0049367, &(0x7f0000000480)=0x400) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = syz_open_dev$ttys(0xc, 0x2, 0x1) ioctl$KDFONTOP_SET(r1, 0x4b72, &(0x7f0000000440)={0x0, 0x1, 0x1d, 0x4, 0x7b, &(0x7f0000000040)="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"}) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000000)={0x0, 0xfb, 0x40}) 23:40:03 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x22c}, 0x0) 23:40:03 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000700000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:03 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x8000000000000000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:03 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x239}, 0x0) 23:40:03 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000800000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:03 executing program 2: r0 = gettid() getpid() prctl$PR_SET_PTRACER(0x59616d61, r0) ptrace$setopts(0x4206, r0, 0x0, 0x200044) fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000000)={0x2, 0x3, 0x0, 0x7, r0}) syz_open_dev$tty1(0xc, 0x4, 0x1) 23:40:03 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x8803000000000000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:03 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000900000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:03 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x243}, 0x0) 23:40:03 executing program 2: ioctl$VIDIOC_ENUMAUDIO(0xffffffffffffffff, 0xc0345641, &(0x7f0000000000)={0x3, "40445fa3f03b1d1326a4fbc7122ec34065cdd4d746cf48eb9fb9bc19e19786cb", 0x3}) syz_open_dev$tty1(0xc, 0x4, 0x1) 23:40:03 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000a00000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:03 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000b00000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:03 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x2ac}, 0x0) 23:40:03 executing program 2: syz_open_dev$tty1(0xc, 0x4, 0x1) r0 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) fchdir(r0) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x0, 0x1}) r1 = syz_open_dev$mouse(&(0x7f0000000000), 0xff, 0x10000) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000080)=0xf8) 23:40:03 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x8cffffff00000000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:03 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000e00000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:03 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x3) dup(r0) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x0, 0x1}) 23:40:03 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x8d03000000000000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:03 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000f00000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:03 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x2b0}, 0x0) 23:40:03 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000000)={0x0, 0x1}) 23:40:03 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000001000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:03 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x2bb}, 0x0) 23:40:03 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x0, 0x1}) r1 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) ioctl$TIOCL_BLANKSCREEN(r1, 0x541c, &(0x7f00000000c0)) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=ANY=[@ANYBLOB="4401000010001307000000000000000000000000000000000000000000000000ff02000000000000000000000000000100"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000000000000000320000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000048000200656362286369706865725f6e756c6c29000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c001c00", @ANYRES32=0x0, @ANYBLOB="000200ae"], 0x144}}, 0x0) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000003500)=ANY=[@ANYBLOB="4401000010001307000000000000000000000000000000000000000000000000ff02000000000000000000000000000100"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0x144}}, 0x0) read$FUSE(r1, &(0x7f0000000380)={0x2020, 0x0, 0x0, 0x0}, 0x2020) sendmsg$nl_xfrm(r3, &(0x7f0000000240)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000200)={&(0x7f00000023c0)=ANY=[@ANYBLOB="341100001900000327bd7000fddbdf25fc0000000000000000040000000000000a0101000000000000000000e0ffffff4d2303804e2300050a00002004000000", @ANYRES32=0x0, @ANYRES32=r4, @ANYBLOB="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"], 0x1134}, 0x1, 0x0, 0x0, 0x4865}, 0x8000) ioctl$BTRFS_IOC_SEND(r2, 0x40489426, &(0x7f0000000100)={{r1}, 0x1, &(0x7f0000000080)=[0x49], 0xffff, 0x4, [0x4, 0x8001, 0x8b2, 0x1ff]}) 23:40:03 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x9403000000000000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:03 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000001100000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:03 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x2d2}, 0x0) 23:40:03 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000004400000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:03 executing program 2: ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, &(0x7f0000000080)={0x1, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0}], 0x0, "387a9675a09050"}) ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000001080)={r0, 0x0, "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", "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"}) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f0000002280)) ioctl$KDSKBENT(r1, 0x4b47, &(0x7f0000000040)={0x0, 0x1}) r2 = dup2(0xffffffffffffffff, r1) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, &(0x7f0000002080)) ioctl$F2FS_IOC_MOVE_RANGE(r2, 0xc020f509, &(0x7f0000000000)={r1, 0x6, 0x7, 0x8001}) 23:40:03 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x9effffff00000000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:03 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000224400000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:03 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x2e7}, 0x0) 23:40:03 executing program 2: r0 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x99) fchdir(r0) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=@getspdinfo={0x14, 0x25, 0x8, 0x70bd2c, 0x25dfdbfb, 0x9, ["", ""]}, 0x14}}, 0x0) sendfile(r0, r1, &(0x7f00000001c0)=0x1, 0x101) ioctl$VIDIOC_QBUF(0xffffffffffffffff, 0xc058560f, &(0x7f0000000080)={0x1, 0x4, 0x4, 0x10000, 0xe1, {0x0, 0x2710}, {0x1, 0x8, 0x8, 0xa7, 0x80, 0x3, "67869092"}, 0x8, 0x2, @offset=0x84e4, 0xe4d, 0x0, r0}) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000380)=ANY=[@ANYBLOB="4401000010001307000000000000000000000000000000000000000000000000ff02000000000000000000000000000100"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0x144}}, 0x0) sendfile(r3, r2, &(0x7f0000000100)=0xfffffffffffffffe, 0x5) r4 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDGETLED(r4, 0x4b31, &(0x7f0000000000)) 23:40:03 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xa000000000000000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:03 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000006000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:04 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x2fd}, 0x0) 23:40:04 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) ioctl$BLKTRACESTART(r1, 0x1274, 0x0) r2 = memfd_secret(0x80000) sendmsg$nl_route(r2, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)=@ipv6_getanyicast={0x14, 0x3e, 0x100, 0x70bd29, 0x25dfdbff, {}, ["", "", "", ""]}, 0x14}}, 0x0) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x0, 0x1}) 23:40:04 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000ffffff9e00000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:04 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x300}, 0x0) 23:40:04 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xa003000000000000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:04 executing program 2: ioctl$FS_IOC_ENABLE_VERITY(0xffffffffffffffff, 0x40806685, &(0x7f00000001c0)={0x1, 0x4, 0x1000, 0x3c, &(0x7f0000000000)="71df8d2c21485f18eeb89ebe19a5d52f6960d2e25bd46b40b7836bd24e9743728eaf9403e42960f6c3ee33188018fb920aaa7c8c453ecb4769381340", 0xbf, 0x0, &(0x7f0000000100)="1c8aa5361a142340e27b5059563be12da3d7af77066210ca93664ff19948e41ab1edc47ca9d71ac5a29f96ead982cbd90b4c4dbe6536fda8e0b945c9bdb7a01c49be19df3a1df4c8ce9a204bd359ab7a6e826e9b146b2042ca8757b6a00e2bb0ec0f09450b4b683a72a7fd7bb5065c8caa9954f614b2dd2f1fcbfef1d37ac6ddae0f5762d0e757dd8262b0d10708b1a6005151a0a45f36eb271c674915d15c8586eb5a012dd963229393e95462d469bbf313424011d86d31dd2aa0835a49cd"}) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_CLIENT(0xffffffffffffffff, 0xc04c5349, &(0x7f0000000080)={0x81, 0x9, 0x7}) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x0, 0x1}) ioctl$vim2m_VIDIOC_QBUF(0xffffffffffffffff, 0xc058560f, &(0x7f0000000280)={0xd308, 0x2, 0x4, 0x1000, 0x9, {0x0, 0x2710}, {0x3, 0x8, 0xff, 0x2, 0x20, 0x1f, "7d8b8ae1"}, 0x9ef8, 0x2, @planes=&(0x7f0000000240)={0x7f, 0x3, @userptr=0x82, 0x150}, 0xee8, 0x0, 0xffffffffffffffff}) ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000300)={0x0, r1, 0x5, 0x101, 0x2000000000, 0xd44a}) 23:40:04 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000fffffff000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:04 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x341}, 0x0) 23:40:04 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x0, 0x1}) 23:40:04 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000f0ffff00000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:04 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xb002000000000000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:04 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x383}, 0x0) 23:40:04 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = syz_open_dev$tty20(0xc, 0x4, 0x0) ioctl$KDGKBDIACR(r1, 0x4b4a, &(0x7f0000000080)=""/219) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x0, 0x1}) r2 = pidfd_getfd(0xffffffffffffffff, r0, 0x0) ioctl$TIOCL_PASTESEL(r2, 0x541c, &(0x7f0000000000)) 23:40:04 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000007fffffff00000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:04 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000009effffff00000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:04 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x388}, 0x0) 23:40:04 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x0, 0x1}) ioctl$FIONREAD(r0, 0x541b, &(0x7f0000000000)) 23:40:04 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xb101000000000000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:04 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000f0ffffff00000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:04 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x3a0}, 0x0) 23:40:04 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000034000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:04 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xbb02000000000000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:04 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TCSETS(r0, 0x5402, &(0x7f00000001c0)={0x7, 0x88, 0x4, 0x47ea, 0x1, "17bb433460fe292bd6918e731c3939d52e1907"}) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x0, 0x1}) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=@newsa={0x144, 0x10, 0x713, 0x0, 0x0, {{@in=@private, @in6=@mcast2}, {@in6=@empty, 0x0, 0x32}, @in6=@empty, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}, @offload={0xc}]}, 0x144}}, 0x0) sendfile(r1, r0, &(0x7f0000000000)=0x7, 0x7) 23:40:04 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000fffffffffffff000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:04 executing program 2: ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(0xffffffffffffffff, 0xc018937a, &(0x7f00000000c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x100000000}}, './file0\x00'}) io_submit(0x0, 0x1, &(0x7f0000000140)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x8, 0x5, 0xffffffffffffffff, &(0x7f0000000040)="d639a887b49b17a37e53597b6399e20d3141acc338b05b38d34e3b540d952537746b5e3f02f733c58534724ac90501d78efc1096d6db71fc11a22608adcb5782caea6b0761", 0x45, 0xfffffffffffffff8, 0x0, 0x3, r0}]) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$FS_IOC_SETVERSION(r1, 0x40087602, &(0x7f0000000180)=0x660) ioctl$KDSKBENT(r1, 0x4b47, &(0x7f0000000000)) 23:40:04 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x3be}, 0x0) 23:40:04 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000001000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:04 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xbe03000000000000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:04 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=@newsa={0x144, 0x10, 0x713, 0x0, 0x0, {{@in=@private, @in6=@mcast2}, {@in6=@empty, 0x0, 0x32}, @in6=@empty, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}, @offload={0xc}]}, 0x144}}, 0x0) read(r1, &(0x7f0000000080)=""/66, 0x42) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x0, 0x1}) 23:40:04 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000002000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3586.725359][ T7159] Bluetooth: hci1: command 0x0419 tx timeout 23:40:04 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x3c0}, 0x0) 23:40:04 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000003000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:04 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xc0ffffffff0f0000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:04 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000004000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:04 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x3ce}, 0x0) 23:40:05 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000005000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:05 executing program 2: ioctl$sock_bt_hidp_HIDPGETCONNLIST(0xffffffffffffffff, 0x800448d2, &(0x7f0000000280)={0x4, &(0x7f0000000000)=[{}, {@fixed}, {}, {@fixed}]}) syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDDELIO(0xffffffffffffffff, 0x4b35, 0xfffffffffffffff9) 23:40:05 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x3f2}, 0x0) 23:40:05 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xce03000000000000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:05 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000006000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:05 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000007000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:05 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x3) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x0, 0x1}) 23:40:05 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x500}, 0x0) 23:40:05 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xe4ffffff00000000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:05 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000008000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:05 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x0, 0x1}) 23:40:05 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) signalfd4(r0, &(0x7f0000000000)={[0xffffffffffffffff]}, 0x8, 0x800) r1 = syz_open_dev$ttys(0xc, 0x2, 0x0) r2 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) fchdir(r2) ioctl$KDSKBENT(r1, 0x4b47, &(0x7f0000000040)={0x3, 0x4d, 0xfffa}) 23:40:05 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xef00000000000000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:05 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000009000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:06 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000000000000a000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3589.023485][ T8453] device hsr_slave_0 left promiscuous mode [ 3589.039926][ T8453] device hsr_slave_1 left promiscuous mode [ 3589.076713][ T8453] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 3589.086446][ T8453] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 3589.098514][ T8453] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 3589.108400][ T8453] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 3589.140742][ T8453] device bridge_slave_1 left promiscuous mode [ 3589.148889][ T8453] bridge0: port 2(bridge_slave_1) entered disabled state [ 3589.161404][ T8453] device bridge_slave_0 left promiscuous mode [ 3589.169808][ T8453] bridge0: port 1(bridge_slave_0) entered disabled state [ 3589.191672][ T8453] device veth1_macvtap left promiscuous mode [ 3589.200004][ T8453] device veth0_macvtap left promiscuous mode [ 3589.208888][ T8453] device veth1_vlan left promiscuous mode [ 3589.216914][ T8453] device veth0_vlan left promiscuous mode [ 3589.560059][ T8453] team0 (unregistering): Port device team_slave_1 removed [ 3589.588489][ T8453] team0 (unregistering): Port device team_slave_0 removed [ 3589.609017][ T8453] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 3589.629599][ T8453] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 3589.734515][ T8453] bond0 (unregistering): Released all slaves [ 3590.781174][T15548] chnl_net:caif_netlink_parms(): no params data found [ 3590.903418][T15548] bridge0: port 1(bridge_slave_0) entered blocking state [ 3590.913441][T15548] bridge0: port 1(bridge_slave_0) entered disabled state [ 3590.923610][T15548] device bridge_slave_0 entered promiscuous mode [ 3590.936699][T15548] bridge0: port 2(bridge_slave_1) entered blocking state [ 3590.948559][T15548] bridge0: port 2(bridge_slave_1) entered disabled state [ 3590.960532][T15548] device bridge_slave_1 entered promiscuous mode [ 3591.023439][T15548] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 3591.042234][T15548] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 3591.114432][T15548] team0: Port device team_slave_0 added [ 3591.128773][T15548] team0: Port device team_slave_1 added [ 3591.190211][T15548] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 3591.213801][T15548] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 3591.249578][T15548] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 3591.273951][T15548] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 3591.282942][T15548] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 3591.317703][T15548] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 3591.408573][T15548] device hsr_slave_0 entered promiscuous mode [ 3591.420708][T15548] device hsr_slave_1 entered promiscuous mode [ 3591.432777][T15548] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 3591.440892][T15548] Cannot create hsr debugfs directory [ 3591.685022][T15548] 8021q: adding VLAN 0 to HW filter on device bond0 [ 3591.708092][ T2384] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 3591.724448][ T2384] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 3591.736123][ T2384] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 3591.754777][T15548] 8021q: adding VLAN 0 to HW filter on device team0 [ 3591.775339][ T336] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 3591.788369][ T336] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 3591.803462][ T336] bridge0: port 1(bridge_slave_0) entered blocking state [ 3591.813656][ T336] bridge0: port 1(bridge_slave_0) entered forwarding state [ 3591.832542][T20280] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 3591.847836][ T7159] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 3591.872682][ T7159] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 3591.882380][ T7159] bridge0: port 2(bridge_slave_1) entered blocking state [ 3591.890384][ T7159] bridge0: port 2(bridge_slave_1) entered forwarding state [ 3591.917415][T18739] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 3591.929894][T18739] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 3591.944447][T18739] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 3591.958921][T18739] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 3591.976254][T31291] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 3591.999740][T18739] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 3592.020631][T20280] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 3592.036917][T15548] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 3592.075369][T31291] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 3592.089822][T31291] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 3592.103182][T15548] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 3592.288444][T18739] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 3592.298861][T18739] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 3592.345531][T31291] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 3592.373296][T31291] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 3592.388773][T31291] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 3592.402515][T31291] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 3592.421473][T15548] device veth0_vlan entered promiscuous mode [ 3592.447521][T15548] device veth1_vlan entered promiscuous mode [ 3592.491149][T18739] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 3592.502918][T18739] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 3592.513691][T18739] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 3592.526109][T18739] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 3592.543712][T15548] device veth0_macvtap entered promiscuous mode [ 3592.561223][T15548] device veth1_macvtap entered promiscuous mode [ 3592.602980][T15548] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 3592.617800][T15548] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 3592.630129][T15548] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 3592.643330][T15548] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 3592.658558][T15548] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 3592.673474][T15548] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 3592.688615][T15548] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 3592.699433][T20280] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 3592.710536][T20280] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 3592.722865][T20280] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 3592.735610][ T7159] Bluetooth: hci1: command 0x0409 tx timeout [ 3592.737306][T20280] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 3592.772961][T15548] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 3592.788380][T15548] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 3592.803263][T15548] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 3592.815912][T15548] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 3592.829069][T15548] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 3592.839058][T16333] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 3592.851451][T16333] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 3592.944203][ T3692] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 3592.956219][ T3692] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 3592.986228][T18739] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 3593.001263][ T8453] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 3593.014241][ T8453] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 3593.032201][T18739] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 23:40:11 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x600}, 0x0) 23:40:11 executing program 2: syz_open_dev$tty1(0xc, 0x4, 0x1) r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000000), 0x4000, 0x0) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x64, 0x1}) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=@newsa={0x144, 0x10, 0x713, 0x0, 0x0, {{@in=@private, @in6=@mcast2}, {@in6=@empty, 0x0, 0x32}, @in6=@empty, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}, @offload={0xc}]}, 0x144}}, 0x0) ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r1, 0xc0c89425, &(0x7f0000000080)={"8177c6a35346746dd1969007440da457", 0x0, 0x0, {0x9}, {0x6}, 0x6, [0x101, 0x0, 0x3, 0x35b, 0x9, 0x100, 0x2, 0x0, 0x7, 0x8001, 0x4, 0x6, 0x3, 0x6, 0x6bdb, 0xffffffff]}) 23:40:11 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xf00cc00000000000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:11 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000000000000b000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:11 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000000000000e000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:11 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x2) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x0, 0x1}) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=@newsa={0x144, 0x10, 0x713, 0x0, 0x0, {{@in=@private, @in6=@mcast2}, {@in6=@empty, 0x0, 0x32}, @in6=@empty, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}, @offload={0xc}]}, 0x144}}, 0x0) ioctl$BTRFS_IOC_DEV_REPLACE(r1, 0xca289435, &(0x7f0000000080)={0x3, 0x8001, @status={[0x8, 0x6f2, 0x6, 0x0, 0x3, 0x6]}, [0x73, 0x4, 0x4, 0x80000001, 0x1, 0x9, 0xe48d, 0x6, 0x1000, 0x3, 0x9, 0x0, 0x400, 0x6, 0x0, 0x0, 0x3, 0x7, 0xfffffffffffff001, 0x1, 0x6, 0x3f, 0xf9, 0x7fff, 0x40, 0x9, 0x6, 0x71, 0x8, 0x95c1, 0x0, 0x0, 0x6, 0x1, 0xb4, 0x3, 0x5, 0xffffffffffffffff, 0x8, 0x7, 0x9, 0xa106, 0x3, 0x3, 0x8001, 0xffff, 0x3, 0x6da9, 0x4, 0x4, 0x388e, 0x20, 0x0, 0x9, 0x4, 0x5, 0x400, 0x6, 0x3ff, 0x8b, 0x6, 0x2, 0x40, 0x3]}) 23:40:11 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000000000000f000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:11 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x700}, 0x0) 23:40:11 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xf0ffff0f0003f0ff}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:11 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x7f, 0x1}) ioctl$TIOCL_PASTESEL(r0, 0x541c, &(0x7f0000000000)) 23:40:11 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x802}, 0x0) 23:40:11 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000010000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:11 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xf0ffffff00000000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:11 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDADDIO(r0, 0x4b34, 0x7f) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000000)={0x1, 0x1, 0x2000}) 23:40:11 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x900}, 0x0) 23:40:11 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000011000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:11 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000000)={0x0, 0x1}) 23:40:11 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000044000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:11 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0xa00}, 0x0) 23:40:11 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000380)=ANY=[@ANYBLOB="44010000608a53677f4eb8230000000000000000000000000000000000000000ff02000000000000000000000000000100"/64, @ANYRES32=0x0, @ANYRES32, @ANYRESDEC, @ANYRES32=0x0, @ANYBLOB="321142be80e148926988745e08d824a71f52bf8f33a480dbddfd2328a68713be60eb4e003901d78caf5c914e4f2a3ed182e38e0b6f1893ac6675ba60103e655f613c12c841a6be566d8fd7bd"], 0x144}}, 0x0) preadv(r1, &(0x7f0000000000)=[{&(0x7f0000000080)=""/215, 0xd7}, {&(0x7f0000000180)=""/67, 0x43}], 0x2, 0x5, 0x19b) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x0, 0x1}) r2 = accept$unix(r0, &(0x7f0000000200)=@abs, &(0x7f0000000280)=0x6e) bind$unix(r2, &(0x7f0000000440)=@abs={0x0, 0x0, 0x4e20}, 0x6e) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=@newsa={0x144, 0x10, 0x713, 0x0, 0x0, {{@in=@private, @in6=@mcast2}, {@in6=@empty, 0x0, 0x32}, @in6=@empty, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}, @offload={0xc}]}, 0x144}}, 0x0) ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0286405, &(0x7f00000005c0)={0x9, 0x3, {0xffffffffffffffff}, {0x0}, 0x8000, 0x3}) sendmsg$nl_xfrm(r3, &(0x7f0000000780)={&(0x7f00000002c0), 0xc, &(0x7f0000000740)={&(0x7f0000000600)=@polexpire={0x104, 0x1b, 0x300, 0x70bd26, 0x4, {{{@in6=@empty, @in6=@private2={0xfc, 0x2, '\x00', 0x1}, 0x4e23, 0x7fff, 0x4e24, 0x7, 0xa, 0x80, 0x80, 0x2c, 0x0, r4}, {0x9, 0x3ff, 0x1, 0x3e0000000, 0x8001, 0xfff, 0x6, 0x8000}, {0x6, 0x0, 0x1, 0x3f}, 0x8001, 0x6e6bb1, 0x2, 0x0, 0x0, 0x2}, 0x13}, [@replay_val={0x10, 0xa, {0x70bd2d, 0x70bd25, 0x52d8}}, @offload={0xc}, @coaddr={0x14, 0xe, @in6=@private1}, @coaddr={0x14, 0xe, @in6=@private2={0xfc, 0x2, '\x00', 0x1}}]}, 0x104}, 0x1, 0x0, 0x0, 0x800}, 0x1085) 23:40:11 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xfd02000000000000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:11 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000002244000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3593.629405][T15617] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=35424 sclass=netlink_xfrm_socket pid=15617 comm=syz-executor.2 [ 3593.660007][T15623] SELinux: unrecognized netlink message: protocol=6 nlmsg_type=35424 sclass=netlink_xfrm_socket pid=15623 comm=syz-executor.2 23:40:11 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0xb00}, 0x0) 23:40:11 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xfd850e0000000000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:11 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000060000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:11 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x2) ioctl$TCSETS2(r0, 0x402c542b, &(0x7f0000000000)={0x1, 0x2, 0x4, 0x51a, 0x8, "bee8caf7d3df50be13b04114b3c715405e5429", 0x200, 0xfffffffe}) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x0, 0x1}) 23:40:11 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000ffffff9e000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:11 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x0, 0x1}) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=ANY=[@ANYBLOB="4401000010001307000000000000000000000000000000000000000000000000ff02000000000000000000000000000100"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000000000000032000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000048000200656362286369706865725f6e756c6c29000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000c001c00", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00'], 0x144}}, 0x0) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/module/spurious', 0x62800, 0x80) r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff) sendmsg$TIPC_CMD_SHOW_LINK_STATS(r2, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x28, r3, 0x300, 0x70bd2d, 0x25dfdbff, {{}, {}, {0xc, 0x14, 'syz1\x00'}}, ["", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x4040880}, 0x4000044) fallocate(r1, 0x3, 0x0, 0x3d) fadvise64(r0, 0x3f, 0x8, 0x2) 23:40:11 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xfe850e0000000000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:11 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0xc1e}, 0x0) [ 3593.874205][T15645] netlink: 84 bytes leftover after parsing attributes in process `syz-executor.2'. [ 3593.901544][T15645] netlink: 84 bytes leftover after parsing attributes in process `syz-executor.2'. 23:40:12 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000fffffff0000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:12 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x0, 0x1}) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000300)=ANY=[@ANYBLOB="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"]) 23:40:12 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000007fffffff000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:12 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xfeffffff00000000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:12 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0xcf8}, 0x0) 23:40:12 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) r2 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) fchdir(r2) openat$cgroup_procs(r2, &(0x7f00000000c0)='cgroup.procs\x00', 0x2, 0x0) fchdir(r1) ioctl$GIO_UNIMAP(r1, 0x4b66, &(0x7f0000000080)={0x2, &(0x7f0000000000)=[{}, {}]}) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x0, 0x1}) 23:40:12 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000f0ffffffffffff000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:12 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xff00000000000000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:12 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x1002}, 0x0) 23:40:12 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000002000000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:12 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000000)={{0x1, 0x1, 0x18, r0, {0xffffffffffffffff}}, './file0\x00'}) ioctl$KDSKBENT(r1, 0x4b47, &(0x7f0000000040)={0x0, 0x4}) ioctl$KDSKBMODE(r1, 0x4b45, &(0x7f0000000080)=0x2) 23:40:12 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000003000000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:12 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = dup2(r0, r0) r2 = accept4(0xffffffffffffffff, &(0x7f0000000080)=@in={0x2, 0x0, @dev}, &(0x7f0000000000)=0x80, 0x100800) setsockopt$inet_tcp_int(r2, 0x6, 0x1, &(0x7f0000000100)=0xfffffffc, 0x4) ioctl$KDSKBENT(r1, 0x4b47, &(0x7f0000000040)={0x3, 0xfd, 0x48}) r3 = dup(r1) mmap$IORING_OFF_CQ_RING(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x2000001, 0x50, r3, 0x8000000) 23:40:12 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000004000000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:12 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xff850e0000000000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:12 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x1201}, 0x0) 23:40:12 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000005000000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:12 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x4) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x0, 0x1}) 23:40:12 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xfff003000ffffff0}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:12 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000006000000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:12 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x1400}, 0x0) 23:40:12 executing program 2: modify_ldt$read(0x0, &(0x7f0000000080)=""/184, 0xb8) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x0, 0x1}) 23:40:12 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xffff000200200200}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:12 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000007000000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:12 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x1800}, 0x0) 23:40:12 executing program 2: openat$ashmem(0xffffffffffffff9c, &(0x7f0000000000), 0x40000, 0x0) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x0, 0x1}) 23:40:12 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000008000000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:12 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDDISABIO(r0, 0x4b37) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x0, 0x1}) 23:40:12 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xffff03fffff00000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:12 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x1e00}, 0x0) 23:40:12 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000009000000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:12 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TCSETS(r0, 0x5402, &(0x7f0000000000)={0x9, 0x0, 0xfffffff9, 0x2, 0x8, "8f00c8d0c940828daeb86f6c380310a0768651"}) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x0, 0x1}) 23:40:12 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000a000000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:12 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x1e0c}, 0x0) [ 3594.805708][T16333] Bluetooth: hci1: command 0x041b tx timeout 23:40:12 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xffff1f0000000000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:12 executing program 2: r0 = creat(&(0x7f0000000140)='./file1\x00', 0x2) accept$alg(r0, 0x0, 0x0) r1 = syz_open_dev$tty1(0xc, 0x4, 0x2) ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f0000000200)=ANY=[@ANYBLOB="010000008100000018000000", @ANYRES32=r1, @ANYBLOB="00000000000000002e2f66696c65300097d7a5639473919efa5129f09274a85f0bad42b4cca6c1b30b635894a9d9b965a5d9f9406d99c95652e89849ed06b0f1bdacff0b30863740e9c8693deacf95bd7b364f326494b9b777fe24432a80fa05f9840244abf9d217a9891a6a76030a9045c2f57a434f3cf6b1905bce4653894e735e84a1b1f5db747752830902d81730f9d9889f7eee8f3c985409a41150fa8bb58e9808d87c14fc9720376cfdba7cc25157207e64a45cfb02"]) ioctl$TIOCL_PASTESEL(r2, 0x541c, &(0x7f0000000100)) syz_kvm_setup_cpu$x86(r0, r0, &(0x7f0000fe6000/0x18000)=nil, &(0x7f00000001c0)=[@text16={0x10, &(0x7f0000000180)="0f01c2c4c3a9cea601002666b80500000066b93e6700000f01c13e0f01c5673e0f01c965360f01cbf30f09b84a000f00d8660f73f656f2a5", 0x38}], 0x1, 0x69, &(0x7f0000000200), 0x0) ioctl$KDSKBENT(0xffffffffffffffff, 0x4b47, &(0x7f0000000080)={0x4, 0x1}) ioctl$PIO_CMAP(r1, 0x4b71, &(0x7f0000000000)={0xc6, 0x10d5c00000000000, 0xff, 0x3f, 0x0, 0xfffffffffffffff8}) r3 = pidfd_getfd(0xffffffffffffffff, r1, 0x0) ioctl$KDGKBTYPE(r3, 0x4b33, &(0x7f0000000040)) 23:40:12 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000b000000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:13 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000e000000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:13 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x1f00}, 0x0) 23:40:13 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x0, 0x1}) r1 = syz_io_uring_complete(0x0) ioctl$TIOCOUTQ(r1, 0x5411, &(0x7f0000000000)) 23:40:13 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xffffc00fcff00000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:13 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000f000000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:13 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x0, 0x1}) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=@newsa={0x144, 0x10, 0x713, 0x0, 0x0, {{@in=@private, @in6=@mcast2}, {@in6=@empty, 0x0, 0x32}, @in6=@empty, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}, @offload={0xc}]}, 0x144}}, 0x0) sendfile(r0, r1, 0x0, 0x3) 23:40:13 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000010000000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:13 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x2000}, 0x0) 23:40:13 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xfffffc0003ffff00}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:13 executing program 2: ioctl$KVM_CAP_VM_COPY_ENC_CONTEXT_FROM(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000080)) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0xfe, 0x1}) r1 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f0000000100), 0x402203, 0x0) ioctl$TIOCGPTPEER(r1, 0x5441, 0x3ff) 23:40:13 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000011000000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:13 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000044000000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:13 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x2400}, 0x0) 23:40:13 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xffffff7f00000000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:13 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0xe1, 0x1}) 23:40:13 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x2600}, 0x0) 23:40:13 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000060000000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:13 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xfffffffc38000000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:13 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x2c00}, 0x0) 23:40:13 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x0, 0x1}) socket$inet6_tcp(0xa, 0x1, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) 23:40:13 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000f0000000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:13 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCGLCKTRMIOS(r0, 0x5456, &(0x7f0000000000)={0x59, 0x3, 0x7, 0xfffffffb, 0x13, "cceb18aac164871f4800387decbec3bb833228"}) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x0, 0x1}) 23:40:13 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000030000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:13 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x2c02}, 0x0) 23:40:13 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xfffffffdff000000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:13 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000050000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:13 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x3000}, 0x0) 23:40:13 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = dup3(r0, r0, 0x0) ioctl$KDSKBENT(r1, 0x4b47, &(0x7f0000000040)={0x0, 0x1}) 23:40:13 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xffffffff00000000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:13 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000060000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:13 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x3100}, 0x0) 23:40:13 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x0, 0x1, 0x400}) 23:40:13 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xffffffff89800000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:13 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000070000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:13 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCL_PASTESEL(0xffffffffffffffff, 0x541c, &(0x7f0000000000)) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x0, 0x1}) 23:40:13 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000090000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:13 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x3400}, 0x0) 23:40:14 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000a0000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:14 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x2) ioctl$KDDISABIO(r0, 0x4b37) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x5, 0x1, 0x2}) 23:40:14 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xfffffffffffe0020}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:14 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x3902}, 0x0) 23:40:14 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000b0000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:14 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r0) ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r1, 0x50009418, &(0x7f0000000100)={{r2}, 0x0, 0x1a, @inherit={0x68, &(0x7f0000000080)={0x1, 0x4, 0x80, 0x4, {0x3, 0xfffffffffffffd7e, 0x6, 0x9, 0x3}, [0xee, 0x5, 0x1f, 0x80000000]}}, @devid}) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x0, 0x1}) ioctl$KDFONTOP_SET_DEF(r2, 0x4b72, &(0x7f0000001500)={0x2, 0x1, 0x14, 0x9, 0xdd, &(0x7f0000001100)="d05b0af2e99bbac573c441e59489f83cf247b8a47e0beff7204c3642e806cbc9dd86af0accd5a125d3da6dceaa1b4be48be84dfb4c7de6863cde534800eb78281ceebec5cfd5ecfa009c400135ca3fa9d1187321da30f70e6926a31d241a67cc28d0310ada4531c33d8e2ebed6a0c1f1980c300159e8dd04b8de048dfe61599c6b09b3728f05dc028bd707560408dc11b5a965fdad82157621ca45b5427ebc4bbe0b8ac68bb1ad5a1c5a2b1a71c2850b64249b3d1556f6d42cff9e9acffadfe310837def833c36f3225681e1cd5c854b4dbd88edd45973816a26749fc288e7de63852017d3c569733328eaac3fdc895407db872231c3de9b91c80abc2fbae264f4af35839731b6ea782195f41d39bfe1816169edf5b45ddf572096e93ebf09b377dacd003503b8b41a6e03d4e4888a32d0c1e538ec3cfe2d338fc92bf0d23c458dbeff48a1ee294f45a9781893ce95b14dcf734586b7e586bdc85f24d1961307b3b8000306b2ca4cf221da505d75e82b4c6c2d7bb94e28154248dcdd50115953234a132d8c765bfa9ea4c4531c040f86320a4be1f050831dd50f98da52f68465b5a58a714bca1327fb99b8f2aa7818e92b2e4e7e1c37f2fb3120c245594d4d829b57cba2c9c2fe0f9628474895d1168ada525e0a36abfe190704d902131948a9f259c7e1234dadaf75e089ae71e2ea3a00441cf6ab11a49f0c48c419f968d9eea323f39bd06a5cda5eb3c8aa3dcaaaaff29e983f37d7769ab2b83592d83f3803742bd6629ca13dfb3f4293e74953ffa6c79054a39e402514e01fbf127221e6a4566bd260174f51da782c0300db2cdf67093fb3398d2152ffed7873660eb5cd660c58c15de0407c594afeadf4aecad2064f6b5d7e0ff5a9ea982863c257283ec6b2fc77fa505a74fbefaf1686f99bf5e53b704660aa73fd98d9f2ecc43f952d2b75f1d01bb6dc4a84b91511cda4919f557d28c665a142d87c4e9fb7dd0d124440ba5c3929c34dfb2f895fde98e61b3ee58fcb58248aa6c7b6ee9bb546aaef6d82948ec4ee1013ae8af10e5bdd0aef2bfe535856756339c4ce7aba95cb2c2d2da8468b0aa7a8586cc1f9376235dc7e733d133e6108f1c73e89dafc4e98a51cadbb326f8e1b7b6dcb98f1349a03ef5e8a86c0fd19abbb1023a822b4e2566f3132632ce7a8276908b3593dcaccfeeefb76ee7fdd8e0423f5eae2a283e833babd90d4163ec34b6a430bcb21836d91a0ce974ec77646b7123d20d479e1e8ecb3b77e49e01c6b9282c8aac4599bfd484be25b0e87973463364e87a78bb8db075935e183a43bb9e74ed3c24241510a7f93d4467bfae93656d29c62074c193ae363b898530d7e2ccc176c8ecb9d28f01452f53d91ade7d7f277eb623d78653d2fa9406e6230a3f9e59ae5a1665bb2eed14bba76a08de06fb43e9331839a89e9add48f54e0"}) 23:40:14 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000e0000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:14 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x3e00}, 0x0) 23:40:14 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xfffffffffffff000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:14 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000f0000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:14 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000110000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:14 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x0, 0x1}) 23:40:14 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xffffffffffffff00}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:14 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x3f00}, 0x0) 23:40:14 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x0, 0x1}) r1 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$KDMKTONE(r1, 0x4b30, 0x2) ioctl$KDGKBTYPE(r0, 0x4b33, &(0x7f0000000000)) 23:40:14 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000044220000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:14 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x4000}, 0x0) 23:40:14 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xffffffffffffffff}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:14 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000440000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:14 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) syz_open_dev$tty1(0xc, 0x4, 0x4) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000000)={0x0, 0x2, 0xfffd}) 23:40:14 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000022440000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:14 executing program 2: r0 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) fchdir(r0) ioctl$SIOCAX25ADDUID(r0, 0x89e1, &(0x7f0000000000)={0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0xee01}) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r1, 0x81f8943c, &(0x7f0000000080)) ioctl$KDSKBENT(r1, 0x4b47, &(0x7f0000000040)={0x0, 0x1}) r2 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000240)={0x0, 0x0}, &(0x7f0000000280)=0x5) setuid(r3) ioctl$SIOCAX25ADDUID(r0, 0x89e1, &(0x7f0000000280)={0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, r3}) 23:40:14 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x4103}, 0x0) 23:40:14 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x2}]}, 0x30}}, 0x0) 23:40:14 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000600000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3596.516433][T15939] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3596.528568][T15939] nbd: must specify at least one socket 23:40:14 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000f00000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:14 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x3}]}, 0x30}}, 0x0) 23:40:14 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x4302}, 0x0) 23:40:14 executing program 2: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0xfffffffc38000000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) [ 3596.619781][T15952] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. 23:40:14 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000400300000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3596.632422][T15952] nbd: must specify at least one socket 23:40:14 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x5}]}, 0x30}}, 0x0) 23:40:14 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000034000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3596.716185][T15962] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3596.727426][T15962] nbd: must specify at least one socket 23:40:14 executing program 2: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000500000000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:14 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x4800}, 0x0) [ 3596.788739][T15966] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3596.803936][T15966] nbd: must specify at least one socket [ 3596.811510][ T3938] Bluetooth: hci2: command 0x0406 tx timeout 23:40:14 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000fffff000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:14 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x0, 0x1}) sendfile(r0, r0, &(0x7f0000000080)=0x6, 0x4) r1 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/fib_trie\x00') ioctl$TCSBRK(r1, 0x5409, 0x80000000) 23:40:14 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x6}]}, 0x30}}, 0x0) [ 3596.875957][ T3938] Bluetooth: hci1: command 0x040f tx timeout 23:40:14 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x4c00}, 0x0) [ 3596.891200][T15976] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3596.908159][T15976] nbd: must specify at least one socket 23:40:15 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000001000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:15 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x5f01}, 0x0) 23:40:15 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000002000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:15 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x7}]}, 0x30}}, 0x0) 23:40:15 executing program 2: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x55860e0000000000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:15 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000003000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3597.046688][T15993] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3597.059486][T15993] nbd: must specify at least one socket 23:40:15 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x6800}, 0x0) 23:40:15 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000004000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:15 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x8}]}, 0x30}}, 0x0) 23:40:15 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = open(&(0x7f0000000040)='./file0\x00', 0x400000, 0x102) fchdir(r1) r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x2080) close(r2) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f0000000040)={0x0, 0x1}) ioctl$FIONREAD(r0, 0x541b, &(0x7f0000000000)) 23:40:15 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x6901}, 0x0) 23:40:15 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000005000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:15 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000006000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3597.215721][T16004] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3597.229683][T16004] nbd: must specify at least one socket 23:40:15 executing program 2: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xfaac070000000000}, 0x0) 23:40:15 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x9}]}, 0x30}}, 0x0) 23:40:15 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x6c00}, 0x0) 23:40:15 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000007000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3597.318232][T16019] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3597.330305][T16019] nbd: must specify at least one socket 23:40:15 executing program 2: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:15 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0xa}]}, 0x30}}, 0x0) 23:40:15 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7400}, 0x0) 23:40:15 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000008000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3597.462751][T16031] nbd: must specify at least one socket 23:40:15 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000009000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:15 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7a00}, 0x0) 23:40:15 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0xb}]}, 0x30}}, 0x0) 23:40:15 executing program 2: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:15 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000000a000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3597.601854][T16045] nbd: must specify at least one socket 23:40:15 executing program 2: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:15 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x10}]}, 0x30}}, 0x0) 23:40:15 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000000b000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3597.709333][T16056] nbd: must specify at least one socket 23:40:15 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x8089}, 0x0) 23:40:15 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000000e000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:15 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x11}]}, 0x30}}, 0x0) [ 3597.801280][T16065] nbd: must specify at least one socket 23:40:15 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000000f000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:15 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x8303}, 0x0) 23:40:15 executing program 2: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:15 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x14}]}, 0x30}}, 0x0) 23:40:15 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000010000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3597.906954][T16077] nbd: must specify at least one socket 23:40:16 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x8803}, 0x0) 23:40:16 executing program 2: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:16 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000011000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:16 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x1e}]}, 0x30}}, 0x0) 23:40:16 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000044000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:16 executing program 2: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) [ 3598.028340][T16089] nbd: must specify at least one socket 23:40:16 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x8d00}, 0x0) 23:40:16 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x2e}]}, 0x30}}, 0x0) 23:40:16 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000002244000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:16 executing program 2: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r3, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) [ 3598.132831][T16098] nbd: must specify at least one socket [ 3598.147284][T16098] nbd: must specify at least one socket 23:40:16 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000060000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:16 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0xa000}, 0x0) 23:40:16 executing program 2: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r3, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:16 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x104}]}, 0x30}}, 0x0) 23:40:16 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000ffffff9e000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3598.237007][T16111] nbd: must specify at least one socket 23:40:16 executing program 2: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r3, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:16 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0xa003}, 0x0) 23:40:16 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000fffffff0000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:16 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x402}]}, 0x30}}, 0x0) 23:40:16 executing program 2: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$NBD_CMD_CONNECT(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r3, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) [ 3598.336553][T16125] nbd: must specify at least one socket 23:40:16 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000f0ffff000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:16 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x501}]}, 0x30}}, 0x0) 23:40:16 executing program 2: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$NBD_CMD_CONNECT(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r3, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:16 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000007fffffff000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:16 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0xac02}, 0x0) [ 3598.421051][T16134] nbd: must specify at least one socket 23:40:16 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x502}]}, 0x30}}, 0x0) 23:40:16 executing program 2: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$NBD_CMD_CONNECT(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r3, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:16 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000009effffff000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3598.521334][T16144] nbd: must specify at least one socket 23:40:16 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000f0ffffff000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:16 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0xb002}, 0x0) 23:40:16 executing program 2: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r1) sendmsg$NBD_CMD_CONNECT(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r3, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:16 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x601}]}, 0x30}}, 0x0) 23:40:16 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000340000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3598.654912][T16159] nbd: must specify at least one socket [ 3598.666402][T16251] udevd[16251]: setting owner of /dev/nbd0 to uid=0, gid=6 failed: No such file or directory 23:40:16 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0xb101}, 0x0) 23:40:16 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x701}]}, 0x30}}, 0x0) 23:40:16 executing program 2: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r1) sendmsg$NBD_CMD_CONNECT(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r3, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:16 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000fffffffffffff0000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3598.738368][T16167] nbd: must specify at least one socket 23:40:16 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000010000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:16 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x802}]}, 0x30}}, 0x0) 23:40:16 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0xbb02}, 0x0) 23:40:16 executing program 2: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r1) sendmsg$NBD_CMD_CONNECT(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r3, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:16 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000020000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3598.834835][T16177] nbd: must specify at least one socket 23:40:16 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x902}]}, 0x30}}, 0x0) 23:40:16 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000030000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:17 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0xbe03}, 0x0) [ 3598.938748][T16188] __nla_validate_parse: 15 callbacks suppressed 23:40:17 executing program 2: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r1) sendmsg$NBD_CMD_CONNECT(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r3, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) [ 3598.938767][T16188] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3598.955909][ T3938] Bluetooth: hci1: command 0x0419 tx timeout [ 3598.960202][T16188] nbd: must specify at least one socket 23:40:17 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000040000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:17 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0xc003}, 0x0) 23:40:17 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000050000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:17 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x903}]}, 0x30}}, 0x0) 23:40:17 executing program 2: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r1) sendmsg$NBD_CMD_CONNECT(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r3, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:17 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000060000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3599.108464][T16203] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3599.124343][T16203] nbd: must specify at least one socket 23:40:17 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000070000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:17 executing program 2: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:17 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0xc100}, 0x0) 23:40:17 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0xa00}]}, 0x30}}, 0x0) 23:40:17 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0xce03}, 0x0) 23:40:17 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000080000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3599.306120][T16221] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3599.321036][T16221] nbd: must specify at least one socket 23:40:17 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:17 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0xfe4}]}, 0x30}}, 0x0) 23:40:17 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000090000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:17 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:17 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0xd001}, 0x0) [ 3599.455892][T16232] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3599.467951][T16232] nbd: must specify at least one socket 23:40:17 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0xfe7}]}, 0x30}}, 0x0) 23:40:17 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000000000000a0000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:17 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0xd202}, 0x0) [ 3599.569415][T16244] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. 23:40:17 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000000000000b0000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3599.587562][T16244] nbd: must specify at least one socket 23:40:17 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:17 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0xe702}, 0x0) 23:40:17 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0xfe8}]}, 0x30}}, 0x0) 23:40:17 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000000000000e0000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3599.684068][T16256] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3599.698328][T16256] nbd: must specify at least one socket 23:40:17 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000000000000f0000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:17 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0xfe9}]}, 0x30}}, 0x0) 23:40:17 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:17 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0xef00}, 0x0) 23:40:17 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000100000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3599.854529][T16271] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3599.867190][T16271] nbd: must specify at least one socket 23:40:17 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000110000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:18 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:18 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0xf000}, 0x0) 23:40:18 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0xfea}]}, 0x30}}, 0x0) 23:40:18 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000440000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3600.043365][T16287] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3600.056200][T16287] nbd: must specify at least one socket 23:40:18 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:18 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0xfeb}]}, 0x30}}, 0x0) 23:40:18 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000022440000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:18 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0xf203}, 0x0) 23:40:18 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000600000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3600.189732][T16295] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3600.201376][T16295] nbd: must specify at least one socket 23:40:18 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:18 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0xf80c}, 0x0) 23:40:18 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0xfed}]}, 0x30}}, 0x0) 23:40:18 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000ffffff9e0000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:18 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) [ 3600.338239][T16313] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3600.350616][T16313] nbd: must specify at least one socket 23:40:18 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0xfd02}, 0x0) 23:40:18 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000fffffff00000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:18 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0xfee}]}, 0x30}}, 0x0) 23:40:18 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000007fffffff0000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:18 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) [ 3600.502372][T16326] nbd: must specify at least one socket 23:40:18 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000f0ffffffffffff0000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:18 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0xff00}, 0x0) 23:40:18 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0xfef}]}, 0x30}}, 0x0) 23:40:18 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) [ 3600.679870][T16344] nbd: must specify at least one socket 23:40:18 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000020000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:18 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0xff03}, 0x0) 23:40:18 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000030000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:18 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x0, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:18 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0xff0}]}, 0x30}}, 0x0) 23:40:18 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000040000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:18 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x30000}, 0x0) [ 3600.816030][T16355] nbd: must specify at least one socket 23:40:18 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000050000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:18 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0xff1}]}, 0x30}}, 0x0) 23:40:18 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x0, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:18 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000060000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:19 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7ac94}, 0x0) [ 3600.939000][T16370] nbd: must specify at least one socket 23:40:19 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000070000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:19 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x0, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:19 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0xff2}]}, 0x30}}, 0x0) 23:40:19 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000080000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:19 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7ac95}, 0x0) [ 3601.057859][T16382] nbd: must specify at least one socket [ 3601.091205][T16382] nbd: must specify at least one socket 23:40:19 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x20, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}]}, 0x20}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:19 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7ac96}, 0x0) 23:40:19 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000090000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:19 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0xff3}]}, 0x30}}, 0x0) 23:40:19 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000a0000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:19 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x20, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}]}, 0x20}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) [ 3601.221341][T16401] nbd: must specify at least one socket 23:40:19 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7ac97}, 0x0) 23:40:19 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000b0000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:19 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0xff4}]}, 0x30}}, 0x0) [ 3601.343169][T16412] nbd: must specify at least one socket 23:40:19 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000e0000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:19 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0xff5}]}, 0x30}}, 0x0) 23:40:19 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7ac98}, 0x0) 23:40:19 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x20, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}]}, 0x20}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:19 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000f0000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3601.462028][T16422] nbd: must specify at least one socket 23:40:19 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7ac99}, 0x0) 23:40:19 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000100000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:19 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:19 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0xff6}]}, 0x30}}, 0x0) [ 3601.585591][T16435] nbd: must specify at least one socket 23:40:19 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000110000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:19 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0xff7}]}, 0x30}}, 0x0) 23:40:19 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7ac9a}, 0x0) 23:40:19 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000440000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3601.698156][T16445] nbd: must specify at least one socket 23:40:19 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(0x0, r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:19 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000600000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3601.730219][T16445] nbd: must specify at least one socket 23:40:19 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7ac9b}, 0x0) 23:40:19 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0xff8}]}, 0x30}}, 0x0) 23:40:19 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000f00000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:19 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(0x0, r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) [ 3601.844682][T16459] nbd: must specify at least one socket 23:40:19 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7ac9c}, 0x0) 23:40:19 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000300000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:20 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(0x0, r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:20 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0xff9}]}, 0x30}}, 0x0) 23:40:20 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000500000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:20 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7ac9d}, 0x0) [ 3601.969698][T16474] nbd: must specify at least one socket 23:40:20 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0xffa}]}, 0x30}}, 0x0) 23:40:20 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000600000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:20 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r1, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) [ 3602.066906][T16483] nbd: must specify at least one socket 23:40:20 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r1, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:20 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7ac9e}, 0x0) 23:40:20 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000700000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:20 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0xffb}]}, 0x30}}, 0x0) [ 3602.176761][T16497] nbd: must specify at least one socket 23:40:20 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r1, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:20 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000900000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:20 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7ac9f}, 0x0) 23:40:20 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x1101}]}, 0x30}}, 0x0) 23:40:20 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r1, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) [ 3602.270035][T16505] nbd: must specify at least one socket 23:40:20 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000a00000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:20 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x1201}]}, 0x30}}, 0x0) 23:40:20 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r1, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:20 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7aca0}, 0x0) 23:40:20 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000b00000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3602.373445][T16517] nbd: must specify at least one socket 23:40:20 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r1, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:20 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x1400}]}, 0x30}}, 0x0) 23:40:20 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000e00000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:20 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7aca1}, 0x0) [ 3602.462128][T16528] nbd: must specify at least one socket 23:40:20 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000f00000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:20 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, 0x0, 0x0) 23:40:20 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x1800}]}, 0x30}}, 0x0) 23:40:20 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7aca2}, 0x0) 23:40:20 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000001100000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3602.577788][T16540] nbd: must specify at least one socket 23:40:20 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, 0x0, 0x0) 23:40:20 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7aca3}, 0x0) 23:40:20 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000442200000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:20 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x1903}]}, 0x30}}, 0x0) [ 3602.670155][T16552] nbd: must specify at least one socket 23:40:20 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, 0x0, 0x0) 23:40:20 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000004400000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:20 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x1a03}]}, 0x30}}, 0x0) 23:40:20 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7aca4}, 0x0) [ 3602.785315][T16562] nbd: must specify at least one socket 23:40:20 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0xefac070000000000}, 0x0) 23:40:20 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000224400000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:20 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x1b02}]}, 0x30}}, 0x0) 23:40:20 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0xefac070000000000}, 0x0) 23:40:21 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7aca5}, 0x0) [ 3602.940826][T16575] nbd: must specify at least one socket 23:40:21 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000006000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:21 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x1d02}]}, 0x30}}, 0x0) 23:40:21 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7aca6}, 0x0) 23:40:21 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0xefac070000000000}, 0x0) 23:40:21 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000f000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3603.059843][T16586] nbd: must specify at least one socket 23:40:21 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000004003000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:21 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0}, 0x1, 0xefac070000000000}, 0x0) 23:40:21 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x1d03}]}, 0x30}}, 0x0) 23:40:21 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000340000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:21 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0}, 0x1, 0xefac070000000000}, 0x0) [ 3603.198039][T16600] nbd: must specify at least one socket 23:40:21 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7aca7}, 0x0) 23:40:21 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000fffff0000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:21 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x2202}]}, 0x30}}, 0x0) 23:40:21 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0}, 0x1, 0xefac070000000000}, 0x0) 23:40:21 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7aca8}, 0x0) 23:40:21 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000010000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3603.350077][T16616] nbd: must specify at least one socket 23:40:21 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:21 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x2302}]}, 0x30}}, 0x0) 23:40:21 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7aca9}, 0x0) 23:40:21 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000020000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3603.463017][T16626] nbd: must specify at least one socket 23:40:21 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:21 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x2400}]}, 0x30}}, 0x0) 23:40:21 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000030000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:21 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acaa}, 0x0) [ 3603.549108][T16637] nbd: must specify at least one socket 23:40:21 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:21 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x2401}]}, 0x30}}, 0x0) 23:40:21 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000040000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:21 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x0, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) [ 3603.647402][T16647] nbd: must specify at least one socket 23:40:21 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acab}, 0x0) 23:40:21 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000050000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:21 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x0, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:21 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x2600}]}, 0x30}}, 0x0) 23:40:21 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acac}, 0x0) 23:40:21 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x0, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) [ 3603.751194][T16662] nbd: must specify at least one socket 23:40:21 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000060000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:21 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000070000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:21 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acad}, 0x0) 23:40:21 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x2802}]}, 0x30}}, 0x0) 23:40:21 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x2c, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}]}, 0x2c}, 0x1, 0xefac070000000000}, 0x0) [ 3603.853477][T16674] nbd: must specify at least one socket [ 3603.871726][T16677] nbd: must specify at least one socket 23:40:21 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acae}, 0x0) 23:40:22 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000080000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:22 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x2c, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}]}, 0x2c}, 0x1, 0xefac070000000000}, 0x0) 23:40:22 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x2902}]}, 0x30}}, 0x0) [ 3603.959723][T16687] __nla_validate_parse: 31 callbacks suppressed [ 3603.959745][T16687] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3603.981513][T16687] nbd: must specify at least one socket [ 3603.990292][T16690] nbd: must specify at least one socket 23:40:22 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000090000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:22 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x2c, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}]}, 0x2c}, 0x1, 0xefac070000000000}, 0x0) 23:40:22 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acaf}, 0x0) 23:40:22 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x2a02}]}, 0x30}}, 0x0) [ 3604.080598][T16700] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. 23:40:22 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acb0}, 0x0) [ 3604.093422][T16700] nbd: must specify at least one socket 23:40:22 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000000a0000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3604.103932][T16701] nbd: must specify at least one socket 23:40:22 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}, 0x1, 0xefac070000000000}, 0x0) 23:40:22 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x2b02}]}, 0x30}}, 0x0) 23:40:22 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000000b0000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3604.196939][T16708] nbd: must specify a size in bytes for the device 23:40:22 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acb1}, 0x0) 23:40:22 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}, 0x1, 0xefac070000000000}, 0x0) 23:40:22 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000000e0000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3604.238982][T16713] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3604.260540][T16713] nbd: must specify at least one socket 23:40:22 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x2e00}]}, 0x30}}, 0x0) 23:40:22 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acb2}, 0x0) 23:40:22 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000000f0000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3604.362665][T16723] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3604.377935][T16723] nbd: must specify at least one socket [ 3604.391975][T16721] nbd: must specify a size in bytes for the device 23:40:22 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000100000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:22 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}, 0x1, 0xefac070000000000}, 0x0) [ 3604.423984][T16723] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. 23:40:22 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acb3}, 0x0) [ 3604.446564][T16723] nbd: must specify at least one socket 23:40:22 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000110000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3604.479856][T16734] nbd: must specify a size in bytes for the device 23:40:22 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x2f03}]}, 0x30}}, 0x0) 23:40:22 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}, 0x1, 0xefac070000000000}, 0x0) 23:40:22 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acb4}, 0x0) [ 3604.563990][T16740] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3604.575755][T16740] nbd: must specify at least one socket 23:40:22 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000440000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:22 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x3202}]}, 0x30}}, 0x0) 23:40:22 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}, 0x1, 0xefac070000000000}, 0x0) 23:40:22 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000022440000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:22 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acb5}, 0x0) [ 3604.663124][T16751] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3604.676468][T16751] nbd: must specify at least one socket 23:40:22 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000600000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:22 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x3302}]}, 0x30}}, 0x0) 23:40:22 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}, 0x1, 0xefac070000000000}, 0x0) 23:40:22 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acb6}, 0x0) [ 3604.766476][T16761] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3604.778028][T16761] nbd: must specify at least one socket 23:40:22 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000ffffff9e0000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:22 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x3402}]}, 0x30}}, 0x0) 23:40:22 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) 23:40:22 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acb7}, 0x0) 23:40:22 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000fffffff00000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:22 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) [ 3604.898802][T16775] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3604.912606][T16775] nbd: must specify at least one socket 23:40:23 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) [ 3604.973008][ T1317] ieee802154 phy0 wpan0: encryption failed: -22 23:40:23 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000f0ffff0000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:23 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acb8}, 0x0) 23:40:23 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x3500}]}, 0x30}}, 0x0) 23:40:23 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000007fffffff0000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3605.064372][T16789] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3605.076115][T16789] nbd: must specify at least one socket 23:40:23 executing program 2: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000f0ffff0000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:23 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x3502}]}, 0x30}}, 0x0) 23:40:23 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000009effffff0000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:23 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000f0ffffff0000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:23 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acb9}, 0x0) 23:40:23 executing program 2: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x1d03}]}, 0x30}}, 0x0) [ 3605.191900][T16802] nbd: must specify at least one socket 23:40:23 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000003400000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:23 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x3603}]}, 0x30}}, 0x0) [ 3605.266098][T16808] nbd: must specify at least one socket 23:40:23 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000fffffffffffff00000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:23 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acba}, 0x0) 23:40:23 executing program 2: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x25860e0000000000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) [ 3605.314718][T16814] nbd: must specify at least one socket 23:40:23 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000100000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:23 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x3703}]}, 0x30}}, 0x0) 23:40:23 executing program 2: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSKBENT(r0, 0x5413, &(0x7f0000000040)={0x0, 0x1}) 23:40:23 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000200000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:23 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acbb}, 0x0) [ 3605.447331][T16826] nbd: must specify at least one socket 23:40:23 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000300000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:23 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x3802}]}, 0x30}}, 0x0) 23:40:23 executing program 2: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x2000020000000000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) [ 3605.547918][T16838] nbd: must specify at least one socket 23:40:23 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acbc}, 0x0) 23:40:23 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000400000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:23 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x3a02}]}, 0x30}}, 0x0) 23:40:23 executing program 2: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc, 0x2, 0x14860e0000000000}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}}, 0x0) 23:40:23 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000500000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:23 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acbd}, 0x0) [ 3605.709634][T16850] nbd: must specify at least one socket 23:40:23 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000600000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:23 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x3e01}]}, 0x30}}, 0x0) [ 3605.824170][T16860] nbd: must specify at least one socket 23:40:23 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acbe}, 0x0) 23:40:23 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000700000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:23 executing program 2: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xcdac070000000000}, 0x0) 23:40:23 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4000}]}, 0x30}}, 0x0) 23:40:23 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000800000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3605.929757][T16871] nbd: must specify at least one socket 23:40:24 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000900000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:24 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acbf}, 0x0) 23:40:24 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4001}]}, 0x30}}, 0x0) 23:40:24 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 1) [ 3606.003535][T16877] FAULT_INJECTION: forcing a failure. [ 3606.003535][T16877] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 3606.010935][T16882] nbd: must specify at least one socket 23:40:24 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000a00000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3606.020675][T16877] CPU: 0 PID: 16877 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 23:40:24 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acc0}, 0x0) [ 3606.042056][T16877] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3606.056546][T16877] Call Trace: [ 3606.062209][T16877] dump_stack_lvl+0xcd/0x134 [ 3606.068814][T16877] should_fail.cold+0x5/0xa [ 3606.074391][T16877] _copy_from_user+0x2c/0x180 [ 3606.083520][T16877] __copy_msghdr_from_user+0x91/0x4b0 [ 3606.093437][T16877] ? __ia32_sys_shutdown+0x70/0x70 [ 3606.101243][T16877] ? mark_lock+0xef/0x17b0 [ 3606.107503][T16877] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3606.114935][T16877] ? __lock_acquire+0x162f/0x54a0 [ 3606.121697][T16877] sendmsg_copy_msghdr+0xa1/0x160 [ 3606.128186][T16877] ? do_recvmmsg+0x6d0/0x6d0 [ 3606.134065][T16877] ? lock_chain_count+0x20/0x20 [ 3606.139997][T16877] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3606.147598][T16877] ___sys_sendmsg+0xc6/0x170 [ 3606.152829][T16877] ? sendmsg_copy_msghdr+0x160/0x160 [ 3606.159527][T16877] ? __fget_files+0x21b/0x3e0 [ 3606.164655][T16877] ? lock_downgrade+0x6e0/0x6e0 [ 3606.170040][T16877] ? __fget_files+0x23d/0x3e0 [ 3606.176574][T16877] ? __fget_light+0xea/0x280 [ 3606.182770][T16877] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3606.191938][T16877] __sys_sendmsg+0xe5/0x1b0 [ 3606.199382][T16877] ? __sys_sendmsg_sock+0x30/0x30 [ 3606.205482][T16877] ? syscall_enter_from_user_mode+0x21/0x70 [ 3606.213154][T16877] do_syscall_64+0x35/0xb0 [ 3606.218690][T16877] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3606.226096][T16877] RIP: 0033:0x7f0b1aeaaae9 [ 3606.231611][T16877] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3606.256740][T16877] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3606.268068][T16877] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3606.280173][T16877] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3606.290990][T16877] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3606.303751][T16877] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3606.314656][T16877] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 23:40:24 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000b00000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:24 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 2) 23:40:24 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acc1}, 0x0) 23:40:24 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000e00000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3606.423766][T16895] FAULT_INJECTION: forcing a failure. [ 3606.423766][T16895] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 3606.440783][T16895] CPU: 1 PID: 16895 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3606.451649][T16895] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3606.462740][T16895] Call Trace: [ 3606.467313][T16895] dump_stack_lvl+0xcd/0x134 [ 3606.473873][T16895] should_fail.cold+0x5/0xa [ 3606.480348][T16895] _copy_from_user+0x2c/0x180 [ 3606.486704][T16895] iovec_from_user+0x242/0x3c0 [ 3606.492981][T16895] __import_iovec+0x65/0x580 [ 3606.501121][T16895] import_iovec+0x10c/0x150 [ 3606.506662][T16895] sendmsg_copy_msghdr+0x12d/0x160 [ 3606.513294][T16895] ? do_recvmmsg+0x6d0/0x6d0 [ 3606.519415][T16895] ? lock_chain_count+0x20/0x20 [ 3606.525983][T16895] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3606.533443][T16895] ___sys_sendmsg+0xc6/0x170 [ 3606.540024][T16895] ? sendmsg_copy_msghdr+0x160/0x160 [ 3606.547679][T16895] ? __fget_files+0x21b/0x3e0 [ 3606.553761][T16895] ? lock_downgrade+0x6e0/0x6e0 [ 3606.561124][T16895] ? __fget_files+0x23d/0x3e0 [ 3606.567512][T16895] ? __fget_light+0xea/0x280 [ 3606.573653][T16895] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3606.581900][T16895] __sys_sendmsg+0xe5/0x1b0 [ 3606.589002][T16895] ? __sys_sendmsg_sock+0x30/0x30 [ 3606.595388][T16895] ? syscall_enter_from_user_mode+0x21/0x70 [ 3606.602261][T16895] do_syscall_64+0x35/0xb0 [ 3606.607870][T16895] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3606.614961][T16895] RIP: 0033:0x7f0b1aeaaae9 [ 3606.620923][T16895] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3606.644607][T16895] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3606.654159][T16895] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3606.663967][T16895] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3606.674050][T16895] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3606.683333][T16895] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3606.692729][T16895] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3607.578898][ T3692] device hsr_slave_0 left promiscuous mode [ 3607.590463][ T3692] device hsr_slave_1 left promiscuous mode [ 3607.600736][ T3692] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 3607.612587][ T3692] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 3607.625539][ T3692] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 3607.636081][ T3692] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 3607.649144][ T3692] device bridge_slave_1 left promiscuous mode [ 3607.658234][ T3692] bridge0: port 2(bridge_slave_1) entered disabled state [ 3607.670882][ T3692] device bridge_slave_0 left promiscuous mode [ 3607.679489][ T3692] bridge0: port 1(bridge_slave_0) entered disabled state [ 3607.699971][ T3692] device veth1_macvtap left promiscuous mode [ 3607.707276][ T3692] device veth0_macvtap left promiscuous mode [ 3607.714684][ T3692] device veth1_vlan left promiscuous mode [ 3607.723413][ T3692] device veth0_vlan left promiscuous mode [ 3608.081108][ T3692] team0 (unregistering): Port device team_slave_1 removed [ 3608.112738][ T3692] team0 (unregistering): Port device team_slave_0 removed [ 3608.129134][ T3692] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 3608.148794][ T3692] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 3608.252448][ T3692] bond0 (unregistering): Released all slaves [ 3609.500579][T16903] chnl_net:caif_netlink_parms(): no params data found [ 3609.628611][T16903] bridge0: port 1(bridge_slave_0) entered blocking state [ 3609.642779][T16903] bridge0: port 1(bridge_slave_0) entered disabled state [ 3609.659950][T16903] device bridge_slave_0 entered promiscuous mode [ 3609.677498][T16903] bridge0: port 2(bridge_slave_1) entered blocking state [ 3609.684585][T16903] bridge0: port 2(bridge_slave_1) entered disabled state [ 3609.697893][T16903] device bridge_slave_1 entered promiscuous mode [ 3609.773544][T16903] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 3609.793830][T16903] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 3609.861089][T16903] team0: Port device team_slave_0 added [ 3609.873979][T16903] team0: Port device team_slave_1 added [ 3609.933207][T16903] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 3609.942623][T16903] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 3609.975325][T16903] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 3610.001116][T16903] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 3610.013188][T16903] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 3610.048836][T16903] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 3610.106157][T16903] device hsr_slave_0 entered promiscuous mode [ 3610.115863][T16903] device hsr_slave_1 entered promiscuous mode [ 3610.124037][T16903] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 3610.134055][T16903] Cannot create hsr debugfs directory [ 3610.334414][T16903] bridge0: port 2(bridge_slave_1) entered blocking state [ 3610.344232][T16903] bridge0: port 2(bridge_slave_1) entered forwarding state [ 3610.353857][T16903] bridge0: port 1(bridge_slave_0) entered blocking state [ 3610.362867][T16903] bridge0: port 1(bridge_slave_0) entered forwarding state [ 3610.445965][T16903] 8021q: adding VLAN 0 to HW filter on device bond0 [ 3610.467161][ T336] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 3610.503601][ T336] bridge0: port 1(bridge_slave_0) entered disabled state [ 3610.520156][ T336] bridge0: port 2(bridge_slave_1) entered disabled state [ 3610.533382][ T336] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 3610.557576][T16903] 8021q: adding VLAN 0 to HW filter on device team0 [ 3610.571883][T16334] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 3610.583505][T16334] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 3610.594713][T16334] bridge0: port 1(bridge_slave_0) entered blocking state [ 3610.604555][T16334] bridge0: port 1(bridge_slave_0) entered forwarding state [ 3610.620427][T16334] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 3610.633328][T16334] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 3610.644595][T16334] bridge0: port 2(bridge_slave_1) entered blocking state [ 3610.653975][T16334] bridge0: port 2(bridge_slave_1) entered forwarding state [ 3610.685487][T16334] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 3610.696344][T16334] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 3610.712434][T20280] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 3610.725783][T20280] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 3610.736055][T20280] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 3610.765561][T16334] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 3610.777463][T16334] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 3610.789172][T16334] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 3610.800802][T16334] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 3610.818706][T20280] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 3610.827843][T20280] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 3610.843122][T16903] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 3610.886996][ T2384] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 3610.899053][ T2384] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 3610.919243][T16903] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 3611.162122][ T3710] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 3611.179036][ T3710] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 3611.219749][ T3710] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 3611.233217][ T3710] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 3611.247650][ T3710] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 3611.260266][ T3710] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 3611.272403][T16903] device veth0_vlan entered promiscuous mode [ 3611.301061][T16903] device veth1_vlan entered promiscuous mode [ 3611.370351][ T2384] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 3611.381599][ T2384] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 3611.394274][ T2384] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 3611.406261][ T2384] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 3611.422165][T16903] device veth0_macvtap entered promiscuous mode [ 3611.435378][ T3710] Bluetooth: hci3: command 0x0409 tx timeout [ 3611.448181][T16903] device veth1_macvtap entered promiscuous mode [ 3611.484203][T16903] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 3611.499004][T16903] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 3611.514107][T16903] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 3611.527142][T16903] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 3611.537801][T16903] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 3611.548341][T16903] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 3611.560820][T16903] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 3611.572878][T18739] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 3611.601125][T18739] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 3611.627438][T18739] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 3611.638173][T18739] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 3611.654565][T16903] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 3611.670185][T16903] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 3611.684931][T16903] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 3611.703040][T16903] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 3611.719066][T16903] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 3611.733875][T18739] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 3611.745900][T18739] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 3611.838681][ T8453] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 3611.849775][ T8453] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 3611.863759][T18739] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 3611.883510][T27364] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 3611.894409][T27364] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 3611.911194][T20280] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 3611.966226][T16916] __nla_validate_parse: 9 callbacks suppressed [ 3611.966245][T16916] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3611.988774][T16916] nbd: must specify at least one socket 23:40:30 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000f00000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:30 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4002}]}, 0x30}}, 0x0) 23:40:30 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acc2}, 0x0) 23:40:30 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 3) [ 3612.053663][T16924] FAULT_INJECTION: forcing a failure. [ 3612.053663][T16924] name failslab, interval 1, probability 0, space 0, times 0 [ 3612.064644][T16926] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. 23:40:30 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000001000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3612.068755][T16924] CPU: 3 PID: 16924 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3612.081035][T16926] nbd: must specify at least one socket 23:40:30 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acc3}, 0x0) [ 3612.090933][T16924] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3612.090949][T16924] Call Trace: [ 3612.090956][T16924] dump_stack_lvl+0xcd/0x134 [ 3612.090980][T16924] should_fail.cold+0x5/0xa [ 3612.090995][T16924] should_failslab+0x5/0x10 [ 3612.091011][T16924] kmem_cache_alloc_node+0x68/0x580 [ 3612.091031][T16924] __alloc_skb+0x20b/0x340 [ 3612.091048][T16924] netlink_sendmsg+0x967/0xdb0 [ 3612.091064][T16924] ? netlink_unicast+0x7d0/0x7d0 [ 3612.091077][T16924] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3612.091097][T16924] ? netlink_unicast+0x7d0/0x7d0 [ 3612.091111][T16924] sock_sendmsg+0xcf/0x120 23:40:30 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 4) 23:40:30 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000001100000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3612.091127][T16924] ____sys_sendmsg+0x6e8/0x810 [ 3612.091143][T16924] ? kernel_sendmsg+0x50/0x50 [ 3612.091158][T16924] ? do_recvmmsg+0x6d0/0x6d0 [ 3612.091175][T16924] ? lock_chain_count+0x20/0x20 [ 3612.091190][T16924] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3612.091207][T16924] ___sys_sendmsg+0xf3/0x170 [ 3612.091224][T16924] ? sendmsg_copy_msghdr+0x160/0x160 [ 3612.091241][T16924] ? __fget_files+0x21b/0x3e0 [ 3612.091255][T16924] ? lock_downgrade+0x6e0/0x6e0 [ 3612.091270][T16924] ? __fget_files+0x23d/0x3e0 [ 3612.091283][T16924] ? __fget_light+0xea/0x280 [ 3612.091297][T16924] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 23:40:30 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000004400000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3612.091314][T16924] __sys_sendmsg+0xe5/0x1b0 [ 3612.091330][T16924] ? __sys_sendmsg_sock+0x30/0x30 [ 3612.091347][T16924] ? syscall_enter_from_user_mode+0x21/0x70 [ 3612.091364][T16924] do_syscall_64+0x35/0xb0 [ 3612.091377][T16924] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3612.091396][T16924] RIP: 0033:0x7f0b1aeaaae9 [ 3612.091410][T16924] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 23:40:30 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4003}]}, 0x30}}, 0x0) 23:40:30 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000224400000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:30 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acc4}, 0x0) [ 3612.091425][T16924] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3612.091441][T16924] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3612.091452][T16924] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3612.091461][T16924] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3612.091471][T16924] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3612.091480][T16924] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3612.247172][T16937] FAULT_INJECTION: forcing a failure. [ 3612.247172][T16937] name failslab, interval 1, probability 0, space 0, times 0 [ 3612.372894][T16947] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3612.375800][T16937] CPU: 1 PID: 16937 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 23:40:30 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000006000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:30 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acc5}, 0x0) [ 3612.375822][T16937] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3612.385717][T16947] nbd: must specify at least one socket [ 3612.401480][T16937] Call Trace: [ 3612.401497][T16937] dump_stack_lvl+0xcd/0x134 [ 3612.401531][T16937] should_fail.cold+0x5/0xa [ 3612.401555][T16937] should_failslab+0x5/0x10 [ 3612.401579][T16937] kmem_cache_alloc_node_trace+0x6e/0x5c0 [ 3612.401613][T16937] ? rcu_read_lock_sched_held+0x3a/0x70 [ 3612.401655][T16937] __kmalloc_node_track_caller+0x38/0x60 [ 3612.401688][T16937] __alloc_skb+0xde/0x340 [ 3612.401716][T16937] netlink_sendmsg+0x967/0xdb0 [ 3612.401743][T16937] ? netlink_unicast+0x7d0/0x7d0 [ 3612.401768][T16937] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3612.401799][T16937] ? netlink_unicast+0x7d0/0x7d0 [ 3612.401821][T16937] sock_sendmsg+0xcf/0x120 [ 3612.401846][T16937] ____sys_sendmsg+0x6e8/0x810 [ 3612.541750][T16937] ? kernel_sendmsg+0x50/0x50 [ 3612.547599][T16937] ? do_recvmmsg+0x6d0/0x6d0 [ 3612.553872][T16937] ? lock_chain_count+0x20/0x20 [ 3612.560300][T16937] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3612.571190][T16937] ___sys_sendmsg+0xf3/0x170 [ 3612.579474][T16937] ? sendmsg_copy_msghdr+0x160/0x160 [ 3612.587142][T16937] ? __fget_files+0x21b/0x3e0 [ 3612.593163][T16937] ? lock_downgrade+0x6e0/0x6e0 [ 3612.600839][T16937] ? __fget_files+0x23d/0x3e0 [ 3612.606740][T16937] ? __fget_light+0xea/0x280 [ 3612.613669][T16937] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3612.621424][T16937] __sys_sendmsg+0xe5/0x1b0 [ 3612.626142][T16937] ? __sys_sendmsg_sock+0x30/0x30 [ 3612.632431][T16937] ? syscall_enter_from_user_mode+0x21/0x70 [ 3612.638698][T16937] do_syscall_64+0x35/0xb0 [ 3612.643933][T16937] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3612.651841][T16937] RIP: 0033:0x7f0b1aeaaae9 [ 3612.658032][T16937] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3612.689112][T16937] RSP: 002b:00007f0b183ff188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3612.700533][T16937] RAX: ffffffffffffffda RBX: 00007f0b1afbe020 RCX: 00007f0b1aeaaae9 [ 3612.711187][T16937] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3612.722328][T16937] RBP: 00007f0b183ff1d0 R08: 0000000000000000 R09: 0000000000000000 [ 3612.732707][T16937] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3612.743546][T16937] R13: 00007ffebe7d0edf R14: 00007f0b183ff300 R15: 0000000000022000 23:40:30 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 5) 23:40:30 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4303}]}, 0x30}}, 0x0) 23:40:30 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000000000ffffff9e00000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:30 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acc6}, 0x0) [ 3612.841943][T16962] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3612.856285][T16962] nbd: must specify at least one socket [ 3612.867525][T16965] FAULT_INJECTION: forcing a failure. [ 3612.867525][T16965] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 3612.890153][T16965] CPU: 3 PID: 16965 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3612.902351][T16965] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3612.913707][T16965] Call Trace: [ 3612.917933][T16965] dump_stack_lvl+0xcd/0x134 23:40:30 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acc7}, 0x0) [ 3612.923678][T16965] should_fail.cold+0x5/0xa [ 3612.930171][T16965] _copy_from_iter+0x389/0x1320 [ 3612.936071][T16965] ? kmem_cache_alloc_node_trace+0x426/0x5c0 [ 3612.945030][T16965] ? hash_and_copy_to_iter+0x200/0x200 [ 3612.951931][T16965] ? memset+0x20/0x40 [ 3612.957012][T16965] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 23:40:31 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4402}]}, 0x30}}, 0x0) [ 3612.964722][T16965] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 3612.973159][T16965] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3612.981110][T16965] ? __phys_addr_symbol+0x2c/0x70 23:40:31 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000000000fffffff000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:31 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acc8}, 0x0) [ 3612.988296][T16965] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 3612.997502][T16965] ? __check_object_size+0x16e/0x3f0 [ 3613.005482][T16965] netlink_sendmsg+0x7d5/0xdb0 [ 3613.012090][T16965] ? netlink_unicast+0x7d0/0x7d0 [ 3613.018160][T16965] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3613.026012][T16965] ? netlink_unicast+0x7d0/0x7d0 [ 3613.032254][T16965] sock_sendmsg+0xcf/0x120 [ 3613.037782][T16965] ____sys_sendmsg+0x6e8/0x810 [ 3613.043852][T16965] ? kernel_sendmsg+0x50/0x50 [ 3613.050039][T16965] ? do_recvmmsg+0x6d0/0x6d0 [ 3613.057302][T16965] ? lock_chain_count+0x20/0x20 [ 3613.064639][T16965] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3613.073723][T16965] ___sys_sendmsg+0xf3/0x170 [ 3613.081041][T16965] ? sendmsg_copy_msghdr+0x160/0x160 [ 3613.082654][T16974] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3613.089044][T16965] ? __fget_files+0x21b/0x3e0 [ 3613.089085][T16965] ? lock_downgrade+0x6e0/0x6e0 [ 3613.089117][T16965] ? __fget_files+0x23d/0x3e0 [ 3613.089143][T16965] ? __fget_light+0xea/0x280 [ 3613.089169][T16965] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3613.089205][T16965] __sys_sendmsg+0xe5/0x1b0 [ 3613.089237][T16965] ? __sys_sendmsg_sock+0x30/0x30 [ 3613.089271][T16965] ? syscall_enter_from_user_mode+0x21/0x70 [ 3613.104033][T16974] nbd: must specify at least one socket [ 3613.110459][T16965] do_syscall_64+0x35/0xb0 [ 3613.110497][T16965] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3613.110529][T16965] RIP: 0033:0x7f0b1aeaaae9 [ 3613.110550][T16965] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3613.110574][T16965] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3613.245037][T16965] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3613.261321][T16965] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3613.273286][T16965] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3613.284815][T16965] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3613.295753][T16965] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 23:40:31 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 6) 23:40:31 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000007fffffff00000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:31 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4502}]}, 0x30}}, 0x0) 23:40:31 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acc9}, 0x0) [ 3613.375704][T16981] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. 23:40:31 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000f0ffffffffffff00000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3613.395955][T16981] nbd: must specify at least one socket [ 3613.421710][T16986] FAULT_INJECTION: forcing a failure. [ 3613.421710][T16986] name failslab, interval 1, probability 0, space 0, times 0 23:40:31 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x5002}]}, 0x30}}, 0x0) [ 3613.450744][T16986] CPU: 0 PID: 16986 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 23:40:31 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000200000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3613.463106][T16986] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3613.477102][T16986] Call Trace: [ 3613.481714][T16986] dump_stack_lvl+0xcd/0x134 [ 3613.487496][T16986] should_fail.cold+0x5/0xa [ 3613.493938][T16986] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xd7/0x290 23:40:31 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000300000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3613.503775][T16986] should_failslab+0x5/0x10 [ 3613.511390][T16986] __kmalloc+0x7e/0x4d0 [ 3613.517530][T16986] genl_family_rcv_msg_attrs_parse.constprop.0+0xd7/0x290 [ 3613.527002][T16986] genl_family_rcv_msg_doit+0xda/0x320 [ 3613.540155][T16986] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3613.549352][T16986] ? mutex_lock_io_nested+0x1150/0x1150 [ 3613.557186][T16986] ? __lock_acquire+0x162f/0x54a0 [ 3613.562617][T16986] ? memset+0x20/0x40 [ 3613.566947][T16986] ? genl_op_from_small+0x23/0x3c0 [ 3613.578174][T16986] ? genl_get_cmd+0x3cf/0x480 [ 3613.583405][T16986] genl_rcv_msg+0x328/0x580 [ 3613.588598][T16986] ? genl_get_cmd+0x480/0x480 [ 3613.593393][T16986] ? nbd_start_device+0xdd0/0xdd0 [ 3613.599110][T16986] ? lock_release+0x720/0x720 [ 3613.604051][T16986] netlink_rcv_skb+0x153/0x420 [ 3613.609484][T16986] ? genl_get_cmd+0x480/0x480 [ 3613.614877][T16986] ? netlink_ack+0xa60/0xa60 [ 3613.620113][T16986] ? netlink_deliver_tap+0x1b1/0xc30 [ 3613.626018][T16986] genl_rcv+0x24/0x40 [ 3613.630774][T16986] netlink_unicast+0x533/0x7d0 [ 3613.636021][T16986] ? netlink_attachskb+0x890/0x890 [ 3613.641894][T16986] netlink_sendmsg+0x86d/0xdb0 [ 3613.647260][T16986] ? netlink_unicast+0x7d0/0x7d0 [ 3613.653193][T16986] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3613.660889][T16986] ? netlink_unicast+0x7d0/0x7d0 [ 3613.667293][T16986] sock_sendmsg+0xcf/0x120 [ 3613.673092][T16986] ____sys_sendmsg+0x6e8/0x810 [ 3613.680558][T16986] ? kernel_sendmsg+0x50/0x50 [ 3613.686837][T16986] ? do_recvmmsg+0x6d0/0x6d0 [ 3613.692239][T16986] ? lock_chain_count+0x20/0x20 [ 3613.697853][T16986] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3613.704844][T16986] ___sys_sendmsg+0xf3/0x170 [ 3613.710313][T16986] ? sendmsg_copy_msghdr+0x160/0x160 [ 3613.716840][T16986] ? __fget_files+0x21b/0x3e0 [ 3613.722434][T16986] ? lock_downgrade+0x6e0/0x6e0 [ 3613.728195][T16986] ? __fget_files+0x23d/0x3e0 [ 3613.733797][T16986] ? __fget_light+0xea/0x280 [ 3613.739195][T16986] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3613.746829][T16986] __sys_sendmsg+0xe5/0x1b0 [ 3613.752424][T16986] ? __sys_sendmsg_sock+0x30/0x30 [ 3613.758296][T16986] ? syscall_enter_from_user_mode+0x21/0x70 [ 3613.764783][T16986] do_syscall_64+0x35/0xb0 [ 3613.769906][T16986] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3613.776655][T16986] RIP: 0033:0x7f0b1aeaaae9 [ 3613.781498][T16986] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3613.806224][T16986] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3613.817116][T16986] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3613.827597][T16986] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3613.835968][T16986] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3613.845406][T16986] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3613.855074][T16986] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3613.866177][ T3710] Bluetooth: hci3: command 0x041b tx timeout 23:40:31 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 7) 23:40:31 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000400000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:32 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acca}, 0x0) 23:40:32 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x5402}]}, 0x30}}, 0x0) [ 3613.976069][T17005] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3613.991062][T17005] nbd: must specify at least one socket 23:40:32 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000500000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3614.000806][T17003] FAULT_INJECTION: forcing a failure. [ 3614.000806][T17003] name failslab, interval 1, probability 0, space 0, times 0 [ 3614.019500][T17003] CPU: 3 PID: 17003 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3614.030229][T17003] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3614.041948][T17003] Call Trace: 23:40:32 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000600000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3614.046557][T17003] dump_stack_lvl+0xcd/0x134 [ 3614.053965][T17003] should_fail.cold+0x5/0xa [ 3614.060148][T17003] should_failslab+0x5/0x10 [ 3614.066153][T17003] kmem_cache_alloc_trace+0x57/0x480 [ 3614.072665][T17003] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3614.081669][T17003] nbd_dev_add+0x54/0xbb0 [ 3614.087542][T17003] nbd_genl_connect+0x11f3/0x1930 [ 3614.094121][T17003] ? nbd_start_device+0xdd0/0xdd0 23:40:32 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000700000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3614.101133][T17003] ? __nla_parse+0x3d/0x50 [ 3614.107064][T17003] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3614.114743][T17003] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3614.124249][T17003] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3614.133215][T17003] genl_family_rcv_msg_doit+0x228/0x320 [ 3614.140342][T17003] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3614.149695][T17003] ? mutex_lock_io_nested+0x1150/0x1150 [ 3614.156943][T17003] ? genl_op_from_small+0x23/0x3c0 [ 3614.163275][T17003] ? genl_get_cmd+0x3cf/0x480 [ 3614.168682][T17003] genl_rcv_msg+0x328/0x580 23:40:32 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000800000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3614.174270][T17003] ? genl_get_cmd+0x480/0x480 [ 3614.180712][T17003] ? nbd_start_device+0xdd0/0xdd0 [ 3614.188585][T17003] ? lock_release+0x720/0x720 [ 3614.195114][T17003] netlink_rcv_skb+0x153/0x420 [ 3614.201576][T17003] ? genl_get_cmd+0x480/0x480 [ 3614.207427][T17003] ? netlink_ack+0xa60/0xa60 [ 3614.213324][T17003] ? netlink_deliver_tap+0x1b1/0xc30 [ 3614.220166][T17003] genl_rcv+0x24/0x40 [ 3614.225149][T17003] netlink_unicast+0x533/0x7d0 [ 3614.230962][T17003] ? netlink_attachskb+0x890/0x890 [ 3614.237889][T17003] netlink_sendmsg+0x86d/0xdb0 [ 3614.245133][T17003] ? netlink_unicast+0x7d0/0x7d0 [ 3614.252503][T17003] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3614.262932][T17003] ? netlink_unicast+0x7d0/0x7d0 [ 3614.274238][T17003] sock_sendmsg+0xcf/0x120 [ 3614.282422][T17003] ____sys_sendmsg+0x6e8/0x810 [ 3614.290909][T17003] ? kernel_sendmsg+0x50/0x50 [ 3614.299399][T17003] ? do_recvmmsg+0x6d0/0x6d0 [ 3614.305974][T17003] ? lock_chain_count+0x20/0x20 [ 3614.313358][T17003] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3614.322667][T17003] ___sys_sendmsg+0xf3/0x170 [ 3614.329221][T17003] ? sendmsg_copy_msghdr+0x160/0x160 [ 3614.336436][T17003] ? __fget_files+0x21b/0x3e0 [ 3614.343036][T17003] ? lock_downgrade+0x6e0/0x6e0 [ 3614.349159][T17003] ? __fget_files+0x23d/0x3e0 [ 3614.355813][T17003] ? __fget_light+0xea/0x280 [ 3614.361731][T17003] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3614.369797][T17003] __sys_sendmsg+0xe5/0x1b0 [ 3614.376047][T17003] ? __sys_sendmsg_sock+0x30/0x30 [ 3614.382014][T17003] ? syscall_enter_from_user_mode+0x21/0x70 [ 3614.392127][T17003] do_syscall_64+0x35/0xb0 [ 3614.399724][T17003] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3614.409867][T17003] RIP: 0033:0x7f0b1aeaaae9 [ 3614.416441][T17003] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3614.448434][T17003] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3614.461169][T17003] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3614.471353][T17003] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3614.481418][T17003] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3614.490153][T17003] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3614.501048][T17003] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3614.513372][T17003] nbd: failed to add new device 23:40:32 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 8) 23:40:32 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000900000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:32 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x5502}]}, 0x30}}, 0x0) 23:40:32 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7accb}, 0x0) [ 3614.586860][T17018] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3614.600686][T17018] nbd: must specify at least one socket 23:40:32 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000a00000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3614.610801][T17022] FAULT_INJECTION: forcing a failure. [ 3614.610801][T17022] name failslab, interval 1, probability 0, space 0, times 0 [ 3614.630313][T17022] CPU: 3 PID: 17022 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3614.641445][T17022] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3614.654160][T17022] Call Trace: [ 3614.658699][T17022] dump_stack_lvl+0xcd/0x134 [ 3614.663760][T17022] should_fail.cold+0x5/0xa [ 3614.669004][T17022] should_failslab+0x5/0x10 [ 3614.674268][T17022] kmem_cache_alloc_node_trace+0x6e/0x5c0 [ 3614.681975][T17022] __kmalloc_node+0x38/0x60 [ 3614.687835][T17022] blk_mq_realloc_tag_set_tags.part.0+0x81/0x190 [ 3614.696374][T17022] blk_mq_alloc_tag_set+0x639/0x12b0 [ 3614.701877][T17022] ? lockdep_init_map_type+0x2c3/0x7b0 [ 3614.709765][T17022] nbd_dev_add+0x2b8/0xbb0 [ 3614.716952][T17022] nbd_genl_connect+0x11f3/0x1930 [ 3614.723434][T17022] ? nbd_start_device+0xdd0/0xdd0 [ 3614.729878][T17022] ? __nla_parse+0x3d/0x50 [ 3614.735519][T17022] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 23:40:32 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000b00000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3614.744789][T17022] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3614.756021][T17022] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3614.765863][T17022] genl_family_rcv_msg_doit+0x228/0x320 [ 3614.773624][T17022] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3614.783377][T17022] ? mutex_lock_io_nested+0x1150/0x1150 [ 3614.789400][T17022] ? genl_op_from_small+0x23/0x3c0 [ 3614.795575][T17022] ? genl_get_cmd+0x3cf/0x480 [ 3614.801806][T17022] genl_rcv_msg+0x328/0x580 [ 3614.807908][T17022] ? genl_get_cmd+0x480/0x480 [ 3614.813767][T17022] ? nbd_start_device+0xdd0/0xdd0 [ 3614.820214][T17022] ? lock_release+0x720/0x720 [ 3614.826387][T17022] netlink_rcv_skb+0x153/0x420 [ 3614.834078][T17022] ? genl_get_cmd+0x480/0x480 23:40:32 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000e00000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3614.839922][T17022] ? netlink_ack+0xa60/0xa60 [ 3614.847291][T17022] ? netlink_deliver_tap+0x1b1/0xc30 [ 3614.854184][T17022] genl_rcv+0x24/0x40 [ 3614.860759][T17022] netlink_unicast+0x533/0x7d0 [ 3614.867448][T17022] ? netlink_attachskb+0x890/0x890 [ 3614.875254][T17022] netlink_sendmsg+0x86d/0xdb0 [ 3614.882041][T17022] ? netlink_unicast+0x7d0/0x7d0 [ 3614.890649][T17022] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3614.902583][T17022] ? netlink_unicast+0x7d0/0x7d0 [ 3614.908808][T17022] sock_sendmsg+0xcf/0x120 [ 3614.915310][T17022] ____sys_sendmsg+0x6e8/0x810 [ 3614.921208][T17022] ? kernel_sendmsg+0x50/0x50 [ 3614.928038][T17022] ? do_recvmmsg+0x6d0/0x6d0 [ 3614.933557][T17022] ? lock_chain_count+0x20/0x20 [ 3614.940574][T17022] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3614.953294][T17022] ___sys_sendmsg+0xf3/0x170 [ 3614.961881][T17022] ? sendmsg_copy_msghdr+0x160/0x160 [ 3614.971104][T17022] ? __fget_files+0x21b/0x3e0 [ 3614.978560][T17022] ? lock_downgrade+0x6e0/0x6e0 [ 3614.985128][T17022] ? __fget_files+0x23d/0x3e0 [ 3614.990946][T17022] ? __fget_light+0xea/0x280 [ 3614.996838][T17022] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3615.005865][T17022] __sys_sendmsg+0xe5/0x1b0 [ 3615.012069][T17022] ? __sys_sendmsg_sock+0x30/0x30 [ 3615.018275][T17022] ? syscall_enter_from_user_mode+0x21/0x70 [ 3615.026020][T17022] do_syscall_64+0x35/0xb0 [ 3615.031560][T17022] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3615.038485][T17022] RIP: 0033:0x7f0b1aeaaae9 [ 3615.043572][T17022] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3615.066346][T17022] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3615.077046][T17022] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3615.087699][T17022] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3615.098264][T17022] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3615.109755][T17022] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3615.121357][T17022] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3615.132576][T17022] nbd: failed to add new device 23:40:33 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000f00000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:33 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 9) 23:40:33 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000001000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:33 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x5802}]}, 0x30}}, 0x0) 23:40:33 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7accc}, 0x0) [ 3615.243329][T17041] FAULT_INJECTION: forcing a failure. 23:40:33 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000001100000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3615.243329][T17041] name failslab, interval 1, probability 0, space 0, times 0 [ 3615.260349][T17041] CPU: 0 PID: 17041 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3615.267944][T17041] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3615.279470][T17041] Call Trace: [ 3615.283532][T17041] dump_stack_lvl+0xcd/0x134 [ 3615.289798][T17041] should_fail.cold+0x5/0xa [ 3615.294891][T17041] should_failslab+0x5/0x10 23:40:33 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000004400000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3615.300242][T17041] kmem_cache_alloc_node_trace+0x6e/0x5c0 [ 3615.308947][T17041] ? rcu_read_lock_sched_held+0x3a/0x70 [ 3615.316098][T17041] __kmalloc_node+0x38/0x60 [ 3615.321802][T17041] blk_mq_alloc_tag_set+0x417/0x12b0 [ 3615.327774][T17041] nbd_dev_add+0x2b8/0xbb0 [ 3615.333255][T17041] nbd_genl_connect+0x11f3/0x1930 [ 3615.339571][T17041] ? nbd_start_device+0xdd0/0xdd0 [ 3615.345832][T17041] ? __nla_parse+0x3d/0x50 [ 3615.351037][T17041] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3615.359077][T17041] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3615.367979][T17041] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3615.377902][T17041] genl_family_rcv_msg_doit+0x228/0x320 23:40:33 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000006000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3615.385035][T17041] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3615.394986][T17041] ? mutex_lock_io_nested+0x1150/0x1150 [ 3615.402989][T17041] ? genl_op_from_small+0x23/0x3c0 [ 3615.409953][T17041] ? genl_get_cmd+0x3cf/0x480 [ 3615.416341][T17041] genl_rcv_msg+0x328/0x580 [ 3615.422585][T17041] ? genl_get_cmd+0x480/0x480 [ 3615.429158][T17041] ? nbd_start_device+0xdd0/0xdd0 [ 3615.435600][T17041] ? lock_release+0x720/0x720 [ 3615.441603][T17041] netlink_rcv_skb+0x153/0x420 23:40:33 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000f000000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3615.448076][T17041] ? genl_get_cmd+0x480/0x480 [ 3615.454719][T17041] ? netlink_ack+0xa60/0xa60 [ 3615.460590][T17041] ? netlink_deliver_tap+0x1b1/0xc30 [ 3615.466983][T17041] genl_rcv+0x24/0x40 [ 3615.472040][T17041] netlink_unicast+0x533/0x7d0 [ 3615.478057][T17041] ? netlink_attachskb+0x890/0x890 [ 3615.485057][T17041] netlink_sendmsg+0x86d/0xdb0 [ 3615.492127][T17041] ? netlink_unicast+0x7d0/0x7d0 [ 3615.500461][T17041] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3615.506916][T17041] ? netlink_unicast+0x7d0/0x7d0 [ 3615.512748][T17041] sock_sendmsg+0xcf/0x120 [ 3615.518772][T17041] ____sys_sendmsg+0x6e8/0x810 [ 3615.525371][T17041] ? kernel_sendmsg+0x50/0x50 [ 3615.532163][T17041] ? do_recvmmsg+0x6d0/0x6d0 [ 3615.540544][T17041] ? lock_chain_count+0x20/0x20 [ 3615.547626][T17041] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3615.558434][T17041] ___sys_sendmsg+0xf3/0x170 [ 3615.565942][T17041] ? sendmsg_copy_msghdr+0x160/0x160 [ 3615.573684][T17041] ? __fget_files+0x21b/0x3e0 [ 3615.580809][T17041] ? lock_downgrade+0x6e0/0x6e0 [ 3615.588974][T17041] ? __fget_files+0x23d/0x3e0 [ 3615.595271][T17041] ? __fget_light+0xea/0x280 [ 3615.601308][T17041] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3615.609266][T17041] __sys_sendmsg+0xe5/0x1b0 [ 3615.616163][T17041] ? __sys_sendmsg_sock+0x30/0x30 [ 3615.622258][T17041] ? syscall_enter_from_user_mode+0x21/0x70 [ 3615.629614][T17041] do_syscall_64+0x35/0xb0 [ 3615.635163][T17041] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3615.642662][T17041] RIP: 0033:0x7f0b1aeaaae9 [ 3615.648593][T17041] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3615.673517][T17041] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3615.684769][T17041] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3615.695551][T17041] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3615.706327][T17041] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3615.716138][T17041] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3615.726743][T17041] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3615.737229][T17041] nbd: failed to add new device [ 3615.759062][T17046] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3615.774556][T17046] nbd: must specify at least one socket 23:40:33 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 10) 23:40:33 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000003000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:33 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x5902}]}, 0x30}}, 0x0) 23:40:33 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7accd}, 0x0) [ 3615.860342][T17058] FAULT_INJECTION: forcing a failure. [ 3615.860342][T17058] name failslab, interval 1, probability 0, space 0, times 0 [ 3615.890451][T17058] CPU: 2 PID: 17058 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3615.902805][T17058] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3615.914661][T17058] Call Trace: [ 3615.918856][T17058] dump_stack_lvl+0xcd/0x134 [ 3615.925200][T17058] should_fail.cold+0x5/0xa [ 3615.930865][T17058] should_failslab+0x5/0x10 23:40:34 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000005000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3615.936526][T17058] kmem_cache_alloc_node_trace+0x6e/0x5c0 [ 3615.944376][T17058] ? blk_mq_map_queues+0x499/0x680 [ 3615.951038][T17058] blk_mq_init_tags+0x6a/0x170 [ 3615.957334][T17058] blk_mq_alloc_rq_map+0x81/0x200 [ 3615.963863][T17058] blk_mq_alloc_tag_set+0x8ca/0x12b0 [ 3615.971159][T17058] nbd_dev_add+0x2b8/0xbb0 [ 3615.977370][T17058] nbd_genl_connect+0x11f3/0x1930 [ 3615.984991][T17058] ? nbd_start_device+0xdd0/0xdd0 [ 3615.991985][T17058] ? __nla_parse+0x3d/0x50 [ 3615.997621][T17058] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3616.006463][T17058] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3616.018443][T17058] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3616.029641][T17058] genl_family_rcv_msg_doit+0x228/0x320 [ 3616.037982][T17058] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3616.048577][T17058] ? mutex_lock_io_nested+0x1150/0x1150 [ 3616.056516][T17058] ? genl_op_from_small+0x23/0x3c0 [ 3616.063425][T17058] ? genl_get_cmd+0x3cf/0x480 23:40:34 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000006000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:34 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000007000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3616.070290][T17058] genl_rcv_msg+0x328/0x580 [ 3616.077911][T17058] ? genl_get_cmd+0x480/0x480 [ 3616.085604][T17058] ? nbd_start_device+0xdd0/0xdd0 [ 3616.091052][T17058] ? lock_release+0x720/0x720 [ 3616.097340][T17058] netlink_rcv_skb+0x153/0x420 [ 3616.103625][T17058] ? genl_get_cmd+0x480/0x480 [ 3616.110279][T17058] ? netlink_ack+0xa60/0xa60 [ 3616.117312][T17058] ? netlink_deliver_tap+0x1b1/0xc30 [ 3616.125767][T17058] genl_rcv+0x24/0x40 [ 3616.130759][T17058] netlink_unicast+0x533/0x7d0 [ 3616.136634][T17058] ? netlink_attachskb+0x890/0x890 [ 3616.143967][T17058] netlink_sendmsg+0x86d/0xdb0 [ 3616.151000][T17058] ? netlink_unicast+0x7d0/0x7d0 [ 3616.157112][T17058] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3616.165087][T17058] ? netlink_unicast+0x7d0/0x7d0 [ 3616.171160][T17058] sock_sendmsg+0xcf/0x120 [ 3616.176613][T17058] ____sys_sendmsg+0x6e8/0x810 [ 3616.182903][T17058] ? kernel_sendmsg+0x50/0x50 [ 3616.189058][T17058] ? do_recvmmsg+0x6d0/0x6d0 [ 3616.195174][T17058] ? lock_chain_count+0x20/0x20 [ 3616.201311][T17058] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3616.209420][T17058] ___sys_sendmsg+0xf3/0x170 [ 3616.215328][T17058] ? sendmsg_copy_msghdr+0x160/0x160 [ 3616.222323][T17058] ? __fget_files+0x21b/0x3e0 [ 3616.228257][T17058] ? lock_downgrade+0x6e0/0x6e0 [ 3616.234432][T17058] ? __fget_files+0x23d/0x3e0 [ 3616.241012][T17058] ? __fget_light+0xea/0x280 [ 3616.246491][T17058] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3616.254515][T17058] __sys_sendmsg+0xe5/0x1b0 [ 3616.261326][T17058] ? __sys_sendmsg_sock+0x30/0x30 [ 3616.268019][T17058] ? syscall_enter_from_user_mode+0x21/0x70 [ 3616.276035][T17058] do_syscall_64+0x35/0xb0 [ 3616.281715][T17058] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3616.289670][T17058] RIP: 0033:0x7f0b1aeaaae9 [ 3616.295378][T17058] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3616.319719][T17058] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3616.331347][T17058] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3616.341504][T17058] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3616.351941][T17058] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3616.362215][T17058] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3616.371452][T17058] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 23:40:34 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000009000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3616.385064][T12414] Bluetooth: hci3: command 0x040f tx timeout [ 3616.387241][T17058] blk-mq: reduced tag depth (128 -> 64) [ 3616.421833][T17061] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3616.436266][T17061] nbd: must specify at least one socket 23:40:34 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 11) 23:40:34 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000000a000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:34 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x5b03}]}, 0x30}}, 0x0) 23:40:34 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acce}, 0x0) 23:40:34 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000000b000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3616.524420][T17083] FAULT_INJECTION: forcing a failure. [ 3616.524420][T17083] name failslab, interval 1, probability 0, space 0, times 0 [ 3616.539465][T17083] CPU: 2 PID: 17083 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3616.550252][T17083] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3616.561077][T17083] Call Trace: [ 3616.565113][T17083] dump_stack_lvl+0xcd/0x134 [ 3616.570153][T17083] should_fail.cold+0x5/0xa [ 3616.575759][T17083] should_failslab+0x5/0x10 23:40:34 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000000e000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3616.582071][T17083] kmem_cache_alloc_node_trace+0x6e/0x5c0 [ 3616.589198][T17083] __kmalloc_node+0x38/0x60 [ 3616.595759][T17083] sbitmap_init_node+0x1c3/0x6f0 [ 3616.602934][T17083] sbitmap_queue_init_node+0x3e/0x480 [ 3616.609607][T17083] ? lockdep_init_map_type+0x2c3/0x7b0 [ 3616.615716][T17083] blk_mq_init_bitmaps+0x57/0x180 [ 3616.623183][T17083] blk_mq_init_tags+0x10b/0x170 [ 3616.629181][T17083] blk_mq_alloc_rq_map+0x81/0x200 [ 3616.635152][T17083] blk_mq_alloc_tag_set+0x8ca/0x12b0 [ 3616.641674][T17083] nbd_dev_add+0x2b8/0xbb0 [ 3616.647408][T17083] nbd_genl_connect+0x11f3/0x1930 [ 3616.653666][T17083] ? nbd_start_device+0xdd0/0xdd0 [ 3616.660026][T17083] ? __nla_parse+0x3d/0x50 [ 3616.665446][T17083] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3616.672985][T17083] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3616.681537][T17083] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3616.690357][T17083] genl_family_rcv_msg_doit+0x228/0x320 23:40:34 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000000f000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:34 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000011000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3616.697468][T17083] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3616.707721][T17083] ? mutex_lock_io_nested+0x1150/0x1150 [ 3616.714930][T17083] ? genl_op_from_small+0x23/0x3c0 [ 3616.721259][T17083] ? genl_get_cmd+0x3cf/0x480 [ 3616.726997][T17083] genl_rcv_msg+0x328/0x580 [ 3616.732885][T17083] ? genl_get_cmd+0x480/0x480 [ 3616.739069][T17083] ? nbd_start_device+0xdd0/0xdd0 [ 3616.745505][T17083] ? lock_release+0x720/0x720 [ 3616.752409][T17083] netlink_rcv_skb+0x153/0x420 [ 3616.759295][T17083] ? genl_get_cmd+0x480/0x480 [ 3616.766474][T17083] ? netlink_ack+0xa60/0xa60 [ 3616.772342][T17083] ? netlink_deliver_tap+0x1b1/0xc30 [ 3616.778793][T17083] genl_rcv+0x24/0x40 [ 3616.784274][T17083] netlink_unicast+0x533/0x7d0 [ 3616.789898][T17083] ? netlink_attachskb+0x890/0x890 [ 3616.795565][T17083] netlink_sendmsg+0x86d/0xdb0 [ 3616.801590][T17083] ? netlink_unicast+0x7d0/0x7d0 [ 3616.807000][T17083] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3616.813811][T17083] ? netlink_unicast+0x7d0/0x7d0 [ 3616.820167][T17083] sock_sendmsg+0xcf/0x120 [ 3616.826245][T17083] ____sys_sendmsg+0x6e8/0x810 [ 3616.832516][T17083] ? kernel_sendmsg+0x50/0x50 [ 3616.838360][T17083] ? do_recvmmsg+0x6d0/0x6d0 [ 3616.843855][T17083] ? lock_chain_count+0x20/0x20 [ 3616.850709][T17083] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3616.858858][T17083] ___sys_sendmsg+0xf3/0x170 [ 3616.865308][T17083] ? sendmsg_copy_msghdr+0x160/0x160 [ 3616.872699][T17083] ? __fget_files+0x21b/0x3e0 [ 3616.878694][T17083] ? lock_downgrade+0x6e0/0x6e0 [ 3616.884728][T17083] ? __fget_files+0x23d/0x3e0 [ 3616.890469][T17083] ? __fget_light+0xea/0x280 [ 3616.896132][T17083] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3616.904431][T17083] __sys_sendmsg+0xe5/0x1b0 [ 3616.910169][T17083] ? __sys_sendmsg_sock+0x30/0x30 [ 3616.917228][T17083] ? syscall_enter_from_user_mode+0x21/0x70 [ 3616.925990][T17083] do_syscall_64+0x35/0xb0 [ 3616.931449][T17083] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3616.939194][T17083] RIP: 0033:0x7f0b1aeaaae9 [ 3616.945314][T17083] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3616.970396][T17083] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3616.980397][T17083] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3616.990509][T17083] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3617.001134][T17083] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3617.010826][T17083] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3617.021589][T17083] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3617.040518][T17083] blk-mq: reduced tag depth (128 -> 64) [ 3617.072193][T17080] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. 23:40:35 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 12) 23:40:35 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000004422000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3617.085037][T17080] nbd: must specify at least one socket 23:40:35 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x5c02}]}, 0x30}}, 0x0) 23:40:35 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7accf}, 0x0) 23:40:35 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000044000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3617.177312][T17102] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3617.208814][T17102] nbd: must specify at least one socket 23:40:35 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000002244000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3617.220241][T17103] FAULT_INJECTION: forcing a failure. [ 3617.220241][T17103] name failslab, interval 1, probability 0, space 0, times 0 [ 3617.249135][T17103] CPU: 0 PID: 17103 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 23:40:35 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000060000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3617.259010][T17103] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3617.270323][T17103] Call Trace: [ 3617.275259][T17103] dump_stack_lvl+0xcd/0x134 [ 3617.282045][T17103] should_fail.cold+0x5/0xa [ 3617.288763][T17103] should_failslab+0x5/0x10 [ 3617.294663][T17103] kmem_cache_alloc_node_trace+0x6e/0x5c0 [ 3617.302097][T17103] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3617.310555][T17103] sbitmap_queue_init_node+0x1de/0x480 [ 3617.317743][T17103] blk_mq_init_bitmaps+0x57/0x180 [ 3617.324149][T17103] blk_mq_init_tags+0x10b/0x170 23:40:35 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000f0000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3617.330517][T17103] blk_mq_alloc_rq_map+0x81/0x200 [ 3617.337743][T17103] blk_mq_alloc_tag_set+0x8ca/0x12b0 [ 3617.345301][T17103] nbd_dev_add+0x2b8/0xbb0 [ 3617.351041][T17103] nbd_genl_connect+0x11f3/0x1930 [ 3617.357318][T17103] ? nbd_start_device+0xdd0/0xdd0 [ 3617.363723][T17103] ? __nla_parse+0x3d/0x50 [ 3617.369188][T17103] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3617.377247][T17103] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3617.386225][T17103] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3617.395226][T17103] genl_family_rcv_msg_doit+0x228/0x320 [ 3617.403682][T17103] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3617.413131][T17103] ? mutex_lock_io_nested+0x1150/0x1150 [ 3617.420716][T17103] ? genl_op_from_small+0x23/0x3c0 [ 3617.427379][T17103] ? genl_get_cmd+0x3cf/0x480 [ 3617.433509][T17103] genl_rcv_msg+0x328/0x580 [ 3617.439994][T17103] ? genl_get_cmd+0x480/0x480 [ 3617.446215][T17103] ? nbd_start_device+0xdd0/0xdd0 [ 3617.452731][T17103] ? lock_release+0x720/0x720 [ 3617.458726][T17103] netlink_rcv_skb+0x153/0x420 [ 3617.466048][T17103] ? genl_get_cmd+0x480/0x480 [ 3617.472132][T17103] ? netlink_ack+0xa60/0xa60 [ 3617.478053][T17103] ? netlink_deliver_tap+0x1b1/0xc30 [ 3617.484791][T17103] genl_rcv+0x24/0x40 [ 3617.490028][T17103] netlink_unicast+0x533/0x7d0 [ 3617.496273][T17103] ? netlink_attachskb+0x890/0x890 [ 3617.502681][T17103] netlink_sendmsg+0x86d/0xdb0 [ 3617.509420][T17103] ? netlink_unicast+0x7d0/0x7d0 [ 3617.516735][T17103] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3617.524969][T17103] ? netlink_unicast+0x7d0/0x7d0 [ 3617.531263][T17103] sock_sendmsg+0xcf/0x120 [ 3617.537565][T17103] ____sys_sendmsg+0x6e8/0x810 [ 3617.543825][T17103] ? kernel_sendmsg+0x50/0x50 [ 3617.549879][T17103] ? do_recvmmsg+0x6d0/0x6d0 [ 3617.555649][T17103] ? lock_chain_count+0x20/0x20 [ 3617.562483][T17103] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3617.569871][T17103] ___sys_sendmsg+0xf3/0x170 [ 3617.575661][T17103] ? sendmsg_copy_msghdr+0x160/0x160 [ 3617.583057][T17103] ? __fget_files+0x21b/0x3e0 [ 3617.589555][T17103] ? lock_downgrade+0x6e0/0x6e0 [ 3617.595708][T17103] ? __fget_files+0x23d/0x3e0 [ 3617.601529][T17103] ? __fget_light+0xea/0x280 [ 3617.607143][T17103] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3617.615530][T17103] __sys_sendmsg+0xe5/0x1b0 [ 3617.621833][T17103] ? __sys_sendmsg_sock+0x30/0x30 [ 3617.628239][T17103] ? syscall_enter_from_user_mode+0x21/0x70 [ 3617.636004][T17103] do_syscall_64+0x35/0xb0 [ 3617.641925][T17103] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3617.649350][T17103] RIP: 0033:0x7f0b1aeaaae9 [ 3617.655831][T17103] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3617.682167][T17103] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3617.693943][T17103] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3617.704226][T17103] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3617.715534][T17103] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3617.725996][T17103] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3617.735849][T17103] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3617.751696][T17103] blk-mq: reduced tag depth (128 -> 64) 23:40:35 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 13) 23:40:35 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000040030000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:35 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x5c03}]}, 0x30}}, 0x0) 23:40:35 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acd0}, 0x0) [ 3617.864774][T17121] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. 23:40:35 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000003400000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3617.877326][T17121] nbd: must specify at least one socket [ 3617.926754][T17123] FAULT_INJECTION: forcing a failure. [ 3617.926754][T17123] name failslab, interval 1, probability 0, space 0, times 0 [ 3617.945676][T17123] CPU: 0 PID: 17123 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 23:40:36 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x5d02}]}, 0x30}}, 0x0) 23:40:36 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000fffff00000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3617.957184][T17123] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3617.968142][T17123] Call Trace: [ 3617.971622][T17123] dump_stack_lvl+0xcd/0x134 [ 3617.976915][T17123] should_fail.cold+0x5/0xa [ 3617.981435][T17123] should_failslab+0x5/0x10 [ 3617.986146][T17123] kmem_cache_alloc_node_trace+0x6e/0x5c0 [ 3617.992501][T17123] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3617.999252][T17123] sbitmap_queue_init_node+0x1de/0x480 23:40:36 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000100000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3618.005689][T17123] blk_mq_init_bitmaps+0x87/0x180 [ 3618.012580][T17123] blk_mq_init_tags+0x10b/0x170 [ 3618.018861][T17123] blk_mq_alloc_rq_map+0x81/0x200 [ 3618.024783][T17123] blk_mq_alloc_tag_set+0x8ca/0x12b0 [ 3618.030725][T17123] nbd_dev_add+0x2b8/0xbb0 [ 3618.035651][T17123] nbd_genl_connect+0x11f3/0x1930 [ 3618.041034][T17123] ? nbd_start_device+0xdd0/0xdd0 [ 3618.046737][T17123] ? __nla_parse+0x3d/0x50 [ 3618.051726][T17123] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3618.058845][T17123] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3618.066857][T17123] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3618.075500][T17123] genl_family_rcv_msg_doit+0x228/0x320 [ 3618.081612][T17123] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3618.089505][T17123] ? mutex_lock_io_nested+0x1150/0x1150 [ 3618.095137][T17123] ? genl_op_from_small+0x23/0x3c0 [ 3618.101705][T17123] ? genl_get_cmd+0x3cf/0x480 [ 3618.107528][T17123] genl_rcv_msg+0x328/0x580 [ 3618.113885][T17123] ? genl_get_cmd+0x480/0x480 [ 3618.119750][T17123] ? nbd_start_device+0xdd0/0xdd0 [ 3618.125899][T17123] ? lock_release+0x720/0x720 [ 3618.131328][T17123] netlink_rcv_skb+0x153/0x420 [ 3618.137181][T17123] ? genl_get_cmd+0x480/0x480 [ 3618.143047][T17123] ? netlink_ack+0xa60/0xa60 [ 3618.149250][T17123] ? netlink_deliver_tap+0x1b1/0xc30 [ 3618.156386][T17123] genl_rcv+0x24/0x40 [ 3618.161201][T17123] netlink_unicast+0x533/0x7d0 [ 3618.166952][T17123] ? netlink_attachskb+0x890/0x890 [ 3618.173528][T17123] netlink_sendmsg+0x86d/0xdb0 [ 3618.179305][T17123] ? netlink_unicast+0x7d0/0x7d0 [ 3618.185349][T17123] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3618.193347][T17123] ? netlink_unicast+0x7d0/0x7d0 [ 3618.199629][T17123] sock_sendmsg+0xcf/0x120 [ 3618.204869][T17123] ____sys_sendmsg+0x6e8/0x810 [ 3618.210484][T17123] ? kernel_sendmsg+0x50/0x50 [ 3618.216435][T17123] ? do_recvmmsg+0x6d0/0x6d0 [ 3618.222167][T17123] ? lock_chain_count+0x20/0x20 [ 3618.226995][T17123] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3618.233857][T17123] ___sys_sendmsg+0xf3/0x170 [ 3618.239506][T17123] ? sendmsg_copy_msghdr+0x160/0x160 [ 3618.245852][T17123] ? __fget_files+0x21b/0x3e0 [ 3618.251370][T17123] ? lock_downgrade+0x6e0/0x6e0 [ 3618.257091][T17123] ? __fget_files+0x23d/0x3e0 [ 3618.262642][T17123] ? __fget_light+0xea/0x280 [ 3618.268891][T17123] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3618.276686][T17123] __sys_sendmsg+0xe5/0x1b0 [ 3618.282728][T17123] ? __sys_sendmsg_sock+0x30/0x30 [ 3618.288822][T17123] ? syscall_enter_from_user_mode+0x21/0x70 [ 3618.296217][T17123] do_syscall_64+0x35/0xb0 [ 3618.301740][T17123] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3618.309162][T17123] RIP: 0033:0x7f0b1aeaaae9 [ 3618.314713][T17123] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3618.339872][T17123] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3618.349935][T17123] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3618.360370][T17123] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3618.370661][T17123] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3618.379834][T17123] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3618.389339][T17123] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3618.402939][T17123] blk-mq: reduced tag depth (128 -> 64) [ 3618.407025][ T3710] Bluetooth: hci3: command 0x0419 tx timeout 23:40:36 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 14) 23:40:36 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000200000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:36 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acd1}, 0x0) 23:40:36 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x5e01}]}, 0x30}}, 0x0) [ 3618.521066][T17143] FAULT_INJECTION: forcing a failure. [ 3618.521066][T17143] name failslab, interval 1, probability 0, space 0, times 0 [ 3618.539565][T17143] CPU: 1 PID: 17143 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 23:40:36 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000300000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3618.549503][T17143] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3618.564807][T17143] Call Trace: [ 3618.569174][T17143] dump_stack_lvl+0xcd/0x134 [ 3618.574803][T17143] should_fail.cold+0x5/0xa [ 3618.580571][T17143] should_failslab+0x5/0x10 [ 3618.586313][T17143] kmem_cache_alloc_node_trace+0x6e/0x5c0 [ 3618.593508][T17143] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3618.602615][T17143] ? blk_mq_init_bitmaps+0x9d/0x180 [ 3618.608936][T17143] __kmalloc_node+0x38/0x60 [ 3618.614849][T17143] blk_mq_alloc_rq_map+0xc3/0x200 [ 3618.621044][T17143] blk_mq_alloc_tag_set+0x8ca/0x12b0 [ 3618.627319][T17143] nbd_dev_add+0x2b8/0xbb0 [ 3618.632180][T17143] nbd_genl_connect+0x11f3/0x1930 [ 3618.638091][T17143] ? nbd_start_device+0xdd0/0xdd0 [ 3618.645271][T17143] ? __nla_parse+0x3d/0x50 [ 3618.650745][T17143] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3618.658285][T17143] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 23:40:36 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000400000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:36 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000500000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3618.667824][T17143] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3618.677545][T17143] genl_family_rcv_msg_doit+0x228/0x320 [ 3618.684369][T17143] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3618.693778][T17143] ? mutex_lock_io_nested+0x1150/0x1150 [ 3618.700873][T17143] ? genl_op_from_small+0x23/0x3c0 [ 3618.708583][T17143] ? genl_get_cmd+0x3cf/0x480 [ 3618.714986][T17143] genl_rcv_msg+0x328/0x580 [ 3618.721254][T17143] ? genl_get_cmd+0x480/0x480 [ 3618.727436][T17143] ? nbd_start_device+0xdd0/0xdd0 [ 3618.734060][T17143] ? lock_release+0x720/0x720 [ 3618.739569][T17143] netlink_rcv_skb+0x153/0x420 [ 3618.746113][T17143] ? genl_get_cmd+0x480/0x480 [ 3618.752145][T17143] ? netlink_ack+0xa60/0xa60 [ 3618.758177][T17143] ? netlink_deliver_tap+0x1b1/0xc30 [ 3618.764781][T17143] genl_rcv+0x24/0x40 [ 3618.769425][T17143] netlink_unicast+0x533/0x7d0 [ 3618.775620][T17143] ? netlink_attachskb+0x890/0x890 [ 3618.782559][T17143] netlink_sendmsg+0x86d/0xdb0 [ 3618.788689][T17143] ? netlink_unicast+0x7d0/0x7d0 [ 3618.794628][T17143] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3618.800892][T17143] ? netlink_unicast+0x7d0/0x7d0 [ 3618.808132][T17143] sock_sendmsg+0xcf/0x120 [ 3618.814046][T17143] ____sys_sendmsg+0x6e8/0x810 [ 3618.820724][T17143] ? kernel_sendmsg+0x50/0x50 [ 3618.826903][T17143] ? do_recvmmsg+0x6d0/0x6d0 [ 3618.832896][T17143] ? lock_chain_count+0x20/0x20 [ 3618.837962][T17143] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3618.845860][T17143] ___sys_sendmsg+0xf3/0x170 [ 3618.851956][T17143] ? sendmsg_copy_msghdr+0x160/0x160 [ 3618.859252][T17143] ? __fget_files+0x21b/0x3e0 [ 3618.866211][T17143] ? lock_downgrade+0x6e0/0x6e0 [ 3618.873013][T17143] ? __fget_files+0x23d/0x3e0 [ 3618.879277][T17143] ? __fget_light+0xea/0x280 [ 3618.884926][T17143] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3618.892801][T17143] __sys_sendmsg+0xe5/0x1b0 [ 3618.898489][T17143] ? __sys_sendmsg_sock+0x30/0x30 [ 3618.905019][T17143] ? syscall_enter_from_user_mode+0x21/0x70 [ 3618.913026][T17143] do_syscall_64+0x35/0xb0 [ 3618.918174][T17143] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3618.925806][T17143] RIP: 0033:0x7f0b1aeaaae9 [ 3618.931075][T17143] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3618.953399][T17143] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3618.963527][T17143] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3618.972924][T17143] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3618.982371][T17143] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3618.991504][T17143] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3619.000794][T17143] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 23:40:36 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000600000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3619.012669][T17143] blk-mq: reduced tag depth (128 -> 64) [ 3619.049010][T17145] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3619.061269][T17145] nbd: must specify at least one socket 23:40:37 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 15) 23:40:37 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000700000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:37 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acd2}, 0x0) [ 3619.144551][T17166] FAULT_INJECTION: forcing a failure. [ 3619.144551][T17166] name failslab, interval 1, probability 0, space 0, times 0 [ 3619.164452][T17166] CPU: 0 PID: 17166 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 23:40:37 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x5f03}]}, 0x30}}, 0x0) 23:40:37 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000800000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3619.176315][T17166] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3619.189809][T17166] Call Trace: [ 3619.194249][T17166] dump_stack_lvl+0xcd/0x134 [ 3619.203612][T17166] should_fail.cold+0x5/0xa 23:40:37 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000900000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3619.210145][T17166] should_failslab+0x5/0x10 [ 3619.217143][T17166] kmem_cache_alloc_node_trace+0x6e/0x5c0 [ 3619.225809][T17166] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3619.236382][T17166] __kmalloc_node+0x38/0x60 [ 3619.243614][T17166] blk_mq_alloc_rq_map+0x104/0x200 [ 3619.252277][T17166] blk_mq_alloc_tag_set+0x8ca/0x12b0 [ 3619.260727][T17166] nbd_dev_add+0x2b8/0xbb0 23:40:37 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000a00000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3619.268056][T17166] nbd_genl_connect+0x11f3/0x1930 [ 3619.277270][T17166] ? nbd_start_device+0xdd0/0xdd0 [ 3619.285032][T17166] ? __nla_parse+0x3d/0x50 [ 3619.291107][T17166] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3619.300955][T17166] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3619.310229][T17166] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3619.319732][T17166] genl_family_rcv_msg_doit+0x228/0x320 [ 3619.326470][T17166] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 23:40:37 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000b00000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3619.337951][T17166] ? mutex_lock_io_nested+0x1150/0x1150 [ 3619.346509][T17166] ? genl_op_from_small+0x23/0x3c0 [ 3619.352986][T17166] ? genl_get_cmd+0x3cf/0x480 [ 3619.359615][T17166] genl_rcv_msg+0x328/0x580 [ 3619.365277][T17166] ? genl_get_cmd+0x480/0x480 [ 3619.372198][T17166] ? nbd_start_device+0xdd0/0xdd0 [ 3619.380285][T17166] ? lock_release+0x720/0x720 [ 3619.387977][T17166] netlink_rcv_skb+0x153/0x420 [ 3619.394916][T17166] ? genl_get_cmd+0x480/0x480 [ 3619.401175][T17166] ? netlink_ack+0xa60/0xa60 [ 3619.406955][T17166] ? netlink_deliver_tap+0x1b1/0xc30 [ 3619.416011][T17166] genl_rcv+0x24/0x40 [ 3619.423200][T17166] netlink_unicast+0x533/0x7d0 [ 3619.429757][T17166] ? netlink_attachskb+0x890/0x890 [ 3619.436120][T17166] netlink_sendmsg+0x86d/0xdb0 [ 3619.441666][T17166] ? netlink_unicast+0x7d0/0x7d0 [ 3619.448164][T17166] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3619.455923][T17166] ? netlink_unicast+0x7d0/0x7d0 [ 3619.461996][T17166] sock_sendmsg+0xcf/0x120 [ 3619.467363][T17166] ____sys_sendmsg+0x6e8/0x810 [ 3619.474114][T17166] ? kernel_sendmsg+0x50/0x50 [ 3619.479765][T17166] ? do_recvmmsg+0x6d0/0x6d0 [ 3619.485478][T17166] ? lock_chain_count+0x20/0x20 [ 3619.494403][T17166] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3619.505250][T17166] ___sys_sendmsg+0xf3/0x170 [ 3619.511352][T17166] ? sendmsg_copy_msghdr+0x160/0x160 [ 3619.517846][T17166] ? __fget_files+0x21b/0x3e0 [ 3619.524546][T17166] ? lock_downgrade+0x6e0/0x6e0 [ 3619.530566][T17166] ? __fget_files+0x23d/0x3e0 [ 3619.537432][T17166] ? __fget_light+0xea/0x280 [ 3619.543794][T17166] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3619.552413][T17166] __sys_sendmsg+0xe5/0x1b0 [ 3619.559293][T17166] ? __sys_sendmsg_sock+0x30/0x30 [ 3619.565517][T17166] ? syscall_enter_from_user_mode+0x21/0x70 [ 3619.572943][T17166] do_syscall_64+0x35/0xb0 [ 3619.578262][T17166] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3619.586558][T17166] RIP: 0033:0x7f0b1aeaaae9 [ 3619.592049][T17166] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3619.618958][T17166] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3619.631886][T17166] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3619.641684][T17166] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3619.651374][T17166] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3619.660902][T17166] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3619.669708][T17166] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3619.682567][T17166] blk-mq: reduced tag depth (128 -> 64) [ 3619.733583][T17170] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3619.746829][T17170] nbd: must specify at least one socket 23:40:37 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 16) 23:40:37 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000e00000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:37 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acd3}, 0x0) 23:40:37 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x6102}]}, 0x30}}, 0x0) [ 3619.801522][T17184] FAULT_INJECTION: forcing a failure. 23:40:37 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000f00000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3619.801522][T17184] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 3619.823212][T17184] CPU: 2 PID: 17184 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3619.834226][T17184] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3619.847208][T17184] Call Trace: [ 3619.851740][T17184] dump_stack_lvl+0xcd/0x134 [ 3619.858722][T17184] should_fail.cold+0x5/0xa [ 3619.864116][T17184] prepare_alloc_pages+0x17b/0x570 [ 3619.870590][T17184] ? ___sys_sendmsg+0xf3/0x170 [ 3619.876930][T17184] ? __sys_sendmsg+0xe5/0x1b0 [ 3619.882840][T17184] ? do_syscall_64+0x35/0xb0 [ 3619.888969][T17184] __alloc_pages+0x12f/0x500 [ 3619.894590][T17184] ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0 [ 3619.902351][T17184] ? fs_reclaim_acquire+0xb2/0x160 [ 3619.908781][T17184] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3619.916872][T17184] ? __cpu_to_node+0x82/0xb0 [ 3619.923067][T17184] ? blk_mq_hw_queue_to_node+0xe8/0x140 [ 3619.930734][T17184] blk_mq_alloc_rqs+0x258/0x7a0 [ 3619.936854][T17184] ? blk_mq_alloc_rq_map+0x8e/0x200 [ 3619.943421][T17184] blk_mq_alloc_tag_set+0x8e8/0x12b0 [ 3619.949263][T17184] nbd_dev_add+0x2b8/0xbb0 23:40:37 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000001000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:38 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000001100000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3619.954609][T17184] nbd_genl_connect+0x11f3/0x1930 [ 3619.961151][T17184] ? nbd_start_device+0xdd0/0xdd0 [ 3619.967842][T17184] ? __nla_parse+0x3d/0x50 [ 3619.973044][T17184] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3619.980723][T17184] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3619.990513][T17184] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3620.000114][T17184] genl_family_rcv_msg_doit+0x228/0x320 [ 3620.006229][T17184] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3620.015738][T17184] ? mutex_lock_io_nested+0x1150/0x1150 [ 3620.023513][T17184] ? genl_op_from_small+0x23/0x3c0 [ 3620.030060][T17184] ? genl_get_cmd+0x3cf/0x480 [ 3620.036408][T17184] genl_rcv_msg+0x328/0x580 [ 3620.042285][T17184] ? genl_get_cmd+0x480/0x480 [ 3620.048253][T17184] ? nbd_start_device+0xdd0/0xdd0 [ 3620.055172][T17184] ? lock_release+0x720/0x720 [ 3620.061732][T17184] netlink_rcv_skb+0x153/0x420 [ 3620.067914][T17184] ? genl_get_cmd+0x480/0x480 [ 3620.073759][T17184] ? netlink_ack+0xa60/0xa60 [ 3620.079393][T17184] ? netlink_deliver_tap+0x1b1/0xc30 [ 3620.086138][T17184] genl_rcv+0x24/0x40 [ 3620.091196][T17184] netlink_unicast+0x533/0x7d0 [ 3620.097491][T17184] ? netlink_attachskb+0x890/0x890 [ 3620.103558][T17184] netlink_sendmsg+0x86d/0xdb0 [ 3620.110580][T17184] ? netlink_unicast+0x7d0/0x7d0 [ 3620.117194][T17184] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3620.125764][T17184] ? netlink_unicast+0x7d0/0x7d0 [ 3620.131953][T17184] sock_sendmsg+0xcf/0x120 [ 3620.138761][T17184] ____sys_sendmsg+0x6e8/0x810 [ 3620.145624][T17184] ? kernel_sendmsg+0x50/0x50 [ 3620.151939][T17184] ? do_recvmmsg+0x6d0/0x6d0 [ 3620.157457][T17184] ? lock_chain_count+0x20/0x20 [ 3620.163828][T17184] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3620.171287][T17184] ___sys_sendmsg+0xf3/0x170 [ 3620.177389][T17184] ? sendmsg_copy_msghdr+0x160/0x160 [ 3620.183986][T17184] ? __fget_files+0x21b/0x3e0 [ 3620.190067][T17184] ? lock_downgrade+0x6e0/0x6e0 [ 3620.196288][T17184] ? __fget_files+0x23d/0x3e0 [ 3620.202176][T17184] ? __fget_light+0xea/0x280 [ 3620.207828][T17184] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3620.216532][T17184] __sys_sendmsg+0xe5/0x1b0 [ 3620.222377][T17184] ? __sys_sendmsg_sock+0x30/0x30 [ 3620.228551][T17184] ? syscall_enter_from_user_mode+0x21/0x70 [ 3620.237128][T17184] do_syscall_64+0x35/0xb0 [ 3620.242985][T17184] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3620.251060][T17184] RIP: 0033:0x7f0b1aeaaae9 [ 3620.256701][T17184] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3620.282441][T17184] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3620.294284][T17184] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3620.304859][T17184] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3620.316789][T17184] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3620.328025][T17184] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3620.338507][T17184] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 23:40:38 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000004400000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3620.390851][T17192] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3620.405370][T17192] nbd: must specify at least one socket 23:40:38 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 17) 23:40:38 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000224400000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:38 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acd4}, 0x0) 23:40:38 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x6200}]}, 0x30}}, 0x0) [ 3620.462079][T17201] FAULT_INJECTION: forcing a failure. 23:40:38 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000006000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3620.462079][T17201] name failslab, interval 1, probability 0, space 0, times 0 [ 3620.483827][T17201] CPU: 1 PID: 17201 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3620.495699][T17201] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3620.508506][T17201] Call Trace: [ 3620.513462][T17201] dump_stack_lvl+0xcd/0x134 [ 3620.520444][T17201] should_fail.cold+0x5/0xa [ 3620.527433][T17201] should_failslab+0x5/0x10 [ 3620.534307][T17201] kmem_cache_alloc_node+0x68/0x580 [ 3620.541430][T17201] blk_alloc_queue+0x28/0x620 [ 3620.548040][T17201] __blk_mq_alloc_disk+0x4c/0x160 [ 3620.555588][T17201] nbd_dev_add+0x3b9/0xbb0 23:40:38 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000ffffff9e00000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3620.562717][T17201] nbd_genl_connect+0x11f3/0x1930 [ 3620.569489][T17201] ? nbd_start_device+0xdd0/0xdd0 [ 3620.575847][T17201] ? __nla_parse+0x3d/0x50 [ 3620.581917][T17201] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3620.591399][T17201] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3620.601278][T17201] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3620.610403][T17201] genl_family_rcv_msg_doit+0x228/0x320 23:40:38 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000fffffff000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3620.617425][T17201] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3620.628907][T17201] ? mutex_lock_io_nested+0x1150/0x1150 [ 3620.635421][T17201] ? genl_op_from_small+0x23/0x3c0 [ 3620.641251][T17201] ? genl_get_cmd+0x3cf/0x480 [ 3620.647532][T17201] genl_rcv_msg+0x328/0x580 [ 3620.654065][T17201] ? genl_get_cmd+0x480/0x480 23:40:38 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000f0ffff00000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3620.659086][T17201] ? nbd_start_device+0xdd0/0xdd0 [ 3620.667504][T17201] ? lock_release+0x720/0x720 [ 3620.675204][T17201] netlink_rcv_skb+0x153/0x420 [ 3620.684210][T17201] ? genl_get_cmd+0x480/0x480 [ 3620.690827][T17201] ? netlink_ack+0xa60/0xa60 [ 3620.697824][T17201] ? netlink_deliver_tap+0x1b1/0xc30 [ 3620.705638][T17201] genl_rcv+0x24/0x40 [ 3620.711898][T17201] netlink_unicast+0x533/0x7d0 [ 3620.719276][T17201] ? netlink_attachskb+0x890/0x890 [ 3620.725870][T17201] netlink_sendmsg+0x86d/0xdb0 [ 3620.733140][T17201] ? netlink_unicast+0x7d0/0x7d0 [ 3620.740723][T17201] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3620.748956][T17201] ? netlink_unicast+0x7d0/0x7d0 [ 3620.755437][T17201] sock_sendmsg+0xcf/0x120 [ 3620.761239][T17201] ____sys_sendmsg+0x6e8/0x810 [ 3620.766921][T17201] ? kernel_sendmsg+0x50/0x50 [ 3620.774882][T17201] ? do_recvmmsg+0x6d0/0x6d0 [ 3620.781533][T17201] ? lock_chain_count+0x20/0x20 [ 3620.787952][T17201] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3620.795666][T17201] ___sys_sendmsg+0xf3/0x170 [ 3620.801711][T17201] ? sendmsg_copy_msghdr+0x160/0x160 [ 3620.809362][T17201] ? __fget_files+0x21b/0x3e0 [ 3620.815583][T17201] ? lock_downgrade+0x6e0/0x6e0 [ 3620.822493][T17201] ? __fget_files+0x23d/0x3e0 [ 3620.830263][T17201] ? __fget_light+0xea/0x280 [ 3620.836820][T17201] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3620.846408][T17201] __sys_sendmsg+0xe5/0x1b0 [ 3620.852109][T17201] ? __sys_sendmsg_sock+0x30/0x30 [ 3620.858312][T17201] ? syscall_enter_from_user_mode+0x21/0x70 [ 3620.865909][T17201] do_syscall_64+0x35/0xb0 [ 3620.871700][T17201] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3620.879385][T17201] RIP: 0033:0x7f0b1aeaaae9 [ 3620.885460][T17201] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3620.913369][T17201] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3620.925533][T17201] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3620.935996][T17201] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3620.947544][T17201] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3620.959398][T17201] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3620.972239][T17201] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3620.983398][T17201] nbd: failed to add new device [ 3620.996087][T17205] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3621.011850][T17205] nbd: must specify at least one socket 23:40:39 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 18) 23:40:39 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000007fffffff00000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:39 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acd5}, 0x0) 23:40:39 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x6203}]}, 0x30}}, 0x0) 23:40:39 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000009effffff00000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3621.131105][T17221] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3621.143830][T17221] nbd: must specify at least one socket [ 3621.158092][T17224] FAULT_INJECTION: forcing a failure. [ 3621.158092][T17224] name failslab, interval 1, probability 0, space 0, times 0 [ 3621.175888][T17224] CPU: 2 PID: 17224 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 23:40:39 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000f0ffffff00000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:39 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acd6}, 0x0) [ 3621.188411][T17224] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3621.202572][T17224] Call Trace: [ 3621.206831][T17224] dump_stack_lvl+0xcd/0x134 [ 3621.213207][T17224] should_fail.cold+0x5/0xa [ 3621.218795][T17224] should_failslab+0x5/0x10 [ 3621.225150][T17224] kmem_cache_alloc_node+0x68/0x580 [ 3621.231954][T17224] blk_alloc_queue+0x28/0x620 [ 3621.237855][T17224] __blk_mq_alloc_disk+0x4c/0x160 [ 3621.242754][T17224] nbd_dev_add+0x3b9/0xbb0 [ 3621.246880][T17224] nbd_genl_connect+0x11f3/0x1930 [ 3621.252621][T17224] ? nbd_start_device+0xdd0/0xdd0 [ 3621.260496][T17224] ? __nla_parse+0x3d/0x50 [ 3621.266220][T17224] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3621.272962][T17224] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3621.281190][T17224] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3621.290476][T17224] genl_family_rcv_msg_doit+0x228/0x320 [ 3621.297386][T17224] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3621.306926][T17224] ? mutex_lock_io_nested+0x1150/0x1150 [ 3621.314511][T17224] ? genl_op_from_small+0x23/0x3c0 [ 3621.322051][T17224] ? genl_get_cmd+0x3cf/0x480 [ 3621.329755][T17224] genl_rcv_msg+0x328/0x580 [ 3621.335190][T17224] ? genl_get_cmd+0x480/0x480 [ 3621.341841][T17224] ? nbd_start_device+0xdd0/0xdd0 [ 3621.348724][T17224] ? lock_release+0x720/0x720 [ 3621.354978][T17224] netlink_rcv_skb+0x153/0x420 [ 3621.361279][T17224] ? genl_get_cmd+0x480/0x480 [ 3621.368408][T17224] ? netlink_ack+0xa60/0xa60 [ 3621.375241][T17224] ? netlink_deliver_tap+0x1b1/0xc30 [ 3621.381790][T17224] genl_rcv+0x24/0x40 [ 3621.387351][T17224] netlink_unicast+0x533/0x7d0 [ 3621.393561][T17224] ? netlink_attachskb+0x890/0x890 [ 3621.400241][T17224] netlink_sendmsg+0x86d/0xdb0 [ 3621.406996][T17224] ? netlink_unicast+0x7d0/0x7d0 [ 3621.413548][T17224] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3621.422080][T17224] ? netlink_unicast+0x7d0/0x7d0 [ 3621.428987][T17224] sock_sendmsg+0xcf/0x120 [ 3621.434204][T17224] ____sys_sendmsg+0x6e8/0x810 [ 3621.440666][T17224] ? kernel_sendmsg+0x50/0x50 [ 3621.447250][T17224] ? do_recvmmsg+0x6d0/0x6d0 [ 3621.453723][T17224] ? lock_chain_count+0x20/0x20 [ 3621.460781][T17224] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3621.469158][T17224] ___sys_sendmsg+0xf3/0x170 [ 3621.476032][T17224] ? sendmsg_copy_msghdr+0x160/0x160 [ 3621.483794][T17224] ? __fget_files+0x21b/0x3e0 [ 3621.489421][T17224] ? lock_downgrade+0x6e0/0x6e0 [ 3621.495347][T17224] ? __fget_files+0x23d/0x3e0 [ 3621.502309][T17224] ? __fget_light+0xea/0x280 [ 3621.509291][T17224] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3621.518520][T17224] __sys_sendmsg+0xe5/0x1b0 [ 3621.525149][T17224] ? __sys_sendmsg_sock+0x30/0x30 [ 3621.531439][T17224] ? syscall_enter_from_user_mode+0x21/0x70 [ 3621.538687][T17224] do_syscall_64+0x35/0xb0 [ 3621.545047][T17224] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3621.552432][T17224] RIP: 0033:0x7f0b1aeaaae9 [ 3621.558150][T17224] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3621.583776][T17224] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3621.595157][T17224] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3621.606386][T17224] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3621.615901][T17224] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3621.626614][T17224] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3621.636892][T17224] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3621.647933][T17224] nbd: failed to add new device 23:40:39 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000034000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:39 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 19) 23:40:39 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000fffffffffffff000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:39 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x6303}]}, 0x30}}, 0x0) 23:40:39 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acd7}, 0x0) 23:40:39 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000001000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3621.739332][T17240] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3621.751585][T17240] nbd: must specify at least one socket [ 3621.772290][T17243] FAULT_INJECTION: forcing a failure. [ 3621.772290][T17243] name failslab, interval 1, probability 0, space 0, times 0 23:40:39 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x6402}]}, 0x30}}, 0x0) 23:40:39 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000002000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3621.790062][T17243] CPU: 1 PID: 17243 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3621.802554][T17243] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3621.814671][T17243] Call Trace: [ 3621.818963][T17243] dump_stack_lvl+0xcd/0x134 [ 3621.825764][T17243] should_fail.cold+0x5/0xa [ 3621.831904][T17243] should_failslab+0x5/0x10 [ 3621.837922][T17243] kmem_cache_alloc_node_trace+0x6e/0x5c0 [ 3621.845389][T17243] ? lockdep_init_map_type+0x2c3/0x7b0 [ 3621.853189][T17243] __kmalloc_node+0x38/0x60 [ 3621.859467][T17243] ? mempool_free_pages+0x20/0x20 [ 3621.867479][T17243] mempool_init_node+0x135/0x590 [ 3621.874981][T17243] ? debug_object_destroy+0x210/0x210 [ 3621.882537][T17243] ? mempool_free_pages+0x20/0x20 [ 3621.889500][T17243] ? mempool_free+0x3b0/0x3b0 [ 3621.895427][T17243] mempool_init+0x38/0x50 [ 3621.901103][T17243] bioset_init+0x336/0x800 [ 3621.906715][T17243] blk_alloc_queue+0xd9/0x620 [ 3621.912927][T17243] __blk_mq_alloc_disk+0x4c/0x160 [ 3621.920798][T17243] nbd_dev_add+0x3b9/0xbb0 [ 3621.928816][T17243] nbd_genl_connect+0x11f3/0x1930 [ 3621.935661][T17243] ? nbd_start_device+0xdd0/0xdd0 [ 3621.941912][T17243] ? __nla_parse+0x3d/0x50 [ 3621.946917][T17243] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3621.954954][T17243] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3621.964746][T17243] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3621.975180][T17243] genl_family_rcv_msg_doit+0x228/0x320 [ 3621.982093][T17243] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3621.992125][T17243] ? mutex_lock_io_nested+0x1150/0x1150 [ 3621.999385][T17243] ? genl_op_from_small+0x23/0x3c0 [ 3622.005947][T17243] ? genl_get_cmd+0x3cf/0x480 [ 3622.011963][T17243] genl_rcv_msg+0x328/0x580 [ 3622.017616][T17243] ? genl_get_cmd+0x480/0x480 [ 3622.023993][T17243] ? nbd_start_device+0xdd0/0xdd0 [ 3622.030201][T17243] ? lock_release+0x720/0x720 [ 3622.036012][T17243] netlink_rcv_skb+0x153/0x420 [ 3622.043003][T17243] ? genl_get_cmd+0x480/0x480 [ 3622.050721][T17243] ? netlink_ack+0xa60/0xa60 [ 3622.058342][T17243] ? netlink_deliver_tap+0x1b1/0xc30 [ 3622.066427][T17243] genl_rcv+0x24/0x40 [ 3622.071655][T17243] netlink_unicast+0x533/0x7d0 [ 3622.077881][T17243] ? netlink_attachskb+0x890/0x890 [ 3622.084282][T17243] netlink_sendmsg+0x86d/0xdb0 [ 3622.092314][T17243] ? netlink_unicast+0x7d0/0x7d0 [ 3622.099968][T17243] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3622.108677][T17243] ? netlink_unicast+0x7d0/0x7d0 [ 3622.114284][T17243] sock_sendmsg+0xcf/0x120 [ 3622.120307][T17243] ____sys_sendmsg+0x6e8/0x810 [ 3622.126408][T17243] ? kernel_sendmsg+0x50/0x50 [ 3622.133075][T17243] ? do_recvmmsg+0x6d0/0x6d0 [ 3622.139877][T17243] ? lock_chain_count+0x20/0x20 [ 3622.146125][T17243] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3622.153989][T17243] ___sys_sendmsg+0xf3/0x170 [ 3622.159971][T17243] ? sendmsg_copy_msghdr+0x160/0x160 [ 3622.166557][T17243] ? __fget_files+0x21b/0x3e0 [ 3622.172377][T17243] ? lock_downgrade+0x6e0/0x6e0 [ 3622.180694][T17243] ? __fget_files+0x23d/0x3e0 [ 3622.186523][T17243] ? __fget_light+0xea/0x280 [ 3622.192441][T17243] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3622.200930][T17243] __sys_sendmsg+0xe5/0x1b0 [ 3622.208137][T17243] ? __sys_sendmsg_sock+0x30/0x30 [ 3622.215468][T17243] ? syscall_enter_from_user_mode+0x21/0x70 [ 3622.222928][T17243] do_syscall_64+0x35/0xb0 [ 3622.228471][T17243] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3622.236040][T17243] RIP: 0033:0x7f0b1aeaaae9 [ 3622.241654][T17243] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3622.268899][T17243] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3622.280692][T17243] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3622.290654][T17243] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3622.300780][T17243] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3622.311481][T17243] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3622.321303][T17243] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3622.336155][T17243] nbd: failed to add new device 23:40:40 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acd8}, 0x0) 23:40:40 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 20) [ 3622.494058][T17256] FAULT_INJECTION: forcing a failure. [ 3622.494058][T17256] name failslab, interval 1, probability 0, space 0, times 0 [ 3622.511761][T17256] CPU: 1 PID: 17256 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 23:40:40 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000003000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3622.523649][T17256] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3622.540169][T17256] Call Trace: [ 3622.555747][T17256] dump_stack_lvl+0xcd/0x134 [ 3622.562627][T17256] should_fail.cold+0x5/0xa [ 3622.569170][T17256] ? mempool_free_pages+0x20/0x20 [ 3622.576488][T17256] should_failslab+0x5/0x10 [ 3622.582211][T17256] kmem_cache_alloc+0x58/0x530 [ 3622.589535][T17256] ? mempool_free_pages+0x20/0x20 23:40:40 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000004000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3622.596483][T17256] ? mempool_free_pages+0x20/0x20 [ 3622.604359][T17256] mempool_init_node+0x2e6/0x590 [ 3622.611246][T17256] ? mempool_free_pages+0x20/0x20 [ 3622.618028][T17256] ? mempool_free+0x3b0/0x3b0 [ 3622.624276][T17256] mempool_init+0x38/0x50 [ 3622.629786][T17256] bioset_init+0x336/0x800 23:40:40 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000005000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3622.636071][T17256] blk_alloc_queue+0xd9/0x620 [ 3622.642234][T17256] __blk_mq_alloc_disk+0x4c/0x160 [ 3622.648844][T17256] nbd_dev_add+0x3b9/0xbb0 [ 3622.655304][T17256] nbd_genl_connect+0x11f3/0x1930 [ 3622.663125][T17256] ? nbd_start_device+0xdd0/0xdd0 [ 3622.670088][T17256] ? __nla_parse+0x3d/0x50 [ 3622.676638][T17256] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3622.684401][T17256] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 23:40:40 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000006000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3622.694541][T17256] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3622.704758][T17256] genl_family_rcv_msg_doit+0x228/0x320 [ 3622.711998][T17256] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3622.721946][T17256] ? mutex_lock_io_nested+0x1150/0x1150 [ 3622.729910][T17256] ? genl_op_from_small+0x23/0x3c0 [ 3622.736510][T17256] ? genl_get_cmd+0x3cf/0x480 [ 3622.743046][T17256] genl_rcv_msg+0x328/0x580 [ 3622.749312][T17256] ? genl_get_cmd+0x480/0x480 [ 3622.755699][T17256] ? nbd_start_device+0xdd0/0xdd0 [ 3622.762240][T17256] ? lock_release+0x720/0x720 [ 3622.769310][T17256] netlink_rcv_skb+0x153/0x420 [ 3622.775606][T17256] ? genl_get_cmd+0x480/0x480 [ 3622.781831][T17256] ? netlink_ack+0xa60/0xa60 [ 3622.788564][T17256] ? netlink_deliver_tap+0x1b1/0xc30 [ 3622.795327][T17256] genl_rcv+0x24/0x40 [ 3622.800795][T17256] netlink_unicast+0x533/0x7d0 [ 3622.807887][T17256] ? netlink_attachskb+0x890/0x890 [ 3622.815772][T17256] netlink_sendmsg+0x86d/0xdb0 [ 3622.823745][T17256] ? netlink_unicast+0x7d0/0x7d0 [ 3622.830612][T17256] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3622.838483][T17256] ? netlink_unicast+0x7d0/0x7d0 [ 3622.844913][T17256] sock_sendmsg+0xcf/0x120 [ 3622.851032][T17256] ____sys_sendmsg+0x6e8/0x810 [ 3622.856583][T17256] ? kernel_sendmsg+0x50/0x50 [ 3622.862096][T17256] ? do_recvmmsg+0x6d0/0x6d0 [ 3622.867659][T17256] ? lock_chain_count+0x20/0x20 [ 3622.873820][T17256] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3622.881859][T17256] ___sys_sendmsg+0xf3/0x170 [ 3622.887590][T17256] ? sendmsg_copy_msghdr+0x160/0x160 [ 3622.893709][T17256] ? __fget_files+0x21b/0x3e0 [ 3622.900229][T17256] ? lock_downgrade+0x6e0/0x6e0 [ 3622.906592][T17256] ? __fget_files+0x23d/0x3e0 [ 3622.912330][T17256] ? __fget_light+0xea/0x280 [ 3622.918600][T17256] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3622.930203][T17256] __sys_sendmsg+0xe5/0x1b0 [ 3622.937156][T17256] ? __sys_sendmsg_sock+0x30/0x30 [ 3622.944403][T17256] ? syscall_enter_from_user_mode+0x21/0x70 [ 3622.952164][T17256] do_syscall_64+0x35/0xb0 [ 3622.958019][T17256] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3622.966365][T17256] RIP: 0033:0x7f0b1aeaaae9 [ 3622.973245][T17256] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3623.000452][T17256] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3623.011715][T17256] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3623.022778][T17256] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3623.032634][T17256] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3623.043355][T17256] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3623.052777][T17256] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3623.063791][T17256] nbd: failed to add new device [ 3623.090270][T17258] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3623.110066][T17258] nbd: must specify at least one socket 23:40:41 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000007000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:41 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x6502}]}, 0x30}}, 0x0) 23:40:41 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 21) 23:40:41 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acd9}, 0x0) [ 3623.193057][T17274] FAULT_INJECTION: forcing a failure. [ 3623.193057][T17274] name failslab, interval 1, probability 0, space 0, times 0 [ 3623.209643][T17274] CPU: 3 PID: 17274 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3623.219425][T17274] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3623.231683][T17274] Call Trace: [ 3623.236162][T17274] dump_stack_lvl+0xcd/0x134 23:40:41 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000008000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3623.244278][T17274] should_fail.cold+0x5/0xa [ 3623.251343][T17274] should_failslab+0x5/0x10 [ 3623.257508][T17274] kmem_cache_alloc+0x58/0x530 [ 3623.263555][T17274] ? mempool_free_pages+0x20/0x20 [ 3623.270394][T17274] ? mempool_free_pages+0x20/0x20 [ 3623.277468][T17274] mempool_init_node+0x2e6/0x590 [ 3623.284482][T17274] ? mempool_free_pages+0x20/0x20 23:40:41 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000009000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3623.291131][T17274] ? mempool_free+0x3b0/0x3b0 [ 3623.297647][T17274] mempool_init+0x38/0x50 [ 3623.303901][T17274] bioset_init+0x336/0x800 [ 3623.309681][T17274] blk_alloc_queue+0xd9/0x620 [ 3623.315979][T17274] __blk_mq_alloc_disk+0x4c/0x160 [ 3623.323120][T17274] nbd_dev_add+0x3b9/0xbb0 [ 3623.330202][T17274] nbd_genl_connect+0x11f3/0x1930 [ 3623.336990][T17274] ? nbd_start_device+0xdd0/0xdd0 23:40:41 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000000000000000000a000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3623.344768][T17274] ? __nla_parse+0x3d/0x50 [ 3623.350580][T17274] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3623.364304][T17274] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3623.373400][T17274] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3623.394925][T17274] genl_family_rcv_msg_doit+0x228/0x320 [ 3623.402586][T17274] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3623.412252][T17274] ? mutex_lock_io_nested+0x1150/0x1150 [ 3623.419745][T17274] ? genl_op_from_small+0x23/0x3c0 [ 3623.426805][T17274] ? genl_get_cmd+0x3cf/0x480 [ 3623.433459][T17274] genl_rcv_msg+0x328/0x580 23:40:41 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000000000000000000b000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3623.439528][T17274] ? genl_get_cmd+0x480/0x480 [ 3623.446344][T17274] ? nbd_start_device+0xdd0/0xdd0 [ 3623.463257][T17274] ? lock_release+0x720/0x720 [ 3623.469057][T17274] netlink_rcv_skb+0x153/0x420 [ 3623.480456][T17274] ? genl_get_cmd+0x480/0x480 [ 3623.486286][T17274] ? netlink_ack+0xa60/0xa60 [ 3623.492073][T17274] ? netlink_deliver_tap+0x1b1/0xc30 [ 3623.498707][T17274] genl_rcv+0x24/0x40 [ 3623.503826][T17274] netlink_unicast+0x533/0x7d0 [ 3623.510973][T17274] ? netlink_attachskb+0x890/0x890 [ 3623.517779][T17274] netlink_sendmsg+0x86d/0xdb0 [ 3623.524192][T17274] ? netlink_unicast+0x7d0/0x7d0 [ 3623.529756][T17274] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3623.536741][T17274] ? netlink_unicast+0x7d0/0x7d0 [ 3623.542202][T17274] sock_sendmsg+0xcf/0x120 [ 3623.547293][T17274] ____sys_sendmsg+0x6e8/0x810 [ 3623.553155][T17274] ? kernel_sendmsg+0x50/0x50 [ 3623.558989][T17274] ? do_recvmmsg+0x6d0/0x6d0 [ 3623.565047][T17274] ? lock_chain_count+0x20/0x20 [ 3623.571958][T17274] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3623.580297][T17274] ___sys_sendmsg+0xf3/0x170 [ 3623.587197][T17274] ? sendmsg_copy_msghdr+0x160/0x160 [ 3623.594385][T17274] ? __fget_files+0x21b/0x3e0 [ 3623.600255][T17274] ? lock_downgrade+0x6e0/0x6e0 [ 3623.606420][T17274] ? __fget_files+0x23d/0x3e0 [ 3623.612375][T17274] ? __fget_light+0xea/0x280 [ 3623.618346][T17274] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3623.626369][T17274] __sys_sendmsg+0xe5/0x1b0 [ 3623.632168][T17274] ? __sys_sendmsg_sock+0x30/0x30 [ 3623.638825][T17274] ? syscall_enter_from_user_mode+0x21/0x70 [ 3623.646357][T17274] do_syscall_64+0x35/0xb0 [ 3623.651547][T17274] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3623.658738][T17274] RIP: 0033:0x7f0b1aeaaae9 [ 3623.663249][T17274] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3623.689066][T17274] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3623.699825][T17274] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3623.709673][T17274] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3623.719552][T17274] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3623.730272][T17274] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3623.740355][T17274] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3623.753345][T17274] nbd: failed to add new device [ 3623.777725][T17278] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3623.790041][T17278] nbd: must specify at least one socket 23:40:41 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acda}, 0x0) 23:40:41 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x6701}]}, 0x30}}, 0x0) 23:40:41 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 22) 23:40:41 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000000000000000000e000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3623.856754][T17292] FAULT_INJECTION: forcing a failure. [ 3623.856754][T17292] name failslab, interval 1, probability 0, space 0, times 0 [ 3623.873819][T17292] CPU: 2 PID: 17292 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3623.886027][T17292] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3623.899216][T17292] Call Trace: [ 3623.903890][T17292] dump_stack_lvl+0xcd/0x134 [ 3623.911236][T17292] should_fail.cold+0x5/0xa [ 3623.917310][T17292] should_failslab+0x5/0x10 [ 3623.922379][T17292] kmem_cache_alloc_trace+0x57/0x480 [ 3623.928485][T17292] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3623.936004][T17292] blk_alloc_queue_stats+0x3c/0x110 [ 3623.942196][T17292] blk_alloc_queue+0xfb/0x620 [ 3623.948433][T17292] __blk_mq_alloc_disk+0x4c/0x160 [ 3623.954861][T17292] nbd_dev_add+0x3b9/0xbb0 [ 3623.959909][T17292] nbd_genl_connect+0x11f3/0x1930 23:40:42 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000000000000000000f000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3623.965349][T17292] ? nbd_start_device+0xdd0/0xdd0 [ 3623.971676][T17292] ? __nla_parse+0x3d/0x50 [ 3623.976821][T17292] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3623.985150][T17292] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3623.995147][T17292] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3624.006509][T17292] genl_family_rcv_msg_doit+0x228/0x320 [ 3624.013945][T17292] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3624.024062][T17292] ? mutex_lock_io_nested+0x1150/0x1150 [ 3624.030698][T17292] ? genl_op_from_small+0x23/0x3c0 [ 3624.036879][T17292] ? genl_get_cmd+0x3cf/0x480 [ 3624.042993][T17292] genl_rcv_msg+0x328/0x580 [ 3624.047947][T17292] ? genl_get_cmd+0x480/0x480 [ 3624.054538][T17292] ? nbd_start_device+0xdd0/0xdd0 [ 3624.060800][T17292] ? lock_release+0x720/0x720 [ 3624.066665][T17292] netlink_rcv_skb+0x153/0x420 [ 3624.072943][T17292] ? genl_get_cmd+0x480/0x480 [ 3624.078901][T17292] ? netlink_ack+0xa60/0xa60 [ 3624.084970][T17292] ? netlink_deliver_tap+0x1b1/0xc30 [ 3624.090734][T17292] genl_rcv+0x24/0x40 [ 3624.094909][T17292] netlink_unicast+0x533/0x7d0 [ 3624.101301][T17292] ? netlink_attachskb+0x890/0x890 [ 3624.107703][T17292] netlink_sendmsg+0x86d/0xdb0 [ 3624.113437][T17292] ? netlink_unicast+0x7d0/0x7d0 23:40:42 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000010000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:42 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000011000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3624.119486][T17292] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3624.126617][T17292] ? netlink_unicast+0x7d0/0x7d0 [ 3624.132388][T17292] sock_sendmsg+0xcf/0x120 [ 3624.136997][T17292] ____sys_sendmsg+0x6e8/0x810 [ 3624.142707][T17292] ? kernel_sendmsg+0x50/0x50 [ 3624.148372][T17292] ? do_recvmmsg+0x6d0/0x6d0 [ 3624.154175][T17292] ? lock_chain_count+0x20/0x20 [ 3624.160481][T17292] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3624.167790][T17292] ___sys_sendmsg+0xf3/0x170 [ 3624.173338][T17292] ? sendmsg_copy_msghdr+0x160/0x160 [ 3624.178959][T17292] ? __fget_files+0x21b/0x3e0 [ 3624.184277][T17292] ? lock_downgrade+0x6e0/0x6e0 [ 3624.190034][T17292] ? __fget_files+0x23d/0x3e0 [ 3624.195533][T17292] ? __fget_light+0xea/0x280 [ 3624.201026][T17292] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3624.209196][T17292] __sys_sendmsg+0xe5/0x1b0 [ 3624.216378][T17292] ? __sys_sendmsg_sock+0x30/0x30 [ 3624.222623][T17292] ? syscall_enter_from_user_mode+0x21/0x70 [ 3624.230259][T17292] do_syscall_64+0x35/0xb0 [ 3624.236371][T17292] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3624.243826][T17292] RIP: 0033:0x7f0b1aeaaae9 [ 3624.249168][T17292] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3624.273642][T17292] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3624.283805][T17292] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3624.293645][T17292] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3624.304098][T17292] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3624.314545][T17292] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3624.325205][T17292] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3624.337899][T17292] nbd: failed to add new device 23:40:42 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000044000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3624.351991][T17295] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3624.364699][T17295] nbd: must specify at least one socket 23:40:42 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acdb}, 0x0) 23:40:42 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000002244000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:42 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 23) 23:40:42 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x6801}]}, 0x30}}, 0x0) 23:40:42 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000060000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3624.476315][T17311] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3624.490426][T17311] nbd: must specify at least one socket [ 3624.508179][T17313] FAULT_INJECTION: forcing a failure. [ 3624.508179][T17313] name failslab, interval 1, probability 0, space 0, times 0 23:40:42 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x6803}]}, 0x30}}, 0x0) [ 3624.525396][T17313] CPU: 2 PID: 17313 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 23:40:42 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000000000ffffff9e000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3624.537134][T17313] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3624.548468][T17313] Call Trace: [ 3624.552884][T17313] dump_stack_lvl+0xcd/0x134 [ 3624.558896][T17313] should_fail.cold+0x5/0xa [ 3624.564738][T17313] ? blk_clear_pm_only+0x80/0x80 [ 3624.571177][T17313] should_failslab+0x5/0x10 [ 3624.576991][T17313] kmem_cache_alloc_trace+0x57/0x480 [ 3624.583758][T17313] ? blk_clear_pm_only+0x80/0x80 [ 3624.590544][T17313] percpu_ref_init+0xd5/0x3e0 [ 3624.597025][T17313] blk_alloc_queue+0x42c/0x620 [ 3624.602965][T17313] __blk_mq_alloc_disk+0x4c/0x160 [ 3624.609542][T17313] nbd_dev_add+0x3b9/0xbb0 [ 3624.615237][T17313] nbd_genl_connect+0x11f3/0x1930 [ 3624.622002][T17313] ? nbd_start_device+0xdd0/0xdd0 [ 3624.627787][T17313] ? __nla_parse+0x3d/0x50 [ 3624.633292][T17313] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3624.640886][T17313] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3624.650051][T17313] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3624.659177][T17313] genl_family_rcv_msg_doit+0x228/0x320 [ 3624.666072][T17313] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3624.675585][T17313] ? mutex_lock_io_nested+0x1150/0x1150 [ 3624.683080][T17313] ? genl_op_from_small+0x23/0x3c0 [ 3624.689475][T17313] ? genl_get_cmd+0x3cf/0x480 [ 3624.695079][T17313] genl_rcv_msg+0x328/0x580 [ 3624.700274][T17313] ? genl_get_cmd+0x480/0x480 [ 3624.706498][T17313] ? nbd_start_device+0xdd0/0xdd0 [ 3624.713009][T17313] ? lock_release+0x720/0x720 [ 3624.718761][T17313] netlink_rcv_skb+0x153/0x420 [ 3624.725522][T17313] ? genl_get_cmd+0x480/0x480 [ 3624.732754][T17313] ? netlink_ack+0xa60/0xa60 [ 3624.738854][T17313] ? netlink_deliver_tap+0x1b1/0xc30 [ 3624.745715][T17313] genl_rcv+0x24/0x40 [ 3624.750916][T17313] netlink_unicast+0x533/0x7d0 [ 3624.758024][T17313] ? netlink_attachskb+0x890/0x890 [ 3624.766560][T17313] netlink_sendmsg+0x86d/0xdb0 [ 3624.773466][T17313] ? netlink_unicast+0x7d0/0x7d0 [ 3624.780128][T17313] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3624.786616][T17313] ? netlink_unicast+0x7d0/0x7d0 [ 3624.791899][T17313] sock_sendmsg+0xcf/0x120 [ 3624.797618][T17313] ____sys_sendmsg+0x6e8/0x810 [ 3624.803670][T17313] ? kernel_sendmsg+0x50/0x50 [ 3624.809533][T17313] ? do_recvmmsg+0x6d0/0x6d0 [ 3624.815340][T17313] ? lock_chain_count+0x20/0x20 [ 3624.821422][T17313] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3624.827908][T17313] ___sys_sendmsg+0xf3/0x170 [ 3624.832733][T17313] ? sendmsg_copy_msghdr+0x160/0x160 [ 3624.838107][T17313] ? __fget_files+0x21b/0x3e0 [ 3624.842638][T17313] ? lock_downgrade+0x6e0/0x6e0 [ 3624.847503][T17313] ? __fget_files+0x23d/0x3e0 [ 3624.852698][T17313] ? __fget_light+0xea/0x280 [ 3624.857585][T17313] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3624.864715][T17313] __sys_sendmsg+0xe5/0x1b0 [ 3624.869969][T17313] ? __sys_sendmsg_sock+0x30/0x30 [ 3624.876115][T17313] ? syscall_enter_from_user_mode+0x21/0x70 [ 3624.883548][T17313] do_syscall_64+0x35/0xb0 [ 3624.888122][T17313] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3624.895166][T17313] RIP: 0033:0x7f0b1aeaaae9 [ 3624.900119][T17313] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3624.923098][T17313] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3624.933571][T17313] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3624.943755][T17313] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3624.953505][T17313] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3624.963550][T17313] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3624.973782][T17313] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3624.984889][T17313] nbd: failed to add new device 23:40:42 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000000000fffffff0000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3625.033941][T17320] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3625.052610][T17320] nbd: must specify at least one socket 23:40:43 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acdc}, 0x0) 23:40:43 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000000000007fffffff000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:43 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 24) 23:40:43 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x6901}]}, 0x30}}, 0x0) 23:40:43 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000f0ffffffffffff000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3625.161922][T17331] FAULT_INJECTION: forcing a failure. [ 3625.161922][T17331] name failslab, interval 1, probability 0, space 0, times 0 [ 3625.177632][T17331] CPU: 0 PID: 17331 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3625.192402][T17331] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 23:40:43 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000002000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3625.206278][T17331] Call Trace: [ 3625.211383][T17331] dump_stack_lvl+0xcd/0x134 [ 3625.218083][T17331] should_fail.cold+0x5/0xa [ 3625.225042][T17331] should_failslab+0x5/0x10 [ 3625.231765][T17331] kmem_cache_alloc_node_trace+0x6e/0x5c0 [ 3625.239944][T17331] blkg_alloc+0x88/0x670 [ 3625.245296][T17331] blkcg_init_queue+0x24/0x780 [ 3625.251870][T17331] blk_alloc_queue+0x44c/0x620 [ 3625.257233][T17331] __blk_mq_alloc_disk+0x4c/0x160 [ 3625.263517][T17331] nbd_dev_add+0x3b9/0xbb0 [ 3625.269946][T17331] nbd_genl_connect+0x11f3/0x1930 [ 3625.276175][T17331] ? nbd_start_device+0xdd0/0xdd0 23:40:43 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000003000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3625.283244][T17331] ? __nla_parse+0x3d/0x50 [ 3625.290173][T17331] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3625.299548][T17331] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3625.309373][T17331] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3625.320900][T17331] genl_family_rcv_msg_doit+0x228/0x320 [ 3625.330109][T17331] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 23:40:43 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000004000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3625.340504][T17331] ? mutex_lock_io_nested+0x1150/0x1150 [ 3625.347651][T17331] ? genl_op_from_small+0x23/0x3c0 [ 3625.354111][T17331] ? genl_get_cmd+0x3cf/0x480 [ 3625.359740][T17331] genl_rcv_msg+0x328/0x580 [ 3625.365296][T17331] ? genl_get_cmd+0x480/0x480 [ 3625.371234][T17331] ? nbd_start_device+0xdd0/0xdd0 [ 3625.377962][T17331] ? lock_release+0x720/0x720 [ 3625.383616][T17331] netlink_rcv_skb+0x153/0x420 [ 3625.390332][T17331] ? genl_get_cmd+0x480/0x480 [ 3625.396076][T17331] ? netlink_ack+0xa60/0xa60 [ 3625.402083][T17331] ? netlink_deliver_tap+0x1b1/0xc30 [ 3625.409174][T17331] genl_rcv+0x24/0x40 [ 3625.414179][T17331] netlink_unicast+0x533/0x7d0 [ 3625.420162][T17331] ? netlink_attachskb+0x890/0x890 [ 3625.428638][T17331] netlink_sendmsg+0x86d/0xdb0 [ 3625.435088][T17331] ? netlink_unicast+0x7d0/0x7d0 [ 3625.441217][T17331] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3625.449801][T17331] ? netlink_unicast+0x7d0/0x7d0 [ 3625.455701][T17331] sock_sendmsg+0xcf/0x120 [ 3625.461050][T17331] ____sys_sendmsg+0x6e8/0x810 [ 3625.467769][T17331] ? kernel_sendmsg+0x50/0x50 [ 3625.474988][T17331] ? do_recvmmsg+0x6d0/0x6d0 [ 3625.481198][T17331] ? lock_chain_count+0x20/0x20 [ 3625.487614][T17331] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3625.496539][T17331] ___sys_sendmsg+0xf3/0x170 [ 3625.502636][T17331] ? sendmsg_copy_msghdr+0x160/0x160 [ 3625.510053][T17331] ? __fget_files+0x21b/0x3e0 [ 3625.516701][T17331] ? lock_downgrade+0x6e0/0x6e0 [ 3625.523012][T17331] ? __fget_files+0x23d/0x3e0 [ 3625.529676][T17331] ? __fget_light+0xea/0x280 [ 3625.536329][T17331] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3625.544530][T17331] __sys_sendmsg+0xe5/0x1b0 [ 3625.551401][T17331] ? __sys_sendmsg_sock+0x30/0x30 [ 3625.557482][T17331] ? syscall_enter_from_user_mode+0x21/0x70 [ 3625.566569][T17331] do_syscall_64+0x35/0xb0 [ 3625.572021][T17331] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3625.579503][T17331] RIP: 0033:0x7f0b1aeaaae9 [ 3625.586620][T17331] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3625.611174][T17331] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3625.621716][T17331] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3625.631762][T17331] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3625.641570][T17331] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3625.653342][T17331] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3625.663638][T17331] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3625.675672][T17331] nbd: failed to add new device [ 3625.688960][T17332] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3625.701027][T17332] nbd: must specify at least one socket 23:40:43 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acdd}, 0x0) 23:40:43 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000005000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:43 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 25) 23:40:43 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x6902}]}, 0x30}}, 0x0) [ 3625.815674][T17353] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3625.828626][T17353] nbd: must specify at least one socket [ 3625.837556][T17348] FAULT_INJECTION: forcing a failure. 23:40:44 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000006000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3625.837556][T17348] name failslab, interval 1, probability 0, space 0, times 0 [ 3625.911020][T17348] CPU: 0 PID: 17348 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3625.922124][T17348] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3625.933767][T17348] Call Trace: [ 3625.937157][T17348] dump_stack_lvl+0xcd/0x134 [ 3625.942355][T17348] should_fail.cold+0x5/0xa [ 3625.947282][T17348] ? blkg_async_bio_workfn+0x2b0/0x2b0 [ 3625.953679][T17348] should_failslab+0x5/0x10 [ 3625.958627][T17348] kmem_cache_alloc_trace+0x57/0x480 23:40:44 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000007000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3625.964234][T17348] ? blkg_async_bio_workfn+0x2b0/0x2b0 [ 3625.970316][T17348] percpu_ref_init+0xd5/0x3e0 [ 3625.975562][T17348] blkg_alloc+0xb4/0x670 [ 3625.980307][T17348] blkcg_init_queue+0x24/0x780 [ 3625.987535][T17348] blk_alloc_queue+0x44c/0x620 [ 3625.993950][T17348] __blk_mq_alloc_disk+0x4c/0x160 [ 3626.000582][T17348] nbd_dev_add+0x3b9/0xbb0 [ 3626.006094][T17348] nbd_genl_connect+0x11f3/0x1930 [ 3626.012321][T17348] ? nbd_start_device+0xdd0/0xdd0 [ 3626.018785][T17348] ? __nla_parse+0x3d/0x50 [ 3626.025015][T17348] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3626.033413][T17348] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3626.042762][T17348] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3626.053030][T17348] genl_family_rcv_msg_doit+0x228/0x320 23:40:44 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000008000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:44 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000009000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3626.060729][T17348] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3626.071599][T17348] ? mutex_lock_io_nested+0x1150/0x1150 [ 3626.079647][T17348] ? genl_op_from_small+0x23/0x3c0 [ 3626.087324][T17348] ? genl_get_cmd+0x3cf/0x480 [ 3626.094939][T17348] genl_rcv_msg+0x328/0x580 [ 3626.103263][T17348] ? genl_get_cmd+0x480/0x480 [ 3626.110250][T17348] ? nbd_start_device+0xdd0/0xdd0 [ 3626.118827][T17348] ? lock_release+0x720/0x720 [ 3626.125484][T17348] netlink_rcv_skb+0x153/0x420 [ 3626.132279][T17348] ? genl_get_cmd+0x480/0x480 [ 3626.139025][T17348] ? netlink_ack+0xa60/0xa60 [ 3626.145549][T17348] ? netlink_deliver_tap+0x1b1/0xc30 [ 3626.153736][T17348] genl_rcv+0x24/0x40 [ 3626.159841][T17348] netlink_unicast+0x533/0x7d0 [ 3626.166800][T17348] ? netlink_attachskb+0x890/0x890 [ 3626.173473][T17348] netlink_sendmsg+0x86d/0xdb0 [ 3626.180862][T17348] ? netlink_unicast+0x7d0/0x7d0 [ 3626.188847][T17348] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3626.197372][T17348] ? netlink_unicast+0x7d0/0x7d0 [ 3626.204463][T17348] sock_sendmsg+0xcf/0x120 [ 3626.210558][T17348] ____sys_sendmsg+0x6e8/0x810 [ 3626.217064][T17348] ? kernel_sendmsg+0x50/0x50 [ 3626.223193][T17348] ? do_recvmmsg+0x6d0/0x6d0 [ 3626.229081][T17348] ? lock_chain_count+0x20/0x20 [ 3626.235560][T17348] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3626.244785][T17348] ___sys_sendmsg+0xf3/0x170 [ 3626.250846][T17348] ? sendmsg_copy_msghdr+0x160/0x160 [ 3626.257693][T17348] ? __fget_files+0x21b/0x3e0 [ 3626.263876][T17348] ? lock_downgrade+0x6e0/0x6e0 [ 3626.270482][T17348] ? __fget_files+0x23d/0x3e0 [ 3626.276178][T17348] ? __fget_light+0xea/0x280 [ 3626.282350][T17348] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3626.290385][T17348] __sys_sendmsg+0xe5/0x1b0 [ 3626.296560][T17348] ? __sys_sendmsg_sock+0x30/0x30 [ 3626.303309][T17348] ? syscall_enter_from_user_mode+0x21/0x70 [ 3626.310865][T17348] do_syscall_64+0x35/0xb0 [ 3626.316619][T17348] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3626.324324][T17348] RIP: 0033:0x7f0b1aeaaae9 [ 3626.330009][T17348] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3626.356267][T17348] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3626.368186][T17348] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3626.378109][T17348] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3626.388289][T17348] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3626.398643][T17348] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3626.408399][T17348] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3626.421225][T17348] nbd: failed to add new device 23:40:44 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acde}, 0x0) 23:40:44 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000000a000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:44 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x6903}]}, 0x30}}, 0x0) 23:40:44 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 26) [ 3626.522896][T17369] FAULT_INJECTION: forcing a failure. [ 3626.522896][T17369] name failslab, interval 1, probability 0, space 0, times 0 [ 3626.544183][T17369] CPU: 0 PID: 17369 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3626.556623][T17369] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3626.568937][T17369] Call Trace: [ 3626.573855][T17369] dump_stack_lvl+0xcd/0x134 [ 3626.581930][T17369] should_fail.cold+0x5/0xa [ 3626.589451][T17369] should_failslab+0x5/0x10 [ 3626.599755][T17369] kmem_cache_alloc_node_trace+0x6e/0x5c0 [ 3626.608538][T17369] blk_throtl_init+0x7c/0x660 23:40:44 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000000b000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3626.617310][T17369] blkcg_init_queue+0x158/0x780 [ 3626.624121][T17369] blk_alloc_queue+0x44c/0x620 [ 3626.630652][T17369] __blk_mq_alloc_disk+0x4c/0x160 [ 3626.637447][T17369] nbd_dev_add+0x3b9/0xbb0 [ 3626.643347][T17369] nbd_genl_connect+0x11f3/0x1930 [ 3626.649567][T17369] ? nbd_start_device+0xdd0/0xdd0 [ 3626.656961][T17369] ? __nla_parse+0x3d/0x50 [ 3626.663032][T17369] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3626.670851][T17369] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 23:40:44 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000000e000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3626.681055][T17369] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3626.691390][T17369] genl_family_rcv_msg_doit+0x228/0x320 [ 3626.698948][T17369] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3626.710394][T17369] ? mutex_lock_io_nested+0x1150/0x1150 [ 3626.718845][T17369] ? genl_op_from_small+0x23/0x3c0 [ 3626.726740][T17369] ? genl_get_cmd+0x3cf/0x480 [ 3626.732505][T17369] genl_rcv_msg+0x328/0x580 [ 3626.737911][T17369] ? genl_get_cmd+0x480/0x480 23:40:44 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000000f000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3626.744231][T17369] ? nbd_start_device+0xdd0/0xdd0 [ 3626.764958][T17369] ? lock_release+0x720/0x720 [ 3626.770953][T17369] netlink_rcv_skb+0x153/0x420 [ 3626.777455][T17369] ? genl_get_cmd+0x480/0x480 [ 3626.783269][T17369] ? netlink_ack+0xa60/0xa60 23:40:44 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000010000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3626.804099][T17369] ? netlink_deliver_tap+0x1b1/0xc30 [ 3626.825534][T17369] genl_rcv+0x24/0x40 [ 3626.830579][T17369] netlink_unicast+0x533/0x7d0 [ 3626.836533][T17369] ? netlink_attachskb+0x890/0x890 [ 3626.842319][T17369] netlink_sendmsg+0x86d/0xdb0 [ 3626.852549][T17369] ? netlink_unicast+0x7d0/0x7d0 [ 3626.858654][T17369] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3626.866131][T17369] ? netlink_unicast+0x7d0/0x7d0 [ 3626.872136][T17369] sock_sendmsg+0xcf/0x120 [ 3626.877175][T17369] ____sys_sendmsg+0x6e8/0x810 [ 3626.883028][T17369] ? kernel_sendmsg+0x50/0x50 [ 3626.889430][T17369] ? do_recvmmsg+0x6d0/0x6d0 [ 3626.894936][T17369] ? lock_chain_count+0x20/0x20 [ 3626.901101][T17369] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3626.908785][T17369] ___sys_sendmsg+0xf3/0x170 [ 3626.915357][T17369] ? sendmsg_copy_msghdr+0x160/0x160 [ 3626.923191][T17369] ? __fget_files+0x21b/0x3e0 [ 3626.929679][T17369] ? lock_downgrade+0x6e0/0x6e0 [ 3626.936841][T17369] ? __fget_files+0x23d/0x3e0 [ 3626.943774][T17369] ? __fget_light+0xea/0x280 [ 3626.949355][T17369] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3626.957957][T17369] __sys_sendmsg+0xe5/0x1b0 [ 3626.964331][T17369] ? __sys_sendmsg_sock+0x30/0x30 [ 3626.971584][T17369] ? syscall_enter_from_user_mode+0x21/0x70 [ 3626.979322][T17369] do_syscall_64+0x35/0xb0 [ 3626.984907][T17369] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3626.993195][T17369] RIP: 0033:0x7f0b1aeaaae9 [ 3626.999503][T17369] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3627.025527][T17369] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3627.037209][T17369] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3627.047342][T17369] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3627.057863][T17369] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3627.068197][T17369] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3627.078672][T17369] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3627.090882][T17369] nbd: failed to add new device 23:40:45 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x6a01}]}, 0x30}}, 0x0) 23:40:45 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000011000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:45 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acdf}, 0x0) 23:40:45 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 27) [ 3627.197365][T17386] FAULT_INJECTION: forcing a failure. 23:40:45 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000044000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3627.197365][T17386] name failslab, interval 1, probability 0, space 0, times 0 [ 3627.213988][T17386] CPU: 3 PID: 17386 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3627.224759][T17386] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3627.236013][T17386] Call Trace: [ 3627.240344][T17386] dump_stack_lvl+0xcd/0x134 [ 3627.246287][T17386] should_fail.cold+0x5/0xa [ 3627.252218][T17386] ? lock_release+0x720/0x720 23:40:45 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000060000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3627.258344][T17386] should_failslab+0x5/0x10 [ 3627.264591][T17386] kmem_cache_alloc_node_trace+0x6e/0x5c0 [ 3627.271946][T17386] ? rwlock_bug.part.0+0x90/0x90 [ 3627.278763][T17386] ? _raw_spin_lock_irq+0x41/0x50 [ 3627.285425][T17386] ? throtl_charge_bio+0x230/0x230 [ 3627.292949][T17386] throtl_pd_alloc+0xc1/0xa80 [ 3627.298998][T17386] ? throtl_charge_bio+0x230/0x230 [ 3627.305717][T17386] blkcg_activate_policy+0x232/0xc00 [ 3627.312246][T17386] blk_throtl_init+0x43d/0x660 [ 3627.318411][T17386] blkcg_init_queue+0x158/0x780 [ 3627.324139][T17386] blk_alloc_queue+0x44c/0x620 [ 3627.330558][T17386] __blk_mq_alloc_disk+0x4c/0x160 23:40:45 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000f0000000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3627.337629][T17386] nbd_dev_add+0x3b9/0xbb0 [ 3627.344024][T17386] nbd_genl_connect+0x11f3/0x1930 [ 3627.350141][T17386] ? nbd_start_device+0xdd0/0xdd0 [ 3627.356480][T17386] ? __nla_parse+0x3d/0x50 [ 3627.361959][T17386] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3627.370139][T17386] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3627.380750][T17386] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3627.389839][T17386] genl_family_rcv_msg_doit+0x228/0x320 [ 3627.397369][T17386] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3627.406927][T17386] ? mutex_lock_io_nested+0x1150/0x1150 [ 3627.413799][T17386] ? genl_op_from_small+0x23/0x3c0 [ 3627.420050][T17386] ? genl_get_cmd+0x3cf/0x480 [ 3627.425781][T17386] genl_rcv_msg+0x328/0x580 23:40:45 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000030000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3627.432471][T17386] ? genl_get_cmd+0x480/0x480 [ 3627.439180][T17386] ? nbd_start_device+0xdd0/0xdd0 [ 3627.446150][T17386] ? lock_release+0x720/0x720 [ 3627.453536][T17386] netlink_rcv_skb+0x153/0x420 [ 3627.460107][T17386] ? genl_get_cmd+0x480/0x480 [ 3627.466472][T17386] ? netlink_ack+0xa60/0xa60 [ 3627.472594][T17386] ? netlink_deliver_tap+0x1b1/0xc30 [ 3627.479376][T17386] genl_rcv+0x24/0x40 [ 3627.484844][T17386] netlink_unicast+0x533/0x7d0 [ 3627.490924][T17386] ? netlink_attachskb+0x890/0x890 [ 3627.497594][T17386] netlink_sendmsg+0x86d/0xdb0 [ 3627.503957][T17386] ? netlink_unicast+0x7d0/0x7d0 [ 3627.510280][T17386] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3627.518292][T17386] ? netlink_unicast+0x7d0/0x7d0 [ 3627.525734][T17386] sock_sendmsg+0xcf/0x120 [ 3627.533675][T17386] ____sys_sendmsg+0x6e8/0x810 [ 3627.540944][T17386] ? kernel_sendmsg+0x50/0x50 [ 3627.547634][T17386] ? do_recvmmsg+0x6d0/0x6d0 [ 3627.554146][T17386] ? lock_chain_count+0x20/0x20 [ 3627.560935][T17386] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3627.569013][T17386] ___sys_sendmsg+0xf3/0x170 [ 3627.574865][T17386] ? sendmsg_copy_msghdr+0x160/0x160 [ 3627.582444][T17386] ? __fget_files+0x21b/0x3e0 [ 3627.588249][T17386] ? lock_downgrade+0x6e0/0x6e0 [ 3627.595016][T17386] ? __fget_files+0x23d/0x3e0 [ 3627.603772][T17386] ? __fget_light+0xea/0x280 [ 3627.611595][T17386] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3627.619992][T17386] __sys_sendmsg+0xe5/0x1b0 [ 3627.625673][T17386] ? __sys_sendmsg_sock+0x30/0x30 [ 3627.632331][T17386] ? syscall_enter_from_user_mode+0x21/0x70 [ 3627.640052][T17386] do_syscall_64+0x35/0xb0 [ 3627.646006][T17386] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3627.654343][T17386] RIP: 0033:0x7f0b1aeaaae9 [ 3627.660391][T17386] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3627.688339][T17386] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3627.698980][T17386] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3627.709384][T17386] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3627.719856][T17386] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3627.730320][T17386] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3627.740285][T17386] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3627.791429][T17391] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3627.803688][T17391] nbd: must specify at least one socket 23:40:45 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000050000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:45 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 28) 23:40:45 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x6b01}]}, 0x30}}, 0x0) 23:40:45 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7ace0}, 0x0) [ 3627.893853][T17410] FAULT_INJECTION: forcing a failure. [ 3627.893853][T17410] name failslab, interval 1, probability 0, space 0, times 0 [ 3627.910412][T17410] CPU: 1 PID: 17410 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 23:40:46 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000060000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3627.921409][T17410] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3627.933183][T17410] Call Trace: [ 3627.937392][T17410] dump_stack_lvl+0xcd/0x134 [ 3627.943739][T17410] should_fail.cold+0x5/0xa [ 3627.949471][T17410] should_failslab+0x5/0x10 [ 3627.955474][T17410] kmem_cache_alloc_trace+0x57/0x480 [ 3627.962885][T17410] blk_iolatency_init+0x4b/0x380 [ 3627.969092][T17410] blkcg_init_queue+0x194/0x780 [ 3627.976092][T17410] blk_alloc_queue+0x44c/0x620 23:40:46 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000070000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3627.982299][T17410] __blk_mq_alloc_disk+0x4c/0x160 [ 3627.991367][T17410] nbd_dev_add+0x3b9/0xbb0 [ 3627.999370][T17410] nbd_genl_connect+0x11f3/0x1930 [ 3628.007383][T17410] ? nbd_start_device+0xdd0/0xdd0 [ 3628.015843][T17410] ? __nla_parse+0x3d/0x50 [ 3628.022270][T17410] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 23:40:46 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000090000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3628.031465][T17410] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3628.044396][T17410] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3628.054816][T17410] genl_family_rcv_msg_doit+0x228/0x320 [ 3628.062198][T17410] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3628.073805][T17410] ? mutex_lock_io_nested+0x1150/0x1150 [ 3628.081662][T17410] ? genl_op_from_small+0x23/0x3c0 23:40:46 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000000a0000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3628.088307][T17410] ? genl_get_cmd+0x3cf/0x480 [ 3628.095287][T17410] genl_rcv_msg+0x328/0x580 [ 3628.101653][T17410] ? genl_get_cmd+0x480/0x480 [ 3628.108716][T17410] ? nbd_start_device+0xdd0/0xdd0 [ 3628.115396][T17410] ? lock_release+0x720/0x720 [ 3628.122152][T17410] netlink_rcv_skb+0x153/0x420 [ 3628.130931][T17410] ? genl_get_cmd+0x480/0x480 [ 3628.137189][T17410] ? netlink_ack+0xa60/0xa60 [ 3628.143180][T17410] ? netlink_deliver_tap+0x1b1/0xc30 [ 3628.150926][T17410] genl_rcv+0x24/0x40 23:40:46 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000000b0000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3628.156110][T17410] netlink_unicast+0x533/0x7d0 [ 3628.162735][T17410] ? netlink_attachskb+0x890/0x890 [ 3628.169681][T17410] netlink_sendmsg+0x86d/0xdb0 [ 3628.175563][T17410] ? netlink_unicast+0x7d0/0x7d0 [ 3628.181798][T17410] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3628.189376][T17410] ? netlink_unicast+0x7d0/0x7d0 [ 3628.195698][T17410] sock_sendmsg+0xcf/0x120 [ 3628.201964][T17410] ____sys_sendmsg+0x6e8/0x810 [ 3628.207812][T17410] ? kernel_sendmsg+0x50/0x50 [ 3628.214159][T17410] ? do_recvmmsg+0x6d0/0x6d0 [ 3628.220303][T17410] ? lock_chain_count+0x20/0x20 [ 3628.226485][T17410] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3628.235773][T17410] ___sys_sendmsg+0xf3/0x170 [ 3628.242456][T17410] ? sendmsg_copy_msghdr+0x160/0x160 [ 3628.249144][T17410] ? __fget_files+0x21b/0x3e0 [ 3628.255356][T17410] ? lock_downgrade+0x6e0/0x6e0 [ 3628.261855][T17410] ? __fget_files+0x23d/0x3e0 [ 3628.268423][T17410] ? __fget_light+0xea/0x280 [ 3628.274143][T17410] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3628.281545][T17410] __sys_sendmsg+0xe5/0x1b0 [ 3628.287659][T17410] ? __sys_sendmsg_sock+0x30/0x30 [ 3628.296470][T17410] ? syscall_enter_from_user_mode+0x21/0x70 [ 3628.306099][T17410] do_syscall_64+0x35/0xb0 [ 3628.311835][T17410] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3628.319244][T17410] RIP: 0033:0x7f0b1aeaaae9 [ 3628.325105][T17410] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3628.353650][T17410] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3628.364830][T17410] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3628.377014][T17410] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3628.391499][T17410] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3628.407231][T17410] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3628.423362][T17410] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3628.444779][T17410] nbd: failed to add new device [ 3628.464011][T17412] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3628.484852][T17412] nbd: must specify at least one socket 23:40:46 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 29) 23:40:46 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x6c02}]}, 0x30}}, 0x0) 23:40:46 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000000e0000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:46 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7ace1}, 0x0) [ 3628.579253][T17430] FAULT_INJECTION: forcing a failure. 23:40:46 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000000f0000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3628.579253][T17430] name failslab, interval 1, probability 0, space 0, times 0 [ 3628.595209][T17430] CPU: 1 PID: 17430 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3628.607325][T17430] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3628.619567][T17430] Call Trace: [ 3628.624544][T17430] dump_stack_lvl+0xcd/0x134 [ 3628.629932][T17430] should_fail.cold+0x5/0xa [ 3628.635414][T17430] should_failslab+0x5/0x10 [ 3628.641268][T17430] kmem_cache_alloc_node_trace+0x6e/0x5c0 23:40:46 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000110000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3628.648935][T17430] ? rwlock_bug.part.0+0x90/0x90 [ 3628.654751][T17430] iolatency_pd_alloc+0xbe/0x1c0 [ 3628.660087][T17430] ? iolat_acquire_inflight+0x50/0x50 [ 3628.666006][T17430] blkcg_activate_policy+0x232/0xc00 [ 3628.671557][T17430] blk_iolatency_init+0x1aa/0x380 [ 3628.677319][T17430] blkcg_init_queue+0x194/0x780 [ 3628.683254][T17430] blk_alloc_queue+0x44c/0x620 [ 3628.688627][T17430] __blk_mq_alloc_disk+0x4c/0x160 [ 3628.694542][T17430] nbd_dev_add+0x3b9/0xbb0 [ 3628.699521][T17430] nbd_genl_connect+0x11f3/0x1930 [ 3628.704910][T17430] ? nbd_start_device+0xdd0/0xdd0 [ 3628.709850][T17430] ? __nla_parse+0x3d/0x50 [ 3628.714217][T17430] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3628.720901][T17430] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3628.728407][T17430] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3628.735849][T17430] genl_family_rcv_msg_doit+0x228/0x320 [ 3628.741678][T17430] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3628.750199][T17430] ? mutex_lock_io_nested+0x1150/0x1150 [ 3628.757178][T17430] ? genl_op_from_small+0x23/0x3c0 [ 3628.764210][T17430] ? genl_get_cmd+0x3cf/0x480 [ 3628.770322][T17430] genl_rcv_msg+0x328/0x580 [ 3628.776190][T17430] ? genl_get_cmd+0x480/0x480 [ 3628.782259][T17430] ? nbd_start_device+0xdd0/0xdd0 [ 3628.787999][T17430] ? lock_release+0x720/0x720 [ 3628.793758][T17430] netlink_rcv_skb+0x153/0x420 [ 3628.800051][T17430] ? genl_get_cmd+0x480/0x480 [ 3628.806324][T17430] ? netlink_ack+0xa60/0xa60 [ 3628.812200][T17430] ? netlink_deliver_tap+0x1b1/0xc30 [ 3628.818671][T17430] genl_rcv+0x24/0x40 [ 3628.823759][T17430] netlink_unicast+0x533/0x7d0 [ 3628.829589][T17430] ? netlink_attachskb+0x890/0x890 [ 3628.836002][T17430] netlink_sendmsg+0x86d/0xdb0 23:40:46 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000044220000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3628.842522][T17430] ? netlink_unicast+0x7d0/0x7d0 [ 3628.849533][T17430] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3628.857492][T17430] ? netlink_unicast+0x7d0/0x7d0 23:40:46 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000440000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3628.863899][T17430] sock_sendmsg+0xcf/0x120 [ 3628.869940][T17430] ____sys_sendmsg+0x6e8/0x810 [ 3628.876574][T17430] ? kernel_sendmsg+0x50/0x50 [ 3628.882845][T17430] ? do_recvmmsg+0x6d0/0x6d0 [ 3628.888494][T17430] ? lock_chain_count+0x20/0x20 [ 3628.894446][T17430] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3628.901736][T17430] ___sys_sendmsg+0xf3/0x170 [ 3628.906845][T17430] ? sendmsg_copy_msghdr+0x160/0x160 [ 3628.912988][T17430] ? __fget_files+0x21b/0x3e0 [ 3628.918761][T17430] ? lock_downgrade+0x6e0/0x6e0 [ 3628.924977][T17430] ? __fget_files+0x23d/0x3e0 [ 3628.931098][T17430] ? __fget_light+0xea/0x280 [ 3628.936985][T17430] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3628.945947][T17430] __sys_sendmsg+0xe5/0x1b0 [ 3628.951715][T17430] ? __sys_sendmsg_sock+0x30/0x30 [ 3628.958374][T17430] ? syscall_enter_from_user_mode+0x21/0x70 [ 3628.966724][T17430] do_syscall_64+0x35/0xb0 [ 3628.972859][T17430] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3628.979990][T17430] RIP: 0033:0x7f0b1aeaaae9 [ 3628.986068][T17430] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3629.011310][T17430] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3629.023076][T17430] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3629.034629][T17430] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3629.045340][T17430] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3629.055927][T17430] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3629.068805][T17430] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 23:40:47 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 30) 23:40:47 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x6d02}]}, 0x30}}, 0x0) 23:40:47 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000022440000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:47 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7ace2}, 0x0) 23:40:47 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000600000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3629.226499][T17452] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3629.238151][T17452] nbd: must specify at least one socket 23:40:47 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000f00000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3629.256556][T17451] FAULT_INJECTION: forcing a failure. [ 3629.256556][T17451] name failslab, interval 1, probability 0, space 0, times 0 [ 3629.273263][T17451] CPU: 1 PID: 17451 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 23:40:47 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x6f02}]}, 0x30}}, 0x0) [ 3629.284818][T17451] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3629.297451][T17451] Call Trace: [ 3629.301605][T17451] dump_stack_lvl+0xcd/0x134 [ 3629.306984][T17451] should_fail.cold+0x5/0xa [ 3629.312278][T17451] ? blk_mq_delay_kick_requeue_list+0x30/0x30 23:40:47 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000400300000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3629.319807][T17451] should_failslab+0x5/0x10 [ 3629.326092][T17451] kmem_cache_alloc_trace+0x57/0x480 [ 3629.333376][T17451] ? lockdep_init_map_type+0x2c3/0x7b0 [ 3629.340759][T17451] ? blk_mq_delay_kick_requeue_list+0x30/0x30 [ 3629.349474][T17451] ? blk_mq_has_request+0xb0/0xb0 [ 3629.355702][T17451] blk_stat_alloc_callback+0x54/0x290 [ 3629.363615][T17451] blk_mq_init_allocated_queue+0x89/0x12c0 [ 3629.372844][T17451] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3629.380900][T17451] ? blkcg_init_queue+0x17b/0x780 [ 3629.387007][T17451] ? blk_queue_dma_alignment+0xc/0x50 [ 3629.394529][T17451] ? blk_set_default_limits+0x9/0x620 [ 3629.401622][T17451] ? blk_alloc_queue+0x4ae/0x620 [ 3629.407945][T17451] __blk_mq_alloc_disk+0x8b/0x160 [ 3629.414264][T17451] nbd_dev_add+0x3b9/0xbb0 [ 3629.420129][T17451] nbd_genl_connect+0x11f3/0x1930 [ 3629.428041][T17451] ? nbd_start_device+0xdd0/0xdd0 [ 3629.434436][T17451] ? __nla_parse+0x3d/0x50 [ 3629.441395][T17451] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3629.450358][T17451] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3629.459660][T17451] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3629.469590][T17451] genl_family_rcv_msg_doit+0x228/0x320 [ 3629.477013][T17451] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3629.488712][T17451] ? mutex_lock_io_nested+0x1150/0x1150 [ 3629.495527][T17451] ? genl_op_from_small+0x23/0x3c0 [ 3629.502336][T17451] ? genl_get_cmd+0x3cf/0x480 [ 3629.508128][T17451] genl_rcv_msg+0x328/0x580 [ 3629.513204][T17451] ? genl_get_cmd+0x480/0x480 [ 3629.517845][T17451] ? nbd_start_device+0xdd0/0xdd0 [ 3629.523492][T17451] ? lock_release+0x720/0x720 [ 3629.529532][T17451] netlink_rcv_skb+0x153/0x420 [ 3629.536539][T17451] ? genl_get_cmd+0x480/0x480 [ 3629.542327][T17451] ? netlink_ack+0xa60/0xa60 [ 3629.547500][T17451] ? netlink_deliver_tap+0x1b1/0xc30 [ 3629.553523][T17451] genl_rcv+0x24/0x40 [ 3629.558059][T17451] netlink_unicast+0x533/0x7d0 [ 3629.563275][T17451] ? netlink_attachskb+0x890/0x890 [ 3629.568538][T17451] netlink_sendmsg+0x86d/0xdb0 [ 3629.573668][T17451] ? netlink_unicast+0x7d0/0x7d0 [ 3629.578753][T17451] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3629.586236][T17451] ? netlink_unicast+0x7d0/0x7d0 [ 3629.592606][T17451] sock_sendmsg+0xcf/0x120 [ 3629.598147][T17451] ____sys_sendmsg+0x6e8/0x810 [ 3629.604076][T17451] ? kernel_sendmsg+0x50/0x50 [ 3629.610724][T17451] ? do_recvmmsg+0x6d0/0x6d0 [ 3629.616868][T17451] ? lock_chain_count+0x20/0x20 [ 3629.623532][T17451] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3629.631205][T17451] ___sys_sendmsg+0xf3/0x170 [ 3629.636766][T17451] ? sendmsg_copy_msghdr+0x160/0x160 [ 3629.643245][T17451] ? __fget_files+0x21b/0x3e0 [ 3629.649076][T17451] ? lock_downgrade+0x6e0/0x6e0 [ 3629.654854][T17451] ? __fget_files+0x23d/0x3e0 [ 3629.660733][T17451] ? __fget_light+0xea/0x280 [ 3629.666394][T17451] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3629.674187][T17451] __sys_sendmsg+0xe5/0x1b0 [ 3629.680129][T17451] ? __sys_sendmsg_sock+0x30/0x30 [ 3629.686350][T17451] ? syscall_enter_from_user_mode+0x21/0x70 [ 3629.693696][T17451] do_syscall_64+0x35/0xb0 [ 3629.698925][T17451] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3629.706840][T17451] RIP: 0033:0x7f0b1aeaaae9 [ 3629.713005][T17451] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3629.736815][T17451] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3629.747532][T17451] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3629.758372][T17451] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3629.768648][T17451] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3629.779037][T17451] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3629.789523][T17451] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3629.803745][T17451] nbd: failed to add new device 23:40:47 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 31) 23:40:47 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000034000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:47 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7ace3}, 0x0) 23:40:47 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x7001}]}, 0x30}}, 0x0) 23:40:48 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000fffff000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:48 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7ace4}, 0x0) [ 3629.982536][T17474] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3630.000890][T17474] nbd: must specify at least one socket [ 3630.016080][T17470] FAULT_INJECTION: forcing a failure. 23:40:48 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000001000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3630.016080][T17470] name failslab, interval 1, probability 0, space 0, times 0 [ 3630.035601][T17470] CPU: 3 PID: 17470 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3630.047682][T17470] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3630.060730][T17470] Call Trace: [ 3630.065272][T17470] dump_stack_lvl+0xcd/0x134 [ 3630.071537][T17470] should_fail.cold+0x5/0xa [ 3630.077077][T17470] ? blk_stat_alloc_callback+0x81/0x290 [ 3630.084298][T17470] should_failslab+0x5/0x10 [ 3630.090094][T17470] __kmalloc+0x7e/0x4d0 [ 3630.095068][T17470] ? blk_mq_delay_kick_requeue_list+0x30/0x30 [ 3630.102398][T17470] ? blk_mq_has_request+0xb0/0xb0 23:40:48 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000002000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3630.108582][T17470] blk_stat_alloc_callback+0x81/0x290 [ 3630.115575][T17470] blk_mq_init_allocated_queue+0x89/0x12c0 [ 3630.124023][T17470] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3630.131790][T17470] ? blkcg_init_queue+0x17b/0x780 [ 3630.138157][T17470] ? blk_queue_dma_alignment+0xc/0x50 [ 3630.144433][T17470] ? blk_set_default_limits+0x9/0x620 [ 3630.151626][T17470] ? blk_alloc_queue+0x4ae/0x620 [ 3630.160139][T17470] __blk_mq_alloc_disk+0x8b/0x160 [ 3630.165742][T17470] nbd_dev_add+0x3b9/0xbb0 [ 3630.171043][T17470] nbd_genl_connect+0x11f3/0x1930 [ 3630.177281][T17470] ? nbd_start_device+0xdd0/0xdd0 [ 3630.184568][T17470] ? __nla_parse+0x3d/0x50 [ 3630.190304][T17470] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3630.199823][T17470] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3630.210317][T17470] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3630.219755][T17470] genl_family_rcv_msg_doit+0x228/0x320 [ 3630.227248][T17470] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3630.237191][T17470] ? mutex_lock_io_nested+0x1150/0x1150 [ 3630.244288][T17470] ? genl_op_from_small+0x23/0x3c0 [ 3630.251015][T17470] ? genl_get_cmd+0x3cf/0x480 [ 3630.257233][T17470] genl_rcv_msg+0x328/0x580 [ 3630.263951][T17470] ? genl_get_cmd+0x480/0x480 [ 3630.269914][T17470] ? nbd_start_device+0xdd0/0xdd0 [ 3630.276947][T17470] ? lock_release+0x720/0x720 [ 3630.283197][T17470] netlink_rcv_skb+0x153/0x420 [ 3630.289643][T17470] ? genl_get_cmd+0x480/0x480 [ 3630.296021][T17470] ? netlink_ack+0xa60/0xa60 [ 3630.302217][T17470] ? netlink_deliver_tap+0x1b1/0xc30 [ 3630.309669][T17470] genl_rcv+0x24/0x40 [ 3630.315007][T17470] netlink_unicast+0x533/0x7d0 [ 3630.321281][T17470] ? netlink_attachskb+0x890/0x890 [ 3630.327904][T17470] netlink_sendmsg+0x86d/0xdb0 [ 3630.333995][T17470] ? netlink_unicast+0x7d0/0x7d0 [ 3630.340449][T17470] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3630.348609][T17470] ? netlink_unicast+0x7d0/0x7d0 [ 3630.355505][T17470] sock_sendmsg+0xcf/0x120 [ 3630.361187][T17470] ____sys_sendmsg+0x6e8/0x810 [ 3630.368045][T17470] ? kernel_sendmsg+0x50/0x50 [ 3630.374669][T17470] ? do_recvmmsg+0x6d0/0x6d0 [ 3630.380942][T17470] ? lock_chain_count+0x20/0x20 [ 3630.387516][T17470] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3630.394878][T17470] ___sys_sendmsg+0xf3/0x170 [ 3630.400996][T17470] ? sendmsg_copy_msghdr+0x160/0x160 [ 3630.407433][T17470] ? __fget_files+0x21b/0x3e0 [ 3630.413071][T17470] ? lock_downgrade+0x6e0/0x6e0 [ 3630.419257][T17470] ? __fget_files+0x23d/0x3e0 [ 3630.425621][T17470] ? __fget_light+0xea/0x280 [ 3630.431944][T17470] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3630.440087][T17470] __sys_sendmsg+0xe5/0x1b0 [ 3630.445941][T17470] ? __sys_sendmsg_sock+0x30/0x30 [ 3630.452337][T17470] ? syscall_enter_from_user_mode+0x21/0x70 [ 3630.459997][T17470] do_syscall_64+0x35/0xb0 [ 3630.465451][T17470] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3630.472982][T17470] RIP: 0033:0x7f0b1aeaaae9 [ 3630.478772][T17470] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3630.505672][T17470] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3630.517512][T17470] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3630.528663][T17470] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3630.539119][T17470] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3630.550153][T17470] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3630.562058][T17470] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3630.575239][T17470] nbd: failed to add new device [ 3630.586232][T17474] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3630.599701][T17474] nbd: must specify at least one socket 23:40:48 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 32) 23:40:48 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000003000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:48 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x7101}]}, 0x30}}, 0x0) 23:40:48 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7ace5}, 0x0) 23:40:48 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000004000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3630.696895][T17492] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3630.734940][T17492] nbd: must specify at least one socket [ 3630.769365][T17489] FAULT_INJECTION: forcing a failure. [ 3630.769365][T17489] name failslab, interval 1, probability 0, space 0, times 0 23:40:48 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7ace6}, 0x0) [ 3630.788343][T17489] CPU: 0 PID: 17489 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3630.799126][T17489] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3630.809900][T17489] Call Trace: [ 3630.813350][T17489] dump_stack_lvl+0xcd/0x134 [ 3630.819156][T17489] should_fail.cold+0x5/0xa 23:40:48 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000005000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3630.825178][T17489] ? blk_mq_delay_kick_requeue_list+0x30/0x30 [ 3630.833765][T17489] should_failslab+0x5/0x10 [ 3630.840075][T17489] kmem_cache_alloc_trace+0x57/0x480 [ 3630.846704][T17489] ? lockdep_init_map_type+0x2c3/0x7b0 [ 3630.853528][T17489] ? blk_mq_delay_kick_requeue_list+0x30/0x30 [ 3630.860918][T17489] ? blk_mq_has_request+0xb0/0xb0 [ 3630.867553][T17489] blk_stat_alloc_callback+0x54/0x290 23:40:48 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000006000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3630.875514][T17489] blk_mq_init_allocated_queue+0x89/0x12c0 [ 3630.883401][T17489] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3630.891083][T17489] ? blkcg_init_queue+0x17b/0x780 [ 3630.897327][T17489] ? blk_queue_dma_alignment+0xc/0x50 [ 3630.905043][T17489] ? blk_set_default_limits+0x9/0x620 [ 3630.912118][T17489] ? blk_alloc_queue+0x4ae/0x620 [ 3630.918752][T17489] __blk_mq_alloc_disk+0x8b/0x160 [ 3630.927514][T17489] nbd_dev_add+0x3b9/0xbb0 [ 3630.933421][T17489] nbd_genl_connect+0x11f3/0x1930 [ 3630.941360][T17489] ? nbd_start_device+0xdd0/0xdd0 [ 3630.948266][T17489] ? __nla_parse+0x3d/0x50 [ 3630.953425][T17489] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3630.960681][T17489] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3630.968937][T17489] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3630.976666][T17489] genl_family_rcv_msg_doit+0x228/0x320 [ 3630.983547][T17489] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3630.991064][T17489] ? mutex_lock_io_nested+0x1150/0x1150 [ 3630.996649][T17489] ? genl_op_from_small+0x23/0x3c0 [ 3631.002821][T17489] ? genl_get_cmd+0x3cf/0x480 [ 3631.008523][T17489] genl_rcv_msg+0x328/0x580 [ 3631.014226][T17489] ? genl_get_cmd+0x480/0x480 [ 3631.020191][T17489] ? nbd_start_device+0xdd0/0xdd0 [ 3631.026839][T17489] ? lock_release+0x720/0x720 [ 3631.032690][T17489] netlink_rcv_skb+0x153/0x420 [ 3631.038273][T17489] ? genl_get_cmd+0x480/0x480 [ 3631.044008][T17489] ? netlink_ack+0xa60/0xa60 [ 3631.048844][T17489] ? netlink_deliver_tap+0x1b1/0xc30 [ 3631.054215][T17489] genl_rcv+0x24/0x40 [ 3631.058375][T17489] netlink_unicast+0x533/0x7d0 [ 3631.063785][T17489] ? netlink_attachskb+0x890/0x890 [ 3631.069379][T17489] netlink_sendmsg+0x86d/0xdb0 [ 3631.074201][T17489] ? netlink_unicast+0x7d0/0x7d0 [ 3631.079672][T17489] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3631.086906][T17489] ? netlink_unicast+0x7d0/0x7d0 [ 3631.092541][T17489] sock_sendmsg+0xcf/0x120 [ 3631.098193][T17489] ____sys_sendmsg+0x6e8/0x810 [ 3631.104132][T17489] ? kernel_sendmsg+0x50/0x50 [ 3631.110351][T17489] ? do_recvmmsg+0x6d0/0x6d0 [ 3631.116180][T17489] ? lock_chain_count+0x20/0x20 [ 3631.122427][T17489] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3631.129573][T17489] ___sys_sendmsg+0xf3/0x170 [ 3631.134671][T17489] ? sendmsg_copy_msghdr+0x160/0x160 [ 3631.140305][T17489] ? __fget_files+0x21b/0x3e0 [ 3631.145564][T17489] ? lock_downgrade+0x6e0/0x6e0 [ 3631.150842][T17489] ? __fget_files+0x23d/0x3e0 [ 3631.156588][T17489] ? __fget_light+0xea/0x280 [ 3631.162255][T17489] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3631.169646][T17489] __sys_sendmsg+0xe5/0x1b0 [ 3631.175712][T17489] ? __sys_sendmsg_sock+0x30/0x30 [ 3631.181960][T17489] ? syscall_enter_from_user_mode+0x21/0x70 [ 3631.188166][T17489] do_syscall_64+0x35/0xb0 [ 3631.192959][T17489] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3631.201144][T17489] RIP: 0033:0x7f0b1aeaaae9 [ 3631.206194][T17489] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3631.228417][T17489] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3631.237649][T17489] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3631.246142][T17489] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3631.254579][T17489] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3631.263773][T17489] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3631.273714][T17489] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3631.284138][T17489] nbd: failed to add new device 23:40:49 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 33) 23:40:49 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000007000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:49 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x7102}]}, 0x30}}, 0x0) 23:40:49 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7ace7}, 0x0) [ 3631.374113][T17510] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3631.387599][T17510] nbd: must specify at least one socket 23:40:49 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000008000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:49 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x7503}]}, 0x30}}, 0x0) [ 3631.421243][T17515] FAULT_INJECTION: forcing a failure. [ 3631.421243][T17515] name failslab, interval 1, probability 0, space 0, times 0 [ 3631.440519][T17515] CPU: 2 PID: 17515 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3631.451691][T17515] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 23:40:49 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000009000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3631.462302][T17515] Call Trace: [ 3631.466426][T17515] dump_stack_lvl+0xcd/0x134 [ 3631.472074][T17515] should_fail.cold+0x5/0xa [ 3631.478395][T17515] should_failslab+0x5/0x10 [ 3631.484563][T17515] kmem_cache_alloc_node_trace+0x6e/0x5c0 [ 3631.493086][T17515] __kmalloc_node+0x38/0x60 [ 3631.498926][T17515] blk_mq_realloc_hw_ctxs+0x109/0x1530 [ 3631.505559][T17515] ? lockdep_init_map_type+0x2c3/0x7b0 [ 3631.512440][T17515] blk_mq_init_allocated_queue+0x324/0x12c0 [ 3631.520049][T17515] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3631.527407][T17515] ? blkcg_init_queue+0x17b/0x780 [ 3631.533424][T17515] ? blk_queue_dma_alignment+0xc/0x50 [ 3631.540212][T17515] ? blk_set_default_limits+0x9/0x620 [ 3631.546574][T17515] __blk_mq_alloc_disk+0x8b/0x160 [ 3631.552442][T17515] nbd_dev_add+0x3b9/0xbb0 [ 3631.557215][T17515] nbd_genl_connect+0x11f3/0x1930 [ 3631.562522][T17515] ? nbd_start_device+0xdd0/0xdd0 [ 3631.567398][T17515] ? __nla_parse+0x3d/0x50 [ 3631.571468][T17515] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3631.577849][T17515] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3631.586855][T17515] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3631.594652][T17515] genl_family_rcv_msg_doit+0x228/0x320 [ 3631.602036][T17515] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3631.611937][T17515] ? mutex_lock_io_nested+0x1150/0x1150 [ 3631.617624][T17515] ? genl_op_from_small+0x23/0x3c0 [ 3631.623971][T17515] ? genl_get_cmd+0x3cf/0x480 [ 3631.630076][T17515] genl_rcv_msg+0x328/0x580 [ 3631.635618][T17515] ? genl_get_cmd+0x480/0x480 [ 3631.641370][T17515] ? nbd_start_device+0xdd0/0xdd0 [ 3631.647601][T17515] ? lock_release+0x720/0x720 [ 3631.653789][T17515] netlink_rcv_skb+0x153/0x420 [ 3631.659248][T17515] ? genl_get_cmd+0x480/0x480 [ 3631.664760][T17515] ? netlink_ack+0xa60/0xa60 [ 3631.669704][T17515] ? netlink_deliver_tap+0x1b1/0xc30 [ 3631.676195][T17515] genl_rcv+0x24/0x40 [ 3631.680492][T17515] netlink_unicast+0x533/0x7d0 [ 3631.685191][T17515] ? netlink_attachskb+0x890/0x890 [ 3631.691129][T17515] netlink_sendmsg+0x86d/0xdb0 [ 3631.697255][T17515] ? netlink_unicast+0x7d0/0x7d0 [ 3631.703532][T17515] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3631.712027][T17515] ? netlink_unicast+0x7d0/0x7d0 [ 3631.717963][T17515] sock_sendmsg+0xcf/0x120 [ 3631.723422][T17515] ____sys_sendmsg+0x6e8/0x810 [ 3631.729174][T17515] ? kernel_sendmsg+0x50/0x50 [ 3631.735192][T17515] ? do_recvmmsg+0x6d0/0x6d0 [ 3631.740912][T17515] ? lock_chain_count+0x20/0x20 [ 3631.746520][T17515] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3631.753916][T17515] ___sys_sendmsg+0xf3/0x170 [ 3631.759739][T17515] ? sendmsg_copy_msghdr+0x160/0x160 [ 3631.765077][T17515] ? __fget_files+0x21b/0x3e0 [ 3631.770240][T17515] ? lock_downgrade+0x6e0/0x6e0 [ 3631.776203][T17515] ? __fget_files+0x23d/0x3e0 [ 3631.781284][T17515] ? __fget_light+0xea/0x280 [ 3631.786838][T17515] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3631.794165][T17515] __sys_sendmsg+0xe5/0x1b0 [ 3631.798979][T17515] ? __sys_sendmsg_sock+0x30/0x30 [ 3631.804130][T17515] ? syscall_enter_from_user_mode+0x21/0x70 [ 3631.810094][T17515] do_syscall_64+0x35/0xb0 [ 3631.814376][T17515] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3631.820121][T17515] RIP: 0033:0x7f0b1aeaaae9 [ 3631.824385][T17515] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3631.846104][T17515] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3631.855455][T17515] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3631.864755][T17515] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3631.873117][T17515] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3631.881604][T17515] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3631.891228][T17515] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3631.901624][T17515] nbd: failed to add new device 23:40:49 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000000000000a000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3631.933275][T17520] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3631.947024][T17520] nbd: must specify at least one socket 23:40:50 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 34) 23:40:50 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000000000000b000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:50 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7ace8}, 0x0) 23:40:50 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x7703}]}, 0x30}}, 0x0) [ 3632.016544][T17531] FAULT_INJECTION: forcing a failure. [ 3632.016544][T17531] name failslab, interval 1, probability 0, space 0, times 0 [ 3632.035872][T17531] CPU: 1 PID: 17531 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3632.049018][T17531] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3632.060605][T17531] Call Trace: [ 3632.065752][T17531] dump_stack_lvl+0xcd/0x134 23:40:50 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000000000000e000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3632.072347][T17531] should_fail.cold+0x5/0xa [ 3632.079400][T17531] should_failslab+0x5/0x10 [ 3632.084867][T17531] kmem_cache_alloc_node_trace+0x6e/0x5c0 [ 3632.091751][T17531] __kmalloc_node+0x38/0x60 [ 3632.098018][T17531] blk_mq_realloc_hw_ctxs+0x8f8/0x1530 [ 3632.104941][T17531] blk_mq_init_allocated_queue+0x324/0x12c0 [ 3632.112441][T17531] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3632.120737][T17531] ? blkcg_init_queue+0x17b/0x780 [ 3632.127818][T17531] ? blk_queue_dma_alignment+0xc/0x50 [ 3632.135899][T17531] ? blk_set_default_limits+0x9/0x620 [ 3632.143546][T17531] __blk_mq_alloc_disk+0x8b/0x160 [ 3632.150296][T17531] nbd_dev_add+0x3b9/0xbb0 [ 3632.157908][T17531] nbd_genl_connect+0x11f3/0x1930 [ 3632.164333][T17531] ? nbd_start_device+0xdd0/0xdd0 [ 3632.170472][T17531] ? __nla_parse+0x3d/0x50 [ 3632.176816][T17531] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3632.185011][T17531] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3632.195332][T17531] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3632.204944][T17531] genl_family_rcv_msg_doit+0x228/0x320 [ 3632.211882][T17531] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3632.221235][T17531] ? mutex_lock_io_nested+0x1150/0x1150 [ 3632.227689][T17531] ? genl_op_from_small+0x23/0x3c0 23:40:50 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000000000000f000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:50 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000010000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3632.234548][T17531] ? genl_get_cmd+0x3cf/0x480 [ 3632.240345][T17531] genl_rcv_msg+0x328/0x580 [ 3632.245428][T17531] ? genl_get_cmd+0x480/0x480 [ 3632.252169][T17531] ? nbd_start_device+0xdd0/0xdd0 [ 3632.259136][T17531] ? lock_release+0x720/0x720 [ 3632.265519][T17531] netlink_rcv_skb+0x153/0x420 [ 3632.272116][T17531] ? genl_get_cmd+0x480/0x480 [ 3632.278241][T17531] ? netlink_ack+0xa60/0xa60 [ 3632.284647][T17531] ? netlink_deliver_tap+0x1b1/0xc30 [ 3632.292172][T17531] genl_rcv+0x24/0x40 [ 3632.297191][T17531] netlink_unicast+0x533/0x7d0 [ 3632.303959][T17531] ? netlink_attachskb+0x890/0x890 [ 3632.310683][T17531] netlink_sendmsg+0x86d/0xdb0 [ 3632.316879][T17531] ? netlink_unicast+0x7d0/0x7d0 [ 3632.323275][T17531] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3632.331649][T17531] ? netlink_unicast+0x7d0/0x7d0 [ 3632.340780][T17531] sock_sendmsg+0xcf/0x120 [ 3632.348778][T17531] ____sys_sendmsg+0x6e8/0x810 [ 3632.355485][T17531] ? kernel_sendmsg+0x50/0x50 [ 3632.362549][T17531] ? do_recvmmsg+0x6d0/0x6d0 [ 3632.368876][T17531] ? lock_chain_count+0x20/0x20 [ 3632.374815][T17531] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3632.381077][T17531] ___sys_sendmsg+0xf3/0x170 [ 3632.385942][T17531] ? sendmsg_copy_msghdr+0x160/0x160 [ 3632.392214][T17531] ? __fget_files+0x21b/0x3e0 [ 3632.397622][T17531] ? lock_downgrade+0x6e0/0x6e0 [ 3632.404973][T17531] ? __fget_files+0x23d/0x3e0 [ 3632.411370][T17531] ? __fget_light+0xea/0x280 [ 3632.417987][T17531] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3632.425876][T17531] __sys_sendmsg+0xe5/0x1b0 [ 3632.433428][T17531] ? __sys_sendmsg_sock+0x30/0x30 [ 3632.442318][T17531] ? syscall_enter_from_user_mode+0x21/0x70 [ 3632.451427][T17531] do_syscall_64+0x35/0xb0 [ 3632.457697][T17531] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3632.468009][T17531] RIP: 0033:0x7f0b1aeaaae9 [ 3632.475600][T17531] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3632.515922][T17531] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3632.534409][T17531] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3632.544431][T17531] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3632.554372][T17531] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3632.564337][T17531] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3632.574377][T17531] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 23:40:50 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000011000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3632.586874][T17531] nbd: failed to add new device [ 3632.616043][T17533] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3632.627742][T17533] nbd: must specify at least one socket 23:40:50 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 35) 23:40:50 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000044000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:50 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7ace9}, 0x0) 23:40:50 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x7902}]}, 0x30}}, 0x0) [ 3632.680230][T17548] FAULT_INJECTION: forcing a failure. [ 3632.680230][T17548] name failslab, interval 1, probability 0, space 0, times 0 [ 3632.699568][T17548] CPU: 2 PID: 17548 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 23:40:50 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000002244000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3632.710865][T17548] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3632.725592][T17548] Call Trace: [ 3632.730499][T17548] dump_stack_lvl+0xcd/0x134 [ 3632.736845][T17548] should_fail.cold+0x5/0xa [ 3632.742819][T17548] should_failslab+0x5/0x10 [ 3632.748352][T17548] kmem_cache_alloc_node_trace+0x6e/0x5c0 [ 3632.755771][T17548] ? lockdep_init_map_type+0x2c3/0x7b0 [ 3632.762433][T17548] __kmalloc_node+0x38/0x60 [ 3632.768762][T17548] blk_mq_realloc_hw_ctxs+0xbb2/0x1530 [ 3632.775588][T17548] blk_mq_init_allocated_queue+0x324/0x12c0 [ 3632.783081][T17548] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3632.790649][T17548] ? blkcg_init_queue+0x17b/0x780 [ 3632.797217][T17548] ? blk_queue_dma_alignment+0xc/0x50 [ 3632.804016][T17548] ? blk_set_default_limits+0x9/0x620 [ 3632.810218][T17548] __blk_mq_alloc_disk+0x8b/0x160 [ 3632.818143][T17548] nbd_dev_add+0x3b9/0xbb0 [ 3632.823708][T17548] nbd_genl_connect+0x11f3/0x1930 [ 3632.830303][T17548] ? nbd_start_device+0xdd0/0xdd0 [ 3632.836342][T17548] ? __nla_parse+0x3d/0x50 [ 3632.841655][T17548] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3632.849230][T17548] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3632.857480][T17548] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3632.867157][T17548] genl_family_rcv_msg_doit+0x228/0x320 23:40:50 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000060000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:50 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000ffffff9e000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3632.873658][T17548] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3632.883018][T17548] ? mutex_lock_io_nested+0x1150/0x1150 [ 3632.889954][T17548] ? genl_op_from_small+0x23/0x3c0 [ 3632.896253][T17548] ? genl_get_cmd+0x3cf/0x480 [ 3632.902580][T17548] genl_rcv_msg+0x328/0x580 [ 3632.909041][T17548] ? genl_get_cmd+0x480/0x480 [ 3632.914635][T17548] ? nbd_start_device+0xdd0/0xdd0 [ 3632.919688][T17548] ? lock_release+0x720/0x720 [ 3632.924394][T17548] netlink_rcv_skb+0x153/0x420 [ 3632.929390][T17548] ? genl_get_cmd+0x480/0x480 [ 3632.934112][T17548] ? netlink_ack+0xa60/0xa60 [ 3632.938855][T17548] ? netlink_deliver_tap+0x1b1/0xc30 [ 3632.944021][T17548] genl_rcv+0x24/0x40 [ 3632.947937][T17548] netlink_unicast+0x533/0x7d0 [ 3632.952504][T17548] ? netlink_attachskb+0x890/0x890 [ 3632.957587][T17548] netlink_sendmsg+0x86d/0xdb0 [ 3632.962405][T17548] ? netlink_unicast+0x7d0/0x7d0 [ 3632.968289][T17548] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3632.975743][T17548] ? netlink_unicast+0x7d0/0x7d0 [ 3632.982514][T17548] sock_sendmsg+0xcf/0x120 [ 3632.988668][T17548] ____sys_sendmsg+0x6e8/0x810 [ 3632.995493][T17548] ? kernel_sendmsg+0x50/0x50 [ 3633.001493][T17548] ? do_recvmmsg+0x6d0/0x6d0 [ 3633.007353][T17548] ? lock_chain_count+0x20/0x20 [ 3633.012923][T17548] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3633.020028][T17548] ___sys_sendmsg+0xf3/0x170 [ 3633.025467][T17548] ? sendmsg_copy_msghdr+0x160/0x160 [ 3633.032053][T17548] ? __fget_files+0x21b/0x3e0 [ 3633.037724][T17548] ? lock_downgrade+0x6e0/0x6e0 [ 3633.044056][T17548] ? __fget_files+0x23d/0x3e0 [ 3633.049963][T17548] ? __fget_light+0xea/0x280 [ 3633.056501][T17548] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3633.063891][T17548] __sys_sendmsg+0xe5/0x1b0 [ 3633.069564][T17548] ? __sys_sendmsg_sock+0x30/0x30 [ 3633.075819][T17548] ? syscall_enter_from_user_mode+0x21/0x70 [ 3633.084341][T17548] do_syscall_64+0x35/0xb0 [ 3633.090094][T17548] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3633.097399][T17548] RIP: 0033:0x7f0b1aeaaae9 [ 3633.103277][T17548] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3633.127397][T17548] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3633.136754][T17548] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3633.145452][T17548] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3633.155603][T17548] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3633.166882][T17548] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3633.178214][T17548] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3633.190920][T17548] nbd: failed to add new device 23:40:51 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000fffffff0000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3633.219440][T17550] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3633.232957][T17550] nbd: must specify at least one socket 23:40:51 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 36) 23:40:51 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000f0ffff000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3633.292362][T17567] FAULT_INJECTION: forcing a failure. [ 3633.292362][T17567] name failslab, interval 1, probability 0, space 0, times 0 [ 3633.310269][T17567] CPU: 0 PID: 17567 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3633.321421][T17567] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3633.332589][T17567] Call Trace: [ 3633.336688][T17567] dump_stack_lvl+0xcd/0x134 [ 3633.343791][T17567] should_fail.cold+0x5/0xa [ 3633.350250][T17567] should_failslab+0x5/0x10 [ 3633.356847][T17567] kmem_cache_alloc_node_trace+0x6e/0x5c0 [ 3633.365138][T17567] __kmalloc_node+0x38/0x60 [ 3633.371766][T17567] sbitmap_init_node+0x1c3/0x6f0 [ 3633.378392][T17567] blk_mq_realloc_hw_ctxs+0xc29/0x1530 [ 3633.385615][T17567] blk_mq_init_allocated_queue+0x324/0x12c0 [ 3633.395349][T17567] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3633.401872][T17567] ? blkcg_init_queue+0x17b/0x780 [ 3633.408444][T17567] ? blk_queue_dma_alignment+0xc/0x50 [ 3633.416077][T17567] ? blk_set_default_limits+0x9/0x620 [ 3633.423837][T17567] __blk_mq_alloc_disk+0x8b/0x160 [ 3633.432004][T17567] nbd_dev_add+0x3b9/0xbb0 [ 3633.437753][T17567] nbd_genl_connect+0x11f3/0x1930 [ 3633.445876][T17567] ? nbd_start_device+0xdd0/0xdd0 [ 3633.453099][T17567] ? __nla_parse+0x3d/0x50 [ 3633.460415][T17567] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3633.468609][T17567] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3633.478587][T17567] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3633.488612][T17567] genl_family_rcv_msg_doit+0x228/0x320 [ 3633.497054][T17567] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3633.507103][T17567] ? mutex_lock_io_nested+0x1150/0x1150 [ 3633.514096][T17567] ? genl_op_from_small+0x23/0x3c0 [ 3633.520410][T17567] ? genl_get_cmd+0x3cf/0x480 [ 3633.526621][T17567] genl_rcv_msg+0x328/0x580 [ 3633.531179][T17567] ? genl_get_cmd+0x480/0x480 [ 3633.536396][T17567] ? nbd_start_device+0xdd0/0xdd0 [ 3633.543187][T17567] ? lock_release+0x720/0x720 [ 3633.550032][T17567] netlink_rcv_skb+0x153/0x420 [ 3633.556476][T17567] ? genl_get_cmd+0x480/0x480 [ 3633.562180][T17567] ? netlink_ack+0xa60/0xa60 [ 3633.567911][T17567] ? netlink_deliver_tap+0x1b1/0xc30 [ 3633.575870][T17567] genl_rcv+0x24/0x40 [ 3633.581757][T17567] netlink_unicast+0x533/0x7d0 [ 3633.589050][T17567] ? netlink_attachskb+0x890/0x890 [ 3633.596436][T17567] netlink_sendmsg+0x86d/0xdb0 [ 3633.602434][T17567] ? netlink_unicast+0x7d0/0x7d0 [ 3633.608617][T17567] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3633.616402][T17567] ? netlink_unicast+0x7d0/0x7d0 [ 3633.623153][T17567] sock_sendmsg+0xcf/0x120 [ 3633.628933][T17567] ____sys_sendmsg+0x6e8/0x810 [ 3633.636451][T17567] ? kernel_sendmsg+0x50/0x50 [ 3633.642178][T17567] ? do_recvmmsg+0x6d0/0x6d0 [ 3633.648139][T17567] ? lock_chain_count+0x20/0x20 [ 3633.654117][T17567] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3633.661451][T17567] ___sys_sendmsg+0xf3/0x170 [ 3633.667859][T17567] ? sendmsg_copy_msghdr+0x160/0x160 [ 3633.674169][T17567] ? __fget_files+0x21b/0x3e0 [ 3633.679722][T17567] ? lock_downgrade+0x6e0/0x6e0 [ 3633.686007][T17567] ? __fget_files+0x23d/0x3e0 [ 3633.691878][T17567] ? __fget_light+0xea/0x280 [ 3633.697620][T17567] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3633.705240][T17567] __sys_sendmsg+0xe5/0x1b0 [ 3633.711976][T17567] ? __sys_sendmsg_sock+0x30/0x30 [ 3633.718136][T17567] ? syscall_enter_from_user_mode+0x21/0x70 [ 3633.725615][T17567] do_syscall_64+0x35/0xb0 [ 3633.731274][T17567] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3633.738209][T17567] RIP: 0033:0x7f0b1aeaaae9 [ 3633.743101][T17567] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3633.767487][T17567] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3633.777163][T17567] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3633.786458][T17567] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3633.796745][T17567] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3633.807252][T17567] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3633.816796][T17567] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3633.827736][T17567] nbd: failed to add new device [ 3635.077745][ T3692] device hsr_slave_0 left promiscuous mode [ 3635.088867][ T3692] device hsr_slave_1 left promiscuous mode [ 3635.101020][ T3692] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 3635.110734][ T3692] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 3635.122839][ T3692] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 3635.133915][ T3692] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 3635.146158][ T3692] device bridge_slave_1 left promiscuous mode [ 3635.155243][ T3692] bridge0: port 2(bridge_slave_1) entered disabled state [ 3635.165688][ T3692] device bridge_slave_0 left promiscuous mode [ 3635.172066][ T3692] bridge0: port 1(bridge_slave_0) entered disabled state [ 3635.184332][ T3692] device veth1_macvtap left promiscuous mode [ 3635.191599][ T3692] device veth0_macvtap left promiscuous mode [ 3635.199662][ T3692] device veth1_vlan left promiscuous mode [ 3635.207520][ T3692] device veth0_vlan left promiscuous mode [ 3635.623961][ T3692] team0 (unregistering): Port device team_slave_1 removed [ 3635.655262][ T3692] team0 (unregistering): Port device team_slave_0 removed [ 3635.679097][ T3692] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 3635.708498][ T3692] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 3635.832196][ T3692] bond0 (unregistering): Released all slaves [ 3636.861547][T17569] chnl_net:caif_netlink_parms(): no params data found [ 3637.016098][T17569] bridge0: port 1(bridge_slave_0) entered blocking state [ 3637.027113][T17569] bridge0: port 1(bridge_slave_0) entered disabled state [ 3637.038192][T17569] device bridge_slave_0 entered promiscuous mode [ 3637.049796][T17569] bridge0: port 2(bridge_slave_1) entered blocking state [ 3637.059371][T17569] bridge0: port 2(bridge_slave_1) entered disabled state [ 3637.072048][T17569] device bridge_slave_1 entered promiscuous mode [ 3637.182895][T17569] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 3637.202871][T17569] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 3637.275864][T17569] team0: Port device team_slave_0 added [ 3637.291960][T17569] team0: Port device team_slave_1 added [ 3637.352981][T17569] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 3637.362982][T17569] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 3637.396559][T17569] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 3637.418541][T17569] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 3637.430872][T17569] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 3637.470322][T17569] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 3637.602482][T17569] device hsr_slave_0 entered promiscuous mode [ 3637.613475][T17569] device hsr_slave_1 entered promiscuous mode [ 3637.623008][T17569] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 3637.632608][T17569] Cannot create hsr debugfs directory [ 3637.819783][T17569] bridge0: port 2(bridge_slave_1) entered blocking state [ 3637.831942][T17569] bridge0: port 2(bridge_slave_1) entered forwarding state [ 3637.844653][T17569] bridge0: port 1(bridge_slave_0) entered blocking state [ 3637.855480][T17569] bridge0: port 1(bridge_slave_0) entered forwarding state [ 3637.954745][T17569] 8021q: adding VLAN 0 to HW filter on device bond0 [ 3637.981910][T20280] bridge0: port 1(bridge_slave_0) entered disabled state [ 3637.993426][T20280] bridge0: port 2(bridge_slave_1) entered disabled state [ 3638.014816][T20280] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 3638.037629][T20280] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 3638.048297][T20280] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 3638.065515][T17569] 8021q: adding VLAN 0 to HW filter on device team0 [ 3638.087113][ T7159] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 3638.103835][ T7159] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 3638.124142][ T7159] bridge0: port 1(bridge_slave_0) entered blocking state [ 3638.134223][ T7159] bridge0: port 1(bridge_slave_0) entered forwarding state [ 3638.177979][T18739] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 3638.189298][T18739] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 3638.203174][T18739] bridge0: port 2(bridge_slave_1) entered blocking state [ 3638.212646][T18739] bridge0: port 2(bridge_slave_1) entered forwarding state [ 3638.223667][T18739] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 3638.243776][T31291] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 3638.275399][T18739] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 3638.290181][T18739] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 3638.301800][T18739] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 3638.314989][T18739] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 3638.330885][T18739] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 3638.340858][T18739] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 3638.352721][T18739] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 3638.377500][T17569] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 3638.391630][T17569] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 3638.403393][T20280] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 3638.420783][T20280] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 3638.456116][T31291] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 3638.466879][T31291] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 3638.479068][T17569] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 3638.750376][T31291] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 3638.771278][T31291] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 3638.810366][T31291] Bluetooth: hci1: command 0x0409 tx timeout [ 3638.813722][T18739] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 3638.836258][T18739] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 3638.853739][T18739] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 3638.865820][T18739] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 3638.879148][T17569] device veth0_vlan entered promiscuous mode [ 3638.898116][T17569] device veth1_vlan entered promiscuous mode [ 3638.942949][T20280] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 3638.953430][T20280] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 3638.971774][T20280] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 3638.982951][T20280] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 3639.000052][T17569] device veth0_macvtap entered promiscuous mode [ 3639.029586][T17569] device veth1_macvtap entered promiscuous mode [ 3639.078229][T17569] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 3639.093993][T17569] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 3639.112361][T17569] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 3639.131829][T17569] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 3639.145927][T17569] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 3639.159044][T17569] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 3639.171206][T17569] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 3639.188673][T17569] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 3639.203127][T17569] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 3639.215690][T17569] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 3639.230294][T17569] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 3639.246796][T17569] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 3639.260135][T17749] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 3639.270424][T17749] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 3639.285875][T17749] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 3639.296910][T17749] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 3639.425020][ T3692] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 3639.439746][ T3692] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 3639.461117][T17814] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 3639.471880][T17814] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 3639.478480][T31291] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 3639.494063][T31291] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 23:40:57 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acea}, 0x0) 23:40:57 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x7a02}]}, 0x30}}, 0x0) 23:40:57 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000007fffffff000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:57 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 37) [ 3639.618708][T17588] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3639.635242][T17588] nbd: must specify at least one socket [ 3639.653186][T17592] FAULT_INJECTION: forcing a failure. [ 3639.653186][T17592] name failslab, interval 1, probability 0, space 0, times 0 23:40:57 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000009effffff000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3639.670677][T17592] CPU: 3 PID: 17592 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3639.682102][T17592] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3639.693309][T17592] Call Trace: [ 3639.697261][T17592] dump_stack_lvl+0xcd/0x134 [ 3639.706301][T17592] should_fail.cold+0x5/0xa [ 3639.712475][T17592] should_failslab+0x5/0x10 [ 3639.718709][T17592] kmem_cache_alloc_node_trace+0x6e/0x5c0 [ 3639.726712][T17592] ? __sanitizer_cov_trace_cmp4+0x1c/0x70 [ 3639.734096][T17592] blk_alloc_flush_queue+0x97/0x330 [ 3639.740645][T17592] blk_mq_realloc_hw_ctxs+0xd95/0x1530 23:40:57 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000f0ffffff000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3639.747606][T17592] blk_mq_init_allocated_queue+0x324/0x12c0 [ 3639.755876][T17592] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3639.765318][T17592] ? blkcg_init_queue+0x17b/0x780 [ 3639.771659][T17592] ? blk_queue_dma_alignment+0xc/0x50 [ 3639.777901][T17592] ? blk_set_default_limits+0x9/0x620 [ 3639.784781][T17592] __blk_mq_alloc_disk+0x8b/0x160 [ 3639.790735][T17592] nbd_dev_add+0x3b9/0xbb0 [ 3639.796398][T17592] nbd_genl_connect+0x11f3/0x1930 [ 3639.802668][T17592] ? nbd_start_device+0xdd0/0xdd0 [ 3639.808842][T17592] ? __nla_parse+0x3d/0x50 23:40:57 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000340000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3639.814441][T17592] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3639.824404][T17592] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3639.833372][T17592] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3639.841430][T17592] genl_family_rcv_msg_doit+0x228/0x320 [ 3639.847449][T17592] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3639.856522][T17592] ? mutex_lock_io_nested+0x1150/0x1150 [ 3639.864748][T17592] ? genl_op_from_small+0x23/0x3c0 23:40:57 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000fffffffffffff0000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3639.871777][T17592] ? genl_get_cmd+0x3cf/0x480 [ 3639.878434][T17592] genl_rcv_msg+0x328/0x580 [ 3639.884439][T17592] ? genl_get_cmd+0x480/0x480 [ 3639.891506][T17592] ? nbd_start_device+0xdd0/0xdd0 [ 3639.898834][T17592] ? lock_release+0x720/0x720 [ 3639.903858][T17592] netlink_rcv_skb+0x153/0x420 [ 3639.909741][T17592] ? genl_get_cmd+0x480/0x480 [ 3639.916592][T17592] ? netlink_ack+0xa60/0xa60 [ 3639.924719][T17592] ? netlink_deliver_tap+0x1b1/0xc30 [ 3639.932810][T17592] genl_rcv+0x24/0x40 [ 3639.938066][T17592] netlink_unicast+0x533/0x7d0 [ 3639.944642][T17592] ? netlink_attachskb+0x890/0x890 [ 3639.950965][T17592] netlink_sendmsg+0x86d/0xdb0 [ 3639.957005][T17592] ? netlink_unicast+0x7d0/0x7d0 [ 3639.963849][T17592] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3639.970149][T17592] ? netlink_unicast+0x7d0/0x7d0 [ 3639.975408][T17592] sock_sendmsg+0xcf/0x120 [ 3639.980973][T17592] ____sys_sendmsg+0x6e8/0x810 [ 3639.986354][T17592] ? kernel_sendmsg+0x50/0x50 [ 3639.994207][T17592] ? do_recvmmsg+0x6d0/0x6d0 [ 3640.000242][T17592] ? lock_chain_count+0x20/0x20 [ 3640.006689][T17592] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3640.015097][T17592] ___sys_sendmsg+0xf3/0x170 [ 3640.020874][T17592] ? sendmsg_copy_msghdr+0x160/0x160 [ 3640.027480][T17592] ? __fget_files+0x21b/0x3e0 [ 3640.034120][T17592] ? lock_downgrade+0x6e0/0x6e0 [ 3640.039868][T17592] ? __fget_files+0x23d/0x3e0 [ 3640.045381][T17592] ? __fget_light+0xea/0x280 [ 3640.051019][T17592] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3640.058735][T17592] __sys_sendmsg+0xe5/0x1b0 [ 3640.064294][T17592] ? __sys_sendmsg_sock+0x30/0x30 [ 3640.070313][T17592] ? syscall_enter_from_user_mode+0x21/0x70 [ 3640.077131][T17592] do_syscall_64+0x35/0xb0 [ 3640.082277][T17592] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3640.089595][T17592] RIP: 0033:0x7f0b1aeaaae9 [ 3640.095541][T17592] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3640.121330][T17592] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3640.132551][T17592] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3640.142452][T17592] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3640.154601][T17592] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3640.165826][T17592] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3640.179702][T17592] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3640.194320][T17592] nbd: failed to add new device 23:40:58 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7aceb}, 0x0) 23:40:58 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000000010001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:58 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x7b02}]}, 0x30}}, 0x0) 23:40:58 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 38) [ 3640.272481][T17606] FAULT_INJECTION: forcing a failure. [ 3640.272481][T17606] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 3640.293957][T17606] CPU: 2 PID: 17606 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3640.307400][T17606] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3640.319918][T17606] Call Trace: [ 3640.323682][T17606] dump_stack_lvl+0xcd/0x134 [ 3640.330431][T17606] should_fail.cold+0x5/0xa [ 3640.335090][T17606] prepare_alloc_pages+0x17b/0x570 [ 3640.340771][T17606] __alloc_pages+0x12f/0x500 [ 3640.346324][T17606] ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0 23:40:58 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000000020001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3640.354808][T17606] ? find_held_lock+0x2d/0x110 [ 3640.361406][T17606] ? lock_downgrade+0x6e0/0x6e0 [ 3640.367182][T17606] ? do_raw_spin_lock+0x120/0x2b0 [ 3640.372758][T17606] cache_grow_begin+0x75/0x460 [ 3640.378540][T17606] ____cache_alloc_node+0x171/0x1d0 [ 3640.384788][T17606] kmem_cache_alloc_node_trace+0x18f/0x5c0 [ 3640.392324][T17606] __kmalloc_node+0x38/0x60 [ 3640.398130][T17606] blk_mq_realloc_hw_ctxs+0x8f8/0x1530 [ 3640.404431][T17606] blk_mq_init_allocated_queue+0x324/0x12c0 [ 3640.411530][T17606] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3640.418943][T17606] ? blkcg_init_queue+0x17b/0x780 [ 3640.425001][T17606] ? blk_queue_dma_alignment+0xc/0x50 [ 3640.431188][T17606] ? blk_set_default_limits+0x9/0x620 [ 3640.437781][T17606] __blk_mq_alloc_disk+0x8b/0x160 [ 3640.444001][T17606] nbd_dev_add+0x3b9/0xbb0 [ 3640.449427][T17606] nbd_genl_connect+0x11f3/0x1930 [ 3640.454939][T17606] ? nbd_start_device+0xdd0/0xdd0 [ 3640.460738][T17606] ? __nla_parse+0x3d/0x50 [ 3640.466017][T17606] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3640.473340][T17606] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3640.482096][T17606] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3640.490412][T17606] genl_family_rcv_msg_doit+0x228/0x320 [ 3640.496891][T17606] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3640.505431][T17606] ? mutex_lock_io_nested+0x1150/0x1150 [ 3640.511317][T17606] ? genl_op_from_small+0x23/0x3c0 [ 3640.517242][T17606] ? genl_get_cmd+0x3cf/0x480 [ 3640.523685][T17606] genl_rcv_msg+0x328/0x580 [ 3640.529616][T17606] ? genl_get_cmd+0x480/0x480 [ 3640.535418][T17606] ? nbd_start_device+0xdd0/0xdd0 [ 3640.541605][T17606] ? lock_release+0x720/0x720 [ 3640.546674][T17606] netlink_rcv_skb+0x153/0x420 [ 3640.552775][T17606] ? genl_get_cmd+0x480/0x480 23:40:58 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000000030001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:58 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000000040001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3640.558848][T17606] ? netlink_ack+0xa60/0xa60 [ 3640.565063][T17606] ? netlink_deliver_tap+0x1b1/0xc30 [ 3640.571947][T17606] genl_rcv+0x24/0x40 [ 3640.577202][T17606] netlink_unicast+0x533/0x7d0 [ 3640.583465][T17606] ? netlink_attachskb+0x890/0x890 [ 3640.589678][T17606] netlink_sendmsg+0x86d/0xdb0 [ 3640.594674][T17606] ? netlink_unicast+0x7d0/0x7d0 [ 3640.600451][T17606] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3640.607012][T17606] ? netlink_unicast+0x7d0/0x7d0 [ 3640.612610][T17606] sock_sendmsg+0xcf/0x120 [ 3640.618443][T17606] ____sys_sendmsg+0x6e8/0x810 [ 3640.624869][T17606] ? kernel_sendmsg+0x50/0x50 [ 3640.630673][T17606] ? do_recvmmsg+0x6d0/0x6d0 [ 3640.636871][T17606] ? lock_chain_count+0x20/0x20 [ 3640.643724][T17606] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3640.651013][T17606] ___sys_sendmsg+0xf3/0x170 [ 3640.656754][T17606] ? sendmsg_copy_msghdr+0x160/0x160 [ 3640.663308][T17606] ? __fget_files+0x21b/0x3e0 [ 3640.669332][T17606] ? lock_downgrade+0x6e0/0x6e0 [ 3640.675450][T17606] ? __fget_files+0x23d/0x3e0 [ 3640.681566][T17606] ? __fget_light+0xea/0x280 [ 3640.687136][T17606] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3640.694719][T17606] __sys_sendmsg+0xe5/0x1b0 [ 3640.700086][T17606] ? __sys_sendmsg_sock+0x30/0x30 [ 3640.706486][T17606] ? syscall_enter_from_user_mode+0x21/0x70 [ 3640.713549][T17606] do_syscall_64+0x35/0xb0 [ 3640.719064][T17606] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3640.726191][T17606] RIP: 0033:0x7f0b1aeaaae9 [ 3640.731596][T17606] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3640.754776][T17606] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3640.765831][T17606] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3640.775616][T17606] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3640.785698][T17606] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3640.795674][T17606] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3640.805593][T17606] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 23:40:58 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000000050001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3640.878257][T31291] Bluetooth: hci1: command 0x041b tx timeout [ 3640.887577][T17610] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3640.902197][T17610] nbd: must specify at least one socket 23:40:59 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acec}, 0x0) 23:40:59 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000000060001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:59 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 39) 23:40:59 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x7c02}]}, 0x30}}, 0x0) [ 3640.980494][T17627] FAULT_INJECTION: forcing a failure. [ 3640.980494][T17627] name failslab, interval 1, probability 0, space 0, times 0 23:40:59 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000000070001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3640.998291][T17627] CPU: 1 PID: 17627 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3641.009033][T17627] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3641.020960][T17627] Call Trace: [ 3641.025034][T17627] dump_stack_lvl+0xcd/0x134 [ 3641.030561][T17627] should_fail.cold+0x5/0xa [ 3641.036938][T17627] should_failslab+0x5/0x10 [ 3641.042305][T17627] kmem_cache_alloc_node_trace+0x6e/0x5c0 [ 3641.050164][T17627] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 23:40:59 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000000080001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3641.059405][T17627] ? kobject_get+0xbc/0x150 [ 3641.065063][T17627] __alloc_disk_node+0x77/0x5c0 [ 3641.072208][T17627] __blk_mq_alloc_disk+0xed/0x160 [ 3641.078504][T17627] nbd_dev_add+0x3b9/0xbb0 [ 3641.084523][T17627] nbd_genl_connect+0x11f3/0x1930 [ 3641.091029][T17627] ? nbd_start_device+0xdd0/0xdd0 [ 3641.097251][T17627] ? __nla_parse+0x3d/0x50 [ 3641.103062][T17627] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3641.110841][T17627] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3641.120110][T17627] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3641.129370][T17627] genl_family_rcv_msg_doit+0x228/0x320 [ 3641.136409][T17627] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 23:40:59 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000000090001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3641.145427][T17627] ? mutex_lock_io_nested+0x1150/0x1150 [ 3641.152557][T17627] ? genl_op_from_small+0x23/0x3c0 [ 3641.159378][T17627] ? genl_get_cmd+0x3cf/0x480 [ 3641.165236][T17627] genl_rcv_msg+0x328/0x580 [ 3641.171287][T17627] ? genl_get_cmd+0x480/0x480 [ 3641.177549][T17627] ? nbd_start_device+0xdd0/0xdd0 [ 3641.184445][T17627] ? lock_release+0x720/0x720 [ 3641.190442][T17627] netlink_rcv_skb+0x153/0x420 [ 3641.196690][T17627] ? genl_get_cmd+0x480/0x480 23:40:59 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000000000000000000a0001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3641.203201][T17627] ? netlink_ack+0xa60/0xa60 [ 3641.209610][T17627] ? netlink_deliver_tap+0x1b1/0xc30 [ 3641.216464][T17627] genl_rcv+0x24/0x40 [ 3641.221455][T17627] netlink_unicast+0x533/0x7d0 [ 3641.228072][T17627] ? netlink_attachskb+0x890/0x890 [ 3641.234587][T17627] netlink_sendmsg+0x86d/0xdb0 [ 3641.240555][T17627] ? netlink_unicast+0x7d0/0x7d0 [ 3641.247151][T17627] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3641.256880][T17627] ? netlink_unicast+0x7d0/0x7d0 [ 3641.263223][T17627] sock_sendmsg+0xcf/0x120 [ 3641.268942][T17627] ____sys_sendmsg+0x6e8/0x810 [ 3641.275748][T17627] ? kernel_sendmsg+0x50/0x50 [ 3641.284489][T17627] ? do_recvmmsg+0x6d0/0x6d0 [ 3641.291103][T17627] ? lock_chain_count+0x20/0x20 [ 3641.298292][T17627] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3641.307036][T17627] ___sys_sendmsg+0xf3/0x170 [ 3641.312964][T17627] ? sendmsg_copy_msghdr+0x160/0x160 [ 3641.319717][T17627] ? __fget_files+0x21b/0x3e0 [ 3641.326118][T17627] ? lock_downgrade+0x6e0/0x6e0 [ 3641.332454][T17627] ? __fget_files+0x23d/0x3e0 [ 3641.338485][T17627] ? __fget_light+0xea/0x280 [ 3641.344959][T17627] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3641.353254][T17627] __sys_sendmsg+0xe5/0x1b0 [ 3641.359812][T17627] ? __sys_sendmsg_sock+0x30/0x30 [ 3641.366710][T17627] ? syscall_enter_from_user_mode+0x21/0x70 [ 3641.374901][T17627] do_syscall_64+0x35/0xb0 [ 3641.381115][T17627] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3641.389554][T17627] RIP: 0033:0x7f0b1aeaaae9 [ 3641.395682][T17627] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3641.422269][T17627] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3641.434651][T17627] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3641.445674][T17627] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3641.456164][T17627] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3641.466225][T17627] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3641.477307][T17627] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3641.488983][T17627] nbd: failed to add new device [ 3641.502732][T17631] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3641.519124][T17631] nbd: must specify at least one socket 23:40:59 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7aced}, 0x0) 23:40:59 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000000000000000000b0001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:40:59 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 40) 23:40:59 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x7c03}]}, 0x30}}, 0x0) [ 3641.589890][T17646] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3641.603933][T17646] nbd: must specify at least one socket 23:40:59 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000000000000000000e0001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3641.648640][T17648] FAULT_INJECTION: forcing a failure. 23:40:59 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x7d02}]}, 0x30}}, 0x0) [ 3641.648640][T17648] name failslab, interval 1, probability 0, space 0, times 0 [ 3641.673056][T17648] CPU: 0 PID: 17648 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3641.683679][T17648] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 23:40:59 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000000000000000000f0001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3641.694880][T17648] Call Trace: [ 3641.711949][T17648] dump_stack_lvl+0xcd/0x134 [ 3641.717949][T17648] should_fail.cold+0x5/0xa [ 3641.723890][T17648] should_failslab+0x5/0x10 [ 3641.729568][T17648] kmem_cache_alloc_node_trace+0x6e/0x5c0 [ 3641.737439][T17648] ? lockdep_init_map_type+0x2c3/0x7b0 [ 3641.744233][T17648] ? kmem_cache_alloc_node_trace+0x426/0x5c0 [ 3641.751315][T17648] __kmalloc_node+0x38/0x60 [ 3641.756266][T17648] blk_alloc_flush_queue+0x127/0x330 23:40:59 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000000100001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3641.762612][T17648] blk_mq_realloc_hw_ctxs+0xd95/0x1530 [ 3641.768856][T17648] blk_mq_init_allocated_queue+0x324/0x12c0 [ 3641.775419][T17648] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3641.781902][T17648] ? blkcg_init_queue+0x17b/0x780 [ 3641.786804][T17648] ? blk_queue_dma_alignment+0xc/0x50 [ 3641.794199][T17648] ? blk_set_default_limits+0x9/0x620 [ 3641.801019][T17648] __blk_mq_alloc_disk+0x8b/0x160 [ 3641.806286][T17648] nbd_dev_add+0x3b9/0xbb0 [ 3641.810974][T17648] nbd_genl_connect+0x11f3/0x1930 [ 3641.817101][T17648] ? nbd_start_device+0xdd0/0xdd0 [ 3641.822866][T17648] ? __nla_parse+0x3d/0x50 [ 3641.827626][T17648] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3641.835757][T17648] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3641.844929][T17648] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3641.854610][T17648] genl_family_rcv_msg_doit+0x228/0x320 [ 3641.861592][T17648] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3641.870747][T17648] ? mutex_lock_io_nested+0x1150/0x1150 [ 3641.877954][T17648] ? genl_op_from_small+0x23/0x3c0 [ 3641.884248][T17648] ? genl_get_cmd+0x3cf/0x480 [ 3641.890317][T17648] genl_rcv_msg+0x328/0x580 [ 3641.896101][T17648] ? genl_get_cmd+0x480/0x480 [ 3641.902054][T17648] ? nbd_start_device+0xdd0/0xdd0 [ 3641.908376][T17648] ? lock_release+0x720/0x720 [ 3641.914330][T17648] netlink_rcv_skb+0x153/0x420 [ 3641.920326][T17648] ? genl_get_cmd+0x480/0x480 [ 3641.925954][T17648] ? netlink_ack+0xa60/0xa60 [ 3641.931497][T17648] ? netlink_deliver_tap+0x1b1/0xc30 [ 3641.938332][T17648] genl_rcv+0x24/0x40 [ 3641.942980][T17648] netlink_unicast+0x533/0x7d0 [ 3641.949047][T17648] ? netlink_attachskb+0x890/0x890 [ 3641.955311][T17648] netlink_sendmsg+0x86d/0xdb0 [ 3641.961617][T17648] ? netlink_unicast+0x7d0/0x7d0 [ 3641.967599][T17648] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3641.975440][T17648] ? netlink_unicast+0x7d0/0x7d0 [ 3641.981494][T17648] sock_sendmsg+0xcf/0x120 [ 3641.986939][T17648] ____sys_sendmsg+0x6e8/0x810 [ 3641.992755][T17648] ? kernel_sendmsg+0x50/0x50 [ 3641.998787][T17648] ? do_recvmmsg+0x6d0/0x6d0 [ 3642.004737][T17648] ? lock_chain_count+0x20/0x20 [ 3642.011340][T17648] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3642.018980][T17648] ___sys_sendmsg+0xf3/0x170 [ 3642.024590][T17648] ? sendmsg_copy_msghdr+0x160/0x160 [ 3642.030886][T17648] ? __fget_files+0x21b/0x3e0 [ 3642.036856][T17648] ? lock_downgrade+0x6e0/0x6e0 [ 3642.043380][T17648] ? __fget_files+0x23d/0x3e0 [ 3642.049550][T17648] ? __fget_light+0xea/0x280 [ 3642.055276][T17648] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3642.063309][T17648] __sys_sendmsg+0xe5/0x1b0 [ 3642.069002][T17648] ? __sys_sendmsg_sock+0x30/0x30 [ 3642.075271][T17648] ? syscall_enter_from_user_mode+0x21/0x70 [ 3642.082606][T17648] do_syscall_64+0x35/0xb0 [ 3642.088256][T17648] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3642.095627][T17648] RIP: 0033:0x7f0b1aeaaae9 [ 3642.101131][T17648] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3642.125548][T17648] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3642.136428][T17648] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3642.145878][T17648] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3642.155636][T17648] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3642.165231][T17648] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3642.175034][T17648] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3642.187090][T17648] nbd: failed to add new device [ 3642.219146][T17656] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. 23:41:00 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acee}, 0x0) 23:41:00 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000000110001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3642.232994][T17656] nbd: must specify at least one socket 23:41:00 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 41) 23:41:00 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x7d03}]}, 0x30}}, 0x0) 23:41:00 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000000440001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3642.324521][T17671] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3642.338652][T17671] nbd: must specify at least one socket 23:41:00 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acef}, 0x0) [ 3642.349374][T17670] FAULT_INJECTION: forcing a failure. [ 3642.349374][T17670] name failslab, interval 1, probability 0, space 0, times 0 [ 3642.379068][T17670] CPU: 0 PID: 17670 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3642.391417][T17670] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 23:41:00 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000022440001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3642.404307][T17670] Call Trace: [ 3642.409668][T17670] dump_stack_lvl+0xcd/0x134 [ 3642.417139][T17670] should_fail.cold+0x5/0xa [ 3642.422874][T17670] should_failslab+0x5/0x10 [ 3642.428682][T17670] kmem_cache_alloc_node_trace+0x6e/0x5c0 [ 3642.436159][T17670] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3642.444971][T17670] ? kobject_get+0xbc/0x150 23:41:00 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000000600001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3642.451984][T17670] __alloc_disk_node+0x77/0x5c0 [ 3642.458588][T17670] __blk_mq_alloc_disk+0xed/0x160 [ 3642.464946][T17670] nbd_dev_add+0x3b9/0xbb0 [ 3642.470690][T17670] nbd_genl_connect+0x11f3/0x1930 [ 3642.477240][T17670] ? nbd_start_device+0xdd0/0xdd0 [ 3642.483855][T17670] ? __nla_parse+0x3d/0x50 [ 3642.489804][T17670] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3642.497650][T17670] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3642.506825][T17670] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 23:41:00 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000ffffff9e0001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3642.516899][T17670] genl_family_rcv_msg_doit+0x228/0x320 [ 3642.524298][T17670] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3642.535050][T17670] ? mutex_lock_io_nested+0x1150/0x1150 [ 3642.543835][T17670] ? genl_op_from_small+0x23/0x3c0 [ 3642.551531][T17670] ? genl_get_cmd+0x3cf/0x480 [ 3642.558180][T17670] genl_rcv_msg+0x328/0x580 [ 3642.563578][T17670] ? genl_get_cmd+0x480/0x480 [ 3642.570239][T17670] ? nbd_start_device+0xdd0/0xdd0 23:41:00 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000fffffff00001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3642.576785][T17670] ? lock_release+0x720/0x720 [ 3642.584119][T17670] netlink_rcv_skb+0x153/0x420 [ 3642.590560][T17670] ? genl_get_cmd+0x480/0x480 [ 3642.597852][T17670] ? netlink_ack+0xa60/0xa60 [ 3642.604510][T17670] ? netlink_deliver_tap+0x1b1/0xc30 [ 3642.611376][T17670] genl_rcv+0x24/0x40 [ 3642.616461][T17670] netlink_unicast+0x533/0x7d0 [ 3642.622457][T17670] ? netlink_attachskb+0x890/0x890 [ 3642.629530][T17670] netlink_sendmsg+0x86d/0xdb0 [ 3642.635643][T17670] ? netlink_unicast+0x7d0/0x7d0 [ 3642.642144][T17670] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3642.650029][T17670] ? netlink_unicast+0x7d0/0x7d0 [ 3642.656939][T17670] sock_sendmsg+0xcf/0x120 [ 3642.662740][T17670] ____sys_sendmsg+0x6e8/0x810 [ 3642.669189][T17670] ? kernel_sendmsg+0x50/0x50 [ 3642.675055][T17670] ? do_recvmmsg+0x6d0/0x6d0 [ 3642.681405][T17670] ? lock_chain_count+0x20/0x20 [ 3642.687491][T17670] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3642.694522][T17670] ___sys_sendmsg+0xf3/0x170 [ 3642.700802][T17670] ? sendmsg_copy_msghdr+0x160/0x160 [ 3642.708030][T17670] ? __fget_files+0x21b/0x3e0 [ 3642.714341][T17670] ? lock_downgrade+0x6e0/0x6e0 [ 3642.721547][T17670] ? __fget_files+0x23d/0x3e0 [ 3642.727870][T17670] ? __fget_light+0xea/0x280 [ 3642.734134][T17670] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3642.745469][T17670] __sys_sendmsg+0xe5/0x1b0 [ 3642.751279][T17670] ? __sys_sendmsg_sock+0x30/0x30 [ 3642.758657][T17670] ? syscall_enter_from_user_mode+0x21/0x70 [ 3642.765175][T17670] do_syscall_64+0x35/0xb0 [ 3642.770710][T17670] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3642.776633][T17670] RIP: 0033:0x7f0b1aeaaae9 [ 3642.781180][T17670] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3642.804896][T17670] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3642.815744][T17670] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3642.826466][T17670] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3642.837414][T17670] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3642.849257][T17670] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3642.859818][T17670] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3642.872490][T17670] nbd: failed to add new device 23:41:01 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 42) [ 3642.966521][T31291] Bluetooth: hci1: command 0x040f tx timeout 23:41:01 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000000000007fffffff0001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:41:01 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acf0}, 0x0) 23:41:01 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x7f02}]}, 0x30}}, 0x0) 23:41:01 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000f0ffffffffffff0001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3643.036433][T17693] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3643.049913][T17693] nbd: must specify at least one socket 23:41:01 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x8002}]}, 0x30}}, 0x0) 23:41:01 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acf1}, 0x0) [ 3643.097823][T17694] FAULT_INJECTION: forcing a failure. [ 3643.097823][T17694] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 3643.125004][T17694] CPU: 2 PID: 17694 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3643.138413][T17694] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3643.152232][T17694] Call Trace: [ 3643.157026][T17694] dump_stack_lvl+0xcd/0x134 [ 3643.163388][T17694] should_fail.cold+0x5/0xa [ 3643.170586][T17694] prepare_alloc_pages+0x17b/0x570 [ 3643.178272][T17694] __alloc_pages+0x12f/0x500 [ 3643.184260][T17694] ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0 [ 3643.194487][T17694] ? lock_downgrade+0x6e0/0x6e0 [ 3643.200181][T17694] cache_grow_begin+0x75/0x460 [ 3643.205756][T17694] ? cache_alloc_pfmemalloc+0x1e/0x140 [ 3643.213464][T17694] cache_alloc_refill+0x27f/0x380 [ 3643.220739][T17694] kmem_cache_alloc+0x450/0x530 [ 3643.228004][T17694] ? lockdep_hardirqs_on+0x79/0x100 [ 3643.235066][T17694] ? bdev_free_inode+0x220/0x220 [ 3643.241665][T17694] bdev_alloc_inode+0x18/0x50 [ 3643.247873][T17694] ? bdev_free_inode+0x220/0x220 [ 3643.254327][T17694] alloc_inode+0x61/0x230 [ 3643.260157][T17694] new_inode+0x27/0x2f0 [ 3643.265002][T17694] ? dirty_writeback_centisecs_handler+0xb0/0xb0 [ 3643.272517][T17694] bdev_alloc+0x21/0x2e0 [ 3643.277772][T17694] __alloc_disk_node+0xfa/0x5c0 [ 3643.282771][T17694] __blk_mq_alloc_disk+0xed/0x160 [ 3643.288319][T17694] nbd_dev_add+0x3b9/0xbb0 [ 3643.292515][T17694] nbd_genl_connect+0x11f3/0x1930 [ 3643.297108][T17694] ? nbd_start_device+0xdd0/0xdd0 [ 3643.301817][T17694] ? __nla_parse+0x3d/0x50 [ 3643.305699][T17694] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3643.311237][T17694] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3643.317956][T17694] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3643.324860][T17694] genl_family_rcv_msg_doit+0x228/0x320 [ 3643.330026][T17694] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3643.337603][T17694] ? mutex_lock_io_nested+0x1150/0x1150 [ 3643.343849][T17694] ? genl_op_from_small+0x23/0x3c0 [ 3643.349848][T17694] ? genl_get_cmd+0x3cf/0x480 [ 3643.355470][T17694] genl_rcv_msg+0x328/0x580 [ 3643.361730][T17694] ? genl_get_cmd+0x480/0x480 [ 3643.368285][T17694] ? nbd_start_device+0xdd0/0xdd0 [ 3643.373652][T17694] ? lock_release+0x720/0x720 [ 3643.378742][T17694] netlink_rcv_skb+0x153/0x420 [ 3643.383470][T17694] ? genl_get_cmd+0x480/0x480 [ 3643.389396][T17694] ? netlink_ack+0xa60/0xa60 [ 3643.395328][T17694] ? netlink_deliver_tap+0x1b1/0xc30 [ 3643.401264][T17694] genl_rcv+0x24/0x40 [ 3643.405839][T17694] netlink_unicast+0x533/0x7d0 [ 3643.412033][T17694] ? netlink_attachskb+0x890/0x890 [ 3643.418563][T17694] netlink_sendmsg+0x86d/0xdb0 [ 3643.423355][T17694] ? netlink_unicast+0x7d0/0x7d0 [ 3643.428506][T17694] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3643.436080][T17694] ? netlink_unicast+0x7d0/0x7d0 [ 3643.441256][T17694] sock_sendmsg+0xcf/0x120 [ 3643.445884][T17694] ____sys_sendmsg+0x6e8/0x810 [ 3643.451718][T17694] ? kernel_sendmsg+0x50/0x50 [ 3643.458048][T17694] ? do_recvmmsg+0x6d0/0x6d0 [ 3643.463785][T17694] ? lock_chain_count+0x20/0x20 [ 3643.470140][T17694] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3643.477454][T17694] ___sys_sendmsg+0xf3/0x170 [ 3643.482986][T17694] ? sendmsg_copy_msghdr+0x160/0x160 [ 3643.489695][T17694] ? __fget_files+0x21b/0x3e0 [ 3643.495603][T17694] ? lock_downgrade+0x6e0/0x6e0 [ 3643.501790][T17694] ? __fget_files+0x23d/0x3e0 [ 3643.507919][T17694] ? __fget_light+0xea/0x280 [ 3643.513116][T17694] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3643.520157][T17694] __sys_sendmsg+0xe5/0x1b0 [ 3643.526581][T17694] ? __sys_sendmsg_sock+0x30/0x30 [ 3643.532534][T17694] ? syscall_enter_from_user_mode+0x21/0x70 [ 3643.539722][T17694] do_syscall_64+0x35/0xb0 [ 3643.545793][T17694] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3643.553652][T17694] RIP: 0033:0x7f0b1aeaaae9 [ 3643.558681][T17694] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3643.584466][T17694] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3643.609488][T17694] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3643.621828][T17694] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3643.632246][T17694] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3643.641189][T17694] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3643.649113][T17694] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 23:41:01 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000020000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3643.711049][T17702] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. 23:41:01 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 43) 23:41:01 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000030000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3643.725248][T17702] nbd: must specify at least one socket 23:41:01 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x8003}]}, 0x30}}, 0x0) 23:41:01 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acf2}, 0x0) [ 3643.804449][T17711] FAULT_INJECTION: forcing a failure. [ 3643.804449][T17711] name failslab, interval 1, probability 0, space 0, times 0 [ 3643.820277][T17711] CPU: 1 PID: 17711 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3643.831637][T17711] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3643.843374][T17711] Call Trace: [ 3643.847589][T17711] dump_stack_lvl+0xcd/0x134 23:41:01 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000040000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3643.852631][T17711] should_fail.cold+0x5/0xa [ 3643.859058][T17711] should_failslab+0x5/0x10 [ 3643.864968][T17711] kmem_cache_alloc+0x58/0x530 [ 3643.870881][T17711] ? lockdep_hardirqs_on+0x79/0x100 [ 3643.879425][T17711] ? bdev_free_inode+0x220/0x220 [ 3643.886703][T17711] bdev_alloc_inode+0x18/0x50 [ 3643.893657][T17711] ? bdev_free_inode+0x220/0x220 [ 3643.901469][T17711] alloc_inode+0x61/0x230 [ 3643.906888][T17711] new_inode+0x27/0x2f0 [ 3643.913370][T17711] ? dirty_writeback_centisecs_handler+0xb0/0xb0 [ 3643.921609][T17711] bdev_alloc+0x21/0x2e0 23:41:02 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000050000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3643.927626][T17711] __alloc_disk_node+0xfa/0x5c0 [ 3643.934229][T17711] __blk_mq_alloc_disk+0xed/0x160 [ 3643.941019][T17711] nbd_dev_add+0x3b9/0xbb0 [ 3643.948572][T17711] nbd_genl_connect+0x11f3/0x1930 [ 3643.957214][T17711] ? nbd_start_device+0xdd0/0xdd0 [ 3643.964450][T17711] ? __nla_parse+0x3d/0x50 23:41:02 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000060000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3643.970207][T17711] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3643.978274][T17711] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3644.005743][T17711] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3644.016044][T17711] genl_family_rcv_msg_doit+0x228/0x320 [ 3644.024659][T17711] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3644.035227][T17711] ? mutex_lock_io_nested+0x1150/0x1150 23:41:02 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000070000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3644.044155][T17711] ? genl_op_from_small+0x23/0x3c0 [ 3644.053096][T17711] ? genl_get_cmd+0x3cf/0x480 [ 3644.060342][T17711] genl_rcv_msg+0x328/0x580 [ 3644.066513][T17711] ? genl_get_cmd+0x480/0x480 [ 3644.073509][T17711] ? nbd_start_device+0xdd0/0xdd0 [ 3644.080260][T17711] ? lock_release+0x720/0x720 [ 3644.085937][T17711] netlink_rcv_skb+0x153/0x420 [ 3644.092024][T17711] ? genl_get_cmd+0x480/0x480 [ 3644.098617][T17711] ? netlink_ack+0xa60/0xa60 [ 3644.104033][T17711] ? netlink_deliver_tap+0x1b1/0xc30 [ 3644.111344][T17711] genl_rcv+0x24/0x40 [ 3644.116829][T17711] netlink_unicast+0x533/0x7d0 [ 3644.123309][T17711] ? netlink_attachskb+0x890/0x890 [ 3644.130783][T17711] netlink_sendmsg+0x86d/0xdb0 [ 3644.137344][T17711] ? netlink_unicast+0x7d0/0x7d0 [ 3644.144888][T17711] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3644.154744][T17711] ? netlink_unicast+0x7d0/0x7d0 [ 3644.161195][T17711] sock_sendmsg+0xcf/0x120 [ 3644.167337][T17711] ____sys_sendmsg+0x6e8/0x810 [ 3644.173523][T17711] ? kernel_sendmsg+0x50/0x50 [ 3644.180299][T17711] ? do_recvmmsg+0x6d0/0x6d0 [ 3644.186287][T17711] ? lock_chain_count+0x20/0x20 [ 3644.193664][T17711] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3644.203817][T17711] ___sys_sendmsg+0xf3/0x170 [ 3644.210366][T17711] ? sendmsg_copy_msghdr+0x160/0x160 [ 3644.218407][T17711] ? __fget_files+0x21b/0x3e0 [ 3644.225748][T17711] ? lock_downgrade+0x6e0/0x6e0 [ 3644.239169][T17711] ? __fget_files+0x23d/0x3e0 [ 3644.250388][T17711] ? __fget_light+0xea/0x280 [ 3644.257236][T17711] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3644.274464][T17711] __sys_sendmsg+0xe5/0x1b0 [ 3644.280215][T17711] ? __sys_sendmsg_sock+0x30/0x30 [ 3644.293583][T17711] ? syscall_enter_from_user_mode+0x21/0x70 [ 3644.302572][T17711] do_syscall_64+0x35/0xb0 [ 3644.308961][T17711] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3644.317109][T17711] RIP: 0033:0x7f0b1aeaaae9 [ 3644.323255][T17711] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3644.347905][T17711] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3644.358296][T17711] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3644.369661][T17711] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3644.379947][T17711] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3644.390115][T17711] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3644.400265][T17711] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3644.411172][T17711] nbd: failed to add new device 23:41:02 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 44) 23:41:02 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000080000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:41:02 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x8102}]}, 0x30}}, 0x0) 23:41:02 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acf3}, 0x0) 23:41:02 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000090000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3644.521699][T17732] FAULT_INJECTION: forcing a failure. [ 3644.521699][T17732] name failslab, interval 1, probability 0, space 0, times 0 [ 3644.540922][T17732] CPU: 2 PID: 17732 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3644.551514][T17732] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3644.562558][T17732] Call Trace: [ 3644.566056][T17732] dump_stack_lvl+0xcd/0x134 [ 3644.571130][T17732] should_fail.cold+0x5/0xa 23:41:02 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000000a0000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3644.576544][T17732] should_failslab+0x5/0x10 [ 3644.582624][T17732] kmem_cache_alloc_node_trace+0x6e/0x5c0 [ 3644.592767][T17732] __kmalloc_node+0x38/0x60 [ 3644.598714][T17732] memcg_alloc_page_obj_cgroups+0xe6/0x1e0 [ 3644.606429][T17732] cache_grow_begin+0x336/0x460 [ 3644.612826][T17732] ? cache_alloc_pfmemalloc+0x1e/0x140 [ 3644.619926][T17732] cache_alloc_refill+0x27f/0x380 [ 3644.627003][T17732] kmem_cache_alloc+0x450/0x530 [ 3644.634296][T17732] ? lockdep_hardirqs_on+0x79/0x100 [ 3644.642505][T17732] ? bdev_free_inode+0x220/0x220 [ 3644.651640][T17732] bdev_alloc_inode+0x18/0x50 [ 3644.658430][T17732] ? bdev_free_inode+0x220/0x220 [ 3644.667190][T17732] alloc_inode+0x61/0x230 [ 3644.674334][T17732] new_inode+0x27/0x2f0 [ 3644.681701][T17732] ? dirty_writeback_centisecs_handler+0xb0/0xb0 [ 3644.691522][T17732] bdev_alloc+0x21/0x2e0 [ 3644.697052][T17732] __alloc_disk_node+0xfa/0x5c0 [ 3644.703525][T17732] __blk_mq_alloc_disk+0xed/0x160 [ 3644.710456][T17732] nbd_dev_add+0x3b9/0xbb0 [ 3644.715792][T17732] nbd_genl_connect+0x11f3/0x1930 [ 3644.721806][T17732] ? nbd_start_device+0xdd0/0xdd0 [ 3644.729764][T17732] ? __nla_parse+0x3d/0x50 [ 3644.735199][T17732] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3644.743145][T17732] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3644.752003][T17732] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3644.762122][T17732] genl_family_rcv_msg_doit+0x228/0x320 [ 3644.769414][T17732] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3644.779843][T17732] ? mutex_lock_io_nested+0x1150/0x1150 23:41:02 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000000b0000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:41:02 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000000e0000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3644.787787][T17732] ? genl_op_from_small+0x23/0x3c0 [ 3644.799410][T17732] ? genl_get_cmd+0x3cf/0x480 [ 3644.807893][T17732] genl_rcv_msg+0x328/0x580 [ 3644.813900][T17732] ? genl_get_cmd+0x480/0x480 [ 3644.820401][T17732] ? nbd_start_device+0xdd0/0xdd0 [ 3644.827688][T17732] ? lock_release+0x720/0x720 [ 3644.833784][T17732] netlink_rcv_skb+0x153/0x420 [ 3644.840229][T17732] ? genl_get_cmd+0x480/0x480 [ 3644.846451][T17732] ? netlink_ack+0xa60/0xa60 [ 3644.852293][T17732] ? netlink_deliver_tap+0x1b1/0xc30 [ 3644.858801][T17732] genl_rcv+0x24/0x40 [ 3644.864250][T17732] netlink_unicast+0x533/0x7d0 [ 3644.870758][T17732] ? netlink_attachskb+0x890/0x890 [ 3644.877070][T17732] netlink_sendmsg+0x86d/0xdb0 [ 3644.883019][T17732] ? netlink_unicast+0x7d0/0x7d0 [ 3644.888991][T17732] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3644.896999][T17732] ? netlink_unicast+0x7d0/0x7d0 [ 3644.903759][T17732] sock_sendmsg+0xcf/0x120 [ 3644.909821][T17732] ____sys_sendmsg+0x6e8/0x810 [ 3644.915744][T17732] ? kernel_sendmsg+0x50/0x50 [ 3644.921999][T17732] ? do_recvmmsg+0x6d0/0x6d0 [ 3644.929062][T17732] ? lock_chain_count+0x20/0x20 [ 3644.935551][T17732] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3644.942450][T17732] ___sys_sendmsg+0xf3/0x170 [ 3644.948241][T17732] ? sendmsg_copy_msghdr+0x160/0x160 [ 3644.955499][T17732] ? __fget_files+0x21b/0x3e0 [ 3644.962719][T17732] ? lock_downgrade+0x6e0/0x6e0 [ 3644.969143][T17732] ? __fget_files+0x23d/0x3e0 [ 3644.975518][T17732] ? __fget_light+0xea/0x280 [ 3644.981917][T17732] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3644.989615][T17732] __sys_sendmsg+0xe5/0x1b0 [ 3644.994706][T17732] ? __sys_sendmsg_sock+0x30/0x30 [ 3645.000605][T17732] ? syscall_enter_from_user_mode+0x21/0x70 [ 3645.007883][T17732] do_syscall_64+0x35/0xb0 [ 3645.013777][T17732] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3645.021237][T17732] RIP: 0033:0x7f0b1aeaaae9 [ 3645.026582][T17732] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3645.050728][T17732] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3645.061301][T17732] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3645.072363][T17732] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3645.083264][T17732] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3645.093386][T17732] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3645.104033][T17732] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3645.117812][T12414] Bluetooth: hci1: command 0x0419 tx timeout [ 3645.152452][T17734] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3645.164461][T17734] nbd: must specify at least one socket 23:41:03 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 45) 23:41:03 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000000f0000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:41:03 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x8802}]}, 0x30}}, 0x0) 23:41:03 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acf4}, 0x0) [ 3645.218325][T17752] FAULT_INJECTION: forcing a failure. [ 3645.218325][T17752] name failslab, interval 1, probability 0, space 0, times 0 [ 3645.234585][T17752] CPU: 0 PID: 17752 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 23:41:03 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000100000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3645.245370][T17752] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3645.256927][T17752] Call Trace: [ 3645.261242][T17752] dump_stack_lvl+0xcd/0x134 [ 3645.267154][T17752] should_fail.cold+0x5/0xa [ 3645.272513][T17752] should_failslab+0x5/0x10 [ 3645.277346][T17752] kmem_cache_alloc+0x58/0x530 [ 3645.282983][T17752] ? lockdep_hardirqs_on+0x79/0x100 [ 3645.289584][T17752] ? bdev_free_inode+0x220/0x220 [ 3645.296377][T17752] bdev_alloc_inode+0x18/0x50 [ 3645.303115][T17752] ? bdev_free_inode+0x220/0x220 [ 3645.311059][T17752] alloc_inode+0x61/0x230 [ 3645.316724][T17752] new_inode+0x27/0x2f0 [ 3645.323353][T17752] ? dirty_writeback_centisecs_handler+0xb0/0xb0 [ 3645.331766][T17752] bdev_alloc+0x21/0x2e0 [ 3645.337214][T17752] __alloc_disk_node+0xfa/0x5c0 23:41:03 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000110000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3645.343845][T17752] __blk_mq_alloc_disk+0xed/0x160 [ 3645.349592][T17752] nbd_dev_add+0x3b9/0xbb0 [ 3645.355342][T17752] nbd_genl_connect+0x11f3/0x1930 [ 3645.362394][T17752] ? nbd_start_device+0xdd0/0xdd0 [ 3645.369991][T17752] ? __nla_parse+0x3d/0x50 [ 3645.375720][T17752] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3645.383621][T17752] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3645.392698][T17752] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 23:41:03 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000440000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3645.401615][T17752] genl_family_rcv_msg_doit+0x228/0x320 [ 3645.409623][T17752] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3645.419139][T17752] ? mutex_lock_io_nested+0x1150/0x1150 [ 3645.426139][T17752] ? genl_op_from_small+0x23/0x3c0 [ 3645.432665][T17752] ? genl_get_cmd+0x3cf/0x480 [ 3645.439071][T17752] genl_rcv_msg+0x328/0x580 [ 3645.444385][T17752] ? genl_get_cmd+0x480/0x480 [ 3645.450266][T17752] ? nbd_start_device+0xdd0/0xdd0 [ 3645.456133][T17752] ? lock_release+0x720/0x720 [ 3645.461458][T17752] netlink_rcv_skb+0x153/0x420 [ 3645.467240][T17752] ? genl_get_cmd+0x480/0x480 [ 3645.473251][T17752] ? netlink_ack+0xa60/0xa60 [ 3645.479512][T17752] ? netlink_deliver_tap+0x1b1/0xc30 [ 3645.486549][T17752] genl_rcv+0x24/0x40 [ 3645.492165][T17752] netlink_unicast+0x533/0x7d0 [ 3645.497813][T17752] ? netlink_attachskb+0x890/0x890 [ 3645.502992][T17752] netlink_sendmsg+0x86d/0xdb0 [ 3645.507607][T17752] ? netlink_unicast+0x7d0/0x7d0 [ 3645.512660][T17752] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3645.519532][T17752] ? netlink_unicast+0x7d0/0x7d0 [ 3645.526191][T17752] sock_sendmsg+0xcf/0x120 [ 3645.531685][T17752] ____sys_sendmsg+0x6e8/0x810 [ 3645.538215][T17752] ? kernel_sendmsg+0x50/0x50 [ 3645.544941][T17752] ? do_recvmmsg+0x6d0/0x6d0 [ 3645.552893][T17752] ? lock_chain_count+0x20/0x20 [ 3645.559277][T17752] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3645.566868][T17752] ___sys_sendmsg+0xf3/0x170 [ 3645.572505][T17752] ? sendmsg_copy_msghdr+0x160/0x160 [ 3645.578896][T17752] ? __fget_files+0x21b/0x3e0 [ 3645.584444][T17752] ? lock_downgrade+0x6e0/0x6e0 [ 3645.589338][T17752] ? __fget_files+0x23d/0x3e0 [ 3645.593693][T17752] ? __fget_light+0xea/0x280 [ 3645.598618][T17752] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3645.606283][T17752] __sys_sendmsg+0xe5/0x1b0 [ 3645.611766][T17752] ? __sys_sendmsg_sock+0x30/0x30 [ 3645.618118][T17752] ? syscall_enter_from_user_mode+0x21/0x70 [ 3645.625196][T17752] do_syscall_64+0x35/0xb0 [ 3645.629601][T17752] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3645.635882][T17752] RIP: 0033:0x7f0b1aeaaae9 [ 3645.640846][T17752] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3645.663179][T17752] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3645.672545][T17752] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3645.681593][T17752] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3645.690250][T17752] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3645.699207][T17752] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3645.707626][T17752] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3645.718661][T17752] nbd: failed to add new device [ 3645.751247][T17757] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3645.763805][T17757] nbd: must specify at least one socket 23:41:03 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 46) 23:41:03 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000600000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:41:03 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acf5}, 0x0) 23:41:03 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x8902}]}, 0x30}}, 0x0) [ 3645.833297][T17769] FAULT_INJECTION: forcing a failure. [ 3645.833297][T17769] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 3645.852250][T17769] CPU: 0 PID: 17769 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3645.863515][T17769] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3645.875062][T17769] Call Trace: [ 3645.879486][T17769] dump_stack_lvl+0xcd/0x134 [ 3645.885353][T17769] should_fail.cold+0x5/0xa [ 3645.891069][T17769] prepare_alloc_pages+0x17b/0x570 [ 3645.897962][T17769] __alloc_pages+0x12f/0x500 [ 3645.903858][T17769] ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0 [ 3645.912584][T17769] ? find_held_lock+0x2d/0x110 [ 3645.918651][T17769] ? lock_downgrade+0x6e0/0x6e0 [ 3645.924565][T17769] ? do_raw_spin_lock+0x120/0x2b0 [ 3645.931466][T17769] cache_grow_begin+0x75/0x460 [ 3645.937418][T17769] ____cache_alloc_node+0x171/0x1d0 [ 3645.944404][T17769] kmem_cache_alloc+0x386/0x530 [ 3645.950810][T17769] ? lockdep_hardirqs_on+0x79/0x100 [ 3645.957199][T17769] ? bdev_free_inode+0x220/0x220 [ 3645.963332][T17769] bdev_alloc_inode+0x18/0x50 [ 3645.969248][T17769] ? bdev_free_inode+0x220/0x220 [ 3645.975652][T17769] alloc_inode+0x61/0x230 [ 3645.980680][T17769] new_inode+0x27/0x2f0 [ 3645.985882][T17769] ? dirty_writeback_centisecs_handler+0xb0/0xb0 [ 3645.992591][T17769] bdev_alloc+0x21/0x2e0 [ 3645.997712][T17769] __alloc_disk_node+0xfa/0x5c0 [ 3646.003478][T17769] __blk_mq_alloc_disk+0xed/0x160 [ 3646.009062][T17769] nbd_dev_add+0x3b9/0xbb0 [ 3646.014179][T17769] nbd_genl_connect+0x11f3/0x1930 [ 3646.019901][T17769] ? nbd_start_device+0xdd0/0xdd0 [ 3646.025237][T17769] ? __nla_parse+0x3d/0x50 [ 3646.030150][T17769] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3646.037471][T17769] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3646.045922][T17769] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3646.054986][T17769] genl_family_rcv_msg_doit+0x228/0x320 [ 3646.061609][T17769] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3646.071717][T17769] ? mutex_lock_io_nested+0x1150/0x1150 [ 3646.079222][T17769] ? genl_op_from_small+0x23/0x3c0 [ 3646.085561][T17769] ? genl_get_cmd+0x3cf/0x480 [ 3646.091652][T17769] genl_rcv_msg+0x328/0x580 [ 3646.097408][T17769] ? genl_get_cmd+0x480/0x480 [ 3646.103224][T17769] ? nbd_start_device+0xdd0/0xdd0 [ 3646.109445][T17769] ? lock_release+0x720/0x720 [ 3646.115967][T17769] netlink_rcv_skb+0x153/0x420 [ 3646.122471][T17769] ? genl_get_cmd+0x480/0x480 [ 3646.128362][T17769] ? netlink_ack+0xa60/0xa60 [ 3646.134328][T17769] ? netlink_deliver_tap+0x1b1/0xc30 [ 3646.139805][T17769] genl_rcv+0x24/0x40 [ 3646.144476][T17769] netlink_unicast+0x533/0x7d0 [ 3646.149471][T17769] ? netlink_attachskb+0x890/0x890 [ 3646.155674][T17769] netlink_sendmsg+0x86d/0xdb0 [ 3646.162205][T17769] ? netlink_unicast+0x7d0/0x7d0 [ 3646.168585][T17769] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3646.175774][T17769] ? netlink_unicast+0x7d0/0x7d0 [ 3646.182124][T17769] sock_sendmsg+0xcf/0x120 [ 3646.187965][T17769] ____sys_sendmsg+0x6e8/0x810 [ 3646.194504][T17769] ? kernel_sendmsg+0x50/0x50 [ 3646.201417][T17769] ? do_recvmmsg+0x6d0/0x6d0 [ 3646.207095][T17769] ? lock_chain_count+0x20/0x20 [ 3646.213490][T17769] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3646.222784][T17769] ___sys_sendmsg+0xf3/0x170 [ 3646.229494][T17769] ? sendmsg_copy_msghdr+0x160/0x160 [ 3646.236452][T17769] ? __fget_files+0x21b/0x3e0 [ 3646.241700][T17769] ? lock_downgrade+0x6e0/0x6e0 [ 3646.247728][T17769] ? __fget_files+0x23d/0x3e0 [ 3646.253917][T17769] ? __fget_light+0xea/0x280 [ 3646.259812][T17769] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3646.267476][T17769] __sys_sendmsg+0xe5/0x1b0 [ 3646.272904][T17769] ? __sys_sendmsg_sock+0x30/0x30 [ 3646.279553][T17769] ? syscall_enter_from_user_mode+0x21/0x70 [ 3646.286171][T17769] do_syscall_64+0x35/0xb0 [ 3646.291101][T17769] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3646.298474][T17769] RIP: 0033:0x7f0b1aeaaae9 [ 3646.303891][T17769] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3646.327605][T17769] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3646.337581][T17769] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3646.347187][T17769] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3646.357168][T17769] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3646.367003][T17769] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3646.377321][T17769] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 23:41:04 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000f00000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3646.436687][T17775] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3646.452911][T17775] nbd: must specify at least one socket 23:41:04 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 47) 23:41:04 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acf6}, 0x0) [ 3646.504658][T17775] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3646.517758][T17775] nbd: must specify at least one socket 23:41:04 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000300000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3646.545652][T17780] FAULT_INJECTION: forcing a failure. [ 3646.545652][T17780] name failslab, interval 1, probability 0, space 0, times 0 23:41:04 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x8e00}]}, 0x30}}, 0x0) [ 3646.562340][T17780] CPU: 1 PID: 17780 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3646.573016][T17780] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3646.583911][T17780] Call Trace: [ 3646.588283][T17780] dump_stack_lvl+0xcd/0x134 [ 3646.594799][T17780] should_fail.cold+0x5/0xa [ 3646.600558][T17780] should_failslab+0x5/0x10 [ 3646.607001][T17780] kmem_cache_alloc_node_trace+0x6e/0x5c0 [ 3646.614928][T17780] ? call_srcu+0xc0/0xc0 [ 3646.621150][T17780] blk_mq_init_tags+0x6a/0x170 [ 3646.627965][T17780] blk_mq_alloc_rq_map+0x81/0x200 [ 3646.634414][T17780] blk_mq_alloc_map_and_rqs+0x4b/0x180 [ 3646.641020][T17780] blk_mq_init_sched+0x29d/0x740 [ 3646.646875][T17780] elevator_init_mq+0x2a9/0x4e0 [ 3646.652433][T17780] device_add_disk+0x76/0xfa0 23:41:04 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000500000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3646.658182][T17780] nbd_dev_add+0x837/0xbb0 [ 3646.664575][T17780] nbd_genl_connect+0x11f3/0x1930 [ 3646.670955][T17780] ? nbd_start_device+0xdd0/0xdd0 [ 3646.677631][T17780] ? __nla_parse+0x3d/0x50 [ 3646.683380][T17780] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3646.691938][T17780] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3646.701617][T17780] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3646.710468][T17780] genl_family_rcv_msg_doit+0x228/0x320 [ 3646.717521][T17780] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3646.727615][T17780] ? mutex_lock_io_nested+0x1150/0x1150 [ 3646.735408][T17780] ? genl_op_from_small+0x23/0x3c0 [ 3646.741828][T17780] ? genl_get_cmd+0x3cf/0x480 [ 3646.747680][T17780] genl_rcv_msg+0x328/0x580 [ 3646.753170][T17780] ? genl_get_cmd+0x480/0x480 [ 3646.758579][T17780] ? nbd_start_device+0xdd0/0xdd0 [ 3646.764189][T17780] ? lock_release+0x720/0x720 [ 3646.769770][T17780] netlink_rcv_skb+0x153/0x420 [ 3646.775708][T17780] ? genl_get_cmd+0x480/0x480 [ 3646.781612][T17780] ? netlink_ack+0xa60/0xa60 [ 3646.787017][T17780] ? netlink_deliver_tap+0x1b1/0xc30 [ 3646.794091][T17780] genl_rcv+0x24/0x40 23:41:04 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000600000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:41:04 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000700000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3646.799536][T17780] netlink_unicast+0x533/0x7d0 [ 3646.805086][T17780] ? netlink_attachskb+0x890/0x890 [ 3646.811676][T17780] netlink_sendmsg+0x86d/0xdb0 [ 3646.817606][T17780] ? netlink_unicast+0x7d0/0x7d0 [ 3646.823644][T17780] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3646.830982][T17780] ? netlink_unicast+0x7d0/0x7d0 [ 3646.837184][T17780] sock_sendmsg+0xcf/0x120 [ 3646.842690][T17780] ____sys_sendmsg+0x6e8/0x810 [ 3646.849783][T17780] ? kernel_sendmsg+0x50/0x50 [ 3646.855438][T17780] ? do_recvmmsg+0x6d0/0x6d0 [ 3646.860867][T17780] ? lock_chain_count+0x20/0x20 [ 3646.868155][T17780] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3646.876392][T17780] ___sys_sendmsg+0xf3/0x170 [ 3646.882319][T17780] ? sendmsg_copy_msghdr+0x160/0x160 [ 3646.889942][T17780] ? __fget_files+0x21b/0x3e0 [ 3646.896521][T17780] ? lock_downgrade+0x6e0/0x6e0 [ 3646.902819][T17780] ? __fget_files+0x23d/0x3e0 [ 3646.908089][T17780] ? __fget_light+0xea/0x280 [ 3646.913564][T17780] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3646.921689][T17780] __sys_sendmsg+0xe5/0x1b0 [ 3646.926870][T17780] ? __sys_sendmsg_sock+0x30/0x30 [ 3646.932911][T17780] ? syscall_enter_from_user_mode+0x21/0x70 [ 3646.940863][T17780] do_syscall_64+0x35/0xb0 [ 3646.945804][T17780] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3646.952072][T17780] RIP: 0033:0x7f0b1aeaaae9 [ 3646.956688][T17780] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3646.981632][T17780] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3646.994375][T17780] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3647.005961][T17780] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3647.016430][T17780] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3647.027708][T17780] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3647.039567][T17780] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3647.051107][T17780] "mq-deadline" elevator initialization failed, falling back to "none" 23:41:04 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000900000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3647.094294][T17788] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3647.111040][T17788] nbd: must specify at least one socket 23:41:05 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 48) 23:41:05 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000a00000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:41:05 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acf7}, 0x0) 23:41:05 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x9402}]}, 0x30}}, 0x0) 23:41:05 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acf8}, 0x0) 23:41:05 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000b00000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3647.233096][T17807] FAULT_INJECTION: forcing a failure. [ 3647.233096][T17807] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 3647.252651][T17807] CPU: 3 PID: 17807 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3647.263419][T17807] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3647.274812][T17807] Call Trace: 23:41:05 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000e00000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3647.279147][T17807] dump_stack_lvl+0xcd/0x134 [ 3647.286321][T17807] should_fail.cold+0x5/0xa [ 3647.292849][T17807] prepare_alloc_pages+0x17b/0x570 [ 3647.299333][T17807] __alloc_pages+0x12f/0x500 [ 3647.305005][T17807] ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0 [ 3647.313637][T17807] ? find_held_lock+0x2d/0x110 [ 3647.320321][T17807] ? lock_downgrade+0x6e0/0x6e0 [ 3647.326261][T17807] ? do_raw_spin_lock+0x120/0x2b0 [ 3647.331955][T17807] cache_grow_begin+0x75/0x460 [ 3647.337839][T17807] ____cache_alloc_node+0x171/0x1d0 [ 3647.344323][T17807] kmem_cache_alloc+0x386/0x530 [ 3647.351174][T17807] ? lockdep_hardirqs_on+0x79/0x100 [ 3647.358017][T17807] ? bdev_free_inode+0x220/0x220 [ 3647.364919][T17807] bdev_alloc_inode+0x18/0x50 [ 3647.370857][T17807] ? bdev_free_inode+0x220/0x220 23:41:05 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000f00000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3647.377941][T17807] alloc_inode+0x61/0x230 [ 3647.397367][T17807] new_inode+0x27/0x2f0 [ 3647.402912][T17807] ? dirty_writeback_centisecs_handler+0xb0/0xb0 [ 3647.410928][T17807] bdev_alloc+0x21/0x2e0 [ 3647.416480][T17807] __alloc_disk_node+0xfa/0x5c0 [ 3647.423897][T17807] __blk_mq_alloc_disk+0xed/0x160 [ 3647.430233][T17807] nbd_dev_add+0x3b9/0xbb0 [ 3647.435451][T17807] nbd_genl_connect+0x11f3/0x1930 [ 3647.441584][T17807] ? nbd_start_device+0xdd0/0xdd0 [ 3647.447917][T17807] ? __nla_parse+0x3d/0x50 [ 3647.453211][T17807] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3647.461041][T17807] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3647.470137][T17807] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3647.478574][T17807] genl_family_rcv_msg_doit+0x228/0x320 [ 3647.485592][T17807] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3647.495426][T17807] ? mutex_lock_io_nested+0x1150/0x1150 [ 3647.502800][T17807] ? genl_op_from_small+0x23/0x3c0 [ 3647.509904][T17807] ? genl_get_cmd+0x3cf/0x480 [ 3647.515945][T17807] genl_rcv_msg+0x328/0x580 [ 3647.521520][T17807] ? genl_get_cmd+0x480/0x480 [ 3647.527307][T17807] ? nbd_start_device+0xdd0/0xdd0 [ 3647.533517][T17807] ? lock_release+0x720/0x720 [ 3647.539815][T17807] netlink_rcv_skb+0x153/0x420 [ 3647.545866][T17807] ? genl_get_cmd+0x480/0x480 [ 3647.551418][T17807] ? netlink_ack+0xa60/0xa60 [ 3647.557751][T17807] ? netlink_deliver_tap+0x1b1/0xc30 [ 3647.567242][T17807] genl_rcv+0x24/0x40 [ 3647.573522][T17807] netlink_unicast+0x533/0x7d0 [ 3647.579853][T17807] ? netlink_attachskb+0x890/0x890 [ 3647.586407][T17807] netlink_sendmsg+0x86d/0xdb0 [ 3647.591328][T17807] ? netlink_unicast+0x7d0/0x7d0 [ 3647.597558][T17807] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3647.606302][T17807] ? netlink_unicast+0x7d0/0x7d0 [ 3647.612443][T17807] sock_sendmsg+0xcf/0x120 [ 3647.618009][T17807] ____sys_sendmsg+0x6e8/0x810 [ 3647.623812][T17807] ? kernel_sendmsg+0x50/0x50 [ 3647.629515][T17807] ? do_recvmmsg+0x6d0/0x6d0 [ 3647.635787][T17807] ? lock_chain_count+0x20/0x20 [ 3647.641983][T17807] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3647.649270][T17807] ___sys_sendmsg+0xf3/0x170 [ 3647.655886][T17807] ? sendmsg_copy_msghdr+0x160/0x160 [ 3647.662390][T17807] ? __fget_files+0x21b/0x3e0 [ 3647.667991][T17807] ? lock_downgrade+0x6e0/0x6e0 [ 3647.673863][T17807] ? __fget_files+0x23d/0x3e0 [ 3647.680342][T17807] ? __fget_light+0xea/0x280 [ 3647.686039][T17807] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3647.693715][T17807] __sys_sendmsg+0xe5/0x1b0 [ 3647.699405][T17807] ? __sys_sendmsg_sock+0x30/0x30 [ 3647.705616][T17807] ? syscall_enter_from_user_mode+0x21/0x70 [ 3647.713649][T17807] do_syscall_64+0x35/0xb0 [ 3647.719031][T17807] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3647.726152][T17807] RIP: 0033:0x7f0b1aeaaae9 [ 3647.731335][T17807] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3647.757309][T17807] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3647.767305][T17807] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3647.777728][T17807] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3647.788215][T17807] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3647.801882][T17807] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3647.813623][T17807] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 23:41:05 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 49) 23:41:05 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x9403}]}, 0x30}}, 0x0) 23:41:05 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000001100000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:41:05 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acf9}, 0x0) [ 3647.961074][T17828] FAULT_INJECTION: forcing a failure. [ 3647.961074][T17828] name failslab, interval 1, probability 0, space 0, times 0 [ 3647.978695][T17828] CPU: 3 PID: 17828 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3647.990043][T17828] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3648.001608][T17828] Call Trace: [ 3648.005983][T17828] dump_stack_lvl+0xcd/0x134 [ 3648.011790][T17828] should_fail.cold+0x5/0xa [ 3648.017056][T17828] should_failslab+0x5/0x10 [ 3648.025294][T17828] kmem_cache_alloc_node_trace+0x6e/0x5c0 [ 3648.034175][T17828] ? call_srcu+0xc0/0xc0 [ 3648.040970][T17828] blk_mq_init_tags+0x6a/0x170 [ 3648.047103][T17828] blk_mq_alloc_rq_map+0x81/0x200 [ 3648.053222][T17828] blk_mq_alloc_map_and_rqs+0x4b/0x180 [ 3648.060048][T17828] blk_mq_init_sched+0x29d/0x740 [ 3648.066259][T17828] elevator_init_mq+0x2a9/0x4e0 [ 3648.072374][T17828] device_add_disk+0x76/0xfa0 [ 3648.078173][T17828] nbd_dev_add+0x837/0xbb0 [ 3648.084713][T17828] nbd_genl_connect+0x11f3/0x1930 [ 3648.091369][T17828] ? nbd_start_device+0xdd0/0xdd0 [ 3648.097942][T17828] ? __nla_parse+0x3d/0x50 [ 3648.103250][T17828] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3648.111427][T17828] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3648.121312][T17828] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3648.130494][T17828] genl_family_rcv_msg_doit+0x228/0x320 [ 3648.138653][T17828] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3648.149234][T17828] ? mutex_lock_io_nested+0x1150/0x1150 [ 3648.156197][T17828] ? genl_op_from_small+0x23/0x3c0 [ 3648.162851][T17828] ? genl_get_cmd+0x3cf/0x480 [ 3648.168730][T17828] genl_rcv_msg+0x328/0x580 [ 3648.174302][T17828] ? genl_get_cmd+0x480/0x480 [ 3648.180236][T17828] ? nbd_start_device+0xdd0/0xdd0 [ 3648.187066][T17828] ? lock_release+0x720/0x720 [ 3648.193639][T17828] netlink_rcv_skb+0x153/0x420 [ 3648.201348][T17828] ? genl_get_cmd+0x480/0x480 [ 3648.208541][T17828] ? netlink_ack+0xa60/0xa60 [ 3648.215577][T17828] ? netlink_deliver_tap+0x1b1/0xc30 [ 3648.222468][T17828] genl_rcv+0x24/0x40 [ 3648.227867][T17828] netlink_unicast+0x533/0x7d0 [ 3648.233999][T17828] ? netlink_attachskb+0x890/0x890 [ 3648.240308][T17828] netlink_sendmsg+0x86d/0xdb0 [ 3648.246174][T17828] ? netlink_unicast+0x7d0/0x7d0 [ 3648.252769][T17828] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3648.260471][T17828] ? netlink_unicast+0x7d0/0x7d0 [ 3648.266607][T17828] sock_sendmsg+0xcf/0x120 [ 3648.272806][T17828] ____sys_sendmsg+0x6e8/0x810 [ 3648.280024][T17828] ? kernel_sendmsg+0x50/0x50 [ 3648.287396][T17828] ? do_recvmmsg+0x6d0/0x6d0 [ 3648.293493][T17828] ? lock_chain_count+0x20/0x20 [ 3648.300495][T17828] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3648.307630][T17828] ___sys_sendmsg+0xf3/0x170 [ 3648.313711][T17828] ? sendmsg_copy_msghdr+0x160/0x160 [ 3648.319422][T17828] ? __fget_files+0x21b/0x3e0 [ 3648.324903][T17828] ? lock_downgrade+0x6e0/0x6e0 [ 3648.329597][T17828] ? __fget_files+0x23d/0x3e0 [ 3648.334174][T17828] ? __fget_light+0xea/0x280 [ 3648.338637][T17828] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3648.346087][T17828] __sys_sendmsg+0xe5/0x1b0 [ 3648.351345][T17828] ? __sys_sendmsg_sock+0x30/0x30 [ 3648.357387][T17828] ? syscall_enter_from_user_mode+0x21/0x70 [ 3648.364685][T17828] do_syscall_64+0x35/0xb0 [ 3648.370136][T17828] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3648.377426][T17828] RIP: 0033:0x7f0b1aeaaae9 [ 3648.382966][T17828] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3648.408847][T17828] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3648.419480][T17828] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3648.429723][T17828] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3648.439363][T17828] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3648.449197][T17828] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3648.459071][T17828] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 23:41:06 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000442200000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3648.469450][T17828] "mq-deadline" elevator initialization failed, falling back to "none" 23:41:06 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000004400000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:41:06 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000224400000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:41:06 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x9502}]}, 0x30}}, 0x0) [ 3648.597047][T17841] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3648.606955][T17841] nbd: must specify at least one socket 23:41:06 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 50) 23:41:06 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acfa}, 0x0) 23:41:06 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000006000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3648.647134][T17846] FAULT_INJECTION: forcing a failure. [ 3648.647134][T17846] name failslab, interval 1, probability 0, space 0, times 0 [ 3648.660939][T17846] CPU: 1 PID: 17846 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 23:41:06 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x9503}]}, 0x30}}, 0x0) 23:41:06 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000000000f000000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3648.674823][T17846] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3648.689663][T17846] Call Trace: [ 3648.697224][T17846] dump_stack_lvl+0xcd/0x134 [ 3648.702994][T17846] should_fail.cold+0x5/0xa 23:41:06 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000004003000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3648.710426][T17846] should_failslab+0x5/0x10 [ 3648.716927][T17846] kmem_cache_alloc_node_trace+0x6e/0x5c0 [ 3648.725016][T17846] __kmalloc_node+0x38/0x60 [ 3648.731155][T17846] sbitmap_init_node+0x1c3/0x6f0 [ 3648.738187][T17846] sbitmap_queue_init_node+0x3e/0x480 [ 3648.745378][T17846] ? lockdep_init_map_type+0x2c3/0x7b0 [ 3648.751985][T17846] blk_mq_init_bitmaps+0x57/0x180 [ 3648.757707][T17846] blk_mq_init_tags+0x10b/0x170 [ 3648.762790][T17846] blk_mq_alloc_rq_map+0x81/0x200 [ 3648.767778][T17846] blk_mq_alloc_map_and_rqs+0x4b/0x180 [ 3648.773593][T17846] blk_mq_init_sched+0x29d/0x740 [ 3648.779395][T17846] elevator_init_mq+0x2a9/0x4e0 [ 3648.784364][T17846] device_add_disk+0x76/0xfa0 23:41:06 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000340000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3648.790210][T17846] nbd_dev_add+0x837/0xbb0 [ 3648.797171][T17846] nbd_genl_connect+0x11f3/0x1930 [ 3648.804084][T17846] ? nbd_start_device+0xdd0/0xdd0 [ 3648.810434][T17846] ? __nla_parse+0x3d/0x50 [ 3648.815927][T17846] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3648.822989][T17846] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3648.830615][T17846] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3648.837998][T17846] genl_family_rcv_msg_doit+0x228/0x320 [ 3648.843867][T17846] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3648.853139][T17846] ? mutex_lock_io_nested+0x1150/0x1150 [ 3648.860596][T17846] ? genl_op_from_small+0x23/0x3c0 23:41:06 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000fffff0000000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3648.867036][T17846] ? genl_get_cmd+0x3cf/0x480 [ 3648.874172][T17846] genl_rcv_msg+0x328/0x580 [ 3648.880706][T17846] ? genl_get_cmd+0x480/0x480 [ 3648.887425][T17846] ? nbd_start_device+0xdd0/0xdd0 [ 3648.894828][T17846] ? lock_release+0x720/0x720 [ 3648.902233][T17846] netlink_rcv_skb+0x153/0x420 [ 3648.910380][T17846] ? genl_get_cmd+0x480/0x480 [ 3648.917504][T17846] ? netlink_ack+0xa60/0xa60 [ 3648.924345][T17846] ? netlink_deliver_tap+0x1b1/0xc30 [ 3648.931169][T17846] genl_rcv+0x24/0x40 [ 3648.935982][T17846] netlink_unicast+0x533/0x7d0 [ 3648.942165][T17846] ? netlink_attachskb+0x890/0x890 [ 3648.947709][T17846] netlink_sendmsg+0x86d/0xdb0 [ 3648.952651][T17846] ? netlink_unicast+0x7d0/0x7d0 [ 3648.958846][T17846] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3648.965551][T17846] ? netlink_unicast+0x7d0/0x7d0 [ 3648.971022][T17846] sock_sendmsg+0xcf/0x120 [ 3648.976192][T17846] ____sys_sendmsg+0x6e8/0x810 [ 3648.981152][T17846] ? kernel_sendmsg+0x50/0x50 [ 3648.985947][T17846] ? do_recvmmsg+0x6d0/0x6d0 [ 3648.990661][T17846] ? lock_chain_count+0x20/0x20 [ 3648.996348][T17846] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3649.002423][T17846] ___sys_sendmsg+0xf3/0x170 [ 3649.006861][T17846] ? sendmsg_copy_msghdr+0x160/0x160 [ 3649.012306][T17846] ? __fget_files+0x21b/0x3e0 [ 3649.017124][T17846] ? lock_downgrade+0x6e0/0x6e0 [ 3649.022367][T17846] ? __fget_files+0x23d/0x3e0 [ 3649.027880][T17846] ? __fget_light+0xea/0x280 [ 3649.032402][T17846] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3649.039053][T17846] __sys_sendmsg+0xe5/0x1b0 [ 3649.045053][T17846] ? __sys_sendmsg_sock+0x30/0x30 [ 3649.051178][T17846] ? syscall_enter_from_user_mode+0x21/0x70 [ 3649.060395][T17846] do_syscall_64+0x35/0xb0 [ 3649.064969][T17846] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3649.072073][T17846] RIP: 0033:0x7f0b1aeaaae9 [ 3649.077536][T17846] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3649.103468][T17846] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3649.114216][T17846] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3649.126410][T17846] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3649.137708][T17846] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3649.149715][T17846] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3649.159586][T17846] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3649.167891][T17846] "mq-deadline" elevator initialization failed, falling back to "none" [ 3649.194946][T17850] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3649.207547][T17850] nbd: must specify at least one socket 23:41:07 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 51) 23:41:07 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acfb}, 0x0) 23:41:07 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000010000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3649.297443][T17865] FAULT_INJECTION: forcing a failure. 23:41:07 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x9903}]}, 0x30}}, 0x0) [ 3649.297443][T17865] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 3649.311278][T17865] CPU: 2 PID: 17865 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3649.319646][T17865] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3649.328598][T17865] Call Trace: [ 3649.331918][T17865] dump_stack_lvl+0xcd/0x134 [ 3649.336479][T17865] should_fail.cold+0x5/0xa 23:41:07 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000020000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3649.341008][T17865] prepare_alloc_pages+0x17b/0x570 [ 3649.346328][T17865] __alloc_pages+0x12f/0x500 [ 3649.350870][T17865] ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0 [ 3649.357606][T17865] ? fs_reclaim_acquire+0xb2/0x160 [ 3649.363019][T17865] ? __raw_spin_lock_init+0x36/0x110 [ 3649.368429][T17865] ? debug_mutex_init+0x33/0x60 [ 3649.373316][T17865] blk_mq_alloc_rqs+0x258/0x7a0 [ 3649.378207][T17865] blk_mq_alloc_map_and_rqs+0x69/0x180 [ 3649.383866][T17865] blk_mq_init_sched+0x29d/0x740 [ 3649.389148][T17865] elevator_init_mq+0x2a9/0x4e0 [ 3649.394138][T17865] device_add_disk+0x76/0xfa0 [ 3649.399378][T17865] nbd_dev_add+0x837/0xbb0 [ 3649.404305][T17865] nbd_genl_connect+0x11f3/0x1930 [ 3649.410444][T17865] ? nbd_start_device+0xdd0/0xdd0 [ 3649.415431][T17865] ? __nla_parse+0x3d/0x50 [ 3649.420025][T17865] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3649.428695][T17865] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3649.439436][T17865] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3649.450742][T17865] genl_family_rcv_msg_doit+0x228/0x320 [ 3649.458489][T17865] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3649.468221][T17865] ? mutex_lock_io_nested+0x1150/0x1150 [ 3649.475074][T17865] ? genl_op_from_small+0x23/0x3c0 [ 3649.481813][T17865] ? genl_get_cmd+0x3cf/0x480 [ 3649.488618][T17865] genl_rcv_msg+0x328/0x580 [ 3649.494982][T17865] ? genl_get_cmd+0x480/0x480 [ 3649.501941][T17865] ? nbd_start_device+0xdd0/0xdd0 [ 3649.510376][T17865] ? lock_release+0x720/0x720 [ 3649.516825][T17865] netlink_rcv_skb+0x153/0x420 [ 3649.523322][T17865] ? genl_get_cmd+0x480/0x480 [ 3649.529831][T17865] ? netlink_ack+0xa60/0xa60 [ 3649.538332][T17865] ? netlink_deliver_tap+0x1b1/0xc30 [ 3649.549849][T17865] genl_rcv+0x24/0x40 [ 3649.564315][T17865] netlink_unicast+0x533/0x7d0 [ 3649.572786][T17865] ? netlink_attachskb+0x890/0x890 [ 3649.579728][T17865] netlink_sendmsg+0x86d/0xdb0 [ 3649.585247][T17865] ? netlink_unicast+0x7d0/0x7d0 [ 3649.595806][T17865] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3649.603017][T17865] ? netlink_unicast+0x7d0/0x7d0 [ 3649.612088][T17865] sock_sendmsg+0xcf/0x120 [ 3649.617077][T17865] ____sys_sendmsg+0x6e8/0x810 [ 3649.622362][T17865] ? kernel_sendmsg+0x50/0x50 [ 3649.630165][T17865] ? do_recvmmsg+0x6d0/0x6d0 [ 3649.635481][T17865] ? lock_chain_count+0x20/0x20 [ 3649.640900][T17865] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3649.647578][T17865] ___sys_sendmsg+0xf3/0x170 [ 3649.653052][T17865] ? sendmsg_copy_msghdr+0x160/0x160 [ 3649.659048][T17865] ? __fget_files+0x21b/0x3e0 [ 3649.664240][T17865] ? lock_downgrade+0x6e0/0x6e0 [ 3649.669600][T17865] ? __fget_files+0x23d/0x3e0 [ 3649.675081][T17865] ? __fget_light+0xea/0x280 [ 3649.680840][T17865] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3649.687694][T17865] __sys_sendmsg+0xe5/0x1b0 [ 3649.692656][T17865] ? __sys_sendmsg_sock+0x30/0x30 [ 3649.698323][T17865] ? syscall_enter_from_user_mode+0x21/0x70 [ 3649.704935][T17865] do_syscall_64+0x35/0xb0 [ 3649.710365][T17865] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3649.717436][T17865] RIP: 0033:0x7f0b1aeaaae9 [ 3649.722435][T17865] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3649.745724][T17865] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3649.756117][T17865] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3649.766272][T17865] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3649.775300][T17865] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3649.784365][T17865] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3649.793184][T17865] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 23:41:07 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000030000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:41:07 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000040000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:41:07 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000050000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:41:07 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 52) [ 3649.928472][T17886] FAULT_INJECTION: forcing a failure. [ 3649.928472][T17886] name failslab, interval 1, probability 0, space 0, times 0 [ 3649.947295][T17886] CPU: 1 PID: 17886 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3649.960379][T17886] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3649.971869][T17886] Call Trace: [ 3649.976447][T17886] dump_stack_lvl+0xcd/0x134 [ 3649.982558][T17886] should_fail.cold+0x5/0xa [ 3649.988188][T17886] should_failslab+0x5/0x10 [ 3649.993759][T17886] kmem_cache_alloc_node_trace+0x6e/0x5c0 [ 3650.001391][T17886] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3650.009796][T17886] __kmalloc_node+0x38/0x60 [ 3650.015817][T17886] blk_mq_alloc_rq_map+0x104/0x200 [ 3650.022161][T17886] blk_mq_alloc_map_and_rqs+0x4b/0x180 [ 3650.029476][T17886] blk_mq_init_sched+0x29d/0x740 [ 3650.034516][T17886] elevator_init_mq+0x2a9/0x4e0 [ 3650.040104][T17886] device_add_disk+0x76/0xfa0 [ 3650.047925][T17886] nbd_dev_add+0x837/0xbb0 [ 3650.054690][T17886] nbd_genl_connect+0x11f3/0x1930 [ 3650.062205][T17886] ? nbd_start_device+0xdd0/0xdd0 [ 3650.069283][T17886] ? __nla_parse+0x3d/0x50 [ 3650.075190][T17886] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3650.082928][T17886] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3650.091482][T17886] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3650.099628][T17886] genl_family_rcv_msg_doit+0x228/0x320 [ 3650.106344][T17886] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3650.114780][T17886] ? mutex_lock_io_nested+0x1150/0x1150 [ 3650.121479][T17886] ? genl_op_from_small+0x23/0x3c0 [ 3650.127743][T17886] ? genl_get_cmd+0x3cf/0x480 [ 3650.133493][T17886] genl_rcv_msg+0x328/0x580 [ 3650.139361][T17886] ? genl_get_cmd+0x480/0x480 [ 3650.145187][T17886] ? nbd_start_device+0xdd0/0xdd0 [ 3650.151421][T17886] ? lock_release+0x720/0x720 [ 3650.157337][T17886] netlink_rcv_skb+0x153/0x420 [ 3650.163355][T17886] ? genl_get_cmd+0x480/0x480 [ 3650.169304][T17886] ? netlink_ack+0xa60/0xa60 [ 3650.175196][T17886] ? netlink_deliver_tap+0x1b1/0xc30 [ 3650.181861][T17886] genl_rcv+0x24/0x40 [ 3650.186751][T17886] netlink_unicast+0x533/0x7d0 [ 3650.192564][T17886] ? netlink_attachskb+0x890/0x890 [ 3650.198172][T17886] netlink_sendmsg+0x86d/0xdb0 [ 3650.204078][T17886] ? netlink_unicast+0x7d0/0x7d0 [ 3650.209635][T17886] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3650.216952][T17886] ? netlink_unicast+0x7d0/0x7d0 [ 3650.223375][T17886] sock_sendmsg+0xcf/0x120 [ 3650.228805][T17886] ____sys_sendmsg+0x6e8/0x810 [ 3650.235377][T17886] ? kernel_sendmsg+0x50/0x50 [ 3650.240934][T17886] ? do_recvmmsg+0x6d0/0x6d0 [ 3650.246576][T17886] ? lock_chain_count+0x20/0x20 [ 3650.252743][T17886] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3650.262225][T17886] ___sys_sendmsg+0xf3/0x170 [ 3650.267829][T17886] ? sendmsg_copy_msghdr+0x160/0x160 [ 3650.273687][T17886] ? __fget_files+0x21b/0x3e0 [ 3650.278693][T17886] ? lock_downgrade+0x6e0/0x6e0 [ 3650.284023][T17886] ? __fget_files+0x23d/0x3e0 [ 3650.289662][T17886] ? __fget_light+0xea/0x280 [ 3650.294237][T17886] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3650.300995][T17886] __sys_sendmsg+0xe5/0x1b0 [ 3650.306322][T17886] ? __sys_sendmsg_sock+0x30/0x30 [ 3650.312081][T17886] ? syscall_enter_from_user_mode+0x21/0x70 [ 3650.319725][T17886] do_syscall_64+0x35/0xb0 [ 3650.325891][T17886] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3650.333151][T17886] RIP: 0033:0x7f0b1aeaaae9 [ 3650.339189][T17886] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3650.367578][T17886] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3650.378506][T17886] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3650.388226][T17886] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3650.398582][T17886] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3650.408678][T17886] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3650.418512][T17886] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3650.430894][T17886] "mq-deadline" elevator initialization failed, falling back to "none" [ 3651.471073][ T8453] device hsr_slave_0 left promiscuous mode [ 3651.479805][ T8453] device hsr_slave_1 left promiscuous mode [ 3651.489798][ T8453] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 3651.499645][ T8453] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 3651.513669][ T8453] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 3651.524023][ T8453] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 3651.538276][ T8453] device bridge_slave_1 left promiscuous mode [ 3651.546816][ T8453] bridge0: port 2(bridge_slave_1) entered disabled state [ 3651.560283][ T8453] device bridge_slave_0 left promiscuous mode [ 3651.569323][ T8453] bridge0: port 1(bridge_slave_0) entered disabled state [ 3651.593038][ T8453] device veth1_macvtap left promiscuous mode [ 3651.601729][ T8453] device veth0_macvtap left promiscuous mode [ 3651.612690][ T8453] device veth1_vlan left promiscuous mode [ 3651.620159][ T8453] device veth0_vlan left promiscuous mode [ 3651.917125][ T8453] team0 (unregistering): Port device team_slave_1 removed [ 3651.944598][ T8453] team0 (unregistering): Port device team_slave_0 removed [ 3651.973180][ T8453] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 3651.992172][ T8453] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 3652.079564][ T8453] bond0 (unregistering): Released all slaves [ 3653.263284][T17890] chnl_net:caif_netlink_parms(): no params data found [ 3653.363792][T17890] bridge0: port 1(bridge_slave_0) entered blocking state [ 3653.372824][T17890] bridge0: port 1(bridge_slave_0) entered disabled state [ 3653.387812][T17890] device bridge_slave_0 entered promiscuous mode [ 3653.401605][T17890] bridge0: port 2(bridge_slave_1) entered blocking state [ 3653.412084][T17890] bridge0: port 2(bridge_slave_1) entered disabled state [ 3653.423070][T17890] device bridge_slave_1 entered promiscuous mode [ 3653.496020][T17890] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 3653.513885][T17890] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 3653.566153][T17890] team0: Port device team_slave_0 added [ 3653.577224][T17890] team0: Port device team_slave_1 added [ 3653.616277][T17890] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 3653.628832][T17890] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 3653.664710][T17890] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 3653.688328][T17890] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 3653.701032][T17890] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 3653.729737][T17890] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 3653.788135][T17890] device hsr_slave_0 entered promiscuous mode [ 3653.797665][T17890] device hsr_slave_1 entered promiscuous mode [ 3653.807030][T17890] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 3653.816915][T17890] Cannot create hsr debugfs directory [ 3653.970140][T17890] bridge0: port 2(bridge_slave_1) entered blocking state [ 3653.980297][T17890] bridge0: port 2(bridge_slave_1) entered forwarding state [ 3653.990963][T17890] bridge0: port 1(bridge_slave_0) entered blocking state [ 3654.000881][T17890] bridge0: port 1(bridge_slave_0) entered forwarding state [ 3654.093804][T17890] 8021q: adding VLAN 0 to HW filter on device bond0 [ 3654.117700][T20280] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 3654.129827][T20280] bridge0: port 1(bridge_slave_0) entered disabled state [ 3654.141613][T20280] bridge0: port 2(bridge_slave_1) entered disabled state [ 3654.153405][T20280] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 3654.176251][T17890] 8021q: adding VLAN 0 to HW filter on device team0 [ 3654.197455][ T3938] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 3654.208731][ T3938] bridge0: port 1(bridge_slave_0) entered blocking state [ 3654.218029][ T3938] bridge0: port 1(bridge_slave_0) entered forwarding state [ 3654.233389][T31291] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 3654.250180][T31291] bridge0: port 2(bridge_slave_1) entered blocking state [ 3654.261648][T31291] bridge0: port 2(bridge_slave_1) entered forwarding state [ 3654.285601][ T3938] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 3654.297356][ T3938] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 3654.314721][T31291] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 3654.327448][T31291] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 3654.339826][T31291] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 3654.353664][ T3938] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 3654.366178][ T3938] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 3654.387714][T31291] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 3654.398233][T31291] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 3654.413886][T12429] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 3654.425331][T12429] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 3654.441615][T17890] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 3654.473553][T31291] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 3654.482873][T31291] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 3654.501283][T17890] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 3654.685567][ T2384] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 3654.698073][ T2384] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 3654.738301][T12429] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 3654.748913][T12429] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 3654.762877][T16334] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 3654.777482][T16334] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 3654.794955][T17890] device veth0_vlan entered promiscuous mode [ 3654.817789][T17890] device veth1_vlan entered promiscuous mode [ 3654.850500][T31291] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 3654.860614][T31291] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 3654.869617][T31291] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 3654.881414][T31291] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 3654.896248][T17890] device veth0_macvtap entered promiscuous mode [ 3654.910061][T17890] device veth1_macvtap entered promiscuous mode [ 3654.945065][T17890] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 3654.960006][T17890] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 3654.975326][T17890] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 3654.991570][T17890] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 3655.008168][T17890] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 3655.023487][T17890] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 3655.041464][T17890] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 3655.055638][ T2384] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 3655.066131][ T2384] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 3655.079788][ T2384] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 3655.092354][ T2384] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 3655.110533][T17890] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 3655.122569][T17890] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 3655.135316][T17890] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 3655.149462][T17890] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 3655.167431][T17890] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 3655.178531][T17749] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 3655.191559][T17749] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 3655.195509][T31291] Bluetooth: hci1: command 0x0409 tx timeout [ 3655.280004][T27364] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 3655.290597][T27364] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 3655.308900][ T1745] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 3655.338387][T27364] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 3655.351538][T27364] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 3655.367306][T31291] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 23:41:13 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acfc}, 0x0) 23:41:13 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000060000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:41:13 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x9d02}]}, 0x30}}, 0x0) 23:41:13 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 53) [ 3655.476203][T17909] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3655.485879][T17909] nbd: must specify at least one socket 23:41:13 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000070000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3655.497053][T17910] FAULT_INJECTION: forcing a failure. [ 3655.497053][T17910] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 3655.516426][T17910] CPU: 3 PID: 17910 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3655.527921][T17910] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3655.539848][T17910] Call Trace: [ 3655.544069][T17910] dump_stack_lvl+0xcd/0x134 [ 3655.549787][T17910] should_fail.cold+0x5/0xa [ 3655.555363][T17910] prepare_alloc_pages+0x17b/0x570 [ 3655.562051][T17910] ? netlink_sendmsg+0x86d/0xdb0 [ 3655.568433][T17910] ? sock_sendmsg+0xcf/0x120 [ 3655.574237][T17910] ? ____sys_sendmsg+0x6e8/0x810 [ 3655.580807][T17910] __alloc_pages+0x12f/0x500 [ 3655.586534][T17910] ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0 [ 3655.594872][T17910] ? fs_reclaim_acquire+0xb2/0x160 [ 3655.602027][T17910] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 23:41:13 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000080000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3655.610879][T17910] ? __cpu_to_node+0x82/0xb0 [ 3655.617085][T17910] ? blk_mq_hw_queue_to_node+0xe8/0x140 [ 3655.624716][T17910] blk_mq_alloc_rqs+0x258/0x7a0 [ 3655.631381][T17910] ? blk_mq_alloc_rq_map+0x8e/0x200 [ 3655.637935][T17910] blk_mq_alloc_map_and_rqs+0x69/0x180 [ 3655.644783][T17910] blk_mq_init_sched+0x29d/0x740 [ 3655.650881][T17910] elevator_init_mq+0x2a9/0x4e0 [ 3655.656976][T17910] device_add_disk+0x76/0xfa0 [ 3655.663120][T17910] nbd_dev_add+0x837/0xbb0 [ 3655.668680][T17910] nbd_genl_connect+0x11f3/0x1930 23:41:13 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000090000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:41:13 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000000000000a0000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3655.675330][T17910] ? nbd_start_device+0xdd0/0xdd0 [ 3655.683251][T17910] ? __nla_parse+0x3d/0x50 [ 3655.688686][T17910] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3655.696288][T17910] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3655.705023][T17910] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3655.713924][T17910] genl_family_rcv_msg_doit+0x228/0x320 [ 3655.720805][T17910] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3655.730343][T17910] ? mutex_lock_io_nested+0x1150/0x1150 [ 3655.737744][T17910] ? genl_op_from_small+0x23/0x3c0 [ 3655.744024][T17910] ? genl_get_cmd+0x3cf/0x480 [ 3655.749661][T17910] genl_rcv_msg+0x328/0x580 [ 3655.755815][T17910] ? genl_get_cmd+0x480/0x480 [ 3655.761673][T17910] ? nbd_start_device+0xdd0/0xdd0 [ 3655.767817][T17910] ? lock_release+0x720/0x720 [ 3655.774003][T17910] netlink_rcv_skb+0x153/0x420 [ 3655.779985][T17910] ? genl_get_cmd+0x480/0x480 [ 3655.785655][T17910] ? netlink_ack+0xa60/0xa60 [ 3655.791448][T17910] ? netlink_deliver_tap+0x1b1/0xc30 [ 3655.797843][T17910] genl_rcv+0x24/0x40 [ 3655.803022][T17910] netlink_unicast+0x533/0x7d0 [ 3655.809139][T17910] ? netlink_attachskb+0x890/0x890 [ 3655.815400][T17910] netlink_sendmsg+0x86d/0xdb0 [ 3655.821945][T17910] ? netlink_unicast+0x7d0/0x7d0 [ 3655.828900][T17910] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3655.837416][T17910] ? netlink_unicast+0x7d0/0x7d0 [ 3655.843617][T17910] sock_sendmsg+0xcf/0x120 [ 3655.849170][T17910] ____sys_sendmsg+0x6e8/0x810 [ 3655.855275][T17910] ? kernel_sendmsg+0x50/0x50 [ 3655.861236][T17910] ? do_recvmmsg+0x6d0/0x6d0 [ 3655.866814][T17910] ? lock_chain_count+0x20/0x20 [ 3655.873104][T17910] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3655.880905][T17910] ___sys_sendmsg+0xf3/0x170 [ 3655.887061][T17910] ? sendmsg_copy_msghdr+0x160/0x160 [ 3655.893928][T17910] ? __fget_files+0x21b/0x3e0 [ 3655.900042][T17910] ? lock_downgrade+0x6e0/0x6e0 [ 3655.906823][T17910] ? __fget_files+0x23d/0x3e0 [ 3655.912739][T17910] ? __fget_light+0xea/0x280 [ 3655.918986][T17910] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3655.926703][T17910] __sys_sendmsg+0xe5/0x1b0 [ 3655.932289][T17910] ? __sys_sendmsg_sock+0x30/0x30 [ 3655.939153][T17910] ? syscall_enter_from_user_mode+0x21/0x70 [ 3655.946883][T17910] do_syscall_64+0x35/0xb0 [ 3655.952561][T17910] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3655.960132][T17910] RIP: 0033:0x7f0b1aeaaae9 [ 3655.965626][T17910] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3655.990140][T17910] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3656.000366][T17910] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3656.010235][T17910] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3656.020577][T17910] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3656.031033][T17910] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3656.041137][T17910] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 23:41:14 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acfd}, 0x0) 23:41:14 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000000000000b0000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:41:14 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 54) 23:41:14 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x9e02}]}, 0x30}}, 0x0) [ 3656.163391][T17930] FAULT_INJECTION: forcing a failure. [ 3656.163391][T17930] name failslab, interval 1, probability 0, space 0, times 0 [ 3656.178644][T17930] CPU: 2 PID: 17930 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 23:41:14 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000000000000e0000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3656.189345][T17930] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3656.201017][T17930] Call Trace: [ 3656.204302][T17930] dump_stack_lvl+0xcd/0x134 [ 3656.229012][T17930] should_fail.cold+0x5/0xa [ 3656.233503][T17930] should_failslab+0x5/0x10 [ 3656.238848][T17930] kmem_cache_alloc_node_trace+0x6e/0x5c0 [ 3656.247488][T17930] ? lockdep_init_map_type+0x2c3/0x7b0 [ 3656.253984][T17930] ? kmem_cache_alloc_node_trace+0x426/0x5c0 [ 3656.261746][T17930] __kmalloc_node+0x38/0x60 23:41:14 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000000000000f0000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3656.267860][T17930] blk_alloc_flush_queue+0x127/0x330 [ 3656.273946][T17930] blk_mq_realloc_hw_ctxs+0xd95/0x1530 [ 3656.281264][T17930] blk_mq_init_allocated_queue+0x324/0x12c0 [ 3656.288297][T17930] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3656.295906][T17930] ? blkcg_init_queue+0x17b/0x780 [ 3656.302001][T17930] ? blk_queue_dma_alignment+0xc/0x50 [ 3656.307860][T17930] ? blk_set_default_limits+0x9/0x620 [ 3656.313581][T17930] __blk_mq_alloc_disk+0x8b/0x160 [ 3656.318708][T17930] nbd_dev_add+0x3b9/0xbb0 [ 3656.323140][T17930] nbd_genl_connect+0x11f3/0x1930 [ 3656.328063][T17930] ? nbd_start_device+0xdd0/0xdd0 [ 3656.333796][T17930] ? __nla_parse+0x3d/0x50 [ 3656.339525][T17930] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3656.347775][T17930] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3656.356837][T17930] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3656.364216][T17930] genl_family_rcv_msg_doit+0x228/0x320 [ 3656.370559][T17930] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3656.379508][T17930] ? mutex_lock_io_nested+0x1150/0x1150 [ 3656.386365][T17930] ? genl_op_from_small+0x23/0x3c0 [ 3656.392938][T17930] ? genl_get_cmd+0x3cf/0x480 [ 3656.398662][T17930] genl_rcv_msg+0x328/0x580 [ 3656.404272][T17930] ? genl_get_cmd+0x480/0x480 [ 3656.409920][T17930] ? nbd_start_device+0xdd0/0xdd0 [ 3656.415960][T17930] ? lock_release+0x720/0x720 [ 3656.421621][T17930] netlink_rcv_skb+0x153/0x420 [ 3656.426965][T17930] ? genl_get_cmd+0x480/0x480 [ 3656.432755][T17930] ? netlink_ack+0xa60/0xa60 [ 3656.437761][T17930] ? netlink_deliver_tap+0x1b1/0xc30 [ 3656.444432][T17930] genl_rcv+0x24/0x40 [ 3656.449646][T17930] netlink_unicast+0x533/0x7d0 [ 3656.455172][T17930] ? netlink_attachskb+0x890/0x890 [ 3656.461002][T17930] netlink_sendmsg+0x86d/0xdb0 [ 3656.466384][T17930] ? netlink_unicast+0x7d0/0x7d0 [ 3656.471608][T17930] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3656.477817][T17930] ? netlink_unicast+0x7d0/0x7d0 [ 3656.482921][T17930] sock_sendmsg+0xcf/0x120 [ 3656.487344][T17930] ____sys_sendmsg+0x6e8/0x810 [ 3656.492043][T17930] ? kernel_sendmsg+0x50/0x50 [ 3656.496707][T17930] ? do_recvmmsg+0x6d0/0x6d0 [ 3656.501551][T17930] ? lock_chain_count+0x20/0x20 [ 3656.507335][T17930] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3656.513410][T17930] ___sys_sendmsg+0xf3/0x170 [ 3656.517904][T17930] ? sendmsg_copy_msghdr+0x160/0x160 [ 3656.523209][T17930] ? __fget_files+0x21b/0x3e0 [ 3656.528167][T17930] ? lock_downgrade+0x6e0/0x6e0 [ 3656.533243][T17930] ? __fget_files+0x23d/0x3e0 [ 3656.538156][T17930] ? __fget_light+0xea/0x280 [ 3656.543220][T17930] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3656.550186][T17930] __sys_sendmsg+0xe5/0x1b0 [ 3656.554723][T17930] ? __sys_sendmsg_sock+0x30/0x30 [ 3656.560311][T17930] ? syscall_enter_from_user_mode+0x21/0x70 [ 3656.567119][T17930] do_syscall_64+0x35/0xb0 [ 3656.571923][T17930] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3656.578832][T17930] RIP: 0033:0x7f0b1aeaaae9 [ 3656.583399][T17930] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3656.605222][T17930] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3656.616221][T17930] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3656.626454][T17930] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3656.637121][T17930] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3656.647542][T17930] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3656.657558][T17930] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3656.668237][T17930] nbd: failed to add new device 23:41:14 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000100000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:41:14 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000110000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3656.692910][T17928] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3656.705592][T17928] nbd: must specify at least one socket 23:41:14 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acfe}, 0x0) 23:41:14 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000440000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:41:14 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 55) [ 3656.755439][T17947] FAULT_INJECTION: forcing a failure. [ 3656.755439][T17947] name fail_page_alloc, interval 1, probability 0, space 0, times 0 23:41:14 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x9e03}]}, 0x30}}, 0x0) [ 3656.772977][T17947] CPU: 3 PID: 17947 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3656.783647][T17947] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3656.794367][T17947] Call Trace: [ 3656.798367][T17947] dump_stack_lvl+0xcd/0x134 [ 3656.803754][T17947] should_fail.cold+0x5/0xa [ 3656.808878][T17947] prepare_alloc_pages+0x17b/0x570 [ 3656.815283][T17947] ? netlink_sendmsg+0x86d/0xdb0 [ 3656.821011][T17947] ? sock_sendmsg+0xcf/0x120 [ 3656.826301][T17947] ? ____sys_sendmsg+0x6e8/0x810 [ 3656.832437][T17947] __alloc_pages+0x12f/0x500 [ 3656.837958][T17947] ? __alloc_pages_slowpath.constprop.0+0x21b0/0x21b0 [ 3656.846275][T17947] ? fs_reclaim_acquire+0xb2/0x160 [ 3656.852490][T17947] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3656.859560][T17947] ? __cpu_to_node+0x82/0xb0 [ 3656.865008][T17947] ? blk_mq_hw_queue_to_node+0xe8/0x140 [ 3656.871375][T17947] blk_mq_alloc_rqs+0x258/0x7a0 [ 3656.877359][T17947] ? blk_mq_alloc_rq_map+0x8e/0x200 [ 3656.883176][T17947] blk_mq_alloc_map_and_rqs+0x69/0x180 [ 3656.889799][T17947] blk_mq_init_sched+0x29d/0x740 [ 3656.895679][T17947] elevator_init_mq+0x2a9/0x4e0 [ 3656.901097][T17947] device_add_disk+0x76/0xfa0 23:41:14 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000022440000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3656.906318][T17947] nbd_dev_add+0x837/0xbb0 [ 3656.911537][T17947] nbd_genl_connect+0x11f3/0x1930 [ 3656.917213][T17947] ? nbd_start_device+0xdd0/0xdd0 [ 3656.923210][T17947] ? __nla_parse+0x3d/0x50 [ 3656.928704][T17947] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3656.936285][T17947] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3656.944850][T17947] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3656.952330][T17947] genl_family_rcv_msg_doit+0x228/0x320 23:41:15 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000600000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3656.958612][T17947] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3656.967459][T17947] ? mutex_lock_io_nested+0x1150/0x1150 [ 3656.973954][T17947] ? genl_op_from_small+0x23/0x3c0 [ 3656.979820][T17947] ? genl_get_cmd+0x3cf/0x480 [ 3656.984914][T17947] genl_rcv_msg+0x328/0x580 [ 3656.990356][T17947] ? genl_get_cmd+0x480/0x480 [ 3656.996128][T17947] ? nbd_start_device+0xdd0/0xdd0 [ 3657.002185][T17947] ? lock_release+0x720/0x720 [ 3657.007329][T17947] netlink_rcv_skb+0x153/0x420 [ 3657.012622][T17947] ? genl_get_cmd+0x480/0x480 [ 3657.018070][T17947] ? netlink_ack+0xa60/0xa60 23:41:15 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000ffffff9e0000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3657.023465][T17947] ? netlink_deliver_tap+0x1b1/0xc30 [ 3657.030898][T17947] genl_rcv+0x24/0x40 [ 3657.035633][T17947] netlink_unicast+0x533/0x7d0 [ 3657.040979][T17947] ? netlink_attachskb+0x890/0x890 [ 3657.047578][T17947] netlink_sendmsg+0x86d/0xdb0 [ 3657.053988][T17947] ? netlink_unicast+0x7d0/0x7d0 [ 3657.060142][T17947] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3657.067186][T17947] ? netlink_unicast+0x7d0/0x7d0 [ 3657.072540][T17947] sock_sendmsg+0xcf/0x120 [ 3657.077699][T17947] ____sys_sendmsg+0x6e8/0x810 [ 3657.083180][T17947] ? kernel_sendmsg+0x50/0x50 [ 3657.089022][T17947] ? do_recvmmsg+0x6d0/0x6d0 23:41:15 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000fffffff00000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3657.094079][T17947] ? lock_chain_count+0x20/0x20 [ 3657.100795][T17947] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3657.107834][T17947] ___sys_sendmsg+0xf3/0x170 [ 3657.112968][T17947] ? sendmsg_copy_msghdr+0x160/0x160 [ 3657.119428][T17947] ? __fget_files+0x21b/0x3e0 [ 3657.125454][T17947] ? lock_downgrade+0x6e0/0x6e0 [ 3657.131210][T17947] ? __fget_files+0x23d/0x3e0 [ 3657.137239][T17947] ? __fget_light+0xea/0x280 [ 3657.142918][T17947] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3657.151088][T17947] __sys_sendmsg+0xe5/0x1b0 [ 3657.156934][T17947] ? __sys_sendmsg_sock+0x30/0x30 [ 3657.162576][T17947] ? syscall_enter_from_user_mode+0x21/0x70 [ 3657.169728][T17947] do_syscall_64+0x35/0xb0 [ 3657.174661][T17947] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3657.181330][T17947] RIP: 0033:0x7f0b1aeaaae9 [ 3657.186238][T17947] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3657.208396][T17947] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3657.217998][T17947] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3657.227183][T17947] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3657.236541][T17947] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3657.246311][T17947] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3657.255963][T17947] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3657.286817][T31291] Bluetooth: hci1: command 0x041b tx timeout [ 3657.323139][T17952] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3657.336282][T17952] nbd: must specify at least one socket 23:41:15 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7acff}, 0x0) 23:41:15 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a00010000000000000000000000000000000000f0ffff0000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:41:15 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 56) 23:41:15 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x9f02}]}, 0x30}}, 0x0) [ 3657.425381][T17967] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3657.438386][T17967] nbd: must specify at least one socket 23:41:15 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000007fffffff0000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3657.449872][T17969] FAULT_INJECTION: forcing a failure. [ 3657.449872][T17969] name failslab, interval 1, probability 0, space 0, times 0 [ 3657.468508][T17969] CPU: 0 PID: 17969 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3657.480834][T17969] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3657.491951][T17969] Call Trace: [ 3657.496575][T17969] dump_stack_lvl+0xcd/0x134 23:41:15 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a0001000000000000000000000000000000009effffff0000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3657.503066][T17969] should_fail.cold+0x5/0xa [ 3657.509081][T17969] should_failslab+0x5/0x10 [ 3657.515337][T17969] kmem_cache_alloc_node_trace+0x6e/0x5c0 [ 3657.522760][T17969] dd_init_sched+0x99/0x530 [ 3657.528235][T17969] blk_mq_init_sched+0x35a/0x740 [ 3657.534441][T17969] elevator_init_mq+0x2a9/0x4e0 [ 3657.540428][T17969] device_add_disk+0x76/0xfa0 [ 3657.546429][T17969] nbd_dev_add+0x837/0xbb0 23:41:15 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000f0ffffff0000000001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3657.552692][T17969] nbd_genl_connect+0x11f3/0x1930 [ 3657.559724][T17969] ? nbd_start_device+0xdd0/0xdd0 [ 3657.565797][T17969] ? __nla_parse+0x3d/0x50 [ 3657.571231][T17969] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3657.578643][T17969] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3657.585805][T17969] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3657.593967][T17969] genl_family_rcv_msg_doit+0x228/0x320 23:41:15 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000003400001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3657.600314][T17969] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3657.612726][T17969] ? mutex_lock_io_nested+0x1150/0x1150 [ 3657.619645][T17969] ? genl_op_from_small+0x23/0x3c0 [ 3657.626010][T17969] ? genl_get_cmd+0x3cf/0x480 [ 3657.631083][T17969] genl_rcv_msg+0x328/0x580 [ 3657.636208][T17969] ? genl_get_cmd+0x480/0x480 [ 3657.642051][T17969] ? nbd_start_device+0xdd0/0xdd0 [ 3657.647957][T17969] ? lock_release+0x720/0x720 [ 3657.652651][T17969] netlink_rcv_skb+0x153/0x420 [ 3657.658030][T17969] ? genl_get_cmd+0x480/0x480 [ 3657.663840][T17969] ? netlink_ack+0xa60/0xa60 [ 3657.669483][T17969] ? netlink_deliver_tap+0x1b1/0xc30 [ 3657.675312][T17969] genl_rcv+0x24/0x40 [ 3657.680110][T17969] netlink_unicast+0x533/0x7d0 [ 3657.685448][T17969] ? netlink_attachskb+0x890/0x890 [ 3657.690988][T17969] netlink_sendmsg+0x86d/0xdb0 [ 3657.696003][T17969] ? netlink_unicast+0x7d0/0x7d0 [ 3657.701223][T17969] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3657.709107][T17969] ? netlink_unicast+0x7d0/0x7d0 [ 3657.714005][T17969] sock_sendmsg+0xcf/0x120 [ 3657.718981][T17969] ____sys_sendmsg+0x6e8/0x810 [ 3657.724391][T17969] ? kernel_sendmsg+0x50/0x50 [ 3657.729351][T17969] ? do_recvmmsg+0x6d0/0x6d0 [ 3657.734204][T17969] ? lock_chain_count+0x20/0x20 [ 3657.738921][T17969] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3657.745890][T17969] ___sys_sendmsg+0xf3/0x170 [ 3657.750629][T17969] ? sendmsg_copy_msghdr+0x160/0x160 [ 3657.755619][T17969] ? __fget_files+0x21b/0x3e0 [ 3657.760175][T17969] ? lock_downgrade+0x6e0/0x6e0 [ 3657.766055][T17969] ? __fget_files+0x23d/0x3e0 [ 3657.771054][T17969] ? __fget_light+0xea/0x280 [ 3657.775727][T17969] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3657.782912][T17969] __sys_sendmsg+0xe5/0x1b0 [ 3657.788462][T17969] ? __sys_sendmsg_sock+0x30/0x30 [ 3657.794710][T17969] ? syscall_enter_from_user_mode+0x21/0x70 [ 3657.801960][T17969] do_syscall_64+0x35/0xb0 [ 3657.807871][T17969] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3657.815189][T17969] RIP: 0033:0x7f0b1aeaaae9 [ 3657.820881][T17969] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3657.844885][T17969] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3657.853221][T17969] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3657.860720][T17969] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3657.868497][T17969] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3657.876932][T17969] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3657.885410][T17969] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3657.896172][T17969] "mq-deadline" elevator initialization failed, falling back to "none" 23:41:16 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000fffffffffffff00001fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) 23:41:16 executing program 3: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x24, 0x0, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SOCKETS={0x4}]}, 0x24}}, 0x0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r2) sendmsg$NBD_CMD_CONNECT(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r4, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0x0, 0x7ad00}, 0x0) 23:41:16 executing program 1: syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, 0x0, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x9f03}]}, 0x30}}, 0x0) 23:41:16 executing program 2: sendmsg$NBD_CMD_CONNECT(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x14, 0x0, 0x1}, 0x14}}, 0x0) r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nbd(&(0x7f0000000240), r0) sendmsg$NBD_CMD_CONNECT(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x0, 0x0, {}, [@NBD_ATTR_CLIENT_FLAGS={0xc, 0x6, 0x3}, @NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_SOCKETS={0x4}]}, 0x30}, 0x1, 0xefac070000000000}, 0x0) (fail_nth: 57) [ 3658.001973][T17990] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'. [ 3658.015038][T17990] nbd: must specify at least one socket [ 3658.026330][T17987] FAULT_INJECTION: forcing a failure. [ 3658.026330][T17987] name failslab, interval 1, probability 0, space 0, times 0 23:41:16 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000000000101fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3658.046622][T17987] CPU: 0 PID: 17987 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3658.057330][T17987] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3658.068054][T17987] Call Trace: [ 3658.072382][T17987] dump_stack_lvl+0xcd/0x134 [ 3658.078342][T17987] should_fail.cold+0x5/0xa [ 3658.084276][T17987] should_failslab+0x5/0x10 [ 3658.089964][T17987] kmem_cache_alloc_trace+0x57/0x480 23:41:16 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000000000201fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3658.097440][T17987] ? kfree+0x1b0/0x2c0 [ 3658.103371][T17987] device_add+0x11a7/0x1ee0 [ 3658.109016][T17987] ? device_initialize+0x560/0x560 [ 3658.116196][T17987] ? __fw_devlink_link_to_suppliers+0x2d0/0x2d0 [ 3658.124498][T17987] device_add_disk+0x2d0/0xfa0 [ 3658.131073][T17987] nbd_dev_add+0x837/0xbb0 [ 3658.137724][T17987] nbd_genl_connect+0x11f3/0x1930 23:41:16 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000000000301fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3658.144724][T17987] ? nbd_start_device+0xdd0/0xdd0 [ 3658.152434][T17987] ? __nla_parse+0x3d/0x50 [ 3658.158006][T17987] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3658.167960][T17987] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3658.177237][T17987] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3658.186483][T17987] genl_family_rcv_msg_doit+0x228/0x320 23:41:16 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000000000401fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3658.193520][T17987] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3658.203244][T17987] ? mutex_lock_io_nested+0x1150/0x1150 [ 3658.209969][T17987] ? genl_op_from_small+0x23/0x3c0 [ 3658.216100][T17987] ? genl_get_cmd+0x3cf/0x480 [ 3658.222057][T17987] genl_rcv_msg+0x328/0x580 [ 3658.227893][T17987] ? genl_get_cmd+0x480/0x480 [ 3658.233536][T17987] ? nbd_start_device+0xdd0/0xdd0 [ 3658.239625][T17987] ? lock_release+0x720/0x720 23:41:16 executing program 0: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000003c0)=ANY=[@ANYBLOB="840100001a000100000000000000000000000000000000000000000000000501fe8000000000000000000000000000aa00"/64, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYBLOB="7f00000100000000000000000000000000000000330000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000000000004c0014007374726565626f673531322d67656e657269630000000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000480008"], 0x184}}, 0x0) [ 3658.245701][T17987] netlink_rcv_skb+0x153/0x420 [ 3658.252311][T17987] ? genl_get_cmd+0x480/0x480 [ 3658.258062][T17987] ? netlink_ack+0xa60/0xa60 [ 3658.264056][T17987] ? netlink_deliver_tap+0x1b1/0xc30 [ 3658.270761][T17987] genl_rcv+0x24/0x40 [ 3658.275683][T17987] netlink_unicast+0x533/0x7d0 [ 3658.282231][T17987] ? netlink_attachskb+0x890/0x890 [ 3658.288417][T17987] netlink_sendmsg+0x86d/0xdb0 [ 3658.294384][T17987] ? netlink_unicast+0x7d0/0x7d0 [ 3658.300324][T17987] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3658.308667][T17987] ? netlink_unicast+0x7d0/0x7d0 [ 3658.314667][T17987] sock_sendmsg+0xcf/0x120 [ 3658.319934][T17987] ____sys_sendmsg+0x6e8/0x810 [ 3658.325865][T17987] ? kernel_sendmsg+0x50/0x50 [ 3658.332067][T17987] ? do_recvmmsg+0x6d0/0x6d0 [ 3658.338623][T17987] ? lock_chain_count+0x20/0x20 [ 3658.345369][T17987] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3658.353912][T17987] ___sys_sendmsg+0xf3/0x170 [ 3658.360339][T17987] ? sendmsg_copy_msghdr+0x160/0x160 [ 3658.368376][T17987] ? __fget_files+0x21b/0x3e0 [ 3658.374480][T17987] ? lock_downgrade+0x6e0/0x6e0 [ 3658.380642][T17987] ? __fget_files+0x23d/0x3e0 [ 3658.386450][T17987] ? __fget_light+0xea/0x280 [ 3658.392182][T17987] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3658.400868][T17987] __sys_sendmsg+0xe5/0x1b0 [ 3658.407454][T17987] ? __sys_sendmsg_sock+0x30/0x30 [ 3658.415528][T17987] ? syscall_enter_from_user_mode+0x21/0x70 [ 3658.423087][T17987] do_syscall_64+0x35/0xb0 [ 3658.428403][T17987] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3658.436330][T17987] RIP: 0033:0x7f0b1aeaaae9 [ 3658.441774][T17987] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3658.466487][T17987] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3658.478126][T17987] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3658.488764][T17987] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3658.501698][T17987] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3658.513882][T17987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3658.525400][T17987] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3658.539896][T17987] ------------[ cut here ]------------ [ 3658.550658][T17987] WARNING: CPU: 0 PID: 17987 at block/genhd.c:540 device_add_disk+0x611/0xfa0 [ 3658.564526][T17987] Modules linked in: [ 3658.569281][T17987] CPU: 0 PID: 17987 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3658.582798][T17987] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3658.594109][T17987] RIP: 0010:device_add_disk+0x611/0xfa0 [ 3658.601454][T17987] Code: 8e c9 07 00 00 8b 5d 00 bf 03 01 00 00 89 de e8 95 19 af fd 81 fb 03 01 00 00 0f 85 69 fd ff ff e9 22 fd ff ff e8 cf 10 af fd <0f> 0b 41 bc 01 00 00 00 e9 6a fd ff ff e8 bd 10 af fd 0f 0b 41 bc [ 3658.627161][T17987] RSP: 0018:ffffc90002e07458 EFLAGS: 00010212 [ 3658.635562][T17987] RAX: 0000000000033163 RBX: 000000000000002b RCX: ffffc9002245d000 [ 3658.646361][T17987] RDX: 0000000000040000 RSI: ffffffff83c78c11 RDI: 0000000000000003 [ 3658.656412][T17987] RBP: ffff8880244b7000 R08: 0000000000000103 R09: ffff888025146143 [ 3658.666614][T17987] R10: ffffffff83c78922 R11: 0000000000000000 R12: 00000000fffffff4 [ 3658.677778][T17987] R13: ffff8880244b7080 R14: ffff8880244b7008 R15: ffff888025146108 [ 3658.689291][T17987] FS: 00007f0b18420700(0000) GS:ffff88802ca00000(0000) knlGS:0000000000000000 [ 3658.701459][T17987] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3658.710966][T17987] CR2: 0000001b31c23000 CR3: 000000004f6a3000 CR4: 0000000000150ef0 [ 3658.721574][T17987] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3658.731602][T17987] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3658.742865][T17987] Call Trace: [ 3658.746930][T17987] nbd_dev_add+0x837/0xbb0 [ 3658.752684][T17987] nbd_genl_connect+0x11f3/0x1930 [ 3658.759035][T17987] ? nbd_start_device+0xdd0/0xdd0 [ 3658.765856][T17987] ? __nla_parse+0x3d/0x50 [ 3658.771403][T17987] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3658.779859][T17987] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3658.790025][T17987] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3658.799427][T17987] genl_family_rcv_msg_doit+0x228/0x320 [ 3658.807437][T17987] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3658.817412][T17987] ? mutex_lock_io_nested+0x1150/0x1150 [ 3658.824576][T17987] ? genl_op_from_small+0x23/0x3c0 [ 3658.831192][T17987] ? genl_get_cmd+0x3cf/0x480 [ 3658.838461][T17987] genl_rcv_msg+0x328/0x580 [ 3658.844024][T17987] ? genl_get_cmd+0x480/0x480 [ 3658.849870][T17987] ? nbd_start_device+0xdd0/0xdd0 [ 3658.856314][T17987] ? lock_release+0x720/0x720 [ 3658.862521][T17987] netlink_rcv_skb+0x153/0x420 [ 3658.870264][T17987] ? genl_get_cmd+0x480/0x480 [ 3658.879677][T17987] ? netlink_ack+0xa60/0xa60 [ 3658.886329][T17987] ? netlink_deliver_tap+0x1b1/0xc30 [ 3658.894353][T17987] genl_rcv+0x24/0x40 [ 3658.900295][T17987] netlink_unicast+0x533/0x7d0 [ 3658.907602][T17987] ? netlink_attachskb+0x890/0x890 [ 3658.916479][T17987] netlink_sendmsg+0x86d/0xdb0 [ 3658.923973][T17987] ? netlink_unicast+0x7d0/0x7d0 [ 3658.930325][T17987] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3658.939316][T17987] ? netlink_unicast+0x7d0/0x7d0 [ 3658.948181][T17987] sock_sendmsg+0xcf/0x120 [ 3658.956252][T17987] ____sys_sendmsg+0x6e8/0x810 [ 3658.964889][T17987] ? kernel_sendmsg+0x50/0x50 [ 3658.972336][T17987] ? do_recvmmsg+0x6d0/0x6d0 [ 3658.978137][T17987] ? lock_chain_count+0x20/0x20 [ 3658.984211][T17987] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3658.992314][T17987] ___sys_sendmsg+0xf3/0x170 [ 3658.999772][T17987] ? sendmsg_copy_msghdr+0x160/0x160 [ 3659.006503][T17987] ? __fget_files+0x21b/0x3e0 [ 3659.013859][T17987] ? lock_downgrade+0x6e0/0x6e0 [ 3659.020816][T17987] ? __fget_files+0x23d/0x3e0 [ 3659.026649][T17987] ? __fget_light+0xea/0x280 [ 3659.033863][T17987] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3659.042707][T17987] __sys_sendmsg+0xe5/0x1b0 [ 3659.049094][T17987] ? __sys_sendmsg_sock+0x30/0x30 [ 3659.056258][T17987] ? syscall_enter_from_user_mode+0x21/0x70 [ 3659.064277][T17987] do_syscall_64+0x35/0xb0 [ 3659.069988][T17987] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3659.077711][T17987] RIP: 0033:0x7f0b1aeaaae9 [ 3659.083144][T17987] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3659.108935][T17987] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3659.119464][T17987] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3659.129422][T17987] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3659.141079][T17987] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3659.151819][T17987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3659.162064][T17987] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3659.172924][T17987] Kernel panic - not syncing: panic_on_warn set ... [ 3659.182166][T17987] CPU: 0 PID: 17987 Comm: syz-executor.2 Not tainted 5.15.0-syzkaller #0 [ 3659.192744][T17987] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 3659.205400][T17987] Call Trace: [ 3659.209638][T17987] dump_stack_lvl+0xcd/0x134 [ 3659.215352][T17987] panic+0x2b0/0x6dd [ 3659.221985][T17987] ? __warn_printk+0xf3/0xf3 [ 3659.228374][T17987] ? __warn.cold+0x1a/0x44 [ 3659.233845][T17987] ? device_add_disk+0x611/0xfa0 [ 3659.240375][T17987] __warn.cold+0x35/0x44 [ 3659.245535][T17987] ? device_add_disk+0x611/0xfa0 [ 3659.251773][T17987] report_bug+0x1bd/0x210 [ 3659.257438][T17987] handle_bug+0x3c/0x60 [ 3659.263045][T17987] exc_invalid_op+0x14/0x40 [ 3659.268895][T17987] asm_exc_invalid_op+0x12/0x20 [ 3659.274830][T17987] RIP: 0010:device_add_disk+0x611/0xfa0 [ 3659.282546][T17987] Code: 8e c9 07 00 00 8b 5d 00 bf 03 01 00 00 89 de e8 95 19 af fd 81 fb 03 01 00 00 0f 85 69 fd ff ff e9 22 fd ff ff e8 cf 10 af fd <0f> 0b 41 bc 01 00 00 00 e9 6a fd ff ff e8 bd 10 af fd 0f 0b 41 bc [ 3659.309036][T17987] RSP: 0018:ffffc90002e07458 EFLAGS: 00010212 [ 3659.316808][T17987] RAX: 0000000000033163 RBX: 000000000000002b RCX: ffffc9002245d000 [ 3659.326803][T17987] RDX: 0000000000040000 RSI: ffffffff83c78c11 RDI: 0000000000000003 [ 3659.337615][T17987] RBP: ffff8880244b7000 R08: 0000000000000103 R09: ffff888025146143 [ 3659.348947][T17987] R10: ffffffff83c78922 R11: 0000000000000000 R12: 00000000fffffff4 [ 3659.358553][T17987] R13: ffff8880244b7080 R14: ffff8880244b7008 R15: ffff888025146108 [ 3659.368215][T17987] ? device_add_disk+0x322/0xfa0 [ 3659.374601][T17987] ? device_add_disk+0x611/0xfa0 [ 3659.381256][T17987] ? device_add_disk+0x611/0xfa0 [ 3659.387671][T17987] nbd_dev_add+0x837/0xbb0 [ 3659.393076][T17987] nbd_genl_connect+0x11f3/0x1930 [ 3659.399262][T17987] ? nbd_start_device+0xdd0/0xdd0 [ 3659.405680][T17987] ? __nla_parse+0x3d/0x50 [ 3659.411171][T17987] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3659.418896][T17987] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b7/0x290 [ 3659.428620][T17987] ? genl_family_rcv_msg_attrs_parse.constprop.0+0xaf/0x290 [ 3659.437695][T17987] genl_family_rcv_msg_doit+0x228/0x320 [ 3659.445165][T17987] ? genl_family_rcv_msg_attrs_parse.constprop.0+0x290/0x290 [ 3659.455657][T17987] ? mutex_lock_io_nested+0x1150/0x1150 [ 3659.463683][T17987] ? genl_op_from_small+0x23/0x3c0 [ 3659.471037][T17987] ? genl_get_cmd+0x3cf/0x480 [ 3659.477019][T17987] genl_rcv_msg+0x328/0x580 [ 3659.482486][T17987] ? genl_get_cmd+0x480/0x480 [ 3659.490070][T17987] ? nbd_start_device+0xdd0/0xdd0 [ 3659.497059][T17987] ? lock_release+0x720/0x720 [ 3659.503257][T17987] netlink_rcv_skb+0x153/0x420 [ 3659.510059][T17987] ? genl_get_cmd+0x480/0x480 [ 3659.516142][T17987] ? netlink_ack+0xa60/0xa60 [ 3659.521676][T17987] ? netlink_deliver_tap+0x1b1/0xc30 [ 3659.528373][T17987] genl_rcv+0x24/0x40 [ 3659.533330][T17987] netlink_unicast+0x533/0x7d0 [ 3659.539343][T17987] ? netlink_attachskb+0x890/0x890 [ 3659.545950][T17987] netlink_sendmsg+0x86d/0xdb0 [ 3659.552482][T17987] ? netlink_unicast+0x7d0/0x7d0 [ 3659.559389][T17987] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 3659.567366][T17987] ? netlink_unicast+0x7d0/0x7d0 [ 3659.574196][T17987] sock_sendmsg+0xcf/0x120 [ 3659.580939][T17987] ____sys_sendmsg+0x6e8/0x810 [ 3659.587453][T17987] ? kernel_sendmsg+0x50/0x50 [ 3659.594418][T17987] ? do_recvmmsg+0x6d0/0x6d0 [ 3659.600819][T17987] ? lock_chain_count+0x20/0x20 [ 3659.606921][T17987] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 3659.615024][T17987] ___sys_sendmsg+0xf3/0x170 [ 3659.620769][T17987] ? sendmsg_copy_msghdr+0x160/0x160 [ 3659.627203][T17987] ? __fget_files+0x21b/0x3e0 [ 3659.632904][T17987] ? lock_downgrade+0x6e0/0x6e0 [ 3659.639056][T17987] ? __fget_files+0x23d/0x3e0 [ 3659.644762][T17987] ? __fget_light+0xea/0x280 [ 3659.650888][T17987] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 3659.659435][T17987] __sys_sendmsg+0xe5/0x1b0 [ 3659.665542][T17987] ? __sys_sendmsg_sock+0x30/0x30 [ 3659.672322][T17987] ? syscall_enter_from_user_mode+0x21/0x70 [ 3659.680017][T17987] do_syscall_64+0x35/0xb0 [ 3659.687436][T17987] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 3659.695620][T17987] RIP: 0033:0x7f0b1aeaaae9 [ 3659.701038][T17987] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48 [ 3659.727789][T17987] RSP: 002b:00007f0b18420188 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 3659.739376][T17987] RAX: ffffffffffffffda RBX: 00007f0b1afbdf60 RCX: 00007f0b1aeaaae9 [ 3659.749384][T17987] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000005 [ 3659.759844][T17987] RBP: 00007f0b184201d0 R08: 0000000000000000 R09: 0000000000000000 [ 3659.769526][T17987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 3659.779338][T17987] R13: 00007ffebe7d0edf R14: 00007f0b18420300 R15: 0000000000022000 [ 3659.792547][T17987] Kernel Offset: disabled [ 3659.798181][T17987] Rebooting in 86400 seconds.. VM DIAGNOSIS: 23:41:17 Registers: info registers vcpu 0 RAX=000000000000006f RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff84359a51 RDI=ffffffff90536520 RBP=ffffffff905364e0 RSP=ffffc90002e06e68 R8 =0000000000000000 R9 =0000000000000000 R10=ffffffff84359a42 R11=000000000000001f R12=0000000000000000 R13=000000000000006f R14=ffffffff905364e0 R15=dffffc0000000000 RIP=ffffffff84359a7a RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f0b18420700 ffffffff 00c00000 GS =0000 ffff88802ca00000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000001b31c23000 CR3=000000004f6a3000 CR4=00150ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=ffffffffffffff00ffffffffffffffff XMM01=ffffffffffffffffffffffffffffffff XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000774765 RBX=ffff88801193a180 RCX=ffffffff8934a4ef RDX=0000000000000000 RSI=0000000000000001 RDI=0000000000000000 RBP=0000000000000001 RSP=ffffc9000065fdf8 R8 =0000000000000001 R9 =ffff88802cb32ad3 R10=ffffed100596655a R11=0000000000000000 R12=ffffed1002327430 R13=0000000000000001 R14=ffffffff8d6eaa90 R15=0000000000000000 RIP=ffffffff8937742b RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802cb00000 ffffffff 00c00000 LDT=0000 0000000000000000 00000000 00000000 TR =0040 fffffe000003e000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000003c000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000001b31521000 CR3=000000004f6a3000 CR4=00150ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=0000000000ff00000000000000ff0000 XMM01=385f7a7973006273755f7a7973006c6c XMM02=00000000ff0000000000000000000000 XMM03=00007f0b1af917c800007f0b1af917c0 XMM04=ffffffffffffffffffffffff00000000 XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 2 RAX=0000000000000007 RBX=1ffff920000f016b RCX=1ffffffff1addbd5 RDX=0000000000000000 RSI=0000000000010005 RDI=0000000000000000 RBP=0000000000000001 RSP=ffffc90000780b48 R8 =0000000000000000 R9 =ffffffff8d6eaa97 R10=fffffbfff1add552 R11=0000000000000001 R12=0000000000000000 R13=0000000000000000 R14=ffffe8ffadcb1ec8 R15=0000000000000000 RIP=ffffffff815bc85d RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802cc00000 ffffffff 00c00000 LDT=0000 0000000000000000 00000000 00000000 TR =0040 fffffe0000079000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000077000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=00007fed8a8701b8 CR3=0000000049b59000 CR4=00150ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffffffffffffffffffff XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 3 RAX=0000000000726cbb RBX=ffff88801193e200 RCX=ffffffff8934a4ef RDX=0000000000000000 RSI=0000000000000001 RDI=0000000000000000 RBP=0000000000000003 RSP=ffffc9000067fdf8 R8 =0000000000000001 R9 =ffff88802cd32ad3 R10=ffffed10059a655a R11=0000000000000000 R12=ffffed1002327c40 R13=0000000000000003 R14=ffffffff8d6eaa90 R15=0000000000000000 RIP=ffffffff8937742b RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802cd00000 ffffffff 00c00000 LDT=0000 0000000000000000 00000000 00000000 TR =0040 fffffe00000b4000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000b2000 0000007f IDT= fffffe0000000000 0000ffff CR0=80050033 CR2=0000001b31521000 CR3=000000004b21e000 CR4=00150ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffffffffffffffffffff XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000