syzbot

netlink: 16 bytes leftover after parsing attributes in process `syz.4.352'.
bond0: (slave wlan1): Releasing backup interface
------------[ cut here ]------------
WARNING: CPU: 0 PID: 5591 at net/mac80211/chan.c:2017 ieee80211_link_release_channel+0x150/0x180 net/mac80211/chan.c:2017
Modules linked in:
CPU: 0 PID: 5591 Comm: syz.4.352 Not tainted syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
RIP: 0010:ieee80211_link_release_channel+0x150/0x180 net/mac80211/chan.c:2017
Code: 7c 2d 00 00 74 08 48 89 df e8 cc 25 36 f8 bf 18 1e 00 00 48 03 3b 5b 41 5c 41 5d 41 5e 41 5f 5d e9 15 ff 7e 00 e8 e0 f3 e5 f7 <0f> 0b eb c5 48 c7 c1 24 59 ff 8d 80 e1 07 80 c1 03 38 c1 0f 8c 51
RSP: 0018:ffffc9000c427188 EFLAGS: 00010246
RAX: ffffffff899b15e0 RBX: ffff8880242b55a8 RCX: 0000000000080000
RDX: ffffc9000feae000 RSI: 000000000007ffff RDI: 0000000000080000
RBP: 0000000000000000 R08: dffffc0000000000 R09: fffffbfff1bfe48e
R10: fffffbfff1bfe48e R11: 1ffffffff1bfe48d R12: ffff8880242b6ae0
R13: 1ffff11004856ab5 R14: ffff8880242b6258 R15: dffffc0000000000
FS:  00007facc71d56c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: fffffffffd000000 CR3: 0000000078aef000 CR4: 00000000003506f0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
 <TASK>
 unregister_netdevice_many+0x12ab/0x1840 net/core/dev.c:11007
 unregister_netdevice_queue+0x31c/0x360 net/core/dev.c:10921
 unregister_netdevice include/linux/netdevice.h:3075 [inline]
 _cfg80211_unregister_wdev+0x177/0x590 net/wireless/core.c:1212
 ieee80211_if_remove+0x1bd/0x2c0 net/mac80211/iface.c:2338
 ieee80211_del_iface+0x15/0x20 net/mac80211/cfg.c:202
 rdev_del_virtual_intf net/wireless/rdev-ops.h:62 [inline]
 cfg80211_remove_virtual_intf+0x243/0x450 net/wireless/util.c:2634
 genl_family_rcv_msg_doit+0x22e/0x320 net/netlink/genetlink.c:756
 genl_family_rcv_msg net/netlink/genetlink.c:833 [inline]
 genl_rcv_msg+0x5f2/0x780 net/netlink/genetlink.c:850
 netlink_rcv_skb+0x1de/0x420 net/netlink/af_netlink.c:2511
 genl_rcv+0x24/0x40 net/netlink/genetlink.c:861
 netlink_unicast_kernel net/netlink/af_netlink.c:1318 [inline]
 netlink_unicast+0x74d/0x8d0 net/netlink/af_netlink.c:1344
 netlink_sendmsg+0x89e/0xbc0 net/netlink/af_netlink.c:1872
 sock_sendmsg_nosec net/socket.c:718 [inline]
 __sock_sendmsg net/socket.c:730 [inline]
 ____sys_sendmsg+0x59b/0x970 net/socket.c:2518
 ___sys_sendmsg+0x21c/0x290 net/socket.c:2572
 __sys_sendmsg net/socket.c:2601 [inline]
 __do_sys_sendmsg net/socket.c:2610 [inline]
 __se_sys_sendmsg+0x19e/0x270 net/socket.c:2608
 do_syscall_x64 arch/x86/entry/common.c:46 [inline]
 do_syscall_64+0x4c/0xa0 arch/x86/entry/common.c:76
 entry_SYSCALL_64_after_hwframe+0x68/0xd2
RIP: 0033:0x7facc8f8f749
Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007facc71d5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
RAX: ffffffffffffffda RBX: 00007facc91e6090 RCX: 00007facc8f8f749
RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000003
RBP: 00007facc9013f91 R08: 0000000000000000 R09: 0000000000000000
R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
R13: 00007facc91e6128 R14: 00007facc91e6090 R15: 00007ffebfb20378
 </TASK>