, {}, {r2}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r2}, {r2, r4}, {}, {0x0, r4}, {r2, r4}, {}, {r3, r4}, {r2}, {r3}, {}, {r2, r4}, {r2}, {0x0, r4}, {}, {r2}, {r2, r4}, {}, {}, {0x0, r4}, {}, {0x0, r4}, {r3, r4}, {}, {}, {r2, r4}, {0x0, r4}, {r3, r4}, {r2, r4}, {r3, r4}, {}, {}, {r3, r4}, {r3}, {}, {0x0, r4}, {r2}, {0x0, r4}, {r3, r4}, {r2}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {r2}, {}, {}, {}, {0x0, r4}, {r2, r4}, {r3, r4}, {}, {}, {}, {r3, <r5=>r4}, {0x0, r4}, {}, {}, {r2}, {r2}, {0x0, r4}, {r2, r4}, {r3, r4}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {r3}, {r2, r4}, {r2, r4}, {0x0, r4}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {r2}, {}, {r2}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r3, r4}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {r3}, {r3, r4}, {}, {}, {r2}, {}, {r2}, {r3}, {}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {r3}, {r3}, {}, {}, {r3}, {0x0, r4}, {0x0, r4}, {r2, r4}, {r2}, {}, {0x0, r4}, {0x0, r4}, {}, {r3, r4}, {}, {0x0, r4}, {r2}, {r3, r4}, {r2, r4}, {r3, r4}, {r3}, {r2, r4}, {}, {}, {r3}, {r2, r4}, {0x0, r4}, {r2, r4}, {0x0, r4}, {r3}, {r3}, {r2}, {0x0, r4}, {r3, r4}, {r3}, {0x0, r4}, {}, {}, {}, {r2, r4}], 0x1, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f000005b580)={0x151272b0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r5}], 0x80, "09e90fd4c70903"})
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r6, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r7 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r7, 0xd000943d, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

[  237.465277][    C1] sd 0:0:1:0: tag#7870 CDB[40]: e8 a6 3a 02 43 60 25 99 d5 ed b2 df 3f
[  237.484233][T19324] debugfs: Directory 'sg0' with parent 'block' already present!
[  237.496222][T19324] blktrace: debugfs_dir not present for sg0 so skipping
[  237.560835][T19340] debugfs: Directory 'sg0' with parent 'block' already present!
[  237.570827][T19340] blktrace: debugfs_dir not present for sg0 so skipping
[  237.589767][    C0] sd 0:0:1:0: tag#7871 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  237.599602][    C0] sd 0:0:1:0: tag#7871 CDB: opcode=0xe5 (vendor)
[  237.605942][    C0] sd 0:0:1:0: tag#7871 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  237.614970][    C0] sd 0:0:1:0: tag#7871 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  237.623986][    C0] sd 0:0:1:0: tag#7871 CDB[20]: ba
19:53:42 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000180))
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

19:53:42 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x8000, 0x101800)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

[  237.651542][T19341] debugfs: Directory 'sg0' with parent 'block' already present!
[  237.669478][T19341] blktrace: debugfs_dir not present for sg0 so skipping
19:53:42 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r0, 0xc020660b, 0x0)
read(r0, &(0x7f0000000200)=""/75, 0x4b)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = clone3(&(0x7f0000007500)={0x30000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pidfd_open(r1, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r3, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)

19:53:42 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0x3a}, &(0x7f00000004c0)=""/240, 0xf0, &(0x7f0000000400)=""/126, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

19:53:42 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080), 0x800000, 0x0)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000000400)={0x53, 0xfffffffffffffffc, 0xc2, 0x4, @buffer={0x0, 0x9b, &(0x7f0000000180)=""/155}, &(0x7f0000000240)="11c8f715057c217a02339b77349edf5d6e917dd73f86f14b1260d29134f4cf12e157094be6bc4cea85a94a0d699f286b808b61729f2815edb55f5f353d5c0f77da6a12924327988c4890a2ddafe1955dc25139232284e48336a7214efef61cd9274928e5e79f9c413e3fce1e02375819a7e3ad06080b70a7ad600032e7263f3dd18ce7d151bfbecb526c0013064b7d050ef0576b03ab30cca3a1658335235900379592b958166c65e06b2ebf40f5623a954335ff35424ce8bc0d2693153692f6baa9", &(0x7f0000000340)=""/186, 0x8, 0x10023, 0x1, &(0x7f00000000c0)})
r2 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r2, 0x4008240b, &(0x7f0000000000)={0x3, 0x80, 0x55, 0x0, 0x3, 0x5, 0x0, 0x8, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x87, 0x1, @perf_config_ext={0xfffffffffffffffc, 0xfff}, 0x0, 0x3ff, 0x6, 0x4, 0x5, 0x5, 0xfff, 0x0, 0x20, 0x0, 0x81})
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x7, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})
r3 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000480), 0x0, 0x0)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0xc)

19:53:42 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})
r1 = epoll_create(0x2)
r2 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x4c802, 0x0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000000340)={0x53, 0xfffffffffffffffe, 0xbc, 0x4, @buffer={0x0, 0xdd, &(0x7f0000000180)=""/221}, &(0x7f0000000040)="9a64bb198bacebc7904eaa077ba2137eceaf3fa237a5c220d065bf29da7871e1e73599a054be5cf42dfd4dbae88e4f252000ee536497deb1d44f0a35a5a049da30198ddacd0dee3ea7556bff07401a76d4ae271ee1dbc3619b3bf404ea8f48bb60e88eab101d134a866fa30060202ea2fd9131d92312837ee1f0abd4594fc695ec1250ccff157618d6efa946cfa19c2e02648d54b053fbc9b22e24e82b246e1777670a92a98ea0160f7cfe675a38e35bffe85f01494067a4178e2bf4", &(0x7f0000000280)=""/92, 0x20, 0x7, 0x3, &(0x7f0000000300)})
ioctl$LOOP_CHANGE_FD(0xffffffffffffffff, 0x4c06, r1)

19:53:42 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000340)={0x0, 0x0, 0xa1, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000040)="3a1b58f2d9ceedc50ba8b4af302e85edaf7dd7eafe5a7715256edac7c833a95b23853f7d645ae03b20bd1805e77461e81ec93844ea0264ea2b7377cd8d52dfe04fa8036710bb3d01889d9382813302e2605446af26ab8aa498b94e9d0d61ed7640dd02f258a872dc4c3608dd7c7b78962fba66a6156df9eb3edc641854a234b18e601f83dd7d32e15f617af17865ccd0e4034a162a31de1ec0f0a96800795f5a3a", &(0x7f0000000280)=""/117, 0x1, 0x8001, 0x2, &(0x7f0000000300)})
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x0, 0x0, @scatter={0x0, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0})
r1 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x0, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={<r2=>0x0, ""/256, <r3=>0x0, <r4=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r4}, {0x0, r4}, {r3}, {r3}, {}, {}, {}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {r3}, {r2, r4}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {}, {}, {r2, r4}, {r3}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r2, r4}, {}, {0x0, r4}, {r3}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {0x0, r4}, {}, {r2, r4}, {0x0, r4}, {r2}, {}, {r3}, {r2}, {}, {r3, r4}, {}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3}, {r2, r4}, {r2}, {r2}, {}, {}, {0x0, r4}, {}, {r3}, {r2}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {}, {}, {0x0, r4}, {r2}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r2, r4}, {}, {}, {0x0, r4}, {}, {r2}, {0x0, r4}, {}, {r3}, {r2, r4}, {}, {r2}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r2}, {r2, r4}, {}, {0x0, r4}, {r2, r4}, {}, {r3, r4}, {r2}, {r3}, {}, {r2, r4}, {r2}, {0x0, r4}, {}, {r2}, {r2, r4}, {}, {}, {0x0, r4}, {}, {0x0, r4}, {r3, r4}, {}, {}, {r2, r4}, {0x0, r4}, {r3, r4}, {r2, r4}, {r3, r4}, {}, {}, {r3, r4}, {r3}, {}, {0x0, r4}, {r2}, {0x0, r4}, {r3, r4}, {r2}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {r2}, {}, {}, {}, {0x0, r4}, {r2, r4}, {r3, r4}, {}, {}, {}, {r3, <r5=>r4}, {0x0, r4}, {}, {}, {r2}, {r2}, {0x0, r4}, {r2, r4}, {r3, r4}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {r3}, {r2, r4}, {r2, r4}, {0x0, r4}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {r2}, {}, {r2}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r3, r4}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {r3}, {r3, r4}, {}, {}, {r2}, {}, {r2}, {r3}, {}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {r3}, {r3}, {}, {}, {r3}, {0x0, r4}, {0x0, r4}, {r2, r4}, {r2}, {}, {0x0, r4}, {0x0, r4}, {}, {r3, r4}, {}, {0x0, r4}, {r2}, {r3, r4}, {r2, r4}, {r3, r4}, {r3}, {r2, r4}, {}, {}, {r3}, {r2, r4}, {0x0, r4}, {r2, r4}, {0x0, r4}, {r3}, {r3}, {r2}, {0x0, r4}, {r3, r4}, {r3}, {0x0, r4}, {}, {}, {}, {r2, r4}], 0x1, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f000005b580)={0x151272b0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r5}], 0x80, "09e90fd4c70903"})
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r6, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r7 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r7, 0xd000943d, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

19:53:42 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, &(0x7f00000004c0)=""/240, 0xf0, &(0x7f0000000400)=""/126, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

[  238.008765][T19358] debugfs: Directory 'sg0' with parent 'block' already present!
[  238.017565][    C0] sd 0:0:1:0: tag#7808 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  238.027420][    C0] sd 0:0:1:0: tag#7808 CDB: opcode=0xe5 (vendor)
[  238.033752][    C0] sd 0:0:1:0: tag#7808 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  238.042781][    C0] sd 0:0:1:0: tag#7808 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  238.051821][    C0] sd 0:0:1:0: tag#7808 CDB[20]: ba
19:53:42 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, &(0x7f0000000400)=""/126, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

[  238.090327][T19367] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  238.099782][T19358] blktrace: debugfs_dir not present for sg0 so skipping
[  238.106777][T19359] debugfs: Directory 'sg0' with parent 'block' already present!
[  238.117616][T19359] blktrace: debugfs_dir not present for sg0 so skipping
[  238.124841][T19356] debugfs: Directory 'sg0' with parent 'block' already present!
19:53:42 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000340)={0x0, 0x0, 0xa1, 0x0, @buffer={0x0, 0x0, 0x0}, &(0x7f0000000040)="3a1b58f2d9ceedc50ba8b4af302e85edaf7dd7eafe5a7715256edac7c833a95b23853f7d645ae03b20bd1805e77461e81ec93844ea0264ea2b7377cd8d52dfe04fa8036710bb3d01889d9382813302e2605446af26ab8aa498b94e9d0d61ed7640dd02f258a872dc4c3608dd7c7b78962fba66a6156df9eb3edc641854a234b18e601f83dd7d32e15f617af17865ccd0e4034a162a31de1ec0f0a96800795f5a3a", &(0x7f0000000280)=""/117, 0x1, 0x8001, 0x2, &(0x7f0000000300)})
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x0, 0x0, @scatter={0x0, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x100, 0x0})
r1 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x0, 0x7fffffff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={<r2=>0x0, ""/256, <r3=>0x0, <r4=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r4}, {0x0, r4}, {r3}, {r3}, {}, {}, {}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {r3}, {r2, r4}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {}, {}, {r2, r4}, {r3}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r2, r4}, {}, {0x0, r4}, {r3}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {0x0, r4}, {}, {r2, r4}, {0x0, r4}, {r2}, {}, {r3}, {r2}, {}, {r3, r4}, {}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3}, {r2, r4}, {r2}, {r2}, {}, {}, {0x0, r4}, {}, {r3}, {r2}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {}, {}, {0x0, r4}, {r2}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r2, r4}, {}, {}, {0x0, r4}, {}, {r2}, {0x0, r4}, {}, {r3}, {r2, r4}, {}, {r2}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r2}, {r2, r4}, {}, {0x0, r4}, {r2, r4}, {}, {r3, r4}, {r2}, {r3}, {}, {r2, r4}, {r2}, {0x0, r4}, {}, {r2}, {r2, r4}, {}, {}, {0x0, r4}, {}, {0x0, r4}, {r3, r4}, {}, {}, {r2, r4}, {0x0, r4}, {r3, r4}, {r2, r4}, {r3, r4}, {}, {}, {r3, r4}, {r3}, {}, {0x0, r4}, {r2}, {0x0, r4}, {r3, r4}, {r2}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {r2}, {}, {}, {}, {0x0, r4}, {r2, r4}, {r3, r4}, {}, {}, {}, {r3, <r5=>r4}, {0x0, r4}, {}, {}, {r2}, {r2}, {0x0, r4}, {r2, r4}, {r3, r4}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {r3}, {r2, r4}, {r2, r4}, {0x0, r4}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {r2}, {}, {r2}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r3, r4}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {r3}, {r3, r4}, {}, {}, {r2}, {}, {r2}, {r3}, {}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {r3}, {r3}, {}, {}, {r3}, {0x0, r4}, {0x0, r4}, {r2, r4}, {r2}, {}, {0x0, r4}, {0x0, r4}, {}, {r3, r4}, {}, {0x0, r4}, {r2}, {r3, r4}, {r2, r4}, {r3, r4}, {r3}, {r2, r4}, {}, {}, {r3}, {r2, r4}, {0x0, r4}, {r2, r4}, {0x0, r4}, {r3}, {r3}, {r2}, {0x0, r4}, {r3, r4}, {r3}, {0x0, r4}, {}, {}, {}, {r2, r4}], 0x1, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f000005b580)={0x151272b0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r5}], 0x80, "09e90fd4c70903"})
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r6, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r7 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r7, 0xd000943d, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

19:53:42 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})
r2 = openat$random(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r4=>0x0}, &(0x7f0000cab000)=0xc)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
ioctl$RNDADDENTROPY(r2, 0x40085203, &(0x7f0000000280)=ANY=[@ANYBLOB="010000005a0000008eff7ca2c94c084860057397ffbf3399bf377ffefaa3fefbe315c3f8b06fe39e7ffa51597801fdd424f7f250f56f25e4feb3c595c174ebe66fa25dab22c89f7e15072f836459bcc1e623e94e"])
setresuid(0x0, r4, 0x0)
ioctl$BLKPG(0xffffffffffffffff, 0x1269, &(0x7f0000000200)={0x3ff, 0x7, 0x1f, &(0x7f00000000c0)="b95f22c4cf8afa69e9e8fe100fb515820fc838b27563c866ab0344fffb8ee2"})
newfstatat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000180), 0x1000)
fsetxattr$system_posix_acl(r2, &(0x7f0000000040)='system.posix_acl_default\x00', &(0x7f00000004c0)=ANY=[@ANYBLOB="02000000010003514845ea3ac8ddba00", @ANYRES32=r1, @ANYBLOB="02000401", @ANYRES32=r2, @ANYBLOB="020001007a7193204593a86161592cd0bd373c2424493d4be623c6b283548e688cbf0be9131e69fd8f8d3f1e6c9b993209632c4cf201491475f7e2ffa3418ba5bb5bb1f9cabc81566cb02cbe98687e7bf60af092c2af9522309de46f9c2fb32447fb9d61aa", @ANYRES32, @ANYBLOB="02000200", @ANYRES32=0xee00, @ANYBLOB="04000300000000001000010000000000200008000000000021960fd45a18121fc1f7d6512593b4e27b37d42eb8b15826b162bdfba45201f09fdba3da1c6b22dcb50be69ac9654f81d545098b20b008b0222d67e79d46c8f4f97d1136534210ba9cb72bc6626242d45f058b36d4c2b561e7b930c6f0b271e0cc6f710ab6daf10db2d2bddb4d0e6c5368780d6b12403ba335447083453af41a30cc63aff6d0b3f6293891cf"], 0x44, 0x3)
openat$random(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r6, 0xc020660b, 0x0)
close(r6)
ioctl$sock_SIOCGIFCONF(r5, 0xc020660b, 0x0)
ioctl$FS_IOC_GETVERSION(r5, 0x80087601, &(0x7f0000000300))

[  238.134877][T19356] blktrace: debugfs_dir not present for sg0 so skipping
[  238.142439][T19358] debugfs: Directory 'sg0' with parent 'block' already present!
[  238.155352][T19358] blktrace: debugfs_dir not present for sg0 so skipping
19:53:42 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f0000000600)=[0x0, 0x0], 0x2, {r0}}, 0x58)

[  238.215353][T19381] debugfs: Directory 'sg0' with parent 'block' already present!
[  238.230592][T19381] blktrace: debugfs_dir not present for sg0 so skipping
[  238.238951][    C0] sd 0:0:1:0: tag#7809 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  238.248791][    C0] sd 0:0:1:0: tag#7809 CDB: opcode=0xe5 (vendor)
[  238.255132][    C0] sd 0:0:1:0: tag#7809 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
19:53:42 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c})

19:53:43 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r0}}, 0x58)

[  238.264158][    C0] sd 0:0:1:0: tag#7809 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  238.273166][    C0] sd 0:0:1:0: tag#7809 CDB[20]: ba
[  238.281974][T19382] debugfs: Directory 'sg0' with parent 'block' already present!
[  238.294121][T19382] blktrace: debugfs_dir not present for sg0 so skipping
[  238.318542][T19390] debugfs: Directory 'sg0' with parent 'block' already present!
[  238.341689][T19390] blktrace: debugfs_dir not present for sg0 so skipping
[  238.374163][T19394] debugfs: Directory 'sg0' with parent 'block' already present!
[  238.390572][T19394] blktrace: debugfs_dir not present for sg0 so skipping
19:53:43 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r0, 0xc020660b, 0x0)
read(r0, &(0x7f0000000200)=""/75, 0x4b)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = clone3(&(0x7f0000007500)={0x30000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pidfd_open(r1, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r3, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)

19:53:43 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000001580)={0x0, 0xfffffffffffffffb, 0xaf, 0x62, @scatter={0x8, 0x0, &(0x7f00000013c0)=[{&(0x7f0000000000)=""/115, 0x73}, {&(0x7f0000000180)=""/176, 0xb0}, {&(0x7f0000000080)=""/47, 0x2f}, {&(0x7f00000000c0)=""/44, 0x2c}, {&(0x7f0000000240)=""/4096, 0x1000}, {&(0x7f0000001240)=""/98, 0x62}, {&(0x7f00000012c0)=""/66, 0x42}, {&(0x7f0000001340)=""/96, 0x60}]}, &(0x7f0000001440)="7536bddcf1f59899fd28f44ebf4111e4b8607da4caea3d1cec75c3fdbe968fa6aa099dd2aad3245966a9200290835bba0adc3ee371e6ddf3893df3678f9acb8e9eeedc3f106563b247a9d2de8c65ec5c0dbed038329b195905298dbaca9e6cd3002526d4bce7adf24ec37cf528fedb4e58946430d2ee64239a38127a03b91a26c66d8f5c62f3abad1f1efccf3ed55ad047ec2dab3ac32848f2a8ddf5146e7567b72152c5c9093ad074abfd3a80b166", &(0x7f0000001500)=""/5, 0x7, 0x36, 0x1, &(0x7f0000001540)})
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x81, 0xffffffffffffffff})
r3 = clone3(&(0x7f0000007500)={0x30000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pidfd_open(r3, 0x0)
perf_event_open(&(0x7f0000001640)={0x2, 0x80, 0x7f, 0x0, 0x23, 0x46, 0x0, 0xf3, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xfffffff9, 0x4, @perf_bp={&(0x7f0000001600), 0x5}, 0x55320, 0x7fffffff, 0x9, 0x5, 0x1, 0x100, 0x5, 0x0, 0x80000000, 0x0, 0x10000}, r3, 0x3, r1, 0x1)

19:53:43 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x227a, 0x0)

19:53:43 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:53:43 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x227a, 0x0)

[  238.921626][T19402] debugfs: Directory 'sg0' with parent 'block' already present!
[  238.938707][T19402] blktrace: debugfs_dir not present for sg0 so skipping
19:53:43 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
ioctl$SG_SET_FORCE_PACK_ID(r2, 0x227b, &(0x7f0000000000))
preadv(r0, &(0x7f00000001c0)=[{&(0x7f0000000080)=""/107, 0x6b}, {&(0x7f0000000180)=""/17, 0x11}], 0x2, 0x6, 0x1)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000000200)={<r3=>r2, 0xa, 0x800, 0x1})
ioctl$BTRFS_IOC_WAIT_SYNC(r3, 0x40089416, &(0x7f0000000240))

19:53:43 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x227a, 0x0)

19:53:43 executing program 4:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x1275, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

[  238.966297][T19405] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  238.976688][T19410] debugfs: Directory 'sg0' with parent 'block' already present!
[  239.003772][T19410] blktrace: debugfs_dir not present for sg0 so skipping
19:53:43 executing program 5:
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0x227a, 0x0)

19:53:43 executing program 4:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x1275, 0x0)

[  239.072809][T19421] debugfs: Directory 'sg0' with parent 'block' already present!
[  239.095553][T19421] blktrace: debugfs_dir not present for sg0 so skipping
19:53:43 executing program 5:
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0x227a, 0x0)

19:53:43 executing program 4 (fault-call:3 fault-nth:0):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  239.130540][T19421] debugfs: Directory 'sg0' with parent 'block' already present!
[  239.143605][T19421] blktrace: debugfs_dir not present for sg0 so skipping
[  239.191709][T19439] FAULT_INJECTION: forcing a failure.
[  239.191709][T19439] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  239.204789][T19439] CPU: 0 PID: 19439 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  239.213197][T19439] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  239.223301][T19439] Call Trace:
[  239.226577][T19439]  dump_stack_lvl+0xb7/0x103
[  239.231170][T19439]  dump_stack+0x11/0x1a
[  239.235358][T19439]  should_fail+0x23c/0x250
[  239.239856][T19439]  should_fail_usercopy+0x16/0x20
[  239.244882][T19439]  _copy_from_user+0x1c/0xd0
[  239.249481][T19439]  copy_clone_args_from_user+0x133/0x420
[  239.255116][T19439]  ? kstrtouint_from_user+0x104/0x130
[  239.260489][T19439]  ? get_pid_task+0x8b/0xc0
[  239.264992][T19439]  __se_sys_clone3+0x4c/0x1d0
[  239.269665][T19439]  ? vfs_write+0x5e0/0x8c0
[  239.274080][T19439]  ? __fget_light+0x21b/0x260
[  239.278897][T19439]  ? __cond_resched+0x11/0x40
[  239.283571][T19439]  ? fput+0x2d/0x130
[  239.287540][T19439]  ? ksys_write+0x157/0x180
[  239.292038][T19439]  ? fpregs_assert_state_consistent+0x7d/0x90
[  239.298095][T19439]  ? exit_to_user_mode_prepare+0x65/0x190
[  239.303814][T19439]  __x64_sys_clone3+0x2d/0x40
[  239.308488][T19439]  do_syscall_64+0x3d/0x90
[  239.312928][T19439]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  239.318818][T19439] RIP: 0033:0x4665f9
[  239.322705][T19439] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  239.342385][T19439] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  239.350793][T19439] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  239.358765][T19439] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  239.366736][T19439] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  239.374702][T19439] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  239.382665][T19439] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:53:44 executing program 4 (fault-call:3 fault-nth:1):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:53:44 executing program 0:
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3)
r0 = syz_io_uring_complete(0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x80, 0x800, 0x10000, 0xa, 0x0, 0xffffffffffffffff})

19:53:44 executing program 5:
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0x227a, 0x0)

[  239.480623][T19447] FAULT_INJECTION: forcing a failure.
[  239.480623][T19447] name failslab, interval 1, probability 0, space 0, times 0
[  239.493262][T19447] CPU: 0 PID: 19447 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  239.501677][T19447] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  239.511742][T19447] Call Trace:
[  239.515014][T19447]  dump_stack_lvl+0xb7/0x103
[  239.519604][T19447]  dump_stack+0x11/0x1a
[  239.523754][T19447]  should_fail+0x23c/0x250
[  239.528156][T19447]  __should_failslab+0x81/0x90
[  239.532914][T19447]  should_failslab+0x5/0x20
[  239.537417][T19447]  kmem_cache_alloc_node+0x58/0x2b0
[  239.542613][T19447]  ? dup_task_struct+0x63/0x680
[  239.547466][T19447]  dup_task_struct+0x63/0x680
[  239.552149][T19447]  copy_process+0x3ff/0x2f90
[  239.556733][T19447]  ? __alloc_pages+0x194/0x320
[  239.561490][T19447]  ? __mod_memcg_lruvec_state+0xa7/0x190
[  239.567303][T19447]  ? _copy_from_user+0x94/0xd0
[  239.572204][T19447]  ? copy_clone_args_from_user+0x3ab/0x420
[  239.578010][T19447]  kernel_clone+0x14b/0x680
[  239.582507][T19447]  __se_sys_clone3+0x194/0x1d0
[  239.587403][T19447]  ? __cond_resched+0x11/0x40
[  239.592079][T19447]  ? fput+0x2d/0x130
[  239.595979][T19447]  ? ksys_write+0x157/0x180
[  239.600506][T19447]  ? fpregs_assert_state_consistent+0x7d/0x90
[  239.606596][T19447]  ? exit_to_user_mode_prepare+0x65/0x190
[  239.612318][T19447]  __x64_sys_clone3+0x2d/0x40
[  239.617105][T19447]  do_syscall_64+0x3d/0x90
[  239.621518][T19447]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  239.627407][T19447] RIP: 0033:0x4665f9
[  239.631296][T19447] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  239.650897][T19447] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  239.659301][T19447] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  239.667311][T19447] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  239.675283][T19447] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  239.683249][T19447] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  239.691220][T19447] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:53:44 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r0, 0xc020660b, 0x0)
read(r0, &(0x7f0000000200)=""/75, 0x4b)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = clone3(&(0x7f0000007500)={0x30000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pidfd_open(r1, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, 0x0, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, 0x0, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

19:53:44 executing program 0:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000200), r1)
r2 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000180)={&(0x7f0000000080)={0x7c, r2, 0x400, 0x70bd2b, 0x25dfdbfd, {}, [@NLBL_CIPSOV4_A_TAGLST={0x34, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x2}, {0x5, 0x3, 0x1}, {0x5, 0x3, 0x1}, {0x5, 0x3, 0x5}, {0x5}, {0x5, 0x3, 0x7}]}, @NLBL_CIPSOV4_A_TAGLST={0x24, 0x4, 0x0, 0x1, [{0x5}, {0x5}, {0x5, 0x3, 0x6}, {0x5, 0x3, 0x2}]}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x3}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}]}, 0x7c}, 0x1, 0x0, 0x0, 0x8010}, 0x44001)
r3 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

19:53:44 executing program 5:
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x227a, 0x0)

19:53:44 executing program 5:
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x227a, 0x0)

[  239.818299][T19457] debugfs: Directory 'sg0' with parent 'block' already present!
[  239.834639][T19457] blktrace: debugfs_dir not present for sg0 so skipping
19:53:44 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})
r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x70000, 0x0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x2400, 0x1000)

19:53:44 executing program 5:
r0 = syz_open_dev$sg(0x0, 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x227a, 0x0)

[  239.929975][T19470] debugfs: Directory 'sg0' with parent 'block' already present!
[  239.956932][T19470] blktrace: debugfs_dir not present for sg0 so skipping
19:53:44 executing program 4 (fault-call:3 fault-nth:2):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:53:44 executing program 5:
syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0x227a, 0x0)

19:53:44 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000008, 0x4000010, r0, 0x3ffff000)
ioctl$SG_EMULATED_HOST(r0, 0x2203, &(0x7f0000000000))
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

[  239.978788][T19474] debugfs: Directory 'sg0' with parent 'block' already present!
[  239.995162][T19474] blktrace: debugfs_dir not present for sg0 so skipping
[  240.040955][T19479] FAULT_INJECTION: forcing a failure.
[  240.040955][T19479] name failslab, interval 1, probability 0, space 0, times 0
[  240.053276][T19483] debugfs: Directory 'sg0' with parent 'block' already present!
[  240.053576][T19479] CPU: 0 PID: 19479 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  240.069580][T19479] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  240.069858][T19483] blktrace: debugfs_dir not present for sg0 so skipping
[  240.079620][T19479] Call Trace:
[  240.079629][T19479]  dump_stack_lvl+0xb7/0x103
[  240.094372][T19479]  dump_stack+0x11/0x1a
[  240.098523][T19479]  should_fail+0x23c/0x250
[  240.102934][T19479]  ? prepare_creds+0x2a/0x430
[  240.107598][T19479]  __should_failslab+0x81/0x90
[  240.112359][T19479]  should_failslab+0x5/0x20
[  240.112575][T19485] debugfs: Directory 'sg0' with parent 'block' already present!
[  240.116887][T19479]  kmem_cache_alloc+0x46/0x2e0
[  240.116908][T19479]  prepare_creds+0x2a/0x430
[  240.133725][T19479]  copy_creds+0xdd/0x530
[  240.136359][T19485] blktrace: debugfs_dir not present for sg0 so skipping
[  240.138089][T19479]  ? dup_task_struct+0x650/0x680
[  240.138113][T19479]  copy_process+0x669/0x2f90
[  240.154505][T19479]  ? __alloc_pages+0x194/0x320
[  240.159305][T19479]  ? __mod_memcg_lruvec_state+0xa7/0x190
[  240.164995][T19479]  ? _copy_from_user+0x94/0xd0
[  240.169818][T19479]  ? copy_clone_args_from_user+0x3ab/0x420
[  240.175630][T19479]  kernel_clone+0x14b/0x680
[  240.180125][T19479]  __se_sys_clone3+0x194/0x1d0
[  240.184901][T19479]  ? __cond_resched+0x11/0x40
19:53:44 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
ioctl$SG_IO(r1, 0x2285, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0xf4, 0x9, @buffer={0x0, 0xb0, &(0x7f0000000000)=""/176}, &(0x7f0000000180)="a711402bd5b96fc8f7288090eb89e064871cec370f4cef665dcea121ab5d92588063db973941e4d33ba26d83549f25d76531ab007fdd6c9e318ad846179ce9a0b7cb9ae00f9d9d4f1be4934b9f67f2cf52e0e91f588080e55c3441877ca556c8ff8fde0d6a30f1d7d0f8d6b9cb1a358475340ec2348139aea9f9c9ea1120f7f27372abe2a7830937bde23f9f5e5910a120f7bf5e57927834bde1beebb8eb17b054614b8eec0d16b57b1992e049ece87e2ddf5ec552de56a2ef6e78aff39edbe560820575d2f1edc9afe64bfc468699dbbaabeb0e8a00589498dcd047422f4ca97fe997841ac6887614503be2d91b34c8e32010ac", &(0x7f00000000c0)=""/39, 0x2, 0x10, 0x0, &(0x7f0000000280)})
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

[  240.189653][T19479]  ? fput+0x2d/0x130
[  240.193575][T19479]  ? ksys_write+0x157/0x180
[  240.198070][T19479]  ? fpregs_assert_state_consistent+0x7d/0x90
[  240.204199][T19479]  ? exit_to_user_mode_prepare+0x65/0x190
[  240.210004][T19479]  __x64_sys_clone3+0x2d/0x40
[  240.214684][T19479]  do_syscall_64+0x3d/0x90
[  240.219092][T19479]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  240.224980][T19479] RIP: 0033:0x4665f9
19:53:44 executing program 5:
syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0x227a, 0x0)

[  240.228946][T19479] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  240.248546][T19479] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  240.256950][T19479] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  240.265086][T19479] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  240.273076][T19479] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  240.281040][T19479] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  240.289001][T19479] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:53:45 executing program 4 (fault-call:3 fault-nth:3):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  240.330294][T19490] debugfs: Directory 'sg0' with parent 'block' already present!
[  240.367492][T19497] FAULT_INJECTION: forcing a failure.
[  240.367492][T19497] name failslab, interval 1, probability 0, space 0, times 0
[  240.367916][T19490] blktrace: debugfs_dir not present for sg0 so skipping
[  240.380134][T19497] CPU: 1 PID: 19497 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  240.395416][T19497] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  240.405464][T19497] Call Trace:
[  240.408734][T19497]  dump_stack_lvl+0xb7/0x103
[  240.413328][T19497]  dump_stack+0x11/0x1a
[  240.417541][T19497]  should_fail+0x23c/0x250
[  240.421951][T19497]  ? kzalloc+0x1d/0x30
[  240.426014][T19497]  __should_failslab+0x81/0x90
[  240.430780][T19497]  should_failslab+0x5/0x20
[  240.435280][T19497]  __kmalloc+0x66/0x340
[  240.439465][T19497]  ? should_fail+0xd6/0x250
[  240.443957][T19497]  kzalloc+0x1d/0x30
[  240.447852][T19497]  security_prepare_creds+0x44/0x1a0
[  240.450733][T19499] debugfs: Directory 'sg0' with parent 'block' already present!
[  240.453131][T19497]  prepare_creds+0x309/0x430
[  240.453154][T19497]  copy_creds+0xdd/0x530
[  240.469531][T19497]  ? dup_task_struct+0x650/0x680
[  240.474484][T19497]  copy_process+0x669/0x2f90
[  240.479069][T19497]  ? __alloc_pages+0x194/0x320
[  240.481489][T19499] blktrace: debugfs_dir not present for sg0 so skipping
[  240.483828][T19497]  ? __mod_memcg_lruvec_state+0xa7/0x190
[  240.483852][T19497]  ? _copy_from_user+0x94/0xd0
[  240.501203][T19497]  ? copy_clone_args_from_user+0x3ab/0x420
[  240.507005][T19497]  kernel_clone+0x14b/0x680
[  240.511507][T19497]  __se_sys_clone3+0x194/0x1d0
[  240.516320][T19497]  ? __cond_resched+0x11/0x40
[  240.520995][T19497]  ? fput+0x2d/0x130
[  240.524903][T19497]  ? ksys_write+0x157/0x180
[  240.529410][T19497]  ? fpregs_assert_state_consistent+0x7d/0x90
[  240.535471][T19497]  ? exit_to_user_mode_prepare+0x65/0x190
[  240.541194][T19497]  __x64_sys_clone3+0x2d/0x40
[  240.545923][T19497]  do_syscall_64+0x3d/0x90
[  240.550336][T19497]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  240.556225][T19497] RIP: 0033:0x4665f9
[  240.560171][T19497] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  240.579891][T19497] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  240.588299][T19497] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  240.596264][T19497] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  240.604263][T19497] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  240.612227][T19497] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  240.620202][T19497] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:53:45 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r0, 0xc020660b, 0x0)
read(r0, &(0x7f0000000200)=""/75, 0x4b)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = clone3(&(0x7f0000007500)={0x30000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pidfd_open(r1, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, 0x0, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, 0x0, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

19:53:45 executing program 5:
syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0x227a, 0x0)

19:53:45 executing program 4 (fault-call:3 fault-nth:4):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  240.744265][T19506] FAULT_INJECTION: forcing a failure.
[  240.744265][T19506] name failslab, interval 1, probability 0, space 0, times 0
[  240.756878][T19506] CPU: 1 PID: 19506 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  240.765286][T19506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  240.775381][T19506] Call Trace:
[  240.778650][T19506]  dump_stack_lvl+0xb7/0x103
[  240.783244][T19506]  dump_stack+0x11/0x1a
[  240.787396][T19506]  should_fail+0x23c/0x250
[  240.791807][T19506]  __should_failslab+0x81/0x90
[  240.796570][T19506]  should_failslab+0x5/0x20
[  240.801072][T19506]  kmem_cache_alloc_node_trace+0x58/0x2e0
[  240.806800][T19506]  ? __kmalloc_node+0x30/0x40
[  240.811496][T19506]  ? __get_vm_area_node+0x226/0x260
[  240.816693][T19506]  __kmalloc_node+0x30/0x40
[  240.821197][T19506]  __vmalloc_node_range+0x23a/0x5a0
[  240.826388][T19506]  dup_task_struct+0x496/0x680
[  240.831148][T19506]  ? copy_process+0x3ff/0x2f90
[  240.835909][T19506]  copy_process+0x3ff/0x2f90
[  240.840491][T19506]  ? __alloc_pages+0x194/0x320
[  240.845330][T19506]  ? __mod_memcg_lruvec_state+0xa7/0x190
[  240.850963][T19506]  ? _copy_from_user+0x94/0xd0
[  240.855723][T19506]  ? copy_clone_args_from_user+0x3ab/0x420
[  240.861553][T19506]  kernel_clone+0x14b/0x680
[  240.866135][T19506]  __se_sys_clone3+0x194/0x1d0
[  240.870897][T19506]  ? __cond_resched+0x11/0x40
[  240.875567][T19506]  ? fput+0x2d/0x130
[  240.879456][T19506]  ? ksys_write+0x157/0x180
[  240.883953][T19506]  ? fpregs_assert_state_consistent+0x7d/0x90
[  240.890029][T19506]  ? exit_to_user_mode_prepare+0x65/0x190
[  240.895755][T19506]  __x64_sys_clone3+0x2d/0x40
[  240.900427][T19506]  do_syscall_64+0x3d/0x90
[  240.904836][T19506]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  240.910791][T19506] RIP: 0033:0x4665f9
[  240.914673][T19506] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  240.934365][T19506] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
19:53:45 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
ioctl$SG_IO(r1, 0x2285, &(0x7f00000002c0)={0x0, 0xffffffffffffffff, 0xf4, 0x9, @buffer={0x0, 0xb0, &(0x7f0000000000)=""/176}, &(0x7f0000000180)="a711402bd5b96fc8f7288090eb89e064871cec370f4cef665dcea121ab5d92588063db973941e4d33ba26d83549f25d76531ab007fdd6c9e318ad846179ce9a0b7cb9ae00f9d9d4f1be4934b9f67f2cf52e0e91f588080e55c3441877ca556c8ff8fde0d6a30f1d7d0f8d6b9cb1a358475340ec2348139aea9f9c9ea1120f7f27372abe2a7830937bde23f9f5e5910a120f7bf5e57927834bde1beebb8eb17b054614b8eec0d16b57b1992e049ece87e2ddf5ec552de56a2ef6e78aff39edbe560820575d2f1edc9afe64bfc468699dbbaabeb0e8a00589498dcd047422f4ca97fe997841ac6887614503be2d91b34c8e32010ac", &(0x7f00000000c0)=""/39, 0x2, 0x10, 0x0, &(0x7f0000000280)})
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

[  240.942771][T19506] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  240.950736][T19506] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  240.958704][T19506] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  240.966674][T19506] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  240.974679][T19506] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:53:45 executing program 4 (fault-call:3 fault-nth:5):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  241.027693][T19513] debugfs: Directory 'sg0' with parent 'block' already present!
[  241.051715][T19513] blktrace: debugfs_dir not present for sg0 so skipping
[  241.065458][T19517] FAULT_INJECTION: forcing a failure.
[  241.065458][T19517] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  241.078707][T19517] CPU: 0 PID: 19517 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  241.087114][T19517] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  241.097207][T19517] Call Trace:
[  241.100481][T19517]  dump_stack_lvl+0xb7/0x103
[  241.105067][T19517]  dump_stack+0x11/0x1a
[  241.109226][T19517]  should_fail+0x23c/0x250
[  241.113635][T19517]  __alloc_pages+0x102/0x320
[  241.118227][T19517]  kmem_getpages+0x1a/0xd0
[  241.122639][T19517]  cache_grow_begin+0x4c/0x1a0
[  241.127396][T19517]  cache_alloc_refill+0x326/0x3d0
[  241.132415][T19517]  ? should_fail+0xd6/0x250
[  241.136909][T19517]  ? create_user_ns+0x3a8/0x9e0
[  241.141758][T19517]  kmem_cache_alloc+0x266/0x2e0
[  241.146600][T19517]  ? create_user_ns+0x3a8/0x9e0
[  241.151446][T19517]  create_user_ns+0x3a8/0x9e0
[  241.156114][T19517]  copy_creds+0x17e/0x530
[  241.160522][T19517]  ? dup_task_struct+0x650/0x680
[  241.165455][T19517]  copy_process+0x669/0x2f90
[  241.170038][T19517]  ? __alloc_pages+0x194/0x320
[  241.174863][T19517]  ? __mod_memcg_lruvec_state+0xa7/0x190
[  241.180840][T19517]  ? _copy_from_user+0x94/0xd0
[  241.185600][T19517]  ? copy_clone_args_from_user+0x3ab/0x420
[  241.191436][T19517]  kernel_clone+0x14b/0x680
[  241.195936][T19517]  __se_sys_clone3+0x194/0x1d0
[  241.200695][T19517]  ? __cond_resched+0x11/0x40
[  241.205368][T19517]  ? fput+0x2d/0x130
[  241.209263][T19517]  ? ksys_write+0x157/0x180
[  241.213762][T19517]  ? fpregs_assert_state_consistent+0x7d/0x90
[  241.219825][T19517]  ? exit_to_user_mode_prepare+0x65/0x190
[  241.225548][T19517]  __x64_sys_clone3+0x2d/0x40
[  241.230217][T19517]  do_syscall_64+0x3d/0x90
[  241.234628][T19517]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  241.240518][T19517] RIP: 0033:0x4665f9
[  241.244402][T19517] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  241.264105][T19517] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  241.272518][T19517] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  241.280531][T19517] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  241.288499][T19517] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  241.296498][T19517] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  241.304464][T19517] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:53:46 executing program 5 (fault-call:1 fault-nth:0):
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x227a, 0x0)

[  241.410858][T19521] FAULT_INJECTION: forcing a failure.
[  241.410858][T19521] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  241.423961][T19521] CPU: 0 PID: 19521 Comm: syz-executor.5 Not tainted 5.14.0-syzkaller #0
[  241.432361][T19521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  241.442409][T19521] Call Trace:
[  241.445679][T19521]  dump_stack_lvl+0xb7/0x103
[  241.450279][T19521]  dump_stack+0x11/0x1a
[  241.454528][T19521]  should_fail+0x23c/0x250
19:53:46 executing program 4 (fault-call:3 fault-nth:6):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  241.458936][T19521]  should_fail_usercopy+0x16/0x20
[  241.463958][T19521]  _copy_to_user+0x1c/0x90
[  241.468377][T19521]  simple_read_from_buffer+0xab/0x120
[  241.473751][T19521]  proc_fail_nth_read+0xf6/0x140
[  241.478715][T19521]  ? proc_fault_inject_write+0x200/0x200
[  241.484362][T19521]  vfs_read+0x1ea/0x730
[  241.488518][T19521]  ? __fget_light+0x21b/0x260
[  241.493195][T19521]  ? __cond_resched+0x11/0x40
[  241.497928][T19521]  ksys_read+0xce/0x180
[  241.502136][T19521]  __x64_sys_read+0x3e/0x50
[  241.506763][T19521]  do_syscall_64+0x3d/0x90
[  241.511177][T19521]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  241.517065][T19521] RIP: 0033:0x41937c
[  241.520995][T19521] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[  241.540593][T19521] RSP: 002b:00007f6db5e0b170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  241.549002][T19521] RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 000000000041937c
[  241.556964][T19521] RDX: 000000000000000f RSI: 00007f6db5e0b1e0 RDI: 0000000000000004
[  241.564925][T19521] RBP: 00007f6db5e0b1d0 R08: 0000000000000000 R09: 0000000000000000
[  241.572886][T19521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  241.580842][T19521] R13: 00007ffc0ebe465f R14: 00007f6db5e0b300 R15: 0000000000022000
[  241.600401][T19525] FAULT_INJECTION: forcing a failure.
19:53:46 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r0, 0xc020660b, 0x0)
read(r0, &(0x7f0000000200)=""/75, 0x4b)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = clone3(&(0x7f0000007500)={0x30000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pidfd_open(r1, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, 0x0, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, 0x0, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  241.600401][T19525] name failslab, interval 1, probability 0, space 0, times 0
[  241.613088][T19525] CPU: 0 PID: 19525 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  241.621662][T19525] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  241.631710][T19525] Call Trace:
[  241.634981][T19525]  dump_stack_lvl+0xb7/0x103
[  241.639580][T19525]  dump_stack+0x11/0x1a
[  241.643737][T19525]  should_fail+0x23c/0x250
[  241.648166][T19525]  ? kzalloc+0x16/0x20
[  241.652226][T19525]  __should_failslab+0x81/0x90
[  241.657012][T19525]  should_failslab+0x5/0x20
[  241.661514][T19525]  __kmalloc+0x66/0x340
[  241.665714][T19525]  ? should_fail+0xd6/0x250
[  241.670244][T19525]  kzalloc+0x16/0x20
[  241.674162][T19525]  __register_sysctl_table+0x8c/0xda0
[  241.679530][T19525]  ? __kmalloc_track_caller+0x235/0x340
[  241.685078][T19525]  ? setup_userns_sysctls+0x42/0x230
[  241.690363][T19525]  setup_userns_sysctls+0x1c8/0x230
[  241.695558][T19525]  create_user_ns+0x88b/0x9e0
[  241.700238][T19525]  copy_creds+0x17e/0x530
[  241.704587][T19525]  ? dup_task_struct+0x650/0x680
[  241.709521][T19525]  copy_process+0x669/0x2f90
[  241.714125][T19525]  ? __alloc_pages+0x194/0x320
[  241.718885][T19525]  ? __mod_memcg_lruvec_state+0xa7/0x190
[  241.724515][T19525]  ? _copy_from_user+0x94/0xd0
[  241.729276][T19525]  ? copy_clone_args_from_user+0x3ab/0x420
[  241.735079][T19525]  kernel_clone+0x14b/0x680
[  241.739576][T19525]  __se_sys_clone3+0x194/0x1d0
[  241.744342][T19525]  ? __cond_resched+0x11/0x40
[  241.749022][T19525]  ? fput+0x2d/0x130
[  241.752979][T19525]  ? ksys_write+0x157/0x180
[  241.757570][T19525]  ? fpregs_assert_state_consistent+0x7d/0x90
[  241.763660][T19525]  ? exit_to_user_mode_prepare+0x65/0x190
[  241.769380][T19525]  __x64_sys_clone3+0x2d/0x40
[  241.774055][T19525]  do_syscall_64+0x3d/0x90
[  241.778465][T19525]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  241.784353][T19525] RIP: 0033:0x4665f9
[  241.788238][T19525] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
19:53:46 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r0, 0xc020660b, 0x0)
read(r0, &(0x7f0000000200)=""/75, 0x4b)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = clone3(&(0x7f0000007500)={0x30000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pidfd_open(r1, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r2, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r2, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  241.807837][T19525] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  241.816297][T19525] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  241.824261][T19525] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  241.832430][T19525] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  241.840507][T19525] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  241.848473][T19525] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:53:46 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x227a, 0x0)

19:53:46 executing program 4 (fault-call:3 fault-nth:7):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  241.941596][T19538] FAULT_INJECTION: forcing a failure.
[  241.941596][T19538] name failslab, interval 1, probability 0, space 0, times 0
[  241.954227][T19538] CPU: 0 PID: 19538 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  241.962639][T19538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  241.972749][T19538] Call Trace:
[  241.976021][T19538]  dump_stack_lvl+0xb7/0x103
[  241.980609][T19538]  dump_stack+0x11/0x1a
[  241.984760][T19538]  should_fail+0x23c/0x250
[  241.989176][T19538]  ? prepare_creds+0x2a/0x430
[  241.993894][T19538]  __should_failslab+0x81/0x90
[  241.998734][T19538]  should_failslab+0x5/0x20
[  242.003229][T19538]  kmem_cache_alloc+0x46/0x2e0
[  242.007985][T19538]  prepare_creds+0x2a/0x430
[  242.012519][T19538]  copy_creds+0xdd/0x530
[  242.018495][T19538]  ? dup_task_struct+0x650/0x680
[  242.023429][T19538]  copy_process+0x669/0x2f90
[  242.028011][T19538]  ? __alloc_pages+0x194/0x320
[  242.032771][T19538]  ? __mod_memcg_lruvec_state+0xa7/0x190
[  242.038404][T19538]  ? _copy_from_user+0x94/0xd0
[  242.043167][T19538]  ? copy_clone_args_from_user+0x3ab/0x420
[  242.048969][T19538]  kernel_clone+0x14b/0x680
[  242.053468][T19538]  __se_sys_clone3+0x194/0x1d0
[  242.058251][T19538]  ? __cond_resched+0x11/0x40
[  242.062935][T19538]  ? fput+0x2d/0x130
[  242.066908][T19538]  ? ksys_write+0x157/0x180
[  242.071411][T19538]  ? fpregs_assert_state_consistent+0x7d/0x90
[  242.077481][T19538]  ? exit_to_user_mode_prepare+0x65/0x190
[  242.083207][T19538]  __x64_sys_clone3+0x2d/0x40
[  242.087913][T19538]  do_syscall_64+0x3d/0x90
[  242.092353][T19538]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  242.098241][T19538] RIP: 0033:0x4665f9
[  242.102124][T19538] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  242.121744][T19538] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  242.130153][T19538] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  242.138114][T19538] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  242.146083][T19538] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  242.154077][T19538] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  242.162108][T19538] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:53:46 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x6, 0x0)
ioctl$BLKTRACESETUP(r0, 0x227a, 0x0)
r1 = dup2(r0, r0)
r2 = syz_open_procfs$userns(0xffffffffffffffff, &(0x7f0000000040))
ioctl$LOOP_CHANGE_FD(r1, 0x4c06, r2)

19:53:47 executing program 4 (fault-call:3 fault-nth:8):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  242.414679][T19553] FAULT_INJECTION: forcing a failure.
[  242.414679][T19553] name failslab, interval 1, probability 0, space 0, times 0
[  242.427406][T19553] CPU: 1 PID: 19553 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  242.435810][T19553] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  242.445887][T19553] Call Trace:
[  242.449158][T19553]  dump_stack_lvl+0xb7/0x103
[  242.453753][T19553]  dump_stack+0x11/0x1a
[  242.457962][T19553]  should_fail+0x23c/0x250
[  242.462395][T19553]  ? create_user_ns+0x3a8/0x9e0
[  242.467246][T19553]  __should_failslab+0x81/0x90
[  242.472063][T19553]  should_failslab+0x5/0x20
[  242.476565][T19553]  kmem_cache_alloc+0x46/0x2e0
[  242.481363][T19553]  ? current_chrooted+0x159/0x190
[  242.486463][T19553]  create_user_ns+0x3a8/0x9e0
[  242.491137][T19553]  copy_creds+0x17e/0x530
[  242.495463][T19553]  ? dup_task_struct+0x650/0x680
[  242.500398][T19553]  copy_process+0x669/0x2f90
[  242.504984][T19553]  ? __alloc_pages+0x194/0x320
19:53:47 executing program 5:
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000001c40)='./file0\x00', 0x1100)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r0, 0xc0a85352, &(0x7f0000001c80)={{0x3, 0x86}, 'port0\x00', 0x40, 0x22, 0x2, 0x7, 0xc5, 0x0, 0x951, 0x0, 0x5, 0x2})
rt_sigprocmask(0x2, &(0x7f0000000580)={[0xb6d0]}, &(0x7f00000005c0), 0x8)
r1 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000600)='./file0\x00', 0x28100, 0x197)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000000480)={0x0, 0xfffffffffffffffe, 0xad, 0x7, @scatter={0x6, 0x0, &(0x7f0000000780)=[{&(0x7f0000000080)=""/222, 0xde}, {&(0x7f0000000180)=""/232, 0xfffffe09}, {&(0x7f0000000640)=""/172, 0xac}, {&(0x7f0000000500)=""/32, 0x20}, {&(0x7f0000000700)=""/117, 0x75}, {&(0x7f0000000540)=""/21, 0x15}]}, &(0x7f0000000280)="80f1f1fbd8815aa11561d3e2b4ac2283be9be69a746f8026d88afd3d2aaad502e84b96de602690bd253624d22fcf38503f29259a1af411d879f48e2c996a9815a48373669ac881f1f1bf2fef800e689e754008092d894bb33b2ab4f6e5d49a444e866a789c9a94dcf3a13ded8822bd4d1fa546e47436920da3db4f5408051b486045ca642ea4f0f1fb78beda3e75d3a239023a9a548c7090db12159040d11bd2891b85679527f256c6c62f672f", &(0x7f0000000340)=""/223, 0xdcd, 0x26, 0x0, &(0x7f0000000440)})
r3 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r3, 0x10e, 0xc, &(0x7f0000000000)={0xfffffffb}, 0x10)
write(r3, &(0x7f0000000140)="240000001a005f0014f9f407000909000a00800000000000000000000800080000000000", 0x24)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r4, 0xc020660b, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r5, 0xc020660b, 0x0)
tee(r4, r5, 0x1, 0x2)
recvmsg$unix(r3, &(0x7f0000001b00)={&(0x7f0000000800)=@abs, 0x6e, &(0x7f0000001a00)=[{&(0x7f0000000040)=""/15, 0xf}, {&(0x7f0000000880)=""/248, 0xf8}, {&(0x7f0000000980)=""/4096, 0x1000}, {&(0x7f0000001980)=""/78, 0x4e}], 0x4, &(0x7f0000001d40)=ANY=[@ANYBLOB="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", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="38000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001006b678a9000000010000000100000020000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32=<r6=>0xffffffffffffffff, @ANYRES32], 0xa8}, 0x20000)
write$binfmt_misc(r6, &(0x7f0000002080)=ANY=[@ANYBLOB="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"], 0xe3)
ioctl$BLKTRACESETUP(r1, 0x227a, 0x0)

[  242.509744][T19553]  ? __mod_memcg_lruvec_state+0xa7/0x190
[  242.515452][T19553]  ? _copy_from_user+0x94/0xd0
[  242.520268][T19553]  ? copy_clone_args_from_user+0x3ab/0x420
[  242.526075][T19553]  kernel_clone+0x14b/0x680
[  242.530571][T19553]  __se_sys_clone3+0x194/0x1d0
[  242.535329][T19553]  ? __cond_resched+0x11/0x40
[  242.540029][T19553]  ? fput+0x2d/0x130
[  242.543922][T19553]  ? ksys_write+0x157/0x180
[  242.548479][T19553]  ? fpregs_assert_state_consistent+0x7d/0x90
[  242.554542][T19553]  ? exit_to_user_mode_prepare+0x65/0x190
[  242.560316][T19553]  __x64_sys_clone3+0x2d/0x40
[  242.564994][T19553]  do_syscall_64+0x3d/0x90
[  242.569417][T19553]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  242.575307][T19553] RIP: 0033:0x4665f9
[  242.579193][T19553] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  242.598804][T19553] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  242.607228][T19553] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
19:53:47 executing program 5:
chdir(&(0x7f0000000000)='./file0\x00')
unlink(&(0x7f0000000040)='./file0\x00')
r0 = syz_open_dev$sg(&(0x7f0000002040), 0xfffffffffffffff8, 0x0)
ioctl$BLKTRACESETUP(r0, 0x227a, 0x0)

[  242.615190][T19553] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  242.623150][T19553] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  242.631113][T19553] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  242.639076][T19553] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:53:47 executing program 4 (fault-call:3 fault-nth:9):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  242.724128][T19565] FAULT_INJECTION: forcing a failure.
[  242.724128][T19565] name failslab, interval 1, probability 0, space 0, times 0
[  242.736796][T19565] CPU: 0 PID: 19565 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  242.745199][T19565] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  242.755244][T19565] Call Trace:
[  242.758515][T19565]  dump_stack_lvl+0xb7/0x103
[  242.763104][T19565]  dump_stack+0x11/0x1a
[  242.767260][T19565]  should_fail+0x23c/0x250
[  242.771670][T19565]  ? dup_fd+0x48/0x6e0
[  242.775731][T19565]  __should_failslab+0x81/0x90
[  242.780490][T19565]  should_failslab+0x5/0x20
[  242.784993][T19565]  kmem_cache_alloc+0x46/0x2e0
[  242.789760][T19565]  ? avc_has_perm+0x59/0x150
[  242.794345][T19565]  dup_fd+0x48/0x6e0
[  242.798309][T19565]  ? selinux_task_alloc+0x6f/0x80
[  242.803411][T19565]  copy_process+0xd77/0x2f90
[  242.808002][T19565]  ? __alloc_pages+0x194/0x320
[  242.812816][T19565]  ? _copy_from_user+0x94/0xd0
[  242.817610][T19565]  kernel_clone+0x14b/0x680
[  242.822111][T19565]  __se_sys_clone3+0x194/0x1d0
[  242.826958][T19565]  ? __cond_resched+0x11/0x40
[  242.831641][T19565]  ? fput+0x2d/0x130
[  242.835543][T19565]  ? ksys_write+0x157/0x180
[  242.840098][T19565]  ? fpregs_assert_state_consistent+0x7d/0x90
[  242.846157][T19565]  ? exit_to_user_mode_prepare+0x65/0x190
[  242.851923][T19565]  __x64_sys_clone3+0x2d/0x40
[  242.856596][T19565]  do_syscall_64+0x3d/0x90
[  242.861009][T19565]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  242.866904][T19565] RIP: 0033:0x4665f9
[  242.870788][T19565] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  242.890420][T19565] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  242.898830][T19565] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  242.906794][T19565] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  242.914805][T19565] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
19:53:47 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r0, 0xc020660b, 0x0)
read(r0, &(0x7f0000000200)=""/75, 0x4b)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = clone3(&(0x7f0000007500)={0x30000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pidfd_open(r1, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r2, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r2, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

19:53:47 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x227a, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x8, 0x0, 0x4}]})
ioctl$FICLONERANGE(r1, 0x4020940d, 0xfffffffffffffffd)

[  242.922770][T19565] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  242.930733][T19565] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:53:47 executing program 4 (fault-call:3 fault-nth:10):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  243.034695][T19579] FAULT_INJECTION: forcing a failure.
[  243.034695][T19579] name failslab, interval 1, probability 0, space 0, times 0
[  243.047308][T19579] CPU: 1 PID: 19579 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  243.055715][T19579] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  243.065795][T19579] Call Trace:
[  243.069066][T19579]  dump_stack_lvl+0xb7/0x103
[  243.073688][T19579]  dump_stack+0x11/0x1a
[  243.077837][T19579]  should_fail+0x23c/0x250
[  243.082252][T19579]  __should_failslab+0x81/0x90
[  243.087016][T19579]  ? alloc_fdtable+0x7d/0x1b0
[  243.091687][T19579]  should_failslab+0x5/0x20
[  243.096184][T19579]  kmem_cache_alloc_trace+0x49/0x310
[  243.101468][T19579]  alloc_fdtable+0x7d/0x1b0
[  243.105971][T19579]  dup_fd+0x548/0x6e0
[  243.109946][T19579]  copy_process+0xd77/0x2f90
[  243.114530][T19579]  ? __alloc_pages+0x194/0x320
[  243.119290][T19579]  ? _copy_from_user+0x94/0xd0
[  243.124120][T19579]  kernel_clone+0x14b/0x680
[  243.128617][T19579]  __se_sys_clone3+0x194/0x1d0
[  243.133379][T19579]  ? __cond_resched+0x11/0x40
[  243.138069][T19579]  ? fput+0x2d/0x130
[  243.141993][T19579]  ? ksys_write+0x157/0x180
[  243.146492][T19579]  ? fpregs_assert_state_consistent+0x7d/0x90
[  243.152555][T19579]  ? exit_to_user_mode_prepare+0x65/0x190
[  243.158274][T19579]  __x64_sys_clone3+0x2d/0x40
[  243.162949][T19579]  do_syscall_64+0x3d/0x90
[  243.167358][T19579]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  243.173262][T19579] RIP: 0033:0x4665f9
[  243.177145][T19579] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  243.196822][T19579] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  243.205225][T19579] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  243.213192][T19579] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  243.221156][T19579] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  243.229118][T19579] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  243.237192][T19579] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:53:48 executing program 4 (fault-call:3 fault-nth:11):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  243.344037][T19584] FAULT_INJECTION: forcing a failure.
[  243.344037][T19584] name failslab, interval 1, probability 0, space 0, times 0
[  243.356680][T19584] CPU: 0 PID: 19584 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  243.365121][T19584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  243.375175][T19584] Call Trace:
[  243.378463][T19584]  dump_stack_lvl+0xb7/0x103
[  243.383075][T19584]  dump_stack+0x11/0x1a
[  243.387234][T19584]  should_fail+0x23c/0x250
[  243.391649][T19584]  ? kzalloc+0x16/0x20
[  243.395813][T19584]  __should_failslab+0x81/0x90
[  243.400570][T19584]  should_failslab+0x5/0x20
[  243.405066][T19584]  __kmalloc+0x66/0x340
[  243.409212][T19584]  ? kzalloc+0x16/0x20
[  243.413283][T19584]  ? do_proc_douintvec_minmax_conv+0x170/0x170
[  243.419509][T19584]  kzalloc+0x16/0x20
[  243.423402][T19584]  __register_sysctl_table+0x797/0xda0
[  243.428856][T19584]  ? setup_userns_sysctls+0x42/0x230
[  243.434138][T19584]  setup_userns_sysctls+0x1c8/0x230
[  243.439333][T19584]  create_user_ns+0x88b/0x9e0
[  243.444006][T19584]  copy_creds+0x17e/0x530
[  243.448326][T19584]  ? dup_task_struct+0x650/0x680
[  243.453259][T19584]  copy_process+0x669/0x2f90
[  243.457906][T19584]  ? __alloc_pages+0x194/0x320
[  243.462670][T19584]  ? __mod_memcg_lruvec_state+0xa7/0x190
[  243.468299][T19584]  ? _copy_from_user+0x94/0xd0
[  243.473060][T19584]  ? copy_clone_args_from_user+0x3ab/0x420
[  243.478864][T19584]  kernel_clone+0x14b/0x680
[  243.483382][T19584]  __se_sys_clone3+0x194/0x1d0
[  243.488172][T19584]  ? __cond_resched+0x11/0x40
[  243.492855][T19584]  ? fput+0x2d/0x130
[  243.496807][T19584]  ? ksys_write+0x157/0x180
[  243.501307][T19584]  ? fpregs_assert_state_consistent+0x7d/0x90
[  243.507368][T19584]  ? exit_to_user_mode_prepare+0x65/0x190
[  243.513155][T19584]  __x64_sys_clone3+0x2d/0x40
[  243.517830][T19584]  do_syscall_64+0x3d/0x90
[  243.522243][T19584]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  243.528137][T19584] RIP: 0033:0x4665f9
[  243.532019][T19584] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  243.551622][T19584] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  243.560030][T19584] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  243.567988][T19584] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  243.575960][T19584] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  243.583927][T19584] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  243.591910][T19584] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
[  243.599941][T19584] sysctl could not get directory: //user -12
[  243.606015][T19584] CPU: 0 PID: 19584 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  243.614417][T19584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  243.624466][T19584] Call Trace:
[  243.627737][T19584]  dump_stack_lvl+0xb7/0x103
[  243.632329][T19584]  dump_stack+0x11/0x1a
[  243.636500][T19584]  __register_sysctl_table+0xce7/0xda0
[  243.642010][T19584]  setup_userns_sysctls+0x1c8/0x230
[  243.647308][T19584]  create_user_ns+0x88b/0x9e0
[  243.652062][T19584]  copy_creds+0x17e/0x530
[  243.656390][T19584]  ? dup_task_struct+0x650/0x680
[  243.661327][T19584]  copy_process+0x669/0x2f90
[  243.665919][T19584]  ? __alloc_pages+0x194/0x320
[  243.670681][T19584]  ? __mod_memcg_lruvec_state+0xa7/0x190
[  243.676311][T19584]  ? _copy_from_user+0x94/0xd0
[  243.681078][T19584]  ? copy_clone_args_from_user+0x3ab/0x420
[  243.686884][T19584]  kernel_clone+0x14b/0x680
[  243.691463][T19584]  __se_sys_clone3+0x194/0x1d0
[  243.696225][T19584]  ? __cond_resched+0x11/0x40
[  243.700938][T19584]  ? fput+0x2d/0x130
[  243.704834][T19584]  ? ksys_write+0x157/0x180
[  243.709331][T19584]  ? fpregs_assert_state_consistent+0x7d/0x90
[  243.715397][T19584]  ? exit_to_user_mode_prepare+0x65/0x190
[  243.721303][T19584]  __x64_sys_clone3+0x2d/0x40
[  243.726000][T19584]  do_syscall_64+0x3d/0x90
[  243.730412][T19584]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  243.736305][T19584] RIP: 0033:0x4665f9
[  243.740195][T19584] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  243.759799][T19584] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  243.768207][T19584] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  243.776225][T19584] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  243.784405][T19584] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  243.792463][T19584] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  243.800430][T19584] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:53:48 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r0, 0xc020660b, 0x0)
read(r0, &(0x7f0000000200)=""/75, 0x4b)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = clone3(&(0x7f0000007500)={0x30000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pidfd_open(r1, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r2, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r2, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

19:53:48 executing program 4 (fault-call:3 fault-nth:12):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  243.897483][T19590] FAULT_INJECTION: forcing a failure.
[  243.897483][T19590] name failslab, interval 1, probability 0, space 0, times 0
[  243.910108][T19590] CPU: 1 PID: 19590 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  243.918524][T19590] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  243.928746][T19590] Call Trace:
[  243.932020][T19590]  dump_stack_lvl+0xb7/0x103
[  243.936613][T19590]  dump_stack+0x11/0x1a
[  243.940768][T19590]  should_fail+0x23c/0x250
[  243.945286][T19590]  ? kzalloc+0x16/0x20
[  243.949419][T19590]  __should_failslab+0x81/0x90
[  243.954193][T19590]  should_failslab+0x5/0x20
[  243.958782][T19590]  __kmalloc+0x66/0x340
[  243.962977][T19590]  ? should_fail+0xd6/0x250
[  243.967492][T19590]  kzalloc+0x16/0x20
[  243.971456][T19590]  __register_sysctl_table+0x8c/0xda0
[  243.976907][T19590]  ? __kmalloc_track_caller+0x235/0x340
[  243.982489][T19590]  ? setup_userns_sysctls+0x42/0x230
[  243.987832][T19590]  setup_userns_sysctls+0x1c8/0x230
[  243.993069][T19590]  create_user_ns+0x88b/0x9e0
[  243.997801][T19590]  copy_creds+0x17e/0x530
[  244.002196][T19590]  ? dup_task_struct+0x650/0x680
[  244.007223][T19590]  copy_process+0x669/0x2f90
[  244.012083][T19590]  ? __alloc_pages+0x194/0x320
[  244.016889][T19590]  ? __mod_memcg_lruvec_state+0xa7/0x190
[  244.022549][T19590]  ? _copy_from_user+0x94/0xd0
[  244.027315][T19590]  ? copy_clone_args_from_user+0x3ab/0x420
[  244.033125][T19590]  kernel_clone+0x14b/0x680
[  244.037686][T19590]  __se_sys_clone3+0x194/0x1d0
[  244.042485][T19590]  ? __cond_resched+0x11/0x40
[  244.047191][T19590]  ? fput+0x2d/0x130
[  244.051097][T19590]  ? ksys_write+0x157/0x180
[  244.055611][T19590]  ? fpregs_assert_state_consistent+0x7d/0x90
[  244.061677][T19590]  ? exit_to_user_mode_prepare+0x65/0x190
[  244.067401][T19590]  __x64_sys_clone3+0x2d/0x40
[  244.072075][T19590]  do_syscall_64+0x3d/0x90
[  244.076546][T19590]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  244.082501][T19590] RIP: 0033:0x4665f9
[  244.086466][T19590] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  244.106072][T19590] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  244.114492][T19590] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  244.122508][T19590] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  244.130473][T19590] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  244.138438][T19590] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
19:53:48 executing program 4 (fault-call:3 fault-nth:13):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  244.146427][T19590] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
[  244.216142][T19596] FAULT_INJECTION: forcing a failure.
[  244.216142][T19596] name failslab, interval 1, probability 0, space 0, times 0
[  244.228958][T19596] CPU: 0 PID: 19596 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  244.237372][T19596] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  244.247424][T19596] Call Trace:
[  244.250695][T19596]  dump_stack_lvl+0xb7/0x103
[  244.255285][T19596]  dump_stack+0x11/0x1a
[  244.259482][T19596]  should_fail+0x23c/0x250
[  244.263894][T19596]  __should_failslab+0x81/0x90
[  244.268654][T19596]  should_failslab+0x5/0x20
[  244.273159][T19596]  kmem_cache_alloc_node_trace+0x58/0x2e0
[  244.278993][T19596]  ? __kmalloc_node+0x30/0x40
[  244.283666][T19596]  __kmalloc_node+0x30/0x40
[  244.288167][T19596]  kvmalloc_node+0x81/0xf0
[  244.292583][T19596]  alloc_fdtable+0x112/0x1b0
[  244.297171][T19596]  dup_fd+0x548/0x6e0
[  244.301222][T19596]  copy_process+0xd77/0x2f90
[  244.305811][T19596]  ? __alloc_pages+0x194/0x320
[  244.310587][T19596]  ? _copy_from_user+0x94/0xd0
[  244.315354][T19596]  kernel_clone+0x14b/0x680
[  244.319864][T19596]  __se_sys_clone3+0x194/0x1d0
[  244.324625][T19596]  ? __cond_resched+0x11/0x40
[  244.329303][T19596]  ? fput+0x2d/0x130
[  244.333253][T19596]  ? ksys_write+0x157/0x180
[  244.337833][T19596]  ? fpregs_assert_state_consistent+0x7d/0x90
[  244.343932][T19596]  ? exit_to_user_mode_prepare+0x65/0x190
[  244.349659][T19596]  __x64_sys_clone3+0x2d/0x40
[  244.354327][T19596]  do_syscall_64+0x3d/0x90
[  244.358739][T19596]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  244.364646][T19596] RIP: 0033:0x4665f9
[  244.368534][T19596] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  244.388160][T19596] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  244.396565][T19596] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  244.404533][T19596] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  244.412501][T19596] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  244.420553][T19596] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  244.428519][T19596] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:53:49 executing program 4 (fault-call:3 fault-nth:14):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  244.549150][T19600] FAULT_INJECTION: forcing a failure.
[  244.549150][T19600] name failslab, interval 1, probability 0, space 0, times 0
[  244.561844][T19600] CPU: 1 PID: 19600 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  244.570255][T19600] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  244.580423][T19600] Call Trace:
[  244.583693][T19600]  dump_stack_lvl+0xb7/0x103
[  244.588292][T19600]  dump_stack+0x11/0x1a
[  244.592479][T19600]  should_fail+0x23c/0x250
[  244.596917][T19600]  ? dup_fd+0x48/0x6e0
[  244.600978][T19600]  __should_failslab+0x81/0x90
[  244.605744][T19600]  should_failslab+0x5/0x20
[  244.610290][T19600]  kmem_cache_alloc+0x46/0x2e0
[  244.615060][T19600]  ? avc_has_perm+0x59/0x150
[  244.619654][T19600]  dup_fd+0x48/0x6e0
[  244.623545][T19600]  ? selinux_task_alloc+0x6f/0x80
[  244.628585][T19600]  copy_process+0xd77/0x2f90
[  244.633193][T19600]  ? __alloc_pages+0x194/0x320
[  244.637960][T19600]  ? _copy_from_user+0x94/0xd0
[  244.642817][T19600]  kernel_clone+0x14b/0x680
[  244.647325][T19600]  __se_sys_clone3+0x194/0x1d0
[  244.652088][T19600]  ? __cond_resched+0x11/0x40
[  244.656769][T19600]  ? fput+0x2d/0x130
[  244.660679][T19600]  ? ksys_write+0x157/0x180
[  244.665205][T19600]  ? fpregs_assert_state_consistent+0x7d/0x90
[  244.671270][T19600]  ? exit_to_user_mode_prepare+0x65/0x190
[  244.676996][T19600]  __x64_sys_clone3+0x2d/0x40
[  244.681668][T19600]  do_syscall_64+0x3d/0x90
[  244.686147][T19600]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  244.692082][T19600] RIP: 0033:0x4665f9
[  244.695971][T19600] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  244.715662][T19600] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  244.724130][T19600] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  244.732108][T19600] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  244.740246][T19600] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  244.748261][T19600] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  244.756226][T19600] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:53:49 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r0, 0xc020660b, 0x0)
read(r0, &(0x7f0000000200)=""/75, 0x4b)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = clone3(&(0x7f0000007500)={0x30000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pidfd_open(r1, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r3, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r3, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

19:53:49 executing program 4 (fault-call:3 fault-nth:15):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  244.877293][T19606] FAULT_INJECTION: forcing a failure.
[  244.877293][T19606] name failslab, interval 1, probability 0, space 0, times 0
[  244.890021][T19606] CPU: 0 PID: 19606 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  244.898439][T19606] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  244.908486][T19606] Call Trace:
[  244.911788][T19606]  dump_stack_lvl+0xb7/0x103
[  244.916424][T19606]  dump_stack+0x11/0x1a
[  244.920577][T19606]  should_fail+0x23c/0x250
[  244.925046][T19606]  __should_failslab+0x81/0x90
[  244.929837][T19606]  should_failslab+0x5/0x20
[  244.930999][T19607] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  244.934360][T19606]  kmem_cache_alloc_node_trace+0x58/0x2e0
[  244.934383][T19606]  ? should_fail+0xd6/0x250
[  244.952759][T19606]  ? __kmalloc_node+0x30/0x40
[  244.957474][T19606]  __kmalloc_node+0x30/0x40
[  244.961971][T19606]  kvmalloc_node+0x81/0xf0
[  244.966390][T19606]  alloc_fdtable+0xae/0x1b0
[  244.970891][T19606]  dup_fd+0x548/0x6e0
[  244.974870][T19606]  copy_process+0xd77/0x2f90
[  244.979454][T19606]  ? __alloc_pages+0x194/0x320
[  244.984239][T19606]  ? _copy_from_user+0x94/0xd0
[  244.989035][T19606]  kernel_clone+0x14b/0x680
[  244.993534][T19606]  __se_sys_clone3+0x194/0x1d0
[  244.998300][T19606]  ? __cond_resched+0x11/0x40
[  245.003071][T19606]  ? fput+0x2d/0x130
[  245.007053][T19606]  ? ksys_write+0x157/0x180
[  245.011605][T19606]  ? fpregs_assert_state_consistent+0x7d/0x90
[  245.017720][T19606]  ? exit_to_user_mode_prepare+0x65/0x190
[  245.023458][T19606]  __x64_sys_clone3+0x2d/0x40
[  245.028172][T19606]  do_syscall_64+0x3d/0x90
[  245.032584][T19606]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  245.038553][T19606] RIP: 0033:0x4665f9
[  245.042495][T19606] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  245.062095][T19606] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  245.070504][T19606] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  245.078466][T19606] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  245.086433][T19606] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  245.094492][T19606] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  245.102459][T19606] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:53:49 executing program 4 (fault-call:3 fault-nth:16):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  245.193996][T19612] FAULT_INJECTION: forcing a failure.
[  245.193996][T19612] name failslab, interval 1, probability 0, space 0, times 0
[  245.206772][T19612] CPU: 1 PID: 19612 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  245.215185][T19612] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  245.225360][T19612] Call Trace:
[  245.228639][T19612]  dump_stack_lvl+0xb7/0x103
[  245.233396][T19612]  dump_stack+0x11/0x1a
[  245.237585][T19612]  should_fail+0x23c/0x250
[  245.242055][T19612]  __should_failslab+0x81/0x90
[  245.246828][T19612]  should_failslab+0x5/0x20
[  245.251336][T19612]  kmem_cache_alloc_node_trace+0x58/0x2e0
[  245.257119][T19612]  ? should_fail+0xd6/0x250
[  245.261619][T19612]  ? __kmalloc_node+0x30/0x40
[  245.266449][T19612]  __kmalloc_node+0x30/0x40
[  245.270948][T19612]  kvmalloc_node+0x81/0xf0
[  245.275399][T19612]  alloc_fdtable+0xae/0x1b0
[  245.279901][T19612]  dup_fd+0x548/0x6e0
[  245.283917][T19612]  copy_process+0xd77/0x2f90
[  245.288573][T19612]  ? __alloc_pages+0x194/0x320
[  245.293339][T19612]  ? _copy_from_user+0x94/0xd0
[  245.298106][T19612]  kernel_clone+0x14b/0x680
[  245.302610][T19612]  __se_sys_clone3+0x194/0x1d0
[  245.307372][T19612]  ? __cond_resched+0x11/0x40
[  245.312207][T19612]  ? fput+0x2d/0x130
[  245.316107][T19612]  ? ksys_write+0x157/0x180
[  245.320693][T19612]  ? fpregs_assert_state_consistent+0x7d/0x90
[  245.326831][T19612]  ? exit_to_user_mode_prepare+0x65/0x190
[  245.333027][T19612]  __x64_sys_clone3+0x2d/0x40
[  245.337709][T19612]  do_syscall_64+0x3d/0x90
[  245.342151][T19612]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  245.348054][T19612] RIP: 0033:0x4665f9
[  245.351949][T19612] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  245.371558][T19612] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  245.379969][T19612] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  245.387939][T19612] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  245.395903][T19612] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  245.403941][T19612] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  245.411907][T19612] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:53:50 executing program 4 (fault-call:3 fault-nth:17):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  245.513664][T19616] FAULT_INJECTION: forcing a failure.
[  245.513664][T19616] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  245.526918][T19616] CPU: 0 PID: 19616 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  245.535484][T19616] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  245.545538][T19616] Call Trace:
[  245.548815][T19616]  dump_stack_lvl+0xb7/0x103
[  245.553408][T19616]  dump_stack+0x11/0x1a
[  245.557600][T19616]  should_fail+0x23c/0x250
[  245.562125][T19616]  __alloc_pages+0x102/0x320
[  245.566720][T19616]  alloc_pages+0x2e8/0x340
[  245.571196][T19616]  __get_free_pages+0x8/0x30
[  245.575781][T19616]  pgd_alloc+0x1d/0x140
[  245.580111][T19616]  mm_init+0x2cf/0x460
[  245.584273][T19616]  dup_mm+0x68/0x210
[  245.588166][T19616]  copy_process+0x144f/0x2f90
[  245.592873][T19616]  ? __alloc_pages+0x194/0x320
[  245.597635][T19616]  ? _copy_from_user+0x94/0xd0
[  245.602399][T19616]  kernel_clone+0x14b/0x680
[  245.606901][T19616]  __se_sys_clone3+0x194/0x1d0
[  245.611668][T19616]  ? __cond_resched+0x11/0x40
[  245.616372][T19616]  ? fput+0x2d/0x130
[  245.620264][T19616]  ? ksys_write+0x157/0x180
[  245.624764][T19616]  ? fpregs_assert_state_consistent+0x7d/0x90
[  245.630932][T19616]  ? exit_to_user_mode_prepare+0x65/0x190
[  245.636716][T19616]  __x64_sys_clone3+0x2d/0x40
[  245.641393][T19616]  do_syscall_64+0x3d/0x90
[  245.645817][T19616]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  245.651719][T19616] RIP: 0033:0x4665f9
[  245.655655][T19616] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  245.675439][T19616] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  245.683846][T19616] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  245.691813][T19616] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  245.699817][T19616] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  245.707815][T19616] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  245.715785][T19616] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:53:50 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r0, 0xc020660b, 0x0)
read(r0, &(0x7f0000000200)=""/75, 0x4b)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = clone3(&(0x7f0000007500)={0x30000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pidfd_open(r1, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r3, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r3, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

19:53:50 executing program 4 (fault-call:3 fault-nth:18):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  245.908685][T19622] FAULT_INJECTION: forcing a failure.
[  245.908685][T19622] name failslab, interval 1, probability 0, space 0, times 0
[  245.921334][T19622] CPU: 1 PID: 19622 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  245.929745][T19622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  245.939794][T19622] Call Trace:
[  245.943069][T19622]  dump_stack_lvl+0xb7/0x103
[  245.947660][T19622]  dump_stack+0x11/0x1a
[  245.951820][T19622]  should_fail+0x23c/0x250
[  245.956238][T19622]  __should_failslab+0x81/0x90
[  245.960996][T19622]  should_failslab+0x5/0x20
[  245.965495][T19622]  kmem_cache_alloc_node_trace+0x58/0x2e0
[  245.971239][T19622]  ? __kmalloc_node+0x30/0x40
[  245.975912][T19622]  __kmalloc_node+0x30/0x40
[  245.980411][T19622]  kvmalloc_node+0x81/0xf0
[  245.984941][T19622]  alloc_fdtable+0x112/0x1b0
[  245.989528][T19622]  dup_fd+0x548/0x6e0
[  245.993505][T19622]  copy_process+0xd77/0x2f90
[  245.998104][T19622]  ? __alloc_pages+0x194/0x320
[  246.002950][T19622]  ? _copy_from_user+0x94/0xd0
[  246.007713][T19622]  kernel_clone+0x14b/0x680
[  246.012213][T19622]  __se_sys_clone3+0x194/0x1d0
[  246.016979][T19622]  ? __cond_resched+0x11/0x40
[  246.021700][T19622]  ? fput+0x2d/0x130
[  246.025645][T19622]  ? ksys_write+0x157/0x180
[  246.030182][T19622]  ? fpregs_assert_state_consistent+0x7d/0x90
[  246.036345][T19622]  ? exit_to_user_mode_prepare+0x65/0x190
[  246.042095][T19622]  __x64_sys_clone3+0x2d/0x40
[  246.046837][T19622]  do_syscall_64+0x3d/0x90
[  246.051252][T19622]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  246.057276][T19622] RIP: 0033:0x4665f9
[  246.061232][T19622] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  246.080982][T19622] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  246.089482][T19622] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  246.097454][T19622] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  246.105446][T19622] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  246.113510][T19622] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  246.121476][T19622] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
[  246.140422][T19623] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
19:53:50 executing program 4 (fault-call:3 fault-nth:19):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  246.230618][T19628] FAULT_INJECTION: forcing a failure.
[  246.230618][T19628] name failslab, interval 1, probability 0, space 0, times 0
[  246.243602][T19628] CPU: 0 PID: 19628 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  246.252272][T19628] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  246.262357][T19628] Call Trace:
[  246.265683][T19628]  dump_stack_lvl+0xb7/0x103
[  246.270366][T19628]  dump_stack+0x11/0x1a
[  246.274521][T19628]  should_fail+0x23c/0x250
[  246.278965][T19628]  ? dup_mmap+0x38e/0x9c0
[  246.283347][T19628]  __should_failslab+0x81/0x90
[  246.288109][T19628]  should_failslab+0x5/0x20
[  246.292616][T19628]  kmem_cache_alloc+0x46/0x2e0
[  246.297378][T19628]  ? __vma_link_rb+0x3c2/0x3e0
[  246.302222][T19628]  ? up_write+0x25/0xc0
[  246.306487][T19628]  dup_mmap+0x38e/0x9c0
[  246.310692][T19628]  dup_mm+0x7c/0x210
[  246.314659][T19628]  copy_process+0x144f/0x2f90
[  246.319333][T19628]  ? __alloc_pages+0x194/0x320
[  246.324230][T19628]  ? _copy_from_user+0x94/0xd0
[  246.329034][T19628]  kernel_clone+0x14b/0x680
[  246.333618][T19628]  __se_sys_clone3+0x194/0x1d0
[  246.338382][T19628]  ? __cond_resched+0x11/0x40
[  246.343109][T19628]  ? fput+0x2d/0x130
[  246.347029][T19628]  ? ksys_write+0x157/0x180
[  246.351555][T19628]  ? fpregs_assert_state_consistent+0x7d/0x90
[  246.357673][T19628]  ? exit_to_user_mode_prepare+0x65/0x190
[  246.363408][T19628]  __x64_sys_clone3+0x2d/0x40
[  246.368094][T19628]  do_syscall_64+0x3d/0x90
[  246.372695][T19628]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  246.378760][T19628] RIP: 0033:0x4665f9
[  246.382650][T19628] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  246.402406][T19628] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  246.410813][T19628] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  246.418885][T19628] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  246.426877][T19628] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  246.434846][T19628] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  246.442816][T19628] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:53:51 executing program 4 (fault-call:3 fault-nth:20):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  246.574856][T19632] FAULT_INJECTION: forcing a failure.
[  246.574856][T19632] name failslab, interval 1, probability 0, space 0, times 0
[  246.587491][T19632] CPU: 1 PID: 19632 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  246.595993][T19632] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  246.606047][T19632] Call Trace:
[  246.609350][T19632]  dump_stack_lvl+0xb7/0x103
[  246.614104][T19632]  dump_stack+0x11/0x1a
[  246.618280][T19632]  should_fail+0x23c/0x250
[  246.622699][T19632]  ? dup_mmap+0x38e/0x9c0
[  246.627025][T19632]  __should_failslab+0x81/0x90
[  246.631784][T19632]  should_failslab+0x5/0x20
[  246.636286][T19632]  kmem_cache_alloc+0x46/0x2e0
[  246.641043][T19632]  ? __vma_link_rb+0x3c2/0x3e0
[  246.645809][T19632]  ? up_write+0x25/0xc0
[  246.649958][T19632]  dup_mmap+0x38e/0x9c0
[  246.654111][T19632]  dup_mm+0x7c/0x210
[  246.658001][T19632]  copy_process+0x144f/0x2f90
[  246.662750][T19632]  ? __alloc_pages+0x194/0x320
[  246.667510][T19632]  ? _copy_from_user+0x94/0xd0
[  246.672276][T19632]  kernel_clone+0x14b/0x680
[  246.676872][T19632]  __se_sys_clone3+0x194/0x1d0
[  246.681639][T19632]  ? __cond_resched+0x11/0x40
[  246.686315][T19632]  ? fput+0x2d/0x130
[  246.690238][T19632]  ? ksys_write+0x157/0x180
[  246.694781][T19632]  ? fpregs_assert_state_consistent+0x7d/0x90
[  246.700846][T19632]  ? exit_to_user_mode_prepare+0x65/0x190
[  246.706655][T19632]  __x64_sys_clone3+0x2d/0x40
[  246.711334][T19632]  do_syscall_64+0x3d/0x90
[  246.715762][T19632]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  246.721663][T19632] RIP: 0033:0x4665f9
[  246.725549][T19632] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  246.745154][T19632] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  246.753569][T19632] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  246.761542][T19632] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
19:53:51 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r0, 0xc020660b, 0x0)
read(r0, &(0x7f0000000200)=""/75, 0x4b)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = clone3(&(0x7f0000007500)={0x30000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pidfd_open(r1, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r3, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r3, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  246.769510][T19632] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  246.777642][T19632] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  246.785757][T19632] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
[  246.898287][T19635] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
19:53:51 executing program 4 (fault-call:3 fault-nth:21):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  247.128381][T19640] FAULT_INJECTION: forcing a failure.
[  247.128381][T19640] name failslab, interval 1, probability 0, space 0, times 0
[  247.141010][T19640] CPU: 0 PID: 19640 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  247.149511][T19640] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  247.159557][T19640] Call Trace:
[  247.162848][T19640]  dump_stack_lvl+0xb7/0x103
[  247.167485][T19640]  dump_stack+0x11/0x1a
[  247.171688][T19640]  should_fail+0x23c/0x250
[  247.176102][T19640]  ? dup_mmap+0x38e/0x9c0
[  247.180451][T19640]  __should_failslab+0x81/0x90
[  247.185213][T19640]  should_failslab+0x5/0x20
[  247.189715][T19640]  kmem_cache_alloc+0x46/0x2e0
[  247.194473][T19640]  dup_mmap+0x38e/0x9c0
[  247.198675][T19640]  dup_mm+0x7c/0x210
[  247.203868][T19640]  copy_process+0x144f/0x2f90
[  247.208547][T19640]  ? __alloc_pages+0x194/0x320
[  247.213306][T19640]  ? _copy_from_user+0x94/0xd0
[  247.218071][T19640]  kernel_clone+0x14b/0x680
[  247.222590][T19640]  __se_sys_clone3+0x194/0x1d0
[  247.227394][T19640]  ? __cond_resched+0x11/0x40
[  247.232071][T19640]  ? fput+0x2d/0x130
[  247.235965][T19640]  ? ksys_write+0x157/0x180
[  247.240464][T19640]  ? fpregs_assert_state_consistent+0x7d/0x90
[  247.246701][T19640]  ? exit_to_user_mode_prepare+0x65/0x190
[  247.252511][T19640]  __x64_sys_clone3+0x2d/0x40
[  247.257219][T19640]  do_syscall_64+0x3d/0x90
[  247.261720][T19640]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  247.267646][T19640] RIP: 0033:0x4665f9
[  247.271533][T19640] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  247.291282][T19640] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  247.299786][T19640] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  247.307756][T19640] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  247.315728][T19640] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
19:53:51 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x24401)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={<r1=>0x0, ""/256, <r2=>0x0, <r3=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r3}, {0x0, r3}, {r2}, {r2}, {r2, r3}, {}, {}, {0x0, r3}, {}, {r2, r3}, {0x0, r3}, {}, {r1, r3}, {0x0, r3}, {}, {r2, r3}, {0x0, r3}, {}, {}, {}, {0x0, r3}, {r2}, {0x0, r3}, {0x0, r3}, {r2}, {0x0, r3}, {r1}, {}, {r1}, {0x0, r3}, {}, {}, {r1, r3}, {r2}, {}, {0x0, r3}, {r2, r3}, {0x0, r3}, {r1, r3}, {}, {0x0, r3}, {r2}, {}, {0x0, r3}, {r2}, {0x0, r3}, {r2}, {0x0, r3}, {}, {r1, r3}, {0x0, r3}, {r1}, {}, {r2}, {r1}, {}, {r2, r3}, {}, {0x0, r3}, {0x0, r3}, {0x0, r3}, {0x0, r3}, {r2, r3}, {0x0, r3}, {0x0, r3}, {0x0, r3}, {r2}, {r1, r3}, {}, {r1}, {}, {}, {0x0, r3}, {}, {r2}, {r1}, {}, {}, {}, {0x0, r3}, {r2}, {}, {}, {0x0, r3}, {r1}, {0x0, r3}, {0x0, r3}, {0x0, r3}, {r2, r3}, {}, {}, {0x0, r3}, {}, {r1}, {0x0, r3}, {}, {r2}, {r1, r3}, {0x0, r3}, {r1}, {r2, r3}, {0x0, r3}, {0x0, r3}, {0x0, r3}, {}, {0x0, r3}, {r1}, {r1, r3}, {}, {0x0, r3}, {r1, r3}, {0x0, r3}, {r2, r3}, {r1, r3}, {r2}, {}, {r1, r3}, {r1}, {r2, r3}, {}, {r1}, {r1, r3}, {}, {}, {0x0, r3}, {0x0, r3}, {0x0, r3}, {r2, r3}, {}, {}, {r1, r3}, {0x0, r3}, {r2, r3}, {r1, r3}, {r2, r3}, {0x0, r3}, {}, {r2, r3}, {r2}, {}, {0x0, r3}, {r1}, {0x0, r3}, {r2, r3}, {r1}, {0x0, r3}, {r2, r3}, {0x0, r3}, {0x0, r3}, {}, {0x0, r3}, {r2}, {0x0, r3}, {r2}, {r1}, {}, {}, {}, {0x0, r3}, {r1, r3}, {r2, r3}, {}, {}, {}, {r2}, {0x0, r3}, {}, {}, {r1}, {r1}, {0x0, r3}, {r1, r3}, {r2, r3}, {0x0, r3}, {r1}, {}, {r1}, {0x0, r3}, {r2}, {r1, r3}, {r1, r3}, {0x0, r3}, {0x0, r3}, {}, {}, {0x0, r3}, {r2}, {r1}, {}, {r1}, {r2}, {0x0, r3}, {r2, r3}, {0x0, r3}, {r2, r3}, {0x0, r3}, {}, {r2, r3}, {r1, r3}, {r2}, {r2, r3}, {}, {}, {r1}, {}, {r1}, {r2}, {}, {r1, r3}, {}, {}, {0x0, r3}, {r2}, {0x0, r3}, {r1}, {r2}, {r2}, {}, {}, {r2}, {0x0, r3}, {0x0, r3}, {r1, r3}, {r1}, {}, {0x0, r3}, {}, {}, {r2, r3}, {r1}, {0x0, r3}, {r1}, {r2, r3}, {r1, r3}, {r2, r3}, {r2}, {r1, r3}, {}, {}, {r2}, {r1, r3}, {0x0, r3}, {r1, r3}, {0x0, r3}, {r2}, {r2}, {}, {0x0, r3}, {r2, r3}, {}, {0x0, r3}, {}, {}, {0x0, r3}, {r1, r3}], 0x1, "2156816c73038c"})
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r4, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r5 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r5, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r4, 0x81f8943c, &(0x7f0000000440)={<r6=>0x0, ""/256, <r7=>0x0, <r8=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r5, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r8}, {0x0, r8}, {r7}, {r7}, {r7, r8}, {}, {}, {0x0, r8}, {}, {r7, r8}, {0x0, r8}, {}, {r6, r8}, {0x0, r8}, {}, {r7, r8}, {0x0, r8}, {}, {}, {}, {0x0, r8}, {r7}, {0x0, r8}, {0x0, r8}, {r7}, {0x0, r8}, {r6}, {}, {r6}, {0x0, r8}, {}, {}, {r6, r8}, {r7}, {}, {0x0, r8}, {r7, r8}, {0x0, r8}, {r6, r8}, {}, {0x0, r8}, {r7}, {}, {0x0, r8}, {r7}, {0x0, r8}, {r7}, {0x0, r8}, {}, {r6, r8}, {0x0, r8}, {r6}, {}, {r7}, {r6}, {}, {r7, r8}, {}, {0x0, r8}, {0x0, r8}, {0x0, r8}, {0x0, r8}, {r7, r8}, {0x0, r8}, {0x0, r8}, {0x0, r8}, {r7}, {r6, r8}, {}, {r6}, {}, {}, {0x0, r8}, {}, {r7}, {r6}, {}, {}, {}, {0x0, r8}, {r7}, {}, {}, {0x0, r8}, {r6}, {0x0, r8}, {0x0, r8}, {0x0, r8}, {r7, r8}, {}, {}, {0x0, r8}, {}, {r6}, {0x0, r8}, {}, {r7}, {r6, r8}, {0x0, r8}, {r6}, {r7, r8}, {0x0, r8}, {0x0, r8}, {0x0, r8}, {}, {0x0, r8}, {r6}, {r6, r8}, {}, {0x0, r8}, {r6, r8}, {0x0, r8}, {r7, r8}, {r6, r8}, {r7}, {}, {r6, r8}, {r6}, {r7, r8}, {}, {r6}, {r6, r8}, {}, {}, {0x0, r8}, {0x0, r8}, {0x0, r8}, {r7, r8}, {}, {}, {r6, r8}, {0x0, r8}, {r7, r8}, {r6, r8}, {r7, r8}, {0x0, r8}, {}, {r7, r8}, {r7}, {}, {0x0, r8}, {r6}, {0x0, r8}, {r7, r8}, {r6}, {0x0, r8}, {r7, r8}, {0x0, r8}, {0x0, r8}, {}, {0x0, r8}, {r7}, {0x0, r8}, {r7}, {r6}, {}, {}, {}, {0x0, r8}, {r6, r8}, {r7, r8}, {}, {}, {}, {r7}, {0x0, r8}, {}, {}, {r6}, {r6}, {0x0, r8}, {r6, r8}, {r7, r8}, {0x0, r8}, {r6}, {}, {r6}, {0x0, r8}, {r7}, {r6, r8}, {r6, r8}, {0x0, r8}, {0x0, r8}, {}, {}, {0x0, r8}, {r7}, {r6}, {}, {r6}, {r7}, {0x0, r8}, {r7, r8}, {0x0, r8}, {r7, r8}, {0x0, r8}, {}, {r7, r8}, {r6, r8}, {r7}, {r7, r8}, {}, {}, {r6}, {}, {r6}, {r7}, {}, {r6, r8}, {}, {}, {0x0, r8}, {r7}, {0x0, r8}, {r6}, {r7}, {r7}, {}, {}, {r7}, {0x0, r8}, {0x0, r8}, {r6, r8}, {r6}, {}, {0x0, r8}, {}, {}, {r7, r8}, {r6}, {0x0, r8}, {r6}, {r7, r8}, {r6, r8}, {r7, r8}, {r7}, {r6, r8}, {}, {}, {r7}, {r6, r8}, {0x0, r8}, {r6, r8}, {0x0, r8}, {r7}, {r7}, {}, {0x0, r8}, {r7, r8}, {}, {0x0, r8}, {}, {}, {0x0, r8}, {r6, r8}], 0x1, "2156816c73038c"})
r9 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r9, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r10 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r10, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r9, 0x81f8943c, &(0x7f0000000440)={<r11=>0x0, ""/256, <r12=>0x0, <r13=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r10, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r13}, {0x0, r13}, {r12}, {r12}, {r12, r13}, {}, {}, {0x0, r13}, {}, {r12, r13}, {0x0, r13}, {}, {r11, r13}, {0x0, r13}, {}, {r12, r13}, {0x0, r13}, {}, {}, {}, {0x0, r13}, {r12}, {0x0, r13}, {0x0, r13}, {r12}, {0x0, r13}, {r11}, {}, {r11}, {0x0, r13}, {}, {}, {r11, r13}, {r12}, {}, {0x0, r13}, {r12, r13}, {0x0, r13}, {r11, r13}, {}, {0x0, r13}, {r12}, {}, {0x0, r13}, {r12}, {0x0, r13}, {r12}, {0x0, r13}, {}, {r11, r13}, {0x0, r13}, {r11}, {}, {r12}, {r11}, {}, {r12, r13}, {}, {0x0, r13}, {0x0, r13}, {0x0, r13}, {0x0, r13}, {r12, r13}, {0x0, r13}, {0x0, r13}, {0x0, r13}, {r12}, {r11, r13}, {}, {r11}, {}, {}, {0x0, r13}, {}, {r12}, {r11}, {}, {}, {}, {0x0, r13}, {r12}, {}, {}, {0x0, r13}, {r11}, {0x0, r13}, {0x0, r13}, {0x0, r13}, {r12, r13}, {}, {}, {0x0, r13}, {}, {r11}, {0x0, r13}, {}, {r12}, {r11, r13}, {0x0, r13}, {r11}, {r12, r13}, {0x0, r13}, {0x0, r13}, {0x0, r13}, {}, {0x0, r13}, {r11}, {r11, r13}, {}, {0x0, r13}, {r11, r13}, {0x0, r13}, {r12, r13}, {r11, r13}, {r12}, {}, {r11, r13}, {r11}, {r12, r13}, {}, {r11}, {r11, r13}, {}, {}, {0x0, r13}, {0x0, r13}, {0x0, r13}, {r12, r13}, {}, {}, {r11, r13}, {0x0, r13}, {r12, r13}, {r11, r13}, {r12, r13}, {0x0, r13}, {}, {r12, r13}, {r12}, {}, {0x0, r13}, {r11}, {0x0, r13}, {r12, r13}, {r11}, {0x0, r13}, {r12, r13}, {0x0, r13}, {0x0, r13}, {}, {0x0, r13}, {r12}, {0x0, r13}, {r12}, {r11}, {}, {}, {}, {0x0, r13}, {r11, r13}, {r12, r13}, {}, {}, {}, {r12}, {0x0, r13}, {}, {}, {r11}, {r11}, {0x0, r13}, {r11, r13}, {r12, r13}, {0x0, r13}, {r11}, {}, {r11}, {0x0, r13}, {r12}, {r11, r13}, {r11, r13}, {0x0, r13}, {0x0, r13}, {}, {}, {0x0, r13}, {r12}, {r11}, {}, {r11}, {r12}, {0x0, r13}, {r12, r13}, {0x0, r13}, {r12, r13}, {0x0, r13}, {}, {r12, r13}, {r11, r13}, {r12}, {r12, r13}, {}, {}, {r11}, {}, {r11}, {r12}, {}, {r11, r13}, {}, {}, {0x0, r13}, {r12}, {0x0, r13}, {r11}, {r12}, {r12}, {}, {}, {r12}, {0x0, r13}, {0x0, r13}, {r11, r13}, {r11}, {}, {0x0, r13}, {}, {}, {r12, r13}, {r11}, {0x0, r13}, {r11}, {r12, r13}, {r11, r13}, {r12, r13}, {r12}, {r11, r13}, {}, {}, {r12}, {r11, r13}, {0x0, r13}, {r11, r13}, {0x0, r13}, {r12}, {r12}, {}, {0x0, r13}, {r12, r13}, {}, {0x0, r13}, {}, {}, {0x0, r13}, {r11, r13}], 0x1, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f0000058a40)={0x5, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r3}, {r7, r13}], 0x81, "acde6edcbc8440"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

[  247.323704][T19640] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  247.331684][T19640] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
[  247.345488][    C0] sd 0:0:1:0: tag#7810 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  247.355321][    C0] sd 0:0:1:0: tag#7810 CDB: opcode=0xe5 (vendor)
[  247.361665][    C0] sd 0:0:1:0: tag#7810 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  247.371140][    C0] sd 0:0:1:0: tag#7810 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  247.380185][    C0] sd 0:0:1:0: tag#7810 CDB[20]: ba
[  247.386590][    C0] sd 0:0:1:0: tag#7811 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  247.396442][    C0] sd 0:0:1:0: tag#7811 CDB: opcode=0xe5 (vendor)
[  247.402767][    C0] sd 0:0:1:0: tag#7811 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  247.411840][    C0] sd 0:0:1:0: tag#7811 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  247.420888][    C0] sd 0:0:1:0: tag#7811 CDB[20]: ba
[  247.429241][    C0] sd 0:0:1:0: tag#7829 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  247.435775][    C1] sd 0:0:1:0: tag#7830 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  247.439067][    C0] sd 0:0:1:0: tag#7829 CDB: opcode=0xe5 (vendor)
[  247.448850][    C1] sd 0:0:1:0: tag#7830 CDB: opcode=0xe5 (vendor)
[  247.455157][    C0] sd 0:0:1:0: tag#7829 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  247.461466][    C1] sd 0:0:1:0: tag#7830 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  247.470479][    C0] sd 0:0:1:0: tag#7829 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  247.479477][    C1] sd 0:0:1:0: tag#7830 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  247.488488][    C0] sd 0:0:1:0: tag#7829 CDB[20]: ba
[  247.497491][    C1] sd 0:0:1:0: tag#7830 CDB[20]: ba
19:53:52 executing program 4 (fault-call:3 fault-nth:22):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  247.587718][T19649] FAULT_INJECTION: forcing a failure.
[  247.587718][T19649] name failslab, interval 1, probability 0, space 0, times 0
[  247.600454][T19649] CPU: 0 PID: 19649 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  247.608864][T19649] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  247.618923][T19649] Call Trace:
[  247.622197][T19649]  dump_stack_lvl+0xb7/0x103
[  247.626897][T19649]  dump_stack+0x11/0x1a
[  247.631089][T19649]  should_fail+0x23c/0x250
[  247.635497][T19649]  ? anon_vma_clone+0x8d/0x380
[  247.640346][T19649]  __should_failslab+0x81/0x90
[  247.645110][T19649]  should_failslab+0x5/0x20
[  247.649614][T19649]  kmem_cache_alloc+0x46/0x2e0
[  247.654433][T19649]  ? avc_has_perm_noaudit+0x19a/0x240
[  247.659881][T19649]  anon_vma_clone+0x8d/0x380
[  247.664514][T19649]  anon_vma_fork+0x54/0x2b0
[  247.669033][T19649]  dup_mmap+0x49c/0x9c0
[  247.673194][T19649]  dup_mm+0x7c/0x210
[  247.677104][T19649]  copy_process+0x144f/0x2f90
[  247.681792][T19649]  ? __alloc_pages+0x194/0x320
[  247.686657][T19649]  ? _copy_from_user+0x94/0xd0
[  247.691481][T19649]  kernel_clone+0x14b/0x680
[  247.695981][T19649]  __se_sys_clone3+0x194/0x1d0
[  247.700986][T19649]  ? __cond_resched+0x11/0x40
[  247.705669][T19649]  ? fput+0x2d/0x130
[  247.709709][T19649]  ? ksys_write+0x157/0x180
[  247.714210][T19649]  ? fpregs_assert_state_consistent+0x7d/0x90
[  247.720278][T19649]  ? exit_to_user_mode_prepare+0x65/0x190
[  247.726005][T19649]  __x64_sys_clone3+0x2d/0x40
[  247.730771][T19649]  do_syscall_64+0x3d/0x90
[  247.735188][T19649]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  247.741083][T19649] RIP: 0033:0x4665f9
[  247.744964][T19649] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  247.764711][T19649] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  247.773122][T19649] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  247.781087][T19649] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  247.789050][T19649] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  247.797018][T19649] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  247.804983][T19649] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:53:52 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r0, 0xc020660b, 0x0)
read(r0, &(0x7f0000000200)=""/75, 0x4b)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone3(&(0x7f0000007500)={0x30000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r2, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r2, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

19:53:52 executing program 4 (fault-call:3 fault-nth:23):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  247.898596][T19655] FAULT_INJECTION: forcing a failure.
[  247.898596][T19655] name failslab, interval 1, probability 0, space 0, times 0
[  247.911221][T19655] CPU: 1 PID: 19655 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  247.919633][T19655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  247.929766][T19655] Call Trace:
[  247.933040][T19655]  dump_stack_lvl+0xb7/0x103
[  247.937677][T19655]  dump_stack+0x11/0x1a
[  247.941835][T19655]  should_fail+0x23c/0x250
[  247.946243][T19655]  ? dup_mmap+0x38e/0x9c0
[  247.950593][T19655]  __should_failslab+0x81/0x90
[  247.955420][T19655]  should_failslab+0x5/0x20
[  247.959922][T19655]  kmem_cache_alloc+0x46/0x2e0
[  247.964684][T19655]  dup_mmap+0x38e/0x9c0
[  247.968841][T19655]  ? alloc_pages+0x2e8/0x340
[  247.973433][T19655]  ? __list_add_valid+0x28/0x90
[  247.978355][T19655]  ? pgd_alloc+0x120/0x140
[  247.982770][T19655]  ? __init_rwsem+0x59/0x70
[  247.987292][T19655]  dup_mm+0x7c/0x210
[  247.991184][T19655]  copy_process+0x144f/0x2f90
[  247.995859][T19655]  ? _copy_from_user+0x94/0xd0
[  248.000653][T19655]  kernel_clone+0x14b/0x680
[  248.005152][T19655]  __se_sys_clone3+0x194/0x1d0
[  248.009927][T19655]  ? __cond_resched+0x11/0x40
[  248.014681][T19655]  ? fput+0x2d/0x130
[  248.018620][T19655]  ? ksys_write+0x157/0x180
[  248.023124][T19655]  ? fpregs_assert_state_consistent+0x7d/0x90
[  248.029191][T19655]  ? exit_to_user_mode_prepare+0x65/0x190
[  248.034921][T19655]  __x64_sys_clone3+0x2d/0x40
[  248.039682][T19655]  do_syscall_64+0x3d/0x90
[  248.044174][T19655]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  248.050065][T19655] RIP: 0033:0x4665f9
[  248.054986][T19655] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  248.074584][T19655] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  248.082986][T19655] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  248.090948][T19655] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  248.098913][T19655] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  248.106876][T19655] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  248.114834][T19655] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
[  248.135297][T19656] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
19:53:52 executing program 4 (fault-call:3 fault-nth:24):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  248.229409][T19661] FAULT_INJECTION: forcing a failure.
[  248.229409][T19661] name failslab, interval 1, probability 0, space 0, times 0
[  248.242033][T19661] CPU: 0 PID: 19661 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  248.250447][T19661] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  248.260497][T19661] Call Trace:
[  248.263768][T19661]  dump_stack_lvl+0xb7/0x103
[  248.268450][T19661]  dump_stack+0x11/0x1a
[  248.272607][T19661]  should_fail+0x23c/0x250
[  248.277018][T19661]  ? dup_mmap+0x38e/0x9c0
[  248.281348][T19661]  __should_failslab+0x81/0x90
[  248.286111][T19661]  should_failslab+0x5/0x20
[  248.290613][T19661]  kmem_cache_alloc+0x46/0x2e0
[  248.295390][T19661]  dup_mmap+0x38e/0x9c0
[  248.299545][T19661]  ? alloc_pages+0x2e8/0x340
[  248.304129][T19661]  ? __list_add_valid+0x28/0x90
[  248.309026][T19661]  ? pgd_alloc+0x120/0x140
[  248.313490][T19661]  ? __init_rwsem+0x59/0x70
[  248.317993][T19661]  dup_mm+0x7c/0x210
[  248.321889][T19661]  copy_process+0x144f/0x2f90
[  248.326557][T19661]  ? __alloc_pages+0x194/0x320
[  248.331323][T19661]  ? _copy_from_user+0x94/0xd0
[  248.336083][T19661]  kernel_clone+0x14b/0x680
[  248.340584][T19661]  __se_sys_clone3+0x194/0x1d0
[  248.345451][T19661]  ? kcsan_setup_watchpoint+0x231/0x3e0
[  248.350997][T19661]  ? fput+0x2d/0x130
[  248.354918][T19661]  ? exit_to_user_mode_prepare+0x65/0x190
[  248.360703][T19661]  __x64_sys_clone3+0x2d/0x40
[  248.365376][T19661]  do_syscall_64+0x3d/0x90
[  248.369845][T19661]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  248.375813][T19661] RIP: 0033:0x4665f9
[  248.379700][T19661] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  248.399302][T19661] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  248.407706][T19661] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  248.415670][T19661] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
19:53:53 executing program 4 (fault-call:3 fault-nth:25):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  248.423633][T19661] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  248.431598][T19661] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  248.439563][T19661] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
[  248.491879][T19665] FAULT_INJECTION: forcing a failure.
[  248.491879][T19665] name failslab, interval 1, probability 0, space 0, times 0
[  248.504522][T19665] CPU: 0 PID: 19665 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  248.512972][T19665] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  248.523019][T19665] Call Trace:
[  248.526369][T19665]  dump_stack_lvl+0xb7/0x103
[  248.530958][T19665]  dump_stack+0x11/0x1a
[  248.535136][T19665]  should_fail+0x23c/0x250
[  248.539554][T19665]  ? dup_mmap+0x38e/0x9c0
[  248.543941][T19665]  __should_failslab+0x81/0x90
[  248.548719][T19665]  should_failslab+0x5/0x20
[  248.553220][T19665]  kmem_cache_alloc+0x46/0x2e0
[  248.557998][T19665]  ? __vma_link_rb+0x3c2/0x3e0
[  248.562811][T19665]  ? up_write+0x25/0xc0
[  248.566967][T19665]  dup_mmap+0x38e/0x9c0
[  248.571172][T19665]  dup_mm+0x7c/0x210
[  248.575061][T19665]  copy_process+0x144f/0x2f90
[  248.579739][T19665]  ? __alloc_pages+0x194/0x320
[  248.584517][T19665]  ? _copy_from_user+0x94/0xd0
[  248.589281][T19665]  kernel_clone+0x14b/0x680
[  248.593787][T19665]  __se_sys_clone3+0x194/0x1d0
[  248.598559][T19665]  ? __cond_resched+0x11/0x40
[  248.603235][T19665]  ? fput+0x2d/0x130
[  248.607127][T19665]  ? ksys_write+0x157/0x180
[  248.611629][T19665]  ? fpregs_assert_state_consistent+0x7d/0x90
[  248.617696][T19665]  ? exit_to_user_mode_prepare+0x65/0x190
[  248.623418][T19665]  __x64_sys_clone3+0x2d/0x40
[  248.628090][T19665]  do_syscall_64+0x3d/0x90
[  248.632502][T19665]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  248.638398][T19665] RIP: 0033:0x4665f9
[  248.642287][T19665] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  248.661960][T19665] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  248.670378][T19665] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  248.678350][T19665] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
19:53:53 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r0, 0xc020660b, 0x0)
read(r0, &(0x7f0000000200)=""/75, 0x4b)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
clone3(&(0x7f0000007500)={0x30000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r2, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r2, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  248.686323][T19665] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  248.694289][T19665] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  248.702252][T19665] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:53:53 executing program 4 (fault-call:3 fault-nth:26):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  248.818920][T19668] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  248.866476][T19673] FAULT_INJECTION: forcing a failure.
[  248.866476][T19673] name failslab, interval 1, probability 0, space 0, times 0
[  248.879118][T19673] CPU: 0 PID: 19673 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  248.887527][T19673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  248.897580][T19673] Call Trace:
[  248.900851][T19673]  dump_stack_lvl+0xb7/0x103
[  248.905440][T19673]  dump_stack+0x11/0x1a
[  248.909593][T19673]  should_fail+0x23c/0x250
[  248.914003][T19673]  ? dup_mmap+0x38e/0x9c0
[  248.918333][T19673]  __should_failslab+0x81/0x90
[  248.923119][T19673]  should_failslab+0x5/0x20
[  248.927617][T19673]  kmem_cache_alloc+0x46/0x2e0
[  248.932375][T19673]  ? __vma_link_rb+0x3c2/0x3e0
[  248.937147][T19673]  ? up_write+0x25/0xc0
[  248.941337][T19673]  dup_mmap+0x38e/0x9c0
[  248.945556][T19673]  dup_mm+0x7c/0x210
[  248.949490][T19673]  copy_process+0x144f/0x2f90
[  248.954234][T19673]  ? __alloc_pages+0x194/0x320
[  248.958996][T19673]  ? _copy_from_user+0x94/0xd0
[  248.963789][T19673]  kernel_clone+0x14b/0x680
[  248.968283][T19673]  __se_sys_clone3+0x194/0x1d0
[  248.973046][T19673]  ? __cond_resched+0x11/0x40
[  248.977722][T19673]  ? fput+0x2d/0x130
[  248.981614][T19673]  ? ksys_write+0x157/0x180
[  248.986111][T19673]  ? fpregs_assert_state_consistent+0x7d/0x90
[  248.992204][T19673]  ? exit_to_user_mode_prepare+0x65/0x190
[  248.997941][T19673]  __x64_sys_clone3+0x2d/0x40
[  249.002614][T19673]  do_syscall_64+0x3d/0x90
[  249.007024][T19673]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  249.013010][T19673] RIP: 0033:0x4665f9
[  249.016932][T19673] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  249.036635][T19673] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  249.045040][T19673] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  249.053013][T19673] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  249.061006][T19673] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  249.068978][T19673] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  249.076946][T19673] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:53:54 executing program 4 (fault-call:3 fault-nth:27):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  249.325730][T19677] FAULT_INJECTION: forcing a failure.
[  249.325730][T19677] name failslab, interval 1, probability 0, space 0, times 0
[  249.338409][T19677] CPU: 0 PID: 19677 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  249.346892][T19677] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  249.356942][T19677] Call Trace:
[  249.360216][T19677]  dump_stack_lvl+0xb7/0x103
[  249.364807][T19677]  dump_stack+0x11/0x1a
[  249.369008][T19677]  should_fail+0x23c/0x250
[  249.373451][T19677]  ? anon_vma_clone+0x8d/0x380
[  249.378274][T19677]  __should_failslab+0x81/0x90
[  249.383033][T19677]  should_failslab+0x5/0x20
[  249.387531][T19677]  kmem_cache_alloc+0x46/0x2e0
[  249.392367][T19677]  ? avc_has_perm_noaudit+0x19a/0x240
[  249.397743][T19677]  anon_vma_clone+0x8d/0x380
[  249.402364][T19677]  anon_vma_fork+0x54/0x2b0
[  249.406964][T19677]  dup_mmap+0x49c/0x9c0
[  249.411115][T19677]  dup_mm+0x7c/0x210
[  249.415036][T19677]  copy_process+0x144f/0x2f90
[  249.419709][T19677]  ? __alloc_pages+0x194/0x320
[  249.424471][T19677]  ? _copy_from_user+0x94/0xd0
[  249.429242][T19677]  kernel_clone+0x14b/0x680
[  249.433742][T19677]  __se_sys_clone3+0x194/0x1d0
[  249.438499][T19677]  ? __cond_resched+0x11/0x40
[  249.443216][T19677]  ? fput+0x2d/0x130
[  249.447149][T19677]  ? ksys_write+0x157/0x180
[  249.451650][T19677]  ? fpregs_assert_state_consistent+0x7d/0x90
[  249.457748][T19677]  ? exit_to_user_mode_prepare+0x65/0x190
[  249.463527][T19677]  __x64_sys_clone3+0x2d/0x40
[  249.468271][T19677]  do_syscall_64+0x3d/0x90
[  249.472714][T19677]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  249.478605][T19677] RIP: 0033:0x4665f9
[  249.482603][T19677] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  249.502276][T19677] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  249.510684][T19677] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  249.518650][T19677] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  249.526666][T19677] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  249.534632][T19677] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  249.542594][T19677] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:53:54 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r0, 0xc020660b, 0x0)
read(r0, &(0x7f0000000200)=""/75, 0x4b)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r2, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r2, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

19:53:54 executing program 4 (fault-call:3 fault-nth:28):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  249.640173][T19682] FAULT_INJECTION: forcing a failure.
[  249.640173][T19682] name failslab, interval 1, probability 0, space 0, times 0
[  249.652812][T19682] CPU: 1 PID: 19682 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  249.661249][T19682] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  249.671295][T19682] Call Trace:
[  249.674580][T19682]  dump_stack_lvl+0xb7/0x103
[  249.679168][T19682]  dump_stack+0x11/0x1a
[  249.683333][T19682]  should_fail+0x23c/0x250
[  249.687773][T19682]  ? anon_vma_clone+0x8d/0x380
[  249.692582][T19682]  __should_failslab+0x81/0x90
[  249.697355][T19682]  should_failslab+0x5/0x20
[  249.701855][T19682]  kmem_cache_alloc+0x46/0x2e0
[  249.706651][T19682]  anon_vma_clone+0x8d/0x380
[  249.711305][T19682]  anon_vma_fork+0x54/0x2b0
[  249.715815][T19682]  dup_mmap+0x49c/0x9c0
[  249.719966][T19682]  dup_mm+0x7c/0x210
[  249.723859][T19682]  copy_process+0x144f/0x2f90
[  249.728530][T19682]  ? __alloc_pages+0x194/0x320
[  249.733288][T19682]  ? _copy_from_user+0x94/0xd0
[  249.738108][T19682]  kernel_clone+0x14b/0x680
[  249.742605][T19682]  __se_sys_clone3+0x194/0x1d0
[  249.747420][T19682]  ? __cond_resched+0x11/0x40
[  249.752096][T19682]  ? fput+0x2d/0x130
[  249.756064][T19682]  ? ksys_write+0x157/0x180
[  249.760563][T19682]  ? fpregs_assert_state_consistent+0x7d/0x90
[  249.766630][T19682]  ? exit_to_user_mode_prepare+0x65/0x190
[  249.772353][T19682]  __x64_sys_clone3+0x2d/0x40
[  249.777025][T19682]  do_syscall_64+0x3d/0x90
[  249.781438][T19682]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  249.787334][T19682] RIP: 0033:0x4665f9
[  249.791217][T19682] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  249.810986][T19682] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  249.819435][T19682] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  249.827400][T19682] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  249.835365][T19682] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  249.843332][T19682] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  249.851297][T19682] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
[  249.866464][T19684] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
19:53:54 executing program 4 (fault-call:3 fault-nth:29):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  249.968770][T19688] FAULT_INJECTION: forcing a failure.
[  249.968770][T19688] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  249.982004][T19688] CPU: 0 PID: 19688 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  249.990415][T19688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  250.000462][T19688] Call Trace:
[  250.003732][T19688]  dump_stack_lvl+0xb7/0x103
[  250.008319][T19688]  dump_stack+0x11/0x1a
[  250.012472][T19688]  should_fail+0x23c/0x250
[  250.016909][T19688]  __alloc_pages+0x102/0x320
[  250.021497][T19688]  alloc_pages+0x2e8/0x340
[  250.025911][T19688]  pte_alloc_one+0x29/0xb0
[  250.030329][T19688]  __pte_alloc+0x2f/0x210
[  250.034652][T19688]  copy_pte_range+0x126e/0x1470
[  250.039509][T19688]  copy_page_range+0x5da/0x8e0
[  250.044271][T19688]  ? up_write+0x25/0xc0
[  250.048422][T19688]  dup_mmap+0x6ab/0x9c0
[  250.052573][T19688]  dup_mm+0x7c/0x210
[  250.056460][T19688]  copy_process+0x144f/0x2f90
[  250.061146][T19688]  ? __alloc_pages+0x194/0x320
[  250.065905][T19688]  ? _copy_from_user+0x94/0xd0
[  250.070662][T19688]  kernel_clone+0x14b/0x680
[  250.075159][T19688]  __se_sys_clone3+0x194/0x1d0
[  250.079921][T19688]  ? __cond_resched+0x11/0x40
[  250.084594][T19688]  ? fput+0x2d/0x130
[  250.088489][T19688]  ? ksys_write+0x157/0x180
[  250.092990][T19688]  ? fpregs_assert_state_consistent+0x7d/0x90
[  250.099055][T19688]  ? exit_to_user_mode_prepare+0x65/0x190
[  250.104778][T19688]  __x64_sys_clone3+0x2d/0x40
[  250.109457][T19688]  do_syscall_64+0x3d/0x90
[  250.113868][T19688]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  250.119759][T19688] RIP: 0033:0x4665f9
[  250.123645][T19688] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  250.143246][T19688] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  250.151652][T19688] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  250.159638][T19688] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  250.167601][T19688] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  250.175562][T19688] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  250.183527][T19688] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:53:55 executing program 4 (fault-call:3 fault-nth:30):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  250.445882][T19692] FAULT_INJECTION: forcing a failure.
[  250.445882][T19692] name failslab, interval 1, probability 0, space 0, times 0
[  250.458499][T19692] CPU: 1 PID: 19692 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  250.466931][T19692] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  250.476986][T19692] Call Trace:
[  250.480334][T19692]  dump_stack_lvl+0xb7/0x103
[  250.484924][T19692]  dump_stack+0x11/0x1a
[  250.489076][T19692]  should_fail+0x23c/0x250
[  250.493488][T19692]  ? dup_mmap+0x38e/0x9c0
[  250.497948][T19692]  __should_failslab+0x81/0x90
[  250.502704][T19692]  should_failslab+0x5/0x20
[  250.507277][T19692]  kmem_cache_alloc+0x46/0x2e0
[  250.512035][T19692]  dup_mmap+0x38e/0x9c0
[  250.516189][T19692]  dup_mm+0x7c/0x210
[  250.520074][T19692]  copy_process+0x144f/0x2f90
[  250.524743][T19692]  ? __alloc_pages+0x194/0x320
[  250.529597][T19692]  ? _copy_from_user+0x94/0xd0
[  250.534358][T19692]  kernel_clone+0x14b/0x680
[  250.538913][T19692]  __se_sys_clone3+0x194/0x1d0
19:53:55 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r0, 0xc020660b, 0x0)
read(r0, &(0x7f0000000200)=""/75, 0x4b)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r2, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r2, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  250.543674][T19692]  ? __cond_resched+0x11/0x40
[  250.548348][T19692]  ? fput+0x2d/0x130
[  250.552309][T19692]  ? ksys_write+0x157/0x180
[  250.556813][T19692]  ? fpregs_assert_state_consistent+0x7d/0x90
[  250.562896][T19692]  ? exit_to_user_mode_prepare+0x65/0x190
[  250.568614][T19692]  __x64_sys_clone3+0x2d/0x40
[  250.573308][T19692]  do_syscall_64+0x3d/0x90
[  250.577715][T19692]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  250.583602][T19692] RIP: 0033:0x4665f9
[  250.587494][T19692] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  250.607102][T19692] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  250.615502][T19692] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  250.623472][T19692] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  250.631435][T19692] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
19:53:55 executing program 4 (fault-call:3 fault-nth:31):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  250.639434][T19692] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  250.647399][T19692] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
[  250.713468][T19695] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  250.729980][T19699] FAULT_INJECTION: forcing a failure.
[  250.729980][T19699] name failslab, interval 1, probability 0, space 0, times 0
[  250.742600][T19699] CPU: 0 PID: 19699 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  250.751011][T19699] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  250.761059][T19699] Call Trace:
[  250.764331][T19699]  dump_stack_lvl+0xb7/0x103
[  250.768923][T19699]  dump_stack+0x11/0x1a
[  250.773073][T19699]  should_fail+0x23c/0x250
[  250.777483][T19699]  ? anon_vma_clone+0x8d/0x380
[  250.782257][T19699]  __should_failslab+0x81/0x90
[  250.787080][T19699]  should_failslab+0x5/0x20
[  250.791592][T19699]  kmem_cache_alloc+0x46/0x2e0
[  250.796347][T19699]  ? avc_has_perm_noaudit+0x19a/0x240
[  250.801712][T19699]  anon_vma_clone+0x8d/0x380
[  250.806307][T19699]  anon_vma_fork+0x54/0x2b0
[  250.810816][T19699]  dup_mmap+0x49c/0x9c0
[  250.815039][T19699]  dup_mm+0x7c/0x210
[  250.818931][T19699]  copy_process+0x144f/0x2f90
[  250.823609][T19699]  ? __alloc_pages+0x194/0x320
[  250.828491][T19699]  ? _copy_from_user+0x94/0xd0
[  250.833253][T19699]  kernel_clone+0x14b/0x680
[  250.837753][T19699]  __se_sys_clone3+0x194/0x1d0
[  250.842514][T19699]  ? __cond_resched+0x11/0x40
[  250.847191][T19699]  ? fput+0x2d/0x130
[  250.851089][T19699]  ? ksys_write+0x157/0x180
[  250.855597][T19699]  ? fpregs_assert_state_consistent+0x7d/0x90
[  250.862036][T19699]  ? exit_to_user_mode_prepare+0x65/0x190
[  250.867760][T19699]  __x64_sys_clone3+0x2d/0x40
[  250.872437][T19699]  do_syscall_64+0x3d/0x90
[  250.876855][T19699]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  250.882749][T19699] RIP: 0033:0x4665f9
[  250.886636][T19699] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  250.906377][T19699] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  250.914780][T19699] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  250.922869][T19699] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  250.930858][T19699] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  250.938825][T19699] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  250.946795][T19699] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:53:55 executing program 4 (fault-call:3 fault-nth:32):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  251.063935][T19703] FAULT_INJECTION: forcing a failure.
[  251.063935][T19703] name failslab, interval 1, probability 0, space 0, times 0
[  251.076556][T19703] CPU: 1 PID: 19703 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  251.084967][T19703] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  251.095037][T19703] Call Trace:
[  251.098352][T19703]  dump_stack_lvl+0xb7/0x103
[  251.102943][T19703]  dump_stack+0x11/0x1a
[  251.107124][T19703]  should_fail+0x23c/0x250
[  251.111538][T19703]  ? anon_vma_clone+0x8d/0x380
[  251.116305][T19703]  __should_failslab+0x81/0x90
[  251.121066][T19703]  should_failslab+0x5/0x20
[  251.125560][T19703]  kmem_cache_alloc+0x46/0x2e0
[  251.130319][T19703]  anon_vma_clone+0x8d/0x380
[  251.135001][T19703]  anon_vma_fork+0x54/0x2b0
[  251.139576][T19703]  dup_mmap+0x49c/0x9c0
[  251.143800][T19703]  dup_mm+0x7c/0x210
[  251.147689][T19703]  copy_process+0x144f/0x2f90
[  251.152440][T19703]  ? __alloc_pages+0x194/0x320
[  251.157206][T19703]  ? _copy_from_user+0x94/0xd0
[  251.161965][T19703]  kernel_clone+0x14b/0x680
[  251.166471][T19703]  __se_sys_clone3+0x194/0x1d0
[  251.171234][T19703]  ? __cond_resched+0x11/0x40
[  251.175912][T19703]  ? fput+0x2d/0x130
[  251.179895][T19703]  ? ksys_write+0x157/0x180
[  251.184397][T19703]  ? fpregs_assert_state_consistent+0x7d/0x90
[  251.190603][T19703]  ? exit_to_user_mode_prepare+0x65/0x190
[  251.196409][T19703]  __x64_sys_clone3+0x2d/0x40
[  251.201092][T19703]  do_syscall_64+0x3d/0x90
[  251.205564][T19703]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  251.211452][T19703] RIP: 0033:0x4665f9
[  251.215335][T19703] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  251.235043][T19703] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  251.243565][T19703] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  251.251588][T19703] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  251.259649][T19703] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  251.267617][T19703] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  251.275584][T19703] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:53:56 executing program 4 (fault-call:3 fault-nth:33):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  251.372301][T19707] FAULT_INJECTION: forcing a failure.
[  251.372301][T19707] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  251.385548][T19707] CPU: 0 PID: 19707 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  251.393954][T19707] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  251.404001][T19707] Call Trace:
[  251.407285][T19707]  dump_stack_lvl+0xb7/0x103
[  251.411869][T19707]  dump_stack+0x11/0x1a
[  251.416022][T19707]  should_fail+0x23c/0x250
[  251.420435][T19707]  __alloc_pages+0x102/0x320
[  251.425023][T19707]  alloc_pages+0x2e8/0x340
[  251.429466][T19707]  __pmd_alloc+0x47/0x310
[  251.433799][T19707]  ? __pud_alloc+0x159/0x190
[  251.438391][T19707]  copy_page_range+0x695/0x8e0
[  251.443155][T19707]  ? __rb_insert_augmented+0x7f/0x350
[  251.448539][T19707]  ? up_write+0x25/0xc0
[  251.452692][T19707]  dup_mmap+0x6ab/0x9c0
[  251.456846][T19707]  dup_mm+0x7c/0x210
[  251.460737][T19707]  copy_process+0x144f/0x2f90
[  251.465411][T19707]  ? __alloc_pages+0x194/0x320
[  251.470175][T19707]  ? _copy_from_user+0x94/0xd0
[  251.474936][T19707]  kernel_clone+0x14b/0x680
[  251.479433][T19707]  __se_sys_clone3+0x194/0x1d0
[  251.484199][T19707]  ? __cond_resched+0x11/0x40
[  251.488877][T19707]  ? fput+0x2d/0x130
[  251.492775][T19707]  ? ksys_write+0x157/0x180
[  251.497279][T19707]  ? fpregs_assert_state_consistent+0x7d/0x90
[  251.503345][T19707]  ? exit_to_user_mode_prepare+0x65/0x190
[  251.509074][T19707]  __x64_sys_clone3+0x2d/0x40
[  251.513749][T19707]  do_syscall_64+0x3d/0x90
[  251.518940][T19707]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  251.524832][T19707] RIP: 0033:0x4665f9
[  251.528715][T19707] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  251.548317][T19707] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  251.556746][T19707] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  251.564713][T19707] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  251.572690][T19707] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  251.580753][T19707] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  251.588724][T19707] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:53:56 executing program 4 (fault-call:3 fault-nth:34):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:53:56 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r0, 0xc020660b, 0x0)
read(r0, &(0x7f0000000200)=""/75, 0x4b)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r2, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r2, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  251.663824][T19713] FAULT_INJECTION: forcing a failure.
[  251.663824][T19713] name failslab, interval 1, probability 0, space 0, times 0
[  251.676454][T19713] CPU: 0 PID: 19713 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  251.684900][T19713] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  251.694951][T19713] Call Trace:
[  251.698224][T19713]  dump_stack_lvl+0xb7/0x103
[  251.702816][T19713]  dump_stack+0x11/0x1a
[  251.706969][T19713]  should_fail+0x23c/0x250
[  251.711386][T19713]  ? anon_vma_fork+0xb1/0x2b0
[  251.716086][T19713]  __should_failslab+0x81/0x90
[  251.718452][T19714] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  251.720847][T19713]  should_failslab+0x5/0x20
[  251.720869][T19713]  kmem_cache_alloc+0x46/0x2e0
[  251.738258][T19713]  anon_vma_fork+0xb1/0x2b0
[  251.742829][T19713]  dup_mmap+0x49c/0x9c0
[  251.747016][T19713]  dup_mm+0x7c/0x210
[  251.750910][T19713]  copy_process+0x144f/0x2f90
[  251.755586][T19713]  ? __alloc_pages+0x194/0x320
[  251.760377][T19713]  ? _copy_from_user+0x94/0xd0
[  251.765195][T19713]  kernel_clone+0x14b/0x680
[  251.769762][T19713]  __se_sys_clone3+0x194/0x1d0
[  251.774635][T19713]  ? __cond_resched+0x11/0x40
[  251.779361][T19713]  ? fput+0x2d/0x130
[  251.783263][T19713]  ? ksys_write+0x157/0x180
[  251.788020][T19713]  ? fpregs_assert_state_consistent+0x7d/0x90
[  251.794512][T19713]  ? exit_to_user_mode_prepare+0x65/0x190
[  251.800240][T19713]  __x64_sys_clone3+0x2d/0x40
[  251.804917][T19713]  do_syscall_64+0x3d/0x90
[  251.809333][T19713]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  251.815354][T19713] RIP: 0033:0x4665f9
[  251.819409][T19713] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  251.839014][T19713] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  251.847425][T19713] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  251.855451][T19713] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  251.863517][T19713] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  251.871481][T19713] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  251.879451][T19713] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:53:56 executing program 4 (fault-call:3 fault-nth:35):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  252.020209][T19718] FAULT_INJECTION: forcing a failure.
[  252.020209][T19718] name failslab, interval 1, probability 0, space 0, times 0
[  252.032839][T19718] CPU: 1 PID: 19718 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  252.041256][T19718] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  252.051400][T19718] Call Trace:
[  252.054672][T19718]  dump_stack_lvl+0xb7/0x103
[  252.059262][T19718]  dump_stack+0x11/0x1a
[  252.063413][T19718]  should_fail+0x23c/0x250
[  252.067825][T19718]  ? anon_vma_fork+0x117/0x2b0
[  252.072594][T19718]  __should_failslab+0x81/0x90
[  252.077376][T19718]  should_failslab+0x5/0x20
[  252.081878][T19718]  kmem_cache_alloc+0x46/0x2e0
[  252.086699][T19718]  ? anon_vma_fork+0xb1/0x2b0
[  252.091549][T19718]  anon_vma_fork+0x117/0x2b0
[  252.096144][T19718]  dup_mmap+0x49c/0x9c0
[  252.100299][T19718]  dup_mm+0x7c/0x210
[  252.104191][T19718]  copy_process+0x144f/0x2f90
[  252.108930][T19718]  ? __alloc_pages+0x194/0x320
[  252.113752][T19718]  ? _copy_from_user+0x94/0xd0
[  252.118570][T19718]  kernel_clone+0x14b/0x680
[  252.123067][T19718]  __se_sys_clone3+0x194/0x1d0
[  252.127835][T19718]  ? __cond_resched+0x11/0x40
[  252.132574][T19718]  ? fput+0x2d/0x130
[  252.136466][T19718]  ? ksys_write+0x157/0x180
[  252.141026][T19718]  ? fpregs_assert_state_consistent+0x7d/0x90
[  252.147112][T19718]  ? exit_to_user_mode_prepare+0x65/0x190
[  252.152837][T19718]  __x64_sys_clone3+0x2d/0x40
[  252.157518][T19718]  do_syscall_64+0x3d/0x90
[  252.162072][T19718]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  252.167970][T19718] RIP: 0033:0x4665f9
[  252.171882][T19718] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  252.191506][T19718] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  252.199910][T19718] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  252.207877][T19718] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  252.216104][T19718] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  252.224074][T19718] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  252.232042][T19718] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:53:57 executing program 4 (fault-call:3 fault-nth:36):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  252.330950][T19722] FAULT_INJECTION: forcing a failure.
[  252.330950][T19722] name failslab, interval 1, probability 0, space 0, times 0
[  252.343782][T19722] CPU: 0 PID: 19722 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  252.352194][T19722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  252.362347][T19722] Call Trace:
[  252.365622][T19722]  dump_stack_lvl+0xb7/0x103
[  252.370217][T19722]  dump_stack+0x11/0x1a
[  252.374378][T19722]  should_fail+0x23c/0x250
[  252.378793][T19722]  ? anon_vma_clone+0x8d/0x380
[  252.383565][T19722]  __should_failslab+0x81/0x90
[  252.388330][T19722]  should_failslab+0x5/0x20
[  252.392831][T19722]  kmem_cache_alloc+0x46/0x2e0
[  252.397606][T19722]  ? avc_has_perm_noaudit+0x19a/0x240
[  252.403035][T19722]  anon_vma_clone+0x8d/0x380
[  252.407652][T19722]  anon_vma_fork+0x54/0x2b0
[  252.412163][T19722]  dup_mmap+0x49c/0x9c0
[  252.416319][T19722]  dup_mm+0x7c/0x210
[  252.420218][T19722]  copy_process+0x144f/0x2f90
[  252.424892][T19722]  ? __alloc_pages+0x194/0x320
[  252.429654][T19722]  ? _copy_from_user+0x94/0xd0
[  252.434438][T19722]  kernel_clone+0x14b/0x680
[  252.438957][T19722]  __se_sys_clone3+0x194/0x1d0
[  252.443721][T19722]  ? __cond_resched+0x11/0x40
[  252.448461][T19722]  ? fput+0x2d/0x130
[  252.452357][T19722]  ? ksys_write+0x157/0x180
[  252.456933][T19722]  ? fpregs_assert_state_consistent+0x7d/0x90
[  252.463082][T19722]  ? exit_to_user_mode_prepare+0x65/0x190
[  252.468819][T19722]  __x64_sys_clone3+0x2d/0x40
[  252.473491][T19722]  do_syscall_64+0x3d/0x90
[  252.477939][T19722]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  252.483865][T19722] RIP: 0033:0x4665f9
[  252.487779][T19722] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  252.507380][T19722] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  252.515789][T19722] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  252.523821][T19722] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  252.531824][T19722] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  252.539803][T19722] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  252.547770][T19722] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:53:57 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r0, 0xc020660b, 0x0)
read(r0, &(0x7f0000000200)=""/75, 0x4b)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r2, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r2, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

19:53:57 executing program 4 (fault-call:3 fault-nth:37):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  252.703089][T19725] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  252.762350][T19729] FAULT_INJECTION: forcing a failure.
[  252.762350][T19729] name failslab, interval 1, probability 0, space 0, times 0
[  252.775040][T19729] CPU: 0 PID: 19729 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  252.783447][T19729] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  252.793491][T19729] Call Trace:
[  252.796763][T19729]  dump_stack_lvl+0xb7/0x103
[  252.801384][T19729]  dump_stack+0x11/0x1a
[  252.805537][T19729]  should_fail+0x23c/0x250
[  252.809958][T19729]  ? dup_mmap+0x38e/0x9c0
[  252.814288][T19729]  __should_failslab+0x81/0x90
[  252.819062][T19729]  should_failslab+0x5/0x20
[  252.823568][T19729]  kmem_cache_alloc+0x46/0x2e0
[  252.828327][T19729]  dup_mmap+0x38e/0x9c0
[  252.832503][T19729]  dup_mm+0x7c/0x210
[  252.836392][T19729]  copy_process+0x144f/0x2f90
[  252.841064][T19729]  ? __alloc_pages+0x194/0x320
[  252.845828][T19729]  ? _copy_from_user+0x94/0xd0
[  252.850590][T19729]  kernel_clone+0x14b/0x680
[  252.855153][T19729]  __se_sys_clone3+0x194/0x1d0
[  252.859953][T19729]  ? __cond_resched+0x11/0x40
[  252.864633][T19729]  ? fput+0x2d/0x130
[  252.868528][T19729]  ? ksys_write+0x157/0x180
[  252.873031][T19729]  ? fpregs_assert_state_consistent+0x7d/0x90
[  252.879094][T19729]  ? exit_to_user_mode_prepare+0x65/0x190
[  252.884896][T19729]  __x64_sys_clone3+0x2d/0x40
[  252.889572][T19729]  do_syscall_64+0x3d/0x90
[  252.893981][T19729]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  252.899872][T19729] RIP: 0033:0x4665f9
[  252.903758][T19729] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  252.923363][T19729] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  252.931772][T19729] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  252.939770][T19729] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  252.947739][T19729] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  252.955716][T19729] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  252.963682][T19729] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:53:57 executing program 4 (fault-call:3 fault-nth:38):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  253.102372][T19733] FAULT_INJECTION: forcing a failure.
[  253.102372][T19733] name failslab, interval 1, probability 0, space 0, times 0
[  253.115040][T19733] CPU: 0 PID: 19733 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  253.123450][T19733] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  253.133497][T19733] Call Trace:
[  253.136769][T19733]  dump_stack_lvl+0xb7/0x103
[  253.141405][T19733]  dump_stack+0x11/0x1a
[  253.145558][T19733]  should_fail+0x23c/0x250
[  253.149965][T19733]  ? anon_vma_clone+0x8d/0x380
[  253.154738][T19733]  __should_failslab+0x81/0x90
[  253.159567][T19733]  should_failslab+0x5/0x20
[  253.164080][T19733]  kmem_cache_alloc+0x46/0x2e0
[  253.168841][T19733]  anon_vma_clone+0x8d/0x380
[  253.173433][T19733]  anon_vma_fork+0x54/0x2b0
[  253.177938][T19733]  dup_mmap+0x49c/0x9c0
[  253.182095][T19733]  dup_mm+0x7c/0x210
[  253.186162][T19733]  copy_process+0x144f/0x2f90
[  253.190836][T19733]  ? __alloc_pages+0x194/0x320
[  253.195599][T19733]  ? _copy_from_user+0x94/0xd0
[  253.200358][T19733]  kernel_clone+0x14b/0x680
[  253.204857][T19733]  __se_sys_clone3+0x194/0x1d0
[  253.209615][T19733]  ? __cond_resched+0x11/0x40
[  253.214290][T19733]  ? fput+0x2d/0x130
[  253.218229][T19733]  ? ksys_write+0x157/0x180
[  253.222869][T19733]  ? fpregs_assert_state_consistent+0x7d/0x90
[  253.228931][T19733]  ? exit_to_user_mode_prepare+0x65/0x190
[  253.234692][T19733]  __x64_sys_clone3+0x2d/0x40
[  253.239367][T19733]  do_syscall_64+0x3d/0x90
[  253.243776][T19733]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  253.249664][T19733] RIP: 0033:0x4665f9
[  253.253554][T19733] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  253.273150][T19733] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  253.281556][T19733] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  253.289541][T19733] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  253.297504][T19733] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  253.305469][T19733] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  253.313433][T19733] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:53:58 executing program 4 (fault-call:3 fault-nth:39):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  253.500997][T19737] FAULT_INJECTION: forcing a failure.
[  253.500997][T19737] name failslab, interval 1, probability 0, space 0, times 0
[  253.513669][T19737] CPU: 0 PID: 19737 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  253.522161][T19737] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  253.532208][T19737] Call Trace:
[  253.535478][T19737]  dump_stack_lvl+0xb7/0x103
[  253.540129][T19737]  dump_stack+0x11/0x1a
[  253.544283][T19737]  should_fail+0x23c/0x250
[  253.548722][T19737]  ? anon_vma_clone+0x8d/0x380
[  253.553492][T19737]  __should_failslab+0x81/0x90
[  253.558290][T19737]  should_failslab+0x5/0x20
[  253.562797][T19737]  kmem_cache_alloc+0x46/0x2e0
[  253.567572][T19737]  anon_vma_clone+0x8d/0x380
[  253.572171][T19737]  anon_vma_fork+0x54/0x2b0
[  253.576807][T19737]  dup_mmap+0x49c/0x9c0
[  253.580999][T19737]  dup_mm+0x7c/0x210
[  253.584888][T19737]  copy_process+0x144f/0x2f90
[  253.589565][T19737]  ? __alloc_pages+0x194/0x320
[  253.594334][T19737]  ? _copy_from_user+0x94/0xd0
[  253.599099][T19737]  kernel_clone+0x14b/0x680
[  253.603599][T19737]  __se_sys_clone3+0x194/0x1d0
[  253.608367][T19737]  ? __cond_resched+0x11/0x40
[  253.613137][T19737]  ? fput+0x2d/0x130
[  253.617034][T19737]  ? ksys_write+0x157/0x180
[  253.621536][T19737]  ? fpregs_assert_state_consistent+0x7d/0x90
[  253.627649][T19737]  ? exit_to_user_mode_prepare+0x65/0x190
[  253.633372][T19737]  __x64_sys_clone3+0x2d/0x40
[  253.638044][T19737]  do_syscall_64+0x3d/0x90
[  253.642526][T19737]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  253.648469][T19737] RIP: 0033:0x4665f9
[  253.652367][T19737] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  253.671964][T19737] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  253.680371][T19737] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  253.688337][T19737] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
19:53:58 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r0, 0xc020660b, 0x0)
read(r0, &(0x7f0000000200)=""/75, 0x4b)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r2, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r2, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  253.696350][T19737] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  253.704374][T19737] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  253.712339][T19737] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:53:58 executing program 4 (fault-call:3 fault-nth:40):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  253.800252][T19743] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  253.806918][T19744] FAULT_INJECTION: forcing a failure.
[  253.806918][T19744] name failslab, interval 1, probability 0, space 0, times 0
[  253.820997][T19744] CPU: 0 PID: 19744 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  253.829402][T19744] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  253.839563][T19744] Call Trace:
[  253.842835][T19744]  dump_stack_lvl+0xb7/0x103
[  253.847431][T19744]  dump_stack+0x11/0x1a
[  253.851588][T19744]  should_fail+0x23c/0x250
[  253.855999][T19744]  ? anon_vma_fork+0x117/0x2b0
[  253.860768][T19744]  __should_failslab+0x81/0x90
[  253.865527][T19744]  should_failslab+0x5/0x20
[  253.870036][T19744]  kmem_cache_alloc+0x46/0x2e0
[  253.874794][T19744]  ? anon_vma_fork+0xb1/0x2b0
[  253.879544][T19744]  anon_vma_fork+0x117/0x2b0
[  253.884133][T19744]  dup_mmap+0x49c/0x9c0
[  253.888291][T19744]  dup_mm+0x7c/0x210
[  253.892190][T19744]  copy_process+0x144f/0x2f90
[  253.896864][T19744]  ? __alloc_pages+0x194/0x320
[  253.901626][T19744]  ? _copy_from_user+0x94/0xd0
[  253.906386][T19744]  kernel_clone+0x14b/0x680
[  253.910890][T19744]  __se_sys_clone3+0x194/0x1d0
[  253.915734][T19744]  ? __cond_resched+0x11/0x40
[  253.920407][T19744]  ? fput+0x2d/0x130
[  253.924303][T19744]  ? ksys_write+0x157/0x180
[  253.928807][T19744]  ? fpregs_assert_state_consistent+0x7d/0x90
[  253.934871][T19744]  ? exit_to_user_mode_prepare+0x65/0x190
[  253.940678][T19744]  __x64_sys_clone3+0x2d/0x40
[  253.945399][T19744]  do_syscall_64+0x3d/0x90
[  253.949813][T19744]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  253.955705][T19744] RIP: 0033:0x4665f9
[  253.959646][T19744] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  253.979318][T19744] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  253.987788][T19744] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
19:53:58 executing program 4 (fault-call:3 fault-nth:41):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  253.995754][T19744] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  254.003864][T19744] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  254.011830][T19744] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  254.019807][T19744] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
[  254.081747][T19748] FAULT_INJECTION: forcing a failure.
[  254.081747][T19748] name failslab, interval 1, probability 0, space 0, times 0
[  254.094375][T19748] CPU: 1 PID: 19748 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  254.102858][T19748] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  254.112939][T19748] Call Trace:
[  254.116218][T19748]  dump_stack_lvl+0xb7/0x103
[  254.120807][T19748]  dump_stack+0x11/0x1a
[  254.124966][T19748]  should_fail+0x23c/0x250
[  254.129438][T19748]  ? dup_mmap+0x38e/0x9c0
[  254.133824][T19748]  __should_failslab+0x81/0x90
[  254.138668][T19748]  should_failslab+0x5/0x20
[  254.143175][T19748]  kmem_cache_alloc+0x46/0x2e0
[  254.147935][T19748]  dup_mmap+0x38e/0x9c0
[  254.152130][T19748]  dup_mm+0x7c/0x210
[  254.156045][T19748]  copy_process+0x144f/0x2f90
[  254.160714][T19748]  ? __alloc_pages+0x194/0x320
[  254.165574][T19748]  ? _copy_from_user+0x94/0xd0
[  254.170336][T19748]  kernel_clone+0x14b/0x680
[  254.174836][T19748]  __se_sys_clone3+0x194/0x1d0
[  254.179594][T19748]  ? __cond_resched+0x11/0x40
[  254.184269][T19748]  ? fput+0x2d/0x130
[  254.188160][T19748]  ? ksys_write+0x157/0x180
[  254.192692][T19748]  ? fpregs_assert_state_consistent+0x7d/0x90
[  254.198790][T19748]  ? exit_to_user_mode_prepare+0x65/0x190
[  254.204527][T19748]  __x64_sys_clone3+0x2d/0x40
[  254.209205][T19748]  do_syscall_64+0x3d/0x90
[  254.213621][T19748]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  254.219514][T19748] RIP: 0033:0x4665f9
[  254.223400][T19748] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  254.243003][T19748] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  254.251407][T19748] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  254.259371][T19748] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  254.267380][T19748] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  254.275353][T19748] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  254.283371][T19748] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:53:59 executing program 4 (fault-call:3 fault-nth:42):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  254.451771][T19752] FAULT_INJECTION: forcing a failure.
[  254.451771][T19752] name failslab, interval 1, probability 0, space 0, times 0
[  254.464452][T19752] CPU: 1 PID: 19752 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  254.472862][T19752] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  254.482920][T19752] Call Trace:
[  254.486192][T19752]  dump_stack_lvl+0xb7/0x103
[  254.490788][T19752]  dump_stack+0x11/0x1a
[  254.495051][T19752]  should_fail+0x23c/0x250
[  254.499460][T19752]  ? anon_vma_clone+0x8d/0x380
[  254.504226][T19752]  __should_failslab+0x81/0x90
[  254.508999][T19752]  should_failslab+0x5/0x20
[  254.513497][T19752]  kmem_cache_alloc+0x46/0x2e0
[  254.518254][T19752]  ? avc_has_perm_noaudit+0x19a/0x240
[  254.523631][T19752]  anon_vma_clone+0x8d/0x380
[  254.528227][T19752]  anon_vma_fork+0x54/0x2b0
[  254.532762][T19752]  dup_mmap+0x49c/0x9c0
[  254.536951][T19752]  dup_mm+0x7c/0x210
[  254.540848][T19752]  copy_process+0x144f/0x2f90
[  254.545586][T19752]  ? __alloc_pages+0x194/0x320
[  254.550350][T19752]  ? _copy_from_user+0x94/0xd0
[  254.555147][T19752]  kernel_clone+0x14b/0x680
[  254.559647][T19752]  __se_sys_clone3+0x194/0x1d0
[  254.564412][T19752]  ? __cond_resched+0x11/0x40
[  254.569086][T19752]  ? fput+0x2d/0x130
[  254.572979][T19752]  ? ksys_write+0x157/0x180
[  254.577470][T19752]  ? fpregs_assert_state_consistent+0x7d/0x90
[  254.583532][T19752]  ? exit_to_user_mode_prepare+0x65/0x190
[  254.589340][T19752]  __x64_sys_clone3+0x2d/0x40
[  254.594015][T19752]  do_syscall_64+0x3d/0x90
19:53:59 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r0, 0xc020660b, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r2, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r2, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  254.598426][T19752]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  254.604399][T19752] RIP: 0033:0x4665f9
[  254.608283][T19752] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  254.627894][T19752] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  254.636299][T19752] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  254.644300][T19752] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  254.652268][T19752] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  254.660230][T19752] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  254.668241][T19752] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
[  254.684088][T19754] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
19:53:59 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r0, 0xc020660b, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r2, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r2, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

19:53:59 executing program 4 (fault-call:3 fault-nth:43):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  254.763610][T19758] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  254.806867][T19760] FAULT_INJECTION: forcing a failure.
[  254.806867][T19760] name failslab, interval 1, probability 0, space 0, times 0
[  254.819491][T19760] CPU: 0 PID: 19760 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  254.827941][T19760] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  254.838001][T19760] Call Trace:
[  254.841272][T19760]  dump_stack_lvl+0xb7/0x103
[  254.845857][T19760]  dump_stack+0x11/0x1a
[  254.850091][T19760]  should_fail+0x23c/0x250
19:53:59 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r0, 0xc020660b, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r2, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r2, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  254.854580][T19760]  ? dup_mmap+0x38e/0x9c0
[  254.858908][T19760]  __should_failslab+0x81/0x90
[  254.863702][T19760]  should_failslab+0x5/0x20
[  254.868218][T19760]  kmem_cache_alloc+0x46/0x2e0
[  254.872986][T19760]  ? anon_vma_fork+0x273/0x2b0
[  254.877760][T19760]  dup_mmap+0x38e/0x9c0
[  254.881915][T19760]  dup_mm+0x7c/0x210
[  254.885808][T19760]  copy_process+0x144f/0x2f90
[  254.890483][T19760]  ? __alloc_pages+0x194/0x320
[  254.895243][T19760]  ? _copy_from_user+0x94/0xd0
[  254.895447][T19762] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  254.900027][T19760]  kernel_clone+0x14b/0x680
[  254.900049][T19760]  __se_sys_clone3+0x194/0x1d0
[  254.917454][T19760]  ? __cond_resched+0x11/0x40
[  254.922127][T19760]  ? fput+0x2d/0x130
[  254.926069][T19760]  ? ksys_write+0x157/0x180
[  254.930583][T19760]  ? fpregs_assert_state_consistent+0x7d/0x90
[  254.936650][T19760]  ? exit_to_user_mode_prepare+0x65/0x190
[  254.942434][T19760]  __x64_sys_clone3+0x2d/0x40
[  254.947107][T19760]  do_syscall_64+0x3d/0x90
[  254.951560][T19760]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  254.957451][T19760] RIP: 0033:0x4665f9
[  254.961335][T19760] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  254.980938][T19760] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  254.990087][T19760] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  254.998051][T19760] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
19:53:59 executing program 1:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
read(r0, &(0x7f0000000200)=""/75, 0x4b)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r2, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(r0, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r2, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  255.006020][T19760] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  255.013987][T19760] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  255.021958][T19760] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:53:59 executing program 4 (fault-call:3 fault-nth:44):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  255.101275][T19768] FAULT_INJECTION: forcing a failure.
[  255.101275][T19768] name failslab, interval 1, probability 0, space 0, times 0
[  255.113906][T19768] CPU: 0 PID: 19768 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  255.122313][T19768] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  255.132362][T19768] Call Trace:
[  255.135637][T19768]  dump_stack_lvl+0xb7/0x103
[  255.140267][T19768]  dump_stack+0x11/0x1a
[  255.144419][T19768]  should_fail+0x23c/0x250
[  255.148830][T19768]  ? anon_vma_clone+0x8d/0x380
[  255.153666][T19768]  __should_failslab+0x81/0x90
[  255.158511][T19768]  should_failslab+0x5/0x20
[  255.163070][T19768]  kmem_cache_alloc+0x46/0x2e0
[  255.167832][T19768]  anon_vma_clone+0x8d/0x380
[  255.172430][T19768]  anon_vma_fork+0x54/0x2b0
[  255.176937][T19768]  dup_mmap+0x49c/0x9c0
[  255.181132][T19768]  dup_mm+0x7c/0x210
[  255.185038][T19768]  copy_process+0x144f/0x2f90
[  255.189734][T19768]  ? __alloc_pages+0x194/0x320
[  255.194499][T19768]  ? _copy_from_user+0x94/0xd0
[  255.199261][T19768]  kernel_clone+0x14b/0x680
[  255.203759][T19768]  __se_sys_clone3+0x194/0x1d0
[  255.208654][T19768]  ? __cond_resched+0x11/0x40
[  255.213349][T19768]  ? fput+0x2d/0x130
[  255.217244][T19768]  ? ksys_write+0x157/0x180
[  255.221846][T19768]  ? fpregs_assert_state_consistent+0x7d/0x90
[  255.227912][T19768]  ? exit_to_user_mode_prepare+0x65/0x190
[  255.233655][T19768]  __x64_sys_clone3+0x2d/0x40
[  255.238330][T19768]  do_syscall_64+0x3d/0x90
[  255.242799][T19768]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  255.248698][T19768] RIP: 0033:0x4665f9
[  255.252654][T19768] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  255.272379][T19768] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  255.280786][T19768] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  255.288756][T19768] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  255.296720][T19768] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  255.304685][T19768] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  255.312644][T19768] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
[  255.326509][T19769] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
19:54:00 executing program 4 (fault-call:3 fault-nth:45):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  255.472035][T19773] FAULT_INJECTION: forcing a failure.
[  255.472035][T19773] name failslab, interval 1, probability 0, space 0, times 0
[  255.484744][T19773] CPU: 1 PID: 19773 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  255.493219][T19773] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  255.503291][T19773] Call Trace:
[  255.506562][T19773]  dump_stack_lvl+0xb7/0x103
[  255.511154][T19773]  dump_stack+0x11/0x1a
[  255.515344][T19773]  should_fail+0x23c/0x250
[  255.519755][T19773]  ? anon_vma_fork+0xb1/0x2b0
[  255.524437][T19773]  __should_failslab+0x81/0x90
[  255.529196][T19773]  should_failslab+0x5/0x20
[  255.533699][T19773]  kmem_cache_alloc+0x46/0x2e0
[  255.538460][T19773]  anon_vma_fork+0xb1/0x2b0
[  255.543025][T19773]  dup_mmap+0x49c/0x9c0
[  255.547181][T19773]  dup_mm+0x7c/0x210
[  255.551069][T19773]  copy_process+0x144f/0x2f90
[  255.555883][T19773]  ? __alloc_pages+0x194/0x320
[  255.560645][T19773]  ? _copy_from_user+0x94/0xd0
[  255.565442][T19773]  kernel_clone+0x14b/0x680
[  255.570000][T19773]  __se_sys_clone3+0x194/0x1d0
[  255.574762][T19773]  ? __cond_resched+0x11/0x40
[  255.579440][T19773]  ? fput+0x2d/0x130
[  255.583386][T19773]  ? ksys_write+0x157/0x180
[  255.587884][T19773]  ? fpregs_assert_state_consistent+0x7d/0x90
[  255.593946][T19773]  ? exit_to_user_mode_prepare+0x65/0x190
[  255.599670][T19773]  __x64_sys_clone3+0x2d/0x40
[  255.604345][T19773]  do_syscall_64+0x3d/0x90
[  255.608765][T19773]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  255.614657][T19773] RIP: 0033:0x4665f9
[  255.618540][T19773] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  255.638142][T19773] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  255.646569][T19773] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  255.654580][T19773] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  255.662545][T19773] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  255.670504][T19773] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  255.678471][T19773] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:00 executing program 4 (fault-call:3 fault-nth:46):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  255.766294][T19777] FAULT_INJECTION: forcing a failure.
[  255.766294][T19777] name failslab, interval 1, probability 0, space 0, times 0
[  255.778922][T19777] CPU: 0 PID: 19777 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  255.787333][T19777] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  255.797380][T19777] Call Trace:
[  255.800647][T19777]  dump_stack_lvl+0xb7/0x103
[  255.805233][T19777]  dump_stack+0x11/0x1a
[  255.809384][T19777]  should_fail+0x23c/0x250
[  255.813796][T19777]  ? anon_vma_clone+0x8d/0x380
[  255.818722][T19777]  __should_failslab+0x81/0x90
[  255.823522][T19777]  should_failslab+0x5/0x20
[  255.828020][T19777]  kmem_cache_alloc+0x46/0x2e0
[  255.832796][T19777]  anon_vma_clone+0x8d/0x380
[  255.837551][T19777]  anon_vma_fork+0x54/0x2b0
[  255.842057][T19777]  dup_mmap+0x49c/0x9c0
[  255.846210][T19777]  dup_mm+0x7c/0x210
[  255.850096][T19777]  copy_process+0x144f/0x2f90
[  255.854776][T19777]  ? __alloc_pages+0x194/0x320
[  255.859537][T19777]  ? _copy_from_user+0x94/0xd0
[  255.864302][T19777]  kernel_clone+0x14b/0x680
[  255.868802][T19777]  __se_sys_clone3+0x194/0x1d0
[  255.873562][T19777]  ? __cond_resched+0x11/0x40
[  255.878305][T19777]  ? fput+0x2d/0x130
[  255.882252][T19777]  ? ksys_write+0x157/0x180
[  255.886834][T19777]  ? fpregs_assert_state_consistent+0x7d/0x90
[  255.892898][T19777]  ? exit_to_user_mode_prepare+0x65/0x190
[  255.898690][T19777]  __x64_sys_clone3+0x2d/0x40
[  255.903427][T19777]  do_syscall_64+0x3d/0x90
[  255.907862][T19777]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  255.913761][T19777] RIP: 0033:0x4665f9
[  255.917648][T19777] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  255.937344][T19777] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  255.945802][T19777] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  255.953821][T19777] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  255.961786][T19777] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  255.969755][T19777] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  255.977721][T19777] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:00 executing program 1:
read(0xffffffffffffffff, &(0x7f0000000200)=""/75, 0x4b)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

19:54:00 executing program 4 (fault-call:3 fault-nth:47):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  256.090916][T19781] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
19:54:00 executing program 1:
read(0xffffffffffffffff, &(0x7f0000000200)=""/75, 0x4b)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  256.141206][T19783] FAULT_INJECTION: forcing a failure.
[  256.141206][T19783] name failslab, interval 1, probability 0, space 0, times 0
[  256.153847][T19783] CPU: 1 PID: 19783 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  256.162286][T19783] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  256.172328][T19783] Call Trace:
[  256.175602][T19783]  dump_stack_lvl+0xb7/0x103
[  256.180194][T19783]  dump_stack+0x11/0x1a
[  256.184405][T19783]  should_fail+0x23c/0x250
[  256.188813][T19783]  ? anon_vma_fork+0xb1/0x2b0
[  256.193495][T19783]  __should_failslab+0x81/0x90
[  256.198258][T19783]  should_failslab+0x5/0x20
[  256.202787][T19783]  kmem_cache_alloc+0x46/0x2e0
[  256.207572][T19783]  anon_vma_fork+0xb1/0x2b0
[  256.212074][T19783]  dup_mmap+0x49c/0x9c0
[  256.216231][T19783]  dup_mm+0x7c/0x210
[  256.220125][T19783]  copy_process+0x144f/0x2f90
[  256.224797][T19783]  ? __alloc_pages+0x194/0x320
[  256.229615][T19783]  ? _copy_from_user+0x94/0xd0
[  256.234439][T19783]  kernel_clone+0x14b/0x680
[  256.238937][T19783]  __se_sys_clone3+0x194/0x1d0
[  256.243780][T19783]  ? __cond_resched+0x11/0x40
[  256.248476][T19783]  ? fput+0x2d/0x130
[  256.252376][T19783]  ? ksys_write+0x157/0x180
[  256.256890][T19783]  ? fpregs_assert_state_consistent+0x7d/0x90
[  256.262962][T19783]  ? exit_to_user_mode_prepare+0x65/0x190
[  256.268684][T19783]  __x64_sys_clone3+0x2d/0x40
[  256.273425][T19783]  do_syscall_64+0x3d/0x90
[  256.277835][T19783]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  256.283754][T19783] RIP: 0033:0x4665f9
[  256.287648][T19783] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  256.307332][T19783] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  256.313430][T19787] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  256.315734][T19783] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  256.315748][T19783] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  256.315759][T19783] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  256.347800][T19783] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  256.355768][T19783] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:01 executing program 1:
read(0xffffffffffffffff, &(0x7f0000000200)=""/75, 0x4b)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

19:54:01 executing program 4 (fault-call:3 fault-nth:48):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  256.455224][T19791] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  256.470615][T19793] FAULT_INJECTION: forcing a failure.
[  256.470615][T19793] name failslab, interval 1, probability 0, space 0, times 0
[  256.483247][T19793] CPU: 0 PID: 19793 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  256.491648][T19793] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  256.501694][T19793] Call Trace:
[  256.504965][T19793]  dump_stack_lvl+0xb7/0x103
[  256.509551][T19793]  dump_stack+0x11/0x1a
[  256.513709][T19793]  should_fail+0x23c/0x250
[  256.518118][T19793]  ? anon_vma_clone+0x8d/0x380
[  256.522926][T19793]  __should_failslab+0x81/0x90
[  256.527686][T19793]  should_failslab+0x5/0x20
[  256.532188][T19793]  kmem_cache_alloc+0x46/0x2e0
[  256.536952][T19793]  ? avc_has_perm_noaudit+0x19a/0x240
[  256.542318][T19793]  anon_vma_clone+0x8d/0x380
[  256.546985][T19793]  anon_vma_fork+0x54/0x2b0
[  256.551485][T19793]  dup_mmap+0x49c/0x9c0
[  256.555693][T19793]  dup_mm+0x7c/0x210
[  256.559583][T19793]  copy_process+0x144f/0x2f90
[  256.564304][T19793]  ? __alloc_pages+0x194/0x320
[  256.569063][T19793]  ? _copy_from_user+0x94/0xd0
[  256.573823][T19793]  kernel_clone+0x14b/0x680
[  256.578319][T19793]  __se_sys_clone3+0x194/0x1d0
[  256.583081][T19793]  ? __cond_resched+0x11/0x40
[  256.587758][T19793]  ? fput+0x2d/0x130
[  256.591653][T19793]  ? ksys_write+0x157/0x180
[  256.596151][T19793]  ? fpregs_assert_state_consistent+0x7d/0x90
[  256.602217][T19793]  ? exit_to_user_mode_prepare+0x65/0x190
[  256.607935][T19793]  __x64_sys_clone3+0x2d/0x40
[  256.612657][T19793]  do_syscall_64+0x3d/0x90
[  256.617113][T19793]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  256.623006][T19793] RIP: 0033:0x4665f9
[  256.626893][T19793] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  256.646496][T19793] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  256.654903][T19793] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  256.662868][T19793] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  256.670844][T19793] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  256.678839][T19793] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  256.686806][T19793] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:01 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  256.814727][T19796] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
19:54:01 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  256.894847][T19798] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
19:54:01 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  256.974484][T19800] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
19:54:01 executing program 4 (fault-call:3 fault-nth:49):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:01 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  257.063355][T19804] FAULT_INJECTION: forcing a failure.
[  257.063355][T19804] name failslab, interval 1, probability 0, space 0, times 0
[  257.076001][T19804] CPU: 1 PID: 19804 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  257.084403][T19804] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  257.094498][T19804] Call Trace:
[  257.097772][T19804]  dump_stack_lvl+0xb7/0x103
[  257.102361][T19804]  dump_stack+0x11/0x1a
[  257.106511][T19804]  should_fail+0x23c/0x250
[  257.110926][T19804]  ? anon_vma_clone+0x8d/0x380
[  257.115750][T19804]  __should_failslab+0x81/0x90
[  257.120506][T19804]  should_failslab+0x5/0x20
[  257.125037][T19804]  kmem_cache_alloc+0x46/0x2e0
[  257.129794][T19804]  anon_vma_clone+0x8d/0x380
[  257.130021][T19807] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  257.134381][T19804]  anon_vma_fork+0x54/0x2b0
[  257.134408][T19804]  dup_mmap+0x49c/0x9c0
[  257.151205][T19804]  dup_mm+0x7c/0x210
[  257.155095][T19804]  copy_process+0x144f/0x2f90
[  257.160198][T19804]  ? __alloc_pages+0x194/0x320
[  257.164957][T19804]  ? _copy_from_user+0x94/0xd0
[  257.169811][T19804]  kernel_clone+0x14b/0x680
[  257.174336][T19804]  __se_sys_clone3+0x194/0x1d0
[  257.179097][T19804]  ? __cond_resched+0x11/0x40
[  257.183772][T19804]  ? fput+0x2d/0x130
[  257.187713][T19804]  ? ksys_write+0x157/0x180
[  257.192220][T19804]  ? fpregs_assert_state_consistent+0x7d/0x90
[  257.198282][T19804]  ? exit_to_user_mode_prepare+0x65/0x190
[  257.204010][T19804]  __x64_sys_clone3+0x2d/0x40
[  257.208698][T19804]  do_syscall_64+0x3d/0x90
19:54:01 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f0000051a40)={0x753, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r1=>0x0}], 0x1f, "12c0116b686a4c"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000052a40)={0x0, ""/256, 0x0, <r2=>0x0})
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000640)={0x0, 0xfffffffffffffffe, 0x5c, 0x6b, @buffer={0x0, 0x98, &(0x7f0000000240)=""/152}, &(0x7f0000000080)="affa6ca199220481a27ebe7714bb689ecd9270faba5871070d6bd2d7f288cc3f3c69ff1cb11393035c67e10356f2ec2012c011a16cd658a64e8f67193da32b880e1180fd6816b46f0966652378adca32568eb3f1f0d66aee07d0308f", &(0x7f0000000180)=""/124, 0x8e, 0x10030, 0x1, &(0x7f0000000300)})
ioctl$SG_IO(r3, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r4 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r4, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r3, 0x81f8943c, &(0x7f0000000440)={<r5=>0x0, ""/256, <r6=>0x0, <r7=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r4, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r7}, {0x0, r7}, {r6}, {r6}, {r6, r7}, {}, {}, {0x0, r7}, {}, {r6, r7}, {0x0, r7}, {}, {r5, r7}, {0x0, r7}, {}, {r6, r7}, {0x0, r7}, {}, {}, {}, {0x0, r7}, {r6}, {0x0, r7}, {0x0, r7}, {r6}, {0x0, r7}, {r5}, {}, {r5}, {0x0, r7}, {}, {}, {r5, r7}, {r6}, {}, {0x0, r7}, {r6, r7}, {0x0, r7}, {r5, r7}, {}, {0x0, r7}, {r6}, {}, {0x0, r7}, {r6}, {0x0, r7}, {r6}, {0x0, r7}, {}, {r5, r7}, {0x0, r7}, {r5}, {}, {r6}, {r5}, {}, {r6, r7}, {}, {0x0, r7}, {0x0, r7}, {0x0, r7}, {0x0, r7}, {r6, r7}, {0x0, r7}, {0x0, r7}, {0x0, r7}, {r6}, {r5, r7}, {}, {r5}, {}, {}, {0x0, r7}, {}, {r6}, {r5}, {}, {}, {}, {0x0, r7}, {r6}, {}, {}, {0x0, r7}, {r5}, {0x0, r7}, {0x0, r7}, {0x0, r7}, {r6, r7}, {}, {}, {0x0, r7}, {}, {r5}, {0x0, r7}, {}, {r6}, {r5, r7}, {0x0, r7}, {r5}, {r6, r7}, {0x0, r7}, {0x0, r7}, {0x0, r7}, {}, {0x0, r7}, {r5}, {r5, r7}, {}, {0x0, r7}, {r5, r7}, {0x0, r7}, {r6, r7}, {r5, r7}, {r6}, {}, {r5, r7}, {r5}, {r6, r7}, {}, {r5}, {r5, r7}, {}, {}, {0x0, r7}, {0x0, r7}, {0x0, r7}, {r6, r7}, {}, {}, {r5, r7}, {<r8=>0x0, r7}, {r6, r7}, {r5, r7}, {r6, r7}, {0x0, r7}, {}, {r6, r7}, {r6}, {}, {0x0, r7}, {r5}, {0x0, r7}, {r6, r7}, {r5}, {0x0, r7}, {r6, r7}, {0x0, r7}, {0x0, r7}, {}, {0x0, r7}, {r6}, {0x0, r7}, {r6}, {r5}, {}, {}, {}, {0x0, r7}, {r5, r7}, {r6, r7}, {}, {}, {}, {r6}, {0x0, r7}, {}, {}, {r5, <r9=>0x0}, {r5}, {0x0, r7}, {r5, r7}, {r6, r7}, {0x0, r7}, {r5}, {}, {r5}, {0x0, r7}, {r6}, {r5, r7}, {r5, r7}, {0x0, r7}, {0x0, r7}, {}, {}, {0x0, r7}, {r6}, {r5}, {}, {r5}, {r6}, {0x0, r7}, {r6, r7}, {0x0, r7}, {r6, r7}, {0x0, r7}, {}, {r6, r7}, {r5, r7}, {r6}, {r6, r7}, {}, {}, {r5}, {}, {r5}, {r6}, {}, {r5, r7}, {}, {}, {0x0, r7}, {r6}, {0x0, r7}, {r5}, {r6}, {r6}, {}, {}, {r6}, {0x0, r7}, {0x0, r7}, {r5, r7}, {r5}, {}, {0x0, r7}, {}, {}, {r6, r7}, {r5}, {0x0, r7}, {r5}, {r6, r7}, {r5, r7}, {r6, r7}, {r6}, {r5, r7}, {}, {}, {r6}, {r5, r7}, {0x0, r7}, {r5, r7}, {0x0, r7}, {r6}, {r6}, {}, {0x0, r7}, {r6, r7}, {}, {0x0, r7}, {}, {}, {0x0, r7}, {r5, r7}], 0x1, "2156816c73038c"})
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r10 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r10, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={<r11=>0x0, ""/256, <r12=>0x0, <r13=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r10, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r13}, {0x0, r13}, {r12}, {r12}, {r12, r13}, {}, {}, {0x0, r13}, {}, {r12, r13}, {0x0, r13}, {}, {r11, r13}, {0x0, r13}, {}, {r12, r13}, {0x0, r13}, {}, {}, {}, {0x0, r13}, {r12}, {0x0, r13}, {0x0, r13}, {r12}, {0x0, r13}, {r11}, {}, {r11}, {0x0, r13}, {}, {}, {r11, r13}, {r12}, {}, {0x0, r13}, {r12, r13}, {0x0, r13}, {r11, r13}, {}, {0x0, r13}, {r12}, {}, {0x0, r13}, {r12}, {0x0, r13}, {r12}, {0x0, r13}, {}, {r11, r13}, {0x0, r13}, {r11}, {}, {r12}, {r11}, {}, {r12, r13}, {}, {0x0, r13}, {0x0, r13}, {0x0, r13}, {0x0, r13}, {r12, r13}, {0x0, r13}, {0x0, r13}, {0x0, r13}, {r12}, {r11, r13}, {}, {r11}, {}, {}, {0x0, r13}, {}, {r12}, {r11}, {}, {}, {}, {0x0, r13}, {r12}, {}, {}, {0x0, r13}, {r11}, {0x0, r13}, {0x0, r13}, {0x0, r13}, {r12, r13}, {}, {}, {0x0, r13}, {}, {r11}, {0x0, r13}, {}, {r12}, {r11, r13}, {0x0, r13}, {r11}, {r12, r13}, {0x0, r13}, {0x0, r13}, {0x0, r13}, {}, {0x0, r13}, {r11}, {r11, r13}, {}, {0x0, r13}, {r11, r13}, {0x0, r13}, {r12, r13}, {r11, r13}, {r12}, {}, {r11, r13}, {r11}, {r12, r13}, {}, {r11}, {r11, r13}, {}, {}, {0x0, r13}, {0x0, r13}, {0x0, r13}, {r12, r13}, {}, {}, {r11, r13}, {0x0, r13}, {r12, r13}, {r11, r13}, {r12, r13}, {0x0, r13}, {}, {r12, r13}, {r12}, {}, {0x0, r13}, {r11}, {0x0, r13}, {r12, r13}, {r11}, {0x0, r13}, {r12, r13}, {0x0, r13}, {0x0, r13}, {}, {0x0, r13}, {r12}, {0x0, r13}, {r12}, {r11}, {}, {}, {}, {0x0, r13}, {r11, r13}, {r12, r13}, {}, {}, {}, {r12}, {0x0, r13}, {}, {}, {r11}, {r11}, {0x0, r13}, {r11, r13}, {r12, r13}, {0x0, r13}, {r11}, {}, {r11}, {0x0, r13}, {r12}, {r11, r13}, {r11, r13}, {0x0, r13}, {0x0, r13}, {}, {}, {0x0, r13}, {r12}, {r11}, {}, {r11}, {r12}, {0x0, r13}, {r12, r13}, {0x0, r13}, {r12, r13}, {0x0, r13}, {}, {r12, r13}, {r11, r13}, {r12}, {r12, r13}, {}, {}, {r11}, {}, {r11}, {r12}, {}, {r11, r13}, {}, {}, {0x0, r13}, {r12}, {0x0, r13}, {r11}, {r12}, {r12}, {}, {}, {r12}, {0x0, r13}, {0x0, r13}, {r11, r13}, {r11}, {}, {0x0, r13}, {}, {}, {r12, r13}, {r11}, {0x0, r13}, {r11}, {r12, r13}, {r11, r13}, {r12, r13}, {r12}, {r11, r13}, {}, {}, {r12}, {r11, r13}, {0x0, r13}, {r11, r13}, {0x0, r13}, {r12}, {r12}, {}, {0x0, r13}, {r12, r13}, {}, {0x0, r13}, {}, {}, {0x0, r13}, {r11, r13}], 0x1, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000052c40)={0x81, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r14=>0x0}], 0x6, "f550792a5d3f76"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000053c40)={0x0, ""/256, <r15=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000053e40)={0x0, ""/256, 0x0, <r16=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000054040)={0x7, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r9}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r1, r2}, {r5}, {r11, r14}, {r15, r16}], 0x3, "5823f06a3ef6cc"})
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

[  257.213113][T19804]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  257.219039][T19804] RIP: 0033:0x4665f9
[  257.222929][T19804] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  257.242530][T19804] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  257.250932][T19804] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  257.258899][T19804] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  257.266861][T19804] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  257.274823][T19804] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  257.282792][T19804] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
[  257.286245][    C0] sd 0:0:1:0: tag#7835 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  257.300596][    C0] sd 0:0:1:0: tag#7835 CDB: opcode=0xe5 (vendor)
19:54:02 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

19:54:02 executing program 4 (fault-call:3 fault-nth:50):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  257.306961][    C0] sd 0:0:1:0: tag#7835 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  257.316001][    C0] sd 0:0:1:0: tag#7835 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  257.325028][    C0] sd 0:0:1:0: tag#7835 CDB[20]: ba
[  257.343123][T19809] debugfs: Directory 'sg0' with parent 'block' already present!
[  257.350943][T19809] blktrace: debugfs_dir not present for sg0 so skipping
[  257.375669][T19815] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  257.393432][    C0] sd 0:0:1:0: tag#7836 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  257.403269][    C0] sd 0:0:1:0: tag#7836 CDB: opcode=0xe5 (vendor)
[  257.409589][    C0] sd 0:0:1:0: tag#7836 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  257.418651][    C0] sd 0:0:1:0: tag#7836 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  257.427689][    C0] sd 0:0:1:0: tag#7836 CDB[20]: ba
[  257.438571][T19817] FAULT_INJECTION: forcing a failure.
[  257.438571][T19817] name failslab, interval 1, probability 0, space 0, times 0
[  257.451215][T19817] CPU: 1 PID: 19817 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  257.459621][T19817] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  257.469668][T19817] Call Trace:
[  257.472940][T19817]  dump_stack_lvl+0xb7/0x103
[  257.477529][T19817]  dump_stack+0x11/0x1a
[  257.481734][T19817]  should_fail+0x23c/0x250
[  257.486145][T19817]  ? anon_vma_clone+0x8d/0x380
[  257.490910][T19817]  __should_failslab+0x81/0x90
[  257.495674][T19817]  should_failslab+0x5/0x20
[  257.500176][T19817]  kmem_cache_alloc+0x46/0x2e0
[  257.505044][T19817]  anon_vma_clone+0x8d/0x380
[  257.509637][T19817]  anon_vma_fork+0x54/0x2b0
[  257.514168][T19817]  dup_mmap+0x49c/0x9c0
[  257.518326][T19817]  dup_mm+0x7c/0x210
19:54:02 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  257.522268][T19817]  copy_process+0x144f/0x2f90
[  257.526942][T19817]  ? __alloc_pages+0x194/0x320
[  257.531731][T19817]  ? _copy_from_user+0x94/0xd0
[  257.536541][T19817]  kernel_clone+0x14b/0x680
[  257.541043][T19817]  __se_sys_clone3+0x194/0x1d0
[  257.545800][T19817]  ? __cond_resched+0x11/0x40
[  257.550477][T19817]  ? fput+0x2d/0x130
[  257.554371][T19817]  ? ksys_write+0x157/0x180
[  257.558862][T19817]  ? fpregs_assert_state_consistent+0x7d/0x90
[  257.564924][T19817]  ? exit_to_user_mode_prepare+0x65/0x190
[  257.570681][T19817]  __x64_sys_clone3+0x2d/0x40
[  257.571035][T19819] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  257.575373][T19817]  do_syscall_64+0x3d/0x90
[  257.575394][T19817]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  257.593788][T19817] RIP: 0033:0x4665f9
[  257.597670][T19817] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  257.617498][T19817] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
19:54:02 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x0, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

19:54:02 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
r2 = syz_open_pts(r1, 0x288101)
r3 = ioctl$TIOCGPTPEER(r2, 0x5441, 0x2)
ioctl$F2FS_IOC_GET_PIN_FILE(r3, 0x8004f50e, &(0x7f0000000080))
dup(r2)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r1, 0x1, &(0x7f0000000000)=ANY=[@ANYBLOB="10000000000100000700000000000000000000fa2896bde15bbf3fd0"])
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

[  257.625903][T19817] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  257.633868][T19817] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  257.641834][T19817] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  257.649799][T19817] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  257.657779][T19817] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
[  257.663983][T19821] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
19:54:02 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  257.708699][T19823] debugfs: Directory 'sg0' with parent 'block' already present!
[  257.716402][T19823] blktrace: debugfs_dir not present for sg0 so skipping
19:54:02 executing program 4 (fault-call:3 fault-nth:51):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:02 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

19:54:02 executing program 3:
r0 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x44000, 0x0)
ioctl$TIOCGPTLCK(r0, 0x80045439, &(0x7f0000000080))
syz_open_dev$sg(&(0x7f0000000000), 0x2000000001, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000262000/0x4000)=nil, 0x4000, 0x1800003, 0x2010, r2, 0xb4294000)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
r3 = clone3(&(0x7f0000000100)={0x30000000, 0x0, 0x0, 0x0, {}, 0x0, 0xfffffffffffffd85, 0x0, 0x0, 0x0, {r2}}, 0x58)
setresuid(0x0, 0x0, 0x0)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r5=>0x0}, &(0x7f0000cab000)=0xc)
setresuid(0x0, r5, 0x0)
syz_mount_image$nfs(&(0x7f0000000200), &(0x7f0000000240)='./file0\x00', 0xfffffffffffffffd, 0x6, &(0x7f0000000640)=[{&(0x7f0000000280)="f86fdc12990502a944c80c9bc29713c68efab64c5f9a65f0b6652420248cfcef1508462f9649f009c42196d23a450ae427dddb994ac107cc3d6896734ac05ba0591c6b16333f219c834235e45d0216083ee24794a63543af02d732d0be48f31dfd964e94c2d3068112c6ed32d6a1f508d3a1464ad80044309d0880c78f37ff0f56b53c7b12c30f22f61bab2ed91d7d8646ef0d4da3d6914c7e70c22487f5f09a8933fec2c8dacff80877f55d7e7ba4f5826cbac06bdf03f411e7e43566a88261ac5809c8df70c414d06f255278cc700cdcdcea", 0xd3, 0x6}, {&(0x7f0000000380)="ed55d10b40a3ff72b9f042dfa199926eda734114e114178e33b7f47319f6ca852cd727b85fc3d992712197b7cb5c153645a9915d2e5136ecc5f7de34ca5ce4df5170bfb9a61e56642aad5bc2ec6b659b3e86953521d2d2d6caed32a7d95f1dc547a5f8170a6d40ba4e5896920cdbc737f05332e362b4e7613518c47f5a57fff080b55efe586faa7dafc07c6339ee2ab3c6b75accf3432a22fb22ee3c6ff62b2d8445305a3511f9286636c3a07bfda8c2400a995c", 0xb4, 0x8001}, {&(0x7f0000000440)="c7c44f9915cb24195c8c4d225017a3e5a01ec0c0995c65ed80624fdf0c75abc52fc908333e42f5d043b85691ee4c2e888e9e81a059ad7f2c3fe77a37b668f944446e9ff9c30f1013cc81e5d6785293c5648ff9b172547debca7f0e19c65420c41b4e19e1ef77e516846e0188cde422b14b2eb9b5", 0x74}, {&(0x7f00000004c0)="0fda66ceeabc3487d3f6ee24602f6f209935efa1decab2023ad0e021f40b5ae605c931668e9469461d49", 0x2a, 0xfff}, {&(0x7f0000000500)="5a83e1eaf4eec17c2baede18119cacc42bc64edee29337a0deb75a23c374ce1dc7289f200b8b424d72c4e76a60ca0f5be153ef544ed4ea4456bc094c7152916cdf463318c2ffbe8a3b3f5ceed5c2b1f8cb6cb8663e368acaf4fc8a5796d89b414284f80af933f718e22c583fd4e1c9865a", 0x71, 0x80000000}, {&(0x7f0000000580)="ea17b0e3a2df7b2cd7f5b73b0adf37fea4e4fea16aef905f26971e483091ad8e83f424f64a7a771b3a5f19cdd2e18c975abc8f327a4fe3e043d4511d3867451875fd7ed1e2a12318cc9243775f6b1bda99f028c2f3ace716c33313ef1ba4fc95e30192f2ef4a2be2bb2b59d94bc25f303c0b5996da0f861ffc7ea0580cdc21c5f37d", 0x82, 0x2}], 0x1000000, &(0x7f0000000800)={[{'!(^{'}, {}, {'/dev/null\x00'}, {'\xbdS`\xbb\xf5\xbb<\xb5\xa6\x92\xb5\x81\xe4\xd9\x8f\xad\a{'}, {}, {'\x00'}], [{@appraise}, {@fowner_lt}, {@uid_gt}, {@dont_measure}, {@fowner_gt={'fowner>', r5}}, {@fscontext={'fscontext', 0x3d, 'root'}}, {@uid_gt={'uid>', r5}}]})
pidfd_open(r3, 0x0)
r6 = openat$null(0xffffffffffffff9c, &(0x7f00000007c0), 0x600040, 0x0)
r7 = clone3(&(0x7f0000007500)={0x30000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pidfd_open(r7, 0x0)
ioctl$BLKTRACESETUP(r6, 0xc0481273, &(0x7f0000000180)={'\x00', 0x103, 0x800, 0x60c, 0xfffffffffffffffd, 0x3, r7})

[  257.834758][T19830] FAULT_INJECTION: forcing a failure.
[  257.834758][T19830] name failslab, interval 1, probability 0, space 0, times 0
[  257.847392][T19830] CPU: 1 PID: 19830 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  257.855797][T19830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  257.865853][T19830] Call Trace:
[  257.869124][T19830]  dump_stack_lvl+0xb7/0x103
[  257.873712][T19830]  dump_stack+0x11/0x1a
[  257.877870][T19830]  should_fail+0x23c/0x250
[  257.882282][T19830]  ? anon_vma_fork+0xb1/0x2b0
[  257.886960][T19830]  __should_failslab+0x81/0x90
[  257.891786][T19830]  should_failslab+0x5/0x20
[  257.896287][T19830]  kmem_cache_alloc+0x46/0x2e0
[  257.901099][T19830]  anon_vma_fork+0xb1/0x2b0
[  257.905606][T19830]  dup_mmap+0x49c/0x9c0
[  257.909794][T19830]  dup_mm+0x7c/0x210
[  257.913753][T19830]  copy_process+0x144f/0x2f90
[  257.918424][T19830]  ? __alloc_pages+0x194/0x320
[  257.923188][T19830]  ? _copy_from_user+0x94/0xd0
[  257.927947][T19830]  kernel_clone+0x14b/0x680
[  257.932448][T19830]  __se_sys_clone3+0x194/0x1d0
[  257.937364][T19830]  ? __cond_resched+0x11/0x40
[  257.942068][T19830]  ? fput+0x2d/0x130
[  257.945996][T19830]  ? ksys_write+0x157/0x180
[  257.950549][T19830]  ? fpregs_assert_state_consistent+0x7d/0x90
[  257.956615][T19830]  ? exit_to_user_mode_prepare+0x65/0x190
[  257.962325][T19830]  __x64_sys_clone3+0x2d/0x40
[  257.967027][T19830]  do_syscall_64+0x3d/0x90
[  257.971533][T19830]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  257.977481][T19830] RIP: 0033:0x4665f9
[  257.981370][T19830] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  258.000989][T19830] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  258.009467][T19830] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  258.017433][T19830] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  258.025487][T19830] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
19:54:02 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  258.033454][T19830] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  258.041421][T19830] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:02 executing program 4 (fault-call:3 fault-nth:52):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:02 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$SG_NEXT_CMD_LEN(r0, 0x2283, &(0x7f0000000000)=0x36)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000180))

[  258.134505][T19845] debugfs: Directory 'sg0' with parent 'block' already present!
[  258.143063][T19844] FAULT_INJECTION: forcing a failure.
[  258.143063][T19844] name failslab, interval 1, probability 0, space 0, times 0
[  258.149706][T19845] blktrace: debugfs_dir not present for sg0 so skipping
[  258.155680][T19844] CPU: 0 PID: 19844 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  258.170979][T19844] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  258.181030][T19844] Call Trace:
[  258.182708][T19846] debugfs: Directory 'sg0' with parent 'block' already present!
[  258.184297][T19844]  dump_stack_lvl+0xb7/0x103
[  258.196653][T19844]  dump_stack+0x11/0x1a
[  258.200806][T19844]  should_fail+0x23c/0x250
[  258.201656][T19846] blktrace: debugfs_dir not present for sg0 so skipping
[  258.205211][T19844]  ? anon_vma_fork+0xb1/0x2b0
[  258.205239][T19844]  __should_failslab+0x81/0x90
[  258.221533][T19844]  should_failslab+0x5/0x20
[  258.226100][T19844]  kmem_cache_alloc+0x46/0x2e0
[  258.230997][T19844]  anon_vma_fork+0xb1/0x2b0
[  258.235554][T19844]  dup_mmap+0x49c/0x9c0
[  258.239717][T19844]  dup_mm+0x7c/0x210
[  258.243606][T19844]  copy_process+0x144f/0x2f90
[  258.248278][T19844]  ? __alloc_pages+0x194/0x320
[  258.253048][T19844]  ? _copy_from_user+0x94/0xd0
[  258.257852][T19844]  kernel_clone+0x14b/0x680
[  258.262411][T19844]  __se_sys_clone3+0x194/0x1d0
[  258.267247][T19844]  ? __cond_resched+0x11/0x40
[  258.271922][T19844]  ? fput+0x2d/0x130
[  258.275852][T19844]  ? ksys_write+0x157/0x180
[  258.280351][T19844]  ? fpregs_assert_state_consistent+0x7d/0x90
[  258.286475][T19844]  ? exit_to_user_mode_prepare+0x65/0x190
[  258.292194][T19844]  __x64_sys_clone3+0x2d/0x40
[  258.296866][T19844]  do_syscall_64+0x3d/0x90
[  258.301279][T19844]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  258.307236][T19844] RIP: 0033:0x4665f9
[  258.311122][T19844] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
19:54:03 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  258.330727][T19844] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  258.339132][T19844] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  258.347097][T19844] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  258.355062][T19844] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  258.363030][T19844] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  258.370995][T19844] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:03 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r1, 0xc020660b, 0x0)
ioctl$INCFS_IOC_CREATE_FILE(r1, 0xc058671e, &(0x7f0000000080)={{'\x00', 0x2}, {0x800}, 0x114, 0x0, 0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000180)="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", 0x10b, 0x0, &(0x7f00000002c0)={0x2, 0xb0, {0x0, 0xc, 0xa3, "dd7337a5dbb71c84e455db42ae9151d353244c36607a63c9d1b454ad0a6d37960748e651cc2d95352ff4c50cd33704c8ae966891536f514bbcf891fe8ffba06ecdc021a2630d39b0deed83219ca4d20897e476e273c6239e81db17c94a1d2362e32cbcfc9cdda38a6ed92c4b79d742081a06af8f1883afdf70e423f3ec833ae26a5a3e4ed5c34ee5c765ea293d445efa54fd4db9dc1c4f5141c708b49bb046c6c3b710"}, 0xb0, "26d82d04874b39aea01db96e29008c703996dbff3b7845d4855133d6b364ad232a1a6864167e2d65f1a3c506dea8bac57c58cf19de42bf3b1c0c89f047c7fa868c6302ae7276c4288a308b547fa7bf3890359a477cfadc74bdfbbfff8af129bad1f857b14eeec86de7872b53e43e5d47c14a40e753cfd39a05c7fd5ab46d9e4279f0e62dd0acd115857a68992f6953a1ce4b5d01008eede4fcc442d556a706cb29272c6ad2bbdc0af7f43cdf10288f84"}, 0x16c})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f0000000440))
r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
ioctl$SG_IO(r2, 0x2285, &(0x7f0000000ac0)={0x53, 0xffffffffffffffff, 0xc, 0x0, @scatter={0x3, 0x0, &(0x7f00000009c0)=[{&(0x7f0000000840)=""/123, 0x7b}, {&(0x7f00000008c0)=""/93, 0x5d}, {&(0x7f0000000940)=""/111, 0x6f}]}, &(0x7f0000000a00)="78de9f809f9103ef0e421a16", &(0x7f0000000a40)=""/30, 0x9, 0x0, 0x2, &(0x7f0000000a80)})
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f0000000640))

19:54:03 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  258.463041][T19850] debugfs: Directory 'sg0' with parent 'block' already present!
[  258.477166][T19850] blktrace: debugfs_dir not present for sg0 so skipping
[  258.496447][T19850] debugfs: Directory 'sg0' with parent 'block' already present!
19:54:03 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x1, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

19:54:03 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$SG_IO(r0, 0x2285, &(0x7f0000001840)={0x0, 0xffffffffffffffff, 0x1000, 0x5b, @scatter={0xa, 0x0, &(0x7f0000000700)=[{}, {&(0x7f0000000040)=""/17, 0x11}, {&(0x7f0000000380)=""/137, 0x89}, {&(0x7f0000000080)=""/45, 0x2d}, {&(0x7f00000000c0)=""/7, 0x7}, {&(0x7f0000000440)=""/56, 0x38}, {&(0x7f0000000480)=""/146, 0x92}, {&(0x7f0000000540)=""/27, 0x1b}, {&(0x7f0000000580)=""/86, 0x56}, {&(0x7f0000000600)=""/221, 0xdd}]}, &(0x7f00000007c0)="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", &(0x7f00000017c0)=""/21, 0x6, 0x1, 0x3, &(0x7f0000001800)})
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})
dup(r0)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0xa00, 0x0)
ioctl$BLKTRACESTART(r1, 0x1274, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000180))

[  258.508440][T19850] blktrace: debugfs_dir not present for sg0 so skipping
19:54:03 executing program 4 (fault-call:3 fault-nth:53):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:03 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  258.581949][T19857] debugfs: Directory 'sg0' with parent 'block' already present!
[  258.592191][T19857] blktrace: debugfs_dir not present for sg0 so skipping
19:54:03 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  258.625282][T19862] debugfs: Directory 'sg0' with parent 'block' already present!
[  258.636717][T19864] FAULT_INJECTION: forcing a failure.
[  258.636717][T19864] name failslab, interval 1, probability 0, space 0, times 0
[  258.649322][T19864] CPU: 1 PID: 19864 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  258.657846][T19864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  258.667896][T19864] Call Trace:
[  258.671167][T19864]  dump_stack_lvl+0xb7/0x103
[  258.675753][T19864]  dump_stack+0x11/0x1a
[  258.679899][T19864]  should_fail+0x23c/0x250
[  258.681158][T19862] blktrace: debugfs_dir not present for sg0 so skipping
[  258.684309][T19864]  ? anon_vma_fork+0x117/0x2b0
[  258.696002][T19864]  __should_failslab+0x81/0x90
[  258.700759][T19864]  should_failslab+0x5/0x20
[  258.705260][T19864]  kmem_cache_alloc+0x46/0x2e0
[  258.710077][T19864]  ? anon_vma_fork+0xb1/0x2b0
[  258.714782][T19864]  anon_vma_fork+0x117/0x2b0
[  258.719374][T19864]  dup_mmap+0x49c/0x9c0
[  258.723528][T19864]  dup_mm+0x7c/0x210
[  258.727420][T19864]  copy_process+0x144f/0x2f90
[  258.732096][T19864]  ? __alloc_pages+0x194/0x320
[  258.736858][T19864]  ? _copy_from_user+0x94/0xd0
[  258.741625][T19864]  kernel_clone+0x14b/0x680
[  258.746123][T19864]  __se_sys_clone3+0x194/0x1d0
[  258.750964][T19864]  ? __cond_resched+0x11/0x40
[  258.755649][T19864]  ? fput+0x2d/0x130
[  258.759542][T19864]  ? ksys_write+0x157/0x180
[  258.764116][T19864]  ? fpregs_assert_state_consistent+0x7d/0x90
[  258.770174][T19864]  ? exit_to_user_mode_prepare+0x65/0x190
[  258.775961][T19864]  __x64_sys_clone3+0x2d/0x40
[  258.780640][T19864]  do_syscall_64+0x3d/0x90
[  258.785056][T19864]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  258.790944][T19864] RIP: 0033:0x4665f9
[  258.794830][T19864] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  258.814523][T19864] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  258.822928][T19864] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  258.830890][T19864] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  258.838859][T19864] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  258.846821][T19864] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  258.854802][T19864] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:03 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

19:54:03 executing program 4 (fault-call:3 fault-nth:54):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:03 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140)={0x745080, 0x8d}, 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  258.942829][T19872] FAULT_INJECTION: forcing a failure.
[  258.942829][T19872] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  258.956065][T19872] CPU: 1 PID: 19872 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  258.964473][T19872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  258.974520][T19872] Call Trace:
[  258.977789][T19872]  dump_stack_lvl+0xb7/0x103
[  258.982369][T19872]  dump_stack+0x11/0x1a
[  258.986520][T19872]  should_fail+0x23c/0x250
[  258.990932][T19872]  __alloc_pages+0x102/0x320
[  258.995522][T19872]  alloc_pages+0x2e8/0x340
[  258.999939][T19872]  pte_alloc_one+0x29/0xb0
[  259.004356][T19872]  __pte_alloc+0x2f/0x210
[  259.008680][T19872]  copy_pte_range+0x126e/0x1470
[  259.013527][T19872]  ? vma_interval_tree_augment_rotate+0x100/0x100
[  259.019941][T19872]  ? __rb_insert_augmented+0x7f/0x350
[  259.025319][T19872]  copy_page_range+0x5da/0x8e0
[  259.030078][T19872]  ? anon_vma_fork+0x273/0x2b0
[  259.034842][T19872]  dup_mmap+0x6ab/0x9c0
[  259.038991][T19872]  dup_mm+0x7c/0x210
[  259.042878][T19872]  copy_process+0x144f/0x2f90
[  259.047549][T19872]  ? __alloc_pages+0x194/0x320
[  259.052315][T19872]  ? _copy_from_user+0x94/0xd0
[  259.057075][T19872]  kernel_clone+0x14b/0x680
[  259.061575][T19872]  __se_sys_clone3+0x194/0x1d0
[  259.066334][T19872]  ? __cond_resched+0x11/0x40
[  259.071005][T19872]  ? fput+0x2d/0x130
[  259.074898][T19872]  ? ksys_write+0x157/0x180
[  259.079415][T19872]  ? fpregs_assert_state_consistent+0x7d/0x90
[  259.085484][T19872]  ? exit_to_user_mode_prepare+0x65/0x190
[  259.091202][T19872]  __x64_sys_clone3+0x2d/0x40
[  259.095879][T19872]  do_syscall_64+0x3d/0x90
[  259.100289][T19872]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  259.106175][T19872] RIP: 0033:0x4665f9
[  259.110059][T19872] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  259.129660][T19872] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  259.138064][T19872] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  259.146025][T19872] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  259.153985][T19872] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  259.161947][T19872] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  259.169924][T19872] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:03 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

19:54:03 executing program 4 (fault-call:3 fault-nth:55):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  259.265657][T19881] FAULT_INJECTION: forcing a failure.
[  259.265657][T19881] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  259.278890][T19881] CPU: 0 PID: 19881 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  259.287298][T19881] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  259.297342][T19881] Call Trace:
[  259.300616][T19881]  dump_stack_lvl+0xb7/0x103
[  259.305208][T19881]  dump_stack+0x11/0x1a
[  259.309359][T19881]  should_fail+0x23c/0x250
[  259.313773][T19881]  __alloc_pages+0x102/0x320
[  259.318364][T19881]  alloc_pages+0x2e8/0x340
[  259.322781][T19881]  pte_alloc_one+0x29/0xb0
[  259.327193][T19881]  __pte_alloc+0x2f/0x210
[  259.331520][T19881]  copy_pte_range+0x126e/0x1470
[  259.336370][T19881]  copy_page_range+0x5da/0x8e0
[  259.341128][T19881]  ? anon_vma_fork+0x273/0x2b0
[  259.345894][T19881]  dup_mmap+0x6ab/0x9c0
[  259.350053][T19881]  dup_mm+0x7c/0x210
[  259.353948][T19881]  copy_process+0x144f/0x2f90
[  259.358622][T19881]  ? __alloc_pages+0x194/0x320
[  259.363382][T19881]  ? _copy_from_user+0x94/0xd0
[  259.368141][T19881]  kernel_clone+0x14b/0x680
[  259.372638][T19881]  __se_sys_clone3+0x194/0x1d0
[  259.377396][T19881]  ? __cond_resched+0x11/0x40
[  259.382080][T19881]  ? fput+0x2d/0x130
[  259.385974][T19881]  ? ksys_write+0x157/0x180
[  259.390487][T19881]  ? fpregs_assert_state_consistent+0x7d/0x90
[  259.396551][T19881]  ? exit_to_user_mode_prepare+0x65/0x190
[  259.402272][T19881]  __x64_sys_clone3+0x2d/0x40
[  259.406965][T19881]  do_syscall_64+0x3d/0x90
[  259.411378][T19881]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  259.417268][T19881] RIP: 0033:0x4665f9
[  259.421154][T19881] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  259.440754][T19881] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  259.449158][T19881] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  259.457121][T19881] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  259.465087][T19881] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  259.473060][T19881] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  259.481026][T19881] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:04 executing program 4 (fault-call:3 fault-nth:56):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:04 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  259.622563][T19885] FAULT_INJECTION: forcing a failure.
[  259.622563][T19885] name failslab, interval 1, probability 0, space 0, times 0
[  259.635274][T19885] CPU: 0 PID: 19885 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  259.643688][T19885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  259.653735][T19885] Call Trace:
[  259.657052][T19885]  dump_stack_lvl+0xb7/0x103
[  259.662079][T19885]  dump_stack+0x11/0x1a
[  259.666235][T19885]  should_fail+0x23c/0x250
[  259.670654][T19885]  ? anon_vma_fork+0x117/0x2b0
[  259.675497][T19885]  __should_failslab+0x81/0x90
[  259.680261][T19885]  should_failslab+0x5/0x20
[  259.684769][T19885]  kmem_cache_alloc+0x46/0x2e0
[  259.689531][T19885]  ? anon_vma_fork+0xb1/0x2b0
[  259.694211][T19885]  anon_vma_fork+0x117/0x2b0
[  259.698838][T19885]  dup_mmap+0x49c/0x9c0
[  259.702993][T19885]  dup_mm+0x7c/0x210
[  259.706923][T19885]  copy_process+0x144f/0x2f90
[  259.711602][T19885]  ? __alloc_pages+0x194/0x320
[  259.716366][T19885]  ? _copy_from_user+0x94/0xd0
[  259.721127][T19885]  kernel_clone+0x14b/0x680
[  259.725628][T19885]  __se_sys_clone3+0x194/0x1d0
[  259.730392][T19885]  ? __cond_resched+0x11/0x40
[  259.735117][T19885]  ? fput+0x2d/0x130
[  259.739008][T19885]  ? ksys_write+0x157/0x180
[  259.743506][T19885]  ? fpregs_assert_state_consistent+0x7d/0x90
[  259.749577][T19885]  ? exit_to_user_mode_prepare+0x65/0x190
[  259.755303][T19885]  __x64_sys_clone3+0x2d/0x40
[  259.760389][T19885]  do_syscall_64+0x3d/0x90
[  259.764798][T19885]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  259.770691][T19885] RIP: 0033:0x4665f9
[  259.774592][T19885] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  259.794195][T19885] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  259.802605][T19885] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  259.810567][T19885] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  259.818530][T19885] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  259.826553][T19885] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  259.834516][T19885] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:04 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

19:54:04 executing program 4 (fault-call:3 fault-nth:57):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  259.929463][T19893] FAULT_INJECTION: forcing a failure.
[  259.929463][T19893] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  259.942707][T19893] CPU: 0 PID: 19893 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  259.951117][T19893] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  259.961166][T19893] Call Trace:
[  259.964439][T19893]  dump_stack_lvl+0xb7/0x103
[  259.969031][T19893]  dump_stack+0x11/0x1a
[  259.973184][T19893]  should_fail+0x23c/0x250
[  259.977598][T19893]  __alloc_pages+0x102/0x320
[  259.982187][T19893]  alloc_pages+0x2e8/0x340
[  259.986602][T19893]  pte_alloc_one+0x29/0xb0
[  259.991021][T19893]  __pte_alloc+0x2f/0x210
[  259.995349][T19893]  copy_pte_range+0x126e/0x1470
[  260.000204][T19893]  ? vma_interval_tree_augment_rotate+0x100/0x100
[  260.006620][T19893]  ? __rb_insert_augmented+0x7f/0x350
[  260.011991][T19893]  copy_page_range+0x5da/0x8e0
[  260.016767][T19893]  ? anon_vma_fork+0x273/0x2b0
[  260.021535][T19893]  dup_mmap+0x6ab/0x9c0
[  260.025697][T19893]  dup_mm+0x7c/0x210
[  260.029588][T19893]  copy_process+0x144f/0x2f90
[  260.034262][T19893]  ? __alloc_pages+0x194/0x320
[  260.039022][T19893]  ? _copy_from_user+0x94/0xd0
[  260.043785][T19893]  kernel_clone+0x14b/0x680
[  260.048284][T19893]  __se_sys_clone3+0x194/0x1d0
[  260.053049][T19893]  ? __cond_resched+0x11/0x40
[  260.057725][T19893]  ? fput+0x2d/0x130
[  260.061622][T19893]  ? ksys_write+0x157/0x180
[  260.066125][T19893]  ? fpregs_assert_state_consistent+0x7d/0x90
[  260.072187][T19893]  ? exit_to_user_mode_prepare+0x65/0x190
[  260.077908][T19893]  __x64_sys_clone3+0x2d/0x40
[  260.082586][T19893]  do_syscall_64+0x3d/0x90
[  260.086997][T19893]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  260.092886][T19893] RIP: 0033:0x4665f9
[  260.096773][T19893] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  260.116377][T19893] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
19:54:04 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140)={0x0, 0x8d}, 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  260.124783][T19893] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  260.132752][T19893] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  260.140720][T19893] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  260.148686][T19893] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  260.156649][T19893] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:04 executing program 4 (fault-call:3 fault-nth:58):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:04 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140)={0x0, 0x8d}, 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  260.259291][T19899] FAULT_INJECTION: forcing a failure.
[  260.259291][T19899] name failslab, interval 1, probability 0, space 0, times 0
[  260.272008][T19899] CPU: 1 PID: 19899 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  260.280422][T19899] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  260.290470][T19899] Call Trace:
[  260.293741][T19899]  dump_stack_lvl+0xb7/0x103
[  260.298330][T19899]  dump_stack+0x11/0x1a
[  260.302577][T19899]  should_fail+0x23c/0x250
[  260.306987][T19899]  ? dup_mmap+0x38e/0x9c0
[  260.311314][T19899]  __should_failslab+0x81/0x90
[  260.316105][T19899]  should_failslab+0x5/0x20
[  260.320620][T19899]  kmem_cache_alloc+0x46/0x2e0
[  260.325389][T19899]  ? anon_vma_fork+0x273/0x2b0
[  260.330204][T19899]  dup_mmap+0x38e/0x9c0
[  260.334364][T19899]  dup_mm+0x7c/0x210
[  260.338257][T19899]  copy_process+0x144f/0x2f90
[  260.342936][T19899]  ? __alloc_pages+0x194/0x320
[  260.347710][T19899]  ? _copy_from_user+0x94/0xd0
[  260.352538][T19899]  kernel_clone+0x14b/0x680
[  260.357078][T19899]  __se_sys_clone3+0x194/0x1d0
[  260.361837][T19899]  ? __cond_resched+0x11/0x40
[  260.366511][T19899]  ? fput+0x2d/0x130
[  260.370409][T19899]  ? ksys_write+0x157/0x180
[  260.374910][T19899]  ? fpregs_assert_state_consistent+0x7d/0x90
[  260.380977][T19899]  ? exit_to_user_mode_prepare+0x65/0x190
[  260.386696][T19899]  __x64_sys_clone3+0x2d/0x40
[  260.391364][T19899]  do_syscall_64+0x3d/0x90
[  260.395773][T19899]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  260.401742][T19899] RIP: 0033:0x4665f9
[  260.405631][T19899] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  260.425310][T19899] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  260.433790][T19899] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  260.441755][T19899] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  260.449717][T19899] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
19:54:05 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  260.457680][T19899] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  260.465642][T19899] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:05 executing program 4 (fault-call:3 fault-nth:59):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:05 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  260.582625][T19909] FAULT_INJECTION: forcing a failure.
[  260.582625][T19909] name failslab, interval 1, probability 0, space 0, times 0
[  260.595270][T19909] CPU: 1 PID: 19909 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  260.603676][T19909] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  260.613725][T19909] Call Trace:
[  260.616993][T19909]  dump_stack_lvl+0xb7/0x103
[  260.621643][T19909]  dump_stack+0x11/0x1a
[  260.625839][T19909]  should_fail+0x23c/0x250
[  260.630253][T19909]  ? dup_mmap+0x38e/0x9c0
[  260.634625][T19909]  __should_failslab+0x81/0x90
[  260.639388][T19909]  should_failslab+0x5/0x20
[  260.643889][T19909]  kmem_cache_alloc+0x46/0x2e0
[  260.648657][T19909]  ? anon_vma_fork+0x273/0x2b0
[  260.653424][T19909]  dup_mmap+0x38e/0x9c0
[  260.657639][T19909]  dup_mm+0x7c/0x210
[  260.661523][T19909]  copy_process+0x144f/0x2f90
[  260.666193][T19909]  ? __alloc_pages+0x194/0x320
[  260.670949][T19909]  ? _copy_from_user+0x94/0xd0
[  260.675740][T19909]  kernel_clone+0x14b/0x680
19:54:05 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  260.680316][T19909]  __se_sys_clone3+0x194/0x1d0
[  260.685076][T19909]  ? __cond_resched+0x11/0x40
[  260.689763][T19909]  ? fput+0x2d/0x130
[  260.693660][T19909]  ? ksys_write+0x157/0x180
[  260.698163][T19909]  ? fpregs_assert_state_consistent+0x7d/0x90
[  260.704306][T19909]  ? exit_to_user_mode_prepare+0x65/0x190
[  260.710085][T19909]  __x64_sys_clone3+0x2d/0x40
[  260.714760][T19909]  do_syscall_64+0x3d/0x90
[  260.719220][T19909]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  260.725113][T19909] RIP: 0033:0x4665f9
[  260.729010][T19909] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  260.748632][T19909] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  260.757034][T19909] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  260.765518][T19909] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  260.773516][T19909] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  260.781479][T19909] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  260.789452][T19909] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:05 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

19:54:05 executing program 4 (fault-call:3 fault-nth:60):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  260.910119][T19918] FAULT_INJECTION: forcing a failure.
[  260.910119][T19918] name failslab, interval 1, probability 0, space 0, times 0
[  260.922740][T19918] CPU: 0 PID: 19918 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  260.931163][T19918] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  260.941211][T19918] Call Trace:
[  260.944483][T19918]  dump_stack_lvl+0xb7/0x103
[  260.949071][T19918]  dump_stack+0x11/0x1a
[  260.953225][T19918]  should_fail+0x23c/0x250
19:54:05 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r0, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r0, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  260.957657][T19918]  ? anon_vma_clone+0x8d/0x380
[  260.962421][T19918]  __should_failslab+0x81/0x90
[  260.967178][T19918]  should_failslab+0x5/0x20
[  260.971676][T19918]  kmem_cache_alloc+0x46/0x2e0
[  260.976437][T19918]  ? avc_has_perm_noaudit+0x19a/0x240
[  260.981858][T19918]  anon_vma_clone+0x8d/0x380
[  260.986460][T19918]  anon_vma_fork+0x54/0x2b0
[  260.991042][T19918]  dup_mmap+0x49c/0x9c0
[  260.995194][T19918]  dup_mm+0x7c/0x210
[  260.999140][T19918]  copy_process+0x144f/0x2f90
[  261.003877][T19918]  ? __alloc_pages+0x194/0x320
[  261.008652][T19918]  ? _copy_from_user+0x94/0xd0
[  261.013412][T19918]  kernel_clone+0x14b/0x680
[  261.017924][T19918]  __se_sys_clone3+0x194/0x1d0
[  261.022684][T19918]  ? __cond_resched+0x11/0x40
[  261.027359][T19918]  ? fput+0x2d/0x130
[  261.031314][T19918]  ? ksys_write+0x157/0x180
[  261.035808][T19918]  ? fpregs_assert_state_consistent+0x7d/0x90
[  261.041870][T19918]  ? exit_to_user_mode_prepare+0x65/0x190
[  261.047642][T19918]  __x64_sys_clone3+0x2d/0x40
[  261.052322][T19918]  do_syscall_64+0x3d/0x90
[  261.056736][T19918]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  261.062628][T19918] RIP: 0033:0x4665f9
[  261.066515][T19918] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  261.086118][T19918] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  261.094613][T19918] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  261.102577][T19918] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  261.110546][T19918] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  261.118510][T19918] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  261.126477][T19918] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:05 executing program 4 (fault-call:3 fault-nth:61):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:05 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r0, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r0, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  261.213059][T19925] FAULT_INJECTION: forcing a failure.
[  261.213059][T19925] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  261.226298][T19925] CPU: 0 PID: 19925 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  261.234825][T19925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  261.244872][T19925] Call Trace:
[  261.248143][T19925]  dump_stack_lvl+0xb7/0x103
[  261.252729][T19925]  dump_stack+0x11/0x1a
[  261.256884][T19925]  should_fail+0x23c/0x250
[  261.261299][T19925]  __alloc_pages+0x102/0x320
[  261.265890][T19925]  alloc_pages+0x2e8/0x340
[  261.270308][T19925]  pte_alloc_one+0x29/0xb0
[  261.274721][T19925]  __pte_alloc+0x2f/0x210
[  261.279050][T19925]  copy_pte_range+0x126e/0x1470
[  261.283902][T19925]  ? vma_interval_tree_augment_rotate+0x100/0x100
[  261.290321][T19925]  ? __rb_insert_augmented+0x7f/0x350
[  261.295690][T19925]  copy_page_range+0x5da/0x8e0
[  261.300448][T19925]  ? anon_vma_fork+0x273/0x2b0
[  261.305217][T19925]  dup_mmap+0x6ab/0x9c0
[  261.309370][T19925]  dup_mm+0x7c/0x210
19:54:06 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r0, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r0, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  261.313262][T19925]  copy_process+0x144f/0x2f90
[  261.317932][T19925]  ? __alloc_pages+0x194/0x320
[  261.322695][T19925]  ? _copy_from_user+0x94/0xd0
[  261.327460][T19925]  kernel_clone+0x14b/0x680
[  261.331958][T19925]  __se_sys_clone3+0x194/0x1d0
[  261.336726][T19925]  ? __cond_resched+0x11/0x40
[  261.341409][T19925]  ? fput+0x2d/0x130
[  261.345312][T19925]  ? ksys_write+0x157/0x180
[  261.349809][T19925]  ? fpregs_assert_state_consistent+0x7d/0x90
[  261.355873][T19925]  ? exit_to_user_mode_prepare+0x65/0x190
[  261.361592][T19925]  __x64_sys_clone3+0x2d/0x40
[  261.366269][T19925]  do_syscall_64+0x3d/0x90
[  261.370677][T19925]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  261.376561][T19925] RIP: 0033:0x4665f9
[  261.380449][T19925] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  261.400046][T19925] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  261.408452][T19925] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  261.416419][T19925] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  261.424381][T19925] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  261.432346][T19925] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  261.440309][T19925] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:06 executing program 4 (fault-call:3 fault-nth:62):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:06 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, 0x0, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  261.534982][T19935] FAULT_INJECTION: forcing a failure.
[  261.534982][T19935] name failslab, interval 1, probability 0, space 0, times 0
[  261.547756][T19935] CPU: 0 PID: 19935 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  261.556164][T19935] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  261.566264][T19935] Call Trace:
[  261.569537][T19935]  dump_stack_lvl+0xb7/0x103
[  261.574128][T19935]  dump_stack+0x11/0x1a
[  261.578277][T19935]  should_fail+0x23c/0x250
19:54:06 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, 0x0, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  261.582689][T19935]  ? anon_vma_fork+0x117/0x2b0
[  261.587534][T19935]  __should_failslab+0x81/0x90
[  261.592311][T19935]  should_failslab+0x5/0x20
[  261.596815][T19935]  kmem_cache_alloc+0x46/0x2e0
[  261.601607][T19935]  ? anon_vma_fork+0xb1/0x2b0
[  261.606284][T19935]  anon_vma_fork+0x117/0x2b0
[  261.610875][T19935]  dup_mmap+0x49c/0x9c0
[  261.615057][T19935]  dup_mm+0x7c/0x210
[  261.618999][T19935]  copy_process+0x144f/0x2f90
[  261.623739][T19935]  ? __alloc_pages+0x194/0x320
[  261.628497][T19935]  ? _copy_from_user+0x94/0xd0
[  261.633262][T19935]  kernel_clone+0x14b/0x680
[  261.637762][T19935]  __se_sys_clone3+0x194/0x1d0
[  261.642583][T19935]  ? __cond_resched+0x11/0x40
[  261.647307][T19935]  ? fput+0x2d/0x130
[  261.651201][T19935]  ? ksys_write+0x157/0x180
[  261.655716][T19935]  ? fpregs_assert_state_consistent+0x7d/0x90
[  261.661830][T19935]  ? exit_to_user_mode_prepare+0x65/0x190
[  261.667552][T19935]  __x64_sys_clone3+0x2d/0x40
[  261.672222][T19935]  do_syscall_64+0x3d/0x90
[  261.676637][T19935]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  261.682527][T19935] RIP: 0033:0x4665f9
[  261.686477][T19935] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  261.706075][T19935] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  261.714481][T19935] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  261.722526][T19935] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
19:54:06 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, 0x0, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  261.730490][T19935] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  261.738454][T19935] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  261.746645][T19935] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:06 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

19:54:06 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

19:54:06 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

19:54:06 executing program 4 (fault-call:3 fault-nth:63):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  262.072120][T19949] FAULT_INJECTION: forcing a failure.
[  262.072120][T19949] name failslab, interval 1, probability 0, space 0, times 0
[  262.084738][T19949] CPU: 1 PID: 19949 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  262.093148][T19949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  262.103198][T19949] Call Trace:
[  262.106468][T19949]  dump_stack_lvl+0xb7/0x103
[  262.111064][T19949]  dump_stack+0x11/0x1a
[  262.115227][T19949]  should_fail+0x23c/0x250
[  262.119637][T19949]  ? dup_mmap+0x38e/0x9c0
[  262.123959][T19949]  __should_failslab+0x81/0x90
[  262.128724][T19949]  should_failslab+0x5/0x20
[  262.133227][T19949]  kmem_cache_alloc+0x46/0x2e0
[  262.138011][T19949]  dup_mmap+0x38e/0x9c0
[  262.142165][T19949]  dup_mm+0x7c/0x210
[  262.146054][T19949]  copy_process+0x144f/0x2f90
[  262.150727][T19949]  ? __alloc_pages+0x194/0x320
[  262.155524][T19949]  ? _copy_from_user+0x94/0xd0
[  262.160393][T19949]  kernel_clone+0x14b/0x680
[  262.164894][T19949]  __se_sys_clone3+0x194/0x1d0
[  262.169683][T19949]  ? __cond_resched+0x11/0x40
[  262.174364][T19949]  ? fput+0x2d/0x130
[  262.178259][T19949]  ? ksys_write+0x157/0x180
[  262.182757][T19949]  ? fpregs_assert_state_consistent+0x7d/0x90
[  262.188816][T19949]  ? exit_to_user_mode_prepare+0x65/0x190
[  262.194636][T19949]  __x64_sys_clone3+0x2d/0x40
[  262.199309][T19949]  do_syscall_64+0x3d/0x90
[  262.203724][T19949]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  262.209613][T19949] RIP: 0033:0x4665f9
[  262.213498][T19949] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  262.233107][T19949] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  262.241513][T19949] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  262.249579][T19949] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  262.257541][T19949] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
19:54:06 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

19:54:06 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x35, 0x2000)
r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={<r2=>0x0, ""/256, <r3=>0x0, <r4=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r4}, {0x0, r4}, {r3}, {r3}, {r3, r4}, {}, {}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {}, {r2, r4}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {}, {}, {r2, r4}, {r3}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r2, r4}, {}, {0x0, r4}, {r3}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {0x0, r4}, {}, {r2, r4}, {0x0, r4}, {r2}, {}, {r3}, {r2}, {}, {r3, r4}, {}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3}, {r2, r4}, {}, {r2}, {}, {}, {0x0, r4}, {}, {r3}, {r2}, {}, {}, {}, {0x0, r4}, {r3}, {}, {}, {0x0, r4}, {r2}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3, r4}, {}, {}, {0x0, r4}, {}, {r2}, {0x0, r4}, {}, {r3}, {r2, r4}, {0x0, r4}, {r2}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r2}, {r2, r4}, {}, {0x0, r4}, {r2, r4}, {0x0, r4}, {r3, r4}, {r2, r4}, {r3}, {}, {r2, r4}, {r2}, {r3, r4}, {}, {r2}, {r2, r4}, {}, {}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3, r4}, {}, {}, {r2, r4}, {0x0, r4}, {r3, r4}, {r2, r4}, {r3, r4}, {0x0, r4}, {}, {r3, r4}, {r3}, {}, {0x0, r4}, {r2}, {0x0, r4}, {r3, r4}, {r2}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {r2}, {}, {}, {}, {0x0, r4}, {r2, r4}, {r3, r4}, {}, {}, {}, {r3}, {0x0, r4}, {}, {}, {r2}, {r2}, {0x0, r4}, {r2, r4}, {r3, r4}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {r3}, {r2, r4}, {r2, r4}, {0x0, r4}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {r2}, {}, {r2}, {r3}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r3, r4}, {0x0, r4}, {}, {r3, r4}, {r2, r4}, {r3}, {r3, r4}, {}, {}, {r2}, {}, {r2}, {r3}, {}, {r2, r4}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {r3}, {r3}, {}, {}, {r3}, {0x0, r4}, {0x0, r4}, {r2, r4}, {r2}, {}, {0x0, r4}, {}, {}, {r3, r4}, {r2}, {0x0, r4}, {r2}, {r3, r4}, {r2, r4}, {r3, r4}, {r3}, {r2, r4}, {}, {}, {r3}, {r2, r4}, {0x0, r4}, {r2, r4}, {0x0, r4}, {r3}, {r3}, {}, {0x0, r4}, {r3, r4}, {}, {0x0, r4}, {}, {}, {0x0, r4}, {r2, r4}], 0x1, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f0000056700)={<r5=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f0000056900)={0x6, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r6=>0x0}], 0x1, "299114724d0cb5"})
ioctl$BTRFS_IOC_TREE_SEARCH(r0, 0xd0009411, &(0x7f0000057900)={{<r7=>0x0, 0x3f, 0x3, 0xd5, 0x1ff, 0xac, 0x1, 0xfa, 0x4, 0x3, 0xfffffffc, 0x2, 0x6, 0x2, 0xbef}})
r8 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r8, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r9 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r9, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r8, 0x81f8943c, &(0x7f0000000440)={<r10=>0x0, ""/256, <r11=>0x0, <r12=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r9, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r12}, {0x0, r12}, {r11}, {r11}, {r11, r12}, {}, {}, {0x0, r12}, {}, {r11, r12}, {0x0, r12}, {}, {r10, r12}, {0x0, r12}, {}, {r11, r12}, {0x0, r12}, {}, {}, {}, {0x0, r12}, {r11}, {0x0, r12}, {0x0, r12}, {r11}, {0x0, r12}, {r10}, {}, {r10}, {0x0, r12}, {}, {}, {r10, r12}, {r11}, {}, {0x0, r12}, {r11, r12}, {0x0, r12}, {r10, r12}, {}, {0x0, r12}, {r11}, {}, {0x0, r12}, {r11}, {0x0, r12}, {r11}, {0x0, r12}, {}, {r10, r12}, {0x0, r12}, {r10}, {}, {r11}, {r10}, {}, {r11, r12}, {}, {0x0, r12}, {0x0, r12}, {0x0, r12}, {0x0, r12}, {r11, r12}, {0x0, r12}, {0x0, r12}, {0x0, r12}, {r11}, {r10, r12}, {}, {r10}, {}, {}, {0x0, r12}, {}, {r11}, {r10}, {}, {}, {}, {0x0, r12}, {r11}, {}, {}, {0x0, r12}, {r10}, {0x0, r12}, {0x0, r12}, {0x0, r12}, {r11, r12}, {}, {}, {0x0, r12}, {}, {r10}, {0x0, r12}, {}, {r11}, {r10, r12}, {0x0, r12}, {r10}, {r11, r12}, {0x0, r12}, {0x0, r12}, {0x0, r12}, {}, {0x0, r12}, {r10}, {r10, r12}, {}, {0x0, r12}, {r10, r12}, {0x0, r12}, {r11, r12}, {r10, r12}, {r11}, {}, {r10, r12}, {r10}, {r11, r12}, {}, {r10}, {r10, r12}, {}, {}, {0x0, r12}, {0x0, r12}, {0x0, r12}, {r11, r12}, {}, {}, {r10, r12}, {0x0, r12}, {r11, r12}, {r10, r12}, {r11, r12}, {0x0, r12}, {}, {r11, r12}, {r11}, {}, {0x0, r12}, {r10}, {0x0, r12}, {r11, r12}, {r10}, {0x0, r12}, {r11, r12}, {0x0, r12}, {0x0, r12}, {}, {0x0, r12}, {r11}, {0x0, r12}, {r11}, {r10}, {}, {}, {}, {0x0, r12}, {r10, r12}, {r11, r12}, {}, {}, {}, {r11}, {0x0, r12}, {}, {}, {r10}, {r10}, {0x0, r12}, {r10, r12}, {r11, r12}, {0x0, r12}, {r10}, {}, {r10}, {0x0, r12}, {r11}, {r10, r12}, {r10, r12}, {0x0, r12}, {0x0, r12}, {}, {}, {0x0, r12}, {r11}, {r10}, {}, {r10}, {r11}, {0x0, r12}, {r11, r12}, {0x0, r12}, {r11, r12}, {0x0, r12}, {}, {r11, r12}, {r10, r12}, {r11}, {r11, r12}, {}, {}, {r10}, {}, {r10}, {r11}, {}, {r10, r12}, {}, {}, {0x0, r12}, {r11}, {0x0, r12}, {r10}, {r11}, {r11}, {}, {}, {r11}, {0x0, r12}, {0x0, r12}, {r10, r12}, {r10}, {}, {0x0, r12}, {}, {}, {r11, r12}, {r10}, {0x0, r12}, {r10}, {r11, r12}, {r10, r12}, {r11, r12}, {r11}, {r10, r12}, {}, {}, {r11}, {r10, r12}, {0x0, r12}, {r10, r12}, {0x0, r12}, {r11}, {r11}, {}, {0x0, r12}, {r11, r12}, {}, {0x0, r12}, {}, {}, {0x0, r12}, {r10, r12}], 0x1, "2156816c73038c"})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f0000058900)={0x0, <r13=>0x0, "52ff5919a803abc9352fc5c2efe7c6837f99e456cb8470869d68380b4efa798f07ff0cf15d5f9e1b133ebf2f2f16d9d980b94ed064c0b80c4de9c5e468224529fb25f2bf911a433e6fae0d9adbe3f370135f692d93cbc402980ed123f441cbdefb86772798045ab857f10d729f17313e4a259f67223cc0669c00cfb7ba7245d04f4a1e9fb0a8d70ae6589c46c2bf26b461cc6c490ce761a6df930db589a59c1f4434d84d0cd000cd2292719c300218f9b5c2aa9e0adf0e5636340bfd3c9db20613664185b43bdfdeafef2462a31dc819f5e62a5363a2d12ced67214b3f15513fa9e105c7cec9c8b97a196ea6e5a389224b1e0c4126baf00ef21ba0cbdf3088f5", "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"})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r1, 0xd000943e, &(0x7f0000059900)={0x0, <r14=>0x0, "37292a69ed96c9393d7ca7ee88519d6278a463f18a6e77dc362640285a95a881fa6dd714ddd1af2644f5f34198c314ed1dcc76f691d34775e3235727b10e41a15f578db11c59cd6cf263b1950929bab5a8480acb05f49d19e0c7e10f657b730221611744502641f96dc2508609fa6bffba0dfb24968ccef5ba06cd68f13d1c77a72f051494b5454c1a12ec07a912ffe8dc169a4f59c6e48a4ed9fa44b8feebbcbf799019ce8f690cfe8851223ba89803d37e469372b3333298801b29894d242211e11ab9b53df1ea3e3185e36995b560c53d0c3be8dbe1f3fbac2ea7a21eb3725e2a9293c38755094568d03c94a955cca0a027d0dbeb14d5eaf7295c7dcea253", "2851d3ae92cd226a096087e85ee7b7e1ab59a44c002ccb8c92ffd323ea6f3ae3fdf192d10b630f3acd2b7852da089119c14c401c85ec629c3c0d292f8b8a63ed409bad8f806d3b0b6c7c17dfad6a965b2da5e995f5b3dcdb7fc9133213f9eaa55076e239c9d26100c8e5dccd7fc9ee6b0c49c472ccd807f8a23d96c0eb3b6e0d3c288f0b32aa84837ae7c4a9ccf51488bdac764cff0954263486d733209ac03573737e2228ea64b4060d5d4f71aa108445690f1b323d578f815f6ba053cc27f4e657deaf88e61d3b711b71d50f5844d4a100facc040dec94e4adb976df8321261e1866ecde83717cae6930cb7621ff6ff687b3f0125f77d41a01d4e9ffe6ae07a1ddc535a3f632c8a05b612ff27f1f89c725c65b793c98c21ab51dbd777d8d93166ca87396937cf63101df61a0ca43ffadd2a1df7f9f213e64bf136c5a6da34ee4c75639d7c9d3d3bed35be4583c0e43c64fd3f18f54240553016f6417d695ff49c46e23d3725aca63d06775abb85cdb2fbfedbf6fef13895a5e8e5ec7eda10348ddf8eab7c2cb4990665183ddb7b2649e107004ee5501ab35882965082383c6a51779e23e62bae92f5d418cdc69a48b3a68119702f0cc741a82816070d3c154d46cab0989f58ddd997bcb6b5a60c74c8b7226d3698eb3852dae37e87c3f5e5868564546e717faf43df7ada152f61d717fe5fcf03bb77db534ac55ed8af0b1183d85f0bfee9bb19a10c399d7bd7e2c42795510f8ce23125b52ed7f8441d499d93f0416b199aac27c2caf6b7d82b48ac87bf14e9c6f42c2249850b451bfcb5dd6c33527ab25e86f5ed20e14e00dfa95742ad0db2b24cef230518d76af6c7a06379499fd66bfb2be2d65dbe9ce4bceb84059ed106e4f9ffeecca37f351e5e59c59cdc190f8227f2ae1b5d3b168665906624f88fa7dd7195e0756b995dc0e41a5f2004ca0f0712a606e274d68d6d09f7eb06b8ead6f961a3e3ab343905586c60ff5011da2da6a64f09559f64f012a5f3ece9e99df77e191ed301b2f3bb6a6c86e04741a7d587eed122e6df15804dd90c71c04dfa345503c3e2e7b142ace3c122b91e5fd0825dba06c84c392fbc6979a74f7824ca123fc462b32f97b63eda4e473129a580499deeb5f8477c3c28edd86a83bd939d11bbe863ea629e5254a00a4daa8e1e1dd2c20e0be708ec91b2b73be3a535e76263a0a9cbc8a5fa7f714c6bc013651ef057f225697928bb3bd692e8c04cd5c5bf476a25775d8e38398614bd861ceac0261a602cc9530eea998941c28e5492b6ea1109743bd8fa0c9400bd50aa8eb29a5c2d147abec1ddbb29eee191d846b42d33e30449530b47097b180ad659fc774d9b181e1f0e4a10a1ab93c0de2a23eb5efdc12ca7dee4af3e75517eecb6386ac9684963aacda7d976cb3196e582d0d14e51e6cae809947b79757612760566c337ec1e1a80b256d8cbca10637e19e66f9f7950b15a814860644f36c9959ef49642d552b188a23c4adc5e6bd4e6b30fe84c02c6e2792718c33afab3fce3bdf10921f80b932b87b7c9dd68778411e155a8eded219e49d96f31ce3b6a51b25d778d94e3614d5bc36cc4df97fb493f3ff7b8b62e8d3a234b1e9800a37fe3dc86543d2720c8e2165d4a1884e011a16d6a1ddbffb9ed0e8c4f12e80a2fb585f79ffa97f5219c6f807a1909db5a94d056a7fd2bc05d1e6a039db3eaa52620b691f5419053f3afde203c3958f5965fc4e65a5f8b584480020dfddafd9fd6c9e22a93b6f0045e8fe91f55ea31ea54fbb71f52eb30fa6145cb098b331372c49c15a134b2d59b4d68f960feec1951f6d2700a611c1fae0ed57fce645d9b11d1127cc47d6a0839cd2006f053d6e7d56451dccd8278de243a437bc05bb3ff3e97c8d86bc6fa5180219aa5c39c0df7e8bb389d09557e3ef3564d0f570e7f691c7a4c38b6daffb589603aeb950225a8618aa4d3f901c59c47a72335b01ef3048b0e62398060599d390fbc6bf02b929ac43991485e6033f7da48ecb15600bfd86ae9902bff17f82bf9d27beb1a7357ff89bce6e1699cd5d1fa58d2462b591013794c9700a07a1d0c2c285f33c37cc67f167bb90986dedb074fab6dd5557dca61928bbb1d5b03352fa172b4accb60fcb58719189c608f367dea1567f424f84ff6c5eb025c619e05859d1785b079db68fe3d51a62dfdf7f8d0198e41b25c6c35e5846a01a8d9f6e859bac62ce48e1884ff36a5a1e096f858c8f5fae9c7e5d503156d26d33e92f5fd42467dadee3968252aba702eae5b3c9848a376ec72af5817776d6eddbea27028a62b1160cdb1bde74b233cedca429d3a9f2eea11957ced7299f798544a72fd981871aa58abe7fc59df52e6e358ec9058a5afffe2259318fedd85883675064f7955efd5dc18391dda9d40e27da20d44b0d6092b60b5c489b5262af40e993ee12a6ac55ba63e19882dffbb6495d6309832d33aa952728ee204d712866f959fdb1c0238088d84229f865f51a43d187778ef24d99e8140fbee4906e54c9f003c6b172baf7674f87e3df21b416acb69045eb9c5e2ab81895e3db60e146e1848233f884cd3b95c71fe95c53b8be43ef803398240ae3ad82ae2690614c60087cc745de86d1775e4091dd016fd6a68edf2818e36e7b38c38a7797c7b97ff4685dfe31e0233961c605d619b61697e3feed81fbe9fd6b4f0913f320f48f92c35b9b237bc95745c4ee111f953c547fe497521ccebdbcc42b52628f79beb98671bbf4f1fe6e1d8c73aa5a5c19100d788ce153fda748e7cac3ce53326b876e7179d1b247d0d0a4a46441705c7fa2216b0dfd807ab048d7211e891564d0c9ca90e2d9e16369a356bd2f715529e117cd900b3debdf5c3d2f65b24b9e384e267f148f1c02c206fa4d90755899bc443ddd2b3cc3e08ad024d018471cca0519e517b67e86b6be3216ad5ee31ef44f624accc79cd679f16fe46c7e8418ea1efb90757c736f199fb385933b352e7a39bef2e9d3dee9ce84baadbc2728f7a08f15dc6ecd87cb54f809703c40f393ca272d27ab8f9a56473c7dbee1bb1d7ceccc99770f5d38fe8b8df08184a9ce1d52f47b70e8faece2640aa90759b6f3616d6e6fc79226ed1881817ba3e1249f0a35f812cc6960895ca1a7bb82f954fb3ad550dd9186e46667cb7aff32aa98e1d0a96f11df3aa13f5676dc1b79c393467d983e33a8419bf051a4b05431cff1c7a94794296dbef9fe1768aa68f3fe56bc52ca86b8cef02513728d50d6f29c2cc373cf2f15f7fb8d3b693dd70e135be04680b5e25796a08c6c2657cf9c76d026d3aafd6387f8e0cdffdbeac0415f4a58f40a46e36fafbcf52e962f77a33007ed075c5a1317618690bf45f6902ea6d32c234a3d381d4e613d9dcfec95352d67b48f787f846f3790847a3d5c9ae4a6ce67f80b29ae028e08f1701ed97b34018c1c50e59bd629ed30cea0277ebe25148b685650cb7884dcbc480268a9aae930d9d11533f34a6fdf9e39b4cc419965ea1e19e72982cdc0cc4c5ec9e75ad387debb5a1b0010ee07f32969e253e9c764fd9ef9a2f4c3ca63a171fefdda7af1a672bf8882579c2d7a87282633426e736d10f6fb442939c153e2f430b5f2086619867f710116aee496c6477c0767703598bdbd5ffb16a53bb78468745feeb10da7b3b8bf21b7dc34857901ad89eda007177497efafe90ece2c5288c2a7e03f5364981c79c94a3428fa3d40c7331a768cb4d295b939a594a93a977515acc107fd8a7c364885bd068175fb7a9d007e59bdb90646afd15a7d986986ed0f0b30fb8eb19205b185ed5a8bf8cf56a5c8ea10485fa18010353b0497679f69a33dbac73244b850c196d089896b6daf9a32d1ed6457a65702c8b5c30926ddac250509c44b09a12b11adb251b0f46b5ce6b51023d891699ad9d708cdaa66175061686de1d948e8a66c16f4e93e3a4c9b5ee061e423f8ff29b3e9efc50cf40dad163fb4c4ea164e35950579214b8dbc427e8d5799c3e812db7aacd6678b751caaade3d3e26f6743569e2fa585b71bf126a7cad5cacd876a46fe3db9f50fddc715f2ff2d9ef439e6665e99f67e383ceb4b86d9108ba74763eed9cb94d1edf6eb63543ac16a4c7e50ff582d09d4aaa03525b17ee9981611e55c7dc93a9f5d181687e7c4584df6338a2d1959cfbd04904954eceaf6f13cedfbeafabccbd0ca3ab4c5843bf861b479678f876c904f1bf8ed2f29e8344bf5d918e5730bd308a7d8ccab4d691f662291bf5be77a47393240b762266361a3a9f2d809231cd660543efd5dcd058e8c58da1d85ebbe73dff69896e5f188e72c06edd451fdbde26d6d1bf7959dc68a0cce54d2d03ee7dd3935eb934762e2804e2ad534671cbf8847e118da1b0b65e82a21a2a46df67bbdc56e7e9f868d01cc9a466d063cf893f36fe9588df0238244c7713f47f2c855dae7709706ed48356ea00b0530e1aa88d2b8d11b301c0179e277a52ec6d4f0ef797867b43e676abbaaf6030a3bb0fa6fd3448b2f09a9859f30f73fc9c9a57e34a66f24d719c310d56460646acb7adc02689eea56190cfccd294956d40a74b445f1f3cb077b7bf99eb18416870e20c82c013989b36e02dbeaf031d5710f606b3112547ea3526aaccbc3dc1f29d76e2c42f7e0a3b92ec66d575ef0553bf78a8e107761592394a225b716d7ebfa5a2eba26c20a4695023922ab4f1a71bf3e96e7ce476cd9dbcb92c76eb3ee6474acd499f4aae6601398b84c6ba7cc58cb004615cf10383c4d74c1d01c89c0bc8a3c7d44ff48672b85cf01effbe2a6e32f137253ed7d31aa36f3ebd1856668c07069fadcb71be6dc7e441c2dfdfa58b7593ac5e724aa1d458e5daea95813a65fb7094181c75705ee845fec4b3d9e1a5e4661dae0a0f58a5f7d55b0745a6afd7faa0fc7e2382ab54cebec0cc33e7359994ad02a13d380a1dad5a2a0e60d58d190b9c3e3404816deeab66acfb6ba09fe036686674ed201abd9bfd91f81c5820643bbce8d2aa5d0706c942a3a2e0418ba0faa56f1c8fcfffc71ed0e1ab164499bdd5025f24659e1419c0ee918de1d18ca505289e29a4b75de0333c42b2257f745f389a5b1a2bbd7ee45a58618fce6d4d68023cf934ee12edd271775bf1bad0f50be30d52463eb30647739aa41c65fa9e19ada10273bb8de3f00c26ac189d728e994b780112f365bea4ca2cb90b15b9235bc9241a7e1b9f151d26fc5a6feae4b242decc157856f6b8b3520a9691491823448042500bd3e8cc5848d0beced18d8e4876483596ed310dee2ed6d7833b821db3dc69dd71dbd1f9a4c53d9354132df7e5fca2c7bb2e58c52bc0bf2a31ac884feff578eb4d3b9c07e93281dd58b60b00d093f1781d621168cdae3695ebeb1bdc2cf0c614cc2d015f54786583b0f93647c25db2433"})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f000005a900)={<r15=>0x0, 0x0, "ac49178ae2b790a22f515f73520e9b84ff917235a0151289ccb603ea10e2b4105591970f32e3c0c2f4ff5892fcd546c1d19656dee3167a9d648bb6ba6335da4d8a880bdbd0f8dc3694dcf508cb4efec324d402fc8d6dd9f199a8d24d68df76a234c6173593ff654af6a96866db9b8ca051646a281111a67aa4f02e32d72795a8a8d9aae17a869d523ebf85816a0006a6b84a538efbe8d0bebb149bd6d647eb05bb15d6d83efe9920e14ca6c0798f39a3fc18916f06333b8a96d89990139f5c03d1e01aba9bfc2d6fe4b509990f7b2abfae03f2146813297b0e536a19f721cbab76093094ddb829af3c6dded44485ec8661e134921c7a82edfec7f605370775d2", "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"})
ioctl$BTRFS_IOC_TREE_SEARCH(r1, 0xd0009411, &(0x7f000005b900)={{<r16=>0x0, 0x9, 0x6, 0xfff, 0x4, 0x8, 0x9, 0x400, 0x2, 0x0, 0xff, 0x400, 0x7, 0x9, 0x49}})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f000005c900)={0x3f, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r4}, {}, {r5}, {0x0, r6}, {r7, r12}, {}, {r13}, {}, {r14, r15}, {}, {r16}], 0x7, "8b87c17b1d1ca6"})
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

[  262.265767][T19949] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  262.273732][T19949] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
[  262.294414][    C1] sd 0:0:1:0: tag#7840 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  262.304241][    C1] sd 0:0:1:0: tag#7840 CDB: opcode=0xe5 (vendor)
[  262.310562][    C1] sd 0:0:1:0: tag#7840 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  262.319601][    C1] sd 0:0:1:0: tag#7840 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  262.328776][    C1] sd 0:0:1:0: tag#7840 CDB[20]: ba
[  262.343665][    C0] sd 0:0:1:0: tag#7841 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  262.353504][    C0] sd 0:0:1:0: tag#7841 CDB: opcode=0xe5 (vendor)
[  262.360352][    C0] sd 0:0:1:0: tag#7841 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
19:54:07 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

19:54:07 executing program 4 (fault-call:3 fault-nth:64):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:07 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x10)
writev(r1, &(0x7f0000000080)=[{&(0x7f0000000040)="5c90d8174df6d09a076fe1a92aadb16fb8a8ee6e4e94c61f8a36f7667ddcd1dc07b2aa7b23197423046b26ed5a92d72382e521", 0x33}], 0x1)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

[  262.369399][    C0] sd 0:0:1:0: tag#7841 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  262.378438][    C0] sd 0:0:1:0: tag#7841 CDB[20]: ba
[  262.433152][T19961] debugfs: Directory 'sg0' with parent 'block' already present!
[  262.443243][T19962] FAULT_INJECTION: forcing a failure.
[  262.443243][T19962] name failslab, interval 1, probability 0, space 0, times 0
[  262.449431][T19961] blktrace: debugfs_dir not present for sg0 so skipping
[  262.455839][T19962] CPU: 1 PID: 19962 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  262.455861][T19962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  262.481188][T19962] Call Trace:
[  262.482844][T19963] debugfs: Directory 'sg0' with parent 'block' already present!
[  262.484485][T19962]  dump_stack_lvl+0xb7/0x103
[  262.496662][T19962]  dump_stack+0x11/0x1a
[  262.500866][T19962]  should_fail+0x23c/0x250
[  262.501906][T19963] blktrace: debugfs_dir not present for sg0 so skipping
[  262.505291][T19962]  ? dup_mmap+0x38e/0x9c0
[  262.516516][T19962]  __should_failslab+0x81/0x90
[  262.521316][T19962]  should_failslab+0x5/0x20
[  262.525841][T19962]  kmem_cache_alloc+0x46/0x2e0
19:54:07 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000180)={0x0, <r2=>0x0})
perf_event_open(&(0x7f0000000040)={0x0, 0x80, 0x67, 0x40, 0xda, 0x7, 0x0, 0x1000, 0x1000, 0x8, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, @perf_bp={&(0x7f0000000000), 0xe}, 0x2040, 0xaa8, 0x4, 0x1, 0x4, 0x3, 0x5, 0x0, 0x8001, 0x0, 0x6}, r2, 0xfffffffffffffffe, r1, 0x1)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

[  262.530596][T19962]  dup_mmap+0x38e/0x9c0
[  262.534755][T19962]  dup_mm+0x7c/0x210
[  262.538651][T19962]  copy_process+0x144f/0x2f90
[  262.543324][T19962]  ? __alloc_pages+0x194/0x320
[  262.548080][T19962]  ? _copy_from_user+0x94/0xd0
[  262.552866][T19962]  kernel_clone+0x14b/0x680
[  262.557430][T19962]  __se_sys_clone3+0x194/0x1d0
[  262.562191][T19962]  ? __cond_resched+0x11/0x40
[  262.566866][T19962]  ? fput+0x2d/0x130
[  262.570760][T19962]  ? ksys_write+0x157/0x180
[  262.575299][T19962]  ? fpregs_assert_state_consistent+0x7d/0x90
[  262.581364][T19962]  ? exit_to_user_mode_prepare+0x65/0x190
[  262.587085][T19962]  __x64_sys_clone3+0x2d/0x40
[  262.591757][T19962]  do_syscall_64+0x3d/0x90
[  262.596168][T19962]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  262.602058][T19962] RIP: 0033:0x4665f9
[  262.606021][T19962] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  262.625633][T19962] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
19:54:07 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  262.634083][T19962] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  262.642043][T19962] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  262.650009][T19962] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  262.658032][T19962] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  262.665991][T19962] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
[  262.701014][T19967] debugfs: Directory 'sg0' with parent 'block' already present!
[  262.718937][T19967] blktrace: debugfs_dir not present for sg0 so skipping
[  262.738400][T19968] debugfs: Directory 'sg0' with parent 'block' already present!
19:54:07 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, 0x0, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  262.753626][T19968] blktrace: debugfs_dir not present for sg0 so skipping
19:54:07 executing program 0:
ioctl$INCFS_IOC_GET_FILLED_BLOCKS(0xffffffffffffffff, 0x80286722, &(0x7f00000000c0)={&(0x7f0000000000)=""/149, 0x95, 0x200, 0xc9})
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x3e, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

19:54:07 executing program 4 (fault-call:3 fault-nth:65):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:07 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, 0x0, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  262.850983][T19974] debugfs: Directory 'sg0' with parent 'block' already present!
[  262.864072][T19974] blktrace: debugfs_dir not present for sg0 so skipping
[  262.922477][T19978] FAULT_INJECTION: forcing a failure.
[  262.922477][T19978] name failslab, interval 1, probability 0, space 0, times 0
[  262.935521][T19978] CPU: 1 PID: 19978 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  262.943943][T19978] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  262.953988][T19978] Call Trace:
[  262.957258][T19978]  dump_stack_lvl+0xb7/0x103
[  262.961845][T19978]  dump_stack+0x11/0x1a
[  262.966070][T19978]  should_fail+0x23c/0x250
19:54:07 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, 0x0, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  262.970482][T19978]  ? anon_vma_clone+0x8d/0x380
[  262.975312][T19978]  __should_failslab+0x81/0x90
[  262.980071][T19978]  should_failslab+0x5/0x20
[  262.984637][T19978]  kmem_cache_alloc+0x46/0x2e0
[  262.989469][T19978]  ? avc_has_perm_noaudit+0x19a/0x240
[  262.994839][T19978]  anon_vma_clone+0x8d/0x380
[  262.999458][T19978]  anon_vma_fork+0x54/0x2b0
[  263.003961][T19978]  dup_mmap+0x49c/0x9c0
[  263.008113][T19978]  dup_mm+0x7c/0x210
[  263.012017][T19978]  copy_process+0x144f/0x2f90
[  263.016690][T19978]  ? __alloc_pages+0x194/0x320
[  263.021454][T19978]  ? _copy_from_user+0x94/0xd0
[  263.026230][T19978]  kernel_clone+0x14b/0x680
[  263.030731][T19978]  __se_sys_clone3+0x194/0x1d0
[  263.035493][T19978]  ? __cond_resched+0x11/0x40
[  263.040205][T19978]  ? fput+0x2d/0x130
[  263.044095][T19978]  ? ksys_write+0x157/0x180
[  263.048605][T19978]  ? fpregs_assert_state_consistent+0x7d/0x90
[  263.054667][T19978]  ? exit_to_user_mode_prepare+0x65/0x190
[  263.060390][T19978]  __x64_sys_clone3+0x2d/0x40
[  263.065063][T19978]  do_syscall_64+0x3d/0x90
[  263.069472][T19978]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  263.075360][T19978] RIP: 0033:0x4665f9
[  263.079241][T19978] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  263.098885][T19978] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  263.107314][T19978] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  263.115283][T19978] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
19:54:07 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$EXT4_IOC_PRECACHE_EXTENTS(r0, 0x6612)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

19:54:07 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x0, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  263.123242][T19978] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  263.131204][T19978] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  263.139169][T19978] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:07 executing program 4 (fault-call:3 fault-nth:66):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:07 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x0, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

[  263.196815][T19987] debugfs: Directory 'sg0' with parent 'block' already present!
[  263.216441][T19987] blktrace: debugfs_dir not present for sg0 so skipping
[  263.252169][T19991] FAULT_INJECTION: forcing a failure.
[  263.252169][T19991] name failslab, interval 1, probability 0, space 0, times 0
[  263.264791][T19991] CPU: 0 PID: 19991 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  263.273238][T19991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  263.283329][T19991] Call Trace:
[  263.286597][T19991]  dump_stack_lvl+0xb7/0x103
[  263.291188][T19991]  dump_stack+0x11/0x1a
[  263.295344][T19991]  should_fail+0x23c/0x250
[  263.299809][T19991]  ? anon_vma_fork+0xb1/0x2b0
[  263.304491][T19991]  __should_failslab+0x81/0x90
[  263.309313][T19991]  should_failslab+0x5/0x20
[  263.313819][T19991]  kmem_cache_alloc+0x46/0x2e0
[  263.318655][T19991]  anon_vma_fork+0xb1/0x2b0
[  263.323161][T19991]  dup_mmap+0x49c/0x9c0
[  263.327352][T19991]  dup_mm+0x7c/0x210
[  263.331246][T19991]  copy_process+0x144f/0x2f90
[  263.335962][T19991]  ? __alloc_pages+0x194/0x320
[  263.340736][T19991]  ? _copy_from_user+0x94/0xd0
[  263.345532][T19991]  kernel_clone+0x14b/0x680
[  263.350063][T19991]  __se_sys_clone3+0x194/0x1d0
[  263.354824][T19991]  ? __cond_resched+0x11/0x40
[  263.359552][T19991]  ? fput+0x2d/0x130
[  263.363454][T19991]  ? ksys_write+0x157/0x180
[  263.368041][T19991]  ? fpregs_assert_state_consistent+0x7d/0x90
[  263.374133][T19991]  ? exit_to_user_mode_prepare+0x65/0x190
[  263.379922][T19991]  __x64_sys_clone3+0x2d/0x40
[  263.384601][T19991]  do_syscall_64+0x3d/0x90
[  263.389016][T19991]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  263.394917][T19991] RIP: 0033:0x4665f9
[  263.398802][T19991] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  263.418508][T19991] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  263.426918][T19991] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  263.434889][T19991] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  263.442854][T19991] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
19:54:08 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x4000000, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

[  263.450895][T19991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  263.458861][T19991] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:08 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x0, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f00000002c0)={0x14, r1, 0x4, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x81)

19:54:08 executing program 0:
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x800)
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000180)={'syz1', "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"}, 0x1004)
r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
lstat(&(0x7f0000001280)='./file0\x00', &(0x7f00000012c0)={0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0})
r3 = syz_open_dev$usbmon(&(0x7f00000014c0), 0x1, 0x800)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000001240), 0x100040, &(0x7f0000001340)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[{@loose}, {@access_client}, {@noextend}, {@dfltgid={'dfltgid', 0x3d, r2}}], [{@fsmagic={'fsmagic', 0x3d, 0x5}}, {@uid_gt={'uid>', 0xee01}}]}})
ftruncate(r1, 0x3f)
r4 = perf_event_open(&(0x7f00000011c0)={0x0, 0x80, 0x5, 0x9, 0x2, 0x40, 0x0, 0x8, 0x418, 0x2, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x3, 0x2, @perf_config_ext={0xe5, 0x401}, 0x42, 0xfffffffeffffffff, 0xfffffff9, 0x4, 0x5ad7, 0x1, 0x400, 0x0, 0x100, 0x0, 0x7ff}, 0x0, 0xf, 0xffffffffffffffff, 0x2)
perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x5, 0x7, 0x3, 0x5, 0x0, 0x80000000, 0x4000, 0x5, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x38, 0xc5280cefeeef86a, @perf_bp={&(0x7f0000000000), 0x2}, 0x161ba, 0x400, 0xff, 0x4, 0x10000, 0x2, 0xffff, 0x0, 0x8, 0x0, 0xfff}, 0x0, 0xffffffffffffffff, r4, 0x3)
perf_event_open(&(0x7f0000001440)={0x4, 0x80, 0xc2, 0x80, 0x3, 0x35, 0x0, 0xffff, 0x100, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x2, 0x2, @perf_bp={&(0x7f0000001400), 0x4}, 0x2000, 0x0, 0x9, 0x7, 0x5, 0x0, 0xe37, 0x0, 0x3, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)

19:54:08 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000000080), 0x20000008, 0x642)
r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
ioctl$SG_GET_ACCESS_COUNT(r1, 0x2289, &(0x7f0000000000))
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r2, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={<r3=>0x0, ""/256, <r4=>0x0, <r5=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r2, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r5}, {0x0, r5}, {r4}, {r4}, {r4, r5}, {}, {}, {0x0, r5}, {}, {r4, r5}, {0x0, r5}, {}, {r3, r5}, {0x0, r5}, {}, {r4, r5}, {0x0, r5}, {}, {}, {}, {0x0, r5}, {r4}, {0x0, r5}, {0x0, r5}, {r4}, {0x0, r5}, {r3}, {}, {r3}, {0x0, r5}, {}, {}, {r3, r5}, {r4}, {}, {0x0, r5}, {r4, r5}, {0x0, r5}, {r3, r5}, {}, {0x0, r5}, {r4}, {}, {0x0, r5}, {r4}, {0x0, r5}, {r4}, {0x0, r5}, {}, {r3, r5}, {0x0, r5}, {r3}, {}, {r4}, {r3}, {}, {r4, r5}, {}, {0x0, r5}, {0x0, r5}, {0x0, r5}, {0x0, r5}, {r4, r5}, {0x0, r5}, {0x0, r5}, {0x0, r5}, {r4}, {r3, r5}, {}, {r3}, {}, {}, {0x0, r5}, {}, {r4}, {r3}, {}, {}, {}, {0x0, r5}, {r4}, {}, {}, {0x0, r5}, {r3}, {0x0, r5}, {0x0, r5}, {0x0, r5}, {r4, r5}, {}, {}, {0x0, r5}, {}, {r3}, {0x0, r5}, {}, {r4}, {r3, r5}, {0x0, r5}, {r3}, {r4, r5}, {0x0, r5}, {0x0, r5}, {0x0, r5}, {}, {0x0, r5}, {r3}, {r3, r5}, {}, {0x0, r5}, {r3, r5}, {0x0, r5}, {r4, r5}, {r3, r5}, {r4}, {}, {r3, r5}, {r3}, {r4, r5}, {}, {r3}, {r3, r5}, {}, {}, {0x0, r5}, {0x0, r5}, {0x0, r5}, {r4, r5}, {}, {}, {r3, r5}, {0x0, r5}, {r4, r5}, {r3, r5}, {r4, r5}, {0x0, r5}, {}, {r4, r5}, {r4}, {}, {0x0, r5}, {r3}, {0x0, r5}, {r4, r5}, {r3}, {0x0, r5}, {r4, r5}, {0x0, r5}, {0x0, r5}, {}, {0x0, r5}, {r4}, {0x0, r5}, {r4}, {r3}, {}, {}, {}, {0x0, r5}, {r3, r5}, {r4, r5}, {}, {}, {}, {r4}, {0x0, r5}, {}, {}, {r3}, {r3}, {0x0, r5}, {r3, r5}, {r4, r5}, {0x0, r5}, {r3}, {}, {r3}, {0x0, r5}, {r4}, {r3, r5}, {r3, r5}, {0x0, r5}, {0x0, r5}, {}, {}, {0x0, r5}, {r4}, {r3}, {}, {r3}, {r4}, {0x0, r5}, {r4, r5}, {0x0, r5}, {r4, r5}, {0x0, r5}, {}, {r4, r5}, {r3, r5}, {r4}, {r4, r5}, {}, {}, {r3}, {}, {r3}, {r4}, {}, {r3, r5}, {}, {}, {0x0, r5}, {r4}, {0x0, r5}, {r3}, {r4}, {r4}, {}, {}, {r4}, {0x0, r5}, {0x0, r5}, {r3, r5}, {r3}, {}, {0x0, r5}, {}, {}, {r4, r5}, {r3}, {0x0, r5}, {r3}, {r4, r5}, {r3, r5}, {r4, r5}, {r4}, {r3, r5}, {}, {}, {r4}, {r3, r5}, {0x0, r5}, {r3, r5}, {0x0, r5}, {r4}, {r4}, {}, {0x0, r5}, {r4, r5}, {}, {0x0, r5}, {}, {}, {0x0, r5}, {r3, r5}], 0x1, "2156816c73038c"})
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r6, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r7 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r7, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r6, 0x81f8943c, &(0x7f0000000440)={<r8=>0x0, ""/256, <r9=>0x0, <r10=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r7, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r10}, {0x0, r10}, {r9}, {r9}, {r9, r10}, {}, {}, {0x0, r10}, {}, {r9, r10}, {0x0, r10}, {}, {r8, r10}, {0x0, r10}, {}, {r9, r10}, {0x0, r10}, {}, {}, {}, {0x0, r10}, {r9}, {0x0, r10}, {0x0, r10}, {r9}, {0x0, r10}, {r8}, {}, {r8}, {0x0, r10}, {}, {}, {r8, r10}, {r9}, {}, {0x0, r10}, {r9, r10}, {0x0, r10}, {r8, r10}, {}, {0x0, r10}, {r9}, {}, {0x0, r10}, {r9}, {0x0, r10}, {r9}, {0x0, r10}, {}, {r8, r10}, {0x0, r10}, {r8}, {}, {r9}, {r8}, {}, {r9, r10}, {}, {0x0, r10}, {0x0, r10}, {0x0, r10}, {0x0, r10}, {r9, r10}, {0x0, r10}, {0x0, r10}, {0x0, r10}, {r9}, {r8, r10}, {}, {r8}, {}, {}, {0x0, r10}, {}, {r9}, {r8}, {}, {}, {}, {0x0, r10}, {r9}, {}, {}, {0x0, r10}, {r8}, {0x0, r10}, {0x0, r10}, {0x0, r10}, {r9, r10}, {}, {}, {0x0, r10}, {}, {r8}, {0x0, r10}, {}, {r9}, {r8, r10}, {0x0, r10}, {r8}, {r9, r10}, {0x0, r10}, {0x0, r10}, {0x0, r10}, {}, {0x0, r10}, {r8}, {r8, r10}, {}, {0x0, r10}, {r8, r10}, {0x0, r10}, {r9, r10}, {r8, r10}, {r9}, {}, {r8, r10}, {r8}, {r9, r10}, {}, {r8}, {r8, r10}, {}, {}, {0x0, r10}, {0x0, r10}, {0x0, r10}, {r9, r10}, {}, {}, {r8, r10}, {0x0, r10}, {r9, r10}, {r8, r10}, {r9, r10}, {0x0, r10}, {}, {r9, r10}, {r9}, {}, {0x0, r10}, {r8}, {0x0, r10}, {r9, r10}, {r8}, {0x0, r10}, {r9, r10}, {0x0, r10}, {0x0, r10}, {}, {0x0, r10}, {r9}, {0x0, r10}, {r9}, {r8}, {}, {}, {}, {0x0, r10}, {r8, r10}, {r9, r10}, {}, {}, {}, {r9}, {0x0, r10}, {}, {}, {r8}, {r8}, {0x0, r10}, {r8, r10}, {r9, r10}, {0x0, r10}, {r8}, {}, {r8}, {0x0, r10}, {r9}, {r8, r10}, {r8, r10}, {0x0, r10}, {0x0, r10}, {}, {}, {0x0, r10}, {r9}, {r8}, {}, {r8}, {r9}, {0x0, r10}, {r9, r10}, {0x0, r10}, {r9, r10}, {0x0, r10}, {}, {r9, r10}, {r8, r10}, {r9}, {r9, r10}, {}, {}, {r8}, {}, {r8}, {r9}, {}, {r8, r10}, {}, {}, {0x0, r10}, {r9}, {0x0, r10}, {r8}, {r9}, {r9}, {}, {}, {r9}, {0x0, r10}, {0x0, r10}, {r8, r10}, {r8}, {}, {0x0, r10}, {}, {}, {r9, r10}, {r8}, {0x0, r10}, {r8}, {r9, r10}, {r8, r10}, {r9, r10}, {r9}, {r8, r10}, {}, {}, {r9}, {r8, r10}, {0x0, r10}, {r8, r10}, {0x0, r10}, {r9}, {r9}, {}, {0x0, r10}, {r9, r10}, {}, {0x0, r10}, {}, {}, {0x0, r10}, {r8, r10}], 0x1, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f00000485c0)={0xa4cd, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r4, r10}], 0xe0, "f42acf60308b06"})
ioctl$BLKTRACESETUP(r0, 0x227a, 0x0)
ioctl$SCSI_IOCTL_TEST_UNIT_READY(r0, 0x2)
ioctl$BLKTRACESTART(r0, 0x1274, 0x0)

19:54:08 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x81)

[  263.584159][T20000] debugfs: Directory 'sg0' with parent 'block' already present!
[  263.601562][T20000] blktrace: debugfs_dir not present for sg0 so skipping
[  263.613448][T20002] validate_nla: 16 callbacks suppressed
[  263.613460][T20002] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  263.624365][    C0] sd 0:0:1:0: tag#7845 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  263.636931][    C0] sd 0:0:1:0: tag#7845 CDB: opcode=0xe5 (vendor)
[  263.643281][    C0] sd 0:0:1:0: tag#7845 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  263.652339][    C0] sd 0:0:1:0: tag#7845 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  263.661352][    C0] sd 0:0:1:0: tag#7845 CDB[20]: ba
19:54:08 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x81)

[  263.677615][T20005] debugfs: Directory 'sg0' with parent 'block' already present!
[  263.693997][T20005] blktrace: debugfs_dir not present for sg0 so skipping
[  263.702144][    C0] sd 0:0:1:0: tag#7846 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  263.711982][    C0] sd 0:0:1:0: tag#7846 CDB: opcode=0xe5 (vendor)
[  263.715861][T20008] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
19:54:08 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
fcntl$setsig(r0, 0xa, 0x36)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r2, 0xc020660b, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f0000000780))
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
r3 = clone3(&(0x7f0000007500)={0x30000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pidfd_open(r3, 0x0)
recvmsg$unix(r1, &(0x7f0000000cc0)={&(0x7f0000000a00), 0x6e, &(0x7f0000000c00)=[{&(0x7f0000000a80)=""/239, 0xef}, {&(0x7f0000000b80)=""/81, 0x51}], 0x2, &(0x7f0000000c40)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, <r4=>0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x68}, 0x40002122)
perf_event_open(&(0x7f0000000980)={0x2, 0x80, 0x81, 0x8, 0x46, 0x0, 0x0, 0x6, 0xd170, 0xe, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x3, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x800, 0x4, @perf_config_ext={0x2, 0x4}, 0xe880, 0x7d9, 0x7, 0x4, 0x2, 0x8, 0xeb, 0x0, 0x3c000000, 0x0, 0x2}, r3, 0x2, r4, 0xa)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000000700)={0x0, 0xfffffffffffffffb, 0xc4, 0x80, @scatter={0x7, 0x0, &(0x7f0000000500)=[{&(0x7f0000000000)=""/167, 0xa7}, {&(0x7f0000000180)=""/253, 0xfd}, {&(0x7f0000000280)=""/223, 0xdf}, {&(0x7f00000000c0)=""/28, 0x1c}, {&(0x7f0000000380)=""/162, 0xa2}, {&(0x7f0000000440)=""/76, 0x4c}, {&(0x7f00000004c0)=""/45, 0x2d}]}, &(0x7f0000000580)="cd6a264137a8526f508983c2f320e6d53c0e056510f7d26a2a2b28009b6ad78a7b2565db9be9990523460f138875adc19a43f5960ed29d2e2f02c3fca1986852999b33ccf31c853e87eedba8159061d423a36bdbbc97c5e16f5218613d34b6b19099339e1f784985399598a2180e35cf0c64ba1a56e9c9388717b1952491bfdc7cf21d6dc89501e5b0aa570b0ea60111e82d55733b87722ac76ee1d8ee78646947203548904943a691dba50a22bf22002bd83702a2ad1c785eca901b276af7e6b776af4d", &(0x7f0000000680)=""/34, 0x1ff, 0x22, 0x1, &(0x7f00000006c0)})
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

[  263.718301][    C0] sd 0:0:1:0: tag#7846 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  263.735463][    C0] sd 0:0:1:0: tag#7846 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  263.744496][    C0] sd 0:0:1:0: tag#7846 CDB[20]: ba
19:54:08 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x80000000000000, 0x28200)
ioctl$BLKTRACESETUP(r0, 0x227a, 0x0)

19:54:08 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x81)

[  263.801535][T20012] debugfs: Directory 'sg0' with parent 'block' already present!
[  263.817535][T20012] blktrace: debugfs_dir not present for sg0 so skipping
19:54:08 executing program 4 (fault-call:3 fault-nth:67):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  263.847881][T20016] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  263.857425][T20017] debugfs: Directory 'sg0' with parent 'block' already present!
[  263.873117][T20017] blktrace: debugfs_dir not present for sg0 so skipping
[  263.917148][T20024] FAULT_INJECTION: forcing a failure.
[  263.917148][T20024] name failslab, interval 1, probability 0, space 0, times 0
[  263.929771][T20024] CPU: 0 PID: 20024 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  263.938202][T20024] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  263.948247][T20024] Call Trace:
[  263.951519][T20024]  dump_stack_lvl+0xb7/0x103
[  263.956107][T20024]  dump_stack+0x11/0x1a
[  263.960274][T20024]  should_fail+0x23c/0x250
[  263.964687][T20024]  ? anon_vma_fork+0x117/0x2b0
[  263.969528][T20024]  __should_failslab+0x81/0x90
[  263.974290][T20024]  should_failslab+0x5/0x20
[  263.978789][T20024]  kmem_cache_alloc+0x46/0x2e0
[  263.983553][T20024]  ? anon_vma_fork+0xb1/0x2b0
[  263.988365][T20024]  anon_vma_fork+0x117/0x2b0
[  263.993016][T20024]  dup_mmap+0x49c/0x9c0
[  263.997192][T20024]  dup_mm+0x7c/0x210
[  264.001083][T20024]  copy_process+0x144f/0x2f90
[  264.005756][T20024]  ? __alloc_pages+0x194/0x320
[  264.010517][T20024]  ? _copy_from_user+0x94/0xd0
[  264.015277][T20024]  kernel_clone+0x14b/0x680
[  264.019843][T20024]  __se_sys_clone3+0x194/0x1d0
[  264.024606][T20024]  ? __cond_resched+0x11/0x40
[  264.029283][T20024]  ? fput+0x2d/0x130
[  264.033177][T20024]  ? ksys_write+0x157/0x180
[  264.037680][T20024]  ? fpregs_assert_state_consistent+0x7d/0x90
[  264.043743][T20024]  ? exit_to_user_mode_prepare+0x65/0x190
[  264.049534][T20024]  __x64_sys_clone3+0x2d/0x40
[  264.054216][T20024]  do_syscall_64+0x3d/0x90
[  264.058632][T20024]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  264.064528][T20024] RIP: 0033:0x4665f9
[  264.068417][T20024] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  264.088052][T20024] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  264.096456][T20024] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  264.104435][T20024] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  264.112402][T20024] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  264.120367][T20024] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  264.128377][T20024] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:08 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$SG_GET_ACCESS_COUNT(r0, 0x2289, &(0x7f0000000000))
r1 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})
r2 = clone3(&(0x7f0000007500)={0x30000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pidfd_open(r2, 0x0)
r3 = mmap$IORING_OFF_SQES(&(0x7f0000ee7000/0x3000)=nil, 0x3000, 0x6, 0x11, 0xffffffffffffffff, 0x10000000)
syz_io_uring_submit(0x0, r3, &(0x7f00000000c0)=@IORING_OP_WRITE_FIXED={0x5, 0x0, 0x0, @fd_index}, 0x0)
syz_io_uring_submit(0x0, r3, &(0x7f0000000000)=@IORING_OP_POLL_ADD, 0x0)
r4 = mmap$IORING_OFF_SQES(&(0x7f00000da000/0x4000)=nil, 0x4000, 0x3, 0x12, 0xffffffffffffffff, 0x10000000)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000140)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0xcb}, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f00000001c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f0000000080)=@IORING_OP_TIMEOUT_REMOVE, 0x0)
syz_io_uring_submit(0x0, r4, &(0x7f00000014c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd, 0x0, 0x0}, 0x0)
syz_io_uring_submit(0x0, r3, &(0x7f0000000040)=@IORING_OP_POLL_REMOVE, 0x0)
syz_io_uring_submit(0x0, r3, &(0x7f0000000340)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f00000db000/0x2000)=nil, 0x2000}, 0x0)
syz_io_uring_setup(0x495a, &(0x7f00000002c0), &(0x7f0000ee7000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000000380)=<r5=>0x0, &(0x7f0000000100)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000008540)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000280)='./file0\x00'}, 0x10001)
syz_io_uring_submit(0x0, r6, &(0x7f0000000180)=@IORING_OP_POLL_ADD={0x6, 0x1, 0x0, @fd=r1, 0x0, 0x0, 0x0, {0x130}, 0x1}, 0x1)
perf_event_open(&(0x7f0000000080)={0x3, 0x80, 0x7, 0x4c, 0x0, 0x6, 0x0, 0x0, 0x40000, 0xa, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x2, 0x1, 0x0, 0x1, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0xe04a, 0x0, @perf_bp={&(0x7f0000000040), 0x2}, 0x40021, 0x3cdc, 0x7, 0x5, 0x9, 0x80000000, 0x0, 0x0, 0x6, 0x0, 0x10000}, r2, 0x4, 0xffffffffffffffff, 0xa)

19:54:08 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:08 executing program 4 (fault-call:3 fault-nth:68):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:08 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r0, 0xc020660b, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r1, 0xc020660b, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000019c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r1, &(0x7f0000001a40)={&(0x7f0000001980)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000001a00)={&(0x7f0000002080)={0xe14, r2, 0x8, 0x70bd29, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x8, 0x29}}}}, [@NL80211_ATTR_TID_CONFIG={0x2ac, 0x11d, 0x0, 0x1, [{0x1c, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0xdd}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0xf}]}, {0x154, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x120, 0xd, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x58, 0x1, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x19, 0x1, [0x1, 0x18, 0x5, 0x48, 0xc, 0x18, 0xb, 0xc, 0x24, 0x30, 0x24, 0x4, 0x30, 0x16, 0x30, 0x12, 0x60, 0x12, 0x6c, 0x1, 0xc]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_HT={0x2f, 0x2, [{0x3, 0x6}, {0x5, 0xa}, {0x0, 0x3}, {0x3}, {0x4, 0x7}, {0x3, 0x2}, {0x2, 0x9}, {0x3, 0x5}, {0x0, 0x7}, {0x0, 0x9}, {0x0, 0x3}, {0x3, 0x8}, {0x1, 0x7}, {0x3, 0x7}, {0x1, 0x9}, {0x1, 0x4}, {0x5, 0x2}, {0x4, 0x1}, {0x0, 0x8}, {0x1, 0x5}, {0x1, 0x1}, {0x2}, {0x4, 0x1}, {0x6, 0x9}, {0x0, 0x1}, {0x7, 0x3}, {0x4, 0x6}, {0x6, 0xa}, {0x4, 0x7}, {0x0, 0x8}, {0x6, 0x8}, {0x1, 0x7}, {0x5, 0x7}, {0x7, 0x6}, {0x7, 0x3}, {0x7, 0x1}, {0x2, 0x4}, {0x2, 0xa}, {0x1, 0x5}, {0x0, 0x5}, {0x0, 0x1}, {0x0, 0x8}, {0x1, 0x1}]}]}, @NL80211_BAND_6GHZ={0x64, 0x3, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0xd, 0x1, [0x16, 0x24, 0x9, 0x5, 0x48, 0x18, 0x1, 0x12, 0x6c]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_HT={0x16, 0x2, [{0x5, 0x6}, {0x2, 0x1}, {0x2, 0x6}, {0x1, 0x6}, {0x7, 0x9}, {0x1, 0x5}, {0x3, 0x8}, {0x3, 0x7}, {0x3, 0x5}, {0x2, 0x6}, {0x5, 0x7}, {0x3, 0xa}, {0x6, 0x1}, {0x1}, {0x1, 0x3}, {0x0, 0x3}, {0x4, 0x9}, {0x3, 0x4}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x3bd, 0x4ac1, 0x3, 0x1, 0x19f, 0x8200, 0x1, 0x2]}}, @NL80211_TXRATE_LEGACY={0x13, 0x1, [0x0, 0x30, 0x12, 0x6, 0x36, 0x16, 0x30, 0x18, 0xc, 0x30, 0x2, 0x6, 0x2, 0x36, 0x12]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_6GHZ={0x60, 0x3, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x21, 0x1, [0x18, 0x4, 0x4, 0x9, 0xb, 0x60, 0x18, 0x24, 0x16, 0x6, 0x6c, 0x4, 0x30, 0x37, 0x16, 0x60, 0xb, 0x6c, 0x4, 0x16, 0x9, 0x6, 0x16, 0x1b, 0x6, 0x1b, 0x16, 0xc, 0x2]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_LEGACY={0x20, 0x1, [0x36, 0x60, 0x6, 0x9, 0x24, 0x3, 0x1b, 0x3, 0x18, 0x2, 0x18, 0x7b, 0x5, 0xb, 0x36, 0xb, 0x2, 0xc, 0x3, 0x48, 0x16, 0x18, 0xb, 0x3, 0xc, 0x0, 0x16, 0x48]}]}]}, @NL80211_TID_CONFIG_ATTR_VIF_SUPP={0xc, 0x2, 0x7}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0xe1}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xac}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x19}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5}]}, {0x108, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xac}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0xd4, 0xd, 0x0, 0x1, [@NL80211_BAND_5GHZ={0xa8, 0x1, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x11, 0x1, [0xc, 0x18, 0x48, 0x70, 0xb, 0xb, 0x24, 0x27, 0x6f, 0x9, 0x48, 0x1b, 0x24]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x1ff, 0x5, 0x4, 0x401, 0x5, 0xff5d, 0x2a7, 0x3]}}, @NL80211_TXRATE_LEGACY={0xe, 0x1, [0x1bddc9b4433f32a5, 0x16, 0x48, 0x1, 0x16, 0x6, 0x0, 0x60, 0x6c, 0x6]}, @NL80211_TXRATE_LEGACY={0x21, 0x1, [0x60, 0x24, 0x18, 0x24, 0xc, 0x12, 0x9, 0x2, 0x16, 0x0, 0x5, 0x48, 0x6, 0x30, 0x18, 0xc, 0x36, 0x6c, 0x30, 0x48, 0x12, 0x18, 0x6c, 0x3, 0xb, 0x1, 0xb, 0x9, 0x18]}, @NL80211_TXRATE_LEGACY={0x16, 0x1, [0x9, 0x5, 0x6, 0x48, 0x24, 0x0, 0x35, 0x3, 0x24, 0x3, 0x12, 0x48, 0x18, 0x1, 0x30, 0x24, 0x3, 0x6]}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_HT={0x27, 0x2, [{0x3}, {0x3, 0x5}, {0x6, 0x3}, {0x0, 0x4}, {0x5, 0xa}, {0x4, 0x3}, {0x5, 0x8}, {0x7}, {0x0, 0x4}, {0x4, 0x5}, {0x3, 0x7}, {0x0, 0x3}, {0x0, 0x1}, {0x3, 0x5}, {0x2, 0x5}, {0x6, 0x7}, {0x7, 0x8}, {0x3, 0x5}, {0x7, 0x3}, {0x4, 0x9}, {0x4, 0x4}, {0x3, 0x3}, {0x0, 0x2}, {0x6, 0x8}, {0x1, 0xa}, {0x0, 0x4}, {0x0, 0x7}, {0x7, 0x5}, {0x0, 0x2}, {0x2, 0x5}, {0x6, 0x1}, {0x0, 0x9}, {0x2}, {0x0, 0x4}, {0x1, 0x1}]}]}, @NL80211_BAND_2GHZ={0x28, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x24, 0x2, [{0x2, 0x9}, {0x5, 0x8}, {0x4, 0x8}, {0x3, 0x3}, {0x3, 0x1}, {0x1, 0x6}, {0x2, 0x2}, {0x0, 0xa}, {0x7, 0x4}, {0x2, 0x7}, {0x0, 0x4}, {0x0, 0x4}, {0x4, 0xa}, {0x5, 0x1}, {0x2, 0x3}, {0x1, 0x3}, {0x0, 0x9}, {0x1, 0x1}, {0x4, 0x1}, {0x5, 0x9}, {0x3}, {0x7, 0x3}, {0x3, 0xa}, {0x6, 0x4}, {0x3, 0x9}, {0x2, 0x2}, {0x0, 0x2}, {0x1, 0x6}, {0x0, 0x7}, {0x2, 0x9}, {0x7, 0x4}, {0x7, 0x4}]}]}]}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0x1}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xa9}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5, 0x9, 0x1}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5}]}, {0x10, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x4}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x7d}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0xad}]}]}, @NL80211_ATTR_TID_CONFIG={0xb48, 0x11d, 0x0, 0x1, [{0x4}, {0x44, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0xb2}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_AMPDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0x7}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x6}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x1}]}, {0x374, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x2}, @NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x3}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x354, 0xd, 0x0, 0x1, [@NL80211_BAND_60GHZ={0x100, 0x2, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x1f, 0x1, [0x1, 0x18, 0x18, 0xb, 0x16, 0x48, 0xb, 0x2, 0x6c, 0x3, 0x4b, 0x30, 0x3, 0x71, 0x6c, 0x48, 0x24, 0x6c, 0x6c, 0x30, 0x60, 0x16, 0x24, 0x30, 0x60, 0x16, 0x3e]}, @NL80211_TXRATE_LEGACY={0xa, 0x1, [0x36, 0x5, 0xc, 0x9, 0x4, 0x48]}, @NL80211_TXRATE_HT={0x43, 0x2, [{0x6}, {0x1, 0x4}, {0x5, 0x5}, {0x5, 0x8}, {0x6, 0x4}, {0x6, 0x1}, {0x7, 0x9}, {0x0, 0x2}, {0x5, 0x1}, {0x1, 0x9}, {0x2, 0x4}, {0x6, 0x8}, {0x1, 0x3}, {0x7, 0xa}, {0x0, 0x2}, {0x7, 0x5}, {0x3, 0xa}, {0x3, 0x1}, {0x2, 0x8}, {0x3, 0x7}, {0x0, 0x9}, {0x4, 0x2}, {0x5, 0xa}, {0x2, 0x1}, {0x0, 0x3}, {0x3, 0x4}, {0x4, 0x2}, {0x3, 0x5}, {0x6, 0x7}, {0x7, 0x8}, {0x2, 0xa}, {0x1, 0x6}, {0x4, 0x3}, {0x7, 0x6}, {0x1, 0x6}, {0x5, 0x2}, {0x3, 0x6}, {0x1, 0xa}, {0x7}, {0x3, 0x7}, {0x0, 0x4}, {0x7, 0x2}, {0x1, 0x5}, {0x0, 0x8}, {0x0, 0x6}, {0x0, 0x5}, {0x6, 0x8}, {0x1, 0x8}, {0x7, 0x4}, {0x1, 0xa}, {0x7, 0x3}, {0x1, 0x9}, {0x2, 0x8}, {0x1, 0x8}, {0x5, 0x3}, {0x4, 0xa}, {0x6, 0x1}, {0x4, 0xa}, {0x1, 0xa}, {0x6, 0xa}, {0x5, 0x9}, {0x2, 0x5}, {0x1, 0x1}]}, @NL80211_TXRATE_HT={0xd, 0x2, [{0x2, 0x9}, {0x6, 0x8}, {0x1, 0x7}, {}, {0x6}, {0x2}, {0x1, 0x8}, {0x3, 0xa}, {0x4, 0x7}]}, @NL80211_TXRATE_HT={0x3e, 0x2, [{0x5, 0x8}, {0x3, 0x1}, {0x5}, {0x3, 0x8}, {0x1, 0x5}, {0x0, 0xa}, {0x0, 0x8}, {0x7, 0x3}, {0x4, 0x6}, {0x1, 0x4}, {0x3}, {0x1, 0x7}, {0x0, 0x7}, {0x3, 0x7}, {0x3}, {0x3, 0x4}, {0x0, 0x9}, {0x2, 0x2}, {0x0, 0xa}, {0x6, 0x1}, {0x1, 0x5}, {0x0, 0x3}, {0x5, 0x7}, {0x7, 0x7}, {0x0, 0x1}, {0x3, 0xa}, {0x7, 0x5}, {0x1, 0x9}, {0x3, 0x8}, {0x0, 0x9}, {0x3, 0x9}, {0x4, 0x1}, {0x3, 0x6}, {0x6, 0x6}, {0x7}, {0x1, 0x1}, {0x0, 0x4}, {0x3, 0x2}, {0x1, 0x1}, {0x2, 0x5}, {0x4, 0x4}, {0x1, 0x2}, {0x0, 0x9}, {0x0, 0x7}, {0x3, 0x6}, {0x5, 0x4}, {0x0, 0x2}, {0x3, 0x4}, {0x5, 0x5}, {0x5, 0x9}, {0x6}, {0x2}, {}, {0x1, 0x4}, {0x0, 0x7}, {0x0, 0xa}, {0x7}, {0x5, 0x7}]}, @NL80211_TXRATE_HT={0x4}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x2, 0x4, 0x9, 0xec44, 0x1f, 0x3, 0x1, 0x81]}}, @NL80211_TXRATE_LEGACY={0x11, 0x1, [0xc, 0x5, 0x2, 0x16, 0x1b, 0x18, 0x16, 0x9, 0x48, 0x17, 0x4, 0x9, 0x6c]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_5GHZ={0x94, 0x1, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x1ec9, 0x3, 0x20, 0xffff, 0x4, 0x3ff, 0x8000, 0x84]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x1000, 0x1, 0x7, 0xb3b, 0x200, 0x0, 0x77d, 0x4]}}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x9, 0xfff, 0x1, 0x0, 0x6, 0x101, 0xe378, 0xbc]}}, @NL80211_TXRATE_HT={0x42, 0x2, [{0x6, 0x6}, {0x3, 0x9}, {0x0, 0x2}, {0x5, 0x4}, {0x3, 0x2}, {0x3, 0x4}, {0x4, 0xa}, {0x1, 0x2}, {0x2, 0x4}, {0x7, 0xa}, {0x4}, {0x7, 0x2}, {0x0, 0x6}, {0x2, 0x8}, {0x5, 0x1}, {0x0, 0x2}, {0x6}, {0x1, 0x1}, {0x2, 0x4}, {0x0, 0xa}, {0x7, 0x3}, {0x5, 0xa}, {0x1, 0xa}, {0x1, 0xa}, {0x1, 0x3}, {0x1, 0x7}, {0x5}, {0x4, 0x3}, {0x6, 0x7}, {0x4, 0x7}, {0x3, 0x8}, {0x4, 0x2}, {0x3, 0x7}, {0x0, 0xa}, {0x5, 0x2}, {0x5, 0x3}, {0x2, 0x3}, {0x6, 0x5}, {0x2, 0x1}, {0x4}, {0x0, 0x9}, {0x1, 0x4}, {0x6, 0x7}, {0x7, 0x8}, {}, {0x0, 0x9}, {0x5, 0x1}, {0x4}, {0x3, 0x5}, {0x7, 0x9}, {0x3, 0x1}, {0x7, 0x9}, {0x0, 0x9}, {0x2, 0x2}, {0x3, 0x2}, {0x0, 0x4}, {0x3, 0x6}, {0x2, 0x7}, {0x6, 0x7}, {0x1, 0x6}, {0x7, 0x1}, {0x1, 0x5}]}]}, @NL80211_BAND_2GHZ={0xdc, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x18, 0x2, [{0x0, 0x7}, {0x4, 0x2}, {0x1, 0x2}, {0x0, 0x4}, {0x7, 0x3}, {0x1, 0x9}, {0x4, 0x2}, {0x3}, {0x3, 0x7}, {0x4, 0xa}, {0x0, 0x4}, {0x0, 0x4}, {0x1, 0xa}, {0x2, 0x8}, {0x1, 0x1}, {0x3}, {0x4, 0x2}, {0x1, 0x6}, {0x1, 0x3}, {0x6, 0x5}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x7f, 0x2, 0x1, 0x7, 0x44d, 0xde1d, 0x719, 0x9]}}, @NL80211_TXRATE_HT={0x23, 0x2, [{0x5, 0x7}, {0x4, 0x8}, {0x7}, {0x5, 0x1}, {0x6, 0x1}, {0x2, 0x9}, {0x0, 0x4}, {0x6, 0x3}, {0x3, 0x4}, {0x4, 0x9}, {0x4}, {0x1, 0x9}, {0x0, 0x2}, {0x5, 0x2}, {0x1, 0xa}, {0x2}, {0x3, 0x1}, {0x7, 0x7}, {0x6, 0x7}, {0x1, 0x9}, {0x2, 0x2}, {0x2, 0x9}, {0x0, 0x3}, {0x1, 0x2}, {0x1, 0x8}, {0x7, 0x1}, {0x7, 0x7}, {0x0, 0xa}, {0x6, 0x6}, {0x2, 0x7}, {0x1, 0x6}]}, @NL80211_TXRATE_LEGACY={0x23, 0x1, [0x48, 0x5, 0x30, 0x2, 0x6c, 0x48, 0x18, 0x4, 0x16, 0x60, 0x24, 0x36, 0x24, 0x36, 0xc, 0x1b, 0x6, 0x1, 0x3, 0x1b, 0x3, 0x6, 0x1, 0xb, 0x3, 0x5, 0xc, 0x12, 0x36, 0x6, 0x36]}, @NL80211_TXRATE_HT={0x31, 0x2, [{0x6, 0x3}, {0x3, 0x2}, {0x0, 0x7}, {0x0, 0x9}, {0x6, 0x4}, {0x6, 0x6}, {0x4, 0x1}, {0x1, 0x7}, {0x7, 0x7}, {0x3, 0x5}, {0x4}, {0x5, 0x9}, {0x1, 0x8}, {0x5, 0x9}, {0x6, 0x5}, {0x2}, {0x2, 0x7}, {0x0, 0xa}, {0x5, 0x9}, {0x2, 0x1}, {0x4, 0x1}, {0x6, 0x9}, {0x2, 0xa}, {0x4, 0x9}, {0x6, 0x7}, {0x1, 0x7}, {0x6, 0x8}, {0x3, 0x3}, {0x1}, {0x0, 0x7}, {0x5}, {0x0, 0x8}, {0x1, 0x5}, {0x7, 0x4}, {0x2, 0x7}, {0x2, 0x1}, {0x4, 0xa}, {0x4}, {0x7, 0x2}, {0x3, 0xa}, {0x1, 0x1}, {0x1, 0x1}, {0x3, 0x2}, {0x6, 0x9}, {0x7, 0x1}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xffff, 0x6, 0x3ff, 0x8, 0x8, 0x8000, 0x8f3, 0x7]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x54f, 0x1000, 0x8000, 0x5, 0x7ff, 0xd2a3, 0x8000, 0x81]}}]}, @NL80211_BAND_6GHZ={0x40, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HT={0x9, 0x2, [{0x7, 0x8}, {0x0, 0x5}, {0x6, 0xa}, {0x5, 0x3}, {0x0, 0x6}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x6, 0x1, 0x6, 0x9, 0x4, 0x8, 0xcc5, 0x9]}}, @NL80211_TXRATE_LEGACY={0x19, 0x1, [0x16, 0x6c, 0x7c, 0x48, 0x70, 0x24, 0x5, 0x4, 0x24, 0x24, 0x5, 0x12, 0x1b, 0x16, 0x18, 0x36, 0x3, 0x6, 0x2, 0x1, 0x2]}]}, @NL80211_BAND_6GHZ={0x84, 0x3, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x1c, 0x1, [0x6c, 0x18, 0x3, 0xc, 0x6c, 0x1, 0x4, 0x6, 0x1, 0xd, 0x1, 0x18, 0x2, 0x16, 0x9, 0x5, 0x5, 0x56, 0xc, 0xc, 0x1, 0xc, 0x0, 0x6]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xbc1a, 0x8, 0xfff7, 0x6, 0x5, 0x5, 0x8, 0x7]}}, @NL80211_TXRATE_HT={0x46, 0x2, [{0x4, 0x5}, {0x6, 0x2}, {0x3, 0x10}, {0x3, 0x3}, {0x0, 0x5}, {0x2, 0x3}, {0x1}, {0x0, 0x3}, {0x5, 0x6}, {0x4, 0x7}, {0x3, 0x4}, {0x2, 0x6}, {0x0, 0x7}, {0x5, 0x4}, {0x6, 0x9}, {0x3, 0x1}, {0x0, 0x4}, {0x1, 0x3}, {0x1}, {0x7, 0x1}, {0x6, 0x1}, {0x0, 0x2}, {0x5, 0x3}, {0x3, 0x8}, {0x0, 0x3}, {0x5, 0x7}, {0x6, 0xa}, {0x6, 0x1}, {0x2, 0x7}, {0x2, 0x6}, {0x7}, {0x6, 0x5}, {0x4, 0x6}, {0x4, 0x3}, {0x0, 0x2}, {0x1, 0xa}, {0x0, 0x7}, {0x2, 0x9}, {0x3, 0x9}, {0x0, 0x5}, {0x7, 0x8}, {0x6, 0x9}, {0x6}, {0x3, 0x2}, {0x1, 0x9}, {0x7, 0x6}, {0x2, 0x3}, {0x1, 0x2}, {0x4, 0x3}, {0x7}, {0x2, 0x6}, {0x0, 0x7}, {0x1, 0x2}, {0x4, 0x2}, {0x2, 0x9}, {0x1, 0x7}, {0x6, 0x5}, {0x3, 0x3}, {0x1, 0x4}, {0x1, 0x3}, {0x1, 0x3}, {0x2, 0x9}, {0x1, 0x7}, {0x2, 0x5}, {0x3, 0xa}, {0x6, 0x9}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_5GHZ={0x1c, 0x1, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x18, 0x1, [0x60, 0x16, 0x1b, 0x6c, 0x24, 0x4, 0x0, 0x24, 0x5, 0x6, 0x5, 0x4d, 0x1, 0x24, 0x2, 0x1b, 0x4, 0x48, 0x18, 0x3]}]}]}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5}]}, {0x118, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0xb8}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x10c, 0xd, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x30, 0x1, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x10, 0x1, [0x12, 0x6c, 0x1, 0x24, 0x36, 0x6c, 0x3, 0x9, 0x30, 0x2, 0x6c, 0x18]}, @NL80211_TXRATE_LEGACY={0x1a, 0x1, [0x60, 0x6c, 0x0, 0x24, 0xb, 0xc, 0x36, 0x1, 0x6c, 0x19, 0x60, 0x18, 0x12, 0x6, 0x5, 0x2, 0x53ec549baa498739, 0x24, 0x30, 0x5, 0x6c, 0x14]}]}, @NL80211_BAND_5GHZ={0xd8, 0x1, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0xd, 0x1, [0x6c, 0x1, 0x16, 0xa, 0x12, 0x60, 0xc, 0x5, 0x3]}, @NL80211_TXRATE_HT={0x4f, 0x2, [{0x7}, {0x0, 0x2}, {0x1, 0x6}, {0x1, 0x3}, {0x2, 0x9}, {0x7, 0x4}, {0x5, 0x9}, {0x0, 0x3}, {0x6, 0x3}, {0x7, 0x1}, {0x7, 0x9}, {0x0, 0x5}, {0x3}, {0x1, 0x2}, {0x1, 0x9}, {0x3, 0xa}, {0x1, 0x4}, {0x0, 0x5}, {0x1, 0x5}, {0x2, 0x2}, {0x7, 0x2}, {0x6, 0x7}, {0x5, 0x1}, {0x7, 0x7}, {0x2, 0x2}, {0x1, 0x9}, {0x4, 0x7}, {0x6, 0x9}, {0x7, 0x9}, {0x1, 0x9}, {0x4, 0x1}, {0x4, 0x4}, {0x0, 0xa}, {0x0, 0x7}, {0x2, 0x2}, {0x6, 0x8}, {0x3, 0x8}, {}, {0x2, 0x1}, {0x0, 0x3}, {0x0, 0x8}, {0x7}, {0x1, 0x1}, {0x5, 0x4}, {0x2, 0x8}, {0x4, 0x8}, {0x3, 0x4}, {0x5, 0x2}, {0x3, 0x7}, {0x0, 0x1}, {0x0, 0x1}, {0x1}, {0x2, 0x3}, {0x0, 0x3}, {0x1, 0x1}, {0x7, 0x4}, {0x0, 0x9}, {0x3}, {0x4, 0x5}, {0x1, 0x9}, {0x1, 0xa}, {0x6, 0x7}, {0x6, 0x2}, {0x1, 0x6}, {0x7, 0x2}, {0x5}, {0x3, 0x3}, {0x1, 0xa}, {0x0, 0x1}, {0x1, 0x2}, {0x1, 0xa}, {0x2}, {0x6, 0x2}, {0x4}, {0x5, 0x8}]}, @NL80211_TXRATE_LEGACY={0x20, 0x1, [0x3, 0x9, 0x5, 0x60, 0xc6cb202cf4894b5f, 0x0, 0x3, 0x4, 0x18, 0x12, 0xb, 0x1b, 0x12, 0xc, 0x60, 0x48, 0xb, 0x12, 0x4, 0xb, 0x16, 0x9, 0x60, 0x1b, 0x5, 0x16, 0xc, 0x4]}, @NL80211_TXRATE_HT={0x4c, 0x2, [{0x1, 0x4}, {0x2, 0x8}, {0x4, 0x3}, {0x7, 0x6}, {0x4, 0x1}, {0x6, 0x8}, {0x2, 0x1}, {0x2}, {0x4}, {0x7, 0x8}, {0x3}, {0x5, 0x4}, {0x1, 0x8}, {0x6, 0xa}, {0x1, 0x2}, {0x7, 0x1}, {0x1, 0x5}, {0x7, 0x9}, {0x0, 0x6}, {0x7, 0xa}, {0x4, 0x8}, {0x0, 0x2}, {0x3, 0x9}, {}, {0x3, 0x6}, {0x3, 0x1}, {0x2, 0x9}, {0x3, 0x7}, {0x6, 0x8}, {0x2, 0x7}, {0x6, 0x9}, {0x0, 0x8}, {0x3, 0x5}, {0x4, 0x5}, {0x0, 0x4}, {0x5, 0x4}, {0x2}, {0x2, 0x9}, {0x5}, {0x1, 0x3}, {0x5, 0x5}, {0x2, 0x1}, {0x4, 0x6}, {0x0, 0x8}, {0x1, 0x4}, {0x6, 0x6}, {0x0, 0x6}, {0x1, 0x3}, {0x7, 0x6}, {0x2, 0x8}, {0x5, 0x4}, {0x1, 0xa}, {0x2, 0x2}, {0x7, 0x5}, {0x7, 0x1}, {0x0, 0x3}, {0x1}, {0x6, 0x7}, {0x3, 0xa}, {0x5, 0x4}, {0x2, 0x7}, {0x1, 0x4}, {0x2, 0x1}, {0x7}, {0x6}, {0x2, 0x5}, {0x5, 0x2}, {0x1, 0x3}, {0x7, 0x8}, {0x1, 0x2}, {0x1, 0x2}, {0x4, 0x9}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}]}]}]}, {0x20, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x7fffffff}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0x15}, @NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x2}]}, {0x52c, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_PEER_SUPP={0xc, 0x3, 0x10000}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x10, 0xd, 0x0, 0x1, [@NL80211_BAND_5GHZ={0xc, 0x1, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}]}]}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0x46}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0xe}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0x4fc, 0xd, 0x0, 0x1, [@NL80211_BAND_6GHZ={0xdc, 0x3, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_LEGACY={0x6, 0x1, [0x18, 0x6c]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_HT={0x36, 0x2, [{0x2, 0x6}, {0x6, 0x7}, {0x7, 0x5}, {0x1}, {0x1, 0x8}, {0x7, 0x2}, {0x2, 0xa}, {0x4, 0x6}, {0x3, 0x1}, {0x7, 0x5}, {0x6}, {0x5, 0x9}, {0x7, 0x1}, {0x0, 0x3}, {0x7}, {0x3, 0x5}, {0x2}, {0x7, 0xa}, {0x3, 0x3}, {0x0, 0x6}, {0x1, 0x3}, {0x3, 0x4}, {0x5, 0x2}, {0x3, 0x2}, {0x4, 0x7}, {0x3, 0x5}, {0x4}, {0x0, 0x8}, {0x5}, {0x0, 0x2}, {0x6, 0x1}, {0x6, 0xa}, {0x7, 0x5}, {0x5, 0xa}, {0x4, 0x9}, {0x0, 0x4}, {0x6}, {0x4, 0x8}, {0x0, 0x8}, {0x6, 0x7}, {0x4, 0x1}, {0x0, 0x9}, {0x7, 0x4}, {0x1, 0x9}, {0x3, 0x7}, {0x4, 0xa}, {0x3, 0x6}, {0x6, 0x5}, {0x4, 0xa}, {0x2, 0x9}]}, @NL80211_TXRATE_LEGACY={0x13, 0x1, [0x30, 0x24, 0x48, 0x2, 0x5, 0x24, 0x6, 0x12, 0x36, 0x79, 0x6, 0x6, 0xb, 0x48, 0x6]}, @NL80211_TXRATE_HT={0x8, 0x2, [{0x7, 0x2}, {0x1, 0x7}, {0x1}, {0x4, 0x1}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x59c151e2aabc27ce}, @NL80211_TXRATE_HT={0x24, 0x2, [{0x6, 0x5}, {0x2, 0x4}, {0x5, 0x4}, {0x1}, {0x6, 0x1}, {0x3, 0x1}, {0x4, 0x6}, {0x6, 0x3}, {0x6, 0x7}, {0x6, 0x2}, {0x3, 0x3}, {0x7, 0x7}, {0x0, 0x6}, {0x6, 0x1}, {0x0, 0x8}, {0x6, 0x1}, {0x5, 0x3}, {0x0, 0x6}, {0x2, 0x5}, {0x6, 0x8}, {0x5, 0x8}, {0x2, 0x7}, {0x4, 0x4}, {0x4, 0x5}, {0x5, 0xa}, {0x4}, {0x7, 0x5}, {0x1, 0x7}, {0x3, 0x5}, {0x6, 0x7}, {0x3, 0x3}, {0x1, 0x9}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x200, 0x3, 0x6, 0x8000, 0x1000, 0xa5, 0x9, 0xc2]}}, @NL80211_TXRATE_HT={0x2a, 0x2, [{0x3, 0x1}, {0x1, 0x5}, {0x4, 0x5}, {0x7}, {0x7, 0x9}, {0x0, 0x9}, {0x7, 0x6}, {0x4, 0x7}, {0x1}, {0x1, 0x1c}, {0x1, 0x9}, {0x2, 0x2}, {0x6, 0x8}, {0x1, 0x4}, {0x1, 0x6}, {0x3, 0x5}, {0x4, 0x8}, {0x1, 0x1}, {0x3, 0x9}, {0x5, 0x8}, {0x1, 0xa}, {0x1, 0x2}, {0x7}, {0x6, 0x6}, {0x2, 0xa}, {0x3, 0x8}, {0x6, 0x4}, {0x2, 0x9}, {0x2, 0x7}, {0x7, 0x5}, {}, {0x5, 0x3}, {0x3, 0x7}, {0x1}, {0x3, 0x2}, {0x0, 0x2}, {0x0, 0x6}, {0x0, 0x8}]}]}, @NL80211_BAND_2GHZ={0x6c, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x4, 0x0, 0xffff, 0x6, 0x0, 0x7fff, 0x101, 0x5]}}, @NL80211_TXRATE_HT={0x16, 0x2, [{0x3, 0x1}, {0x7, 0x7}, {0x1, 0x5}, {0x6, 0x7}, {0x4, 0x7}, {0x4, 0x9}, {0x7, 0x9}, {0x0, 0xa}, {0x6, 0x4}, {0x6, 0x9}, {0x5, 0x7}, {}, {0x7, 0x5}, {0x7, 0xa}, {0x0, 0x8}, {0x3, 0x9}, {0x5}, {0x6, 0x7}]}, @NL80211_TXRATE_LEGACY={0x7, 0x1, [0x9, 0x5, 0x3f]}, @NL80211_TXRATE_GI={0x5, 0x4, 0xcf480fb85b47262}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x2, 0x101, 0x4, 0x6, 0x1b7f, 0x40, 0xb30, 0x8]}}, @NL80211_TXRATE_LEGACY={0x7, 0x1, [0x60, 0x48, 0x60]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}]}, @NL80211_BAND_6GHZ={0x90, 0x3, 0x0, 0x1, [@NL80211_TXRATE_HT={0x3e, 0x2, [{0x1, 0x2}, {0x0, 0x2}, {0x1, 0x1}, {0x0, 0x3}, {0x7, 0x5}, {0x2, 0x9}, {0x5, 0x9}, {0x1}, {0x6, 0x3}, {0x5}, {0x4, 0x9}, {0x3, 0x3}, {0x1, 0x1}, {0x0, 0x9}, {0x0, 0x5}, {0x3, 0xa}, {0x5, 0x4}, {0x2, 0x7}, {0x7, 0x2}, {0x5, 0x3}, {0x3, 0x6}, {0x0, 0xa}, {0x6, 0x6}, {0x7, 0x3}, {0x2, 0x5}, {0x2}, {0x3, 0x1}, {0x7, 0x4}, {0x0, 0x6}, {0x1, 0x5}, {0x1, 0x2}, {0x6, 0x1}, {0x4, 0x1}, {0x5, 0x1}, {0x3, 0x8}, {0x4, 0x6}, {0x2, 0x5}, {0x6, 0x1}, {0x3, 0x9}, {0x3, 0x3}, {0x3, 0x4}, {0x2, 0x9}, {0x6, 0xa}, {0x3, 0x1}, {0x4, 0xa}, {0x0, 0x9}, {0x0, 0x4}, {0x0, 0xa}, {0x0, 0x9}, {0x4, 0x5}, {0x5, 0x1}, {0x0, 0x6}, {0x0, 0xa}, {0x5, 0x2}, {0x6, 0x2}, {0x6, 0x6}, {0x3, 0x7}, {0x5, 0x1}]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x120, 0x3, 0x8233, 0x5993, 0x7, 0x80, 0x200, 0x9]}}, @NL80211_TXRATE_HT={0x25, 0x2, [{0x6, 0x9}, {0x1, 0x9}, {0x4}, {0x1, 0x6}, {0x7, 0x1}, {0x4, 0x5}, {0x6, 0x1}, {0x7, 0x6}, {0x3, 0x2}, {0x0, 0x2}, {0x0, 0x2}, {0x1, 0xa}, {0x4, 0x9}, {0x1, 0x9}, {0x3}, {0x0, 0x2}, {0x7, 0x3}, {0x5, 0x4}, {0x2, 0x8}, {0x6, 0x8}, {0x4, 0x5}, {0x5, 0x5}, {0x2, 0x6}, {0x1, 0x9}, {0x1, 0x4}, {0x1}, {0x6, 0x4}, {0x1, 0xa}, {0x2, 0x3}, {}, {0x0, 0x8}, {0x3, 0x7}, {0x4}]}, @NL80211_TXRATE_LEGACY={0x7, 0x1, [0x6, 0x4, 0x16]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}]}, @NL80211_BAND_2GHZ={0x18, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x401, 0x4, 0x8, 0x3ff, 0x0, 0x7ff, 0x8, 0x5]}}]}, @NL80211_BAND_60GHZ={0x40, 0x2, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x6, 0x1, [0xb, 0x4]}, @NL80211_TXRATE_LEGACY={0x10, 0x1, [0xc, 0x2d, 0x16, 0x48, 0x1, 0x60, 0x1b, 0xc, 0x1, 0x30, 0x0, 0x4]}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xe57, 0x8, 0x5, 0x400, 0x9, 0x9, 0x8000, 0x4]}}, @NL80211_TXRATE_GI={0x5}]}, @NL80211_BAND_6GHZ={0xd8, 0x3, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x24, 0x1, [0x30, 0x2, 0x4, 0x18, 0x48, 0x2f, 0x4, 0xc, 0x2, 0x9, 0xf28e54caf85dc0c6, 0x6c, 0x18, 0x16, 0xb, 0x9, 0x3, 0x1b, 0xb, 0xc, 0x4, 0x0, 0x4, 0x36, 0x5, 0x4, 0x18, 0x3, 0x48, 0x5, 0x9, 0x9]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x312, 0x1, 0x0, 0x0, 0x2, 0xfffb, 0x93a, 0x3]}}, @NL80211_TXRATE_LEGACY={0x1c, 0x1, [0x48, 0x12, 0xb, 0x0, 0x5, 0x48, 0x48, 0x3, 0x30, 0x2, 0xa, 0x6, 0x6, 0x6c, 0x1b, 0x6c, 0x12, 0x6, 0x9, 0x48, 0x60, 0x11, 0x0, 0xb]}, @NL80211_TXRATE_LEGACY={0xd, 0x1, [0x3, 0x6c, 0x16, 0x5c, 0x6, 0x24, 0xc, 0x2, 0x60]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x4, 0x8000, 0x6, 0x4, 0x9, 0x3ff, 0x5a2, 0xf25a]}}, @NL80211_TXRATE_LEGACY={0x12, 0x1, [0x6, 0xb, 0x12, 0x6, 0x2, 0xc, 0x18, 0x6c, 0x12, 0x0, 0x1b, 0x1, 0x4, 0x6c]}, @NL80211_TXRATE_HT={0x2e, 0x2, [{0x3, 0x4}, {0x0, 0x8}, {0x7, 0x8}, {0x0, 0x8}, {0x4, 0x9}, {0x1, 0x7}, {0x4, 0x9}, {0x0, 0x2}, {0x6, 0x2}, {0x0, 0x8}, {0x1, 0x3}, {0x2, 0x8}, {0x1, 0x1}, {0x1, 0x8}, {0x5, 0xa}, {0x1, 0x9}, {0x1}, {0x2}, {0x5, 0x3}, {0x5, 0xa}, {0x3, 0x1}, {0x6, 0x2}, {0x6, 0x1}, {0x4, 0x6}, {0x0, 0x4}, {0x1, 0x6}, {0x6, 0x3}, {0x2, 0x4}, {0x4, 0x5}, {0x1}, {0x4, 0x7}, {0x4}, {0x6, 0x3}, {0x4, 0xa}, {0x7, 0x5}, {0x1, 0x8}, {0x4, 0x8}, {0x5, 0x2}, {0x6, 0x2}, {0x4, 0x9}, {0x7, 0x8}, {0x1, 0x7}]}, @NL80211_TXRATE_HT={0xd, 0x2, [{0x1}, {0x7}, {0x2, 0xa}, {0x7}, {0x0, 0x3}, {0x3, 0x8}, {0x0, 0x7}, {0x7, 0x9}, {0x7, 0x8}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}, @NL80211_BAND_2GHZ={0xe0, 0x0, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x1b, 0x1, [0x18, 0x5, 0x6, 0x0, 0x48, 0xb, 0x4, 0x18, 0x2, 0x48, 0x4, 0xc, 0xb, 0x48, 0x4, 0x2, 0x2, 0x1, 0x4, 0x0, 0x6, 0x4, 0x1b]}, @NL80211_TXRATE_HT={0xd, 0x2, [{0x7, 0x6}, {0x7, 0x9}, {0x1, 0x8}, {0x5, 0x1}, {0x7, 0x5}, {0x5, 0xa}, {0x0, 0x7}, {0x0, 0x3}, {0x4, 0x2}]}, @NL80211_TXRATE_LEGACY={0x19, 0x1, [0x30, 0x48, 0x1, 0x48, 0x30, 0x2, 0x60, 0x2, 0x12, 0x1, 0x1, 0x48, 0x0, 0xc, 0xc, 0x6, 0xb, 0x24, 0x18, 0x2, 0x3]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_LEGACY={0x11, 0x1, [0x6, 0x1b, 0x18, 0x2, 0x2, 0x18, 0x5, 0x10, 0x60, 0x6, 0x18, 0x4, 0x3b]}, @NL80211_TXRATE_LEGACY={0x1b, 0x1, [0x4, 0x18, 0x18, 0x6, 0x1, 0xc, 0x60, 0x1b, 0x4, 0x48, 0x5, 0x6, 0x6c, 0x1b, 0x0, 0x30, 0x9, 0x6, 0x18, 0x60, 0x3, 0x16, 0x48]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x1, 0x3, 0x0, 0xff, 0x101, 0x63a, 0x2]}}, @NL80211_TXRATE_HT={0x46, 0x2, [{0x0, 0x7}, {0x4}, {0x2, 0x8}, {0x1}, {0x5, 0x5}, {0x5}, {0x2, 0xa}, {0x6, 0x8}, {0x4}, {0x6, 0x2}, {0x7, 0x4}, {0x0, 0xa}, {0x7, 0x6}, {0x3, 0x7}, {0x5, 0xa}, {0x4, 0x4}, {0x5, 0x9}, {0x2}, {0x3, 0x6}, {0x0, 0x9}, {0x4}, {0x2, 0x9}, {0x0, 0xa}, {0x6}, {0x2, 0x7}, {0x0, 0x2}, {0x7, 0x5}, {0x1, 0x8}, {0x2, 0xa}, {0x7, 0x2}, {0x0, 0x2}, {0x1, 0x5}, {0x6, 0x7}, {0x0, 0x2}, {0x4, 0x9}, {0x5, 0x7}, {0x4, 0x5}, {0x0, 0x9}, {0x0, 0x6}, {0x1, 0x3}, {0x3}, {0x7, 0x1}, {0x5, 0x3}, {0x3, 0x4}, {0x1, 0x2}, {0x7, 0xa}, {0x1, 0x7}, {0x3, 0x9}, {0x5}, {0x5, 0x6}, {0x4, 0x9}, {0x6, 0x5}, {0x4}, {0x1, 0x8}, {0x2, 0xa}, {0x0, 0x9}, {0x5, 0x2}, {0x5, 0x9}, {0x5, 0x7}, {0x3, 0x2}, {0x6, 0xa}, {0x1, 0x9}, {0x2, 0x8}, {0x4, 0x8}, {0x1, 0x8}, {0x7, 0x4}]}]}, @NL80211_BAND_2GHZ={0x6c, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x43, 0x2, [{0x3, 0x5}, {0x1, 0x7}, {0x2}, {0x5, 0x8}, {0x6, 0x3}, {0x3, 0x5}, {0x1}, {0x2, 0x4}, {0x0, 0x1}, {0x5, 0x5}, {0x2, 0x7}, {0x2, 0x3}, {0x1, 0x5}, {0x4, 0x5}, {}, {0x6, 0x1}, {0x2, 0x8}, {0x2, 0x5}, {0x7}, {0x2, 0x5}, {0x7, 0x5}, {0x4, 0x1}, {0x7, 0x8}, {0x7, 0x9}, {0x2, 0x2}, {0x5, 0x9}, {0x4, 0x6}, {0x6, 0x2}, {0x5, 0x1}, {0x0, 0x9}, {0x4, 0x2}, {0x0, 0x6}, {0x3, 0x1}, {0x0, 0xa}, {0x5, 0x8}, {0x1, 0x4}, {0x6, 0x8}, {0x3}, {0x0, 0x1}, {0x4, 0x9}, {0x1, 0x6}, {0x5}, {0x2, 0xa}, {0x6, 0x2}, {0x1}, {0x0, 0xa}, {0x1, 0x8}, {0x3, 0x2}, {0x0, 0x6}, {0x7, 0x8}, {0x6, 0x1}, {0x7, 0x1}, {0x1}, {0x4, 0x5}, {0x0, 0xa}, {0x5, 0x1}, {0x3, 0x8}, {0x3, 0x5}, {0x5, 0x7}, {0x3, 0x3}, {0x5, 0x7}, {0x0, 0x2}, {0x2, 0x6}]}, @NL80211_TXRATE_LEGACY={0x23, 0x1, [0x6c, 0x48, 0x0, 0x18, 0x16, 0x18, 0x5, 0x12, 0x12, 0x2, 0x24, 0x9, 0x60, 0xb, 0xfae5eb85aa1349b2, 0x6, 0x48, 0x22, 0x18, 0x60, 0x2, 0x30, 0x1, 0x6c, 0x4, 0x12, 0x24, 0x3, 0x9, 0xc, 0x36]}]}, @NL80211_BAND_2GHZ={0x44, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HT={0x36, 0x2, [{0x7, 0xa}, {0x1}, {0x0, 0x3}, {0x3, 0x4}, {0x5, 0x3}, {0x2, 0x6}, {0x1, 0x7}, {0x3, 0xa}, {0x7, 0x4}, {0x7}, {0x1, 0x4}, {0x0, 0x3}, {0x0, 0x6}, {0x7, 0x2}, {0x1, 0x3}, {0x7, 0x1}, {0x7, 0x9}, {0x4, 0x7}, {0x0, 0x5}, {0x5, 0x9}, {0x4, 0x4}, {0x2, 0xa}, {0x0, 0x2}, {0x6, 0x16}, {0x5, 0x6}, {0x4, 0x7}, {0x3, 0x1}, {0x4}, {0x5, 0x5}, {0x2, 0x5}, {0x7, 0x7}, {0x1, 0x5}, {0x2, 0x5}, {0x4, 0x1}, {0x1, 0x6}, {0x1, 0xa}, {0x0, 0x6}, {0x4, 0x5}, {0x3, 0x7}, {0x1, 0x7}, {0x3, 0x6}, {0x0, 0x8}, {0x3, 0x9}, {0x6, 0x2}, {0x5, 0x6}, {0x5, 0x1}, {0x1, 0x1}, {0x7, 0x6}, {0x4, 0x3}, {0x1, 0x8}]}, @NL80211_TXRATE_LEGACY={0x5, 0x1, [0x12]}]}, @NL80211_BAND_6GHZ={0x60, 0x3, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x1, 0x5, 0x9, 0x3, 0x1, 0xfffe, 0x2b50]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_GI={0x5, 0x4, 0xc68ace403cf8ed3a}, @NL80211_TXRATE_LEGACY={0x10, 0x1, [0x3, 0x24, 0x60, 0x36, 0x6c, 0x12, 0xc, 0xb, 0x36, 0x6b6ff20b3929f750, 0x48, 0x5]}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0xff, 0x1, 0x7f, 0xab, 0x2, 0x1, 0x3, 0x729]}}, @NL80211_TXRATE_LEGACY={0x14, 0x1, [0x3, 0x1, 0x60, 0x6c, 0x2, 0x24, 0x12, 0x1, 0x3, 0x2, 0x3, 0x24, 0xc, 0x1b, 0x9, 0x1b]}]}]}]}, {0xc8, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}, @NL80211_TID_CONFIG_ATTR_TX_RATE={0xc0, 0xd, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x28, 0x1, 0x0, 0x1, [@NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_GI={0x5}, @NL80211_TXRATE_LEGACY={0xc, 0x1, [0xb, 0x30, 0x10, 0x3, 0x2, 0xc, 0x0, 0x30]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}]}, @NL80211_BAND_5GHZ={0x58, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HT={0x34, 0x2, [{0x3}, {0x7, 0x3}, {0x5, 0x8}, {0x3, 0x7}, {0x0, 0x8}, {0x0, 0x7}, {0x1, 0x2}, {0x2, 0x2}, {0x0, 0x9}, {0x2, 0x5}, {0x3, 0x6}, {0x3, 0x8}, {0x7}, {0x2, 0x8}, {0x2, 0x6}, {0x3, 0x9}, {0x0, 0x1}, {0x0, 0x2}, {0x3, 0x8}, {}, {0x1, 0x1}, {0x3, 0x5}, {0x0, 0x4}, {0x0, 0x1}, {0x5, 0x4}, {0x4, 0x4}, {0x0, 0x2}, {0x4, 0x4}, {0x6, 0x4}, {}, {0x0, 0xa}, {0x4, 0xa}, {0x4, 0x4}, {0x5, 0x1}, {0x1, 0x4}, {0x5, 0x5}, {0x7, 0x18}, {0x2, 0x5}, {0x2, 0x3}, {0x3, 0x1}, {0x4, 0x8}, {0x6, 0x8}, {0x5, 0x8}, {0x1, 0x7}, {0x0, 0xc}, {0x0, 0xa}, {0x7}, {0x0, 0x7}]}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_GI={0x5, 0x4, 0x2}, @NL80211_TXRATE_HT={0xd, 0x2, [{0x1, 0x9}, {0x3, 0x5}, {0x7, 0x5}, {0x2, 0x2}, {0x4, 0x1}, {0x7, 0x1}, {0x5}, {0x0, 0x1}, {0x2, 0xa}]}]}, @NL80211_BAND_2GHZ={0x3c, 0x0, 0x0, 0x1, [@NL80211_TXRATE_VHT={0x14, 0x3, {[0x1ff, 0x3, 0x0, 0x92, 0x6, 0xe5e, 0x2, 0x3]}}, @NL80211_TXRATE_VHT={0x14, 0x3, {[0x1b8, 0x100, 0x3, 0x9, 0x1, 0xa55, 0xc86f, 0x40]}}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}, @NL80211_TXRATE_GI={0x5, 0x4, 0x1}]}]}]}, {0x2c, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE_TYPE={0x5, 0xc, 0x1}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0xb7}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5, 0xb, 0x1}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5, 0x6, 0x1}, @NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0xb6}]}, {0x30, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0x1}, @NL80211_TID_CONFIG_ATTR_AMSDU_CTRL={0x5}, @NL80211_TID_CONFIG_ATTR_RETRY_LONG={0x5, 0x8, 0xea}, @NL80211_TID_CONFIG_ATTR_RTSCTS_CTRL={0x5, 0xa, 0x1}, @NL80211_TID_CONFIG_ATTR_RETRY_SHORT={0x5, 0x7, 0xc7}, @NL80211_TID_CONFIG_ATTR_OVERRIDE={0x4}]}]}]}, 0xe14}, 0x1, 0x0, 0x0, 0x40010}, 0x24040040)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x84009422, &(0x7f0000000400)={0x0, 0x0, {}, {0x0, @usage, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}})
r3 = syz_open_dev$sg(&(0x7f0000002040), 0x8, 0x200000)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
clock_gettime(0x0, &(0x7f0000001900)={<r5=>0x0, <r6=>0x0})
recvmmsg(r4, &(0x7f0000001800)=[{{&(0x7f0000000000)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast}, 0x80, &(0x7f0000000340)=[{&(0x7f0000000080)=""/14, 0xe}, {&(0x7f00000000c0)=""/51, 0x33}, {&(0x7f0000000100)=""/103, 0x67}, {&(0x7f0000000180)=""/182, 0xb6}, {&(0x7f0000000240)=""/237, 0xed}], 0x5, &(0x7f0000000800)=""/239, 0xef}, 0xffffff81}, {{&(0x7f0000000900)=@l2={0x1f, 0x0, @fixed}, 0x80, &(0x7f0000000d80)=[{&(0x7f0000000980)=""/218, 0xda}, {&(0x7f0000000a80)=""/216, 0xd8}, {&(0x7f0000000b80)=""/81, 0x51}, {&(0x7f00000003c0)=""/52, 0x34}, {&(0x7f0000000c00)=""/38, 0x26}, {&(0x7f0000000c40)=""/36, 0x24}, {&(0x7f0000000c80)=""/251, 0xfb}], 0x7, &(0x7f0000000e00)=""/48, 0x30}, 0xffffffff}, {{&(0x7f0000000e40)=@ax25={{}, [@null, @null, @remote, @remote, @default, @default, @remote, @default]}, 0x80, &(0x7f0000001440)=[{&(0x7f0000000ec0)=""/84, 0x54}, {&(0x7f0000000f40)=""/143, 0x8f}, {&(0x7f0000001000)=""/98, 0x62}, {&(0x7f0000001080)=""/82, 0x52}, {&(0x7f0000001100)=""/158, 0x9e}, {&(0x7f00000011c0)=""/214, 0xd6}, {&(0x7f00000012c0)=""/101, 0x65}, {&(0x7f0000001340)=""/234, 0xea}], 0x8, &(0x7f00000014c0)=""/63, 0x3f}, 0x7ff}, {{&(0x7f0000001500)=@hci, 0x80, &(0x7f00000016c0)=[{&(0x7f0000001580)=""/111, 0x6f}, {&(0x7f0000001600)=""/184, 0xb8}], 0x2, &(0x7f0000001700)=""/218, 0xda}, 0xfc}], 0x4, 0x2000, &(0x7f0000001940)={r5, r6+60000000})
ioctl$BLKTRACESETUP(r3, 0x227a, 0x0)

[  264.257120][T20028] debugfs: Directory 'sg0' with parent 'block' already present!
[  264.271667][T20028] blktrace: debugfs_dir not present for sg0 so skipping
[  264.289452][T20031] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  264.293748][T20032] FAULT_INJECTION: forcing a failure.
[  264.293748][T20032] name failslab, interval 1, probability 0, space 0, times 0
[  264.310180][T20032] CPU: 1 PID: 20032 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  264.318618][T20032] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  264.328665][T20032] Call Trace:
[  264.331938][T20032]  dump_stack_lvl+0xb7/0x103
[  264.336525][T20032]  dump_stack+0x11/0x1a
[  264.340677][T20032]  should_fail+0x23c/0x250
[  264.345088][T20032]  ? dup_mmap+0x38e/0x9c0
[  264.349415][T20032]  __should_failslab+0x81/0x90
[  264.354219][T20032]  should_failslab+0x5/0x20
[  264.358719][T20032]  kmem_cache_alloc+0x46/0x2e0
[  264.363477][T20032]  dup_mmap+0x38e/0x9c0
[  264.367638][T20032]  dup_mm+0x7c/0x210
[  264.371531][T20032]  copy_process+0x144f/0x2f90
[  264.376225][T20032]  ? __alloc_pages+0x194/0x320
[  264.381127][T20032]  ? _copy_from_user+0x94/0xd0
[  264.385885][T20032]  kernel_clone+0x14b/0x680
[  264.390390][T20032]  __se_sys_clone3+0x194/0x1d0
[  264.395154][T20032]  ? __cond_resched+0x11/0x40
[  264.399882][T20032]  ? fput+0x2d/0x130
[  264.403778][T20032]  ? ksys_write+0x157/0x180
[  264.408324][T20032]  ? fpregs_assert_state_consistent+0x7d/0x90
[  264.414385][T20032]  ? exit_to_user_mode_prepare+0x65/0x190
[  264.420105][T20032]  __x64_sys_clone3+0x2d/0x40
[  264.424780][T20032]  do_syscall_64+0x3d/0x90
[  264.429191][T20032]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  264.435098][T20032] RIP: 0033:0x4665f9
[  264.439043][T20032] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  264.458744][T20032] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  264.467153][T20032] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  264.475193][T20032] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  264.483154][T20032] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  264.491186][T20032] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  264.499150][T20032] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:09 executing program 1:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f0000051a40)={0x753, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r1=>0x0}], 0x1f, "12c0116b686a4c"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000052a40)={0x0, ""/256, 0x0, <r2=>0x0})
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000640)={0x0, 0xfffffffffffffffe, 0x5c, 0x6b, @buffer={0x0, 0x98, &(0x7f0000000240)=""/152}, &(0x7f0000000080)="affa6ca199220481a27ebe7714bb689ecd9270faba5871070d6bd2d7f288cc3f3c69ff1cb11393035c67e10356f2ec2012c011a16cd658a64e8f67193da32b880e1180fd6816b46f0966652378adca32568eb3f1f0d66aee07d0308f", &(0x7f0000000180)=""/124, 0x8e, 0x10030, 0x1, &(0x7f0000000300)})
ioctl$SG_IO(r3, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r4 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r4, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r3, 0x81f8943c, &(0x7f0000000440)={<r5=>0x0, ""/256, <r6=>0x0, <r7=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r4, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r7}, {0x0, r7}, {r6}, {r6}, {r6, r7}, {}, {}, {0x0, r7}, {}, {r6, r7}, {0x0, r7}, {}, {r5, r7}, {0x0, r7}, {}, {r6, r7}, {0x0, r7}, {}, {}, {}, {0x0, r7}, {r6}, {0x0, r7}, {0x0, r7}, {r6}, {0x0, r7}, {r5}, {}, {r5}, {0x0, r7}, {}, {}, {r5, r7}, {r6}, {}, {0x0, r7}, {r6, r7}, {0x0, r7}, {r5, r7}, {}, {0x0, r7}, {r6}, {}, {0x0, r7}, {r6}, {0x0, r7}, {r6}, {0x0, r7}, {}, {r5, r7}, {0x0, r7}, {r5}, {}, {r6}, {r5}, {}, {r6, r7}, {}, {0x0, r7}, {0x0, r7}, {0x0, r7}, {0x0, r7}, {r6, r7}, {0x0, r7}, {0x0, r7}, {0x0, r7}, {r6}, {r5, r7}, {}, {r5}, {}, {}, {0x0, r7}, {}, {r6}, {r5}, {}, {}, {}, {0x0, r7}, {r6}, {}, {}, {0x0, r7}, {r5}, {0x0, r7}, {0x0, r7}, {0x0, r7}, {r6, r7}, {}, {}, {0x0, r7}, {}, {r5}, {0x0, r7}, {}, {r6}, {r5, r7}, {0x0, r7}, {r5}, {r6, r7}, {0x0, r7}, {0x0, r7}, {0x0, r7}, {}, {0x0, r7}, {r5}, {r5, r7}, {}, {0x0, r7}, {r5, r7}, {0x0, r7}, {r6, r7}, {r5, r7}, {r6}, {}, {r5, r7}, {r5}, {r6, r7}, {}, {r5}, {r5, r7}, {}, {}, {0x0, r7}, {0x0, r7}, {0x0, r7}, {r6, r7}, {}, {}, {r5, r7}, {<r8=>0x0, r7}, {r6, r7}, {r5, r7}, {r6, r7}, {0x0, r7}, {}, {r6, r7}, {r6}, {}, {0x0, r7}, {r5}, {0x0, r7}, {r6, r7}, {r5}, {0x0, r7}, {r6, r7}, {0x0, r7}, {0x0, r7}, {}, {0x0, r7}, {r6}, {0x0, r7}, {r6}, {r5}, {}, {}, {}, {0x0, r7}, {r5, r7}, {r6, r7}, {}, {}, {}, {r6}, {0x0, r7}, {}, {}, {r5, <r9=>0x0}, {r5}, {0x0, r7}, {r5, r7}, {r6, r7}, {0x0, r7}, {r5}, {}, {r5}, {0x0, r7}, {r6}, {r5, r7}, {r5, r7}, {0x0, r7}, {0x0, r7}, {}, {}, {0x0, r7}, {r6}, {r5}, {}, {r5}, {r6}, {0x0, r7}, {r6, r7}, {0x0, r7}, {r6, r7}, {0x0, r7}, {}, {r6, r7}, {r5, r7}, {r6}, {r6, r7}, {}, {}, {r5}, {}, {r5}, {r6}, {}, {r5, r7}, {}, {}, {0x0, r7}, {r6}, {0x0, r7}, {r5}, {r6}, {r6}, {}, {}, {r6}, {0x0, r7}, {0x0, r7}, {r5, r7}, {r5}, {}, {0x0, r7}, {}, {}, {r6, r7}, {r5}, {0x0, r7}, {r5}, {r6, r7}, {r5, r7}, {r6, r7}, {r6}, {r5, r7}, {}, {}, {r6}, {r5, r7}, {0x0, r7}, {r5, r7}, {0x0, r7}, {r6}, {r6}, {}, {0x0, r7}, {r6, r7}, {}, {0x0, r7}, {}, {}, {0x0, r7}, {r5, r7}], 0x1, "2156816c73038c"})
ioctl$SG_IO(0xffffffffffffffff, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r10 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r10, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={<r11=>0x0, ""/256, <r12=>0x0, <r13=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r10, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r13}, {0x0, r13}, {r12}, {r12}, {r12, r13}, {}, {}, {0x0, r13}, {}, {r12, r13}, {0x0, r13}, {}, {r11, r13}, {0x0, r13}, {}, {r12, r13}, {0x0, r13}, {}, {}, {}, {0x0, r13}, {r12}, {0x0, r13}, {0x0, r13}, {r12}, {0x0, r13}, {r11}, {}, {r11}, {0x0, r13}, {}, {}, {r11, r13}, {r12}, {}, {0x0, r13}, {r12, r13}, {0x0, r13}, {r11, r13}, {}, {0x0, r13}, {r12}, {}, {0x0, r13}, {r12}, {0x0, r13}, {r12}, {0x0, r13}, {}, {r11, r13}, {0x0, r13}, {r11}, {}, {r12}, {r11}, {}, {r12, r13}, {}, {0x0, r13}, {0x0, r13}, {0x0, r13}, {0x0, r13}, {r12, r13}, {0x0, r13}, {0x0, r13}, {0x0, r13}, {r12}, {r11, r13}, {}, {r11}, {}, {}, {0x0, r13}, {}, {r12}, {r11}, {}, {}, {}, {0x0, r13}, {r12}, {}, {}, {0x0, r13}, {r11}, {0x0, r13}, {0x0, r13}, {0x0, r13}, {r12, r13}, {}, {}, {0x0, r13}, {}, {r11}, {0x0, r13}, {}, {r12}, {r11, r13}, {0x0, r13}, {r11}, {r12, r13}, {0x0, r13}, {0x0, r13}, {0x0, r13}, {}, {0x0, r13}, {r11}, {r11, r13}, {}, {0x0, r13}, {r11, r13}, {0x0, r13}, {r12, r13}, {r11, r13}, {r12}, {}, {r11, r13}, {r11}, {r12, r13}, {}, {r11}, {r11, r13}, {}, {}, {0x0, r13}, {0x0, r13}, {0x0, r13}, {r12, r13}, {}, {}, {r11, r13}, {0x0, r13}, {r12, r13}, {r11, r13}, {r12, r13}, {0x0, r13}, {}, {r12, r13}, {r12}, {}, {0x0, r13}, {r11}, {0x0, r13}, {r12, r13}, {r11}, {0x0, r13}, {r12, r13}, {0x0, r13}, {0x0, r13}, {}, {0x0, r13}, {r12}, {0x0, r13}, {r12}, {r11}, {}, {}, {}, {0x0, r13}, {r11, r13}, {r12, r13}, {}, {}, {}, {r12}, {0x0, r13}, {}, {}, {r11}, {r11}, {0x0, r13}, {r11, r13}, {r12, r13}, {0x0, r13}, {r11}, {}, {r11}, {0x0, r13}, {r12}, {r11, r13}, {r11, r13}, {0x0, r13}, {0x0, r13}, {}, {}, {0x0, r13}, {r12}, {r11}, {}, {r11}, {r12}, {0x0, r13}, {r12, r13}, {0x0, r13}, {r12, r13}, {0x0, r13}, {}, {r12, r13}, {r11, r13}, {r12}, {r12, r13}, {}, {}, {r11}, {}, {r11}, {r12}, {}, {r11, r13}, {}, {}, {0x0, r13}, {r12}, {0x0, r13}, {r11}, {r12}, {r12}, {}, {}, {r12}, {0x0, r13}, {0x0, r13}, {r11, r13}, {r11}, {}, {0x0, r13}, {}, {}, {r12, r13}, {r11}, {0x0, r13}, {r11}, {r12, r13}, {r11, r13}, {r12, r13}, {r12}, {r11, r13}, {}, {}, {r12}, {r11, r13}, {0x0, r13}, {r11, r13}, {0x0, r13}, {r12}, {r12}, {}, {0x0, r13}, {r12, r13}, {}, {0x0, r13}, {}, {}, {0x0, r13}, {r11, r13}], 0x1, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000052c40)={0x81, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r14=>0x0}], 0x6, "f550792a5d3f76"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000053c40)={0x0, ""/256, <r15=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000053e40)={0x0, ""/256, 0x0, <r16=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000054040)={0x7, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r8}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r9}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r1, r2}, {r5}, {r11, r14}, {r15, r16}], 0x3, "5823f06a3ef6cc"})
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

[  264.515309][T20033] debugfs: Directory 'sg0' with parent 'block' already present!
[  264.532066][T20033] blktrace: debugfs_dir not present for sg0 so skipping
[  264.547331][    C1] sd 0:0:1:0: tag#7847 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  264.557151][    C1] sd 0:0:1:0: tag#7847 CDB: opcode=0xe5 (vendor)
19:54:09 executing program 4 (fault-call:3 fault-nth:69):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:09 executing program 0:
r0 = getpid()
waitid(0x1, r0, &(0x7f0000000000), 0x1, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
r2 = perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})
r3 = clone3(&(0x7f0000007500)={0x30000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pidfd_open(r3, 0x0)
ioctl$PERF_EVENT_IOC_SET_FILTER(r2, 0x40082406, &(0x7f0000000240)='/dev/sg#\x00')
waitid(0x1, r3, &(0x7f0000000080), 0x80000000, &(0x7f0000000180))
clone3(&(0x7f0000000400)={0x200022000, &(0x7f0000000280)=<r4=>0xffffffffffffffff, &(0x7f00000002c0), &(0x7f0000000300), {0x20}, &(0x7f0000000340)=""/47, 0x2f, &(0x7f0000000380)=""/47, &(0x7f00000003c0)=[r0], 0x1}, 0x58)
pidfd_send_signal(r4, 0x1b, &(0x7f0000000480)={0x12, 0x400}, 0x0)
r5 = dup2(r2, r1)
ioctl$BLKTRACESTOP(r5, 0x1275, 0x0)

[  264.563495][    C1] sd 0:0:1:0: tag#7847 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  264.572538][    C1] sd 0:0:1:0: tag#7847 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  264.581563][    C1] sd 0:0:1:0: tag#7847 CDB[20]: ba
[  264.588893][T20041] debugfs: Directory 'sg0' with parent 'block' already present!
[  264.600154][T20041] blktrace: debugfs_dir not present for sg0 so skipping
[  264.608528][T20047] FAULT_INJECTION: forcing a failure.
[  264.608528][T20047] name failslab, interval 1, probability 0, space 0, times 0
[  264.621220][T20047] CPU: 1 PID: 20047 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  264.622816][T20048] debugfs: Directory 'sg0' with parent 'block' already present!
[  264.629625][T20047] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  264.629639][T20047] Call Trace:
[  264.629646][T20047]  dump_stack_lvl+0xb7/0x103
[  264.655109][T20047]  dump_stack+0x11/0x1a
[  264.659257][T20047]  should_fail+0x23c/0x250
[  264.663678][T20047]  ? dup_mmap+0x38e/0x9c0
[  264.668006][T20047]  __should_failslab+0x81/0x90
[  264.668911][T20048] blktrace: debugfs_dir not present for sg0 so skipping
[  264.672761][T20047]  should_failslab+0x5/0x20
[  264.684231][T20047]  kmem_cache_alloc+0x46/0x2e0
[  264.688988][T20047]  ? __vma_link_rb+0x3c2/0x3e0
[  264.693771][T20047]  ? anon_vma_fork+0x72/0x2b0
[  264.698449][T20047]  dup_mmap+0x38e/0x9c0
[  264.702604][T20047]  dup_mm+0x7c/0x210
[  264.706562][T20047]  copy_process+0x144f/0x2f90
[  264.711243][T20047]  ? __alloc_pages+0x194/0x320
[  264.716006][T20047]  ? _copy_from_user+0x94/0xd0
[  264.720773][T20047]  kernel_clone+0x14b/0x680
[  264.725269][T20047]  __se_sys_clone3+0x194/0x1d0
[  264.730034][T20047]  ? __cond_resched+0x11/0x40
[  264.734712][T20047]  ? fput+0x2d/0x130
[  264.738670][T20047]  ? ksys_write+0x157/0x180
[  264.743198][T20047]  ? fpregs_assert_state_consistent+0x7d/0x90
[  264.749262][T20047]  ? exit_to_user_mode_prepare+0x65/0x190
[  264.755023][T20047]  __x64_sys_clone3+0x2d/0x40
[  264.759700][T20047]  do_syscall_64+0x3d/0x90
[  264.764124][T20047]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  264.770059][T20047] RIP: 0033:0x4665f9
[  264.773943][T20047] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  264.793544][T20047] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  264.801946][T20047] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
19:54:09 executing program 1:
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x24401)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={<r1=>0x0, ""/256, <r2=>0x0, <r3=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r3}, {0x0, r3}, {r2}, {r2}, {r2, r3}, {}, {}, {0x0, r3}, {}, {r2, r3}, {0x0, r3}, {}, {r1, r3}, {0x0, r3}, {}, {r2, r3}, {0x0, r3}, {}, {}, {}, {0x0, r3}, {r2}, {0x0, r3}, {0x0, r3}, {r2}, {0x0, r3}, {r1}, {}, {r1}, {0x0, r3}, {}, {}, {r1, r3}, {r2}, {}, {0x0, r3}, {r2, r3}, {0x0, r3}, {r1, r3}, {}, {0x0, r3}, {r2}, {}, {0x0, r3}, {r2}, {0x0, r3}, {r2}, {0x0, r3}, {}, {r1, r3}, {0x0, r3}, {r1}, {}, {r2}, {r1}, {}, {r2, r3}, {}, {0x0, r3}, {0x0, r3}, {0x0, r3}, {0x0, r3}, {r2, r3}, {0x0, r3}, {0x0, r3}, {0x0, r3}, {r2}, {r1, r3}, {}, {r1}, {}, {}, {0x0, r3}, {}, {r2}, {r1}, {}, {}, {}, {0x0, r3}, {r2}, {}, {}, {0x0, r3}, {r1}, {0x0, r3}, {0x0, r3}, {0x0, r3}, {r2, r3}, {}, {}, {0x0, r3}, {}, {r1}, {0x0, r3}, {}, {r2}, {r1, r3}, {0x0, r3}, {r1}, {r2, r3}, {0x0, r3}, {0x0, r3}, {0x0, r3}, {}, {0x0, r3}, {r1}, {r1, r3}, {}, {0x0, r3}, {r1, r3}, {0x0, r3}, {r2, r3}, {r1, r3}, {r2}, {}, {r1, r3}, {r1}, {r2, r3}, {}, {r1}, {r1, r3}, {}, {}, {0x0, r3}, {0x0, r3}, {0x0, r3}, {r2, r3}, {}, {}, {r1, r3}, {0x0, r3}, {r2, r3}, {r1, r3}, {r2, r3}, {0x0, r3}, {}, {r2, r3}, {r2}, {}, {0x0, r3}, {r1}, {0x0, r3}, {r2, r3}, {r1}, {0x0, r3}, {r2, r3}, {0x0, r3}, {0x0, r3}, {}, {0x0, r3}, {r2}, {0x0, r3}, {r2}, {r1}, {}, {}, {}, {0x0, r3}, {r1, r3}, {r2, r3}, {}, {}, {}, {r2}, {0x0, r3}, {}, {}, {r1}, {r1}, {0x0, r3}, {r1, r3}, {r2, r3}, {0x0, r3}, {r1}, {}, {r1}, {0x0, r3}, {r2}, {r1, r3}, {r1, r3}, {0x0, r3}, {0x0, r3}, {}, {}, {0x0, r3}, {r2}, {r1}, {}, {r1}, {r2}, {0x0, r3}, {r2, r3}, {0x0, r3}, {r2, r3}, {0x0, r3}, {}, {r2, r3}, {r1, r3}, {r2}, {r2, r3}, {}, {}, {r1}, {}, {r1}, {r2}, {}, {r1, r3}, {}, {}, {0x0, r3}, {r2}, {0x0, r3}, {r1}, {r2}, {r2}, {}, {}, {r2}, {0x0, r3}, {0x0, r3}, {r1, r3}, {r1}, {}, {0x0, r3}, {}, {}, {r2, r3}, {r1}, {0x0, r3}, {r1}, {r2, r3}, {r1, r3}, {r2, r3}, {r2}, {r1, r3}, {}, {}, {r2}, {r1, r3}, {0x0, r3}, {r1, r3}, {0x0, r3}, {r2}, {r2}, {}, {0x0, r3}, {r2, r3}, {}, {0x0, r3}, {}, {}, {0x0, r3}, {r1, r3}], 0x1, "2156816c73038c"})
r4 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r4, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r5 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r5, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r4, 0x81f8943c, &(0x7f0000000440)={<r6=>0x0, ""/256, <r7=>0x0, <r8=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r5, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r8}, {0x0, r8}, {r7}, {r7}, {r7, r8}, {}, {}, {0x0, r8}, {}, {r7, r8}, {0x0, r8}, {}, {r6, r8}, {0x0, r8}, {}, {r7, r8}, {0x0, r8}, {}, {}, {}, {0x0, r8}, {r7}, {0x0, r8}, {0x0, r8}, {r7}, {0x0, r8}, {r6}, {}, {r6}, {0x0, r8}, {}, {}, {r6, r8}, {r7}, {}, {0x0, r8}, {r7, r8}, {0x0, r8}, {r6, r8}, {}, {0x0, r8}, {r7}, {}, {0x0, r8}, {r7}, {0x0, r8}, {r7}, {0x0, r8}, {}, {r6, r8}, {0x0, r8}, {r6}, {}, {r7}, {r6}, {}, {r7, r8}, {}, {0x0, r8}, {0x0, r8}, {0x0, r8}, {0x0, r8}, {r7, r8}, {0x0, r8}, {0x0, r8}, {0x0, r8}, {r7}, {r6, r8}, {}, {r6}, {}, {}, {0x0, r8}, {}, {r7}, {r6}, {}, {}, {}, {0x0, r8}, {r7}, {}, {}, {0x0, r8}, {r6}, {0x0, r8}, {0x0, r8}, {0x0, r8}, {r7, r8}, {}, {}, {0x0, r8}, {}, {r6}, {0x0, r8}, {}, {r7}, {r6, r8}, {0x0, r8}, {r6}, {r7, r8}, {0x0, r8}, {0x0, r8}, {0x0, r8}, {}, {0x0, r8}, {r6}, {r6, r8}, {}, {0x0, r8}, {r6, r8}, {0x0, r8}, {r7, r8}, {r6, r8}, {r7}, {}, {r6, r8}, {r6}, {r7, r8}, {}, {r6}, {r6, r8}, {}, {}, {0x0, r8}, {0x0, r8}, {0x0, r8}, {r7, r8}, {}, {}, {r6, r8}, {0x0, r8}, {r7, r8}, {r6, r8}, {r7, r8}, {0x0, r8}, {}, {r7, r8}, {r7}, {}, {0x0, r8}, {r6}, {0x0, r8}, {r7, r8}, {r6}, {0x0, r8}, {r7, r8}, {0x0, r8}, {0x0, r8}, {}, {0x0, r8}, {r7}, {0x0, r8}, {r7}, {r6}, {}, {}, {}, {0x0, r8}, {r6, r8}, {r7, r8}, {}, {}, {}, {r7}, {0x0, r8}, {}, {}, {r6}, {r6}, {0x0, r8}, {r6, r8}, {r7, r8}, {0x0, r8}, {r6}, {}, {r6}, {0x0, r8}, {r7}, {r6, r8}, {r6, r8}, {0x0, r8}, {0x0, r8}, {}, {}, {0x0, r8}, {r7}, {r6}, {}, {r6}, {r7}, {0x0, r8}, {r7, r8}, {0x0, r8}, {r7, r8}, {0x0, r8}, {}, {r7, r8}, {r6, r8}, {r7}, {r7, r8}, {}, {}, {r6}, {}, {r6}, {r7}, {}, {r6, r8}, {}, {}, {0x0, r8}, {r7}, {0x0, r8}, {r6}, {r7}, {r7}, {}, {}, {r7}, {0x0, r8}, {0x0, r8}, {r6, r8}, {r6}, {}, {0x0, r8}, {}, {}, {r7, r8}, {r6}, {0x0, r8}, {r6}, {r7, r8}, {r6, r8}, {r7, r8}, {r7}, {r6, r8}, {}, {}, {r7}, {r6, r8}, {0x0, r8}, {r6, r8}, {0x0, r8}, {r7}, {r7}, {}, {0x0, r8}, {r7, r8}, {}, {0x0, r8}, {}, {}, {0x0, r8}, {r6, r8}], 0x1, "2156816c73038c"})
r9 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r9, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r10 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r10, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r9, 0x81f8943c, &(0x7f0000000440)={<r11=>0x0, ""/256, <r12=>0x0, <r13=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r10, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r13}, {0x0, r13}, {r12}, {r12}, {r12, r13}, {}, {}, {0x0, r13}, {}, {r12, r13}, {0x0, r13}, {}, {r11, r13}, {0x0, r13}, {}, {r12, r13}, {0x0, r13}, {}, {}, {}, {0x0, r13}, {r12}, {0x0, r13}, {0x0, r13}, {r12}, {0x0, r13}, {r11}, {}, {r11}, {0x0, r13}, {}, {}, {r11, r13}, {r12}, {}, {0x0, r13}, {r12, r13}, {0x0, r13}, {r11, r13}, {}, {0x0, r13}, {r12}, {}, {0x0, r13}, {r12}, {0x0, r13}, {r12}, {0x0, r13}, {}, {r11, r13}, {0x0, r13}, {r11}, {}, {r12}, {r11}, {}, {r12, r13}, {}, {0x0, r13}, {0x0, r13}, {0x0, r13}, {0x0, r13}, {r12, r13}, {0x0, r13}, {0x0, r13}, {0x0, r13}, {r12}, {r11, r13}, {}, {r11}, {}, {}, {0x0, r13}, {}, {r12}, {r11}, {}, {}, {}, {0x0, r13}, {r12}, {}, {}, {0x0, r13}, {r11}, {0x0, r13}, {0x0, r13}, {0x0, r13}, {r12, r13}, {}, {}, {0x0, r13}, {}, {r11}, {0x0, r13}, {}, {r12}, {r11, r13}, {0x0, r13}, {r11}, {r12, r13}, {0x0, r13}, {0x0, r13}, {0x0, r13}, {}, {0x0, r13}, {r11}, {r11, r13}, {}, {0x0, r13}, {r11, r13}, {0x0, r13}, {r12, r13}, {r11, r13}, {r12}, {}, {r11, r13}, {r11}, {r12, r13}, {}, {r11}, {r11, r13}, {}, {}, {0x0, r13}, {0x0, r13}, {0x0, r13}, {r12, r13}, {}, {}, {r11, r13}, {0x0, r13}, {r12, r13}, {r11, r13}, {r12, r13}, {0x0, r13}, {}, {r12, r13}, {r12}, {}, {0x0, r13}, {r11}, {0x0, r13}, {r12, r13}, {r11}, {0x0, r13}, {r12, r13}, {0x0, r13}, {0x0, r13}, {}, {0x0, r13}, {r12}, {0x0, r13}, {r12}, {r11}, {}, {}, {}, {0x0, r13}, {r11, r13}, {r12, r13}, {}, {}, {}, {r12}, {0x0, r13}, {}, {}, {r11}, {r11}, {0x0, r13}, {r11, r13}, {r12, r13}, {0x0, r13}, {r11}, {}, {r11}, {0x0, r13}, {r12}, {r11, r13}, {r11, r13}, {0x0, r13}, {0x0, r13}, {}, {}, {0x0, r13}, {r12}, {r11}, {}, {r11}, {r12}, {0x0, r13}, {r12, r13}, {0x0, r13}, {r12, r13}, {0x0, r13}, {}, {r12, r13}, {r11, r13}, {r12}, {r12, r13}, {}, {}, {r11}, {}, {r11}, {r12}, {}, {r11, r13}, {}, {}, {0x0, r13}, {r12}, {0x0, r13}, {r11}, {r12}, {r12}, {}, {}, {r12}, {0x0, r13}, {0x0, r13}, {r11, r13}, {r11}, {}, {0x0, r13}, {}, {}, {r12, r13}, {r11}, {0x0, r13}, {r11}, {r12, r13}, {r11, r13}, {r12, r13}, {r12}, {r11, r13}, {}, {}, {r12}, {r11, r13}, {0x0, r13}, {r11, r13}, {0x0, r13}, {r12}, {r12}, {}, {0x0, r13}, {r12, r13}, {}, {0x0, r13}, {}, {}, {0x0, r13}, {r11, r13}], 0x1, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f0000058a40)={0x5, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r3}, {r7, r13}], 0x81, "acde6edcbc8440"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

19:54:09 executing program 4 (fault-call:3 fault-nth:70):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:09 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x80010, r0, 0x2000)
preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
ioctl$SG_GET_SG_TABLESIZE(r1, 0x227f, &(0x7f0000000000))
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

[  264.809909][T20047] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  264.817872][T20047] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  264.825863][T20047] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  264.833824][T20047] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
[  264.847261][T20049] debugfs: Directory 'sg0' with parent 'block' already present!
[  264.855088][T20049] blktrace: debugfs_dir not present for sg0 so skipping
[  264.909790][T20057] debugfs: Directory 'sg0' with parent 'block' already present!
[  264.916045][    C1] sd 0:0:1:0: tag#7848 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  264.927145][T20057] blktrace: debugfs_dir not present for sg0 so skipping
[  264.927226][    C1] sd 0:0:1:0: tag#7848 CDB: opcode=0xe5 (vendor)
[  264.940444][    C1] sd 0:0:1:0: tag#7848 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  264.946862][T20060] debugfs: Directory 'sg0' with parent 'block' already present!
[  264.949475][    C1] sd 0:0:1:0: tag#7848 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  264.963686][T20061] FAULT_INJECTION: forcing a failure.
[  264.963686][T20061] name failslab, interval 1, probability 0, space 0, times 0
[  264.966087][    C1] sd 0:0:1:0: tag#7848 CDB[20]: ba
[  264.978642][T20061] CPU: 0 PID: 20061 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  264.992109][T20061] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  265.002154][T20061] Call Trace:
[  265.005423][T20061]  dump_stack_lvl+0xb7/0x103
[  265.010067][T20061]  dump_stack+0x11/0x1a
[  265.014221][T20061]  should_fail+0x23c/0x250
[  265.018631][T20061]  ? anon_vma_fork+0x117/0x2b0
[  265.023425][T20061]  __should_failslab+0x81/0x90
[  265.028187][T20061]  should_failslab+0x5/0x20
[  265.032807][T20061]  kmem_cache_alloc+0x46/0x2e0
[  265.037636][T20061]  ? anon_vma_fork+0xb1/0x2b0
[  265.042314][T20061]  anon_vma_fork+0x117/0x2b0
[  265.046939][T20061]  dup_mmap+0x49c/0x9c0
[  265.049955][    C1] sd 0:0:1:0: tag#7849 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  265.051089][T20061]  dup_mm+0x7c/0x210
[  265.060887][    C1] sd 0:0:1:0: tag#7849 CDB: opcode=0xe5 (vendor)
[  265.064733][T20061]  copy_process+0x144f/0x2f90
[  265.064829][T20061]  ? __alloc_pages+0x194/0x320
[  265.071047][    C1] sd 0:0:1:0: tag#7849 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  265.075685][T20061]  ? _copy_from_user+0x94/0xd0
[  265.080443][    C1] sd 0:0:1:0: tag#7849 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  265.089423][T20061]  kernel_clone+0x14b/0x680
[  265.094194][    C1] sd 0:0:1:0: tag#7849 CDB[20]: ba
[  265.103167][T20061]  __se_sys_clone3+0x194/0x1d0
[  265.117474][T20061]  ? __cond_resched+0x11/0x40
[  265.122145][T20061]  ? fput+0x2d/0x130
[  265.126041][T20061]  ? ksys_write+0x157/0x180
[  265.130544][T20061]  ? fpregs_assert_state_consistent+0x7d/0x90
[  265.136716][T20061]  ? exit_to_user_mode_prepare+0x65/0x190
[  265.142513][T20061]  __x64_sys_clone3+0x2d/0x40
[  265.147189][T20061]  do_syscall_64+0x3d/0x90
[  265.151655][T20061]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  265.157585][T20061] RIP: 0033:0x4665f9
[  265.161468][T20061] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  265.181084][T20061] RSP: 002b:00007fed4bfec188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  265.189489][T20061] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665f9
[  265.197454][T20061] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
19:54:09 executing program 1 (fault-call:5 fault-nth:0):
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  265.205471][T20061] RBP: 00007fed4bfec1d0 R08: 0000000000000000 R09: 0000000000000000
[  265.213434][T20061] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  265.221399][T20061] R13: 00007ffda6420e3f R14: 00007fed4bfec300 R15: 0000000000022000
[  265.245991][T20060] blktrace: debugfs_dir not present for sg0 so skipping
[  265.251767][T20064] FAULT_INJECTION: forcing a failure.
[  265.251767][T20064] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  265.265940][T20064] CPU: 0 PID: 20064 Comm: syz-executor.1 Not tainted 5.14.0-syzkaller #0
[  265.274353][T20064] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  265.284396][T20064] Call Trace:
[  265.287668][T20064]  dump_stack_lvl+0xb7/0x103
[  265.292258][T20064]  dump_stack+0x11/0x1a
[  265.296411][T20064]  should_fail+0x23c/0x250
[  265.300824][T20064]  should_fail_usercopy+0x16/0x20
[  265.305858][T20064]  _copy_from_user+0x1c/0xd0
[  265.310463][T20064]  __copy_msghdr_from_user+0x44/0x350
[  265.315842][T20064]  ? __fget_light+0x21b/0x260
[  265.320610][T20064]  __sys_sendmsg+0x135/0x270
[  265.325198][T20064]  ? kstrtouint_from_user+0x104/0x130
[  265.330581][T20064]  ? get_pid_task+0x8b/0xc0
[  265.335079][T20064]  ? proc_fail_nth_write+0x114/0x140
[  265.340365][T20064]  ? proc_fail_nth_read+0x140/0x140
[  265.345569][T20064]  ? vfs_write+0x5e0/0x8c0
[  265.349985][T20064]  ? putname+0xc6/0xe0
[  265.354102][T20064]  ? __fget_light+0x21b/0x260
[  265.358773][T20064]  ? __cond_resched+0x11/0x40
[  265.363449][T20064]  ? fput+0x2d/0x130
[  265.367359][T20064]  ? ksys_write+0x157/0x180
[  265.371858][T20064]  __x64_sys_sendmsg+0x42/0x50
[  265.376641][T20064]  do_syscall_64+0x3d/0x90
[  265.381051][T20064]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  265.386980][T20064] RIP: 0033:0x4665f9
[  265.390914][T20064] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  265.410512][T20064] RSP: 002b:00007f7d57834188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  265.418919][T20064] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  265.426887][T20064] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000004
[  265.434853][T20064] RBP: 00007f7d578341d0 R08: 0000000000000000 R09: 0000000000000000
[  265.442819][T20064] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  265.450782][T20064] R13: 00007fff122c6a3f R14: 00007f7d57834300 R15: 0000000000022000
19:54:10 executing program 1 (fault-call:5 fault-nth:1):
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  265.536702][T20070] FAULT_INJECTION: forcing a failure.
[  265.536702][T20070] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  265.549831][T20070] CPU: 1 PID: 20070 Comm: syz-executor.1 Not tainted 5.14.0-syzkaller #0
[  265.558236][T20070] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  265.568341][T20070] Call Trace:
[  265.571618][T20070]  dump_stack_lvl+0xb7/0x103
[  265.576208][T20070]  dump_stack+0x11/0x1a
[  265.580364][T20070]  should_fail+0x23c/0x250
[  265.584833][T20070]  should_fail_usercopy+0x16/0x20
[  265.589870][T20070]  _copy_from_user+0x1c/0xd0
[  265.594462][T20070]  iovec_from_user+0xc4/0x2d0
[  265.599141][T20070]  ? path_openat+0x18c3/0x1e90
[  265.603910][T20070]  __import_iovec+0x57/0x2c0
[  265.608573][T20070]  ? _copy_from_user+0x94/0xd0
[  265.613412][T20070]  import_iovec+0x69/0x80
[  265.618171][T20070]  __sys_sendmsg+0x1ab/0x270
[  265.622767][T20070]  ? get_pid_task+0x8b/0xc0
[  265.627288][T20070]  ? proc_fail_nth_write+0x114/0x140
[  265.632631][T20070]  ? proc_fail_nth_read+0x140/0x140
[  265.637834][T20070]  ? vfs_write+0x5e0/0x8c0
[  265.642267][T20070]  ? putname+0xc6/0xe0
[  265.646335][T20070]  ? __fget_light+0x21b/0x260
[  265.651011][T20070]  ? __cond_resched+0x11/0x40
[  265.655691][T20070]  ? fput+0x2d/0x130
[  265.659583][T20070]  ? ksys_write+0x157/0x180
[  265.664088][T20070]  __x64_sys_sendmsg+0x42/0x50
[  265.668857][T20070]  do_syscall_64+0x3d/0x90
[  265.673268][T20070]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  265.679156][T20070] RIP: 0033:0x4665f9
19:54:10 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
r2 = mmap$IORING_OFF_SQ_RING(&(0x7f00007ac000/0x2000)=nil, 0x2000, 0x3000000, 0x110, r1, 0x0)
r3 = mmap$IORING_OFF_SQES(&(0x7f000008d000/0x3000)=nil, 0x3000, 0x100000e, 0x1010, r1, 0x10000000)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r4, 0xc020660b, 0x0)
r5 = syz_io_uring_setup(0x187, &(0x7f00000002c0), &(0x7f0000ee7000/0x2000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000000540)=<r6=>0x0, &(0x7f00000000c0)=<r7=>0x0)
r8 = io_uring_register$IORING_REGISTER_PERSONALITY(r5, 0x9, 0x0, 0x0)
getpeername(r4, &(0x7f0000000240)=@phonet, &(0x7f0000000340)=0x80)
syz_io_uring_submit(r6, r7, &(0x7f0000000100)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000003c0)='./file0\x00', 0x0, 0x10000, 0x0, {0x0, r8}}, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_SEND={0x1a, 0x1, 0x0, r4, 0x0, &(0x7f00000001c0)="d0aab4d14ae380896ad60088fbdac5dc836d8e3e2324b660c21735204fd3e318eb45093e75", 0x25, 0x80, 0x0, {0x0, r8}}, 0x6af)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000000140)={0x0, 0xfffffffffffffffe, 0x67, 0x5, @buffer={0x0, 0x1f, &(0x7f0000000000)=""/31}, &(0x7f0000000040)="8995d242ea9fbc0729e35f2487323547cb3ceaa632bb32dcd9bf2ee4dae6bbcb881f480f70b67c663b7c9f6d1a8dc7fdb95eb25f596f09a5bab95527a257196e7c4085410e8a35e78c661f51c1d4e4263c40fee37a39f48fa0ca841288a657cb7ee2e1cfdb9d57", &(0x7f00000000c0)=""/4, 0x101, 0x10000, 0x2, &(0x7f0000000100)})
r9 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r9, 0x0)
preadv(r9, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
mkdirat(r9, &(0x7f0000000380)='./file0\x00', 0xc0)
ioctl$BLKTRACESETUP(r0, 0x227a, 0x0)

[  265.683041][T20070] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  265.702639][T20070] RSP: 002b:00007f7d57834188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  265.711135][T20070] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  265.719165][T20070] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000004
[  265.727183][T20070] RBP: 00007f7d578341d0 R08: 0000000000000000 R09: 0000000000000000
[  265.735144][T20070] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  265.743109][T20070] R13: 00007fff122c6a3f R14: 00007f7d57834300 R15: 0000000000022000
19:54:10 executing program 4 (fault-call:3 fault-nth:71):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:10 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x227a, 0x0)
r1 = socket$inet_icmp(0x2, 0x2, 0x1)
preadv(r1, &(0x7f0000001180)=[{&(0x7f0000000000)=""/65, 0x41}, {&(0x7f0000000080)=""/4096, 0x1000}, {&(0x7f0000001080)=""/226, 0xe2}], 0x3, 0x4, 0x7ff)

[  265.854541][T20080] FAULT_INJECTION: forcing a failure.
[  265.854541][T20080] name failslab, interval 1, probability 0, space 0, times 0
[  265.867506][T20080] CPU: 1 PID: 20080 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  265.875913][T20080] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  265.885969][T20080] Call Trace:
[  265.889273][T20080]  dump_stack_lvl+0xb7/0x103
[  265.893867][T20080]  dump_stack+0x11/0x1a
[  265.898053][T20080]  should_fail+0x23c/0x250
[  265.902471][T20080]  ? dup_mmap+0x38e/0x9c0
[  265.906797][T20080]  __should_failslab+0x81/0x90
[  265.911561][T20080]  should_failslab+0x5/0x20
[  265.916063][T20080]  kmem_cache_alloc+0x46/0x2e0
[  265.920822][T20080]  dup_mmap+0x38e/0x9c0
[  265.924980][T20080]  dup_mm+0x7c/0x210
[  265.928868][T20080]  copy_process+0x144f/0x2f90
[  265.933540][T20080]  ? __alloc_pages+0x194/0x320
[  265.938293][T20080]  ? _copy_from_user+0x94/0xd0
[  265.943139][T20080]  kernel_clone+0x14b/0x680
[  265.947642][T20080]  __se_sys_clone3+0x194/0x1d0
[  265.952550][T20080]  ? __cond_resched+0x11/0x40
[  265.957320][T20080]  ? fput+0x2d/0x130
[  265.961260][T20080]  ? ksys_write+0x157/0x180
[  265.965762][T20080]  ? fpregs_assert_state_consistent+0x7d/0x90
[  265.971853][T20080]  ? exit_to_user_mode_prepare+0x65/0x190
[  265.977719][T20080]  __x64_sys_clone3+0x2d/0x40
[  265.982479][T20080]  do_syscall_64+0x3d/0x90
[  265.986890][T20080]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  265.992787][T20080] RIP: 0033:0x4665f9
[  265.996673][T20080] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  266.016590][T20080] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  266.024998][T20080] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  266.032965][T20080] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  266.041890][T20080] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  266.049859][T20080] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  266.057844][T20080] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:10 executing program 4 (fault-call:3 fault-nth:72):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:10 executing program 1 (fault-call:5 fault-nth:2):
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  266.139237][T20091] FAULT_INJECTION: forcing a failure.
[  266.139237][T20091] name failslab, interval 1, probability 0, space 0, times 0
[  266.151976][T20091] CPU: 0 PID: 20091 Comm: syz-executor.1 Not tainted 5.14.0-syzkaller #0
[  266.160380][T20091] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  266.170433][T20091] Call Trace:
[  266.173713][T20091]  dump_stack_lvl+0xb7/0x103
[  266.178314][T20091]  dump_stack+0x11/0x1a
[  266.182469][T20091]  should_fail+0x23c/0x250
[  266.186965][T20091]  __should_failslab+0x81/0x90
[  266.191730][T20091]  should_failslab+0x5/0x20
[  266.196324][T20091]  kmem_cache_alloc_node+0x58/0x2b0
[  266.197832][T20092] FAULT_INJECTION: forcing a failure.
[  266.197832][T20092] name failslab, interval 1, probability 0, space 0, times 0
[  266.201518][T20091]  ? __alloc_skb+0xed/0x420
[  266.201544][T20091]  __alloc_skb+0xed/0x420
[  266.222879][T20091]  netlink_sendmsg+0x4c4/0x7c0
[  266.227775][T20091]  ? netlink_getsockopt+0x720/0x720
[  266.232984][T20091]  ____sys_sendmsg+0x360/0x4d0
[  266.237737][T20091]  ? import_iovec+0x69/0x80
[  266.242222][T20091]  __sys_sendmsg+0x1ed/0x270
[  266.246801][T20091]  ? get_pid_task+0x8b/0xc0
[  266.251292][T20091]  ? proc_fail_nth_write+0x114/0x140
[  266.256615][T20091]  ? proc_fail_nth_read+0x140/0x140
[  266.261817][T20091]  ? vfs_write+0x5e0/0x8c0
[  266.266235][T20091]  ? putname+0xc6/0xe0
[  266.270360][T20091]  ? __fget_light+0x21b/0x260
[  266.275021][T20091]  ? __cond_resched+0x11/0x40
[  266.279734][T20091]  ? fput+0x2d/0x130
[  266.283628][T20091]  ? ksys_write+0x157/0x180
[  266.288116][T20091]  __x64_sys_sendmsg+0x42/0x50
[  266.292940][T20091]  do_syscall_64+0x3d/0x90
[  266.297436][T20091]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  266.303341][T20091] RIP: 0033:0x4665f9
[  266.307217][T20091] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  266.326821][T20091] RSP: 002b:00007f7d57834188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  266.335225][T20091] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  266.343181][T20091] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000004
[  266.351397][T20091] RBP: 00007f7d578341d0 R08: 0000000000000000 R09: 0000000000000000
[  266.359353][T20091] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  266.367309][T20091] R13: 00007fff122c6a3f R14: 00007f7d57834300 R15: 0000000000022000
[  266.375267][T20092] CPU: 1 PID: 20092 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  266.383723][T20092] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  266.393774][T20092] Call Trace:
[  266.397046][T20092]  dump_stack_lvl+0xb7/0x103
[  266.401676][T20092]  dump_stack+0x11/0x1a
[  266.405830][T20092]  should_fail+0x23c/0x250
[  266.410334][T20092]  ? dup_mmap+0x38e/0x9c0
[  266.414670][T20092]  __should_failslab+0x81/0x90
[  266.419456][T20092]  should_failslab+0x5/0x20
[  266.423995][T20092]  kmem_cache_alloc+0x46/0x2e0
[  266.428761][T20092]  ? anon_vma_fork+0x273/0x2b0
[  266.433563][T20092]  dup_mmap+0x38e/0x9c0
[  266.437717][T20092]  dup_mm+0x7c/0x210
[  266.441623][T20092]  copy_process+0x144f/0x2f90
[  266.446303][T20092]  ? __alloc_pages+0x194/0x320
[  266.451067][T20092]  ? _copy_from_user+0x94/0xd0
[  266.455830][T20092]  kernel_clone+0x14b/0x680
[  266.460362][T20092]  __se_sys_clone3+0x194/0x1d0
[  266.465158][T20092]  ? __cond_resched+0x11/0x40
[  266.469899][T20092]  ? fput+0x2d/0x130
[  266.473821][T20092]  ? ksys_write+0x157/0x180
[  266.478322][T20092]  ? fpregs_assert_state_consistent+0x7d/0x90
[  266.484390][T20092]  ? exit_to_user_mode_prepare+0x65/0x190
[  266.490139][T20092]  __x64_sys_clone3+0x2d/0x40
[  266.494858][T20092]  do_syscall_64+0x3d/0x90
[  266.499369][T20092]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  266.505331][T20092] RIP: 0033:0x4665f9
[  266.509218][T20092] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  266.528820][T20092] RSP: 002b:00007fed4bfec188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  266.537254][T20092] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665f9
[  266.545258][T20092] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  266.553224][T20092] RBP: 00007fed4bfec1d0 R08: 0000000000000000 R09: 0000000000000000
[  266.561217][T20092] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  266.569258][T20092] R13: 00007ffda6420e3f R14: 00007fed4bfec300 R15: 0000000000022000
19:54:11 executing program 4 (fault-call:3 fault-nth:73):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:11 executing program 1 (fault-call:5 fault-nth:3):
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  266.656776][T20098] FAULT_INJECTION: forcing a failure.
[  266.656776][T20098] name failslab, interval 1, probability 0, space 0, times 0
[  266.669392][T20098] CPU: 1 PID: 20098 Comm: syz-executor.1 Not tainted 5.14.0-syzkaller #0
[  266.677801][T20098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  266.687851][T20098] Call Trace:
[  266.691127][T20098]  dump_stack_lvl+0xb7/0x103
[  266.695771][T20098]  dump_stack+0x11/0x1a
[  266.699933][T20098]  should_fail+0x23c/0x250
[  266.704403][T20098]  __should_failslab+0x81/0x90
[  266.709164][T20098]  should_failslab+0x5/0x20
[  266.713689][T20098]  kmem_cache_alloc_node_trace+0x58/0x2e0
[  266.719434][T20098]  ? __kmalloc_node_track_caller+0x30/0x40
[  266.725280][T20098]  ? kmem_cache_alloc_node+0x1d4/0x2b0
[  266.730736][T20098]  __kmalloc_node_track_caller+0x30/0x40
[  266.736373][T20098]  ? netlink_sendmsg+0x4c4/0x7c0
[  266.741313][T20098]  __alloc_skb+0x187/0x420
[  266.745735][T20098]  netlink_sendmsg+0x4c4/0x7c0
[  266.750522][T20098]  ? netlink_getsockopt+0x720/0x720
[  266.755719][T20098]  ____sys_sendmsg+0x360/0x4d0
[  266.760703][T20098]  ? import_iovec+0x69/0x80
[  266.765232][T20098]  __sys_sendmsg+0x1ed/0x270
[  266.769889][T20098]  ? get_pid_task+0x8b/0xc0
[  266.774535][T20098]  ? proc_fail_nth_write+0x114/0x140
[  266.779839][T20098]  ? proc_fail_nth_read+0x140/0x140
[  266.785128][T20098]  ? vfs_write+0x5e0/0x8c0
[  266.789546][T20098]  ? putname+0xc6/0xe0
[  266.792084][T20099] FAULT_INJECTION: forcing a failure.
[  266.792084][T20099] name failslab, interval 1, probability 0, space 0, times 0
[  266.793636][T20098]  ? __fget_light+0x21b/0x260
[  266.810855][T20098]  ? __cond_resched+0x11/0x40
[  266.815568][T20098]  ? fput+0x2d/0x130
[  266.819451][T20098]  ? ksys_write+0x157/0x180
[  266.823978][T20098]  __x64_sys_sendmsg+0x42/0x50
[  266.828729][T20098]  do_syscall_64+0x3d/0x90
[  266.833131][T20098]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  266.839049][T20098] RIP: 0033:0x4665f9
[  266.842924][T20098] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  266.862599][T20098] RSP: 002b:00007f7d57834188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  266.870992][T20098] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  266.878946][T20098] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000004
[  266.887198][T20098] RBP: 00007f7d578341d0 R08: 0000000000000000 R09: 0000000000000000
[  266.895151][T20098] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  266.903134][T20098] R13: 00007fff122c6a3f R14: 00007f7d57834300 R15: 0000000000022000
[  266.911102][T20099] CPU: 0 PID: 20099 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  266.919535][T20099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  266.929611][T20099] Call Trace:
[  266.932879][T20099]  dump_stack_lvl+0xb7/0x103
[  266.937468][T20099]  dump_stack+0x11/0x1a
[  266.941632][T20099]  should_fail+0x23c/0x250
[  266.946043][T20099]  ? dup_mmap+0x38e/0x9c0
[  266.950370][T20099]  __should_failslab+0x81/0x90
[  266.955128][T20099]  should_failslab+0x5/0x20
[  266.959976][T20099]  kmem_cache_alloc+0x46/0x2e0
[  266.964847][T20099]  ? anon_vma_fork+0x273/0x2b0
[  266.969678][T20099]  dup_mmap+0x38e/0x9c0
[  266.973837][T20099]  dup_mm+0x7c/0x210
[  266.977738][T20099]  copy_process+0x144f/0x2f90
[  266.982411][T20099]  ? __alloc_pages+0x194/0x320
[  266.987273][T20099]  ? _copy_from_user+0x94/0xd0
[  266.992038][T20099]  kernel_clone+0x14b/0x680
[  266.996544][T20099]  __se_sys_clone3+0x194/0x1d0
[  267.001346][T20099]  ? __cond_resched+0x11/0x40
[  267.006140][T20099]  ? fput+0x2d/0x130
[  267.010079][T20099]  ? ksys_write+0x157/0x180
[  267.014608][T20099]  ? fpregs_assert_state_consistent+0x7d/0x90
[  267.020729][T20099]  ? exit_to_user_mode_prepare+0x65/0x190
[  267.026496][T20099]  __x64_sys_clone3+0x2d/0x40
[  267.031172][T20099]  do_syscall_64+0x3d/0x90
[  267.035590][T20099]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  267.041491][T20099] RIP: 0033:0x4665f9
[  267.045425][T20099] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  267.065230][T20099] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  267.073724][T20099] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  267.081817][T20099] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  267.089829][T20099] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  267.097881][T20099] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  267.106137][T20099] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:11 executing program 4 (fault-call:3 fault-nth:74):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  267.221981][T20104] FAULT_INJECTION: forcing a failure.
[  267.221981][T20104] name failslab, interval 1, probability 0, space 0, times 0
[  267.234630][T20104] CPU: 0 PID: 20104 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  267.243040][T20104] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  267.253148][T20104] Call Trace:
[  267.256418][T20104]  dump_stack_lvl+0xb7/0x103
[  267.261445][T20104]  dump_stack+0x11/0x1a
[  267.265621][T20104]  should_fail+0x23c/0x250
[  267.270032][T20104]  ? dup_mmap+0x38e/0x9c0
[  267.274358][T20104]  __should_failslab+0x81/0x90
[  267.279131][T20104]  should_failslab+0x5/0x20
[  267.283627][T20104]  kmem_cache_alloc+0x46/0x2e0
[  267.288426][T20104]  ? __vma_link_rb+0x3c2/0x3e0
[  267.293186][T20104]  ? anon_vma_fork+0x72/0x2b0
[  267.297871][T20104]  dup_mmap+0x38e/0x9c0
[  267.302028][T20104]  dup_mm+0x7c/0x210
[  267.305916][T20104]  copy_process+0x144f/0x2f90
[  267.310597][T20104]  ? __alloc_pages+0x194/0x320
[  267.315363][T20104]  ? _copy_from_user+0x94/0xd0
[  267.320138][T20104]  kernel_clone+0x14b/0x680
[  267.324647][T20104]  __se_sys_clone3+0x194/0x1d0
[  267.329404][T20104]  ? __cond_resched+0x11/0x40
[  267.334082][T20104]  ? fput+0x2d/0x130
[  267.337973][T20104]  ? ksys_write+0x157/0x180
[  267.342472][T20104]  ? fpregs_assert_state_consistent+0x7d/0x90
[  267.348592][T20104]  ? exit_to_user_mode_prepare+0x65/0x190
[  267.354314][T20104]  __x64_sys_clone3+0x2d/0x40
[  267.358987][T20104]  do_syscall_64+0x3d/0x90
[  267.363415][T20104]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  267.369367][T20104] RIP: 0033:0x4665f9
[  267.372640][T20106] FAULT_INJECTION: forcing a failure.
[  267.372640][T20106] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  267.373247][T20104] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  267.373266][T20104] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  267.414210][T20104] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
19:54:12 executing program 1 (fault-call:5 fault-nth:4):
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  267.422164][T20104] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  267.430121][T20104] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  267.438080][T20104] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  267.446032][T20104] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
[  267.453989][T20106] CPU: 1 PID: 20106 Comm: syz-executor.1 Not tainted 5.14.0-syzkaller #0
[  267.462686][T20106] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  267.472753][T20106] Call Trace:
[  267.476023][T20106]  dump_stack_lvl+0xb7/0x103
[  267.480680][T20106]  dump_stack+0x11/0x1a
[  267.484829][T20106]  should_fail+0x23c/0x250
[  267.489301][T20106]  should_fail_usercopy+0x16/0x20
[  267.494381][T20106]  _copy_from_iter+0x131/0x970
[  267.499158][T20106]  ? check_stack_object+0x61/0x70
[  267.504240][T20106]  ? __virt_addr_valid+0x15a/0x1a0
[  267.509344][T20106]  ? __check_object_size+0x253/0x310
[  267.514623][T20106]  netlink_sendmsg+0x57c/0x7c0
[  267.519388][T20106]  ? netlink_getsockopt+0x720/0x720
[  267.524584][T20106]  ____sys_sendmsg+0x360/0x4d0
[  267.529346][T20106]  ? import_iovec+0x69/0x80
[  267.533841][T20106]  __sys_sendmsg+0x1ed/0x270
[  267.538428][T20106]  ? get_pid_task+0x8b/0xc0
[  267.542922][T20106]  ? proc_fail_nth_write+0x114/0x140
[  267.548207][T20106]  ? proc_fail_nth_read+0x140/0x140
[  267.553478][T20106]  ? vfs_write+0x5e0/0x8c0
[  267.557963][T20106]  ? putname+0xc6/0xe0
[  267.562030][T20106]  ? __fget_light+0x21b/0x260
[  267.566866][T20106]  ? __cond_resched+0x11/0x40
[  267.571541][T20106]  ? fput+0x2d/0x130
[  267.575436][T20106]  ? ksys_write+0x157/0x180
[  267.579938][T20106]  __x64_sys_sendmsg+0x42/0x50
[  267.584726][T20106]  do_syscall_64+0x3d/0x90
[  267.589150][T20106]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  267.595046][T20106] RIP: 0033:0x4665f9
[  267.598927][T20106] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  267.618522][T20106] RSP: 002b:00007f7d57834188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  267.626925][T20106] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  267.634885][T20106] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000004
[  267.642849][T20106] RBP: 00007f7d578341d0 R08: 0000000000000000 R09: 0000000000000000
[  267.650810][T20106] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  267.658773][T20106] R13: 00007fff122c6a3f R14: 00007f7d57834300 R15: 0000000000022000
19:54:12 executing program 1 (fault-call:5 fault-nth:5):
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:12 executing program 4 (fault-call:3 fault-nth:75):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  267.732097][T20109] FAULT_INJECTION: forcing a failure.
[  267.732097][T20109] name failslab, interval 1, probability 0, space 0, times 0
[  267.744708][T20109] CPU: 1 PID: 20109 Comm: syz-executor.1 Not tainted 5.14.0-syzkaller #0
[  267.753113][T20109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  267.763252][T20109] Call Trace:
[  267.766519][T20109]  dump_stack_lvl+0xb7/0x103
[  267.771102][T20109]  dump_stack+0x11/0x1a
[  267.775254][T20109]  should_fail+0x23c/0x250
[  267.775843][T20113] FAULT_INJECTION: forcing a failure.
[  267.775843][T20113] name failslab, interval 1, probability 0, space 0, times 0
[  267.779724][T20109]  __should_failslab+0x81/0x90
[  267.797092][T20109]  ? genl_start+0xd4/0x2c0
[  267.801526][T20109]  should_failslab+0x5/0x20
[  267.806020][T20109]  kmem_cache_alloc_trace+0x49/0x310
[  267.811282][T20109]  ? __netlink_lookup+0x8c/0x250
[  267.816241][T20109]  genl_start+0xd4/0x2c0
[  267.820465][T20109]  __netlink_dump_start+0x2d5/0x4d0
[  267.825645][T20109]  ? nl80211_vendor_cmd+0x550/0x550
[  267.830824][T20109]  genl_rcv_msg+0x680/0x800
[  267.835309][T20109]  ? nl80211_channel_switch+0x950/0x950
[  267.840881][T20109]  ? nl80211_vendor_cmd+0x550/0x550
[  267.846071][T20109]  ? genl_rcv_msg+0x800/0x800
[  267.850782][T20109]  ? nl80211_vendor_cmd+0x550/0x550
[  267.855990][T20109]  ? genl_lock_done+0x90/0x90
[  267.860683][T20109]  netlink_rcv_skb+0x13e/0x240
[  267.865424][T20109]  ? genl_bind+0x1d0/0x1d0
[  267.869820][T20109]  genl_rcv+0x24/0x40
[  267.873782][T20109]  netlink_unicast+0x5ec/0x6b0
[  267.878591][T20109]  netlink_sendmsg+0x6d9/0x7c0
[  267.883395][T20109]  ? netlink_getsockopt+0x720/0x720
[  267.888573][T20109]  ____sys_sendmsg+0x360/0x4d0
[  267.893389][T20109]  ? import_iovec+0x69/0x80
[  267.897872][T20109]  __sys_sendmsg+0x1ed/0x270
[  267.902445][T20109]  ? get_pid_task+0x8b/0xc0
[  267.906929][T20109]  ? proc_fail_nth_write+0x114/0x140
[  267.912271][T20109]  ? proc_fail_nth_read+0x140/0x140
[  267.917520][T20109]  ? vfs_write+0x5e0/0x8c0
[  267.921916][T20109]  ? putname+0xc6/0xe0
[  267.925974][T20109]  ? __fget_light+0x21b/0x260
[  267.930635][T20109]  ? __cond_resched+0x11/0x40
[  267.935295][T20109]  ? fput+0x2d/0x130
[  267.939201][T20109]  ? ksys_write+0x157/0x180
[  267.943684][T20109]  __x64_sys_sendmsg+0x42/0x50
[  267.948435][T20109]  do_syscall_64+0x3d/0x90
[  267.952829][T20109]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  267.958701][T20109] RIP: 0033:0x4665f9
[  267.962571][T20109] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  267.982156][T20109] RSP: 002b:00007f7d57834188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  267.990544][T20109] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  267.998494][T20109] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000004
[  268.006465][T20109] RBP: 00007f7d578341d0 R08: 0000000000000000 R09: 0000000000000000
[  268.014692][T20109] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  268.022755][T20109] R13: 00007fff122c6a3f R14: 00007f7d57834300 R15: 0000000000022000
[  268.030709][T20113] CPU: 0 PID: 20113 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  268.039322][T20113] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  268.049373][T20113] Call Trace:
[  268.052907][T20113]  dump_stack_lvl+0xb7/0x103
[  268.057501][T20113]  dump_stack+0x11/0x1a
[  268.061656][T20113]  should_fail+0x23c/0x250
[  268.066090][T20113]  ? dup_mmap+0x38e/0x9c0
[  268.070434][T20113]  __should_failslab+0x81/0x90
[  268.075217][T20113]  should_failslab+0x5/0x20
[  268.079720][T20113]  kmem_cache_alloc+0x46/0x2e0
[  268.084483][T20113]  ? __vma_link_rb+0x3c2/0x3e0
[  268.089248][T20113]  ? up_write+0x25/0xc0
[  268.093402][T20113]  dup_mmap+0x38e/0x9c0
[  268.097572][T20113]  dup_mm+0x7c/0x210
[  268.101476][T20113]  copy_process+0x144f/0x2f90
[  268.106225][T20113]  ? __alloc_pages+0x194/0x320
[  268.110991][T20113]  ? _copy_from_user+0x94/0xd0
[  268.115795][T20113]  kernel_clone+0x14b/0x680
[  268.120298][T20113]  __se_sys_clone3+0x194/0x1d0
[  268.125093][T20113]  ? __cond_resched+0x11/0x40
[  268.129797][T20113]  ? fput+0x2d/0x130
[  268.133690][T20113]  ? ksys_write+0x157/0x180
[  268.138195][T20113]  ? fpregs_assert_state_consistent+0x7d/0x90
[  268.144333][T20113]  ? exit_to_user_mode_prepare+0x65/0x190
[  268.150161][T20113]  __x64_sys_clone3+0x2d/0x40
[  268.154859][T20113]  do_syscall_64+0x3d/0x90
[  268.159281][T20113]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  268.165174][T20113] RIP: 0033:0x4665f9
[  268.169086][T20113] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  268.188695][T20113] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  268.197167][T20113] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  268.205211][T20113] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  268.213184][T20113] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  268.221314][T20113] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  268.229351][T20113] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:13 executing program 4 (fault-call:3 fault-nth:76):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:13 executing program 1 (fault-call:5 fault-nth:6):
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  268.332036][T20118] FAULT_INJECTION: forcing a failure.
[  268.332036][T20118] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  268.345274][T20118] CPU: 1 PID: 20118 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  268.353686][T20118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  268.363822][T20118] Call Trace:
[  268.367094][T20118]  dump_stack_lvl+0xb7/0x103
[  268.371685][T20118]  dump_stack+0x11/0x1a
[  268.375849][T20118]  should_fail+0x23c/0x250
[  268.380265][T20118]  __alloc_pages+0x102/0x320
[  268.384856][T20118]  alloc_pages+0x2e8/0x340
[  268.389272][T20118]  __pmd_alloc+0x47/0x310
[  268.393599][T20118]  ? __pud_alloc+0x159/0x190
[  268.398189][T20118]  copy_page_range+0x695/0x8e0
[  268.403038][T20118]  ? anon_vma_fork+0x273/0x2b0
[  268.407810][T20118]  dup_mmap+0x6ab/0x9c0
[  268.411971][T20118]  dup_mm+0x7c/0x210
[  268.415866][T20118]  copy_process+0x144f/0x2f90
[  268.420544][T20118]  ? __alloc_pages+0x194/0x320
[  268.425303][T20118]  ? _copy_from_user+0x94/0xd0
[  268.430059][T20118]  kernel_clone+0x14b/0x680
[  268.434565][T20118]  __se_sys_clone3+0x194/0x1d0
[  268.439321][T20118]  ? __cond_resched+0x11/0x40
[  268.443997][T20118]  ? fput+0x2d/0x130
[  268.447893][T20118]  ? ksys_write+0x157/0x180
[  268.452398][T20118]  ? fpregs_assert_state_consistent+0x7d/0x90
[  268.458463][T20118]  ? exit_to_user_mode_prepare+0x65/0x190
[  268.464182][T20118]  __x64_sys_clone3+0x2d/0x40
[  268.468851][T20118]  do_syscall_64+0x3d/0x90
[  268.473267][T20118]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  268.479161][T20118] RIP: 0033:0x4665f9
[  268.483135][T20118] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  268.502739][T20118] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  268.511237][T20118] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  268.519200][T20118] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  268.527164][T20118] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  268.535133][T20118] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  268.543099][T20118] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
[  268.562622][T20120] FAULT_INJECTION: forcing a failure.
[  268.562622][T20120] name failslab, interval 1, probability 0, space 0, times 0
[  268.575225][T20120] CPU: 1 PID: 20120 Comm: syz-executor.1 Not tainted 5.14.0-syzkaller #0
[  268.583637][T20120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  268.593685][T20120] Call Trace:
[  268.596959][T20120]  dump_stack_lvl+0xb7/0x103
[  268.601590][T20120]  dump_stack+0x11/0x1a
[  268.605748][T20120]  should_fail+0x23c/0x250
[  268.610230][T20120]  __should_failslab+0x81/0x90
[  268.615002][T20120]  should_failslab+0x5/0x20
[  268.619504][T20120]  kmem_cache_alloc_node+0x58/0x2b0
[  268.624700][T20120]  ? __alloc_skb+0xed/0x420
[  268.629204][T20120]  __alloc_skb+0xed/0x420
[  268.633538][T20120]  netlink_dump+0x15f/0x860
[  268.638077][T20120]  ? genl_start+0xd4/0x2c0
[  268.642494][T20120]  __netlink_dump_start+0x3e3/0x4d0
[  268.647771][T20120]  ? nl80211_vendor_cmd+0x550/0x550
[  268.652969][T20120]  genl_rcv_msg+0x680/0x800
[  268.657471][T20120]  ? nl80211_channel_switch+0x950/0x950
[  268.663017][T20120]  ? nl80211_vendor_cmd+0x550/0x550
[  268.668218][T20120]  ? genl_rcv_msg+0x800/0x800
[  268.672971][T20120]  ? nl80211_vendor_cmd+0x550/0x550
[  268.678175][T20120]  ? genl_lock_done+0x90/0x90
[  268.682853][T20120]  netlink_rcv_skb+0x13e/0x240
[  268.687649][T20120]  ? genl_bind+0x1d0/0x1d0
[  268.692064][T20120]  genl_rcv+0x24/0x40
[  268.696131][T20120]  netlink_unicast+0x5ec/0x6b0
[  268.700963][T20120]  netlink_sendmsg+0x6d9/0x7c0
[  268.705760][T20120]  ? netlink_getsockopt+0x720/0x720
[  268.710955][T20120]  ____sys_sendmsg+0x360/0x4d0
[  268.715761][T20120]  ? import_iovec+0x69/0x80
[  268.720261][T20120]  __sys_sendmsg+0x1ed/0x270
[  268.724902][T20120]  ? get_pid_task+0x8b/0xc0
[  268.729399][T20120]  ? proc_fail_nth_write+0x114/0x140
[  268.734687][T20120]  ? proc_fail_nth_read+0x140/0x140
[  268.739890][T20120]  ? vfs_write+0x5e0/0x8c0
[  268.744482][T20120]  ? putname+0xc6/0xe0
[  268.748552][T20120]  ? __fget_light+0x21b/0x260
[  268.753317][T20120]  ? __cond_resched+0x11/0x40
[  268.758012][T20120]  ? fput+0x2d/0x130
[  268.761985][T20120]  ? ksys_write+0x157/0x180
[  268.766510][T20120]  __x64_sys_sendmsg+0x42/0x50
[  268.771352][T20120]  do_syscall_64+0x3d/0x90
[  268.775765][T20120]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  268.781659][T20120] RIP: 0033:0x4665f9
[  268.785854][T20120] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  268.805450][T20120] RSP: 002b:00007f7d57834188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  268.813851][T20120] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  268.821811][T20120] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000004
[  268.829846][T20120] RBP: 00007f7d578341d0 R08: 0000000000000000 R09: 0000000000000000
[  268.837888][T20120] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  268.845850][T20120] R13: 00007fff122c6a3f R14: 00007f7d57834300 R15: 0000000000022000
19:54:13 executing program 1 (fault-call:5 fault-nth:7):
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:13 executing program 4 (fault-call:3 fault-nth:77):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  268.926551][T20124] FAULT_INJECTION: forcing a failure.
[  268.926551][T20124] name failslab, interval 1, probability 0, space 0, times 0
[  268.939271][T20124] CPU: 0 PID: 20124 Comm: syz-executor.1 Not tainted 5.14.0-syzkaller #0
[  268.947681][T20124] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  268.957732][T20124] Call Trace:
[  268.961009][T20124]  dump_stack_lvl+0xb7/0x103
[  268.965606][T20124]  dump_stack+0x11/0x1a
[  268.969761][T20124]  should_fail+0x23c/0x250
[  268.974248][T20124]  __should_failslab+0x81/0x90
[  268.979006][T20124]  should_failslab+0x5/0x20
[  268.983525][T20124]  kmem_cache_alloc_node_trace+0x58/0x2e0
[  268.987095][T20128] FAULT_INJECTION: forcing a failure.
[  268.987095][T20128] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  268.989259][T20124]  ? __kmalloc_node_track_caller+0x30/0x40
[  269.008210][T20124]  ? kmem_cache_alloc_node+0x1d4/0x2b0
[  269.013655][T20124]  __kmalloc_node_track_caller+0x30/0x40
[  269.019269][T20124]  ? netlink_dump+0x15f/0x860
[  269.023988][T20124]  __alloc_skb+0x187/0x420
[  269.028419][T20124]  netlink_dump+0x15f/0x860
[  269.032904][T20124]  ? genl_start+0xd4/0x2c0
[  269.037305][T20124]  __netlink_dump_start+0x3e3/0x4d0
[  269.042571][T20124]  ? nl80211_vendor_cmd+0x550/0x550
[  269.047753][T20124]  genl_rcv_msg+0x680/0x800
[  269.052240][T20124]  ? nl80211_channel_switch+0x950/0x950
[  269.057835][T20124]  ? nl80211_vendor_cmd+0x550/0x550
[  269.063080][T20124]  ? genl_rcv_msg+0x800/0x800
[  269.067804][T20124]  ? nl80211_vendor_cmd+0x550/0x550
[  269.073018][T20124]  ? genl_lock_done+0x90/0x90
[  269.077683][T20124]  netlink_rcv_skb+0x13e/0x240
[  269.082502][T20124]  ? genl_bind+0x1d0/0x1d0
[  269.086916][T20124]  genl_rcv+0x24/0x40
[  269.090929][T20124]  netlink_unicast+0x5ec/0x6b0
[  269.095717][T20124]  netlink_sendmsg+0x6d9/0x7c0
[  269.100464][T20124]  ? netlink_getsockopt+0x720/0x720
[  269.105681][T20124]  ____sys_sendmsg+0x360/0x4d0
[  269.110429][T20124]  ? import_iovec+0x69/0x80
[  269.114913][T20124]  __sys_sendmsg+0x1ed/0x270
[  269.119527][T20124]  ? get_pid_task+0x8b/0xc0
[  269.124032][T20124]  ? proc_fail_nth_write+0x114/0x140
[  269.129302][T20124]  ? proc_fail_nth_read+0x140/0x140
[  269.134526][T20124]  ? vfs_write+0x5e0/0x8c0
[  269.138922][T20124]  ? putname+0xc6/0xe0
[  269.142973][T20124]  ? __fget_light+0x21b/0x260
[  269.147662][T20124]  ? __cond_resched+0x11/0x40
[  269.152321][T20124]  ? fput+0x2d/0x130
[  269.156206][T20124]  ? ksys_write+0x157/0x180
[  269.160691][T20124]  __x64_sys_sendmsg+0x42/0x50
[  269.165440][T20124]  do_syscall_64+0x3d/0x90
[  269.169857][T20124]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  269.175731][T20124] RIP: 0033:0x4665f9
[  269.179601][T20124] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  269.199185][T20124] RSP: 002b:00007f7d57834188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  269.207577][T20124] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  269.215540][T20124] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000004
[  269.223487][T20124] RBP: 00007f7d578341d0 R08: 0000000000000000 R09: 0000000000000000
[  269.231449][T20124] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  269.239476][T20124] R13: 00007fff122c6a3f R14: 00007f7d57834300 R15: 0000000000022000
[  269.247606][T20128] CPU: 1 PID: 20128 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  269.256012][T20128] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  269.266056][T20128] Call Trace:
[  269.269322][T20128]  dump_stack_lvl+0xb7/0x103
[  269.273906][T20128]  dump_stack+0x11/0x1a
[  269.278054][T20128]  should_fail+0x23c/0x250
[  269.282465][T20128]  __alloc_pages+0x102/0x320
[  269.287055][T20128]  alloc_pages+0x2e8/0x340
[  269.291469][T20128]  __pmd_alloc+0x47/0x310
[  269.295793][T20128]  ? __pud_alloc+0x159/0x190
[  269.300374][T20128]  copy_page_range+0x695/0x8e0
[  269.305130][T20128]  ? anon_vma_fork+0x273/0x2b0
[  269.309888][T20128]  dup_mmap+0x6ab/0x9c0
[  269.314036][T20128]  dup_mm+0x7c/0x210
[  269.317924][T20128]  copy_process+0x144f/0x2f90
[  269.322591][T20128]  ? __alloc_pages+0x194/0x320
[  269.327347][T20128]  ? _copy_from_user+0x94/0xd0
[  269.332104][T20128]  kernel_clone+0x14b/0x680
[  269.336599][T20128]  __se_sys_clone3+0x194/0x1d0
[  269.341351][T20128]  ? __cond_resched+0x11/0x40
[  269.346021][T20128]  ? fput+0x2d/0x130
[  269.349906][T20128]  ? ksys_write+0x157/0x180
[  269.354397][T20128]  ? fpregs_assert_state_consistent+0x7d/0x90
[  269.360453][T20128]  ? exit_to_user_mode_prepare+0x65/0x190
[  269.366179][T20128]  __x64_sys_clone3+0x2d/0x40
[  269.370858][T20128]  do_syscall_64+0x3d/0x90
19:54:14 executing program 1 (fault-call:5 fault-nth:8):
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  269.375271][T20128]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  269.381159][T20128] RIP: 0033:0x4665f9
[  269.385041][T20128] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  269.404637][T20128] RSP: 002b:00007fed4bfec188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  269.413041][T20128] RAX: ffffffffffffffda RBX: 000000000056c038 RCX: 00000000004665f9
[  269.421001][T20128] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  269.428968][T20128] RBP: 00007fed4bfec1d0 R08: 0000000000000000 R09: 0000000000000000
[  269.436929][T20128] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  269.444893][T20128] R13: 00007ffda6420e3f R14: 00007fed4bfec300 R15: 0000000000022000
[  269.462293][T20130] FAULT_INJECTION: forcing a failure.
[  269.462293][T20130] name failslab, interval 1, probability 0, space 0, times 0
[  269.474922][T20130] CPU: 1 PID: 20130 Comm: syz-executor.1 Not tainted 5.14.0-syzkaller #0
[  269.483328][T20130] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  269.493372][T20130] Call Trace:
[  269.496642][T20130]  dump_stack_lvl+0xb7/0x103
[  269.501230][T20130]  dump_stack+0x11/0x1a
[  269.505376][T20130]  should_fail+0x23c/0x250
[  269.509785][T20130]  __should_failslab+0x81/0x90
[  269.514542][T20130]  ? nl80211_vendor_cmd_dump+0x11e/0xd60
[  269.520173][T20130]  should_failslab+0x5/0x20
[  269.524753][T20130]  kmem_cache_alloc_trace+0x49/0x310
[  269.530097][T20130]  nl80211_vendor_cmd_dump+0x11e/0xd60
[  269.535558][T20130]  ? __alloc_skb+0x318/0x420
[  269.540147][T20130]  netlink_dump+0x359/0x860
[  269.544649][T20130]  __netlink_dump_start+0x3e3/0x4d0
[  269.549876][T20130]  ? nl80211_vendor_cmd+0x550/0x550
[  269.555136][T20130]  genl_rcv_msg+0x680/0x800
[  269.559637][T20130]  ? nl80211_channel_switch+0x950/0x950
[  269.565180][T20130]  ? nl80211_vendor_cmd+0x550/0x550
[  269.570376][T20130]  ? genl_rcv_msg+0x800/0x800
19:54:14 executing program 4 (fault-call:3 fault-nth:78):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  269.575049][T20130]  ? nl80211_vendor_cmd+0x550/0x550
[  269.580352][T20130]  ? genl_lock_done+0x90/0x90
[  269.585053][T20130]  netlink_rcv_skb+0x13e/0x240
[  269.589856][T20130]  ? genl_bind+0x1d0/0x1d0
[  269.594318][T20130]  genl_rcv+0x24/0x40
[  269.598339][T20130]  netlink_unicast+0x5ec/0x6b0
[  269.603156][T20130]  netlink_sendmsg+0x6d9/0x7c0
[  269.607918][T20130]  ? netlink_getsockopt+0x720/0x720
[  269.613115][T20130]  ____sys_sendmsg+0x360/0x4d0
[  269.617459][T20134] FAULT_INJECTION: forcing a failure.
[  269.617459][T20134] name failslab, interval 1, probability 0, space 0, times 0
[  269.617954][T20130]  ? import_iovec+0x69/0x80
[  269.617974][T20130]  __sys_sendmsg+0x1ed/0x270
[  269.639583][T20130]  ? get_pid_task+0x8b/0xc0
[  269.644151][T20130]  ? proc_fail_nth_write+0x114/0x140
[  269.649420][T20130]  ? proc_fail_nth_read+0x140/0x140
[  269.654674][T20130]  ? vfs_write+0x5e0/0x8c0
[  269.659070][T20130]  ? putname+0xc6/0xe0
[  269.663121][T20130]  ? __fget_light+0x21b/0x260
[  269.667778][T20130]  ? __cond_resched+0x11/0x40
[  269.672437][T20130]  ? fput+0x2d/0x130
[  269.676315][T20130]  ? ksys_write+0x157/0x180
[  269.680862][T20130]  __x64_sys_sendmsg+0x42/0x50
[  269.685611][T20130]  do_syscall_64+0x3d/0x90
[  269.690068][T20130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  269.695982][T20130] RIP: 0033:0x4665f9
[  269.699860][T20130] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  269.719458][T20130] RSP: 002b:00007f7d57834188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
19:54:14 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x4000, 0x202602)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x3, 0x100)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f000004cf40)={0x0, ""/256, 0x0, <r1=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f000004d140)={0x0, ""/256, 0x0, <r2=>0x0})
r3 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r3, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r4 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r4, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r3, 0x81f8943c, &(0x7f0000000440)={<r5=>0x0, ""/256, <r6=>0x0, <r7=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r4, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r7}, {0x0, r7}, {r6}, {r6}, {r6, r7}, {}, {}, {0x0, r7}, {}, {r6, r7}, {0x0, r7}, {}, {r5, r7}, {0x0, r7}, {}, {r6, r7}, {0x0, r7}, {}, {}, {}, {0x0, r7}, {r6}, {0x0, r7}, {0x0, r7}, {r6}, {0x0, r7}, {r5}, {}, {r5}, {0x0, r7}, {}, {}, {r5, r7}, {r6}, {}, {0x0, r7}, {r6, r7}, {0x0, r7}, {r5, r7}, {}, {0x0, r7}, {r6}, {}, {0x0, r7}, {r6}, {0x0, r7}, {r6}, {0x0, r7}, {}, {r5, r7}, {0x0, r7}, {r5}, {}, {r6}, {r5}, {}, {r6, r7}, {}, {0x0, r7}, {0x0, r7}, {0x0, r7}, {0x0, r7}, {r6, r7}, {0x0, r7}, {0x0, r7}, {0x0, r7}, {r6}, {r5, r7}, {}, {r5}, {}, {}, {0x0, r7}, {}, {r6}, {r5}, {}, {}, {}, {0x0, r7}, {r6}, {}, {}, {0x0, r7}, {r5}, {0x0, r7}, {0x0, r7}, {0x0, r7}, {r6, r7}, {}, {}, {0x0, r7}, {}, {r5}, {0x0, r7}, {}, {r6}, {r5, r7}, {0x0, r7}, {r5}, {r6, r7}, {0x0, r7}, {0x0, r7}, {0x0, r7}, {}, {0x0, r7}, {r5}, {r5, r7}, {}, {0x0, r7}, {r5, r7}, {0x0, r7}, {r6, r7}, {r5, r7}, {r6}, {}, {r5, r7}, {r5}, {r6, r7}, {}, {r5}, {r5, r7}, {}, {}, {0x0, r7}, {0x0, r7}, {0x0, r7}, {r6, r7}, {}, {}, {r5, r7}, {0x0, r7}, {r6, r7}, {r5, r7}, {r6, r7}, {0x0, r7}, {}, {r6, r7}, {r6}, {}, {0x0, r7}, {r5}, {0x0, r7}, {r6, r7}, {r5}, {0x0, r7}, {r6, r7}, {0x0, r7}, {0x0, r7}, {}, {0x0, r7}, {r6}, {0x0, r7}, {r6}, {r5}, {}, {}, {}, {0x0, r7}, {r5, r7}, {r6, r7}, {}, {}, {}, {r6}, {0x0, r7}, {}, {}, {r5}, {r5}, {0x0, r7}, {r5, r7}, {r6, r7}, {0x0, r7}, {r5}, {}, {r5}, {0x0, r7}, {r6}, {r5, r7}, {r5, r7}, {0x0, r7}, {0x0, r7}, {}, {}, {0x0, r7}, {r6}, {r5}, {}, {r5}, {r6}, {0x0, r7}, {r6, r7}, {0x0, r7}, {r6, r7}, {0x0, r7}, {}, {r6, r7}, {r5, r7}, {r6}, {r6, r7}, {}, {}, {r5}, {}, {r5}, {r6}, {}, {r5, r7}, {}, {}, {0x0, r7}, {r6}, {0x0, r7}, {r5}, {r6}, {r6}, {}, {}, {r6}, {0x0, r7}, {0x0, r7}, {r5, r7}, {r5}, {}, {0x0, r7}, {}, {}, {r6, r7}, {r5}, {0x0, r7}, {r5}, {r6, r7}, {r5, r7}, {r6, r7}, {r6}, {r5, r7}, {}, {}, {r6}, {r5, r7}, {0x0, r7}, {r5, r7}, {0x0, r7}, {r6}, {r6}, {}, {0x0, r7}, {r6, r7}, {}, {0x0, r7}, {}, {}, {0x0, r7}, {r5, r7}], 0x1, "2156816c73038c"})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f000004d340)={0x0, <r8=>0x0, "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", "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"})
r9 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r9, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r10 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r10, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r9, 0x81f8943c, &(0x7f0000000440)={<r11=>0x0, ""/256, <r12=>0x0, <r13=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r10, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r13}, {0x0, r13}, {r12}, {r12}, {r12, r13}, {}, {}, {0x0, r13}, {}, {r12, r13}, {0x0, r13}, {}, {r11, r13}, {0x0, r13}, {}, {r12, r13}, {0x0, r13}, {}, {}, {}, {0x0, r13}, {r12}, {0x0, r13}, {0x0, r13}, {r12}, {0x0, r13}, {r11}, {}, {r11}, {0x0, r13}, {}, {}, {r11, r13}, {r12}, {}, {0x0, r13}, {r12, r13}, {0x0, r13}, {r11, r13}, {}, {0x0, r13}, {r12}, {}, {0x0, r13}, {r12}, {0x0, r13}, {r12}, {0x0, r13}, {}, {r11, r13}, {0x0, r13}, {r11}, {}, {r12}, {r11}, {}, {r12, r13}, {}, {0x0, r13}, {0x0, r13}, {0x0, r13}, {0x0, r13}, {r12, r13}, {0x0, r13}, {0x0, r13}, {0x0, r13}, {r12}, {r11, r13}, {}, {r11}, {}, {}, {0x0, r13}, {}, {r12}, {r11}, {}, {}, {}, {0x0, r13}, {r12}, {}, {}, {0x0, r13}, {r11}, {0x0, r13}, {0x0, r13}, {0x0, r13}, {r12, r13}, {}, {}, {0x0, r13}, {}, {r11}, {0x0, r13}, {}, {r12}, {r11, r13}, {0x0, r13}, {r11}, {r12, r13}, {0x0, r13}, {0x0, r13}, {0x0, r13}, {}, {0x0, r13}, {r11}, {r11, r13}, {}, {0x0, r13}, {r11, r13}, {0x0, r13}, {r12, r13}, {r11, r13}, {r12}, {}, {r11, r13}, {r11}, {r12, r13}, {}, {r11}, {r11, r13}, {}, {}, {0x0, r13}, {0x0, r13}, {0x0, r13}, {r12, r13}, {}, {}, {r11, r13}, {0x0, r13}, {r12, r13}, {r11, r13}, {r12, r13}, {0x0, r13}, {}, {r12, r13}, {r12}, {}, {0x0, r13}, {r11}, {0x0, r13}, {r12, r13}, {r11}, {0x0, r13}, {r12, r13}, {0x0, r13}, {0x0, r13}, {}, {0x0, r13}, {r12}, {0x0, r13}, {r12}, {r11}, {}, {}, {}, {0x0, r13}, {r11, r13}, {r12, r13}, {}, {}, {}, {r12}, {0x0, r13}, {}, {}, {r11}, {r11}, {0x0, r13}, {r11, r13}, {r12, r13}, {0x0, r13}, {r11}, {}, {r11}, {0x0, r13}, {r12}, {r11, r13}, {r11, r13}, {0x0, r13}, {0x0, r13}, {}, {}, {0x0, r13}, {r12}, {r11}, {}, {r11}, {r12}, {0x0, r13}, {r12, r13}, {0x0, r13}, {r12, r13}, {0x0, r13}, {}, {r12, r13}, {r11, r13}, {r12}, {r12, r13}, {}, {}, {r11}, {}, {r11}, {r12}, {}, {r11, r13}, {}, {}, {0x0, r13}, {r12}, {0x0, r13}, {r11}, {r12}, {r12}, {}, {}, {r12}, {0x0, r13}, {0x0, r13}, {r11, r13}, {r11}, {}, {0x0, r13}, {}, {}, {r12, r13}, {r11}, {0x0, r13}, {r11}, {r12, r13}, {r11, r13}, {r12, r13}, {r12}, {r11, r13}, {}, {}, {r12}, {r11, r13}, {0x0, r13}, {r11, r13}, {0x0, r13}, {r12}, {r12}, {}, {0x0, r13}, {r12, r13}, {}, {0x0, r13}, {}, {}, {0x0, r13}, {r11, r13}], 0x1, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000004e340)={0x100000001, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r1}, {0x0, r2}, {r6}, {}, {r8, r13}], 0x40, "0d8540886bdef6"})

[  269.727853][T20130] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  269.735805][T20130] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000004
[  269.743798][T20130] RBP: 00007f7d578341d0 R08: 0000000000000000 R09: 0000000000000000
[  269.751746][T20130] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  269.759694][T20130] R13: 00007fff122c6a3f R14: 00007f7d57834300 R15: 0000000000022000
[  269.767726][T20134] CPU: 0 PID: 20134 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  269.776130][T20134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  269.786167][T20134] Call Trace:
[  269.789436][T20134]  dump_stack_lvl+0xb7/0x103
[  269.794022][T20134]  dump_stack+0x11/0x1a
[  269.798172][T20134]  should_fail+0x23c/0x250
[  269.802628][T20134]  ? anon_vma_fork+0xb1/0x2b0
[  269.807306][T20134]  __should_failslab+0x81/0x90
[  269.812064][T20134]  should_failslab+0x5/0x20
[  269.816569][T20134]  kmem_cache_alloc+0x46/0x2e0
[  269.821399][T20134]  anon_vma_fork+0xb1/0x2b0
[  269.825903][T20134]  dup_mmap+0x49c/0x9c0
[  269.830052][T20134]  dup_mm+0x7c/0x210
[  269.833976][T20134]  copy_process+0x144f/0x2f90
[  269.838648][T20134]  ? __alloc_pages+0x194/0x320
[  269.843539][T20134]  ? _copy_from_user+0x94/0xd0
[  269.848317][T20134]  kernel_clone+0x14b/0x680
[  269.852814][T20134]  __se_sys_clone3+0x194/0x1d0
[  269.855215][    C1] sd 0:0:1:0: tag#7852 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  269.857668][T20134]  ? __cond_resched+0x11/0x40
[  269.867495][    C1] sd 0:0:1:0: tag#7852 CDB: opcode=0xe5 (vendor)
[  269.872099][T20134]  ? fput+0x2d/0x130
[  269.872122][T20134]  ? ksys_write+0x157/0x180
[  269.878418][    C1] sd 0:0:1:0: tag#7852 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  269.882273][T20134]  ? fpregs_assert_state_consistent+0x7d/0x90
[  269.886761][    C1] sd 0:0:1:0: tag#7852 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  269.895736][T20134]  ? exit_to_user_mode_prepare+0x65/0x190
[  269.901794][    C1] sd 0:0:1:0: tag#7852 CDB[20]: ba
[  269.910762][T20134]  __x64_sys_clone3+0x2d/0x40
[  269.926202][T20134]  do_syscall_64+0x3d/0x90
[  269.930617][T20134]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  269.936729][T20134] RIP: 0033:0x4665f9
[  269.940612][T20134] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  269.960210][T20134] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  269.968615][T20134] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  269.976613][T20134] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  269.984580][T20134] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  269.992543][T20134] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  270.000560][T20134] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
[  270.020569][    C1] sd 0:0:1:0: tag#7853 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  270.030405][    C1] sd 0:0:1:0: tag#7853 CDB: opcode=0xe5 (vendor)
[  270.036746][    C1] sd 0:0:1:0: tag#7853 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  270.045777][    C1] sd 0:0:1:0: tag#7853 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  270.054805][    C1] sd 0:0:1:0: tag#7853 CDB[20]: ba
[  270.071947][    C0] sd 0:0:1:0: tag#7854 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
19:54:14 executing program 4 (fault-call:3 fault-nth:79):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  270.081781][    C0] sd 0:0:1:0: tag#7854 CDB: opcode=0xe5 (vendor)
[  270.088106][    C0] sd 0:0:1:0: tag#7854 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  270.097152][    C0] sd 0:0:1:0: tag#7854 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  270.106225][    C0] sd 0:0:1:0: tag#7854 CDB[20]: ba
[  270.132364][T20143] FAULT_INJECTION: forcing a failure.
[  270.132364][T20143] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  270.145604][T20143] CPU: 1 PID: 20143 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  270.154009][T20143] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  270.164054][T20143] Call Trace:
[  270.167325][T20143]  dump_stack_lvl+0xb7/0x103
[  270.171913][T20143]  dump_stack+0x11/0x1a
[  270.176066][T20143]  should_fail+0x23c/0x250
[  270.180547][T20143]  __alloc_pages+0x102/0x320
[  270.185191][T20143]  alloc_pages+0x2e8/0x340
[  270.189621][T20143]  pte_alloc_one+0x29/0xb0
[  270.194098][T20143]  ? kcsan_setup_watchpoint+0x231/0x3e0
[  270.199643][T20143]  __pte_alloc+0x2f/0x210
[  270.203974][T20143]  copy_pte_range+0x126e/0x1470
[  270.208820][T20143]  copy_page_range+0x5da/0x8e0
[  270.213628][T20143]  ? __vma_link_rb+0x3c2/0x3e0
[  270.218391][T20143]  ? up_write+0x25/0xc0
[  270.222551][T20143]  dup_mmap+0x6ab/0x9c0
[  270.226702][T20143]  dup_mm+0x7c/0x210
[  270.230588][T20143]  copy_process+0x144f/0x2f90
[  270.235261][T20143]  ? __alloc_pages+0x194/0x320
[  270.240138][T20143]  ? _copy_from_user+0x94/0xd0
[  270.244916][T20143]  kernel_clone+0x14b/0x680
[  270.249442][T20143]  __se_sys_clone3+0x194/0x1d0
[  270.254250][T20143]  ? __cond_resched+0x11/0x40
[  270.258928][T20143]  ? fput+0x2d/0x130
[  270.262821][T20143]  ? ksys_write+0x157/0x180
[  270.267322][T20143]  ? fpregs_assert_state_consistent+0x7d/0x90
[  270.273379][T20143]  ? exit_to_user_mode_prepare+0x65/0x190
19:54:15 executing program 1 (fault-call:5 fault-nth:9):
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  270.279104][T20143]  __x64_sys_clone3+0x2d/0x40
[  270.283802][T20143]  do_syscall_64+0x3d/0x90
[  270.288278][T20143]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  270.294185][T20143] RIP: 0033:0x4665f9
[  270.298099][T20143] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  270.317744][T20143] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
19:54:15 executing program 2:
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000240)={0x58, 0x0, 0x200, 0x70bd28, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x5, 0x1d}}}}, [@NL80211_ATTR_DURATION={0x8, 0x57, 0x6}, @NL80211_ATTR_DURATION={0x8, 0x57, 0x2}, @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x5}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x1702}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x2}, @NL80211_ATTR_CHANNEL_WIDTH={0x8}], @chandef_params=[@NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x4}]]}, 0x58}, 0x1, 0x0, 0x0, 0x4000000}, 0x40800)
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$SCSI_IOCTL_GET_PCI(r0, 0x5387, &(0x7f0000000040))
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

[  270.326156][T20143] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  270.334121][T20143] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  270.342148][T20143] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  270.350191][T20143] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  270.358150][T20143] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:15 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000040)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

[  270.380102][T20146] debugfs: Directory 'sg0' with parent 'block' already present!
[  270.387781][T20146] blktrace: debugfs_dir not present for sg0 so skipping
[  270.393628][T20147] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  270.406465][T20147] FAULT_INJECTION: forcing a failure.
[  270.406465][T20147] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  270.419523][T20147] CPU: 1 PID: 20147 Comm: syz-executor.1 Not tainted 5.14.0-syzkaller #0
[  270.428076][T20147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  270.438122][T20147] Call Trace:
[  270.441395][T20147]  dump_stack_lvl+0xb7/0x103
[  270.446051][T20147]  dump_stack+0x11/0x1a
[  270.450264][T20147]  should_fail+0x23c/0x250
[  270.454674][T20147]  should_fail_usercopy+0x16/0x20
[  270.459692][T20147]  _copy_to_user+0x1c/0x90
[  270.464108][T20147]  simple_read_from_buffer+0xab/0x120
[  270.469478][T20147]  proc_fail_nth_read+0xf6/0x140
[  270.474462][T20147]  ? proc_fault_inject_write+0x200/0x200
[  270.480095][T20147]  vfs_read+0x1ea/0x730
[  270.484249][T20147]  ? finish_task_switch+0xce/0x290
[  270.489357][T20147]  ? __fget_light+0x21b/0x260
[  270.494026][T20147]  ? __cond_resched+0x11/0x40
[  270.498700][T20147]  ksys_read+0xce/0x180
[  270.502852][T20147]  __x64_sys_read+0x3e/0x50
[  270.507388][T20147]  do_syscall_64+0x3d/0x90
[  270.511804][T20147]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  270.517803][T20147] RIP: 0033:0x41937c
[  270.521685][T20147] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[  270.541287][T20147] RSP: 002b:00007f7d57834170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  270.549694][T20147] RAX: ffffffffffffffda RBX: 000000000000001c RCX: 000000000041937c
[  270.557662][T20147] RDX: 000000000000000f RSI: 00007f7d578341e0 RDI: 0000000000000005
[  270.565628][T20147] RBP: 00007f7d578341d0 R08: 0000000000000000 R09: 0000000000000000
[  270.573603][T20147] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
19:54:15 executing program 4 (fault-call:3 fault-nth:80):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:15 executing program 2:
write$evdev(0xffffffffffffffff, &(0x7f0000000040)=[{{}, 0x15, 0x1, 0xb4d}], 0x18)
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})
syz_open_dev$sg(&(0x7f0000000080), 0x75b, 0x1)

19:54:15 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  270.581564][T20147] R13: 00007fff122c6a3f R14: 00007f7d57834300 R15: 0000000000022000
[  270.599201][T20153] debugfs: Directory 'sg0' with parent 'block' already present!
[  270.606927][T20153] blktrace: debugfs_dir not present for sg0 so skipping
[  270.683355][T20158] FAULT_INJECTION: forcing a failure.
[  270.683355][T20158] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  270.692137][T20159] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  270.696583][T20158] CPU: 0 PID: 20158 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  270.713089][T20158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  270.723127][T20158] Call Trace:
[  270.726400][T20158]  dump_stack_lvl+0xb7/0x103
[  270.730989][T20158]  dump_stack+0x11/0x1a
[  270.735139][T20158]  should_fail+0x23c/0x250
[  270.739548][T20158]  __alloc_pages+0x102/0x320
[  270.744136][T20158]  alloc_pages+0x2e8/0x340
[  270.748553][T20158]  get_zeroed_page+0x13/0x40
[  270.753137][T20158]  __pud_alloc+0x44/0x190
[  270.757461][T20158]  copy_page_range+0x73a/0x8e0
[  270.762218][T20158]  ? vma_interval_tree_augment_rotate+0x100/0x100
[  270.768633][T20158]  ? __do_sys_brk+0x580/0x580
[  270.773310][T20158]  ? anon_vma_fork+0x273/0x2b0
[  270.778068][T20158]  dup_mmap+0x6ab/0x9c0
[  270.782224][T20158]  dup_mm+0x7c/0x210
[  270.786111][T20158]  copy_process+0x144f/0x2f90
[  270.790784][T20158]  ? __alloc_pages+0x194/0x320
[  270.795546][T20158]  ? _copy_from_user+0x94/0xd0
[  270.800305][T20158]  kernel_clone+0x14b/0x680
[  270.804804][T20158]  __se_sys_clone3+0x194/0x1d0
[  270.809564][T20158]  ? __cond_resched+0x11/0x40
[  270.814238][T20158]  ? fput+0x2d/0x130
[  270.818130][T20158]  ? ksys_write+0x157/0x180
[  270.822628][T20158]  ? fpregs_assert_state_consistent+0x7d/0x90
[  270.828693][T20158]  ? exit_to_user_mode_prepare+0x65/0x190
[  270.834415][T20158]  __x64_sys_clone3+0x2d/0x40
[  270.839086][T20158]  do_syscall_64+0x3d/0x90
[  270.843496][T20158]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  270.849383][T20158] RIP: 0033:0x4665f9
[  270.853270][T20158] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  270.872864][T20158] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  270.881270][T20158] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  270.889232][T20158] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  270.897194][T20158] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  270.905162][T20158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  270.913139][T20158] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:15 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:15 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000000340)={0x53, 0xfffffffffffffffd, 0xba, 0x2, @buffer={0x0, 0x5c, &(0x7f00000000c0)=""/92}, &(0x7f0000000140)="6c90a6cf5f451ede4d5525e24a693094070f2ce17f546768eb4bdc79d0ae4c258988407add8e128fe6b51c8287c22dd2674762e338592a545b6edb19cc3a12de963efd227cfc57c62076c5605d7b8461859b31c3509769ca444bce1aadaab87d9f22e6ae147a9526a3e4c9a2b6a0035936b8432eb533e8d517bef88f38afb3d22329c6ce22381157ba2e41ba9fa2ae9574df1216b4cf059fc7de7b16cff1ff8266c8ec3d6f34036c724664f7d833bf35f0609294b9c5f3a63240", &(0x7f0000000200)=""/240, 0xc7, 0x4, 0x2, &(0x7f0000000300)})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r2, 0xc020660b, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r2, 0x81f8943c, &(0x7f00000003c0))
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000040)={'\x00', 0xffff, 0x8000800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

[  270.932695][T20160] debugfs: Directory 'sg0' with parent 'block' already present!
[  270.940434][T20160] blktrace: debugfs_dir not present for sg0 so skipping
[  270.948403][T20162] debugfs: Directory 'sg0' with parent 'block' already present!
[  270.956342][T20162] blktrace: debugfs_dir not present for sg0 so skipping
19:54:15 executing program 4 (fault-call:3 fault-nth:81):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  271.008568][T20168] debugfs: Directory 'sg0' with parent 'block' already present!
[  271.016265][T20167] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  271.024693][T20168] blktrace: debugfs_dir not present for sg0 so skipping
[  271.031812][T20167] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  271.043132][T20170] debugfs: Directory 'sg0' with parent 'block' already present!
19:54:15 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x2, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  271.064892][T20170] blktrace: debugfs_dir not present for sg0 so skipping
[  271.075806][T20172] FAULT_INJECTION: forcing a failure.
[  271.075806][T20172] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  271.089040][T20172] CPU: 1 PID: 20172 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  271.097447][T20172] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  271.107524][T20172] Call Trace:
[  271.110792][T20172]  dump_stack_lvl+0xb7/0x103
19:54:15 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$SG_IO(r0, 0x2285, &(0x7f0000001400)={0x0, 0xfffffffffffffffe, 0xa5, 0x40, @scatter={0x4, 0x0, &(0x7f0000001200)=[{&(0x7f0000000180)=""/4096, 0x1000}, {&(0x7f0000000040)=""/113, 0x71}, {&(0x7f0000001180)=""/99, 0x63}, {&(0x7f00000000c0)=""/35, 0x23}]}, &(0x7f0000001240)="e5c8cc1910c4f7f5021345a8f0cdb396f9e4235b21d240432e3854b89adddfb35532830d33fd4eac298a367511dbb0386a10d8ff60adec52436326a025b5d26e81c895c0ba765490101f41c990a3e5ca1074a3339375de39c9d3c4b6ff840499930579d9612ff55107b3887c768ecba1a3c7f69771b2b16280eec76e46604eb2c08e0757f46136d6914db07dc9c0dfcc8d1e3173b7d264ff7fa38d7318a73900eb338b9487", &(0x7f0000001300)=""/154, 0x1, 0x10, 0xffffffffffffffff, &(0x7f00000013c0)})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

[  271.112148][T20174] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  271.115374][T20172]  dump_stack+0x11/0x1a
[  271.127638][T20172]  should_fail+0x23c/0x250
[  271.132049][T20172]  __alloc_pages+0x102/0x320
[  271.136700][T20172]  alloc_pages+0x2e8/0x340
[  271.141114][T20172]  pte_alloc_one+0x29/0xb0
[  271.145524][T20172]  ? kcsan_setup_watchpoint+0x231/0x3e0
[  271.151110][T20172]  __pte_alloc+0x2f/0x210
[  271.155434][T20172]  copy_pte_range+0x126e/0x1470
[  271.160304][T20172]  copy_page_range+0x5da/0x8e0
[  271.165063][T20172]  ? __vma_link_rb+0x3c2/0x3e0
[  271.169820][T20172]  ? up_write+0x25/0xc0
[  271.173969][T20172]  dup_mmap+0x6ab/0x9c0
[  271.178120][T20172]  dup_mm+0x7c/0x210
[  271.182068][T20172]  copy_process+0x144f/0x2f90
[  271.186742][T20172]  ? __alloc_pages+0x194/0x320
[  271.191501][T20172]  ? _copy_from_user+0x94/0xd0
[  271.196273][T20172]  kernel_clone+0x14b/0x680
[  271.198893][T20174] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  271.200803][T20172]  __se_sys_clone3+0x194/0x1d0
[  271.213674][T20172]  ? __cond_resched+0x11/0x40
[  271.218387][T20172]  ? fput+0x2d/0x130
[  271.222338][T20172]  ? ksys_write+0x157/0x180
[  271.226845][T20172]  ? fpregs_assert_state_consistent+0x7d/0x90
[  271.232907][T20172]  ? exit_to_user_mode_prepare+0x65/0x190
[  271.238625][T20172]  __x64_sys_clone3+0x2d/0x40
[  271.243300][T20172]  do_syscall_64+0x3d/0x90
[  271.247716][T20172]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  271.253602][T20172] RIP: 0033:0x4665f9
[  271.257528][T20172] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  271.277129][T20172] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  271.285538][T20172] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  271.293552][T20172] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  271.301516][T20172] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
19:54:16 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x3, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  271.309479][T20172] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  271.317447][T20172] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
[  271.344195][T20178] debugfs: Directory 'sg0' with parent 'block' already present!
19:54:16 executing program 4 (fault-call:3 fault-nth:82):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  271.365504][T20178] blktrace: debugfs_dir not present for sg0 so skipping
[  271.379701][T20182] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  271.388880][T20184] debugfs: Directory 'sg0' with parent 'block' already present!
[  271.397029][T20184] blktrace: debugfs_dir not present for sg0 so skipping
[  271.404342][T20182] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  271.424298][T20186] FAULT_INJECTION: forcing a failure.
[  271.424298][T20186] name failslab, interval 1, probability 0, space 0, times 0
[  271.436976][T20186] CPU: 0 PID: 20186 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  271.445389][T20186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  271.455519][T20186] Call Trace:
[  271.458798][T20186]  dump_stack_lvl+0xb7/0x103
[  271.463390][T20186]  dump_stack+0x11/0x1a
[  271.467562][T20186]  should_fail+0x23c/0x250
[  271.471973][T20186]  ? dup_mmap+0x38e/0x9c0
[  271.476377][T20186]  __should_failslab+0x81/0x90
[  271.481165][T20186]  should_failslab+0x5/0x20
[  271.485671][T20186]  kmem_cache_alloc+0x46/0x2e0
[  271.490436][T20186]  ? __vma_link_rb+0x3c2/0x3e0
[  271.495200][T20186]  ? up_write+0x25/0xc0
[  271.499356][T20186]  dup_mmap+0x38e/0x9c0
[  271.503570][T20186]  dup_mm+0x7c/0x210
[  271.507459][T20186]  copy_process+0x144f/0x2f90
[  271.512131][T20186]  ? __alloc_pages+0x194/0x320
[  271.516894][T20186]  ? _copy_from_user+0x94/0xd0
[  271.521733][T20186]  kernel_clone+0x14b/0x680
[  271.526234][T20186]  __se_sys_clone3+0x194/0x1d0
[  271.531009][T20186]  ? __cond_resched+0x11/0x40
[  271.535765][T20186]  ? fput+0x2d/0x130
[  271.539666][T20186]  ? ksys_write+0x157/0x180
[  271.544171][T20186]  ? fpregs_assert_state_consistent+0x7d/0x90
[  271.550237][T20186]  ? exit_to_user_mode_prepare+0x65/0x190
[  271.555962][T20186]  __x64_sys_clone3+0x2d/0x40
[  271.560634][T20186]  do_syscall_64+0x3d/0x90
[  271.565046][T20186]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  271.570956][T20186] RIP: 0033:0x4665f9
[  271.574847][T20186] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  271.594587][T20186] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  271.602996][T20186] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  271.611042][T20186] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  271.619005][T20186] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  271.626969][T20186] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  271.634941][T20186] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:16 executing program 2:
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

19:54:16 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x4, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:16 executing program 4 (fault-call:3 fault-nth:83):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  271.761256][T20194] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  271.776953][T20195] FAULT_INJECTION: forcing a failure.
[  271.776953][T20195] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  271.790020][T20194] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  271.790181][T20195] CPU: 1 PID: 20195 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  271.806687][T20195] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  271.816733][T20195] Call Trace:
[  271.820052][T20195]  dump_stack_lvl+0xb7/0x103
[  271.824635][T20195]  dump_stack+0x11/0x1a
[  271.828790][T20195]  should_fail+0x23c/0x250
[  271.833229][T20195]  __alloc_pages+0x102/0x320
[  271.837823][T20195]  alloc_pages+0x2e8/0x340
[  271.842249][T20195]  pte_alloc_one+0x29/0xb0
[  271.846667][T20195]  ? kcsan_setup_watchpoint+0x231/0x3e0
[  271.852287][T20195]  __pte_alloc+0x2f/0x210
[  271.856612][T20195]  copy_pte_range+0x126e/0x1470
19:54:16 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000000080), 0x200000000001, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r1, 0xc020660b, 0x0)
fcntl$getown(r1, 0x9)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x2400, 0x6)
ioctl$BLKTRACESTOP(0xffffffffffffffff, 0x1275, 0x0)

19:54:16 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x5, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  271.861550][T20195]  copy_page_range+0x5da/0x8e0
[  271.866316][T20195]  ? __vma_link_rb+0x3c2/0x3e0
[  271.871079][T20195]  ? up_write+0x25/0xc0
[  271.875227][T20195]  dup_mmap+0x6ab/0x9c0
[  271.879408][T20195]  dup_mm+0x7c/0x210
[  271.883300][T20195]  copy_process+0x144f/0x2f90
[  271.887977][T20195]  ? __alloc_pages+0x194/0x320
[  271.892799][T20195]  ? _copy_from_user+0x94/0xd0
[  271.897613][T20195]  kernel_clone+0x14b/0x680
[  271.902157][T20195]  __se_sys_clone3+0x194/0x1d0
[  271.907049][T20195]  ? __cond_resched+0x11/0x40
[  271.911723][T20195]  ? fput+0x2d/0x130
[  271.915620][T20195]  ? ksys_write+0x157/0x180
[  271.920120][T20195]  ? fpregs_assert_state_consistent+0x7d/0x90
[  271.926238][T20195]  ? exit_to_user_mode_prepare+0x65/0x190
[  271.931965][T20195]  __x64_sys_clone3+0x2d/0x40
[  271.936641][T20195]  do_syscall_64+0x3d/0x90
[  271.941046][T20195]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  271.946941][T20195] RIP: 0033:0x4665f9
19:54:16 executing program 2:
setsockopt$inet6_IPV6_HOPOPTS(0xffffffffffffffff, 0x29, 0x36, &(0x7f0000001300)={0x2f, 0x7, '\x00', [@hao={0xc9, 0x10, @loopback}, @hao={0xc9, 0x10, @mcast2}, @hao={0xc9, 0x10, @local}, @padn={0x1, 0x2, [0x0, 0x0]}]}, 0x48)
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, 0x0)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x880, 0x609, 0x2000000000000, 0x0, 0xffffffffffffffff})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f0000002080)={0x3, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {<r2=>0x0}], 0x80, "e084eb01c9d25d"})
ioctl$SG_IO(r0, 0x2285, &(0x7f0000001280)={0x53, 0xfffffffffffffffb, 0x42, 0x0, @buffer={0x0, 0x89, &(0x7f0000000040)=""/137}, &(0x7f0000001180)="b567dfd803c8675686ccd768b8d59b69a993d80d30799cd428d09399ee568ee7a21e9a06802796627071e9d50a05abe13e8a7497e725000cf97f40bd4375a4f636f5", &(0x7f0000001200)=""/6, 0x7, 0x1, 0x2, &(0x7f0000001240)})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r3, 0xc020660b, 0x0)
sendfile(r0, r3, &(0x7f0000001380)=0x7, 0x45)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r1, 0xd000943e, &(0x7f0000000180)={0x0, r2, "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", "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"})

[  271.950825][T20195] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  271.970426][T20195] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  271.978846][T20195] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  271.986815][T20195] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  271.994882][T20195] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  272.003021][T20195] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  272.010987][T20195] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
[  272.027104][T20203] debugfs: Directory 'sg0' with parent 'block' already present!
[  272.035145][T20203] blktrace: debugfs_dir not present for sg0 so skipping
[  272.042929][T20204] debugfs: Directory 'sg0' with parent 'block' already present!
[  272.050687][T20204] blktrace: debugfs_dir not present for sg0 so skipping
19:54:16 executing program 4 (fault-call:3 fault-nth:84):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:16 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

19:54:16 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x6, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  272.151275][T20209] FAULT_INJECTION: forcing a failure.
[  272.151275][T20209] name failslab, interval 1, probability 0, space 0, times 0
[  272.160904][T20212] debugfs: Directory 'sg0' with parent 'block' already present!
[  272.163911][T20209] CPU: 0 PID: 20209 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  272.179968][T20209] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  272.181294][T20212] blktrace: debugfs_dir not present for sg0 so skipping
[  272.190015][T20209] Call Trace:
[  272.190024][T20209]  dump_stack_lvl+0xb7/0x103
[  272.204800][T20209]  dump_stack+0x11/0x1a
[  272.208955][T20209]  should_fail+0x23c/0x250
[  272.212846][T20213] debugfs: Directory 'sg0' with parent 'block' already present!
[  272.213367][T20209]  ? dup_mmap+0x38e/0x9c0
[  272.225274][T20209]  __should_failslab+0x81/0x90
[  272.230040][T20209]  should_failslab+0x5/0x20
[  272.231507][T20213] blktrace: debugfs_dir not present for sg0 so skipping
[  272.234541][T20209]  kmem_cache_alloc+0x46/0x2e0
[  272.246270][T20209]  ? anon_vma_fork+0x273/0x2b0
[  272.251083][T20209]  dup_mmap+0x38e/0x9c0
[  272.255308][T20209]  dup_mm+0x7c/0x210
[  272.259202][T20209]  copy_process+0x144f/0x2f90
[  272.263922][T20209]  ? __alloc_pages+0x194/0x320
[  272.268740][T20209]  ? _copy_from_user+0x94/0xd0
[  272.273512][T20209]  kernel_clone+0x14b/0x680
[  272.278221][T20209]  __se_sys_clone3+0x194/0x1d0
[  272.283073][T20209]  ? __cond_resched+0x11/0x40
[  272.287756][T20209]  ? fput+0x2d/0x130
[  272.291661][T20209]  ? ksys_write+0x157/0x180
[  272.296206][T20209]  ? fpregs_assert_state_consistent+0x7d/0x90
[  272.302270][T20209]  ? exit_to_user_mode_prepare+0x65/0x190
[  272.308212][T20209]  __x64_sys_clone3+0x2d/0x40
[  272.312890][T20209]  do_syscall_64+0x3d/0x90
[  272.317302][T20209]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  272.323270][T20209] RIP: 0033:0x4665f9
[  272.327163][T20209] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  272.346838][T20209] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  272.355247][T20209] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  272.363276][T20209] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  272.371245][T20209] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  272.379213][T20209] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  272.387239][T20209] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:17 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x7, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:17 executing program 4 (fault-call:3 fault-nth:85):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  272.466263][T20221] FAULT_INJECTION: forcing a failure.
[  272.466263][T20221] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  272.479512][T20221] CPU: 0 PID: 20221 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  272.487923][T20221] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  272.498055][T20221] Call Trace:
[  272.501340][T20221]  dump_stack_lvl+0xb7/0x103
[  272.505937][T20221]  dump_stack+0x11/0x1a
[  272.510143][T20221]  should_fail+0x23c/0x250
[  272.514585][T20221]  __alloc_pages+0x102/0x320
[  272.519177][T20221]  alloc_pages+0x2e8/0x340
[  272.523683][T20221]  pte_alloc_one+0x29/0xb0
[  272.528112][T20221]  ? kcsan_setup_watchpoint+0x231/0x3e0
[  272.533656][T20221]  __pte_alloc+0x2f/0x210
[  272.538157][T20221]  copy_pte_range+0x126e/0x1470
[  272.543072][T20221]  copy_page_range+0x5da/0x8e0
[  272.547834][T20221]  ? __vma_link_rb+0x3c2/0x3e0
[  272.552687][T20221]  ? up_write+0x25/0xc0
[  272.556848][T20221]  dup_mmap+0x6ab/0x9c0
[  272.561005][T20221]  dup_mm+0x7c/0x210
[  272.564910][T20221]  copy_process+0x144f/0x2f90
[  272.569586][T20221]  ? __alloc_pages+0x194/0x320
[  272.574351][T20221]  ? _copy_from_user+0x94/0xd0
[  272.579116][T20221]  kernel_clone+0x14b/0x680
[  272.583622][T20221]  __se_sys_clone3+0x194/0x1d0
[  272.588386][T20221]  ? __cond_resched+0x11/0x40
[  272.593068][T20221]  ? fput+0x2d/0x130
[  272.596998][T20221]  ? ksys_write+0x157/0x180
[  272.601501][T20221]  ? fpregs_assert_state_consistent+0x7d/0x90
[  272.607645][T20221]  ? exit_to_user_mode_prepare+0x65/0x190
[  272.613369][T20221]  __x64_sys_clone3+0x2d/0x40
[  272.618049][T20221]  do_syscall_64+0x3d/0x90
[  272.622473][T20221]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  272.628367][T20221] RIP: 0033:0x4665f9
[  272.632256][T20221] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  272.651862][T20221] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  272.660279][T20221] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  272.668247][T20221] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  272.676220][T20221] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  272.684191][T20221] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  272.692159][T20221] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:17 executing program 4 (fault-call:3 fault-nth:86):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:17 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x8, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  272.781345][T20229] FAULT_INJECTION: forcing a failure.
[  272.781345][T20229] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  272.794583][T20229] CPU: 1 PID: 20229 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  272.802988][T20229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  272.813041][T20229] Call Trace:
[  272.816314][T20229]  dump_stack_lvl+0xb7/0x103
[  272.820908][T20229]  dump_stack+0x11/0x1a
[  272.825104][T20229]  should_fail+0x23c/0x250
[  272.829598][T20229]  __alloc_pages+0x102/0x320
[  272.834188][T20229]  alloc_pages+0x2e8/0x340
[  272.838614][T20229]  pte_alloc_one+0x29/0xb0
[  272.843058][T20229]  __pte_alloc+0x2f/0x210
[  272.847381][T20229]  copy_pte_range+0x126e/0x1470
[  272.852227][T20229]  copy_page_range+0x5da/0x8e0
[  272.856984][T20229]  ? __vma_link_rb+0x3c2/0x3e0
[  272.861743][T20229]  ? up_write+0x25/0xc0
[  272.865964][T20229]  dup_mmap+0x6ab/0x9c0
[  272.870120][T20229]  dup_mm+0x7c/0x210
[  272.874008][T20229]  copy_process+0x144f/0x2f90
[  272.878677][T20229]  ? __alloc_pages+0x194/0x320
[  272.883440][T20229]  ? _copy_from_user+0x94/0xd0
[  272.888206][T20229]  kernel_clone+0x14b/0x680
[  272.892707][T20229]  __se_sys_clone3+0x194/0x1d0
[  272.897463][T20229]  ? __cond_resched+0x11/0x40
[  272.902141][T20229]  ? fput+0x2d/0x130
[  272.906034][T20229]  ? ksys_write+0x157/0x180
[  272.910532][T20229]  ? fpregs_assert_state_consistent+0x7d/0x90
[  272.916640][T20229]  ? exit_to_user_mode_prepare+0x65/0x190
[  272.922361][T20229]  __x64_sys_clone3+0x2d/0x40
[  272.927091][T20229]  do_syscall_64+0x3d/0x90
[  272.931554][T20229]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  272.937533][T20229] RIP: 0033:0x4665f9
[  272.941419][T20229] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  272.961018][T20229] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  272.969426][T20229] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  272.977393][T20229] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  272.985358][T20229] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  272.993326][T20229] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  273.001296][T20229] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:17 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x9, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:17 executing program 4 (fault-call:3 fault-nth:87):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  273.141665][T20237] FAULT_INJECTION: forcing a failure.
[  273.141665][T20237] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  273.154952][T20237] CPU: 0 PID: 20237 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  273.163449][T20237] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  273.173505][T20237] Call Trace:
[  273.176782][T20237]  dump_stack_lvl+0xb7/0x103
[  273.181376][T20237]  dump_stack+0x11/0x1a
[  273.185527][T20237]  should_fail+0x23c/0x250
[  273.189939][T20237]  __alloc_pages+0x102/0x320
[  273.194569][T20237]  alloc_pages+0x2e8/0x340
[  273.198988][T20237]  pte_alloc_one+0x29/0xb0
[  273.203407][T20237]  ? __schedule+0x42c/0x670
[  273.207945][T20237]  __pte_alloc+0x2f/0x210
[  273.212275][T20237]  copy_pte_range+0x126e/0x1470
[  273.217125][T20237]  copy_page_range+0x5da/0x8e0
[  273.221900][T20237]  ? __vma_link_rb+0x3c2/0x3e0
[  273.226734][T20237]  ? up_write+0x25/0xc0
[  273.230887][T20237]  dup_mmap+0x6ab/0x9c0
[  273.235112][T20237]  dup_mm+0x7c/0x210
[  273.239048][T20237]  copy_process+0x144f/0x2f90
[  273.243727][T20237]  ? __alloc_pages+0x194/0x320
[  273.248490][T20237]  ? _copy_from_user+0x94/0xd0
[  273.254140][T20237]  kernel_clone+0x14b/0x680
[  273.258641][T20237]  __se_sys_clone3+0x194/0x1d0
[  273.263544][T20237]  ? __cond_resched+0x11/0x40
[  273.268223][T20237]  ? fput+0x2d/0x130
[  273.272204][T20237]  ? ksys_write+0x157/0x180
[  273.276736][T20237]  ? fpregs_assert_state_consistent+0x7d/0x90
[  273.282804][T20237]  ? exit_to_user_mode_prepare+0x65/0x190
[  273.288573][T20237]  __x64_sys_clone3+0x2d/0x40
[  273.293252][T20237]  do_syscall_64+0x3d/0x90
[  273.297665][T20237]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  273.303570][T20237] RIP: 0033:0x4665f9
[  273.307457][T20237] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  273.327062][T20237] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  273.335569][T20237] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  273.343613][T20237] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  273.351584][T20237] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  273.359635][T20237] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  273.367602][T20237] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:18 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0xa, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:18 executing program 4 (fault-call:3 fault-nth:88):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:18 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0xb, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  273.492040][T20244] FAULT_INJECTION: forcing a failure.
[  273.492040][T20244] name failslab, interval 1, probability 0, space 0, times 0
[  273.504713][T20244] CPU: 0 PID: 20244 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  273.513129][T20244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  273.523180][T20244] Call Trace:
[  273.526452][T20244]  dump_stack_lvl+0xb7/0x103
[  273.531047][T20244]  dump_stack+0x11/0x1a
[  273.535216][T20244]  should_fail+0x23c/0x250
[  273.539643][T20244]  ? dup_mmap+0x38e/0x9c0
[  273.543970][T20244]  __should_failslab+0x81/0x90
[  273.548734][T20244]  should_failslab+0x5/0x20
[  273.553272][T20244]  kmem_cache_alloc+0x46/0x2e0
[  273.558033][T20244]  ? __vma_link_rb+0x3c2/0x3e0
[  273.562833][T20244]  ? up_write+0x25/0xc0
[  273.566985][T20244]  dup_mmap+0x38e/0x9c0
[  273.571151][T20244]  dup_mm+0x7c/0x210
[  273.575045][T20244]  copy_process+0x144f/0x2f90
[  273.579782][T20244]  ? __alloc_pages+0x194/0x320
[  273.584609][T20244]  ? _copy_from_user+0x94/0xd0
[  273.589553][T20244]  kernel_clone+0x14b/0x680
[  273.594056][T20244]  __se_sys_clone3+0x194/0x1d0
[  273.598844][T20244]  ? __cond_resched+0x11/0x40
[  273.603538][T20244]  ? fput+0x2d/0x130
[  273.607435][T20244]  ? ksys_write+0x157/0x180
[  273.611971][T20244]  ? fpregs_assert_state_consistent+0x7d/0x90
[  273.618038][T20244]  ? exit_to_user_mode_prepare+0x65/0x190
[  273.623808][T20244]  __x64_sys_clone3+0x2d/0x40
[  273.628490][T20244]  do_syscall_64+0x3d/0x90
[  273.632924][T20244]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  273.638815][T20244] RIP: 0033:0x4665f9
[  273.642703][T20244] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  273.662309][T20244] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  273.670725][T20244] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  273.678733][T20244] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  273.686787][T20244] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  273.694767][T20244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  273.702749][T20244] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:18 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0xc, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:18 executing program 4 (fault-call:3 fault-nth:89):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  273.843863][T20254] FAULT_INJECTION: forcing a failure.
[  273.843863][T20254] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  273.857119][T20254] CPU: 1 PID: 20254 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  273.865596][T20254] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  273.875638][T20254] Call Trace:
[  273.878909][T20254]  dump_stack_lvl+0xb7/0x103
[  273.883500][T20254]  dump_stack+0x11/0x1a
[  273.887650][T20254]  should_fail+0x23c/0x250
[  273.892061][T20254]  __alloc_pages+0x102/0x320
[  273.896655][T20254]  alloc_pages+0x2e8/0x340
[  273.901140][T20254]  pte_alloc_one+0x29/0xb0
[  273.905555][T20254]  ? kcsan_setup_watchpoint+0x231/0x3e0
[  273.911165][T20254]  __pte_alloc+0x2f/0x210
[  273.915489][T20254]  copy_pte_range+0x126e/0x1470
[  273.920346][T20254]  copy_page_range+0x5da/0x8e0
[  273.925105][T20254]  ? __vma_link_rb+0x3c2/0x3e0
[  273.929868][T20254]  ? up_write+0x25/0xc0
[  273.934025][T20254]  dup_mmap+0x6ab/0x9c0
[  273.938284][T20254]  dup_mm+0x7c/0x210
19:54:18 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0xd, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  273.942174][T20254]  copy_process+0x144f/0x2f90
[  273.946866][T20254]  ? __alloc_pages+0x194/0x320
[  273.951639][T20254]  ? _copy_from_user+0x94/0xd0
[  273.956429][T20254]  kernel_clone+0x14b/0x680
[  273.960990][T20254]  __se_sys_clone3+0x194/0x1d0
[  273.965753][T20254]  ? __cond_resched+0x11/0x40
[  273.970451][T20254]  ? fput+0x2d/0x130
[  273.974383][T20254]  ? ksys_write+0x157/0x180
[  273.978883][T20254]  ? fpregs_assert_state_consistent+0x7d/0x90
[  273.984946][T20254]  ? exit_to_user_mode_prepare+0x65/0x190
[  273.990714][T20254]  __x64_sys_clone3+0x2d/0x40
[  273.995390][T20254]  do_syscall_64+0x3d/0x90
[  273.999797][T20254]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  274.005688][T20254] RIP: 0033:0x4665f9
[  274.009572][T20254] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  274.029173][T20254] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  274.037617][T20254] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  274.045584][T20254] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  274.053657][T20254] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  274.061619][T20254] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  274.069585][T20254] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:18 executing program 4 (fault-call:3 fault-nth:90):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:18 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0xe, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  274.182286][T20262] FAULT_INJECTION: forcing a failure.
[  274.182286][T20262] name failslab, interval 1, probability 0, space 0, times 0
[  274.194906][T20262] CPU: 1 PID: 20262 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  274.203379][T20262] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  274.213427][T20262] Call Trace:
[  274.216700][T20262]  dump_stack_lvl+0xb7/0x103
[  274.221292][T20262]  dump_stack+0x11/0x1a
[  274.225461][T20262]  should_fail+0x23c/0x250
19:54:18 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x10, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  274.229949][T20262]  ? dup_mmap+0x38e/0x9c0
[  274.234274][T20262]  __should_failslab+0x81/0x90
[  274.239036][T20262]  should_failslab+0x5/0x20
[  274.243539][T20262]  kmem_cache_alloc+0x46/0x2e0
[  274.248295][T20262]  ? __vma_link_rb+0x3c2/0x3e0
[  274.253056][T20262]  ? up_write+0x25/0xc0
[  274.257208][T20262]  dup_mmap+0x38e/0x9c0
[  274.261364][T20262]  dup_mm+0x7c/0x210
[  274.265256][T20262]  copy_process+0x144f/0x2f90
[  274.269927][T20262]  ? __alloc_pages+0x194/0x320
[  274.274690][T20262]  ? _copy_from_user+0x94/0xd0
[  274.279451][T20262]  kernel_clone+0x14b/0x680
[  274.284021][T20262]  __se_sys_clone3+0x194/0x1d0
[  274.288797][T20262]  ? __cond_resched+0x11/0x40
[  274.293474][T20262]  ? fput+0x2d/0x130
[  274.297430][T20262]  ? ksys_write+0x157/0x180
[  274.301953][T20262]  ? fpregs_assert_state_consistent+0x7d/0x90
[  274.308092][T20262]  ? exit_to_user_mode_prepare+0x65/0x190
[  274.313814][T20262]  __x64_sys_clone3+0x2d/0x40
[  274.318488][T20262]  do_syscall_64+0x3d/0x90
[  274.322896][T20262]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  274.328786][T20262] RIP: 0033:0x4665f9
[  274.332671][T20262] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  274.352273][T20262] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  274.360677][T20262] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  274.368636][T20262] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
19:54:19 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x11, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  274.376594][T20262] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  274.384554][T20262] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  274.392523][T20262] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:19 executing program 4 (fault-call:3 fault-nth:91):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:19 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x12, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  274.492026][T20275] FAULT_INJECTION: forcing a failure.
[  274.492026][T20275] name failslab, interval 1, probability 0, space 0, times 0
[  274.504637][T20275] CPU: 1 PID: 20275 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  274.513042][T20275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  274.523086][T20275] Call Trace:
[  274.526360][T20275]  dump_stack_lvl+0xb7/0x103
[  274.530987][T20275]  dump_stack+0x11/0x1a
[  274.535156][T20275]  should_fail+0x23c/0x250
[  274.539596][T20275]  ? dup_mmap+0x38e/0x9c0
[  274.543920][T20275]  __should_failslab+0x81/0x90
[  274.548681][T20275]  should_failslab+0x5/0x20
[  274.553184][T20275]  kmem_cache_alloc+0x46/0x2e0
[  274.557942][T20275]  ? __vma_link_rb+0x3c2/0x3e0
[  274.562704][T20275]  ? up_write+0x25/0xc0
[  274.566853][T20275]  dup_mmap+0x38e/0x9c0
[  274.571005][T20275]  dup_mm+0x7c/0x210
[  274.574931][T20275]  copy_process+0x144f/0x2f90
[  274.579682][T20275]  ? __alloc_pages+0x194/0x320
[  274.584441][T20275]  ? _copy_from_user+0x94/0xd0
[  274.589201][T20275]  kernel_clone+0x14b/0x680
[  274.593702][T20275]  __se_sys_clone3+0x194/0x1d0
[  274.598460][T20275]  ? __cond_resched+0x11/0x40
[  274.603130][T20275]  ? fput+0x2d/0x130
[  274.607027][T20275]  ? ksys_write+0x157/0x180
[  274.611522][T20275]  ? fpregs_assert_state_consistent+0x7d/0x90
[  274.617587][T20275]  ? exit_to_user_mode_prepare+0x65/0x190
[  274.623365][T20275]  __x64_sys_clone3+0x2d/0x40
[  274.628035][T20275]  do_syscall_64+0x3d/0x90
[  274.632445][T20275]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  274.638332][T20275] RIP: 0033:0x4665f9
[  274.642216][T20275] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  274.661816][T20275] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  274.670219][T20275] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  274.678211][T20275] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  274.686170][T20275] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  274.694134][T20275] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  274.702153][T20275] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:19 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x25, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:19 executing program 4 (fault-call:3 fault-nth:92):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:19 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x48, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  274.812510][T20286] FAULT_INJECTION: forcing a failure.
[  274.812510][T20286] name failslab, interval 1, probability 0, space 0, times 0
[  274.825144][T20286] CPU: 1 PID: 20286 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  274.833549][T20286] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  274.843655][T20286] Call Trace:
[  274.846924][T20286]  dump_stack_lvl+0xb7/0x103
[  274.851536][T20286]  dump_stack+0x11/0x1a
[  274.855689][T20286]  should_fail+0x23c/0x250
[  274.860101][T20286]  ? dup_mmap+0x38e/0x9c0
[  274.864427][T20286]  __should_failslab+0x81/0x90
[  274.869187][T20286]  should_failslab+0x5/0x20
[  274.873684][T20286]  kmem_cache_alloc+0x46/0x2e0
[  274.878441][T20286]  ? __vma_link_rb+0x3c2/0x3e0
[  274.883202][T20286]  ? up_write+0x25/0xc0
[  274.887352][T20286]  dup_mmap+0x38e/0x9c0
[  274.891504][T20286]  dup_mm+0x7c/0x210
[  274.895395][T20286]  copy_process+0x144f/0x2f90
[  274.900073][T20286]  ? __alloc_pages+0x194/0x320
[  274.904833][T20286]  ? _copy_from_user+0x94/0xd0
[  274.909594][T20286]  kernel_clone+0x14b/0x680
[  274.914092][T20286]  __se_sys_clone3+0x194/0x1d0
[  274.918852][T20286]  ? __cond_resched+0x11/0x40
[  274.923632][T20286]  ? fput+0x2d/0x130
[  274.927607][T20286]  ? ksys_write+0x157/0x180
[  274.932110][T20286]  ? fpregs_assert_state_consistent+0x7d/0x90
[  274.938172][T20286]  ? exit_to_user_mode_prepare+0x65/0x190
[  274.943892][T20286]  __x64_sys_clone3+0x2d/0x40
[  274.948567][T20286]  do_syscall_64+0x3d/0x90
[  274.952993][T20286]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  274.958884][T20286] RIP: 0033:0x4665f9
[  274.962763][T20286] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  274.982403][T20286] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  274.990805][T20286] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  274.998770][T20286] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  275.006788][T20286] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  275.014820][T20286] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  275.022783][T20286] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:19 executing program 4 (fault-call:3 fault-nth:93):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:19 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x4c, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  275.102823][T20294] FAULT_INJECTION: forcing a failure.
[  275.102823][T20294] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  275.116076][T20294] CPU: 1 PID: 20294 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  275.124546][T20294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  275.134591][T20294] Call Trace:
[  275.137863][T20294]  dump_stack_lvl+0xb7/0x103
[  275.142478][T20294]  dump_stack+0x11/0x1a
[  275.146697][T20294]  should_fail+0x23c/0x250
19:54:19 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x60, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  275.151113][T20294]  __alloc_pages+0x102/0x320
[  275.155751][T20294]  alloc_pages+0x2e8/0x340
[  275.160168][T20294]  pte_alloc_one+0x29/0xb0
[  275.164583][T20294]  __pte_alloc+0x2f/0x210
[  275.168904][T20294]  copy_pte_range+0x126e/0x1470
[  275.173754][T20294]  copy_page_range+0x5da/0x8e0
[  275.178510][T20294]  ? __vma_link_rb+0x3c2/0x3e0
[  275.183271][T20294]  ? up_write+0x25/0xc0
[  275.187425][T20294]  dup_mmap+0x6ab/0x9c0
[  275.191578][T20294]  dup_mm+0x7c/0x210
[  275.195546][T20294]  copy_process+0x144f/0x2f90
[  275.200211][T20294]  ? __alloc_pages+0x194/0x320
[  275.205041][T20294]  ? _copy_from_user+0x94/0xd0
[  275.209797][T20294]  kernel_clone+0x14b/0x680
[  275.214290][T20294]  __se_sys_clone3+0x194/0x1d0
[  275.219058][T20294]  ? __cond_resched+0x11/0x40
[  275.223726][T20294]  ? fput+0x2d/0x130
[  275.227622][T20294]  ? ksys_write+0x157/0x180
[  275.232130][T20294]  ? fpregs_assert_state_consistent+0x7d/0x90
[  275.238191][T20294]  ? exit_to_user_mode_prepare+0x65/0x190
[  275.243955][T20294]  __x64_sys_clone3+0x2d/0x40
[  275.248624][T20294]  do_syscall_64+0x3d/0x90
[  275.253140][T20294]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  275.259030][T20294] RIP: 0033:0x4665f9
[  275.262915][T20294] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  275.282582][T20294] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  275.290994][T20294] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  275.298959][T20294] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  275.306922][T20294] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  275.314884][T20294] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  275.322858][T20294] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:20 executing program 4 (fault-call:3 fault-nth:94):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:20 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x68, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  275.422347][T20303] FAULT_INJECTION: forcing a failure.
[  275.422347][T20303] name failslab, interval 1, probability 0, space 0, times 0
[  275.434962][T20303] CPU: 1 PID: 20303 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  275.443369][T20303] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  275.453415][T20303] Call Trace:
[  275.456685][T20303]  dump_stack_lvl+0xb7/0x103
[  275.461270][T20303]  dump_stack+0x11/0x1a
[  275.465419][T20303]  should_fail+0x23c/0x250
[  275.469839][T20303]  ? dup_mmap+0x38e/0x9c0
[  275.474184][T20303]  __should_failslab+0x81/0x90
[  275.479007][T20303]  should_failslab+0x5/0x20
[  275.483559][T20303]  kmem_cache_alloc+0x46/0x2e0
[  275.488325][T20303]  ? __vma_link_rb+0x3c2/0x3e0
[  275.493098][T20303]  ? up_write+0x25/0xc0
[  275.497255][T20303]  dup_mmap+0x38e/0x9c0
[  275.501406][T20303]  dup_mm+0x7c/0x210
[  275.505390][T20303]  copy_process+0x144f/0x2f90
[  275.510072][T20303]  ? __alloc_pages+0x194/0x320
[  275.514903][T20303]  ? _copy_from_user+0x94/0xd0
[  275.519667][T20303]  kernel_clone+0x14b/0x680
[  275.524167][T20303]  __se_sys_clone3+0x194/0x1d0
[  275.528953][T20303]  ? __cond_resched+0x11/0x40
[  275.533626][T20303]  ? fput+0x2d/0x130
[  275.537550][T20303]  ? ksys_write+0x157/0x180
[  275.542058][T20303]  ? fpregs_assert_state_consistent+0x7d/0x90
[  275.548135][T20303]  ? exit_to_user_mode_prepare+0x65/0x190
[  275.553934][T20303]  __x64_sys_clone3+0x2d/0x40
[  275.558612][T20303]  do_syscall_64+0x3d/0x90
[  275.563026][T20303]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  275.568917][T20303] RIP: 0033:0x4665f9
[  275.572801][T20303] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  275.580046][T20307] validate_nla: 34 callbacks suppressed
[  275.580057][T20307] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  275.592460][T20303] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  275.592479][T20303] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  275.592490][T20303] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  275.630462][T20303] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  275.638424][T20303] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  275.646386][T20303] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
[  275.662795][T20305] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
19:54:20 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x6c, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:20 executing program 4 (fault-call:3 fault-nth:95):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  275.751466][T20311] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  275.775831][T20311] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  275.786565][T20314] FAULT_INJECTION: forcing a failure.
[  275.786565][T20314] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  275.799857][T20314] CPU: 1 PID: 20314 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  275.808290][T20314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  275.818334][T20314] Call Trace:
[  275.821601][T20314]  dump_stack_lvl+0xb7/0x103
[  275.826221][T20314]  dump_stack+0x11/0x1a
[  275.830376][T20314]  should_fail+0x23c/0x250
[  275.834789][T20314]  __alloc_pages+0x102/0x320
[  275.839395][T20314]  alloc_pages+0x2e8/0x340
[  275.843909][T20314]  pte_alloc_one+0x29/0xb0
19:54:20 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x74, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  275.848395][T20314]  ? kcsan_setup_watchpoint+0x231/0x3e0
[  275.853949][T20314]  __pte_alloc+0x2f/0x210
[  275.858273][T20314]  copy_pte_range+0x126e/0x1470
[  275.863121][T20314]  copy_page_range+0x5da/0x8e0
[  275.867879][T20314]  ? __vma_link_rb+0x3c2/0x3e0
[  275.872680][T20314]  ? up_write+0x25/0xc0
[  275.876894][T20314]  dup_mmap+0x6ab/0x9c0
[  275.881051][T20314]  dup_mm+0x7c/0x210
[  275.884939][T20314]  copy_process+0x144f/0x2f90
[  275.889646][T20314]  ? __alloc_pages+0x194/0x320
[  275.894506][T20314]  ? _copy_from_user+0x94/0xd0
[  275.899270][T20314]  kernel_clone+0x14b/0x680
[  275.903771][T20314]  __se_sys_clone3+0x194/0x1d0
[  275.908533][T20314]  ? __cond_resched+0x11/0x40
[  275.913215][T20314]  ? fput+0x2d/0x130
[  275.917113][T20314]  ? ksys_write+0x157/0x180
[  275.921613][T20314]  ? fpregs_assert_state_consistent+0x7d/0x90
[  275.927677][T20314]  ? exit_to_user_mode_prepare+0x65/0x190
[  275.933400][T20314]  __x64_sys_clone3+0x2d/0x40
[  275.938073][T20314]  do_syscall_64+0x3d/0x90
[  275.942490][T20314]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  275.948381][T20314] RIP: 0033:0x4665f9
[  275.952328][T20314] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  275.971955][T20314] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  275.980361][T20314] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  275.988328][T20314] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  275.996351][T20314] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  276.004314][T20314] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  276.012375][T20314] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
[  276.024674][T20316] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
19:54:20 executing program 4 (fault-call:3 fault-nth:96):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  276.050598][T20316] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
19:54:20 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x7a, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  276.135480][T20321] FAULT_INJECTION: forcing a failure.
[  276.135480][T20321] name failslab, interval 1, probability 0, space 0, times 0
[  276.148201][T20321] CPU: 1 PID: 20321 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  276.156613][T20321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  276.166664][T20321] Call Trace:
[  276.169938][T20321]  dump_stack_lvl+0xb7/0x103
[  276.174585][T20321]  dump_stack+0x11/0x1a
[  276.178741][T20321]  should_fail+0x23c/0x250
[  276.183217][T20321]  ? dup_mmap+0x38e/0x9c0
[  276.187596][T20321]  __should_failslab+0x81/0x90
[  276.192408][T20321]  should_failslab+0x5/0x20
[  276.197004][T20321]  kmem_cache_alloc+0x46/0x2e0
[  276.201765][T20321]  ? __vma_link_rb+0x3c2/0x3e0
[  276.206585][T20321]  ? up_write+0x25/0xc0
[  276.210742][T20321]  dup_mmap+0x38e/0x9c0
[  276.214900][T20321]  dup_mm+0x7c/0x210
[  276.218789][T20321]  copy_process+0x144f/0x2f90
[  276.223460][T20321]  ? __alloc_pages+0x194/0x320
[  276.228235][T20321]  ? _copy_from_user+0x94/0xd0
[  276.232998][T20321]  kernel_clone+0x14b/0x680
[  276.237498][T20321]  __se_sys_clone3+0x194/0x1d0
[  276.242260][T20321]  ? __cond_resched+0x11/0x40
[  276.246937][T20321]  ? fput+0x2d/0x130
[  276.250832][T20321]  ? ksys_write+0x157/0x180
[  276.255338][T20321]  ? fpregs_assert_state_consistent+0x7d/0x90
[  276.261456][T20321]  ? exit_to_user_mode_prepare+0x65/0x190
[  276.267184][T20321]  __x64_sys_clone3+0x2d/0x40
[  276.271859][T20321]  do_syscall_64+0x3d/0x90
[  276.276283][T20321]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  276.282175][T20321] RIP: 0033:0x4665f9
[  276.286058][T20321] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  276.305661][T20321] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  276.314064][T20321] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  276.322028][T20321] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  276.329989][T20321] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  276.337955][T20321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  276.345914][T20321] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
[  276.370035][T20323] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
19:54:21 executing program 4 (fault-call:3 fault-nth:97):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  276.388321][T20323] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  276.452372][T20328] FAULT_INJECTION: forcing a failure.
[  276.452372][T20328] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  276.465637][T20328] CPU: 0 PID: 20328 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  276.474043][T20328] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  276.484091][T20328] Call Trace:
[  276.487368][T20328]  dump_stack_lvl+0xb7/0x103
[  276.491962][T20328]  dump_stack+0x11/0x1a
[  276.496195][T20328]  should_fail+0x23c/0x250
[  276.500685][T20328]  __alloc_pages+0x102/0x320
[  276.505313][T20328]  alloc_pages+0x2e8/0x340
[  276.509779][T20328]  pte_alloc_one+0x29/0xb0
[  276.514193][T20328]  ? kcsan_setup_watchpoint+0x231/0x3e0
[  276.519735][T20328]  __pte_alloc+0x2f/0x210
[  276.524088][T20328]  copy_pte_range+0x126e/0x1470
[  276.528940][T20328]  copy_page_range+0x5da/0x8e0
[  276.533763][T20328]  ? __vma_link_rb+0x3c2/0x3e0
[  276.538524][T20328]  ? up_write+0x25/0xc0
[  276.542678][T20328]  dup_mmap+0x6ab/0x9c0
[  276.546835][T20328]  dup_mm+0x7c/0x210
[  276.550795][T20328]  copy_process+0x144f/0x2f90
[  276.555468][T20328]  ? __alloc_pages+0x194/0x320
[  276.560227][T20328]  ? _copy_from_user+0x94/0xd0
[  276.564991][T20328]  kernel_clone+0x14b/0x680
[  276.569493][T20328]  __se_sys_clone3+0x194/0x1d0
[  276.574259][T20328]  ? __cond_resched+0x11/0x40
[  276.579015][T20328]  ? fput+0x2d/0x130
[  276.582989][T20328]  ? ksys_write+0x157/0x180
[  276.587489][T20328]  ? fpregs_assert_state_consistent+0x7d/0x90
[  276.593553][T20328]  ? exit_to_user_mode_prepare+0x65/0x190
[  276.599304][T20328]  __x64_sys_clone3+0x2d/0x40
[  276.603987][T20328]  do_syscall_64+0x3d/0x90
[  276.608399][T20328]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  276.614294][T20328] RIP: 0033:0x4665f9
[  276.618179][T20328] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  276.637788][T20328] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  276.646192][T20328] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  276.654158][T20328] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  276.662124][T20328] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  276.670088][T20328] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  276.678051][T20328] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:21 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x300, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  276.802039][T20330] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
19:54:21 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x500, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:21 executing program 4 (fault-call:3 fault-nth:98):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  276.901255][T20336] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  276.904222][T20337] FAULT_INJECTION: forcing a failure.
[  276.904222][T20337] name failslab, interval 1, probability 0, space 0, times 0
[  276.922187][T20337] CPU: 0 PID: 20337 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  276.930659][T20337] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  276.940708][T20337] Call Trace:
[  276.943980][T20337]  dump_stack_lvl+0xb7/0x103
19:54:21 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x600, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  276.948568][T20337]  dump_stack+0x11/0x1a
[  276.952721][T20337]  should_fail+0x23c/0x250
[  276.957205][T20337]  ? dup_mmap+0x38e/0x9c0
[  276.961537][T20337]  __should_failslab+0x81/0x90
[  276.966296][T20337]  should_failslab+0x5/0x20
[  276.970800][T20337]  kmem_cache_alloc+0x46/0x2e0
[  276.975565][T20337]  ? __vma_link_rb+0x3c2/0x3e0
[  276.980340][T20337]  ? up_write+0x25/0xc0
[  276.984491][T20337]  dup_mmap+0x38e/0x9c0
[  276.988767][T20337]  dup_mm+0x7c/0x210
[  276.992657][T20337]  copy_process+0x144f/0x2f90
[  276.997383][T20337]  ? __alloc_pages+0x194/0x320
[  277.002147][T20337]  ? _copy_from_user+0x94/0xd0
[  277.006898][T20337]  kernel_clone+0x14b/0x680
[  277.011392][T20337]  __se_sys_clone3+0x194/0x1d0
[  277.016231][T20337]  ? __cond_resched+0x11/0x40
[  277.020968][T20337]  ? fput+0x2d/0x130
[  277.024860][T20337]  ? ksys_write+0x157/0x180
[  277.029359][T20337]  ? fpregs_assert_state_consistent+0x7d/0x90
[  277.035460][T20337]  ? exit_to_user_mode_prepare+0x65/0x190
[  277.041244][T20337]  __x64_sys_clone3+0x2d/0x40
[  277.045931][T20337]  do_syscall_64+0x3d/0x90
[  277.050418][T20337]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  277.056311][T20337] RIP: 0033:0x4665f9
[  277.060251][T20337] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  277.079856][T20337] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  277.088290][T20337] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
19:54:21 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x700, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  277.096255][T20337] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  277.104225][T20337] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  277.112236][T20337] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  277.120202][T20337] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:21 executing program 4 (fault-call:3 fault-nth:99):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  277.282552][T20349] FAULT_INJECTION: forcing a failure.
[  277.282552][T20349] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  277.295820][T20349] CPU: 1 PID: 20349 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  277.304253][T20349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  277.314304][T20349] Call Trace:
[  277.317573][T20349]  dump_stack_lvl+0xb7/0x103
[  277.322216][T20349]  dump_stack+0x11/0x1a
[  277.326400][T20349]  should_fail+0x23c/0x250
[  277.330809][T20349]  __alloc_pages+0x102/0x320
[  277.335444][T20349]  alloc_pages+0x2e8/0x340
[  277.339858][T20349]  pte_alloc_one+0x29/0xb0
[  277.344288][T20349]  ? __schedule+0x42c/0x670
[  277.348787][T20349]  __pte_alloc+0x2f/0x210
[  277.353109][T20349]  copy_pte_range+0x126e/0x1470
[  277.357967][T20349]  copy_page_range+0x5da/0x8e0
[  277.362725][T20349]  ? __vma_link_rb+0x3c2/0x3e0
[  277.367500][T20349]  ? up_write+0x25/0xc0
[  277.371652][T20349]  dup_mmap+0x6ab/0x9c0
[  277.375810][T20349]  dup_mm+0x7c/0x210
[  277.379699][T20349]  copy_process+0x144f/0x2f90
[  277.384371][T20349]  ? __alloc_pages+0x194/0x320
[  277.389183][T20349]  ? _copy_from_user+0x94/0xd0
[  277.394013][T20349]  kernel_clone+0x14b/0x680
[  277.398548][T20349]  __se_sys_clone3+0x194/0x1d0
[  277.403307][T20349]  ? __cond_resched+0x11/0x40
[  277.408002][T20349]  ? fput+0x2d/0x130
[  277.411975][T20349]  ? ksys_write+0x157/0x180
[  277.416498][T20349]  ? fpregs_assert_state_consistent+0x7d/0x90
[  277.422561][T20349]  ? exit_to_user_mode_prepare+0x65/0x190
[  277.428377][T20349]  __x64_sys_clone3+0x2d/0x40
[  277.433048][T20349]  do_syscall_64+0x3d/0x90
[  277.437463][T20349]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  277.443356][T20349] RIP: 0033:0x4665f9
[  277.447242][T20349] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  277.466845][T20349] RSP: 002b:00007fed4c00d188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  277.475249][T20349] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
19:54:22 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x900, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  277.483337][T20349] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  277.491298][T20349] RBP: 00007fed4c00d1d0 R08: 0000000000000000 R09: 0000000000000000
[  277.499260][T20349] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003
[  277.507228][T20349] R13: 00007ffda6420e3f R14: 00007fed4c00d300 R15: 0000000000022000
19:54:22 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:22 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0xa00, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:22 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0xb00, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:22 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0002, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:22 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0004, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:22 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0xc00, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:22 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0008, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:22 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0xca7, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:22 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0xd00, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:22 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0011, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:22 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0xe00, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:22 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0041, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:22 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0xec0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:22 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0070, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:22 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x1100, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:22 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c1100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:23 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c1f00, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:23 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x1200, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:23 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c2000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:23 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x2000, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:23 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c3f00, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:23 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c4000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:23 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x2500, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:23 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c4100, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:23 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c7000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:23 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x4800, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:23 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:23 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x4c00, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:23 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0x2}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:23 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x6000, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:23 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0x4}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:23 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x6800, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:23 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x6c00, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:23 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0x8}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:23 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x7400, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:23 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0x11}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:24 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x7a00, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:24 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0x41}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:24 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0xa70c, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:24 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0x70}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:24 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0xc00e, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:24 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x34000, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:24 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0x1100}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:24 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x400300, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:24 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0x1f00}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:24 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x1000000, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:24 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0x2000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:24 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x2000000, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:24 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x3000000, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:24 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0x3f00}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:24 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0x4000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:24 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x4000000, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:24 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0x4100}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:24 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x5000000, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:24 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0x7000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:24 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x6000000, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:24 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0x20200}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:24 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x7000000, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:24 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0x3ffff}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:24 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x8000000, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:24 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0x40000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:25 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0x80000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:25 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x9000000, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:25 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0xa000000, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:25 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0x20981d}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:25 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0x400000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:25 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0xb000000, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:25 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0xc000000, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:25 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0x700000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:25 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0xf01a01}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:25 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0xd000000, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:25 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0x1000000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  280.650859][T20635] validate_nla: 75 callbacks suppressed
[  280.650872][T20635] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  280.690337][T20635] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
19:54:25 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0xe000000, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:25 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0x11af000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  280.805855][T20645] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  280.815016][T20645] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
19:54:25 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x10000000, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:25 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0x2000000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:25 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0x11000000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  280.896373][T20653] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  280.919328][T20653] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
19:54:25 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x11000000, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:25 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0x1d982000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  281.001653][T20664] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  281.023418][T20664] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
19:54:25 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x12000000, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:25 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0x1f000000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  281.108078][T20674] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  281.129535][T20674] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
19:54:25 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x20000000, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:25 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0x20000000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:25 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x25000000, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:25 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0x3f000000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:26 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x48000000, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:26 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0x40000000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:26 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x4c000000, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:26 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0x41000000}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:26 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x60000000, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:26 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0xf0ffffff}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:26 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x68000000, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:26 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x6c000000, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:26 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0xf5ffffff}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:26 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0xfbffffff}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:26 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x74000000, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:26 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x7a000000, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:26 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0xfeffffff}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:26 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0xffff0300}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:26 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x9effffff, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:26 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0xfffffff0}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:26 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0xa70c0000, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:26 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0xfffffff5}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:26 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0xc00e0000, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:26 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0xfffffffb}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:26 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0xefffffff, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:26 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {0xfffffffe}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:26 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x2, 0x0, 0x0}, 0x58)

19:54:26 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0xf0ffffff, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:27 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x4, 0x0, 0x0}, 0x58)

19:54:27 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0xffffff7f, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:27 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0xffffff9e, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:27 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x8, 0x0, 0x0}, 0x58)

19:54:27 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0xffffffef, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:27 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x11, 0x0, 0x0}, 0x58)

19:54:27 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x41, 0x0, 0x0}, 0x58)

19:54:27 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0xfffffff0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:27 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x70, 0x0, 0x0}, 0x58)

19:54:27 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0xf, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:27 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x1100, 0x0, 0x0}, 0x58)

19:54:27 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x10, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:27 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x1f00, 0x0, 0x0}, 0x58)

19:54:27 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x14, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:27 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x2000, 0x0, 0x0}, 0x58)

19:54:27 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x67, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:27 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x3f00, 0x0, 0x0}, 0x58)

19:54:27 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0xc0, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:27 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})
r1 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={<r2=>0x0, ""/256, <r3=>0x0, <r4=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r4}, {0x0, r4}, {r3}, {r3}, {r3, r4}, {}, {}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {}, {r2, r4}, {0x0, r4}, {}, {r3, r4}, {0x0, r4}, {}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {}, {}, {r2, r4}, {r3}, {}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r2, r4}, {}, {0x0, r4}, {r3}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {0x0, r4}, {}, {r2, r4}, {0x0, r4}, {r2}, {}, {r3}, {r2}, {}, {r3, r4}, {}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3}, {r2, r4}, {}, {r2}, {}, {}, {0x0, r4}, {}, {r3}, {r2}, {}, {}, {}, {0x0, r4}, {r3}, {}, {}, {0x0, r4}, {r2}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3, r4}, {}, {}, {0x0, r4}, {}, {r2}, {0x0, r4}, {}, {r3}, {r2, r4}, {0x0, r4}, {r2}, {r3, r4}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r2}, {r2, r4}, {}, {0x0, r4}, {r2, r4}, {0x0, r4}, {r3, r4}, {r2, r4}, {r3}, {}, {r2, r4}, {r2}, {r3, r4}, {}, {r2}, {r2, r4}, {}, {}, {0x0, r4}, {0x0, r4}, {0x0, r4}, {r3, r4}, {}, {}, {r2, r4}, {0x0, r4}, {r3, r4}, {r2, r4}, {r3, r4}, {0x0, r4}, {}, {r3, r4}, {r3}, {}, {0x0, r4}, {r2}, {0x0, r4}, {r3, r4}, {r2}, {0x0, r4}, {r3, r4}, {0x0, r4}, {0x0, r4}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r3}, {r2}, {}, {}, {}, {0x0, r4}, {r2, r4}, {r3, r4}, {}, {}, {}, {r3}, {0x0, r4}, {}, {}, {r2}, {r2}, {0x0, r4}, {r2, r4}, {r3, r4}, {0x0, r4}, {r2}, {}, {r2}, {0x0, r4}, {r3}, {r2, r4}, {r2, r4}, {0x0, r4}, {0x0, r4}, {}, {}, {0x0, r4}, {r3}, {r2}, {}, {r2}, {r3}, {0x0, r4}, {r3, r4}, {0x0, r4}, {r3, r4}, {0x0, r4}, {}, {r3, r4}, {r2, r4}, {r3}, {r3, r4}, {}, {}, {r2}, {}, {r2}, {r3}, {}, {r2, r4}, {}, {}, {0x0, r4}, {r3}, {0x0, r4}, {r2}, {r3}, {r3}, {}, {}, {r3}, {0x0, r4}, {0x0, r4}, {r2, r4}, {r2}, {}, {0x0, r4}, {}, {}, {r3, r4}, {r2}, {0x0, r4}, {r2}, {r3, r4}, {r2, r4}, {r3, r4}, {r3}, {r2, r4}, {}, {}, {r3}, {r2, r4}, {0x0, r4}, {r2, r4}, {0x0, r4}, {r3}, {r3}, {}, {0x0, r4}, {r3, r4}, {}, {0x0, r4}, {}, {}, {0x0, r4}, {r2, r4}], 0x1, "2156816c73038c"})
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r5, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r6 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r6, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r5, 0x81f8943c, &(0x7f0000000440)={<r7=>0x0, ""/256, <r8=>0x0, <r9=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r6, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r9}, {0x0, r9}, {r8}, {r8}, {r8, r9}, {}, {}, {0x0, r9}, {}, {r8, r9}, {0x0, r9}, {}, {r7, r9}, {0x0, r9}, {}, {r8, r9}, {0x0, r9}, {}, {}, {}, {0x0, r9}, {r8}, {0x0, r9}, {0x0, r9}, {r8}, {0x0, r9}, {r7}, {}, {r7}, {0x0, r9}, {}, {}, {r7, r9}, {r8}, {}, {0x0, r9}, {r8, r9}, {0x0, r9}, {r7, r9}, {}, {0x0, r9}, {r8}, {}, {0x0, r9}, {r8}, {0x0, r9}, {r8}, {0x0, r9}, {}, {r7, r9}, {0x0, r9}, {r7}, {}, {r8}, {r7}, {}, {r8, r9}, {}, {0x0, r9}, {0x0, r9}, {0x0, r9}, {0x0, r9}, {r8, r9}, {0x0, r9}, {0x0, r9}, {0x0, r9}, {r8}, {r7, r9}, {}, {r7}, {}, {}, {0x0, r9}, {}, {r8}, {r7}, {}, {}, {}, {0x0, r9}, {r8}, {}, {}, {0x0, r9}, {r7}, {0x0, r9}, {0x0, r9}, {0x0, r9}, {r8, r9}, {}, {}, {0x0, r9}, {}, {r7}, {0x0, r9}, {}, {r8}, {r7, r9}, {0x0, r9}, {r7}, {r8, r9}, {0x0, r9}, {0x0, r9}, {0x0, r9}, {}, {0x0, r9}, {r7}, {r7, r9}, {}, {0x0, r9}, {r7, r9}, {0x0, r9}, {r8, r9}, {r7, r9}, {r8}, {}, {r7, r9}, {r7}, {r8, r9}, {}, {r7}, {r7, r9}, {}, {}, {0x0, r9}, {0x0, r9}, {0x0, r9}, {r8, r9}, {}, {}, {r7, r9}, {0x0, r9}, {r8, r9}, {r7, r9}, {r8, r9}, {0x0, r9}, {}, {r8, r9}, {r8}, {}, {0x0, r9}, {r7}, {0x0, r9}, {r8, r9}, {r7}, {0x0, r9}, {r8, r9}, {0x0, r9}, {0x0, r9}, {}, {0x0, r9}, {r8}, {0x0, r9}, {r8}, {r7}, {}, {}, {}, {0x0, r9}, {r7, r9}, {r8, r9}, {}, {}, {}, {r8}, {0x0, r9}, {}, {}, {r7}, {r7}, {0x0, r9}, {r7, r9}, {r8, r9}, {0x0, r9}, {r7}, {}, {r7}, {0x0, r9}, {r8}, {r7, r9}, {r7, r9}, {0x0, r9}, {0x0, r9}, {}, {}, {0x0, r9}, {r8}, {r7}, {}, {r7}, {r8}, {0x0, r9}, {r8, r9}, {0x0, r9}, {r8, r9}, {0x0, r9}, {}, {r8, r9}, {r7, r9}, {r8}, {r8, r9}, {}, {}, {r7}, {}, {r7}, {r8}, {}, {r7, r9}, {}, {}, {0x0, r9}, {r8}, {0x0, r9}, {r7}, {r8}, {r8}, {}, {}, {r8}, {0x0, r9}, {0x0, r9}, {r7, r9}, {r7}, {}, {0x0, r9}, {}, {}, {r8, r9}, {r7}, {0x0, r9}, {r7}, {r8, r9}, {r7, r9}, {r8, r9}, {r8}, {r7, r9}, {}, {}, {r8}, {r7, r9}, {0x0, r9}, {r7, r9}, {0x0, r9}, {r8}, {r8}, {}, {0x0, r9}, {r8, r9}, {}, {0x0, r9}, {}, {}, {0x0, r9}, {r7, r9}], 0x1, "2156816c73038c"})
r10 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r10, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r11 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r11, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r10, 0x81f8943c, &(0x7f0000000440)={<r12=>0x0, ""/256, <r13=>0x0, <r14=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r11, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r14}, {0x0, r14}, {r13}, {r13}, {r13, r14}, {}, {}, {0x0, r14}, {}, {r13, r14}, {0x0, r14}, {}, {r12, r14}, {0x0, r14}, {}, {r13, r14}, {0x0, r14}, {}, {}, {}, {0x0, r14}, {r13}, {0x0, r14}, {0x0, r14}, {r13}, {0x0, r14}, {r12}, {}, {r12}, {0x0, r14}, {}, {}, {r12, r14}, {r13}, {}, {0x0, r14}, {r13, r14}, {0x0, r14}, {r12, r14}, {}, {0x0, r14}, {r13}, {}, {0x0, r14}, {r13}, {0x0, r14}, {r13}, {0x0, r14}, {}, {r12, r14}, {0x0, r14}, {r12}, {}, {r13}, {r12}, {}, {r13, r14}, {}, {0x0, r14}, {0x0, r14}, {0x0, r14}, {0x0, r14}, {r13, r14}, {0x0, r14}, {0x0, r14}, {0x0, r14}, {r13}, {r12, r14}, {}, {r12}, {}, {}, {0x0, r14}, {}, {r13}, {r12}, {}, {}, {}, {0x0, r14}, {r13}, {}, {}, {0x0, r14}, {r12}, {0x0, r14}, {0x0, r14}, {0x0, r14}, {r13, r14}, {}, {}, {0x0, r14}, {}, {r12}, {0x0, r14}, {}, {r13}, {r12, r14}, {0x0, r14}, {r12}, {r13, r14}, {0x0, r14}, {0x0, r14}, {0x0, r14}, {}, {0x0, r14}, {r12}, {r12, r14}, {}, {0x0, r14}, {r12, r14}, {0x0, r14}, {r13, r14}, {r12, r14}, {r13}, {}, {r12, r14}, {r12}, {r13, r14}, {}, {r12}, {r12, r14}, {}, {}, {0x0, r14}, {0x0, r14}, {0x0, r14}, {r13, r14}, {}, {}, {r12, r14}, {0x0, r14}, {r13, r14}, {r12, r14}, {r13, r14}, {0x0, r14}, {}, {r13, r14}, {r13}, {}, {0x0, r14}, {r12}, {0x0, r14}, {r13, r14}, {r12}, {0x0, r14}, {r13, r14}, {0x0, r14}, {0x0, r14}, {}, {0x0, r14}, {r13}, {0x0, r14}, {r13}, {r12}, {}, {}, {}, {0x0, r14}, {r12, r14}, {r13, r14}, {}, {}, {}, {r13}, {0x0, r14}, {}, {}, {r12}, {r12}, {0x0, r14}, {r12, r14}, {r13, r14}, {0x0, r14}, {r12}, {}, {r12}, {0x0, r14}, {r13}, {r12, r14}, {r12, r14}, {0x0, r14}, {0x0, r14}, {}, {}, {0x0, r14}, {r13}, {r12}, {}, {r12}, {r13}, {0x0, r14}, {r13, r14}, {0x0, r14}, {r13, r14}, {0x0, r14}, {}, {r13, r14}, {r12, r14}, {r13}, {r13, r14}, {}, {}, {r12}, {}, {r12}, {r13}, {}, {r12, r14}, {}, {}, {0x0, r14}, {r13}, {0x0, r14}, {r12}, {r13}, {r13}, {}, {}, {r13}, {0x0, r14}, {0x0, r14}, {r12, r14}, {r12}, {}, {0x0, r14}, {}, {}, {r13, r14}, {r12}, {0x0, r14}, {r12}, {r13, r14}, {r12, r14}, {r13, r14}, {r13}, {r12, r14}, {}, {}, {r13}, {r12, r14}, {0x0, r14}, {r12, r14}, {0x0, r14}, {r13}, {r13}, {}, {0x0, r14}, {r13, r14}, {}, {0x0, r14}, {}, {}, {0x0, r14}, {r12, r14}], 0x1, "2156816c73038c"})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f000004fe40)={<r15=>0x0, 0x0, "fce7c3579ec8d8d3ef74368d7739a26e9c974530ae6d6528e55ed6538be88c7584104c0924b78a3e636a72cad8f2b83546cdad1093eb392b293b7d3c29f71ec78ecf32da4255d6555ab51f22d5e7e65b8a9a405ff6d3986c9be0f39d5c9cd1e4dd0be90daa99cff2a0c725691edec887c3ab091df220f129f92544ef225b001889a4937657638edf24a2e764591ae5743cb043204bebe2b442a66a85b694924e5ff53f99b17e17350248267cdea3cdfd49989ce78fb734ab6094af54a98c13ed523f29afc0270c1c416d70f3cdfbb8bdc971db03b735263e67f6fb978f939c65067328e7bf9e5dc5bccac7f5b38527436e00dd1b53e4b880efe8eff092257934", "9af36632548855adf1639de36c277b0a8d27e4b9262ac4d8f0110743ba67574b8090f389f013563b7300f4c6bcfed1c3ebfb718850f49ea86cc1846bf29f26a5fbb242266164e095473752eaf68535bdb300cbffdb72e4b7e55a8fd43ef666e77b2bce11fb1ef4dcce275ed1d2df9c99779ad0753e84b51b825e9961c475bee72f12167ad1b7985b5c56b0bdff5862b18e6474703098c109f5053ed9324553b0ef341de0e30d48ec33b79ec7d042626281d9a8fe0206a7179c83386a8b8e6177e237f91fe71b5249a97ee11d1dec61a18646094208496eb548d7e2063d8680efbd5186ab389fab74e94347743c45b08a3f2446d8523b5dec250bee11d4474ce7627dfa77c88c75930164fe3705f286a6fa890ecf1beef78180414f90bc3ae72867f31ceb90c2b1818e0120af4107cb088fa46b54ef94e471813217195fec976bb89bdb5f37bab4aaab486e51bea3c4151dab388bc345e40bdab24a67e7dd498c5c7cd89eef4fa9722e1ffdfe70d53b9695e990f6f75af54868b7b4d456e32ba6bd2f250fd8a8f780f47516cfa89123ce7b1a4b42a40c34d4845474774bce8b3df3e43bcacbe6b7e3deddec9964cd86b3a7c3cc897bc400e549cf8882a4db2b6f0c1ba99b9eca2c11357b4cc02d36977e69032923190d5f426b047ffaa7c180d8f8e9d5e866ab31d20e63bd5743edc9a03ba9343beede0a302a7ed596d33185493bbe3c7cda9b62d9cbc9d8ec5a6de3337719b1a5d85d3bca3c8d78eb8a441b366622962a10895eeb4e7cfa0d5a2e16eae09c1a5a5386be4811219e86b5b52fb3c72e023111b95cda2507595a885fcab3bf9d535b4e1faaa43cd1c1a33320c05f0884dd8c1418f3d56e7896b78e62e7d6b44035fec9b3289a833562b766c821bb26897381094d9569485c7d70d327a616a12fb776037750644279e0096fce361e81be41aca684a27c0cd73f6bfd808c3f3dbfe3163cb09d9d3d6eb12b8fcbb402de76d5c8a870a1cf0da8a15b614174a20add91e71f54e5af6fcfdc1035ec1ec790807dfadab168bc981bc27e5309720e3d6d5a058027b427d84c3def9d969eb9d55989174836cb3de8c946a5d836930723e4bc3e8382b2fe5d0433637bbbe5c66a703899c02aa6e5491eab95d8ece6a27c6f649f747f3fa6c331823793da1ed43b664852fafefba88c5996dacc65406fd70e06556c6ea681e514182ea2d4472c31b9151ce7c4b2ab093a08c695b9c6bbe91753f97a0c9a7317be0853f1758b4ecad12bc5c17b35b79ba4e5a4be31d0b06092de6216eebf179b5f76dc5d6a935eb27c8eef31b821fcacb1ca9eac33e454cab94a04f28a907c2e573e2648460de8bb155dd366e622cbbd3a6d2100cb624aeb6e6ccc229eb80987c17cf73e8de732d12fec698f17d4da24869f85a159ba9ae1dcc221070f86ed100d930d4dde4766f2783825eb380a9304c4e6a2bc2449467da2e305dc491b150c704beb8104a5a022cc7f5b08af93e879a9c4619a133a4eca949451a71f6c12eac818535758c5df8b5158ca4aa6524d0a8088c6255d7a5a7d6fa13631042f252661ef6a0c51af7c2d138be1f0ce48714abd00729c8608be45e25eed79238eef398126930bb1ef2ddd7f426483d9f8e9f011cb638108606bebe42c7f4c7fc346d93a2a9b5aeee598df63c3ef1c72c8e51ef5bafe3c271e53fc05d8dd0fdb5d5ecd6d54febf6d92edd8a7465e1de560fef4c50ecd89301dc228f01426878e80a60120f2d3e9228788d35ff0761ab807016605324f1fe4a4896189a6f0e0e07b1753058f0e54d7773b59228868a6a98b92c45078908ed91e8525d68e75d689d54802b6ef756d712628bc526b8c757e1829bdaecbad2cf6a6b07db3b49fafee5e03b856b9fa4db9dacace478e6e030fdb042eac476b5cc967024de557d9f1fecd2a9a4770265dc3164fb40787e96dfc4217ef6c07c8a09f58d361ea520e63a3cca6757e217c2e814c732f7d7c1f182008d70de516ff80f2536c9d411fb7e4c27fbb1a72485f3da0dc9bd23336267d472750a06f14f6019b5dbca6e5b82f5dc2f4adf936235cd384534f0d1122bfa1c2876698d634eab786287b042ca1c06bb75877bdfd180043157fe89454b6d6a2bc461b4be6c4b005bad2e71bb1c10764dacfa361dce190bab3435606ef78d7a902dd28c81ea43c41382c41f5a4267af33626bae90376c1d79cc2d99b83a9f45bf95492836fd8f040cfbb1297291f8d2a2e879fea3aa50a3b142878e06a1d44b684c8838958db5b530854bba79069967d89fcec11c2ba954aa4305a7a850b4311fb92d2ef80e92d4aa60993f2970d643288124f883b5788cc463f7ba0e0455bbef78c454f3ae0bb8f68cf1707c3cf233f8433f3a026386d5845d2dfbef50c6a5d36108a3ca3396ebcb8fa5a0b736a672bac6c4eb18fda2148b1178bd032c6a8fea6343e6af9a9bfe2dc4299326cff9ce32fb1c1e7bf6a409ba7b306fb4690249963a0488989609a08a3816accc0d3025666031f5675821f9eea52b14bdea0dd792dbfee981cdb1eb7d9063f5cdecd87b20660ab951d1c63aad42504e93b03436054341b7ff7d000f1f55feacab0aa3183db9f56b27543c112c7588e7187a039463130eea51c8ac4eedf9e8a01865afe24329b1c8919662f33cb44adde2ff90f40091bc13d8a52496f6829563008fae2cce6449489dff6579e71cfc6e65d2383e24bb1d0fd54e8847e72f6bd2f5580f4491dfa449b09352e7569339e5e9632d2331a89629fe8919537bf481fc515cffd682b61aad1acc99631d208ae62935dd7646dc45cbab9577ac0a184787522412a4ccb4caabd8b75d7402f4f7217ae8b17bdeb07bfa6febeea32ee1351471afe75e7191ebabbd2e89e3ae43f539d03e751497eb6a38f6b6c83bbfca7f997030efea06edab824bb78aea30b2813517f9e6e493a6df982c907d4ead2502a308afc6efbb9ccf21998f7131570ddf33f81864cedc9f7ea3d7726487ce5af733f338e051416d492ca87ac45773236a4797a5d0300015a643a2d56a8675f0c3a5205aaed4566c304c4b44b2ae53141c5dadafd56db2179c70361cf3727598466ef05eb4eb26aeb9c0aa25e2499a7ebd6274d99367912a1849d77658936c925da2fc72caf5b30079b245a7ddc3a6719c2a5d059e0f9fbfe502bbbda143d3b66fa466ff7905f77bc4c97124124c1001d2559ba7dff21d8109ce49d47054010465735e6d2ca9cf1dfa7e5df6c163005ced24754855babf7a35a5ef540a456353f4ac7076a12feb6cc6733698cb434d287772b5dac0da5d4ac45b2ce7a5b8ae5a45b80501b819dfbfb55b8ec0aa37b9dd94c71c1af96d19b02557b7a3200b796daa9b31383dcb2f1e84d60bf97c433ce97fa52e0110832d3046daea5a5641e7e7293824602100a61adef825791007d8d63f57555490a417a8243fc94b43c1f451c0c75840b80327b772c3c4623e2ff7fe7f5ed8f3f3180e25890b994674c043731ed5d824bbd69152e2a9e03a698547b77040a29d66cb977f1442577a3ed4463be4acba0b325c73d8f872f211278850c014c576af2d9db1147b9a08097c097b7be4d7ad9afc71d1c1daca61acbbc6e73aea5ed67b905e525537e907775a3d6782493e81651ed870ca27507288b72775ee4a1dd24dfcf80c21287218be44c55b94bfd9a6c88f8d8f17e6ad128a6bb8ada57bb0a0b67d86da4bba25377d73d928fef21676f3697b0f056bd2863186de5f6ea78ac9a64cc5a699578b9cc4252c1dac72ffe61deb1760d8c2928275448704791c31221b54c4a775a2fb9892b7cd3cdb7948072c344c30d6c9bdbf4a8caadfc385b8dfbd1f94a2966b4a3628f9fc8aef327287c9553475575221765dade7f3adbab68bb864cbfc3796958f5ab0ef860b5c909b4171bd37c7cb5f971a1891e86289824c9f68e46410593e8ff5839d10972f15242b8a443c7ad515bfea43068828ee59a131029dabea1ba240ba30285944ede6c1a171435edc178d80e53af0bef3bc96441f64be9855ccd30e13cc8adde582b11d4b43e463c0ea99962afa54d72dfa5b8186ca9d1e98e6307182de6cbd1318da2dcd503ca4c4ca081bf8e084260613675eccae28e544bb5b368086ea22440b18017ad638326d0c9e1458177254852f38cab6e838523523ef7a382df2e15a211132ea2524845cd131bc32da61aac1929562f0895e0c563e7150df55f6188a6eb6f10d784eb3377c6733a27c26d60a946073a85c7274cc223c8bdcaf85cf1ce5ef26acb91ad6cb3fcc1eaf5289c5c562b1e52be589555bf784aadaec0ce3a929e1d2f4a280abe6d41da0be257b9b9ff6081917438879c5766e6c24ba8679970ec68e6d1793e08e840bdcaa4f87dfc9858074387d08c2732e7f07cfb9713c93a06691766be89780c8cee4359c2d5af2aaf9503ae90508ef5af2a3023465d0bbf597f68e089c6ee95347dd2d59c5a79761ff55be2bb291dcbdc18f663648166f34a4cc6da51ef30c952dd3eda7fcd87c61ed55fe72d2596aef254c692d6317146ec6014a34675048d23679d5e0db986d1ad1d7a070ff703e8208af301bf3609cd81988dc7b88637838b4b2d7bda554b015386d4dd32ed80ab3093b68de89c358fa8a7e6ebfcd4b375ea4b1c063a40eeb4e07fa7b71609089b6c86ec66c9f654f0d69de297826602f09b6df2775bbd06962099ee299452707210a469aaab06ade128dd16e5bb8dfcbf6fccc0a1cae34344d8a7ee33913cb872413569d99c5932c6a20d1e5f5a4d08dc2b589105191e3b615ed060a6adff8e0bf58b477c2bcc47a07df24ea8f257fedf51aece618bc9ecf15a6d8f91ba4768a8b94021d55a30a957e3390d7018a8eb96a4ea6ba56e54bc30588b4312c3d74cfdfa341907885d25b2d7f38a9e2e6a34404754046cdf491016fe05cdbe742f0467953c948429dfeb14738af37ed15c43a369e018fb431f983f436d636f550cd1ec36f4539c1efe96fc826b34376159be498d76142eb231ee291c53166a711f27f26c8dcefb354fe300c70e22faff5cd61bb730b3938076107d4606a6787747cae906a86251d8e463f20531717214c7ca37e64bcc2c180bb0f3e86262de0c074f20872c97b9febbb1a237437280e1feefb4332b2a9276f8af5ee5f4cb77f5b00d8126d80652d454b0d97f8e1a89b06b6dd0e5016e9f36e5cca8210e6687308eaf65c614f977c92539d859403f09d0c330a86684e4195257c9015f27c1defc3fdad28620e503b8388ec39a70f2029b3be4d8ec3d8edbdc3788d548dba11befbc60e46a78784bcaea096a9567e5568563c538e5671131dea3560a09cf6caea8ee2720bc60437d7ca913e28b0947b55e86d624c974cfd369a5c4b4d2e253625df707b09e5308eb5f2378db89"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000050e40)={0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r3, r9}, {}, {0x0, r14}, {}, {0x0, r15}], 0x7, "32f10244f7a6ab"})

19:54:27 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x4000, 0x0, 0x0}, 0x58)

19:54:27 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0xec0, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  283.143302][T20868] debugfs: Directory 'sg0' with parent 'block' already present!
[  283.160964][T20868] blktrace: debugfs_dir not present for sg0 so skipping
19:54:27 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x33fe0, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:27 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x4100, 0x0, 0x0}, 0x58)

[  283.197663][    C0] sd 0:0:1:0: tag#7817 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  283.207511][    C0] sd 0:0:1:0: tag#7817 CDB: opcode=0xe5 (vendor)
[  283.213880][    C0] sd 0:0:1:0: tag#7817 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  283.222924][    C0] sd 0:0:1:0: tag#7817 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  283.231964][    C0] sd 0:0:1:0: tag#7817 CDB[20]: ba
[  283.246397][    C1] sd 0:0:1:0: tag#7818 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  283.256400][    C1] sd 0:0:1:0: tag#7818 CDB: opcode=0xe5 (vendor)
[  283.262742][    C1] sd 0:0:1:0: tag#7818 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  283.271779][    C1] sd 0:0:1:0: tag#7818 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  283.280927][    C1] sd 0:0:1:0: tag#7818 CDB[20]: ba
[  283.287407][T20868] debugfs: Directory 'sg0' with parent 'block' already present!
19:54:28 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x2000019c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  283.291642][    C0] sd 0:0:1:0: tag#7819 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  283.304856][    C0] sd 0:0:1:0: tag#7819 CDB: opcode=0xe5 (vendor)
[  283.311207][    C0] sd 0:0:1:0: tag#7819 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  283.311361][T20868] blktrace: debugfs_dir not present for sg0 so skipping
[  283.320240][    C0] sd 0:0:1:0: tag#7819 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  283.336194][    C0] sd 0:0:1:0: tag#7819 CDB[20]: ba
19:54:28 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x7000, 0x0, 0x0}, 0x58)

19:54:28 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})
r1 = dup3(r0, r0, 0x80000)
ioctl$BLKTRACESTART(r1, 0x1274, 0x0)

19:54:28 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x7ffff000, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  283.404505][    C1] sd 0:0:1:0: tag#7820 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  283.414344][    C1] sd 0:0:1:0: tag#7820 CDB: opcode=0xe5 (vendor)
[  283.420691][    C1] sd 0:0:1:0: tag#7820 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  283.429741][    C1] sd 0:0:1:0: tag#7820 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  283.438772][    C1] sd 0:0:1:0: tag#7820 CDB[20]: ba
19:54:28 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x20200, 0x0, 0x0}, 0x58)

19:54:28 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0xfffffdef, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  283.460927][T20896] debugfs: Directory 'sg0' with parent 'block' already present!
[  283.468562][T20896] blktrace: debugfs_dir not present for sg0 so skipping
[  283.490047][T20896] debugfs: Directory 'sg0' with parent 'block' already present!
[  283.497706][T20896] blktrace: debugfs_dir not present for sg0 so skipping
19:54:28 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
r1 = clone3(&(0x7f0000007500)={0x30000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pidfd_open(r1, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x1fe, 0x6, 0xc4, 0xfffffffffffffffd, r1})

19:54:28 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x3ffff, 0x0, 0x0}, 0x58)

19:54:28 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x302, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:28 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x40000, 0x0, 0x0}, 0x58)

[  283.578614][T20910] debugfs: Directory 'sg0' with parent 'block' already present!
[  283.599687][T20910] blktrace: debugfs_dir not present for sg0 so skipping
19:54:28 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x3, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

19:54:28 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x303, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:28 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x80000, 0x0, 0x0}, 0x58)

19:54:28 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
r2 = clone3(&(0x7f0000007500)={0x30000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
pidfd_open(r2, 0x0)
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000000)={'\x00', 0x8, 0x7ff, 0x5, 0x1f, 0x6c, r2})

19:54:28 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x304, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:28 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x20981d, 0x0, 0x0}, 0x58)

[  283.779485][T20934] debugfs: Directory 'sg0' with parent 'block' already present!
[  283.809256][T20934] blktrace: debugfs_dir not present for sg0 so skipping
19:54:28 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x400000, 0x0, 0x0}, 0x58)

19:54:28 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x305, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  283.831793][T20934] debugfs: Directory 'sg0' with parent 'block' already present!
[  283.839428][T20934] blktrace: debugfs_dir not present for sg0 so skipping
19:54:28 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x100000000, 0x2)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000000)={'\x00', 0x0, 0x800, 0x4, 0x0, 0x0, 0xffffffffffffffff})

19:54:28 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x306, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:28 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x700000, 0x0, 0x0}, 0x58)

19:54:28 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000000000), 0xea13, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0xfffd, 0x800, 0x3, 0x0, 0x0, 0xffffffffffffffff})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r1, 0xc020660b, 0x0)
write$binfmt_misc(r1, &(0x7f0000000040)={'syz1', "44b16421ceee5e74025657e7db938b6a6b1ad68b4e9d61b5c314ebc9c5e63f64195a40d2962a63be7ee7f93d18cce684116110839ad519fce88ccaf513adbfff91d6759d4c13837a8f5cddb027e8fcbd378b655142fa1ab987a2f21b3732073a374e9642a423e1901662ad8d03195b73166df7072adbe5c2a465ebbe230a7123f8851e8f75e9ba6b987157c5222f23c6c1bc70acc5614f91f64a70a0787f069aea87cab76517f240d6f6b5f74afad4e030f5da80"}, 0xb8)

19:54:28 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0xf01a01, 0x0, 0x0}, 0x58)

19:54:28 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x307, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:28 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})
ioctl$SG_IO(r0, 0x2285, &(0x7f0000000240)={0x53, 0xfffffffffffffffe, 0x0, 0x1, @buffer={0x0, 0x83, &(0x7f0000000000)=""/131}, &(0x7f00000000c0), &(0x7f0000000180)=""/109, 0x12, 0x2, 0x2, &(0x7f0000000200)})
ioctl$SG_SET_TIMEOUT(r0, 0x2201, &(0x7f00000000c0)=0x4)

19:54:28 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x1000000, 0x0, 0x0}, 0x58)

19:54:28 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x308, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:28 executing program 3:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
perf_event_open(&(0x7f0000000000)={0x4, 0x80, 0x8, 0x0, 0x2, 0x7, 0x0, 0x1f, 0xc4a00, 0x4, 0x1, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x1, 0x3, 0x1, 0x1, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x89075ac, 0x2, @perf_config_ext={0xe53, 0xfffffffffffffff8}, 0x802, 0x3, 0xffffffff, 0x3, 0x5a3e, 0x6, 0x9, 0x0, 0x8}, 0xffffffffffffffff, 0xd, 0xffffffffffffffff, 0x2)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

[  284.099611][T20977] debugfs: Directory 'sg0' with parent 'block' already present!
[  284.110958][T20977] blktrace: debugfs_dir not present for sg0 so skipping
[  284.118334][T20977] debugfs: Directory 'sg0' with parent 'block' already present!
[  284.127998][T20977] blktrace: debugfs_dir not present for sg0 so skipping
19:54:28 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x11af000, 0x0, 0x0}, 0x58)

19:54:28 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x30a, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  284.196289][T20989] debugfs: Directory 'sg0' with parent 'block' already present!
[  284.214475][T20989] blktrace: debugfs_dir not present for sg0 so skipping
19:54:29 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x30b, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:29 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x2000000, 0x0, 0x0}, 0x58)

[  284.239595][T20993] debugfs: Directory 'sg0' with parent 'block' already present!
[  284.259636][T20993] blktrace: debugfs_dir not present for sg0 so skipping
19:54:29 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x325, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:29 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x11000000, 0x0, 0x0}, 0x58)

19:54:29 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x1d982000, 0x0, 0x0}, 0x58)

19:54:29 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x367, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:29 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:29 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x1f000000, 0x0, 0x0}, 0x58)

19:54:29 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x2, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:29 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x20000000, 0x0, 0x0}, 0x58)

19:54:29 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x3, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:29 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x3f000000, 0x0, 0x0}, 0x58)

19:54:29 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x4, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:29 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x40000000, 0x0, 0x0}, 0x58)

19:54:29 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x5, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:29 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x41000000, 0x0, 0x0}, 0x58)

19:54:29 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x6, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:29 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0xf0ffffff, 0x0, 0x0}, 0x58)

19:54:29 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x7, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:29 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0xf5ffffff, 0x0, 0x0}, 0x58)

19:54:29 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x8, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:29 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0xfbffffff, 0x0, 0x0}, 0x58)

19:54:29 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x9, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:30 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0xfeffffff, 0x0, 0x0}, 0x58)

19:54:30 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0xa, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:30 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0xffff0300, 0x0, 0x0}, 0x58)

19:54:30 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0xb, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:30 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0xfffffff0, 0x0, 0x0}, 0x58)

19:54:30 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0xc, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:30 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0xfffffff5, 0x0, 0x0}, 0x58)

19:54:30 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0xd, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:30 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0xfffffffb, 0x0, 0x0}, 0x58)

19:54:30 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0xe, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  285.740661][T21126] validate_nla: 73 callbacks suppressed
[  285.740673][T21126] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
19:54:30 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0xfffffffe, 0x0, 0x0}, 0x58)

[  285.784251][T21126] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
19:54:30 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x10, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:30 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x1b1271f000, 0x0, 0x0}, 0x58)

19:54:30 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x11, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:30 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x400000000000, 0x0, 0x0}, 0x58)

[  285.880674][T21136] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  285.901301][T21136] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
19:54:30 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x7fd2178cd000, 0x0, 0x0}, 0x58)

19:54:30 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x12, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  285.967034][T21145] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  285.986425][T21145] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  286.058202][T21154] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
19:54:30 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x2020000000000, 0x0, 0x0}, 0x58)

19:54:30 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x25, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  286.099342][T21154] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
19:54:30 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x4000000000000, 0x0, 0x0}, 0x58)

[  286.172724][T21165] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
[  286.196877][T21165] netlink: 'syz-executor.1': attribute type 16 has an invalid length.
19:54:30 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x8000000000000, 0x0, 0x0}, 0x58)

19:54:30 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x48, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  286.289552][    C0] ==================================================================
[  286.297727][    C0] BUG: KCSAN: data-race in acct_account_cputime / mmap_region
[  286.305186][    C0] 
[  286.307503][    C0] write to 0xffff8881394a7b80 of 8 bytes by task 21173 on cpu 1:
[  286.315214][    C0]  mmap_region+0x6f7/0x1400
[  286.319719][    C0]  do_mmap+0x781/0xc20
[  286.323789][    C0]  vm_mmap_pgoff+0xf9/0x1d0
[  286.328290][    C0]  ksys_mmap_pgoff+0x2a8/0x380
[  286.333052][    C0]  do_syscall_64+0x3d/0x90
[  286.337471][    C0]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  286.343361][    C0] 
[  286.345674][    C0] read to 0xffff8881394a7b80 of 8 bytes by interrupt on cpu 0:
[  286.353210][    C0]  acct_account_cputime+0x15a/0x1a0
[  286.358415][    C0]  update_process_times+0x5c/0x150
[  286.363615][    C0]  tick_sched_timer+0x191/0x210
[  286.368463][    C0]  __run_hrtimer+0x160/0x480
[  286.373051][    C0]  hrtimer_interrupt+0x380/0xaf0
[  286.377988][    C0]  __sysvec_apic_timer_interrupt+0x6f/0x1c0
[  286.383887][    C0]  sysvec_apic_timer_interrupt+0x64/0x80
[  286.389522][    C0]  asm_sysvec_apic_timer_interrupt+0x12/0x20
[  286.395608][    C0]  kcsan_setup_watchpoint+0x8b/0x3e0
[  286.400888][    C0]  rwsem_spin_on_owner+0xd6/0x160
[  286.405928][    C0]  __down_write_common+0x5c3/0x810
[  286.411039][    C0]  down_write_killable+0x16/0x30
[  286.416015][    C0]  do_mprotect_pkey+0x139/0x6b0
[  286.420871][    C0]  __x64_sys_mprotect+0x44/0x50
[  286.425726][    C0]  do_syscall_64+0x3d/0x90
[  286.430137][    C0]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  286.436028][    C0] 
[  286.438343][    C0] value changed: 0x0000000000004b32 -> 0x0000000000005332
[  286.445613][    C0] 
[  286.447925][    C0] Reported by Kernel Concurrency Sanitizer on:
[  286.454063][    C0] CPU: 0 PID: 21172 Comm: syz-executor.4 Not tainted 5.14.0-syzkaller #0
[  286.462469][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  286.472517][    C0] ==================================================================
19:54:31 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x20981d00000000, 0x0, 0x0}, 0x58)

19:54:31 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x4c, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:31 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x60, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:31 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x70000000000000, 0x0, 0x0}, 0x58)

19:54:31 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x68, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:31 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0xd08c17d27f0000, 0x0, 0x0}, 0x58)

19:54:31 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x6c, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:31 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0xf01a0100000000, 0x0, 0x0}, 0x58)

19:54:31 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x74, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:31 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0xf071121b000000, 0x0, 0x0}, 0x58)

19:54:31 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x7a, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:31 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x300, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:31 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x100000000000000, 0x0, 0x0}, 0x58)

19:54:31 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x500, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:31 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x200000000000000, 0x0, 0x0}, 0x58)

19:54:31 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x1100000000000000, 0x0, 0x0}, 0x58)

19:54:31 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x600, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:31 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x1f00000000000000, 0x0, 0x0}, 0x58)

19:54:32 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x700, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:32 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x2000000000000000, 0x0, 0x0}, 0x58)

19:54:32 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x900, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:32 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x3f00000000000000, 0x0, 0x0}, 0x58)

19:54:32 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0xa00, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:32 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x4000000000000000, 0x0, 0x0}, 0x58)

19:54:32 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0xb00, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:32 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x4100000000000000, 0x0, 0x0}, 0x58)

19:54:32 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0xc00, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:32 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0xf0ffffff00000000, 0x0, 0x0}, 0x58)

19:54:32 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0xca7, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:32 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0xf5ffffff00000000, 0x0, 0x0}, 0x58)

19:54:32 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0xd00, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:32 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0xfbffffff00000000, 0x0, 0x0}, 0x58)

19:54:32 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0xe00, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:32 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0xfeffffff00000000, 0x0, 0x0}, 0x58)

19:54:32 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0xffff030000000000, 0x0, 0x0}, 0x58)

19:54:32 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0xec0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:32 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0xffffffff00000000, 0x0, 0x0}, 0x58)

19:54:32 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x1100, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:32 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x58)

19:54:32 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x1200, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:33 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x2, 0x101200)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r2, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f0000000440)={<r3=>0x0, ""/256, <r4=>0x0, <r5=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r2, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r5}, {0x0, r5}, {r4}, {r4}, {r4, r5}, {}, {}, {0x0, r5}, {}, {r4, r5}, {0x0, r5}, {}, {r3, r5}, {0x0, r5}, {}, {r4, r5}, {0x0, r5}, {}, {}, {}, {0x0, r5}, {r4}, {0x0, r5}, {0x0, r5}, {r4}, {0x0, r5}, {r3}, {}, {r3}, {0x0, r5}, {}, {}, {r3, r5}, {r4}, {}, {0x0, r5}, {r4, r5}, {0x0, r5}, {r3, r5}, {}, {0x0, r5}, {r4}, {}, {0x0, r5}, {r4}, {0x0, r5}, {r4}, {0x0, r5}, {}, {r3, r5}, {0x0, r5}, {r3}, {}, {r4}, {r3}, {}, {r4, r5}, {}, {0x0, r5}, {0x0, r5}, {0x0, r5}, {0x0, r5}, {r4, r5}, {0x0, r5}, {0x0, r5}, {0x0, r5}, {r4}, {r3, r5}, {}, {r3}, {}, {}, {0x0, r5}, {}, {r4}, {r3}, {}, {}, {}, {0x0, r5}, {r4}, {}, {}, {0x0, r5}, {r3}, {0x0, r5}, {0x0, r5}, {0x0, r5}, {r4, r5}, {}, {}, {0x0, r5}, {}, {r3}, {0x0, r5}, {}, {r4}, {r3, r5}, {0x0, r5}, {r3}, {r4, r5}, {0x0, r5}, {0x0, r5}, {0x0, r5}, {}, {0x0, r5}, {r3}, {r3, r5}, {}, {0x0, r5}, {r3, r5}, {0x0, r5}, {r4, r5}, {r3, r5}, {r4}, {}, {r3, r5}, {r3}, {r4, r5}, {}, {r3}, {r3, r5}, {}, {}, {0x0, r5}, {0x0, r5}, {0x0, r5}, {r4, r5}, {}, {}, {r3, r5}, {0x0, r5}, {r4, r5}, {r3, r5}, {r4, r5}, {0x0, r5}, {}, {r4, r5}, {r4}, {}, {0x0, r5}, {r3}, {0x0, r5}, {r4, r5}, {r3}, {0x0, r5}, {r4, r5}, {0x0, r5}, {0x0, r5}, {}, {0x0, r5}, {r4}, {0x0, r5}, {r4}, {r3}, {}, {}, {}, {0x0, r5}, {r3, r5}, {r4, r5}, {}, {}, {}, {r4}, {0x0, r5}, {}, {}, {r3}, {r3}, {0x0, r5}, {r3, r5}, {r4, r5}, {0x0, r5}, {r3}, {}, {r3}, {0x0, r5}, {r4}, {r3, r5}, {r3, r5}, {0x0, r5}, {0x0, r5}, {}, {}, {0x0, r5}, {r4}, {r3}, {}, {r3}, {r4}, {0x0, r5}, {r4, r5}, {0x0, r5}, {r4, r5}, {0x0, r5}, {}, {r4, r5}, {r3, r5}, {r4}, {r4, r5}, {}, {}, {r3}, {}, {r3}, {r4}, {}, {r3, r5}, {}, {}, {0x0, r5}, {r4}, {0x0, r5}, {r3}, {r4}, {r4}, {}, {}, {r4}, {0x0, r5}, {0x0, r5}, {r3, r5}, {r3}, {}, {0x0, r5}, {}, {}, {r4, r5}, {r3}, {0x0, r5}, {r3}, {r4, r5}, {r3, r5}, {r4, r5}, {r4}, {r3, r5}, {}, {}, {r4}, {r3, r5}, {0x0, r5}, {r3, r5}, {0x0, r5}, {r4}, {r4}, {}, {0x0, r5}, {r4, r5}, {}, {0x0, r5}, {}, {}, {0x0, r5}, {r3, r5}], 0x1, "2156816c73038c"})
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r6, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r7 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r7, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r6, 0x81f8943c, &(0x7f0000000440)={<r8=>0x0, ""/256, <r9=>0x0, <r10=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r7, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r10}, {0x0, r10}, {r9}, {r9}, {r9, r10}, {}, {}, {0x0, r10}, {}, {r9, r10}, {0x0, r10}, {}, {r8, r10}, {0x0, r10}, {}, {r9, r10}, {0x0, r10}, {}, {}, {}, {0x0, r10}, {r9}, {0x0, r10}, {0x0, r10}, {r9}, {0x0, r10}, {r8}, {}, {r8}, {0x0, r10}, {}, {}, {r8, r10}, {r9}, {}, {0x0, r10}, {r9, r10}, {0x0, r10}, {r8, r10}, {}, {0x0, r10}, {r9}, {}, {0x0, r10}, {r9}, {0x0, r10}, {r9}, {0x0, r10}, {}, {r8, r10}, {0x0, r10}, {r8}, {}, {r9}, {r8}, {}, {r9, r10}, {}, {0x0, r10}, {0x0, r10}, {0x0, r10}, {0x0, r10}, {r9, r10}, {0x0, r10}, {0x0, r10}, {0x0, r10}, {r9}, {r8, r10}, {}, {r8}, {}, {}, {0x0, r10}, {}, {r9}, {r8}, {}, {}, {}, {0x0, r10}, {r9}, {}, {}, {0x0, r10}, {r8}, {0x0, r10}, {0x0, r10}, {0x0, r10}, {r9, r10}, {}, {}, {0x0, r10}, {}, {r8}, {0x0, r10}, {}, {r9}, {r8, r10}, {0x0, r10}, {r8}, {r9, r10}, {0x0, r10}, {0x0, r10}, {0x0, r10}, {}, {0x0, r10}, {r8}, {r8, r10}, {}, {0x0, r10}, {r8, r10}, {0x0, r10}, {r9, r10}, {r8, r10}, {r9}, {}, {r8, r10}, {r8}, {r9, r10}, {}, {r8}, {r8, r10}, {}, {}, {0x0, r10}, {0x0, r10}, {0x0, r10}, {r9, r10}, {}, {}, {r8, r10}, {0x0, r10}, {r9, r10}, {r8, r10}, {r9, r10}, {0x0, r10}, {}, {r9, r10}, {r9}, {}, {0x0, r10}, {r8}, {0x0, r10}, {r9, r10}, {r8}, {0x0, r10}, {r9, r10}, {0x0, r10}, {0x0, r10}, {}, {0x0, r10}, {r9}, {0x0, r10}, {r9}, {r8}, {}, {}, {}, {0x0, r10}, {r8, r10}, {r9, r10}, {}, {}, {}, {r9}, {0x0, r10}, {}, {}, {r8}, {r8}, {0x0, r10}, {r8, r10}, {r9, r10}, {0x0, r10}, {r8}, {}, {r8}, {0x0, r10}, {r9}, {r8, r10}, {r8, r10}, {0x0, r10}, {0x0, r10}, {}, {}, {0x0, r10}, {r9}, {r8}, {}, {r8}, {r9}, {0x0, r10}, {r9, r10}, {0x0, r10}, {r9, r10}, {0x0, r10}, {}, {r9, r10}, {r8, r10}, {r9}, {r9, r10}, {}, {}, {r8}, {}, {r8}, {r9}, {}, {r8, r10}, {}, {}, {0x0, r10}, {r9}, {0x0, r10}, {r8}, {r9}, {r9}, {}, {}, {r9}, {0x0, r10}, {0x0, r10}, {r8, r10}, {r8}, {}, {0x0, r10}, {}, {}, {r9, r10}, {r8}, {0x0, r10}, {r8}, {r9, r10}, {r8, r10}, {r9, r10}, {r9}, {r8, r10}, {}, {}, {r9}, {r8, r10}, {0x0, r10}, {r8, r10}, {0x0, r10}, {r9}, {r9}, {}, {0x0, r10}, {r9, r10}, {}, {0x0, r10}, {}, {}, {0x0, r10}, {r8, r10}], 0x1, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000004c0c0)={0x2, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r5}, {}, {r8}], 0x80, "3d138c2d9872f7"})
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x4b5, 0x60c, 0x0, 0x0, 0xffffffffffffffff})
r11 = syz_open_dev$sg(&(0x7f0000000080), 0x6, 0x2000)
ioctl$SG_GET_REQUEST_TABLE(r11, 0x2286, &(0x7f0000000180))
syz_open_dev$sg(&(0x7f0000000040), 0x4, 0x42040)

19:54:33 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x58)

19:54:33 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x2000, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:33 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x227a, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000000440)={<r1=>0x0, ""/256, <r2=>0x0, <r3=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r3}, {0x0, r3}, {r2}, {r2}, {r2, r3}, {}, {}, {0x0, r3}, {}, {r2, r3}, {0x0, r3}, {}, {r1, r3}, {0x0, r3}, {}, {r2, r3}, {0x0, r3}, {}, {}, {}, {<r4=>0x0, r3}, {r2}, {0x0, r3}, {0x0, r3}, {r2}, {0x0, r3}, {r1}, {}, {r1}, {0x0, r3}, {}, {}, {r1, r3}, {r2}, {}, {0x0, r3}, {r2, r3}, {0x0, r3}, {r1, r3}, {}, {0x0, r3}, {r2}, {}, {0x0, r3}, {r2}, {0x0, r3}, {r2}, {0x0, r3}, {}, {r1, r3}, {0x0, r3}, {r1}, {}, {r2}, {r1}, {}, {r2, r3}, {}, {0x0, r3}, {0x0, r3}, {0x0, r3}, {0x0, r3}, {r2, r3}, {0x0, r3}, {0x0, r3}, {0x0, r3}, {r2}, {r1, r3}, {}, {r1}, {}, {}, {0x0, r3}, {}, {r2}, {r1}, {}, {}, {}, {0x0, r3}, {r2}, {}, {}, {0x0, r3}, {r1}, {0x0, r3}, {0x0, r3}, {0x0, r3}, {r2, r3}, {}, {}, {0x0, r3}, {}, {r1}, {0x0, r3}, {}, {r2}, {r1, r3}, {0x0, r3}, {r1}, {r2, r3}, {0x0, r3}, {0x0, r3}, {0x0, r3}, {}, {0x0, r3}, {r1}, {r1, r3}, {}, {0x0, r3}, {r1, r3}, {0x0, r3}, {r2, r3}, {r1, r3}, {r2}, {}, {r1, r3}, {r1}, {r2, r3}, {}, {r1}, {r1, r3}, {}, {}, {0x0, r3}, {0x0, r3}, {0x0, r3}, {r2, r3}, {}, {}, {r1, r3}, {0x0, r3}, {r2, r3}, {r1, r3}, {r2, r3}, {0x0, r3}, {}, {r2, r3}, {r2}, {}, {0x0, r3}, {r1}, {0x0, r3}, {r2, r3}, {r1}, {0x0, r3}, {r2, r3}, {0x0, r3}, {0x0, r3}, {}, {0x0, r3}, {r2}, {0x0, r3}, {r2}, {r1}, {}, {}, {}, {0x0, r3}, {r1, r3}, {r2, r3}, {}, {}, {}, {r2}, {0x0, r3}, {}, {}, {r1}, {r1}, {0x0, r3}, {r1, r3}, {r2, r3}, {0x0, r3}, {r1}, {}, {r1}, {0x0, r3}, {r2}, {r1, r3}, {r1, r3}, {0x0, r3}, {0x0, r3}, {}, {}, {0x0, r3}, {r2}, {r1}, {}, {r1}, {r2}, {0x0, r3}, {r2, r3}, {0x0, r3}, {r2, r3}, {0x0, r3}, {}, {r2, r3}, {r1, r3}, {r2}, {r2, r3}, {}, {}, {r1}, {}, {r1}, {r2}, {}, {r1, r3}, {}, {}, {0x0, r3}, {r2}, {0x0, r3}, {r1}, {r2}, {r2}, {}, {}, {r2}, {0x0, r3}, {0x0, r3}, {r1, r3}, {r1}, {}, {0x0, r3}, {}, {}, {r2, r3}, {r1}, {0x0, r3}, {r1}, {r2, r3}, {r1, r3}, {r2, r3}, {r2}, {r1, r3}, {}, {}, {r2}, {r1, r3}, {0x0, r3}, {r1, r3}, {0x0, r3}, {r2}, {r2}, {}, {0x0, r3}, {r2, r3}, {}, {0x0, r3}, {}, {}, {0x0, r3}, {r1, r3}], 0x1, "2156816c73038c"})
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r5, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r6 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r6, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r5, 0x81f8943c, &(0x7f0000000440)={<r7=>0x0, ""/256, <r8=>0x0, <r9=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r6, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r9}, {0x0, r9}, {r8}, {r8}, {r8, r9}, {}, {}, {0x0, r9}, {}, {r8, r9}, {0x0, r9}, {}, {r7, r9}, {0x0, r9}, {}, {r8, r9}, {0x0, r9}, {}, {}, {}, {0x0, r9}, {r8}, {0x0, r9}, {0x0, r9}, {r8}, {0x0, r9}, {r7}, {}, {r7}, {0x0, r9}, {}, {}, {r7, r9}, {r8}, {}, {0x0, r9}, {r8, r9}, {0x0, r9}, {r7, r9}, {}, {0x0, r9}, {r8}, {}, {0x0, r9}, {r8}, {0x0, r9}, {r8}, {0x0, r9}, {}, {r7, r9}, {0x0, r9}, {r7}, {}, {r8}, {r7}, {}, {r8, r9}, {}, {0x0, r9}, {0x0, r9}, {0x0, r9}, {0x0, r9}, {r8, r9}, {0x0, r9}, {0x0, r9}, {0x0, r9}, {r8}, {r7, r9}, {}, {r7}, {}, {}, {0x0, r9}, {}, {r8}, {r7}, {}, {}, {}, {0x0, r9}, {r8}, {}, {}, {0x0, r9}, {r7}, {0x0, r9}, {0x0, r9}, {0x0, r9}, {r8, r9}, {}, {}, {0x0, r9}, {}, {r7}, {0x0, r9}, {}, {r8}, {r7, r9}, {0x0, r9}, {r7}, {r8, r9}, {0x0, r9}, {0x0, r9}, {0x0, r9}, {}, {0x0, r9}, {r7}, {r7, r9}, {}, {0x0, r9}, {r7, r9}, {0x0, r9}, {r8, r9}, {r7, r9}, {r8}, {}, {r7, r9}, {r7}, {r8, r9}, {}, {r7}, {r7, r9}, {}, {}, {0x0, r9}, {0x0, r9}, {0x0, r9}, {r8, r9}, {}, {}, {r7, r9}, {0x0, r9}, {r8, r9}, {r7, r9}, {r8, r9}, {0x0, r9}, {}, {r8, r9}, {r8}, {}, {0x0, r9}, {r7}, {0x0, r9}, {r8, r9}, {r7}, {0x0, r9}, {r8, r9}, {0x0, r9}, {0x0, r9}, {}, {0x0, r9}, {r8}, {0x0, r9}, {r8}, {r7}, {}, {}, {}, {0x0, r9}, {r7, r9}, {r8, r9}, {}, {}, {}, {r8}, {0x0, r9}, {}, {}, {r7}, {r7}, {0x0, r9}, {r7, r9}, {r8, r9}, {0x0, r9}, {r7}, {}, {r7}, {0x0, r9}, {r8}, {r7, r9}, {r7, r9}, {0x0, r9}, {0x0, r9}, {}, {}, {0x0, r9}, {r8}, {r7}, {}, {r7}, {r8}, {0x0, r9}, {r8, r9}, {0x0, r9}, {r8, r9}, {0x0, r9}, {}, {r8, r9}, {r7, r9}, {r8}, {r8, r9}, {}, {}, {r7}, {}, {r7}, {r8}, {}, {r7, r9}, {}, {}, {0x0, r9}, {r8}, {0x0, r9}, {r7}, {r8}, {r8}, {}, {}, {r8}, {0x0, r9}, {0x0, r9}, {r7, r9}, {r7}, {}, {0x0, r9}, {}, {}, {r8, r9}, {r7}, {0x0, r9}, {r7}, {r8, r9}, {r7, r9}, {r8, r9}, {<r10=>r8}, {r7, r9}, {}, {}, {r8}, {r7, r9}, {0x0, r9}, {r7, r9}, {0x0, r9}, {r8}, {r8}, {}, {0x0, r9}, {r8, r9}, {}, {0x0, r9}, {}, {}, {0x0, r9}, {r7, r9}], 0x1, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000044540)={0x0, ""/256, <r11=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000044740)={0x0, ""/256, 0x0, <r12=>0x0})
r13 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r13, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r14 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r14, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r13, 0x81f8943c, &(0x7f0000000440)={<r15=>0x0, ""/256, <r16=>0x0, <r17=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r14, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r17}, {0x0, r17}, {r16}, {r16}, {r16, r17}, {}, {}, {0x0, r17}, {}, {r16, r17}, {0x0, r17}, {}, {r15}, {0x0, r17}, {}, {r16, r17}, {0x0, r17}, {}, {}, {r4}, {0x0, r17}, {r16}, {0x0, r17}, {0x0, r17}, {r16}, {0x0, r17}, {r15}, {}, {r15}, {0x0, r17}, {}, {}, {r15, r17}, {r16}, {}, {0x0, r17}, {r16, r17}, {0x0, r17}, {r15, r17}, {}, {0x0, r17}, {r16}, {}, {0x0, r17}, {r16}, {0x0, r17}, {r16}, {0x0, r17}, {}, {r15, r17}, {0x0, r17}, {r15}, {}, {r16}, {r15}, {}, {r16, r17}, {}, {0x0, r17}, {0x0, r17}, {0x0, r17}, {0x0, r17}, {r16, r17}, {0x0, r17}, {0x0, r17}, {0x0, r17}, {r16}, {r15, r17}, {}, {r15}, {}, {}, {0x0, r17}, {}, {r16}, {r15}, {}, {}, {}, {0x0, r17}, {r16}, {}, {}, {0x0, r17}, {r15}, {0x0, r17}, {0x0, r17}, {0x0, r17}, {r16, r17}, {}, {}, {0x0, r17}, {}, {r15}, {0x0, r17}, {}, {r16}, {r15, r17}, {0x0, r17}, {r15}, {r16, r17}, {0x0, r17}, {0x0, r17}, {0x0, r17}, {}, {0x0, r17}, {r15}, {r15, r17}, {}, {0x0, r17}, {r15, r17}, {0x0, r17}, {r16, r17}, {r15, r17}, {r16}, {}, {r15, r17}, {r15}, {r16, r17}, {}, {r15}, {r15, r17}, {}, {}, {0x0, r17}, {0x0, r17}, {0x0, r17}, {r16, r17}, {}, {}, {r10, r17}, {0x0, r17}, {r16, r17}, {r15, r17}, {r16, r17}, {0x0, r17}, {}, {r16, r17}, {r16}, {}, {0x0, r17}, {r15}, {0x0, r17}, {r16, r17}, {r15}, {0x0, r17}, {r16, r17}, {0x0, r17}, {0x0, r17}, {}, {0x0, r17}, {r16}, {0x0, r17}, {r16}, {r15}, {}, {}, {}, {0x0, r17}, {r15, r17}, {r16, r17}, {}, {}, {}, {r16}, {0x0, r17}, {}, {}, {r15}, {r15}, {0x0, r17}, {r15, r17}, {r16, r17}, {0x0, r17}, {r15}, {}, {r15}, {0x0, r17}, {r16}, {r15, r17}, {r15, r17}, {0x0, r17}, {0x0, r17}, {}, {}, {0x0, r17}, {r16}, {r15}, {}, {r15}, {r16}, {0x0, r17}, {r16, r17}, {0x0, r17}, {r16, r17}, {0x0, r17}, {}, {r16, r17}, {r15, r17}, {r16}, {r16, r17}, {}, {}, {r15}, {}, {r15}, {r16}, {}, {r15, r17}, {}, {}, {0x0, r17}, {r16}, {0x0, r17}, {r15}, {r16}, {r16}, {}, {}, {r16}, {0x0, r17}, {0x0, r17}, {r15, r17}, {r15}, {}, {0x0, r17}, {}, {}, {r16, r17}, {r15}, {0x0, r17}, {r15}, {r16, r17}, {r15, r17}, {r16, r17}, {r16}, {r15, r17}, {}, {}, {r16}, {r15, r17}, {0x0, r17}, {r15, r17}, {0x0, r17}, {r16}, {r16}, {}, {0x0, r17}, {r16, r17}, {}, {0x0, r17}, {}, {}, {0x0, r17}, {r15, r17}], 0x1, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, &(0x7f0000044940)={0x8, [{}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r18=>0x0}], 0x8, "3aaa9286400629"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000045940)={0x2, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {r2}, {0x0, r9}, {r11}, {}, {0x0, r12}, {}, {}, {0x0, r17}, {0x0, r18}], 0x2, "00ebd980e2e31c"})

[  288.353133][    C1] sd 0:0:1:0: tag#7824 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  288.362987][    C1] sd 0:0:1:0: tag#7824 CDB: opcode=0xe5 (vendor)
[  288.369381][    C1] sd 0:0:1:0: tag#7824 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  288.378443][    C1] sd 0:0:1:0: tag#7824 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  288.387516][    C1] sd 0:0:1:0: tag#7824 CDB[20]: ba
19:54:33 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x58)

19:54:33 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x2500, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  288.404080][    C1] sd 0:0:1:0: tag#7825 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  288.413952][    C1] sd 0:0:1:0: tag#7825 CDB: opcode=0xe5 (vendor)
[  288.420313][    C1] sd 0:0:1:0: tag#7825 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  288.429366][    C1] sd 0:0:1:0: tag#7825 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  288.438491][    C1] sd 0:0:1:0: tag#7825 CDB[20]: ba
19:54:33 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x11}, 0x58)

[  288.447330][T21347] debugfs: Directory 'sg0' with parent 'block' already present!
[  288.461691][T21347] blktrace: debugfs_dir not present for sg0 so skipping
[  288.472370][    C1] sd 0:0:1:0: tag#7826 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  288.482284][    C1] sd 0:0:1:0: tag#7826 CDB: opcode=0xe5 (vendor)
[  288.488615][    C1] sd 0:0:1:0: tag#7826 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  288.497661][    C1] sd 0:0:1:0: tag#7826 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  288.506713][    C1] sd 0:0:1:0: tag#7826 CDB[20]: ba
[  288.513308][    C1] sd 0:0:1:0: tag#7828 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  288.513318][    C0] sd 0:0:1:0: tag#7827 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  288.513338][    C0] sd 0:0:1:0: tag#7827 CDB: opcode=0xe5 (vendor)
[  288.523156][    C1] sd 0:0:1:0: tag#7828 CDB: opcode=0xe5 (vendor)
[  288.532994][    C0] sd 0:0:1:0: tag#7827 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  288.539300][    C1] sd 0:0:1:0: tag#7828 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  288.545605][    C0] sd 0:0:1:0: tag#7827 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  288.554607][    C1] sd 0:0:1:0: tag#7828 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  288.563639][    C0] sd 0:0:1:0: tag#7827 CDB[20]: ba
[  288.572649][    C1] sd 0:0:1:0: tag#7828 CDB[20]: ba
19:54:33 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x4800, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:33 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
r1 = socket(0x10, 0x803, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
dup2(r2, r1)
getsockopt$SO_BINDTODEVICE(r1, 0x6, 0x1b, &(0x7f0000000000), 0x20a154cc)
ioctl$BLKTRACESETUP(r0, 0x227a, 0x0)

[  288.599611][T21364] debugfs: Directory 'sg0' with parent 'block' already present!
[  288.617562][T21364] blktrace: debugfs_dir not present for sg0 so skipping
[  288.639347][    C1] sd 0:0:1:0: tag#7830 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  288.649178][    C1] sd 0:0:1:0: tag#7830 CDB: opcode=0xe5 (vendor)
19:54:33 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x41}, 0x58)

[  288.655517][    C1] sd 0:0:1:0: tag#7830 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  288.664568][    C1] sd 0:0:1:0: tag#7830 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  288.673599][    C1] sd 0:0:1:0: tag#7830 CDB[20]: ba
[  288.678727][    C1] sd 0:0:1:0: tag#7831 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  288.688550][    C1] sd 0:0:1:0: tag#7831 CDB: opcode=0xe5 (vendor)
[  288.694893][    C1] sd 0:0:1:0: tag#7831 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
19:54:33 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0xfffffffffffffffb, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r1, 0xc020660b, 0x0)
vmsplice(r1, &(0x7f0000000080)=[{&(0x7f0000000000)="005ed37257cb5b66de501609ee9b517afb4e95c52ca617c2e70a7718bff69fcf49fc4cab995937e964ee9cf197deef61ac9c2009cadd132bd32f02cb21789f8a4d7d2d54e3b0a0ce87a27bc4c64e8ac0895a340fb6deb7", 0x57}], 0x1, 0xc)
r2 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r2, 0x0)
preadv(r2, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
ioctl$BLKTRACESETUP(r2, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})
r3 = accept4$inet6(r2, &(0x7f00000012c0)={0xa, 0x0, 0x0, @remote}, &(0x7f0000001300)=0x1c, 0x80800)
ioctl$FS_IOC_SETFSLABEL(r3, 0x41009432, &(0x7f0000001340)="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")
preadv(r0, &(0x7f00000000c0)=[{&(0x7f0000000180)=""/141, 0x8d}, {&(0x7f0000000240)=""/4096, 0x1000}, {&(0x7f0000002080)=""/4096, 0x1000}, {&(0x7f0000001240)=""/99, 0x63}], 0x4, 0x190, 0x6)

19:54:33 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x70}, 0x58)

[  288.703918][    C1] sd 0:0:1:0: tag#7831 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  288.712948][    C1] sd 0:0:1:0: tag#7831 CDB[20]: ba
19:54:33 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x4c00, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:33 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x227a, 0x0)
ioctl$BLKTRACETEARDOWN(r0, 0x1276, 0x0)

19:54:33 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r1, 0xc020660b, 0x0)
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r0, 0xc0c89425, &(0x7f0000000000)={"6ee464545a99ba1f8e7c0d677262b114", 0x0, <r2=>0x0, {0x101, 0x1}, {0x2, 0xffffffff}, 0x5, [0x1, 0x8, 0x5e9, 0x4, 0x0, 0x9, 0x4, 0x584, 0x7646, 0x1f, 0x0, 0x200, 0x9ad, 0x1000, 0x2b3, 0x400]})
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r0, 0x50009418, &(0x7f0000000180)={{r1}, r2, 0xa, @unused=[0x9, 0x808c, 0xfffffffffffffffe, 0x2], @name="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"})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r3, 0xc020660b, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r1, 0xd000943d, &(0x7f0000002080)={0x75b89a6, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, <r4=>0x0}], 0x9, "79f8f7b9ad060b"})
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r3, 0xd000943e, &(0x7f0000003080)={r4, 0x0, "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", "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"})
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

[  288.820486][    C0] sd 0:0:1:0: tag#7829 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  288.830350][    C0] sd 0:0:1:0: tag#7829 CDB: opcode=0xe5 (vendor)
[  288.836684][    C0] sd 0:0:1:0: tag#7829 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  288.845731][    C0] sd 0:0:1:0: tag#7829 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  288.854775][    C0] sd 0:0:1:0: tag#7829 CDB[20]: ba
19:54:33 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1100}, 0x58)

19:54:33 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x227a, 0x0)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r1, 0x2285, &(0x7f00000006c0)={0x53, 0xfffffffffffffffb, 0xf9, 0x9, @scatter={0x7, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000040)=""/12, 0xc}, {&(0x7f0000000080)=""/210, 0xd2}, {&(0x7f0000000180)=""/101, 0x65}, {&(0x7f0000000200)=""/163, 0xa3}, {&(0x7f00000002c0)=""/4, 0x4}, {&(0x7f0000000300)=""/191, 0xbf}, {&(0x7f00000003c0)=""/207, 0xcf}]}, &(0x7f0000000540)="de3d7893906ef48b5c4e2536bbf5f09e61502a4543c9f4f279febb1536bc5e1b58564f045c91b0cb66f58df2f65f34a4d5864b8eed6dd5db3d9761436c34bf8a92a1762cc6a21d15502efb427844c133de04849ebb6e2ed2377b01fbe64ef3ec92acae2eb07e3cf30310fa21fb238c67883afed37d34273ffc9707a8b68721724e34b6eae030b05067fb3f74b986e50a1cd2887d7d43122e873c55326e1d94bdded4a58ce1ecab3921aec603262df9233e1883a4b330ff7b6f37415ab7316d331103a17e7b6e473c469ed972bf205f3e256256318b97d03b5067624e3cf919c3999bc84ea0cbd5d188724836a460245e7de9d01502c3d529ad", &(0x7f0000000640)=""/19, 0x9, 0x10008, 0xffffffffffffffff, &(0x7f0000000680)})

19:54:33 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x6000, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  288.869489][T21400] debugfs: Directory 'sg0' with parent 'block' already present!
[  288.896869][T21400] blktrace: debugfs_dir not present for sg0 so skipping
19:54:33 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1f00}, 0x58)

[  288.929405][T21414] debugfs: Directory 'sg0' with parent 'block' already present!
19:54:33 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x6800, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:33 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r1, 0xc020660b, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f00000004c0))
ioctl$BLKTRACESETUP(r0, 0x227a, 0x0)
ioctl$SG_IO(r0, 0x2285, &(0x7f0000000440)={0x0, 0xfffffffffffffffb, 0x12, 0xfc, @scatter={0x6, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000000)=""/1, 0x1}, {&(0x7f0000000040)=""/32, 0x20}, {&(0x7f0000000080)=""/99, 0x63}, {&(0x7f0000000100)=""/181, 0xb5}, {&(0x7f00000001c0)=""/55, 0x37}, {&(0x7f0000000200)=""/157, 0x9d}]}, &(0x7f0000000340)="730411149b3246e55a472d32e73ca20e05a2", &(0x7f0000000380)=""/104, 0x2, 0x10023, 0xffffffffffffffff, &(0x7f0000000400)})

[  288.975618][T21414] blktrace: debugfs_dir not present for sg0 so skipping
19:54:33 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x2000}, 0x58)

19:54:33 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x227a, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
ioctl$BLKTRACESTOP(r1, 0x1275, 0x0)

19:54:33 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r1, 0xc020660b, 0x0)
r2 = socket$unix(0x1, 0x0, 0x0)
sendfile(r1, r2, &(0x7f0000000000)=0x8, 0x0)
perf_event_open(0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0)
r3 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r3, 0x0)
preadv(r3, &(0x7f00000000c0)=[{&(0x7f0000000180)=""/240, 0xf0}, {&(0x7f0000000280)=""/136, 0x88}, {&(0x7f0000000340)=""/224, 0xe0}, {&(0x7f0000000440)=""/69, 0x45}], 0x4, 0xd9f, 0x0)
ioctl$SG_GET_COMMAND_Q(r3, 0x2270, &(0x7f0000000040))
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

19:54:33 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x6c00, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:33 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x3f00}, 0x58)

[  289.117902][T21444] debugfs: Directory 'sg0' with parent 'block' already present!
[  289.141364][T21444] blktrace: debugfs_dir not present for sg0 so skipping
19:54:33 executing program 5:
dup(0xffffffffffffffff)
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x9, 0x2240c0)
ioctl$BLKTRACESETUP(r0, 0x227a, 0x0)

19:54:33 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x7400, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  289.161001][T21449] debugfs: Directory 'sg0' with parent 'block' already present!
[  289.183839][T21449] blktrace: debugfs_dir not present for sg0 so skipping
19:54:33 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x58)

19:54:33 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0xfe, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

19:54:33 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
ioctl$SCSI_IOCTL_DOORLOCK(r1, 0x5380)
ioctl$BLKTRACESETUP(r0, 0x227a, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(0xffffffffffffffff, 0x29, 0x36, &(0x7f0000000000)={0x87, 0x225, '\x00', [@generic={0x1, 0xf6, "d34b97b0603faa5fd0efef24aa8e74941f089f3ee6422b4da303302137db1260eed1bc362fd56d94bbdf27509420c1a2e70449271f4b94e1ad755992a0fe93627c339a3b70699c0a628e226fd501ce5c227c14ebb3765ee782c13c67774ec3047b11ee3e1767df56487fa2b97190abb08fa728fbe2ab09888e9d88bf3fc1a8142a33fcd06ac48df7685ed321ca0e6cc8fd4da136c9f3f24833204cf7275070b0af9061e826190354d38e10ed11162585388256556d5aea2a6bf807fa91eb70f4c5bae883c5d2ef2b2b45484d68471873e06cdef205f5b8894d722f441ccbdc55b1db6383b9d78cba178783c8b059a50c1cc630b2bace"}, @calipso={0x7, 0x20, {0x3, 0x6, 0x9b, 0x3f, [0x3, 0x1, 0x53]}}, @jumbo={0xc2, 0x4, 0x546d}, @padn={0x1, 0x6, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @padn, @generic={0x9, 0x1000, "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"}]}, 0x1138)

19:54:34 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x7a00, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:34 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x4100}, 0x58)

[  289.275668][T21468] debugfs: Directory 'sg0' with parent 'block' already present!
[  289.298431][T21468] blktrace: debugfs_dir not present for sg0 so skipping
19:54:34 executing program 5:
syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
pipe2(&(0x7f0000000000), 0x0)
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x101040, 0x0)
recvmmsg$unix(0xffffffffffffffff, &(0x7f0000006080)=[{{&(0x7f0000000080), 0x6e, &(0x7f0000001200)=[{&(0x7f0000000100)=""/4096, 0x1000}, {&(0x7f0000001100)=""/90, 0x5a}, {&(0x7f0000001180)=""/124, 0x7c}], 0x3, &(0x7f0000001240)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {0x0, <r1=>0x0}}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0x118}}, {{&(0x7f0000001380), 0x6e, &(0x7f00000016c0)=[{&(0x7f0000001400)=""/223, 0xdf}, {&(0x7f0000002080)=""/4096, 0x1000}, {&(0x7f0000001500)=""/164, 0xa4}, {&(0x7f00000015c0)=""/206, 0xce}], 0x4, &(0x7f0000001700)=[@cred={{0x1c}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, <r2=>0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}], 0xe0}}, {{&(0x7f0000001800), 0x6e, &(0x7f0000001a00)=[{&(0x7f0000003080)=""/4096, 0x1000}, {&(0x7f0000001880)=""/109, 0x6d}, {&(0x7f0000001900)=""/26, 0x1a}, {&(0x7f0000001940)=""/184, 0xb8}], 0x4, &(0x7f0000001a40)=[@rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r3=>0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x90}}, {{0x0, 0x0, &(0x7f0000001c80)=[{&(0x7f0000001b00)=""/240, 0xf0}, {&(0x7f0000001c00)=""/85, 0x55}], 0x2, &(0x7f0000001cc0)=[@rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, <r4=>0x0}}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0xa8}}, {{0x0, 0x0, &(0x7f0000001d80)=[{&(0x7f0000004080)=""/4096, 0x1000}], 0x1, &(0x7f0000001dc0)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x30, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0xb8}}, {{&(0x7f0000001e80)=@abs, 0x6e, &(0x7f0000001fc0)=[{&(0x7f0000005080)=""/4096, 0x1000}, {&(0x7f0000001f00)=""/187, 0xbb}], 0x2, &(0x7f0000002000)=[@rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x20}}], 0x6, 0x40000000, &(0x7f0000006200)={0x77359400})
lstat(&(0x7f0000006640)='./file0\x00', &(0x7f0000006680)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
lstat(&(0x7f0000006bc0)='./file0\x00', &(0x7f0000006c00)={0x0, 0x0, 0x0, 0x0, 0x0, <r6=>0x0})
getresgid(&(0x7f0000006c80)=<r7=>0x0, &(0x7f0000006cc0), &(0x7f0000006d00))
fsetxattr$system_posix_acl(r2, &(0x7f0000006340)='system.posix_acl_default\x00', &(0x7f0000006d40)={{}, {0x1, 0x4}, [{0x2, 0x4, r5}, {0x2, 0x1, r4}, {0x2, 0x0, r1}], {0x4, 0x3}, [{0x8, 0x1, r6}, {0x8, 0x1, r7}], {}, {0x20, 0x5}}, 0x4c, 0x1)
preadv2(r3, &(0x7f00000065c0)=[{&(0x7f0000006240)=""/154, 0x9a}, {&(0x7f0000006300)=""/14, 0xe}, {&(0x7f0000006340)}, {&(0x7f0000006380)=""/247, 0xf7}, {&(0x7f0000006480)=""/54, 0x36}, {&(0x7f00000064c0)=""/158, 0x9e}, {&(0x7f0000006580)=""/31, 0x1f}], 0x7, 0x2, 0x4, 0x2)
ioctl$BLKTRACESETUP(r0, 0x227a, 0x0)

[  289.326893][T21477] debugfs: Directory 'sg0' with parent 'block' already present!
19:54:34 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0xa70c, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  289.370371][T21477] blktrace: debugfs_dir not present for sg0 so skipping
19:54:34 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x7000}, 0x58)

19:54:34 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x7ff, 0xd8900)
ioctl$BLKTRACESETUP(r0, 0x227a, 0x0)

19:54:34 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
r1 = perf_event_open(0x0, 0x0, 0x1, 0xffffffffffffffff, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})
preadv(r1, &(0x7f00000000c0)=[{&(0x7f0000000180)=""/4096, 0x1000}, {&(0x7f0000000000)=""/183, 0xb7}], 0x2, 0x2, 0x16)
ioctl$SCSI_IOCTL_STOP_UNIT(r0, 0x6)

19:54:34 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0xc00e, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:34 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x20200}, 0x58)

[  289.482396][T21500] debugfs: Directory 'sg0' with parent 'block' already present!
[  289.510136][T21500] blktrace: debugfs_dir not present for sg0 so skipping
[  289.525034][T21512] debugfs: Directory 'sg0' with parent 'block' already present!
19:54:34 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r0, 0x227a, 0x0)
ioctl$BLKTRACESTOP(r0, 0x1275, 0x0)

[  289.538331][T21512] blktrace: debugfs_dir not present for sg0 so skipping
19:54:34 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x3ffff}, 0x58)

19:54:34 executing program 5:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
r1 = openat(0xffffffffffffffff, &(0x7f0000000080)='/proc/self/exe\x00', 0x62440, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0xf31fa000)
preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
r2 = fcntl$dupfd(r1, 0x406, r0)
ioctl$SG_IO(r2, 0x2285, &(0x7f00000001c0)={0x0, 0xfffffffffffffffd, 0x3, 0x9, @buffer={0x0, 0x2c, &(0x7f0000000040)=""/44}, &(0x7f00000000c0)="7c18ad", &(0x7f0000000100)=""/127, 0x200, 0x10000, 0x3, &(0x7f0000000180)})
r3 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
ioctl$BLKTRACESETUP(r3, 0x227a, 0x0)

19:54:34 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x34000, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:34 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$SG_IO(r0, 0x2285, &(0x7f0000000280)={0x53, 0xfffffffffffffffc, 0x6f, 0x18, @buffer={0x0, 0xb6, &(0x7f0000000000)=""/182}, &(0x7f0000000180)="2d6e707b6f158f896ada43b31b8596c797cde03d9ddd3a53c27e05c1ace303e4da88f022d3b4c9832da97b950a5a80ae5b5133dfc47dc84ef1702caa0750abe8e910b88a88cb456b95bcbcde4850102c1205262e11cf7e363d43e6b52ecedd8bc0c3010beed2b17f205229ccadb46d", &(0x7f0000000200)=""/117, 0x40, 0x1, 0x0, &(0x7f00000000c0)})
r1 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r1, 0x0)
preadv(r1, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
ioctl$SG_IO(r1, 0x2285, &(0x7f00000004c0)={0x53, 0xfffffffffffffffd, 0x77, 0x2, @buffer={0x0, 0x42, &(0x7f0000000300)=""/66}, &(0x7f0000000380)="1e8d82e29e3905c2e11b8712dd890107cd33e629c1f000ce65baa98dcfa1c7e6e636aa8718a966f811b56cfb16fcf92e05abcad95a2ef655ec0d4d6ae4e05124fb8f4850934953b53d74c372d3b1bba46da6593b07bb4d4def7566e28733f1da4f6265f02f7b300c7cd819aef5a7e606354595e8b55cc8", &(0x7f0000000400)=""/79, 0x8785, 0x24, 0xffffffffffffffff, &(0x7f0000000480)})
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x800, 0x60c, 0x0, 0x0, 0xffffffffffffffff})

19:54:34 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x40000}, 0x58)

19:54:34 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x400300, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  289.642061][T21528] debugfs: Directory 'sg0' with parent 'block' already present!
[  289.668222][T21528] blktrace: debugfs_dir not present for sg0 so skipping
19:54:34 executing program 0:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
syz_open_dev$sg(&(0x7f0000000000), 0x2, 0x101200)
r1 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r1, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r2 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r2, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f0000000440)={<r3=>0x0, ""/256, <r4=>0x0, <r5=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r2, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r5}, {0x0, r5}, {r4}, {r4}, {r4, r5}, {}, {}, {0x0, r5}, {}, {r4, r5}, {0x0, r5}, {}, {r3, r5}, {0x0, r5}, {}, {r4, r5}, {0x0, r5}, {}, {}, {}, {0x0, r5}, {r4}, {0x0, r5}, {0x0, r5}, {r4}, {0x0, r5}, {r3}, {}, {r3}, {0x0, r5}, {}, {}, {r3, r5}, {r4}, {}, {0x0, r5}, {r4, r5}, {0x0, r5}, {r3, r5}, {}, {0x0, r5}, {r4}, {}, {0x0, r5}, {r4}, {0x0, r5}, {r4}, {0x0, r5}, {}, {r3, r5}, {0x0, r5}, {r3}, {}, {r4}, {r3}, {}, {r4, r5}, {}, {0x0, r5}, {0x0, r5}, {0x0, r5}, {0x0, r5}, {r4, r5}, {0x0, r5}, {0x0, r5}, {0x0, r5}, {r4}, {r3, r5}, {}, {r3}, {}, {}, {0x0, r5}, {}, {r4}, {r3}, {}, {}, {}, {0x0, r5}, {r4}, {}, {}, {0x0, r5}, {r3}, {0x0, r5}, {0x0, r5}, {0x0, r5}, {r4, r5}, {}, {}, {0x0, r5}, {}, {r3}, {0x0, r5}, {}, {r4}, {r3, r5}, {0x0, r5}, {r3}, {r4, r5}, {0x0, r5}, {0x0, r5}, {0x0, r5}, {}, {0x0, r5}, {r3}, {r3, r5}, {}, {0x0, r5}, {r3, r5}, {0x0, r5}, {r4, r5}, {r3, r5}, {r4}, {}, {r3, r5}, {r3}, {r4, r5}, {}, {r3}, {r3, r5}, {}, {}, {0x0, r5}, {0x0, r5}, {0x0, r5}, {r4, r5}, {}, {}, {r3, r5}, {0x0, r5}, {r4, r5}, {r3, r5}, {r4, r5}, {0x0, r5}, {}, {r4, r5}, {r4}, {}, {0x0, r5}, {r3}, {0x0, r5}, {r4, r5}, {r3}, {0x0, r5}, {r4, r5}, {0x0, r5}, {0x0, r5}, {}, {0x0, r5}, {r4}, {0x0, r5}, {r4}, {r3}, {}, {}, {}, {0x0, r5}, {r3, r5}, {r4, r5}, {}, {}, {}, {r4}, {0x0, r5}, {}, {}, {r3}, {r3}, {0x0, r5}, {r3, r5}, {r4, r5}, {0x0, r5}, {r3}, {}, {r3}, {0x0, r5}, {r4}, {r3, r5}, {r3, r5}, {0x0, r5}, {0x0, r5}, {}, {}, {0x0, r5}, {r4}, {r3}, {}, {r3}, {r4}, {0x0, r5}, {r4, r5}, {0x0, r5}, {r4, r5}, {0x0, r5}, {}, {r4, r5}, {r3, r5}, {r4}, {r4, r5}, {}, {}, {r3}, {}, {r3}, {r4}, {}, {r3, r5}, {}, {}, {0x0, r5}, {r4}, {0x0, r5}, {r3}, {r4}, {r4}, {}, {}, {r4}, {0x0, r5}, {0x0, r5}, {r3, r5}, {r3}, {}, {0x0, r5}, {}, {}, {r4, r5}, {r3}, {0x0, r5}, {r3}, {r4, r5}, {r3, r5}, {r4, r5}, {r4}, {r3, r5}, {}, {}, {r4}, {r3, r5}, {0x0, r5}, {r3, r5}, {0x0, r5}, {r4}, {r4}, {}, {0x0, r5}, {r4, r5}, {}, {0x0, r5}, {}, {}, {0x0, r5}, {r3, r5}], 0x1, "2156816c73038c"})
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r6, 0x2285, &(0x7f0000000380)={0x53, 0x0, 0x21, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000200)="e5f432732f4e096d26e2c735d135121c921bda40b8585ba8d47d34f3904cf12dba", 0x0, 0x0, 0x0, 0x100, 0x0})
r7 = perf_event_open(&(0x7f00000003c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x28000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_config_ext={0x5, 0x8}, 0x0, 0x0, 0x9, 0x7, 0x7fffffff, 0x0, 0x1, 0x0, 0x0, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r7, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r6, 0x81f8943c, &(0x7f0000000440)={<r8=>0x0, ""/256, <r9=>0x0, <r10=>0x0})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r7, 0xd000943d, &(0x7f0000058c40)={0x1, [{0x0, r10}, {0x0, r10}, {r9}, {r9}, {r9, r10}, {}, {}, {0x0, r10}, {}, {r9, r10}, {0x0, r10}, {}, {r8, r10}, {0x0, r10}, {}, {r9, r10}, {0x0, r10}, {}, {}, {}, {0x0, r10}, {r9}, {0x0, r10}, {0x0, r10}, {r9}, {0x0, r10}, {r8}, {}, {r8}, {0x0, r10}, {}, {}, {r8, r10}, {r9}, {}, {0x0, r10}, {r9, r10}, {0x0, r10}, {r8, r10}, {}, {0x0, r10}, {r9}, {}, {0x0, r10}, {r9}, {0x0, r10}, {r9}, {0x0, r10}, {}, {r8, r10}, {0x0, r10}, {r8}, {}, {r9}, {r8}, {}, {r9, r10}, {}, {0x0, r10}, {0x0, r10}, {0x0, r10}, {0x0, r10}, {r9, r10}, {0x0, r10}, {0x0, r10}, {0x0, r10}, {r9}, {r8, r10}, {}, {r8}, {}, {}, {0x0, r10}, {}, {r9}, {r8}, {}, {}, {}, {0x0, r10}, {r9}, {}, {}, {0x0, r10}, {r8}, {0x0, r10}, {0x0, r10}, {0x0, r10}, {r9, r10}, {}, {}, {0x0, r10}, {}, {r8}, {0x0, r10}, {}, {r9}, {r8, r10}, {0x0, r10}, {r8}, {r9, r10}, {0x0, r10}, {0x0, r10}, {0x0, r10}, {}, {0x0, r10}, {r8}, {r8, r10}, {}, {0x0, r10}, {r8, r10}, {0x0, r10}, {r9, r10}, {r8, r10}, {r9}, {}, {r8, r10}, {r8}, {r9, r10}, {}, {r8}, {r8, r10}, {}, {}, {0x0, r10}, {0x0, r10}, {0x0, r10}, {r9, r10}, {}, {}, {r8, r10}, {0x0, r10}, {r9, r10}, {r8, r10}, {r9, r10}, {0x0, r10}, {}, {r9, r10}, {r9}, {}, {0x0, r10}, {r8}, {0x0, r10}, {r9, r10}, {r8}, {0x0, r10}, {r9, r10}, {0x0, r10}, {0x0, r10}, {}, {0x0, r10}, {r9}, {0x0, r10}, {r9}, {r8}, {}, {}, {}, {0x0, r10}, {r8, r10}, {r9, r10}, {}, {}, {}, {r9}, {0x0, r10}, {}, {}, {r8}, {r8}, {0x0, r10}, {r8, r10}, {r9, r10}, {0x0, r10}, {r8}, {}, {r8}, {0x0, r10}, {r9}, {r8, r10}, {r8, r10}, {0x0, r10}, {0x0, r10}, {}, {}, {0x0, r10}, {r9}, {r8}, {}, {r8}, {r9}, {0x0, r10}, {r9, r10}, {0x0, r10}, {r9, r10}, {0x0, r10}, {}, {r9, r10}, {r8, r10}, {r9}, {r9, r10}, {}, {}, {r8}, {}, {r8}, {r9}, {}, {r8, r10}, {}, {}, {0x0, r10}, {r9}, {0x0, r10}, {r8}, {r9}, {r9}, {}, {}, {r9}, {0x0, r10}, {0x0, r10}, {r8, r10}, {r8}, {}, {0x0, r10}, {}, {}, {r9, r10}, {r8}, {0x0, r10}, {r8}, {r9, r10}, {r8, r10}, {r9, r10}, {r9}, {r8, r10}, {}, {}, {r9}, {r8, r10}, {0x0, r10}, {r8, r10}, {0x0, r10}, {r9}, {r9}, {}, {0x0, r10}, {r9, r10}, {}, {0x0, r10}, {}, {}, {0x0, r10}, {r8, r10}], 0x1, "2156816c73038c"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f000004c0c0)={0x2, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, r5}, {}, {r8}], 0x80, "3d138c2d9872f7"})
perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0481273, &(0x7f0000000100)={'\x00', 0x0, 0x4b5, 0x60c, 0x0, 0x0, 0xffffffffffffffff})
r11 = syz_open_dev$sg(&(0x7f0000000080), 0x6, 0x2000)
ioctl$SG_GET_REQUEST_TABLE(r11, 0x2286, &(0x7f0000000180))
syz_open_dev$sg(&(0x7f0000000040), 0x4, 0x42040)

19:54:34 executing program 5:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_SET_PMK(0xffffffffffffffff, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="ac000000", @ANYRES16=r1, @ANYBLOB="100028bd7000fbdbdf257b00000008000300", @ANYRES32=0x0, @ANYBLOB="0c00990054000000090000001400fe003d5febbc458b660c830b3ac0e03b8fc61400fe001f49273c68fc9e91ba3bd4fcd6ccb069140002013c00ce70b4817411c56c5e8171593ebe0a00060008021100000000001400fe0033ad0b0fd5045a848370c19d2872c3cc1400020135247f31868860bc641922946c9380fc140002011685f644472c1aff3c1898d567270758"], 0xac}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BLKTRACESETUP(r2, 0x227a, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFCONF(r3, 0xc020660b, 0x0)
sendmsg$NL80211_CMD_SET_REG(r3, &(0x7f0000000340)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000300)={&(0x7f0000000200)={0x70, r1, 0x200, 0x70bd2b, 0x25dfdbfc, {}, [@NL80211_ATTR_REG_RULES={0x4c, 0x22, 0x0, 0x1, [{0x1c, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x7fffffff}, @NL80211_ATTR_FREQ_RANGE_END={0x8}, @NL80211_ATTR_FREQ_RANGE_START={0x8}]}, {0x2c, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x8}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x8840}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x8000}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8}]}]}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x64}, @NL80211_ATTR_REG_ALPHA2={0x7, 0x21, 'bb\x00'}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000}, 0x4000040)

19:54:34 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x80000}, 0x58)

19:54:34 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x1000000, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  289.764900][    C0] sd 0:0:1:0: tag#7834 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  289.774931][    C0] sd 0:0:1:0: tag#7834 CDB: opcode=0xe5 (vendor)
[  289.781285][    C0] sd 0:0:1:0: tag#7834 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  289.790353][    C0] sd 0:0:1:0: tag#7834 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  289.799667][    C0] sd 0:0:1:0: tag#7834 CDB[20]: ba
19:54:34 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x20981d}, 0x58)

[  289.862127][T21556] debugfs: Directory 'sg0' with parent 'block' already present!
[  289.872136][    C0] sd 0:0:1:0: tag#7835 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s
[  289.881984][    C0] sd 0:0:1:0: tag#7835 CDB: opcode=0xe5 (vendor)
[  289.888308][    C0] sd 0:0:1:0: tag#7835 CDB[00]: e5 f4 32 73 2f 4e 09 6d 26 e2 c7 35 d1 35 12 1c
[  289.897352][    C0] sd 0:0:1:0: tag#7835 CDB[10]: 92 1b da 40 b8 58 5b a8 d4 7d 34 f3 90 4c f1 2d
[  289.906414][    C0] sd 0:0:1:0: tag#7835 CDB[20]: ba
19:54:34 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x2000000, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:34 executing program 0:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x67, r1, 0x301, 0x0, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  289.921419][T21556] blktrace: debugfs_dir not present for sg0 so skipping
19:54:34 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x400000}, 0x58)

19:54:34 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x3000000, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:34 executing program 0 (fault-call:3 fault-nth:0):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

[  290.056520][T21579] FAULT_INJECTION: forcing a failure.
[  290.056520][T21579] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  290.069610][T21579] CPU: 1 PID: 21579 Comm: syz-executor.0 Not tainted 5.14.0-syzkaller #0
[  290.078118][T21579] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  290.088237][T21579] Call Trace:
[  290.091650][T21579]  dump_stack_lvl+0xb7/0x103
[  290.096254][T21579]  dump_stack+0x11/0x1a
[  290.100407][T21579]  should_fail+0x23c/0x250
19:54:34 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x700000}, 0x58)

19:54:34 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x4000000, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

[  290.104895][T21579]  should_fail_usercopy+0x16/0x20
[  290.109916][T21579]  _copy_from_user+0x1c/0xd0
[  290.114511][T21579]  copy_clone_args_from_user+0x133/0x420
[  290.120407][T21579]  ? kstrtouint_from_user+0x104/0x130
[  290.125832][T21579]  ? get_pid_task+0x8b/0xc0
[  290.130340][T21579]  __se_sys_clone3+0x4c/0x1d0
[  290.135011][T21579]  ? vfs_write+0x5e0/0x8c0
[  290.139431][T21579]  ? __fget_light+0x21b/0x260
[  290.144121][T21579]  ? __cond_resched+0x11/0x40
[  290.148815][T21579]  ? fput+0x2d/0x130
[  290.152757][T21579]  ? ksys_write+0x157/0x180
[  290.157259][T21579]  ? fpregs_assert_state_consistent+0x7d/0x90
[  290.163325][T21579]  ? exit_to_user_mode_prepare+0x65/0x190
[  290.169050][T21579]  __x64_sys_clone3+0x2d/0x40
[  290.173788][T21579]  do_syscall_64+0x3d/0x90
[  290.178301][T21579]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  290.184471][T21579] RIP: 0033:0x4665f9
[  290.188357][T21579] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  290.208070][T21579] RSP: 002b:00007f101c7f7188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  290.216482][T21579] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  290.224471][T21579] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  290.232440][T21579] RBP: 00007f101c7f71d0 R08: 0000000000000000 R09: 0000000000000000
[  290.240483][T21579] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  290.248451][T21579] R13: 00007ffd26bfedbf R14: 00007f101c7f7300 R15: 0000000000022000
19:54:35 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0xf01a01}, 0x58)

19:54:35 executing program 1:
read(0xffffffffffffffff, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x2, 0x80, 0xfb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
openat2(0xffffffffffffff9c, 0x0, &(0x7f0000000140), 0x18)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)={0x1c, r1, 0x301, 0x5000000, 0x0, {{}, {@void, @val={0x8, 0x10}, @void}}}, 0x1c}}, 0x0)
sendmsg$NL80211_CMD_LEAVE_IBSS(0xffffffffffffffff, 0x0, 0x0)

19:54:35 executing program 0 (fault-call:3 fault-nth:1):
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

19:54:35 executing program 4:
r0 = openat(0xffffffffffffffff, &(0x7f0000000040)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800003, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x18, 0xd9f, 0x0)
clone3(&(0x7f0000000640)={0x19a1c0000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x1000000}, 0x58)

[  290.382862][T21601] FAULT_INJECTION: forcing a failure.
[  290.382862][T21601] name failslab, interval 1, probability 0, space 0, times 0
[  290.395502][T21601] CPU: 0 PID: 21601 Comm: syz-executor.0 Not tainted 5.14.0-syzkaller #0
[  290.403931][T21601] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  290.414023][T21601] Call Trace:
[  290.417434][T21601]  dump_stack_lvl+0xb7/0x103
[  290.422085][T21601]  dump_stack+0x11/0x1a
[  290.426242][T21601]  should_fail+0x23c/0x250
[  290.430660][T21601]  __should_failslab+0x81/0x90
[  290.435424][T21601]  should_failslab+0x5/0x20
[  290.439930][T21601]  kmem_cache_alloc_node+0x58/0x2b0
[  290.445125][T21601]  ? dup_task_struct+0x63/0x680
[  290.449976][T21601]  dup_task_struct+0x63/0x680
[  290.454658][T21601]  copy_process+0x3ff/0x2f90
[  290.459246][T21601]  ? __alloc_pages+0x194/0x320
[  290.464008][T21601]  ? __mod_memcg_lruvec_state+0xa7/0x190
[  290.469690][T21601]  ? _copy_from_user+0x94/0xd0
[  290.474511][T21601]  ? copy_clone_args_from_user+0x3ab/0x420
[  290.480326][T21601]  kernel_clone+0x14b/0x680
[  290.484830][T21601]  __se_sys_clone3+0x194/0x1d0
[  290.489599][T21601]  ? __cond_resched+0x11/0x40
[  290.494281][T21601]  ? fput+0x2d/0x130
[  290.498225][T21601]  ? ksys_write+0x157/0x180
[  290.502731][T21601]  ? fpregs_assert_state_consistent+0x7d/0x90
[  290.508822][T21601]  ? exit_to_user_mode_prepare+0x65/0x190
[  290.514551][T21601]  __x64_sys_clone3+0x2d/0x40
[  290.519278][T21601]  do_syscall_64+0x3d/0x90
[  290.523696][T21601]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  290.529594][T21601] RIP: 0033:0x4665f9
[  290.533480][T21601] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  290.553135][T21601] RSP: 002b:00007f101c7f7188 EFLAGS: 00000246 ORIG_RAX: 00000000000001b3
[  290.561545][T21601] RAX: ffffffffffffffda RBX: 000000000056bf80 RCX: 00000000004665f9
[  290.569547][T21601] RDX: 0000000000000000 RSI: 0000000000000058 RDI: 0000000020000640
[  290.577513][T21601] RBP: 00007f101c7f71d0 R08: 0000000000000000 R09: 0000000000000000
[  290.585478][T21601] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  290.593448][T21601] R13: 00007ffd26bfedbf R14: 00007f101c7f7300 R15: 0000000000022000
19:54:35 executing program 2:
r0 = syz_open_dev$sg(&(0x7f0000002040), 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(r0, 0xd000943e, &(0x7f0000000180)={<r1=>0x0, <r2=>0x0, "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", "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